Correct indentation and labelling in ChangeLog
This commit is contained in:
Hanno Becker
parent
745bcf454f
commit
01a0e07e9d
1 changed files with 15 additions and 16 deletions
13
ChangeLog
13
ChangeLog
|
|
@ -4,13 +4,13 @@ mbed TLS ChangeLog (Sorted per branch, date)
|
|||
|
||||
Security
|
||||
* Fix authentication bypass in SSL/TLS: when auth_mode is set to optional,
|
||||
mbedtls_ssl_get_verify_result() would incorrectly return 0 when the peer's
|
||||
X.509 certificate chain had more than MBEDTLS_X509_MAX_INTERMEDIATE_CA
|
||||
(default: 8) intermediates, even when it was not trusted. Could be
|
||||
triggered remotely on both sides. (With auth_mode set to required
|
||||
(default), the handshake was correctly aborted.)
|
||||
mbedtls_ssl_get_verify_result() would incorrectly return 0 when the peer's
|
||||
X.509 certificate chain had more than MBEDTLS_X509_MAX_INTERMEDIATE_CA
|
||||
(default: 8) intermediates, even when it was not trusted. Could be
|
||||
triggered remotely on both sides. (With auth_mode set to required
|
||||
(default), the handshake was correctly aborted.)
|
||||
|
||||
Changes
|
||||
API changes
|
||||
* Certificate verification functions now set flags to -1 in case the full
|
||||
chain was not verified due to an internal error (including in the verify
|
||||
callback) or chain length limitations.
|
||||
|
|
@ -2256,4 +2256,3 @@ XySSL ChangeLog
|
|||
who maintains the Debian package :-)
|
||||
|
||||
= Version 0.1 released on 2006-11-01
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue