Fix implementation of VERIFY_OPTIONAL verification mode This commit changes the behaviour of mbedtls_ssl_parse_certificate to make the two authentication modes MBEDTLS_SSL_VERIFY_REQUIRED and MBEDTLS_SSL_VERIFY_OPTIONAL be in the following relationship: Mode == MBEDTLS_SSL_VERIFY_REQUIRED <=> Mode == MBEDTLS_SSL_VERIFY_OPTIONAL + check verify result Also, it changes the behaviour to perform the certificate chain verification even if the trusted CA chain is empty. Previously, the function failed in this case, even when using optional verification, which was brought up in #864.

commit: 39ae8cd2077d2e9e7d00161162ad8d3fb45dba27 [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Mon May 08 16:31:14 2017 +0100
committer: Hanno Becker <hanno.becker@arm.com> Wed Jun 07 11:13:19 2017 +0100
tree: 1a1ed7bc2440759be586729427c22657826468d6
parent: ddc6e52cc1f3720a08d2d58d4f6ad61a18c24eb7 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 1b6a354..da0755a 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -17,6 +17,13 @@
      that triggered the alert.
    * In SSLv3, if refusing a renegotiation attempt, don't process any further
      data.
+   * Accept empty trusted CA chain in authentication mode
+     MBEDTLS_SSL_VERIFY_OPTIONAL.
+     Fixes #864. Found by jethrogb.
+   * Fix implementation of mbedtls_ssl_parse_certificate
+     to not annihilate fatal errors in authentication mode
+     MBEDTLS_SSL_VERIFY_OPTIONAL and to reflect bad EC curves
+     within verification result.
 
 Changes
    * Send fatal alerts in many more cases instead of dropping the connection.
commit	39ae8cd2077d2e9e7d00161162ad8d3fb45dba27	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Mon May 08 16:31:14 2017 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Wed Jun 07 11:13:19 2017 +0100
tree	1a1ed7bc2440759be586729427c22657826468d6
parent	ddc6e52cc1f3720a08d2d58d4f6ad61a18c24eb7 [diff] [blame]