Google Git
Sign in
pigweed/third_party/github/Mbed-TLS/mbedtls-framework/d5a75f44a16ed54605ee327886c52d90aa0351dd^!/./ChangeLog
commit
d5a75f44a16ed54605ee327886c52d90aa0351dd
[log]
author
Ron Eldor <ron.eldor@arm.com>
Fri Dec 16 16:15:56 2016 +0200
committer
Simon Butcher <simon.butcher@arm.com>
Fri Jul 28 22:27:29 2017 +0100
tree
29041c0777fd9efbb85ff4146acce4b0e6422f30
parent
c08d9ddd55f192dec6537fa10ee303628af59ee0 [diff] [blame]
fix for issue 1118: check if iv is zero in gcm.

1) found by roberto in mbedtls forum
2) if iv_len is zero, return an error
3) add tests for invalid parameters

diff --git a/ChangeLog b/ChangeLog
index f3fa22c..ecbbb4c 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -1,6 +1,10 @@
 mbed TLS ChangeLog (Sorted per branch, date)
 
-= mbed TLS 2.x.x released xxxx-xx-xx
+= mbed TLS x.x.x branch released xxxx-xx-xx
+
+Bugfix
+   * Add a check if iv_len is zero, and return an error if it is zero. reported
+     by roberto. #716
 
 Security
    * Fix authentication bypass in SSL/TLS: when auth_mode is set to optional,