cuberite/polarssl
1
0
Fork 0
mirror of https://github.com/cuberite/polarssl.git synced 2025-09-30 00:46:22 -04:00
Code Issues Packages Projects Releases Wiki Activity

Tiny fix in ChangeLog

Browse Source 
Signed-off-by: Elena Uziunaite <elena.uziunaite@arm.com>
This commit is contained in:
Elena Uziunaite 2024-08-22 09:00:57 +01:00
parent f72a510590
commit e0c6f80403
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
ChangeLog.d/fix_reporting_of_key_usage_issues.txt
View File

@ -1,7 +1,7 @@
Security Security
* With TLS 1.3, when a server enables optional authentication of the * With TLS 1.3, when a server enables optional authentication of the
client, if the client-provided certificate does not have appropriate values client, if the client-provided certificate does not have appropriate values
in if keyUsage or extKeyUsage extensions, then the return value of in keyUsage or extKeyUsage extensions, then the return value of
mbedtls_ssl_get_verify_result() would incorrectly have the mbedtls_ssl_get_verify_result() would incorrectly have the
MBEDTLS_X509_BADCERT_KEY_USAGE and MBEDTLS_X509_BADCERT_KEY_USAGE bits MBEDTLS_X509_BADCERT_KEY_USAGE and MBEDTLS_X509_BADCERT_KEY_USAGE bits
clear. As a result, an attacker that had a certificate valid for uses other clear. As a result, an attacker that had a certificate valid for uses other