TeamHepta/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2026-03-20 19:21:09 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add ChangeLog entry for verify_result hardening

Browse Source 
Signed-off-by: David Horstmann <david.horstmann@arm.com>
This commit is contained in:
David Horstmann
2025-10-08 10:49:24 +01:00
parent 0ecde06ce9
commit e29d7be48e
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
ChangeLog.d/verify-result-default-value.txt Normal file
View File

@@ -0,0 +1,5 @@
Changes
* Harden mbedtls_ssl_get_verify_result() against misuse.
Return failure if the handshake has not yet been attempted. Previously
the result of verification was zero-initialized so the function would
return 0 (indicating success).