projects / rtos / tinyara.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 10c020f) | patch
net/tls: fix a potential security hole that bypasses signature verification
authorJunyeon LEE <junyeon2.lee@samsung.com>
Thu, 6 Apr 2017 13:19:41 +0000 (22:19 +0900)
committerHeesub Shin <heesub.shin@samsung.com>
Tue, 18 Apr 2017 03:02:08 +0000 (12:02 +0900)
commit6e231f65c63b300ba81ba00037ddeee9b6b4f574
tree2e6539c971fadc488416eefb71bb59868d58ad1ctree | snapshot
parent10c020f0e5f2e780be65fe20d59c52a2a84993f6commit | diff
net/tls: fix a potential security hole that bypasses signature verification

This commit fixes a critical issue about ECDH_ANON key-exchange. When
MBEDTLS_KEY_EXCHANGE_ECDH_ANON_ENABLED is enabled, TLS client could
bypass the signature verification and it would makes security hole.

Change-Id: I6123552ab3e899919a6fc046a5c4600a3d1b9ca2
Signed-off-by: Junyeon LEE <junyeon2.lee@samsung.com>
os/net/tls/ssl_cli.c diff | blob | history
Domain: TinyAra / TinyAra Platform;