mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-01-10 00:43:36 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
aad8dbd38d
mbedtls/ChangeLog.d/improve_x509_cert_writing_serial_number_management.txt
Valerio Setti 903b6aa87d Changelog: list changes in x509write_crt module 
Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2023-01-12 17:01:44 +01:00

11 lines
488 B
Plaintext
Raw Blame History

Bugfix
* mbedtls_x509write_crt_set_serial() now explicitly rejects serial numbers
whose binary representation is longer than 20 bytes. This was already
forbidden by the standard (RFC5280 - section 4.1.2.2) and now it's being
enforced also at code level.
New deprecations
* mbedtls_x509write_crt_set_serial() is now being deprecated in favor of
mbedtls_x509write_crt_set_serial_new(). The goal here is to remove any
direct dependency of X509 from BIGNUM_C.
Reference in New Issue View Git Blame Copy Permalink