Merge branch 'mbedtls-1.3' into development * mbedtls-1.3: Mark unused constant as such Update ChangeLog for recent external bugfix Serious bug fix in entropy.c Fix memleak with repeated [gc]cm_setkey() fix minor bug in path_cnt checks Conflicts: include/mbedtls/cipher.h library/ccm.c library/entropy.c library/gcm.c library/x509_crt.c

commit: 0574bb0bdb6fdbd8ee159e2ed590754b71494841 [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Tue Jun 02 09:59:29 2015 +0100
committer: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Tue Jun 02 09:59:29 2015 +0100
tree: 7cfe886f3b85f8f30655c44d0309a96ce1f1280c
parent: 81abefd46c7c61463644545f50fc1d975f784d10 [diff] [blame]
parent: 6ca762495254e88f59713421d18c55b691bf6a60 [diff] [blame]
diff --git a/library/x509_crt.c b/library/x509_crt.c
index 8967337..3ecda04 100644
--- a/library/x509_crt.c
+++ b/library/x509_crt.c

@@ -1770,7 +1770,7 @@
 {
     int ret;
     uint32_t ca_flags = 0;
-    int check_path_cnt = path_cnt + 1;
+    int check_path_cnt;
     unsigned char hash[MBEDTLS_MD_MAX_SIZE];
     const mbedtls_md_info_t *md_info;
 
@@ -1801,8 +1801,10 @@
         if( x509_crt_check_parent( child, trust_ca, 1, path_cnt == 0 ) != 0 )
             continue;
 
+        check_path_cnt = path_cnt + 1;
+
         /*
-         * Reduce path_len to check against if top of the chain is
+         * Reduce check_path_cnt to check against if top of the chain is
          * the same as the trusted CA
          */
         if( child->subject_raw.len == trust_ca->subject_raw.len &&
commit	0574bb0bdb6fdbd8ee159e2ed590754b71494841	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Tue Jun 02 09:59:29 2015 +0100
committer	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Tue Jun 02 09:59:29 2015 +0100
tree	7cfe886f3b85f8f30655c44d0309a96ce1f1280c
parent	81abefd46c7c61463644545f50fc1d975f784d10 [diff] [blame]
parent	6ca762495254e88f59713421d18c55b691bf6a60 [diff] [blame]