Improve behaviour on fatal errors If we didn't walk the whole chain, then there may be any kind of errors in the part of the chain we didn't check, so setting all flags looks like the safe thing to do.

commit: 489939f829ad09dae72731729ea36240f630e49f [log] [tgz]
author: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Thu Jun 22 12:19:27 2017 +0200
committer: Simon Butcher <simon.butcher@arm.com> Fri Jul 28 12:20:47 2017 +0100
tree: 02fab7726638516312b477bf860c1969a86688f9
parent: 4770dbc913025cfcb36fad6e2dec124455f97526 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 73da67a..dee13ea 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -25,6 +25,11 @@
      to bypass the version verification check. Found by Peng Li/Yueh-Hsun Lin,
      KNOX Security, Samsung Research America
 
+Changes
+   * Certificate verification functions now set flags to -1 in case the full
+     chain was not verified due to an internal error (including in the verify
+     callback) or chain length limitations.
+
 = mbed TLS 2.1.8 branch released 2017-06-21
 
 Security
commit	489939f829ad09dae72731729ea36240f630e49f	[log] [tgz]
author	Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	Thu Jun 22 12:19:27 2017 +0200
committer	Simon Butcher <simon.butcher@arm.com>	Fri Jul 28 12:20:47 2017 +0100
tree	02fab7726638516312b477bf860c1969a86688f9
parent	4770dbc913025cfcb36fad6e2dec124455f97526 [diff] [blame]