Merge remote-tracking branch 'origin/pr/2463' into development
* origin/pr/2463:
Fix a rebase error
Wrap lines at 80 columns
Add NIST keywrap as a cipher mode
Fix errors in AEAD test function
diff --git a/ChangeLog b/ChangeLog
index b7ee43a..3a83ed7 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -5,6 +5,8 @@
Features
* Add the Any Policy certificate policy oid, as defined in
rfc 5280 section 4.2.1.4.
+ * It is now possible to use NIST key wrap mode via the mbedtls_cipher API.
+ Contributed by Jack Lloyd and Fortanix Inc.
Bugfix
* Fix private key DER output in the key_app_writer example. File contents
@@ -15,6 +17,9 @@
* Reduce stack usage of hkdf tests. Fixes #2195.
* Fix 1-byte buffer overflow in mbedtls_mpi_write_string() when
used with negative inputs. Found by Guido Vranken in #2404.
+ * Fix bugs in the AEAD test suite which would be exposed by ciphers which
+ either used both encrypt and decrypt key schedules, or which perform padding.
+ GCM and CCM were not affected. Fixed by Jack Lloyd.
Changes
* Server's RSA certificate in certs.c was SHA-1 signed. In the default