Merge pull request #3011 from Patater/dev/jp-bennett/development-2.7 Backport 2.7: Allow loading symlinked certificates

commit: 130e1364393f92df5bd1377b9eeab4c388cf509b [log] [tgz]
author: Jaeden Amero <jaeden.amero@arm.com> Tue Jan 28 15:55:41 2020 +0000
committer: GitHub <noreply@github.com> Tue Jan 28 15:55:41 2020 +0000
tree: 41b684c20521ff3c9bcf433a469bafc89eef44c0
parent: 071b3e170e6a10ca523f9ed561394584d7a982f4 [diff]
parent: 7e6931d6819fa9e13bd459fa642fcbbe61e4ce2e [diff]
diff --git a/ChangeLog b/ChangeLog
index c6ec52e..c1affa6 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -1,5 +1,11 @@
 mbed TLS ChangeLog (Sorted per branch, date)
 
+= mbed TLS 2.7.X branch released XXXX-XX-XX
+
+Bugfix
+   * Allow loading symlinked certificates. Fixes #3005. Reported and fixed
+     by Jonathan Bennett <JBennett@incomsystems.biz> via #3008.
+
 = mbed TLS 2.7.13 branch released 2020-01-15
 
 Security

diff --git a/library/x509_crt.c b/library/x509_crt.c
index 3ad53a7..55c7ea1 100644
--- a/library/x509_crt.c
+++ b/library/x509_crt.c

@@ -1207,7 +1207,7 @@
             goto cleanup;
         }
 
-        if( !S_ISREG( sb.st_mode ) )
+        if( !( S_ISREG( sb.st_mode ) || S_ISLNK( sb.st_mode ) ) )
             continue;
 
         // Ignore parse errors
commit	130e1364393f92df5bd1377b9eeab4c388cf509b	[log] [tgz]
author	Jaeden Amero <jaeden.amero@arm.com>	Tue Jan 28 15:55:41 2020 +0000
committer	GitHub <noreply@github.com>	Tue Jan 28 15:55:41 2020 +0000
tree	41b684c20521ff3c9bcf433a469bafc89eef44c0
parent	071b3e170e6a10ca523f9ed561394584d7a982f4 [diff]
parent	7e6931d6819fa9e13bd459fa642fcbbe61e4ce2e [diff]