Correctly handle leap year in x509_date_is_valid() This patch ensures that invalid dates on leap years with 100 or 400 years intervals are handled correctly.

commit: 7c02d13746e8cefd9a7553f8ae4fc67d03b14e2d [log] [tgz]
author: Andres AG <andres.amayagarcia@arm.com> Mon Nov 21 15:38:02 2016 +0000
committer: Simon Butcher <simon.butcher@arm.com> Thu Oct 12 21:08:46 2017 +0100
tree: 4189a0a74de686b757c331b01db0807ddb01e18e
parent: ea111c55016f74a0334445678a02226266590d58 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 9e025da..6a1be98 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -11,6 +11,9 @@
    * Parse signature algorithm extension when renegotiating. Previously,
      renegotiated handshakes would only accept signatures using SHA-1
      regardless of the peer's preferences, or fail if SHA-1 was disabled.
+   * Fix leap year calculation in x509_date_is_valid() to ensure that invalid
+     dates on leap years with 100 and 400 intervals are handled correctly. Found
+     by Nicholas Wilson. #694
 
 = mbed TLS 1.3.21 branch released 2017-08-10
commit	7c02d13746e8cefd9a7553f8ae4fc67d03b14e2d	[log] [tgz]
author	Andres AG <andres.amayagarcia@arm.com>	Mon Nov 21 15:38:02 2016 +0000
committer	Simon Butcher <simon.butcher@arm.com>	Thu Oct 12 21:08:46 2017 +0100
tree	4189a0a74de686b757c331b01db0807ddb01e18e
parent	ea111c55016f74a0334445678a02226266590d58 [diff] [blame]