Clarify the use of ECDSA API In the ecdsa.c sample application we don't use hashing, we use ecdsa directly on a buffer containing plain text. Although the text explains that it should be the message hash it still can be confusing. Any misunderstandings here are potentially very dangerous, because ECDSA truncates the message hash if necessary and this can lead to trivial signature forgeries if the API is misused and the message is passed directly to the function without hashing. This commit adds a hash computation step to the ecdsa.c sample application and clarification to the doxygen documentation of the ECDSA functions involved.

commit: 0a5154b8a1fe3d5588c68b3370fabbd8b80420df [log] [tgz]
author: Janos Follath <janos.follath@arm.com> Fri Mar 10 11:31:41 2017 +0000
committer: Janos Follath <janos.follath@arm.com> Fri Mar 10 11:31:41 2017 +0000
tree: 2660ee0cb76ea5831cf45c234b0a3640dbcd273e
parent: b5ba28cbead8172bf18273c313dd0b8ce241f1aa [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 88e2bc9..a63658b 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -1,5 +1,11 @@
 mbed TLS ChangeLog (Sorted per branch, date)
 
+Changes
+   * Clarify ECDSA documentation and improve the sample code to avoid
+     misunderstandings and potentially dangerous use of the API. Pointed out
+     by Jean-Philippe Aumasson.
+
+
 = mbed TLS x.x.x branch released xxxx-xx-xx
 
 Bugfix
commit	0a5154b8a1fe3d5588c68b3370fabbd8b80420df	[log] [tgz]
author	Janos Follath <janos.follath@arm.com>	Fri Mar 10 11:31:41 2017 +0000
committer	Janos Follath <janos.follath@arm.com>	Fri Mar 10 11:31:41 2017 +0000
tree	2660ee0cb76ea5831cf45c234b0a3640dbcd273e
parent	b5ba28cbead8172bf18273c313dd0b8ce241f1aa [diff] [blame]