pem: fix valid data length returned by mbedtls_pem_read_buffer() ctx->buflen now returns the amount of valid data in ctx->buf. Unencrypted buffers were already ok, but encrypted ones were used to return the length of the encrypted buffer, not the unencrypted one. This commit fix this behavior for encrypted buffers. Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>

commit: 2653e92a578fbe027579150b8c94f2a5d36baf48 [log] [tgz]
author: Valerio Setti <valerio.setti@nordicsemi.no> Thu Feb 08 17:51:00 2024 +0100
committer: Valerio Setti <valerio.setti@nordicsemi.no> Fri Feb 09 06:42:18 2024 +0100
tree: 23d97c16988f0320d9db610ea8fe0a469700b55c
parent: b1f6d2ad6fa2621772d35bda1835d8b0e1fa1d02 [diff]
diff --git a/include/mbedtls/pem.h b/include/mbedtls/pem.h
index cc617a9..3c6a28d 100644
--- a/include/mbedtls/pem.h
+++ b/include/mbedtls/pem.h

@@ -73,11 +73,11 @@
  * \param data      source data to look in (must be nul-terminated)
  * \param pwd       password for decryption (can be NULL)
  * \param pwdlen    length of password
- * \param use_len   destination for total length used (set after header is
- *                  correctly read, so unless you get
+ * \param use_len   destination for total length used from data buffer. It is
+ *                  set after header is correctly read, so unless you get
  *                  MBEDTLS_ERR_PEM_BAD_INPUT_DATA or
  *                  MBEDTLS_ERR_PEM_NO_HEADER_FOOTER_PRESENT, use_len is
- *                  the length to skip)
+ *                  the length to skip.
  *
  * \note            Attempts to check password correctness by verifying if
  *                  the decrypted text starts with an ASN.1 sequence of
commit	2653e92a578fbe027579150b8c94f2a5d36baf48	[log] [tgz]
author	Valerio Setti <valerio.setti@nordicsemi.no>	Thu Feb 08 17:51:00 2024 +0100
committer	Valerio Setti <valerio.setti@nordicsemi.no>	Fri Feb 09 06:42:18 2024 +0100
tree	23d97c16988f0320d9db610ea8fe0a469700b55c
parent	b1f6d2ad6fa2621772d35bda1835d8b0e1fa1d02 [diff]