From 22a191199df8487ef1470785529c16d187802310 Mon Sep 17 00:00:00 2001
From: Gilles Peskine <Gilles.Peskine@arm.com>
Date: Mon, 7 Dec 2020 14:26:07 +0100
Subject: [PATCH] NIST_KW in cipher: credit the reporter

This issue was found by Guido Vranken's Cryptofuzz running on the
OSS-Fuzz platform.

Fix #3665

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
---
 ChangeLog.d/cipher-auth-crypt-nist-kw.txt | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/ChangeLog.d/cipher-auth-crypt-nist-kw.txt b/ChangeLog.d/cipher-auth-crypt-nist-kw.txt
index 63519a126..fd18e859a 100644
--- a/ChangeLog.d/cipher-auth-crypt-nist-kw.txt
+++ b/ChangeLog.d/cipher-auth-crypt-nist-kw.txt
@@ -3,7 +3,8 @@ API changes
      mbedtls_cipher_auth_decrypt() no longer accept NIST_KW contexts,
      as they have no way to check if the output buffer is large enough.
      Please use mbedtls_cipher_auth_encrypt_ext() and
-     mbedtls_cipher_auth_decrypt_ext() instead.
+     mbedtls_cipher_auth_decrypt_ext() instead. Credit to OSS-Fuzz and
+     Cryptofuzz. Fixes #3665.
 
 Security
    * The functions mbedtls_cipher_auth_encrypt() and