ChangeLog - OpenGrok cross reference for /optee_os/lib/libmbedtls/mbedtls/ChangeLog

428      When migrating from Mbed TLS 2.x, if you had a custom config.h that
451    * Rename the MBEDTLS_SHA256_USE_A64_CRYPTO_xxx config options to
526    * Add pc files for pkg-config, e.g.:
527      pkg-config --cflags --libs (mbedtls|mbedcrypto|mbedx509)
1139      be toggled with config.py.
1939    * Remove the MBEDTLS_TEST_NULL_ENTROPY config option. Fixes #4388.
1951    * Replace MBEDTLS_SHA512_NO_SHA384 config option with MBEDTLS_SHA384_C.
1952      This separates config option enabling the SHA384 algorithm from option
1955      This separates config option enabling the SHA224 algorithm from option
2111    * Remove the MBEDTLS_SSL_DTLS_BADMAC_LIMIT config.h option. Fixes #4403.
2126    * Remove MBEDTLS_ECDH_LEGACY_CONTEXT config option since this was purely for
2131    * Remove the  MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION config.h
2135      MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE config.h options and let the code
2148      MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT config option. Users are better served by
2261    * Remove outdated check-config.h check that prevented implementing the
2310    * Remove configs/config-psa-crypto.h, which no longer had any intended
2330    * Add CMake package config generation for CMake projects consuming Mbed TLS.
2331    * config.h has been split into build_info.h and mbedtls_config.h
2337    * A config file version symbol, MBEDTLS_CONFIG_VERSION was introduced.
2339      the config file in a way that's compatible with the config file format
2878      happen when MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE was enabled in config.h
3165    * Make it easier to define MBEDTLS_PARAM_FAILED as assert (which config.h
3323      (e.g. config.h.bak). Fixed by Peter Kolbus (Garmin) #2407.
3360    * Add a new config.h option of MBEDTLS_CHECK_PARAMS that enables validation
3366      disabled by default. See its API documentation in config.h for additional
3618      in mbedtls/config.h.
3796      (RFC 6209). Disabled by default, see MBEDTLS_ARIA_C in config.h
3952      config.h. Found by Andreas Walz (ivESK, Offenburg University of
4043      config and the application data buffer passed to mbedtls_ssl_write
4083      MBEDTLS_ECDSDA_GENKEY_AT in config.h.
4089      MBEDTLS_ECDH_GEN_PUBLIC_ALT in config.h.
4291    * Added config.h option MBEDTLS_NO_UDBL_DIVISION, to prevent the use of
4298      config-no-entropy.h to reduce the RAM footprint.
4424      x509_csr.c that are reported when building mbed TLS with a config.h that
4489    * Added a configuration file config-no-entropy.h that configures the subset of
4491    * Added the macro MBEDTLS_ENTROPY_MIN_HARDWARE in config.h. This allows users
4571      ECDSA was disabled in config.h . The leak didn't occur by default.
4710    * Fixed paths for check_config.h in example config files. (Found by bachp)
4734      (MBEDTLS_SSL_DTLS_HELLO_VERIFY defined in config.h, and usable cookie
4781      end of the default config.h by defining MBEDTLS_USER_CONFIG_FILE on the
4883    * Change SSL_DISABLE_RENEGOTIATION config.h flag to SSL_RENEGOTIATION
4884      (support for renegotiation now needs explicit enabling in config.h).
4886      in config.h
4911    * Removed helper script active-config.pl
4937      custom config.h
5003    * Add config flag POLARSSL_DEPRECATED_WARNING (off by default) to produce
5005    * Add config flag POLARSSL_DEPRECATED_REMOVED (off by default) to produce
5038      POLARSSL_SSL_SSESSION_TICKETS where both enabled in config.h (introduced
5129      switch back to random with POLARSSL_SSL_AEAD_RANDOM_IV in config.h).
5202    * Add example config.h for PSK with CCM, optimized for low RAM usage.
5203    * Optimize for RAM usage in example config.h for NSA Suite B profile.
5208    * Add SSL_CIPHERSUITES config.h flag to allow specifying a list of
5496    * config.h is more script-friendly
5756    * Centralized module option values in config.h to allow user-defined
5766      config.h)