ChangeLog - OpenGrok cross reference for /optee_os/lib/libmbedtls/mbedtls/ChangeLog

385      When migrating from Mbed TLS 2.x, if you had a custom config.h that
408    * Rename the MBEDTLS_SHA256_USE_A64_CRYPTO_xxx config options to
483    * Add pc files for pkg-config, e.g.:
484      pkg-config --cflags --libs (mbedtls|mbedcrypto|mbedx509)
1096      be toggled with config.py.
1896    * Remove the MBEDTLS_TEST_NULL_ENTROPY config option. Fixes #4388.
1908    * Replace MBEDTLS_SHA512_NO_SHA384 config option with MBEDTLS_SHA384_C.
1909      This separates config option enabling the SHA384 algorithm from option
1912      This separates config option enabling the SHA224 algorithm from option
2068    * Remove the MBEDTLS_SSL_DTLS_BADMAC_LIMIT config.h option. Fixes #4403.
2083    * Remove MBEDTLS_ECDH_LEGACY_CONTEXT config option since this was purely for
2088    * Remove the  MBEDTLS_X509_ALLOW_UNSUPPORTED_CRITICAL_EXTENSION config.h
2092      MBEDTLS_X509_CHECK_EXTENDED_KEY_USAGE config.h options and let the code
2105      MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT config option. Users are better served by
2218    * Remove outdated check-config.h check that prevented implementing the
2267    * Remove configs/config-psa-crypto.h, which no longer had any intended
2287    * Add CMake package config generation for CMake projects consuming Mbed TLS.
2288    * config.h has been split into build_info.h and mbedtls_config.h
2294    * A config file version symbol, MBEDTLS_CONFIG_VERSION was introduced.
2296      the config file in a way that's compatible with the config file format
2835      happen when MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE was enabled in config.h
3122    * Make it easier to define MBEDTLS_PARAM_FAILED as assert (which config.h
3280      (e.g. config.h.bak). Fixed by Peter Kolbus (Garmin) #2407.
3317    * Add a new config.h option of MBEDTLS_CHECK_PARAMS that enables validation
3323      disabled by default. See its API documentation in config.h for additional
3575      in mbedtls/config.h.
3753      (RFC 6209). Disabled by default, see MBEDTLS_ARIA_C in config.h
3909      config.h. Found by Andreas Walz (ivESK, Offenburg University of
4000      config and the application data buffer passed to mbedtls_ssl_write
4040      MBEDTLS_ECDSDA_GENKEY_AT in config.h.
4046      MBEDTLS_ECDH_GEN_PUBLIC_ALT in config.h.
4248    * Added config.h option MBEDTLS_NO_UDBL_DIVISION, to prevent the use of
4255      config-no-entropy.h to reduce the RAM footprint.
4381      x509_csr.c that are reported when building mbed TLS with a config.h that
4446    * Added a configuration file config-no-entropy.h that configures the subset of
4448    * Added the macro MBEDTLS_ENTROPY_MIN_HARDWARE in config.h. This allows users
4528      ECDSA was disabled in config.h . The leak didn't occur by default.
4667    * Fixed paths for check_config.h in example config files. (Found by bachp)
4691      (MBEDTLS_SSL_DTLS_HELLO_VERIFY defined in config.h, and usable cookie
4738      end of the default config.h by defining MBEDTLS_USER_CONFIG_FILE on the
4840    * Change SSL_DISABLE_RENEGOTIATION config.h flag to SSL_RENEGOTIATION
4841      (support for renegotiation now needs explicit enabling in config.h).
4843      in config.h
4868    * Removed helper script active-config.pl
4894      custom config.h
4960    * Add config flag POLARSSL_DEPRECATED_WARNING (off by default) to produce
4962    * Add config flag POLARSSL_DEPRECATED_REMOVED (off by default) to produce
4995      POLARSSL_SSL_SSESSION_TICKETS where both enabled in config.h (introduced
5086      switch back to random with POLARSSL_SSL_AEAD_RANDOM_IV in config.h).
5159    * Add example config.h for PSK with CCM, optimized for low RAM usage.
5160    * Optimize for RAM usage in example config.h for NSA Suite B profile.
5165    * Add SSL_CIPHERSUITES config.h flag to allow specifying a list of
5453    * config.h is more script-friendly
5713    * Centralized module option values in config.h to allow user-defined
5723      config.h)