ChangeLog - OpenGrok cross reference for /optee_os/lib/libmbedtls/mbedtls/ChangeLog

374    * Fixed a regression introduced in 3.6.0 where context-specific certificate
377      upgraded to TLS 1.3. Fixed by adding support for context-specific verify
425      PK context.
509      used as random number generator function (f_rng) and context (p_rng) in
512      mbedtls_pk_copy_public_from_psa() provide ways to set up a PK context
548      when an SSL context is reset with the mbedtls_ssl_session_reset() API.
602      the RSA context. Before, if MBEDTLS_USE_PSA_CRYPTO was enabled and the
603      RSA context was configured for PKCS#1 v2.1 (PSS/OAEP), the sign/verify
614      an opaque RSA context and specifying MBEDTLS_PK_RSASSA_PSS as key type.
1324    * Fix mbedtls_ctr_drbg_free() on an initialized but unseeded context. When
1326      uninitialized context.
1422    * Add accessor to obtain ciphersuite id from ssl context.
1425    * Add accessor to get the raw buffer pointer from a PEM context.
1430      an SSL context.
1431    * Add a function to access the protocol version from an SSL context in a
1434      information that was used to set up a message digest context.
1472      field within mbedtls_x509_crt context, as requested in #5585.
1948      after initializing the context. mbedtls_rsa_set_padding() now returns an
1952    * Instead of accessing the len field of a DHM context, which is no longer
1977      context are now connection-specific.
1995      SSL context.
2128      modules had undocumented constraints on their context types. These
2133      query the size of the modulus in a Diffie-Hellman context.
2135      Diffie-Hellman context.
2193      defined to specific values.  If the code is used in a context
2715      dump of an SSL context saved with mbedtls_ssl_context_save().
2780    * Update iv and len context pointers manually when reallocating buffers
3047      feature can be used alongside Connection ID and SSL context serialisation.
3222      provided SSL context is unset.
3808      applications to wait for a network context to become ready before reading
3944      In the context of SSL, this resulted in handshake failure. Reported by
4143      freeing an RSA context and several MPI's without proper initialization
4155      mbedtls_sha512_init() is called before operating on the relevant context
4156      structure. Do not assume that zeroizing a context is a correct way to
4158    * In mbedtls_entropy_free(), properly free the message digest context.
4199      and the context struct mbedtls_platform_context to perform
4640      Found by Guido Vranken, Intelworks. Not exploitable remotely in the context
4695      handshake with the same context. (See RFC 6347 section 4.2.8.)
4778      should generally be the first function called on this context after init:
4800    * mbedtls_ssl_conf_session_cache() changed prototype (only one context
4971      once on the same context.
5815    * Added p_hw_data to ssl_context for context specific hardware acceleration
6164    * Added reading of DHM context from memory and file
6235    * Added reset function for HMAC context as speed-up