ChangeLog - OpenGrok cross reference for /optee_os/lib/libmbedtls/mbedtls/ChangeLog

417    * Fixed a regression introduced in 3.6.0 where context-specific certificate
420      upgraded to TLS 1.3. Fixed by adding support for context-specific verify
468      PK context.
552      used as random number generator function (f_rng) and context (p_rng) in
555      mbedtls_pk_copy_public_from_psa() provide ways to set up a PK context
591      when an SSL context is reset with the mbedtls_ssl_session_reset() API.
645      the RSA context. Before, if MBEDTLS_USE_PSA_CRYPTO was enabled and the
646      RSA context was configured for PKCS#1 v2.1 (PSS/OAEP), the sign/verify
657      an opaque RSA context and specifying MBEDTLS_PK_RSASSA_PSS as key type.
1367    * Fix mbedtls_ctr_drbg_free() on an initialized but unseeded context. When
1369      uninitialized context.
1465    * Add accessor to obtain ciphersuite id from ssl context.
1468    * Add accessor to get the raw buffer pointer from a PEM context.
1473      an SSL context.
1474    * Add a function to access the protocol version from an SSL context in a
1477      information that was used to set up a message digest context.
1515      field within mbedtls_x509_crt context, as requested in #5585.
1991      after initializing the context. mbedtls_rsa_set_padding() now returns an
1995    * Instead of accessing the len field of a DHM context, which is no longer
2020      context are now connection-specific.
2038      SSL context.
2171      modules had undocumented constraints on their context types. These
2176      query the size of the modulus in a Diffie-Hellman context.
2178      Diffie-Hellman context.
2236      defined to specific values.  If the code is used in a context
2758      dump of an SSL context saved with mbedtls_ssl_context_save().
2823    * Update iv and len context pointers manually when reallocating buffers
3090      feature can be used alongside Connection ID and SSL context serialisation.
3265      provided SSL context is unset.
3851      applications to wait for a network context to become ready before reading
3987      In the context of SSL, this resulted in handshake failure. Reported by
4186      freeing an RSA context and several MPI's without proper initialization
4198      mbedtls_sha512_init() is called before operating on the relevant context
4199      structure. Do not assume that zeroizing a context is a correct way to
4201    * In mbedtls_entropy_free(), properly free the message digest context.
4242      and the context struct mbedtls_platform_context to perform
4683      Found by Guido Vranken, Intelworks. Not exploitable remotely in the context
4738      handshake with the same context. (See RFC 6347 section 4.2.8.)
4821      should generally be the first function called on this context after init:
4843    * mbedtls_ssl_conf_session_cache() changed prototype (only one context
5014      once on the same context.
5858    * Added p_hw_data to ssl_context for context specific hardware acceleration
6207    * Added reading of DHM context from memory and file
6278    * Added reset function for HMAC context as speed-up