ARMmbed/mbedtls
1
0
Fork 0
mirror of https://github.com/ARMmbed/mbedtls.git synced 2025-05-22 08:23:44 +08:00
Code Issues Releases Wiki Activity

More wording improvements

Browse Source 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
This commit is contained in:
Gilles Peskine 2022-11-30 12:07:16 +01:00
parent afb15206b5
commit cf0074b2c8
4 changed files with 11 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
ChangeLog.d/add-rsa-pss-rsae-support-for-tls12.txt
View File

@ -2,7 +2,7 @@ Features
* Support rsa_pss_rsae_* signature algorithms in TLS 1.2. * Support rsa_pss_rsae_* signature algorithms in TLS 1.2.
Bugfix Bugfix
* Fix an interoperability failure between an Mbed TLS client with both * Fix an interoperability failure between an Mbed TLS client with both
TLS 1.2 and TLS 1.3 support, and a TLS 1.2 server such as GnuTLS or TLS 1.2 and TLS 1.3 support, and a TLS 1.2 server that supports
OpenSSL that supports rsa_pss_rsae_* signature algorithms. This failed rsa_pss_rsae_* signature algorithms. This failed because Mbed TLS
because Mbed TLS supported PSS only in TLS 1.3, but advertised support advertised support for PSS in both TLS 1.2 and 1.3, but only
in TLS 1.2 as well. actually supported PSS in TLS 1.3.

6
ChangeLog.d/dtls-connection-id.txt
View File

@ -9,9 +9,9 @@ Default behavior changes
It is now no longer experimental, and implements the final version from It is now no longer experimental, and implements the final version from
RFC 9146, which is not interoperable with the draft-05 version. RFC 9146, which is not interoperable with the draft-05 version.
If you need to communicate with peers that use earlier versions of If you need to communicate with peers that use earlier versions of
Mbed TLS, you need to define MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT to 1, Mbed TLS, then you need to define MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT
but then you won't be able to communicate with peers that use the standard to 1, but then you won't be able to communicate with peers that use the
(non-draft) version. standard (non-draft) version.
If you need to interoperate with both classes of peers with the If you need to interoperate with both classes of peers with the
same build of Mbed TLS, please let us know about your situation on the same build of Mbed TLS, please let us know about your situation on the
mailing list or GitHub. mailing list or GitHub.

2
ChangeLog.d/fix-tls12server-sent-sigalgs.txt
View File

@ -1,5 +1,5 @@
Bugfix Bugfix
* Fix a bug whereby the the list of signature algorithms sent as part of * Fix a bug whereby the list of signature algorithms sent as part of
the TLS 1.2 server certificate request would get corrupted, meaning the the TLS 1.2 server certificate request would get corrupted, meaning the
first algorithm would not get sent and an entry consisting of two random first algorithm would not get sent and an entry consisting of two random
bytes would be sent instead. Found by Serban Bejan and Dudek Sebastian. bytes would be sent instead. Found by Serban Bejan and Dudek Sebastian.

6
ChangeLog.d/fix_cmake_gen_files.txt
View File

@ -1,4 +1,4 @@
Bugfix Bugfix
* Fix an issue with CMake builds in releases with GEN_FILES turned off, * Fix an issue with in-tree CMake builds in releases with GEN_FILES
whereby missing generated files could be turned into symlinks to turned off: if a shipped file was missing from the working directory,
themselves. it could be turned into a symbolic link to itself.