2021-04-15 16:48:32 +02:00
|
|
|
API changes
|
|
|
|
* The interface of the GCM module has changed to remove restrictions on
|
|
|
|
how the input to multipart operations is broken down. mbedtls_gcm_finish()
|
|
|
|
now takes an extra output parameter for the last partial output block.
|
2021-04-15 17:22:35 +02:00
|
|
|
mbedtls_gcm_update() now takes extra parameters for the output length.
|
2021-04-15 16:48:32 +02:00
|
|
|
The software implementation always produces the full output at each
|
|
|
|
call to mbedtls_gcm_update(), but alternative implementations activated
|
|
|
|
by MBEDTLS_GCM_ALT may delay partial blocks to the next call to
|
2021-04-15 18:32:23 +02:00
|
|
|
mbedtls_gcm_update() or mbedtls_gcm_finish(). Furthermore, applications
|
|
|
|
no longer pass the associated data to mbedtls_gcm_starts(), but to the
|
|
|
|
new function mbedtls_gcm_update_ad().
|
2021-04-15 16:48:32 +02:00
|
|
|
These changes are backward compatible for users of the cipher API.
|
|
|
|
|
2021-04-13 16:09:32 +02:00
|
|
|
Features
|
|
|
|
* The multi-part GCM interface (mbedtls_gcm_update() or
|
|
|
|
mbedtls_cipher_update()) no longer requires the size of partial inputs to
|
|
|
|
be a multiple of 16.
|
2021-06-07 14:23:24 +02:00
|
|
|
* The multi-part GCM interface now supports chunked associated data through
|
|
|
|
multiple calls to mbedtls_gcm_update_ad().
|