Add TLS 1.3 change logs
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
This commit is contained in:
Ronald Cron
parent
2ba0d23c65
commit
08346434d2
1 changed files with 19 additions and 0 deletions
19
ChangeLog.d/tls13-misc-changelogs.txt
Normal file
19
ChangeLog.d/tls13-misc-changelogs.txt
Normal file
|
|
@ -0,0 +1,19 @@
|
|||
Bugfix
|
||||
* Fix a TLS 1.3 handshake failure when the first attempt to send the client
|
||||
Finished message on the network cannot be satisfied.
|
||||
|
||||
Features
|
||||
* Add support for authentication of TLS 1.3 clients by TLS 1.3 servers.
|
||||
* Add support for server HelloRetryRequest message. The TLS 1.3 client is
|
||||
now capable of negotiating another shared secret if the one sent in its
|
||||
first ClientHello was not suitable to the server.
|
||||
* Add support for TLS version negotiation. If both TLS 1.2 and TLS 1.3
|
||||
protocols are enabled in the build of Mbed TLS, the TLS client now
|
||||
negotiates TLS 1.3 or TLS 1.2 with TLS servers.
|
||||
* Enable building of Mbed TLS with TLS 1.3 protocol support but without TLS
|
||||
1.2 protocol support.
|
||||
* Mbed TLS provides an implementation of a TLS 1.3 server (ephemeral key
|
||||
establishment only). See docs/architecture/tls13-support.md for a
|
||||
description of the support. The MBEDTLS_SSL_PROTO_TLS1_3 and
|
||||
MBEDTLS_SSL_SRV_C configuration options control the enablement of the
|
||||
support.
|
||||
Loading…
Reference in a new issue