Add TLS 1.3 change logs
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
This commit is contained in:
parent
2ba0d23c65
commit
08346434d2
1 changed files with 19 additions and 0 deletions
19
ChangeLog.d/tls13-misc-changelogs.txt
Normal file
19
ChangeLog.d/tls13-misc-changelogs.txt
Normal file
|
@ -0,0 +1,19 @@
|
||||||
|
Bugfix
|
||||||
|
* Fix a TLS 1.3 handshake failure when the first attempt to send the client
|
||||||
|
Finished message on the network cannot be satisfied.
|
||||||
|
|
||||||
|
Features
|
||||||
|
* Add support for authentication of TLS 1.3 clients by TLS 1.3 servers.
|
||||||
|
* Add support for server HelloRetryRequest message. The TLS 1.3 client is
|
||||||
|
now capable of negotiating another shared secret if the one sent in its
|
||||||
|
first ClientHello was not suitable to the server.
|
||||||
|
* Add support for TLS version negotiation. If both TLS 1.2 and TLS 1.3
|
||||||
|
protocols are enabled in the build of Mbed TLS, the TLS client now
|
||||||
|
negotiates TLS 1.3 or TLS 1.2 with TLS servers.
|
||||||
|
* Enable building of Mbed TLS with TLS 1.3 protocol support but without TLS
|
||||||
|
1.2 protocol support.
|
||||||
|
* Mbed TLS provides an implementation of a TLS 1.3 server (ephemeral key
|
||||||
|
establishment only). See docs/architecture/tls13-support.md for a
|
||||||
|
description of the support. The MBEDTLS_SSL_PROTO_TLS1_3 and
|
||||||
|
MBEDTLS_SSL_SRV_C configuration options control the enablement of the
|
||||||
|
support.
|
Loading…
Reference in a new issue