xref: /hypervisor/lib/crypto/mbedtls/ChangeLog

73      MBEDTLS_CIPHER_NULL_CIPHER is enabled. Found by TrinityTonic in #1719.
257      MBEDTLS_ASN1_PARSE_C is not enabled. This allows the use of PBKDF2
336      is not enabled. Set MBEDTLS_SSL_MIN_MAJOR_VERSION
373      extension. When the truncated HMAC extension is enabled and CBC is used,
387      default enabled) maximum fragment length extension is disabled in the
652      The issue could only happen client-side with renegotiation enabled.
848      enabled unless others were also present. Found by David Fernandez. #428
873    * Fix compilation without MBEDTLS_SELF_TEST enabled.
915    * Fix memory leak that occured only when ECJPAKE was enabled and ECDHE and
1253    * Configuration option POLARSSL_HAVE_IPV6 was removed (always enabled).
1281      enabled in the default configuration, this is only noticeable if using a
1315      thread-safe if MBEDTLS_THREADING_C is enabled.
1356    * Fix bug in entropy.c when THREADING_C is also enabled that caused
1383      POLARSSL_SSL_SSESSION_TICKETS where both enabled in config.h (introduced
1415      (only possible if POLARSSL_MEMORY_BUFFER_ALLOC_C is enabled, which it is
1466      key exchanges enabled needs certificates. This fixes a possible interop
1734    * ssl_cache was creating entries when max_entries=0 if TIMING_C was enabled.
1922      client to crash the server remotely if client authentication is enabled
1965      key exchanges enabled needs certificates. This fixes a possible interop
2176      disabled by default and can be enabled with POLARSSL_SSL_DEBUG_ALL
2327      disabled by default and can be enabled with POLARSSL_SSL_DEBUG_ALL

Last Index update Fri Aug 22 02:31:50 CST 2025