xref: /hypervisor/lib/crypto/mbedtls/ChangeLog

90      when the request_size argument is set to 0 as stated in the documentation.
551    * Extend cert_write example program by options to set the certificate version
575    * Fix authentication bypass in SSL/TLS: when authmode is set to optional,
579      triggered remotely from either side. (With authmode set to 'required'
600    * Certificate verification functions now set flags to -1 in case the full
603    * With authmode set to optional, the TLS handshake is now aborted if the
760    * Fix output certificate verification flags set by x509_crt_verify_top() when
763      set when the verification conditions are not met regardless of the cause.
1000      size/curve against the profile. Before that, there was no way to set a
1080      callbacks set with mbedtls_ssl_conf_dtls_cookies()), this will be
1186    * mbedtls_ssl_conf_ca_chain() lost its last argument (peer_cn), now set
1322    * With authmode set to SSL_VERIFY_OPTIONAL, verification of keyUsage and
1365      initialized but not set (found by pravic).
1455    * User set CFLAGS were ignored by Cmake with gcc (introduced in 1.3.9, found
1469    * On a 0-length input, base64_encode() did not correctly set output length
1481      with a suitable (extended)KeyUsage or curve or no PSK set.
1680    * dhm_parse_dhm() (hence dhm_parse_dhmfile()) did not set dhm->len.
1691    * Option to set the Curve preference order (disabled by default)
1888      dynamically set (Better support for hardware acceleration)
1968    * On a 0-length input, base64_encode() did not correctly set output length
2161      POLARSSL_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO is set
2392      SSL contexts without needing to set all non-connection-specific
2798     * Replaced realloc with malloc in mpi_grow(), and set
2851       version was not properly set), thanks to Didier Rebeix

Last Index update Fri Aug 22 02:31:50 CST 2025