From 1e1c23d768a83827d6a0e86d363fd87c1bebcb7f Mon Sep 17 00:00:00 2001 From: Hanno Becker Date: Fri, 11 Jun 2021 15:40:16 +0100 Subject: [PATCH] Improve ChangeLog wording for key export Signed-off-by: Hanno Becker --- ChangeLog.d/key-export.txt | 19 ++++++++----------- 1 file changed, 8 insertions(+), 11 deletions(-) diff --git a/ChangeLog.d/key-export.txt b/ChangeLog.d/key-export.txt index 10d8c89913..2fc01a4c52 100644 --- a/ChangeLog.d/key-export.txt +++ b/ChangeLog.d/key-export.txt @@ -1,13 +1,10 @@ API changes * mbedtls_ssl_conf_export_keys_ext_cb() and - mbedtls_ssl_conf_export_keys_cb() have been removed - and replaced by a new API - mbedtls_ssl_set_export_keys_cb(). - * The signature of key export callbacks configured via - mbedtls_ssl_set_export_keys_cb() is different from that - of the previous mbedtls_ssl_conf_export_keys_cb(): First, - raw keys and IVs are no longer exported. Further, callbacks - now receive an additional parameter indicating the type - of secret that's being exported, paving the way for the - larger number of secrets in TLS 1.3. Finally, the key export - callback and context are now connection-specific. + mbedtls_ssl_conf_export_keys_cb() have been removed and + replaced by a new API mbedtls_ssl_set_export_keys_cb(). + Raw keys and IVs are no longer passed to the callback. + Further, callbacks now receive an additional parameter + indicating the type of secret that's being exported, + paving the way for the larger number of secrets + in TLS 1.3. Finally, the key export callback and + context are now connection-specific.