mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-01-30 06:33:06 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Consolidate ChangeLog entries about CIPHER_C

Browse Source 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
This commit is contained in:
Manuel Pégourié-Gonnard 2024-01-08 10:38:51 +01:00
parent 4aad0ff510
commit 729cf89704
4 changed files with 9 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
ChangeLog.d/8060.txt
View File

@ -1,4 +0,0 @@
Features
* The CCM and GCM modules no longer depend on MBEDTLS_CIPHER_C. People who
use CCM and GCM but don't need the Cipher API can now disable
MBEDTLS_CIPHER_C in order to save code size.

8
ChangeLog.d/8357.txt
View File

@ -1,8 +0,0 @@
Features
* It is now possible to have AEADs support (CCM, GCM and ChaChaPoly) without
MBEDTLS_CIPHER_C. This holds both for the builtin suport (MBEDTLS_CCM_C,
MBEDTLS_GCM_C and MBEDTLS_CHACHAPOLY_C) as well as the PSA one
(PSA_WANT_ALG_CCM, PSA_WANT_ALG_GCM, PSA_WANT_ALG_CHACHA20_POLY1305).
On the PSA side this means that it is possible to enable
MBEDTLS_PSA_CRYPTO_C without MBEDTLS_CIPHER_C if none of the
non-authenticated ciphers is enabled.

2
ChangeLog.d/8358.txt
View File

@ -2,8 +2,6 @@ Features
* If a cipher or AEAD mechanism has a PSA driver, you can now build the
library without the corresponding built-in implementation. See
docs/driver-only-builds.md for full details and current limitations.
* It is possible to disable MBEDTLS_CIPHER_C in some circumstances, please
see docs/driver-only-builds.md for full details and current limitations.
* The CTR_DRBG module will now use AES from a PSA driver if MBEDTLS_AES_C is
disabled. This requires PSA_WANT_ALG_ECB_NO_PADDING in addition to
MBEDTLS_PSA_CRYPTO_C and PSA_WANT_KEY_TYPE_AES.

9
ChangeLog.d/no-cipher.txt Normal file
View File

@ -0,0 +1,9 @@
Features
* Fewer modules depend on MBEDTLS_CIPHER_C, making it possible to save code
size by disabling it in more circumstances. In particular, the CCM and
GCM modules no longer depends on MBEDTLS_CIPHER_C. Also,
MBEDTLS_PSA_CRYPTO can now be enabled without MBEDTLS_CIPHER_C if all
unauthenticated (non-AEAD) ciphers are disabled, or if they're all
fully provided by drivers. See docs/driver-only-builds.md for full
details and current limitations; in particular, NIST_KW and PKCS5/PKCS12
decryption still unconditionally depend on MBEDTLS_CIPHER_C.