From 31b40b3600eced75c5e8d7585d8ad510d770b26f Mon Sep 17 00:00:00 2001 From: Ronald Cron Date: Wed, 28 Aug 2024 09:31:06 +0200 Subject: [PATCH] Add change logs Signed-off-by: Ronald Cron --- ChangeLog.d/disable-new-session-tickets.txt | 13 +++++++++++++ 1 file changed, 13 insertions(+) create mode 100644 ChangeLog.d/disable-new-session-tickets.txt diff --git a/ChangeLog.d/disable-new-session-tickets.txt b/ChangeLog.d/disable-new-session-tickets.txt new file mode 100644 index 0000000000..664240b065 --- /dev/null +++ b/ChangeLog.d/disable-new-session-tickets.txt @@ -0,0 +1,13 @@ +Bugfix + * Fix TLS connection abortion in applications using an Mbed TLS client in + the default configuration connecting to a TLS 1.3 server sending tickets. + See the documentation of mbedtls_ssl_conf_enable_new_session_tickets() + for more information. + Fixes #8749. + +Changes + * By default, the handling of TLS 1.3 tickets by the Mbed TLS client is now + disabled at runtime. Applications that were using TLS 1.3 tickets + signalled by MBEDTLS_ERR_SSL_RECEIVED_NEW_SESSION_TICKET return values now + need to enable the handling of TLS 1.3 tickets through the new + mbedtls_ssl_conf_enable_new_session_tickets() API.