Improve documentation of MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT option Explain more clearly when this option should be used and which versions of Mbed TLS build on the non-compliant implementation.

commit: adb30b945390fb57292611d46bc37a786fd8b49a [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Tue Nov 21 17:20:17 2017 +0000
committer: Hanno Becker <hanno.becker@arm.com> Fri Dec 01 10:20:44 2017 +0000
tree: 119b609e328e8bd3e9c8be4001d172f1e2e5e74e
parent: 8e75b6ce568e00021e5c1d0a8cecba63feaebaf1 [diff] [blame]
diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index f0cc95f..c72ee1d 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c

@@ -719,7 +719,7 @@
 
 #if defined(MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT)
             /* Fall back to old, non-compliant version of the truncated
-             * HMAC implementation which also truncates the key. */
+             * HMAC implementation which also truncates the key (pre 2.1.10) */
             mac_key_len = transform->maclen;
 #endif
         }
commit	adb30b945390fb57292611d46bc37a786fd8b49a	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Tue Nov 21 17:20:17 2017 +0000
committer	Hanno Becker <hanno.becker@arm.com>	Fri Dec 01 10:20:44 2017 +0000
tree	119b609e328e8bd3e9c8be4001d172f1e2e5e74e
parent	8e75b6ce568e00021e5c1d0a8cecba63feaebaf1 [diff] [blame]