ChangeLog: Updated the entry for tls-hs-defragmentation Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>

commit: eddbb5a829e4b22e21a02ffe62eb7c00b4165d02 [log] [tgz]
author: Minos Galanakis <minos.galanakis@arm.com> Wed Feb 19 11:37:39 2025 +0000
committer: Minos Galanakis <minos.galanakis@arm.com> Mon Feb 24 09:16:06 2025 +0000
tree: 8240eaeadec7f59b32cc5ce55b8f5a210950b9a3
parent: d708a63857c3fa0462ca61432400693dd08b3b2b [diff]
diff --git a/ChangeLog.d/tls-hs-defrag-in.txt b/ChangeLog.d/tls-hs-defrag-in.txt
index 55103c9..4fd4a4e 100644
--- a/ChangeLog.d/tls-hs-defrag-in.txt
+++ b/ChangeLog.d/tls-hs-defrag-in.txt

@@ -3,3 +3,10 @@
      by the spec. Lack of support was causing handshake failures with some
      servers, especially with TLS 1.3 in practice (though both protocol
      version could be affected in principle, and both are fixed now).
+     The initial fragment for each handshake message must be at least 4 bytes.
+
+     Server-side, defragmentation of the ClientHello message is only
+     supported if the server accepts TLS 1.3 (regardless of whether the
+     ClientHello is 1.3 or 1.2). That is, servers configured (either
+     at compile time or at runtime) to only accept TLS 1.2 will
+     still fail the handshake if the ClientHello message is fragmented.
commit	eddbb5a829e4b22e21a02ffe62eb7c00b4165d02	[log] [tgz]
author	Minos Galanakis <minos.galanakis@arm.com>	Wed Feb 19 11:37:39 2025 +0000
committer	Minos Galanakis <minos.galanakis@arm.com>	Mon Feb 24 09:16:06 2025 +0000
tree	8240eaeadec7f59b32cc5ce55b8f5a210950b9a3
parent	d708a63857c3fa0462ca61432400693dd08b3b2b [diff]