add changelog entry Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>

commit: 4dfbb2e7476d93f0f20cedc1a180be6cc51166d2 [log] [tgz]
author: Jerry Yu <jerry.h.yu@arm.com> Sun Apr 23 14:30:34 2023 +0800
committer: Jerry Yu <jerry.h.yu@arm.com> Wed Aug 02 17:44:01 2023 +0800
tree: 08ade227622a8d7e3899fd9b13e3f153eec82b51
parent: d76ded046c60aaabbc66661c6cbd9292cddc416d [diff]
diff --git a/ChangeLog.d/add-aes-hardware-only-option.txt b/ChangeLog.d/add-aes-hardware-only-option.txt
new file mode 100644
index 0000000..69db58e
--- /dev/null
+++ b/ChangeLog.d/add-aes-hardware-only-option.txt

@@ -0,0 +1,6 @@
+Features
+   * New configuration option MBEDTLS_AES_USE_HARDWARE_ONLY introduced. When using
+     CPU-accelerated AES (e.g., Arm Crypto Extensions), this option disables
+     the plain C implementation and the run-time detection for the CPU feature,
+     which reduces code size and avoid the vulnerability of the plain C
+     implementation.
commit	4dfbb2e7476d93f0f20cedc1a180be6cc51166d2	[log] [tgz]
author	Jerry Yu <jerry.h.yu@arm.com>	Sun Apr 23 14:30:34 2023 +0800
committer	Jerry Yu <jerry.h.yu@arm.com>	Wed Aug 02 17:44:01 2023 +0800
tree	08ade227622a8d7e3899fd9b13e3f153eec82b51
parent	d76ded046c60aaabbc66661c6cbd9292cddc416d [diff]