Improve documentation of MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT option Explain more clearly when this option should be used and which versions of Mbed TLS build on the non-compliant implementation.

commit: 563423fb21d6d5dcbdd616af496038e2209c6f65 [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Tue Nov 21 17:20:17 2017 +0000
committer: Hanno Becker <hanno.becker@arm.com> Tue Nov 21 17:20:17 2017 +0000
tree: 507c7662eac52bce07306a21b43db37c3cb1a34b
parent: 909f9a389a8f5ac5feff1977f7b85e90687373f3 [diff] [blame]
diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index 62de5f2..3cd1d62 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c

@@ -718,7 +718,8 @@
 
 #if defined(MBEDTLS_SSL_TRUNCATED_HMAC_COMPAT)
             /* Fall back to old, non-compliant version of the truncated
-             * HMAC implementation which also truncates the key. */
+             * HMAC implementation which also truncates the key
+             * (Mbed TLS versions from 1.3 to 2.6.0) */
             mac_key_len = transform->maclen;
 #endif
         }
commit	563423fb21d6d5dcbdd616af496038e2209c6f65	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Tue Nov 21 17:20:17 2017 +0000
committer	Hanno Becker <hanno.becker@arm.com>	Tue Nov 21 17:20:17 2017 +0000
tree	507c7662eac52bce07306a21b43db37c3cb1a34b
parent	909f9a389a8f5ac5feff1977f7b85e90687373f3 [diff] [blame]