Make key export callback and context connection-specific Fixes #2188 Signed-off-by: Hanno Becker <hanno.becker@arm.com>

commit: 7e6c178b6dd200c0f36a603f9ab3fa4d4e83e709 [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Tue Jun 08 09:24:55 2021 +0100
committer: Dave Rodgman <dave.rodgman@arm.com> Fri Jun 18 18:40:19 2021 +0100
tree: e05a45725f76c3304165cd3aafaa1c9675e9e7cc
parent: a7991f2e11290a66e1d5a759dbb7b35b792580d6 [diff] [blame]
diff --git a/ChangeLog.d/key-export.txt b/ChangeLog.d/key-export.txt
index 5882d23..10d8c89 100644
--- a/ChangeLog.d/key-export.txt
+++ b/ChangeLog.d/key-export.txt

@@ -1,8 +1,13 @@
 API changes
-   * mbedtls_ssl_conf_export_keys_ext_cb() has been removed.
+   * mbedtls_ssl_conf_export_keys_ext_cb() and
+     mbedtls_ssl_conf_export_keys_cb() have been removed
+     and replaced by a new API
+     mbedtls_ssl_set_export_keys_cb().
    * The signature of key export callbacks configured via
-     mbedtls_ssl_conf_export_keys_cb() has changed, and raw
-     keys and IVs are no longer exported. Further, callbacks
+     mbedtls_ssl_set_export_keys_cb() is different from that
+     of the previous mbedtls_ssl_conf_export_keys_cb(): First,
+     raw keys and IVs are no longer exported. Further, callbacks
      now receive an additional parameter indicating the type
      of secret that's being exported, paving the way for the
-     larger number of secrets in TLS 1.3.
+     larger number of secrets in TLS 1.3. Finally, the key export
+     callback and context are now connection-specific.
commit	7e6c178b6dd200c0f36a603f9ab3fa4d4e83e709	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Tue Jun 08 09:24:55 2021 +0100
committer	Dave Rodgman <dave.rodgman@arm.com>	Fri Jun 18 18:40:19 2021 +0100
tree	e05a45725f76c3304165cd3aafaa1c9675e9e7cc
parent	a7991f2e11290a66e1d5a759dbb7b35b792580d6 [diff] [blame]