commit 80e92ad43a380e15abe51ede57738471d9353b16
author Hanno Becker <hanno.becker@arm.com> Thu Jan 31 09:27:04 2019 +0000
committer Hanno Becker <hanno.becker@arm.com> Wed Jun 05 13:18:05 2019 +0100
tree 50ca27cd4f28f75783d9312fc654e66075e1e346
parent 2fa5e73d8dfd34c7522419de25733a879f6bfdf0

Adapt ChangeLog

ChangeLog

diff --git a/ChangeLog b/ChangeLog
index e769dc2..1b60a00 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -10,6 +10,10 @@
      an error or a meaningless output from mbedtls_ecdh_get_params. In the
      latter case, this could expose at most 5 bits of the private key.
 
+API Changes
+   * Add a new X.509 API call `mbedtls_x509_parse_der_nocopy()`.
+     See the Features section for more information.
+
 Features
    * Add support for draft-05 of the Connection ID extension, as specified
      in https://tools.ietf.org/html/draft-ietf-tls-dtls-connection-id-05.
@@ -24,6 +28,10 @@
      mbedtls_ssl_session_load() to allow serializing a session, for example to
      store it in non-volatile storage, and later using it for TLS session
      resumption.
+   * Add a new X.509 API call `mbedtls_x509_parse_der_nocopy()`
+     which allows copy-less parsing of DER encoded X.509 CRTs,
+     at the cost of additional lifetime constraints on the input
+     buffer, but at the benefit of reduced RAM consumption.
 
 Bugfix
    * Server's RSA certificate in certs.c was SHA-1 signed. In the default