commit 9a7d4c273470fdfb5a33566f8e2b9e36fc8b29d2
author Gilles Peskine <Gilles.Peskine@arm.com> Thu Sep 23 18:07:36 2021 +0200
committer Gilles Peskine <Gilles.Peskine@arm.com> Mon Sep 27 19:15:56 2021 +0200
tree 403345f117c32afa4bdc9abc3ee12cdfa41dfcc9
parent a33e6935bc061a897a62a5b4ef053693aaf754bd

New configuration option MBEDTLS_CHECK_RETURN_WARNING

MBEDTLS_CHECK_RETURN_TYPICAL defaults off, but is enabled if
MBEDTLS_CHECK_RETURN_WARNING is enabled at compile time.
(MBEDTLS_CHECK_RETURN_CRITICAL is always enabled.)

The default is off so that a plausible program that builds with one version
of Mbed TLS in the default configuration will still build under the next
version.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>

include/mbedtls/platform_util.h

diff --git a/include/mbedtls/platform_util.h b/include/mbedtls/platform_util.h
index d8379de..ce0611d 100644
--- a/include/mbedtls/platform_util.h
+++ b/include/mbedtls/platform_util.h
@@ -109,7 +109,11 @@
  *        an error code (as \c int in the \c mbedtls_xxx API or
  *        as ::psa_status_t in the \c psa_xxx API).
  */
+#if defined(MBEDTLS_CHECK_RETURN_WARNING)
 #define MBEDTLS_CHECK_RETURN_TYPICAL MBEDTLS_CHECK_RETURN
+#else
+#define MBEDTLS_CHECK_RETURN_TYPICAL
+#endif
 
 /** Benign-failure function
  *