Document behaviour of mbedtls_ssl_get_peer_cid() for empty CIDs

commit: c5f2422116e384e0df35b6872d14ce559199f815 [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Fri May 03 12:54:52 2019 +0100
committer: Hanno Becker <hanno.becker@arm.com> Mon Jun 03 14:43:16 2019 +0100
tree: 07426c8e4fdeaeebc0965000fb05bdba3f5f5401
parent: 5a29990367a863c0879efbfdf63ab9e286cef8fe [diff] [blame]
diff --git a/include/mbedtls/ssl.h b/include/mbedtls/ssl.h
index fa6d232..5acdbd5 100644
--- a/include/mbedtls/ssl.h
+++ b/include/mbedtls/ssl.h

@@ -1628,6 +1628,13 @@
  *                     progress, this function will attempt to complete
  *                     the handshake first.
  *
+ * \note               If CID extensions have been exchanged but both client
+ *                     and server chose to use an empty CID, this function
+ *                     sets `*enabled` to #MBEDTLS_SSL_CID_DISABLED
+ *                     (the rationale for this is that the resulting
+ *                     communication is the same as if the CID extensions
+ *                     hadn't been used).
+ *
  * \return            \c 0 on success.
  * \return            A negative error code on failure.
  */
commit	c5f2422116e384e0df35b6872d14ce559199f815	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Fri May 03 12:54:52 2019 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Mon Jun 03 14:43:16 2019 +0100
tree	07426c8e4fdeaeebc0965000fb05bdba3f5f5401
parent	5a29990367a863c0879efbfdf63ab9e286cef8fe [diff] [blame]