Google Git
Sign in
pigweed / third_party / github / ARMmbed / mbedtls / cf0074b2c8175660f21985cbd0513d2a022e94a3^! / .
commitcf0074b2c8175660f21985cbd0513d2a022e94a3[log] [tgz]
authorGilles Peskine <Gilles.Peskine@arm.com>Wed Nov 30 12:07:16 2022 +0100
committerGilles Peskine <Gilles.Peskine@arm.com>Thu Dec 01 19:56:52 2022 +0100
treefe9d471a73bad827c7e08da6affb828190a27472
parentafb15206b5cb91a84aa733e8c0a87dd206c83ddd [diff]
More wording improvements

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>

diff --git a/ChangeLog.d/add-rsa-pss-rsae-support-for-tls12.txt b/ChangeLog.d/add-rsa-pss-rsae-support-for-tls12.txt
index c87c3fb..0d40968 100644
--- a/ChangeLog.d/add-rsa-pss-rsae-support-for-tls12.txt
+++ b/ChangeLog.d/add-rsa-pss-rsae-support-for-tls12.txt

@@ -2,7 +2,7 @@
    * Support rsa_pss_rsae_* signature algorithms in TLS 1.2.
 Bugfix
    * Fix an interoperability failure between an Mbed TLS client with both
-     TLS 1.2 and TLS 1.3 support, and a TLS 1.2 server such as GnuTLS or
-     OpenSSL that supports rsa_pss_rsae_* signature algorithms. This failed
-     because Mbed TLS supported PSS only in TLS 1.3, but advertised support
-     in TLS 1.2 as well.
+     TLS 1.2 and TLS 1.3 support, and a TLS 1.2 server that supports
+     rsa_pss_rsae_* signature algorithms. This failed because Mbed TLS
+     advertised support for PSS in both TLS 1.2 and 1.3, but only
+     actually supported PSS in TLS 1.3.

diff --git a/ChangeLog.d/dtls-connection-id.txt b/ChangeLog.d/dtls-connection-id.txt
index ccb364e..840f837 100644
--- a/ChangeLog.d/dtls-connection-id.txt
+++ b/ChangeLog.d/dtls-connection-id.txt

@@ -9,9 +9,9 @@
      It is now no longer experimental, and implements the final version from
      RFC 9146, which is not interoperable with the draft-05 version.
      If you need to communicate with peers that use earlier versions of
-     Mbed TLS, you need to define MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT to 1,
-     but then you won't be able to communicate with peers that use the standard
-     (non-draft) version.
+     Mbed TLS, then you need to define MBEDTLS_SSL_DTLS_CONNECTION_ID_COMPAT
+     to 1, but then you won't be able to communicate with peers that use the
+     standard (non-draft) version.
      If you need to interoperate with both classes of peers with the
      same build of Mbed TLS, please let us know about your situation on the
      mailing list or GitHub.

diff --git a/ChangeLog.d/fix-tls12server-sent-sigalgs.txt b/ChangeLog.d/fix-tls12server-sent-sigalgs.txt
index d3c9aa1..b74c6ec 100644
--- a/ChangeLog.d/fix-tls12server-sent-sigalgs.txt
+++ b/ChangeLog.d/fix-tls12server-sent-sigalgs.txt

@@ -1,5 +1,5 @@
 Bugfix
-    * Fix a bug whereby the the list of signature algorithms sent as part of
+    * Fix a bug whereby the list of signature algorithms sent as part of
       the TLS 1.2 server certificate request would get corrupted, meaning the
       first algorithm would not get sent and an entry consisting of two random
       bytes would be sent instead. Found by Serban Bejan and Dudek Sebastian.

diff --git a/ChangeLog.d/fix_cmake_gen_files.txt b/ChangeLog.d/fix_cmake_gen_files.txt
index 6e5956a..cdec6e8 100644
--- a/ChangeLog.d/fix_cmake_gen_files.txt
+++ b/ChangeLog.d/fix_cmake_gen_files.txt

@@ -1,4 +1,4 @@
 Bugfix
-   * Fix an issue with CMake builds in releases with GEN_FILES turned off,
-     whereby missing generated files could be turned into symlinks to
-     themselves.
+   * Fix an issue with in-tree CMake builds in releases with GEN_FILES
+     turned off: if a shipped file was missing from the working directory,
+     it could be turned into a symbolic link to itself.