From 318a87b33606aecded0537064e90e2c09dd32b27 Mon Sep 17 00:00:00 2001
From: Hanno Becker <hanno.becker@arm.com>
Date: Tue, 23 Apr 2019 11:37:38 +0100
Subject: [PATCH] Document that the use of CID is disabled by default.

(Even if MBEDTLS_SSL_CID is set in config.h)
---
 include/mbedtls/ssl.h | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/include/mbedtls/ssl.h b/include/mbedtls/ssl.h
index 5fce3fefe..f357161ef 100644
--- a/include/mbedtls/ssl.h
+++ b/include/mbedtls/ssl.h
@@ -1523,7 +1523,8 @@ void mbedtls_ssl_set_bio( mbedtls_ssl_context *ssl,
  * \param enable      This value determines whether the CID extension should
  *                    be used or not. Possible values are:
  *                    - MBEDTLS_SSL_CID_ENABLED to enable the use of the CID.
- *                    - MBEDTLS_SSL_CID_DISABLED to disable the use of the CID.
+ *                    - MBEDTLS_SSL_CID_DISABLED (default) to disable the use
+ *                      of the CID.
  * \param own_cid     The address of the readable buffer holding the CID we want
  *                    the peer to use when sending encrypted messages to us.
  *                    This may be \c NULL if \p own_cid_len is \c 0.