Also mention HMAC_DRBG in the changelog entry

There were no tricky compliance issues for HMAC_DBRG, unlike CTR_DRBG,
but mention it anyway. For CTR_DRBG, summarize the salient issue.
This commit is contained in:
Gilles Peskine 2019-09-30 15:25:18 +02:00 committed by Simon Butcher
parent ccb38381e8
commit 9e2543bd4f

View file

@ -73,8 +73,9 @@ Bugfix
Changes
* Add unit tests for AES-GCM when called through mbedtls_cipher_auth_xxx()
from the cipher abstraction layer. Fixes #2198.
* Clarify how the interface of the CTR_DRBG module relates to
NIST SP 800-90A.
* Clarify how the interface of the CTR_DRBG and HMAC modules relates to
NIST SP 800-90A. In particular CTR_DRBG requires an explicit nonce
to achieve a 256-bit strength if MBEDTLS_ENTROPY_FORCE_SHA256 is set.
= mbed TLS 2.16.3 branch released 2019-09-06