mbedtls: define MBEDTLS_SSL_CID_TLS1_3_PAD_GRANULARITY for CID padding

Updates config to define the new MBEDTLS_SSL_CID_TLS1_3_PAD_GRANULARITY option, which replaced the previously used MBEDTLS_SSL_CID_PADDING_GRANULARITY. The old option is continuing to be used as the new one exceeds the maximum length for an option name in esp-idf. See https://github.com/Mbed-TLS/mbedtls/pull/4490 for more information. Signed-off-by: Daniel Mangum <georgedanielmangum@gmail.com>
2025-09-22 09:01:08 +00:00 · 2023-09-01 14:08:14 -04:00
parent bc2389029c
commit f9569bde37
2 changed files with 21 additions and 21 deletions
--- a/components/mbedtls/port/include/mbedtls/esp_config.h
+++ b/components/mbedtls/port/include/mbedtls/esp_config.h
@@ -2844,10 +2844,10 @@
 #undef MBEDTLS_SSL_CID_OUT_LEN_MAX
 #endif

-/** \def MBEDTLS_SSL_CID_PADDING_GRANULARITY
+/** \def MBEDTLS_SSL_CID_TLS1_3_PADDING_GRANULARITY
 *
 * This option controls the use of record plaintext padding
- * when using the Connection ID extension in DTLS 1.2.
+ * in TLS 1.3 and when using the Connection ID extension in DTLS 1.2.
 *
 * The padding will always be chosen so that the length of the
 * padded plaintext is a multiple of the value of this option.
@@ -2859,10 +2859,10 @@
 *       a power of two should be preferred.
 *
 */
-#ifdef CONFIG_MBEDTLS_SSL_DTLS_CONNECTION_ID
-#define MBEDTLS_SSL_CID_PADDING_GRANULARITY    CONFIG_MBEDTLS_SSL_CID_PADDING_GRANULARITY
+#ifdef CONFIG_MBEDTLS_SSL_CID_PADDING_GRANULARITY
+#define MBEDTLS_SSL_CID_TLS1_3_PADDING_GRANULARITY    CONFIG_MBEDTLS_SSL_CID_PADDING_GRANULARITY
 #else
-#undef MBEDTLS_SSL_CID_PADDING_GRANULARITY
+#undef MBEDTLS_SSL_CID_TLS1_3_PADDING_GRANULARITY
 #endif