From bec8885b7deb5337529ac2e3c7fe1b1f4aba2c8e Mon Sep 17 00:00:00 2001
From: Hanno Becker <hanno.becker@arm.com>
Date: Thu, 18 Jul 2019 08:20:53 +0100
Subject: [PATCH] State that record checking is DTLS only and doesn't check
 content type

---
 include/mbedtls/ssl.h | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/include/mbedtls/ssl.h b/include/mbedtls/ssl.h
index d5378df57..9277cd13e 100644
--- a/include/mbedtls/ssl.h
+++ b/include/mbedtls/ssl.h
@@ -1901,7 +1901,7 @@ void mbedtls_ssl_conf_read_timeout( mbedtls_ssl_config *conf, uint32_t timeout )
 #if defined(MBEDTLS_SSL_RECORD_CHECKING)
 /**
  * \brief          Check whether a buffer contains a valid, fresh
- *                 and authentic application data record (DTLS only).
+ *                 and authentic record (DTLS only).
  *
  *                 This function does not change the user-visible state
  *                 of the SSL context. It's sole purpose is to provide
@@ -1928,7 +1928,7 @@ void mbedtls_ssl_conf_read_timeout( mbedtls_ssl_config *conf, uint32_t timeout )
  * \note           This function modifies the input buffer \p buf. If you need
  *                 to preserve the original record, you have to maintain a copy.
  *
- * \return         \c 0 if the record is valid, fresh (DTLS only) and authentic.
+ * \return         \c 0 if the record is valid, fresh and authentic.
  * \return         MBEDTLS_ERR_SSL_INVALID_MAC if the check completed
  *                 successfully but the record was found to be not authentic.
  * \return         MBEDTLS_ERR_SSL_INVALID_RECORD if the check completed