Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Simplify documentation of crypto dependencies between configuration options in 4.0 #9791

Open
gilles-peskine-arm opened this issue Nov 20, 2024 · 0 comments
Open

Simplify documentation of crypto dependencies between configuration options in 4.0 #9791

gilles-peskine-arm opened this issue Nov 20, 2024 · 0 comments
Labels
component-crypto Crypto primitives and low-level interfaces component-tls component-x509 enhancement

Comments

@gilles-peskine-arm
Copy link
Contributor

In TF-PSA-Crypto 1.0 and Mbed TLS 4.0, cryptographic mechanisms can only be configured through PSA_WANT_xxx options, not through legacy options like MBEDTLS_SHA256_C, MBEDTLS_ECDH_C, etc.

The goal of this issue is to clean up all public documentation that refers to legacy options.

Preliminary: remove both MBEDTLS_USE_PSA_CRYPTO and MBEDTLS_PSA_CRYPTO_CONFIG from the public interface, which is ongoing at the time I write this. These options together made things complicated, but we now have a clean slate.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
component-crypto Crypto primitives and low-level interfaces component-tls component-x509 enhancement
Projects
Mbed TLS 4.0 planning
Status: No status
Milestone
No milestone
Development

No branches or pull requests
1 participant
@gilles-peskine-arm