Remove mbedtls_ssl_conf_sig_hashes from comments
Signed-off-by: Ben Taylor <ben.taylor@linaro.org>
diff --git a/include/mbedtls/ssl.h b/include/mbedtls/ssl.h
index 9cba94e..5305425 100644
--- a/include/mbedtls/ssl.h
+++ b/include/mbedtls/ssl.h
@@ -3364,10 +3364,6 @@
/**
* \brief Set the X.509 security profile used for verification
*
- * \note The restrictions are enforced for all certificates in the
- * chain. However, signatures in the handshake are not covered
- * by this setting but by \b mbedtls_ssl_conf_sig_hashes().
- *
* \param conf SSL configuration
* \param profile Profile to use
*/
diff --git a/library/ssl_misc.h b/library/ssl_misc.h
index 72dc941..f045f8d 100644
--- a/library/ssl_misc.h
+++ b/library/ssl_misc.h
@@ -2310,11 +2310,7 @@
/*
* Return supported signature algorithms.
*
- * In future, invocations can be changed to ssl->conf->sig_algs when
- * mbedtls_ssl_conf_sig_hashes() is deleted.
- *
* ssl->handshake->sig_algs is either a translation of sig_hashes to IANA TLS
- * signature algorithm identifiers when mbedtls_ssl_conf_sig_hashes() has been
* used, or a pointer to ssl->conf->sig_algs when mbedtls_ssl_conf_sig_algs() has
* been more recently invoked.
*
diff --git a/programs/fuzz/fuzz_client.c b/programs/fuzz/fuzz_client.c
index 1840570..0878480 100644
--- a/programs/fuzz/fuzz_client.c
+++ b/programs/fuzz/fuzz_client.c
@@ -137,7 +137,7 @@
}
#endif
//There may be other options to add :
- // mbedtls_ssl_conf_cert_profile, mbedtls_ssl_conf_sig_hashes
+ // mbedtls_ssl_conf_cert_profile
if (mbedtls_ssl_setup(&ssl, &conf) != 0) {
goto exit;
diff --git a/tf-psa-crypto b/tf-psa-crypto
index fc1dca6..5df033e 160000
--- a/tf-psa-crypto
+++ b/tf-psa-crypto
@@ -1 +1 @@
-Subproject commit fc1dca61954ee58701a47ba24cc27004e05440b2
+Subproject commit 5df033ee3cb9e0c05262bc57b821ca20b9483b54