Default behavior changes
   * The X.509 and TLS modules now always use the PSA subsystem
     to perform cryptographic operations, with a few exceptions documented
     in docs/architecture/psa-migration/psa-limitations.md. This
     corresponds to the behavior of Mbed TLS 3.x when
     MBEDTLS_USE_PSA_CRYPTO is enabled. In effect, MBEDTLS_USE_PSA_CRYPTO
     is now always enabled.
   * psa_crypto_init() must be called before performing any cryptographic
     operation, including indirect requests such as parsing a key or
     certificate or starting a TLS handshake.

