| Valerio Setti | 8427b56 | 2023-03-17 18:49:24 +0100 | [diff] [blame] | 1 | Features |
| 2 | * When a PSA driver for ECDH is present, it is now possible to disable |
| Valerio Setti | 89029e7 | 2023-03-20 15:25:29 +0100 | [diff] [blame] | 3 | MBEDTLS_ECDH_C in the build in order to save code size. For TLS 1.2 |
| 4 | key exchanges based on ECDH(E) to work, this requires |
| 5 | MBEDTLS_USE_PSA_CRYPTO. Restartable/interruptible ECDHE operations in |
| 6 | TLS 1.2 (ECDHE-ECDSA key exchange) are not supported in those builds yet, |
| 7 | as PSA does not have an API for restartable ECDH yet. |
| Manuel Pégourié-Gonnard | a787c0f | 2023-07-07 17:01:22 +0200 | [diff] [blame] | 8 | * When all of ECDH, ECDSA and EC J-PAKE are either disabled or provided by |
| 9 | a driver, it is possible to disable MBEDTLS_ECP_C and still get support |
| 10 | for ECC keys and algorithms in PSA. See docs/driver-only-builds.txt. |