commit 5acb3a5969b7692d138b8fc709b73bcb0ea5729f
author Gilles Peskine <Gilles.Peskine@arm.com> Thu Jun 26 19:05:55 2025 +0200
committer Gilles Peskine <Gilles.Peskine@arm.com> Mon Jun 30 13:17:23 2025 +0200
tree dd4a3951c77d591a76948fd2cc64394185c5fc0a
parent ac18d0c0dbd86d6fa1e53c822321c906c51a29dd

Copyediting

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>

docs/4.0-migration-guide/psa-only.md

diff --git a/docs/4.0-migration-guide/psa-only.md b/docs/4.0-migration-guide/psa-only.md
index e4f293d..7d7bfee 100644
--- a/docs/4.0-migration-guide/psa-only.md
+++ b/docs/4.0-migration-guide/psa-only.md
@@ -4,7 +4,7 @@
 
 ### Impact on application code
 
-The X.509, PKCS7 and SSL always use PSA for cryptography, with a few exceptions documented in the [PSA limitations](../architecture/psa-migration/psa-limitations.md) document. (These limitations are mostly transparent unless you want to leverage PSA accelerator drivers.) This corresponds to the behavior of Mbed TLS 3.x when `MBEDTLS_USE_PSA_CRYPTO` is enabled. In effect, `MBEDTLS_USE_PSA_CRYPTO` is now always enabled.
+The X.509, PKCS7 and SSL modules always use PSA for cryptography, with a few exceptions documented in the [PSA limitations](../architecture/psa-migration/psa-limitations.md) document. (These limitations are mostly transparent unless you want to leverage PSA accelerator drivers.) This corresponds to the behavior of Mbed TLS 3.x when `MBEDTLS_USE_PSA_CRYPTO` is enabled. In effect, `MBEDTLS_USE_PSA_CRYPTO` is now always enabled.
 
 `psa_crypto_init()` must be called before performing any cryptographic operation, including indirect requests such as parsing a key or certificate or starting a TLS handshake.