eden-emu/mbedtls
15
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Clarify the TLS 1.3 situation

Browse source 
Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
This commit is contained in:
Manuel Pégourié-Gonnard 2022-05-11 13:27:44 +02:00 committed by Manuel Pégourié-Gonnard
parent 103b9929d1
commit 3e83098e01
2 changed files with 9 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

8
include/mbedtls/mbedtls_config.h
View file

@ -1506,9 +1506,15 @@
* 1.3 support that this option enables.
*
* Requires: MBEDTLS_SSL_KEEP_PEER_CERTIFICATE
* Requires: MBEDTLS_PSA_CRYPTO_C
*
* Note: even though TLS 1.3 depends on PSA Crypto, if you want it to only use
* PSA for all crypto operations, you need to also enable
* MBEDTLS_USE_PSA_CRYPTO; otherwise X.509 operations, and functions that are
* common with TLS 1.2 (record protection, running handshake hash) will still
* use non-PSA crypto.
*
* Uncomment this macro to enable the support for TLS 1.3.
*
*/
//#define MBEDTLS_SSL_PROTO_TLS1_3