From 89029e7366b8187fe940f305f79e78919abfbccd Mon Sep 17 00:00:00 2001 From: Valerio Setti Date: Mon, 20 Mar 2023 15:25:29 +0100 Subject: [PATCH] changelog: fix description for ECDH changes Signed-off-by: Valerio Setti --- ChangeLog.d/driver-only-ecdh.txt | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/ChangeLog.d/driver-only-ecdh.txt b/ChangeLog.d/driver-only-ecdh.txt index a360f8f38..1aeed64fe 100644 --- a/ChangeLog.d/driver-only-ecdh.txt +++ b/ChangeLog.d/driver-only-ecdh.txt @@ -1,4 +1,7 @@ Features * When a PSA driver for ECDH is present, it is now possible to disable - MBEDTLS_ECDH_C in the build in order to save code size. For PK, X.509 - and TLS to fully work, this requires MBEDTLS_USE_PSA_CRYPTO to be enabled. + MBEDTLS_ECDH_C in the build in order to save code size. For TLS 1.2 + key exchanges based on ECDH(E) to work, this requires + MBEDTLS_USE_PSA_CRYPTO. Restartable/interruptible ECDHE operations in + TLS 1.2 (ECDHE-ECDSA key exchange) are not supported in those builds yet, + as PSA does not have an API for restartable ECDH yet.