From c66deda4c59d23e07f9e8d850d980021190b0c45 Mon Sep 17 00:00:00 2001 From: Jerry Yu Date: Fri, 24 Feb 2023 11:42:07 +0800 Subject: [PATCH] Add explanation for aesce limitation Signed-off-by: Jerry Yu --- include/mbedtls/mbedtls_config.h | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/include/mbedtls/mbedtls_config.h b/include/mbedtls/mbedtls_config.h index cba133c4f..774fc948a 100644 --- a/include/mbedtls/mbedtls_config.h +++ b/include/mbedtls/mbedtls_config.h @@ -2079,6 +2079,10 @@ * of \c -march=armv8-a+crypto . * * \warning `MBEDTLS_SHA512_USE_A64_CRYPTO_*` should be disabled when enabled + * because unexpected instruction will be generated in AESCE module. + * `MBEDTLS_SHA512_USE_A64_CRYPTO_*` requires \c -march=armv8.2-a+sha3, + * compiler optimizes the code with `eor3` that is part of sha3 + * extension and unexpected in AESCE. * * \warning Runtime detection only works on linux. For non-linux operation * system, crypto extension MUST be supported by CPU.