From c9d9b1fdb11873a5aaf71ae50e2220f2d3aef3f8 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Manuel=20P=C3=A9gouri=C3=A9-Gonnard?= Date: Fri, 22 Sep 2023 10:40:12 +0200 Subject: [PATCH] Update ChangeLog for ECC.BN EPIC MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Actually not much to change there, from a high level perspective things are quite simple: you used to be able to disable ECP_C, now you can disable BIGNUM_C too. There will be more to update in driver-only-build.md which is the right place for a more detailed explanation of the limitations. Signed-off-by: Manuel Pégourié-Gonnard --- ChangeLog.d/driver-only-ecc.txt | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/ChangeLog.d/driver-only-ecc.txt b/ChangeLog.d/driver-only-ecc.txt index df70ca120..887808511 100644 --- a/ChangeLog.d/driver-only-ecc.txt +++ b/ChangeLog.d/driver-only-ecc.txt @@ -6,8 +6,10 @@ Features TLS 1.2 (ECDHE-ECDSA key exchange) are not supported in those builds yet, as PSA does not have an API for restartable ECDH yet. * When all of ECDH, ECDSA and EC J-PAKE are either disabled or provided by - a driver, it is possible to disable MBEDTLS_ECP_C and still get support - for ECC keys and algorithms in PSA. See docs/driver-only-builds.txt. + a driver, it is possible to disable MBEDTLS_ECP_C (and MBEDTLS_BIGNUM_C + if not required by another module) and still get support for ECC keys and + algorithms in PSA, with some limitations. See docs/driver-only-builds.txt + for details. API changes * Mbed TLS 3.4 introduced support for omitting the built-in implementation of ECDSA and/or EC J-PAKE when those are provided by a driver. However,