[3.6 only] Document transitional feature macros / guards #9161
Conversation
There was a problem hiding this comment.
Looks correct to me apart from some minor niggles. I haven't reviewed for completeness.
However, this does not address #8736.
Aw, I forgot to add the new file, how embarrassing. Sorry. |
| - transitional `MBEDTLS_xxx` macros that stem from the desire to be able to | ||
| use crypto mechanisms that are only provided by a driver (G5 in | ||
| `strategy.md`). | ||
|
|
There was a problem hiding this comment.
Macros defined in include/mbedtls/config_adjust_legacy_*.h only, used outside of include/mbedtls/*.h and not mentioned here:
MBEDTLS_BLOCK_CIPHER_xxx_VIA_xxx(used in library, test dependencies)MBEDTLS_BLOCK_CIPHER_SOME_PSA(used in library, test helpers, test code)MBEDTLS_MD_xxx_VIA_PSA(used in library, test dependencies)MBEDTLS_PSA_UTIL_HAVE_ECDSA(used in library, test dependencies)
We should document them as well, but that's not a blocker for this pull request.
|
This should be on the 3.6 branch, since it won't be relevant in 4.0. |
Just reflecting recent/on-going work. Signed-off-by: Manuel Pégourié-Gonnard <[email protected]>
Just reflecting recent/on-going work. Signed-off-by: Manuel Pégourié-Gonnard <[email protected]>
Signed-off-by: Manuel Pégourié-Gonnard <[email protected]>
Signed-off-by: Manuel Pégourié-Gonnard <[email protected]>
Signed-off-by: Manuel Pégourié-Gonnard <[email protected]>
Co-authored-by: Gilles Peskine <[email protected]> Signed-off-by: Manuel Pégourié-Gonnard <[email protected]>
Signed-off-by: Manuel Pégourié-Gonnard <[email protected]>
Signed-off-by: Manuel Pégourié-Gonnard <[email protected]>
Signed-off-by: Manuel Pégourié-Gonnard <[email protected]>
mpg
changed the title
mpg
added
needs-review
|
@gilles-peskine-arm I added commits addressing your feedback, and then rebased to resolve conflicts and more importantly target the correct branch. Please feel free to review again. Note: I wasn't sure if this is priority medium of high, please feel free to adjust. |
|
@mpg 1. So this shouldn't be a draft PR anymore? 2. The CI isn't happy. |
Yeah, I meant to un-draft it but forgot, thanks for the reminder. Regarding the CI, I'm not sure what happened but it's looking happy now. |
gilles-peskine-arm
removed
the
needs-review
gilles-peskine-arm
added
needs-work
and removed
needs-reviewer
Signed-off-by: Manuel Pégourié-Gonnard <[email protected]>
Signed-off-by: Manuel Pégourié-Gonnard <[email protected]>
Signed-off-by: Manuel Pégourié-Gonnard <[email protected]>
Signed-off-by: Manuel Pégourié-Gonnard <[email protected]>
|
@gilles-peskine-arm Thanks for your review and sorry for forgetting to address some of your comments. I believe I've now addressed all of them except for #9161 (comment) which I'd rather leave for later. |
|
|
||
| **Legacy and `USE_PSA` domains:** for hashes, `MBEDTLS_MD_CAN_xxx` (where | ||
| `xxx` is the legacy name of the hash) can be used everywhere (except in the | ||
| PSA domain which should use `PSA_WANT` as usual). No special include is | ||
| required, `build_info.h` or `common.h` is enough. | ||
|
|
||
| **Pure TLS 1.3 domain:** it is not easy to know which uses of hashes fall in | ||
| this domain as opposed to the `USE_PSA` domain which looking at the code. | ||
| this domain as opposed to the `USE_PSA` domain whithout looking at the code. |
There was a problem hiding this comment.
Trivial:
| this domain as opposed to the `USE_PSA` domain whithout looking at the code. | |
| this domain as opposed to the `USE_PSA` domain without looking at the code. |
gilles-peskine-arm
added
needs-review
mpg
added
approved
Description
Resolves #8736
PR checklist