From 2301a1092728e6f15ce46a42122c1b656d6c1099 Mon Sep 17 00:00:00 2001 From: Gilles Peskine Date: Wed, 4 Dec 2024 18:05:46 +0100 Subject: [PATCH] Distinguish between MBEDTLS_PSA_CRYPTO_C and MBEDTLS_PSA_CRYPTO_CLIENT Signed-off-by: Gilles Peskine --- docs/architecture/psa-migration/strategy.md | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/docs/architecture/psa-migration/strategy.md b/docs/architecture/psa-migration/strategy.md index 6acdf34a3a..2ac9cbdf59 100644 --- a/docs/architecture/psa-migration/strategy.md +++ b/docs/architecture/psa-migration/strategy.md @@ -26,12 +26,12 @@ the preceding ones to be completed. Compile-time options ==================== -We currently have a few compile-time options that are relevant to the migration: +We currently have one compile-time option that is relevant to the migration: -- `MBEDTLS_PSA_CRYPTO_C` - enabled by default, controls the presence of the - implementation of PSA Crypto APIs. -- `PSA_CRYPTO_CONFIG` - disabled by default, supports builds with drivers and - without the corresponding software implementation (G5 above). +- `MBEDTLS_PSA_CRYPTO_C` - enabled by default, controls the presence of the PSA + Crypto APIs with their implementations. (Builds with only + `MBEDTLS_PSA_CRYPTO_CLIENT`, where PSA crypto APIs are present but + implemented via third-party code, are out of scope of this document.) At the time of writing (early 2022) it is unclear what could be done about the backward compatibility issues, and in particular if the cost of implementing