Document what "TLS 1.3 depends on PSA" entails Explicitly document that when using TLS 1.3, you must initialize PSA crypto before starting a handshake. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>

commit: 8c2830a06a70c62b4e0dd4a4a029390623ceef8f [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Thu Aug 04 23:37:51 2022 +0200
committer: Gilles Peskine <Gilles.Peskine@arm.com> Wed Mar 01 20:06:35 2023 +0100
tree: 89217daef5a6a4a3df0226bd333a2c69be8a5f71
parent: f4385faa6f740ca07aac48874242b7a0769b778f [diff] [blame]
diff --git a/include/mbedtls/ssl.h b/include/mbedtls/ssl.h
index 4b954bb..2594964 100644
--- a/include/mbedtls/ssl.h
+++ b/include/mbedtls/ssl.h

@@ -4684,6 +4684,11 @@
  *                 in which case the datagram of the underlying transport that is
  *                 currently being processed might or might not contain further
  *                 DTLS records.
+ *
+ * \note           If the context is configured to allow TLS 1.3, or if
+ *                 #MBEDTLS_USE_PSA_CRYPTO is enabled, the PSA crypto
+ *                 subsystem must have been initialized by calling
+ *                 psa_crypto_init() before calling this function.
  */
 int mbedtls_ssl_handshake(mbedtls_ssl_context *ssl);
commit	8c2830a06a70c62b4e0dd4a4a029390623ceef8f	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Thu Aug 04 23:37:51 2022 +0200
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Wed Mar 01 20:06:35 2023 +0100
tree	89217daef5a6a4a3df0226bd333a2c69be8a5f71
parent	f4385faa6f740ca07aac48874242b7a0769b778f [diff] [blame]