Change prerequisites of MBEDTLS_SSL_EARLY_DATA and add related check Signed-off-by: Xiaokang Qian <xiaokang.qian@arm.com>

commit: 95a0730f178980085c8f7acfd3b26c5c67511464 [log] [tgz]
author: Xiaokang Qian <xiaokang.qian@arm.com> Tue Oct 25 02:56:00 2022 +0000
committer: Xiaokang Qian <xiaokang.qian@arm.com> Tue Oct 25 05:34:48 2022 +0000
tree: adeffd1101b659b2f9eb0cf9da5cfcd4ee1c9361
parent: 72de95dcf53a50691d85dcd166bc584f3a293c1c [diff]
diff --git a/include/mbedtls/check_config.h b/include/mbedtls/check_config.h
index 6a96479..d36db4a 100644
--- a/include/mbedtls/check_config.h
+++ b/include/mbedtls/check_config.h

@@ -842,6 +842,13 @@
         "but no key exchange methods defined with MBEDTLS_KEY_EXCHANGE_xxxx"
 #endif
 
+/* Early data requires PSK related mode defined */
+#if defined(MBEDTLS_SSL_EARLY_DATA) && \
+        ( !defined(MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ENABLED) && \
+          !defined(MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_EPHEMERAL_ENABLED))
+#error "MBEDTLS_SSL_EARLY_DATA  defined, but not all prerequisites"
+#endif
+
 #if defined(MBEDTLS_SSL_PROTO_DTLS)     && \
     !defined(MBEDTLS_SSL_PROTO_TLS1_2)
 #error "MBEDTLS_SSL_PROTO_DTLS defined, but not all prerequisites"

diff --git a/include/mbedtls/mbedtls_config.h b/include/mbedtls/mbedtls_config.h
index 9480de0..7ce8083 100644
--- a/include/mbedtls/mbedtls_config.h
+++ b/include/mbedtls/mbedtls_config.h

@@ -1640,6 +1640,10 @@
 * Requires: MBEDTLS_SSL_PROTO_TLS1_3
 *
 * Comment this to disable support for early data.
+*
+* This feature is experimental, not completed and thus not ready for
+* production.
+*
 */
 //#define MBEDTLS_SSL_EARLY_DATA
commit	95a0730f178980085c8f7acfd3b26c5c67511464	[log] [tgz]
author	Xiaokang Qian <xiaokang.qian@arm.com>	Tue Oct 25 02:56:00 2022 +0000
committer	Xiaokang Qian <xiaokang.qian@arm.com>	Tue Oct 25 05:34:48 2022 +0000
tree	adeffd1101b659b2f9eb0cf9da5cfcd4ee1c9361
parent	72de95dcf53a50691d85dcd166bc584f3a293c1c [diff]