commit c66deda4c59d23e07f9e8d850d980021190b0c45
author Jerry Yu <jerry.h.yu@arm.com> Fri Feb 24 11:42:07 2023 +0800
committer Jerry Yu <jerry.h.yu@arm.com> Fri Feb 24 11:42:07 2023 +0800
tree 7ca056dcceb20a94268f04a6aa94e02c9b6d334d
parent aa18c4bf9627204dc0629d9d3fa5e694c2474cba

Add explanation for aesce limitation

Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>

include/mbedtls/mbedtls_config.h

diff --git a/include/mbedtls/mbedtls_config.h b/include/mbedtls/mbedtls_config.h
index cba133c..774fc94 100644
--- a/include/mbedtls/mbedtls_config.h
+++ b/include/mbedtls/mbedtls_config.h
@@ -2079,6 +2079,10 @@
  * of \c -march=armv8-a+crypto .
  *
  * \warning `MBEDTLS_SHA512_USE_A64_CRYPTO_*` should be disabled when enabled
+ *          because unexpected instruction will be generated in AESCE module.
+ *          `MBEDTLS_SHA512_USE_A64_CRYPTO_*` requires \c -march=armv8.2-a+sha3,
+ *          compiler optimizes the code with `eor3` that is part of sha3
+ *          extension and unexpected in AESCE.
  *
  * \warning Runtime detection only works on linux. For non-linux operation
  *          system, crypto extension MUST be supported by CPU.