[crypto] Fix CASE on some embedded platforms (#7948)

Establishing a CASE session requires support for P256Keypair::ECDH_derive_secret() function which was disabled for platforms which define MBEDTLS_ECP_ALT. It is quite common on embedded devices equipped with dedicated crypto chips to provide custom ECP implementations.
project-chip · Jun 28, 2021 · fead7d1 · fead7d1
1 parent 17dbc19
commit fead7d1
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/src/crypto/CHIPCryptoPALmbedTLS.cpp b/src/crypto/CHIPCryptoPALmbedTLS.cpp
@@ -559,7 +559,8 @@ CHIP_ERROR P256PublicKey::ECDSA_validate_hash_signature(const uint8_t * hash, co
 
 CHIP_ERROR P256Keypair::ECDH_derive_secret(const P256PublicKey & remote_public_key, P256ECDHDerivedSecret & out_secret) const
 {
-#if defined(MBEDTLS_ECDH_C) && !defined(MBEDTLS_ECP_ALT)
+// TODO: Enable ECDH_derive_secret for Qorvo when their mbedTLS static libraries are updated
+#if defined(MBEDTLS_ECDH_C) && !defined(QORVO_CRYPTO_ENGINE)
     CHIP_ERROR error     = CHIP_NO_ERROR;
     int result           = 0;
     size_t secret_length = (out_secret.Length() == 0) ? out_secret.Capacity() : out_secret.Length();