Hi,
ECB is unsecure, see https://en.wikipedia.org/wiki/Block_cipher_mode_of_operation#Electronic_code...) and shouldn't be used in production.
So, I have switched to one of CBC/CMAC/CTR modes, but in `mbedtls_cipher_cmac_starts` I see that it only accepts ECB variants, and also doesn't seem to be using the `type`.
From https://github.com/Mbed-TLS/mbedtls/issues/8617 I see that ECB for AES was intentional, even for the CMAC API.
Is this expected?
1. Is using ECB for CMAC API correct? 2.Shouldn't we remove the ECB altogether?
Appreciate any clarifications.
Cheers, Chaitanya.