tinyCrypt: Remove check for Secp256r1 in SrvKeyExch writing The use of tinyCrypt is restricted Secp256r1-only, and a check in ssl_ciphersuite_is_match() ensures that an EC ciphersuite is chosen only if the client advertised support for Secp256r1, too.

commit: b1626fb619874a79f11c0e9f04ff426890e7623e [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Wed Jul 24 11:54:54 2019 +0100
committer: Hanno Becker <hanno.becker@arm.com> Mon Aug 12 18:01:47 2019 +0100
tree: 0d27ae9f5209bbbd71791b8ff81dd1a6d5c58336
parent: 9175c21b724d46268c750f38dba2aff180d0a1c9 [diff]
diff --git a/library/ssl_srv.c b/library/ssl_srv.c
index 3198596..435588e 100644
--- a/library/ssl_srv.c
+++ b/library/ssl_srv.c

@@ -3398,14 +3398,6 @@
                 0x04 /* Uncompressed */
             };
 
-            if( ssl->handshake->curve_tls_id != secp256r1_tls_id )
-            {
-                MBEDTLS_SSL_DEBUG_MSG( 1, ( "Unsupported curve %u (expected %u)",
-                                            (unsigned) ssl->handshake->curve_tls_id,
-                                            secp256r1_tls_id ) );
-                return( MBEDTLS_ERR_SSL_NO_CIPHER_CHOSEN );
-            }
-
             if( !uECC_make_key( ssl->handshake->ecdh_ownpubkey,
                                 ssl->handshake->ecdh_privkey,
                                 uecc_curve ) )
commit	b1626fb619874a79f11c0e9f04ff426890e7623e	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Wed Jul 24 11:54:54 2019 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Mon Aug 12 18:01:47 2019 +0100
tree	0d27ae9f5209bbbd71791b8ff81dd1a6d5c58336
parent	9175c21b724d46268c750f38dba2aff180d0a1c9 [diff]