TinyCrypt SSL: Extend scope of CliKeyExchange parsing Previously, TinyCrypt was only used for ECDHE-ECDSA/RSA ciphersuites. This commit is a step towards using it for _all_ ciphersuites involving ECDHE (specifically: ECDHE, ECDHE-PSK, static ECDH), extending the scope of the use of TinyCrypt in the parsing of the ClientKeyExchange message.

commit: b42e2388ff644166e037079834f81bb7f69e0563 [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Sun Sep 01 07:49:04 2019 +0100
committer: Hanno Becker <hanno.becker@arm.com> Wed Sep 04 16:19:49 2019 +0100
tree: 80032be44cbd5f65fa29d4078d49769e504bf012
parent: 8ea7da22503bfebbcfd65e9ad895b10f5d936cdd [diff] [blame]
diff --git a/library/ssl_srv.c b/library/ssl_srv.c
index de3d57c..1c1ca32 100644
--- a/library/ssl_srv.c
+++ b/library/ssl_srv.c

@@ -4219,9 +4219,13 @@
 #endif /* MBEDTLS_KEY_EXCHANGE_DHE_RSA_ENABLED */
 #if defined(MBEDTLS_USE_TINYCRYPT)
     if( mbedtls_ssl_suite_get_key_exchange( ciphersuite_info )
-        == MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA                    ||
+        == MBEDTLS_KEY_EXCHANGE_ECDHE_RSA ||
         mbedtls_ssl_suite_get_key_exchange( ciphersuite_info )
-        == MBEDTLS_KEY_EXCHANGE_ECDHE_RSA )
+        == MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA ||
+        mbedtls_ssl_suite_get_key_exchange( ciphersuite_info )
+        == MBEDTLS_KEY_EXCHANGE_ECDH_RSA ||
+        mbedtls_ssl_suite_get_key_exchange( ciphersuite_info )
+        == MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA )
     {
         ((void) ret);
         if( mbedtls_ssl_ecdh_read_peerkey( ssl, &p, end ) != 0 )
commit	b42e2388ff644166e037079834f81bb7f69e0563	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Sun Sep 01 07:49:04 2019 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Wed Sep 04 16:19:49 2019 +0100
tree	80032be44cbd5f65fa29d4078d49769e504bf012
parent	8ea7da22503bfebbcfd65e9ad895b10f5d936cdd [diff] [blame]