commit c5a23a0f1214d738491bd0a07d3fd0a3344738df
author Jerry Yu <jerry.h.yu@arm.com> Thu Aug 25 10:51:44 2022 +0800
committer Jerry Yu <jerry.h.yu@arm.com> Thu Aug 25 11:09:35 2022 +0800
tree 2bab65ceaadab9dcb3bb5602af4fc76c09fd5080
parent 2185c0f2e9ee3f9fb6051762ce4fb1493cd510c5

fix various issues

- code style
- variable initialize
- update comments


Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>

programs/ssl/ssl_server2.c

diff --git a/programs/ssl/ssl_server2.c b/programs/ssl/ssl_server2.c
index d0193e4..3f1e01f 100644
--- a/programs/ssl/ssl_server2.c
+++ b/programs/ssl/ssl_server2.c
@@ -1860,10 +1860,12 @@
                 opt.tls13_kex_modes = MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK_ALL;
             else if( strcmp( q, "all" ) == 0 )
                 opt.tls13_kex_modes = MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_ALL;
-            /* `psk_or_ephemeral` exists in theory and is not recommended in practice.
-             * In server side, if needed extensions are received, psk or ephemeral
-             * mode will be set. Add this mode only for test purposes to improve
-             * test coverage.
+            /* The purpose of `psk_or_ephemeral` is to improve test coverage. That
+             * is not recommended in practice.
+             * `psk_or_ephemeral` exists in theory, we need this mode to test if
+             * this setting work correctly. With this key exchange setting, server
+             * should always perform `ephemeral` handshake. `psk` or `psk_ephermal`
+             * is not expected.
              */
             else if( strcmp( q, "psk_or_ephemeral" ) == 0 )
                 opt.tls13_kex_modes = MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_PSK |