TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / ee24f8cecb1bf88af6a140ce312226d6b2634836^! / .
commitee24f8cecb1bf88af6a140ce312226d6b2634836[log] [tgz]
authorHanno Becker <hanno.becker@arm.com>Wed Jun 19 12:33:04 2019 +0100
committerHanno Becker <hanno.becker@arm.com>Fri Jul 12 15:25:03 2019 +0100
treec28f4a57283409f930a27f4c42d05b94444c6a7d
parenta4a9c696c12194686aba587fa9980bf7c64df7a2 [diff]
Remove unnecessary check for presence of supported EC list

For both client/server the EC curve list is assumed not to be NULL:

- On the client-side, it's assumed when writing the
  supported elliptic curve extension:

    https://github.com/ARMmbed/mbedtls/blob/c54ee936d7e2787143be6b3eb761f1a822ccad63/library/ssl_cli.c#L316

- On the server, it is assumed when searching for a
  suitable curve for the ECDHE exchange:

    https://github.com/ARMmbed/mbedtls/blob/c54ee936d7e2787143be6b3eb761f1a822ccad63/library/ssl_srv.c#L3200

It is therefore not necessary to check this in mbedtls_ssl_check_curve().

diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index 633fb4b..d669fe7 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c

@@ -11241,9 +11241,6 @@
  */
 int mbedtls_ssl_check_curve( const mbedtls_ssl_context *ssl, mbedtls_ecp_group_id grp_id )
 {
-    if( ssl->conf->curve_list == NULL )
-        return( -1 );
-
     MBEDTLS_SSL_BEGIN_FOR_EACH_SUPPORTED_EC_GRP_ID( own_ec_id )
     if( own_ec_id == grp_id )
         return( 0 );