commit 23e416261c5dd1e7cb43db5c8c6766af56509d3e
author Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Thu May 18 12:35:37 2017 +0200
committer Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Wed Aug 09 11:44:53 2017 +0200
tree 2c90655a12b70aba3e616d10e8ba3e947ecfb2a2
parent 1f1f2a1ca67b861c062587e3dbeef0bcfc819d44

ECDH: not restartable unless explicitly enabled

This is mainly for the benefit of SSL modules, which only supports restart in
a limited number of cases. In the other cases (ECDHE_PSK) it would currently
return ERR_ECP_IN_PROGRESS and the user would thus call ssl_handshake() again,
but the SSL code wouldn't handle state properly and things would go wrong in
possibly unexpected ways.  This is undesirable, so it should be possible for
the SSL module to choose if ECDHE should behave the old or the new way.

Not that it also brings ECDHE more in line with the other modules which
already have that choice available (by passing a NULL or valid restart
context).

tests/suites/test_suite_ecdh.function

diff --git a/tests/suites/test_suite_ecdh.function b/tests/suites/test_suite_ecdh.function
index 911464a..05e61e4 100644
--- a/tests/suites/test_suite_ecdh.function
+++ b/tests/suites/test_suite_ecdh.function
@@ -161,7 +161,7 @@
 
 /* BEGIN_CASE depends_on:MBEDTLS_ECP_RESTARTABLE */
 void ecdh_restart( int id, char *dA_str, char *dB_str, char *z_str,
-                   int max_ops, int min_restart, int max_restart )
+                   int enable, int max_ops, int min_restart, int max_restart )
 {
     int ret;
     mbedtls_ecdh_context srv, cli;
@@ -192,8 +192,15 @@
      * as in ecdh_primitive_test_vec */
     TEST_ASSERT( srv.grp.nbits % 8 == 0 );
 
+    /* set up restart parameters */
     mbedtls_ecp_set_max_ops( max_ops );
 
+    if( enable)
+    {
+        mbedtls_ecdh_enable_restart( &srv );
+        mbedtls_ecdh_enable_restart( &cli );
+    }
+
     /* server writes its paramaters */
     memset( buf, 0x00, sizeof( buf ) );
     len = 0;