TLS 1.3: Fix selected key exchange mode check ECDHE operations have to be done in ephemeral and PSK-ephemeral key exchange mode, not just ephemeral key exhange mode. Signed-off-by: Ronald Cron <ronald.cron@arm.com>

commit: 2d8b7ac8985416a209683e6f602d04f226e48620 [log] [tgz]
author: Ronald Cron <ronald.cron@arm.com> Wed Jul 20 16:21:43 2022 +0200
committer: Ronald Cron <ronald.cron@arm.com> Wed Jul 20 17:46:58 2022 +0200
tree: f9b4cf83f789cb8a8c07c75051374d7a5a8d287f
parent: 7085aa42eee0db3f394afab2c02cb18ccf35c15c [diff]
diff --git a/library/ssl_tls13_keys.c b/library/ssl_tls13_keys.c
index 51743bb..aeaeb3d 100644
--- a/library/ssl_tls13_keys.c
+++ b/library/ssl_tls13_keys.c

@@ -1237,7 +1237,7 @@
      * client_handshake_traffic_secret and server_handshake_traffic_secret
      * are derived in the handshake secret derivation stage.
      */
-    if( mbedtls_ssl_tls13_ephemeral_enabled( ssl ) )
+    if( mbedtls_ssl_tls13_some_ephemeral_enabled( ssl ) )
     {
         if( mbedtls_ssl_tls13_named_group_is_ecdhe( handshake->offered_group_id ) )
         {
commit	2d8b7ac8985416a209683e6f602d04f226e48620	[log] [tgz]
author	Ronald Cron <ronald.cron@arm.com>	Wed Jul 20 16:21:43 2022 +0200
committer	Ronald Cron <ronald.cron@arm.com>	Wed Jul 20 17:46:58 2022 +0200
tree	f9b4cf83f789cb8a8c07c75051374d7a5a8d287f
parent	7085aa42eee0db3f394afab2c02cb18ccf35c15c [diff]