commit 7decea9ea915228de78be0a75a5456c6dfd13251
author Hanno Becker <hanno.becker@arm.com> Wed Jun 19 12:59:24 2019 +0100
committer Hanno Becker <hanno.becker@arm.com> Fri Jul 12 15:25:03 2019 +0100
tree 86ec7b9fc19cc863c8c6c0c2907cb1b8f23ad63d
parent c1096e7514ae92c9e936977fac63ff61bca11bbf

Simplify supported EC extension writing code

The previous code writes the content (the EC curve list) of the extension
before writing the extension length field at the beginning, which is common
in the library in places where we don't know the length upfront. Here,
however, we do traverse the EC curve list upfront to infer its length
and do the bounds check, so we can reorder the code to write the extension
linearly and hence improve readability.

library/ssl_cli.c

diff --git a/library/ssl_cli.c b/library/ssl_cli.c
index e7e0d46..736d9d9 100644
--- a/library/ssl_cli.c
+++ b/library/ssl_cli.c
@@ -269,7 +269,6 @@
 {
     unsigned char *p = buf;
     const unsigned char *end = ssl->out_msg + MBEDTLS_SSL_OUT_CONTENT_LEN;
-    unsigned char *elliptic_curve_list = p + 6;
     size_t elliptic_curve_len = 0;
 
     *olen = 0;
@@ -287,13 +286,6 @@
         return;
     }
 
-    elliptic_curve_len = 0;
-
-    MBEDTLS_SSL_BEGIN_FOR_EACH_SUPPORTED_EC_TLS_ID( tls_id )
-    elliptic_curve_list[elliptic_curve_len++] = tls_id >> 8;
-    elliptic_curve_list[elliptic_curve_len++] = tls_id & 0xFF;
-    MBEDTLS_SSL_END_FOR_EACH_SUPPORTED_EC_TLS_ID
-
     *p++ = (unsigned char)( ( MBEDTLS_TLS_EXT_SUPPORTED_ELLIPTIC_CURVES >> 8 ) & 0xFF );
     *p++ = (unsigned char)( ( MBEDTLS_TLS_EXT_SUPPORTED_ELLIPTIC_CURVES      ) & 0xFF );
 
@@ -303,6 +295,11 @@
     *p++ = (unsigned char)( ( ( elliptic_curve_len     ) >> 8 ) & 0xFF );
     *p++ = (unsigned char)( ( ( elliptic_curve_len     )      ) & 0xFF );
 
+    MBEDTLS_SSL_BEGIN_FOR_EACH_SUPPORTED_EC_TLS_ID( tls_id )
+    *p++ = tls_id >> 8;
+    *p++ = tls_id & 0xFF;
+    MBEDTLS_SSL_END_FOR_EACH_SUPPORTED_EC_TLS_ID
+
     *olen = 6 + elliptic_curve_len;
 }