Calculate hashes of ssl encryption and decryption keys Optimize the key switching mechanism to set the key only if a different operation is performed with the context. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>

commit: a793237998d9f52f21049b5339da9ece2ffd3394 [log] [tgz]
author: Andrzej Kurek <andrzej.kurek@arm.com> Sat Sep 19 07:56:06 2020 +0200
committer: Andrzej Kurek <andrzej.kurek@arm.com> Sat Sep 19 08:04:05 2020 +0200
tree: 45ba1c39aa7c714b93a37462c712089c1e1b0787
parent: d81351b047a3ffc0ed7d7102673e76ac65c34916 [diff] [blame]
diff --git a/include/mbedtls/ssl_internal.h b/include/mbedtls/ssl_internal.h
index 40d246e..a1c5d1d 100644
--- a/include/mbedtls/ssl_internal.h
+++ b/include/mbedtls/ssl_internal.h

@@ -760,7 +760,11 @@
     unsigned char *key_enc;
     unsigned char *key_dec;
     unsigned int key_bitlen;
-    mbedtls_cipher_context_t cipher_ctx;        /*!<  encryption/decryption context */
+    mbedtls_cipher_context_t cipher_ctx;    /*!<  encryption/decryption context */
+#if defined(MBEDTLS_VALIDATE_SSL_KEYS_INTEGRITY)
+    uint32_t key_enc_hash;                  /*!< hash of the encryption key */
+    uint32_t key_dec_hash;                  /*!< hash of the decryption key */
+#endif
 #else
     mbedtls_cipher_context_t cipher_ctx_enc;    /*!<  encryption context      */
     mbedtls_cipher_context_t cipher_ctx_dec;    /*!<  decryption context      */
commit	a793237998d9f52f21049b5339da9ece2ffd3394	[log] [tgz]
author	Andrzej Kurek <andrzej.kurek@arm.com>	Sat Sep 19 07:56:06 2020 +0200
committer	Andrzej Kurek <andrzej.kurek@arm.com>	Sat Sep 19 08:04:05 2020 +0200
tree	45ba1c39aa7c714b93a37462c712089c1e1b0787
parent	d81351b047a3ffc0ed7d7102673e76ac65c34916 [diff] [blame]