TinyCrypt SSL: Extend scope of use of TC in PMS derivation Extend scope of TC in ECDH-param extraction from CRT Previously, TinyCrypt was only used for ECDHE-ECDSA/RSA ciphersuites. This commit is a step towards using it for _all_ ciphersuites involving ECDHE (specifically: ECDHE, ECDHE-PSK, static ECDH), extending the scope of the use of TinyCrypt in the assembly of the PMS.

commit: ecf5d3fdb10e277a770df69853672e5c703b351b [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Sun Sep 01 07:47:29 2019 +0100
committer: Hanno Becker <hanno.becker@arm.com> Wed Sep 04 16:19:49 2019 +0100
tree: caa6ababe9fd2988e9e17beea8fa2d5c5b4cee85
parent: 8b3408f1a87e63b7a99f2d40908b2e9aec5f3e86 [diff] [blame]
diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index 2e8a076..75d199a 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c

@@ -1952,9 +1952,13 @@
 
 #if defined(MBEDTLS_USE_TINYCRYPT)
     if( mbedtls_ssl_suite_get_key_exchange( ciphersuite_info )
-        == MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA ||
+        == MBEDTLS_KEY_EXCHANGE_ECDHE_RSA                       ||
         mbedtls_ssl_suite_get_key_exchange( ciphersuite_info )
-        == MBEDTLS_KEY_EXCHANGE_ECDHE_RSA )
+        == MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA                     ||
+        mbedtls_ssl_suite_get_key_exchange( ciphersuite_info )
+        == MBEDTLS_KEY_EXCHANGE_ECDH_RSA                        ||
+        mbedtls_ssl_suite_get_key_exchange( ciphersuite_info )
+        == MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA )
     {
         const struct uECC_Curve_t * uecc_curve = uECC_secp256r1();
         ((void) ret);
commit	ecf5d3fdb10e277a770df69853672e5c703b351b	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Sun Sep 01 07:47:29 2019 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Wed Sep 04 16:19:49 2019 +0100
tree	caa6ababe9fd2988e9e17beea8fa2d5c5b4cee85
parent	8b3408f1a87e63b7a99f2d40908b2e9aec5f3e86 [diff] [blame]