mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2025-01-22 03:31:15 +00:00
Adding early ECDHE key generation to ssl_cli.c
This commit is contained in:
parent
c34d9cf37a
commit
e151a3528a
|
@ -3661,11 +3661,15 @@ static int ssl_out_client_key_exchange_write( mbedtls_ssl_context *ssl,
|
||||||
*p++ = 2 * NUM_ECC_BYTES + 1;
|
*p++ = 2 * NUM_ECC_BYTES + 1;
|
||||||
*p++ = 0x04; /* uncompressed point presentation */
|
*p++ = 0x04; /* uncompressed point presentation */
|
||||||
|
|
||||||
|
#if defined(MBEDTLS_EARLY_KEY_COMPUTATION) && defined(MBEDTLS_USE_TINYCRYPT)
|
||||||
|
memcpy( p, ssl->handshake->ecdh_publickey, 2 * NUM_ECC_BYTES );
|
||||||
|
#else
|
||||||
ret = uECC_make_key( p, ssl->handshake->ecdh_privkey );
|
ret = uECC_make_key( p, ssl->handshake->ecdh_privkey );
|
||||||
if( ret == UECC_FAULT_DETECTED )
|
if( ret == UECC_FAULT_DETECTED )
|
||||||
return( MBEDTLS_ERR_PLATFORM_FAULT_DETECTED );
|
return( MBEDTLS_ERR_PLATFORM_FAULT_DETECTED );
|
||||||
if( ret != UECC_SUCCESS )
|
if( ret != UECC_SUCCESS )
|
||||||
return( MBEDTLS_ERR_SSL_HW_ACCEL_FAILED );
|
return( MBEDTLS_ERR_SSL_HW_ACCEL_FAILED );
|
||||||
|
#endif /* MBEDTLS_EARLY_KEY_COMPUTATION && MBEDTLS_USE_TINYCRYPT */
|
||||||
p += 2 * NUM_ECC_BYTES;
|
p += 2 * NUM_ECC_BYTES;
|
||||||
}
|
}
|
||||||
else
|
else
|
||||||
|
@ -4272,6 +4276,14 @@ int mbedtls_ssl_handshake_client_step( mbedtls_ssl_context *ssl )
|
||||||
* ServerHelloDone
|
* ServerHelloDone
|
||||||
*/
|
*/
|
||||||
case MBEDTLS_SSL_SERVER_HELLO:
|
case MBEDTLS_SSL_SERVER_HELLO:
|
||||||
|
#if defined(MBEDTLS_EARLY_KEY_COMPUTATION) && defined(MBEDTLS_USE_TINYCRYPT)
|
||||||
|
ret = uECC_make_key( ssl->handshake->ecdh_publickey, ssl->handshake->ecdh_privkey );
|
||||||
|
if( ret == UECC_FAULT_DETECTED )
|
||||||
|
return( MBEDTLS_ERR_PLATFORM_FAULT_DETECTED );
|
||||||
|
if( ret != UECC_SUCCESS )
|
||||||
|
return( MBEDTLS_ERR_SSL_HW_ACCEL_FAILED );
|
||||||
|
#endif /* MBEDTLS_EARLY_KEY_COMPUTATION && MBEDTLS_USE_TINYCRYPT */
|
||||||
|
|
||||||
ret = ssl_parse_server_hello( ssl );
|
ret = ssl_parse_server_hello( ssl );
|
||||||
break;
|
break;
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue