Skip to content

Commit 60db2b0

Browse files
author
Ben Taylor
committed
Re-adding tests for ECDH
Signed-off-by: Ben Taylor <[email protected]>
1 parent 03a563c commit 60db2b0

File tree

1 file changed

+46
-0
lines changed

1 file changed

+46
-0
lines changed

tests/ssl-opt.sh

Lines changed: 46 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2357,6 +2357,52 @@ run_test "Opaque keys for server authentication: EC + RSA, force ECDHE-ECDSA"
23572357
-S "error" \
23582358
-C "error"
23592359

2360+
requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
2361+
requires_hash_alg SHA_256
2362+
run_test "Opaque key for server authentication: ECDH-" \
2363+
"$P_SRV auth_mode=required key_opaque=1\
2364+
crt_file=$DATA_FILES_PATH/server5.ku-ka.crt\
2365+
key_file=$DATA_FILES_PATH/server5.key key_opaque_algs=ecdh,none" \
2366+
"$P_CLI force_version=tls12" \
2367+
0 \
2368+
-c "Verifying peer X.509 certificate... ok" \
2369+
-c "Ciphersuite is TLS-ECDH-" \
2370+
-s "key types: Opaque, none" \
2371+
-s "Ciphersuite is TLS-ECDH-" \
2372+
-S "error" \
2373+
-C "error"
2374+
2375+
requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
2376+
requires_config_enabled PSA_WANT_ALG_ECDSA
2377+
requires_config_enabled PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_BASIC
2378+
requires_config_disabled MBEDTLS_SSL_ASYNC_PRIVATE
2379+
requires_hash_alg SHA_256
2380+
run_test "Opaque key for server authentication: invalid key: ecdh with RSA key, no async" \
2381+
"$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2382+
key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=ecdh,none \
2383+
debug_level=1" \
2384+
"$P_CLI force_version=tls12" \
2385+
1 \
2386+
-s "key types: Opaque, none" \
2387+
-s "error" \
2388+
-c "error" \
2389+
-c "Public key type mismatch"
2390+
2391+
requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
2392+
requires_config_enabled PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_BASIC
2393+
requires_config_enabled MBEDTLS_SSL_ASYNC_PRIVATE
2394+
requires_hash_alg SHA_256
2395+
run_test "Opaque key for server authentication: invalid alg: ecdh with RSA key, async" \
2396+
"$P_SRV key_opaque=1 crt_file=$DATA_FILES_PATH/server2-sha256.crt \
2397+
key_file=$DATA_FILES_PATH/server2.key key_opaque_algs=ecdh,none \
2398+
debug_level=1" \
2399+
"$P_CLI force_version=tls12" \
2400+
1 \
2401+
-s "key types: Opaque, none" \
2402+
-s "got ciphersuites in common, but none of them usable" \
2403+
-s "error" \
2404+
-c "error"
2405+
23602406
requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
23612407
requires_config_enabled PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_BASIC
23622408
requires_config_enabled MBEDTLS_SSL_SRV_C

0 commit comments

Comments
 (0)