Add ECDH- Opaque PK key test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>

commit: 023bf8d7c209bb8861eaecd979094d618784dfeb [log] [tgz]
author: Neil Armstrong <narmstrong@baylibre.com> Wed Mar 23 14:04:04 2022 +0100
committer: Neil Armstrong <narmstrong@baylibre.com> Thu Mar 31 15:24:17 2022 +0200
tree: 0dee1be23d80378b03f61a5a3715d2afdaa6ba58
parent: 80325d00cf85b7bf97882ac68d7a76b867a642c3 [diff]
diff --git a/tests/ssl-opt.sh b/tests/ssl-opt.sh
index 03351d4..5d77e29 100755
--- a/tests/ssl-opt.sh
+++ b/tests/ssl-opt.sh

@@ -1583,6 +1583,23 @@
             -S "error" \
             -C "error"
 
+requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
+requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
+requires_config_enabled MBEDTLS_X509_CRT_PARSE_C
+requires_config_enabled MBEDTLS_ECDSA_C
+requires_config_enabled MBEDTLS_SHA256_C
+run_test    "Opaque key for server authentication (ECDH-)" \
+            "$P_SRV auth_mode=required key_opaque=1 crt_file=data_files/server5.ku-ka.crt \
+             key_file=data_files/server5.key" \
+            "$P_CLI" \
+            0 \
+            -c "Verifying peer X.509 certificate... ok" \
+            -c "Ciphersuite is TLS-ECDH-" \
+            -s "key types: Opaque, none" \
+            -s "Ciphersuite is TLS-ECDH-" \
+            -S "error" \
+            -C "error"
+
 # Test using an opaque private key for client/server authentication
 requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
 requires_config_enabled MBEDTLS_USE_PSA_CRYPTO
commit	023bf8d7c209bb8861eaecd979094d618784dfeb	[log] [tgz]
author	Neil Armstrong <narmstrong@baylibre.com>	Wed Mar 23 14:04:04 2022 +0100
committer	Neil Armstrong <narmstrong@baylibre.com>	Thu Mar 31 15:24:17 2022 +0200
tree	0dee1be23d80378b03f61a5a3715d2afdaa6ba58
parent	80325d00cf85b7bf97882ac68d7a76b867a642c3 [diff]