TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 63c78b869f26c7c092a14e72a52e271f3e2cb65f / . / tests / opt-testcases / tls13-kex-modes.sh
blob: f64c8c6df5979dd7f4076da53379487b984cbae7 [file] [log] [blame]
Jerry Yu6a9beba2022-07-31 12:45:25 +0800[diff] [blame]1#!/bin/sh
2
3# tls13-kex-modes.sh
4#
5# Copyright The Mbed TLS Contributors
6# SPDX-License-Identifier: Apache-2.0
7#
8# Licensed under the Apache License, Version 2.0 (the "License"); you may
9# not use this file except in compliance with the License.
10# You may obtain a copy of the License at
11#
12# http://www.apache.org/licenses/LICENSE-2.0
13#
14# Unless required by applicable law or agreed to in writing, software
15# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
16# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
17# See the License for the specific language governing permissions and
18# limitations under the License.
19#
20
21requires_openssl_tls1_3
22requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
23requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
24requires_config_enabled MBEDTLS_SSL_SRV_C
25requires_config_enabled MBEDTLS_DEBUG_C
26# SOME_PSK_ENABLED
27requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
28 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
29run_test "TLS 1.3: PSK: psk: with matched key and identity, with psk_ke and psk_dhe_ke. G->m" \
30 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
31 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
32 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
33 localhost" \
34 0 \
35 -s "found psk key exchange modes extension" \
36 -s "found pre_shared_key extension" \
37 -s "Found PSK_EPHEMERAL KEX MODE" \
38 -s "Found PSK KEX MODE" \
39 -s "Pre shared key found" \
40 -S "No matched PSK or ticket" \
41 -s "key exchange mode: psk$" \
42 -S "key exchange mode: psk_ephemeral" \
43 -S "key exchange mode: ephemeral"
44
45requires_openssl_tls1_3
46requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
47requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
48requires_config_enabled MBEDTLS_SSL_SRV_C
49requires_config_enabled MBEDTLS_DEBUG_C
50# SOME_PSK_ENABLED
51requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
52 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
53run_test "TLS 1.3: PSK: psk: with matched key and identity, with psk_ke and psk_dhe_ke. O->m" \
54 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
55 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
56 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
57 0 \
58 -s "found psk key exchange modes extension" \
59 -s "found pre_shared_key extension" \
60 -s "Found PSK_EPHEMERAL KEX MODE" \
61 -s "Found PSK KEX MODE" \
62 -s "Pre shared key found" \
63 -S "No matched PSK or ticket" \
64 -s "key exchange mode: psk$" \
65 -S "key exchange mode: psk_ephemeral" \
66 -S "key exchange mode: ephemeral"
67
68requires_openssl_tls1_3
69requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
70requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
71requires_config_enabled MBEDTLS_SSL_SRV_C
72requires_config_enabled MBEDTLS_DEBUG_C
73# SOME_PSK_ENABLED
74requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
75 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
76run_test "TLS 1.3: PSK: psk: with matched key and identity, with psk_ke. G->m" \
77 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
78 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
79 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
80 localhost" \
81 0 \
82 -s "found psk key exchange modes extension" \
83 -s "found pre_shared_key extension" \
84 -S "Found PSK_EPHEMERAL KEX MODE" \
85 -s "Found PSK KEX MODE" \
86 -s "Pre shared key found" \
87 -S "No matched PSK or ticket" \
88 -s "key exchange mode: psk$" \
89 -S "key exchange mode: psk_ephemeral" \
90 -S "key exchange mode: ephemeral"
91
92requires_openssl_tls1_3
93requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
94requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
95requires_config_enabled MBEDTLS_SSL_SRV_C
96requires_config_enabled MBEDTLS_DEBUG_C
97# SOME_PSK_ENABLED
98requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
99 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
100run_test "TLS 1.3: PSK: psk: with matched key and identity, with psk_dhe_ke. G->m" \
101 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
102 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
103 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
104 localhost" \
105 1 \
106 -s "found psk key exchange modes extension" \
107 -s "found pre_shared_key extension" \
108 -s "Found PSK_EPHEMERAL KEX MODE" \
109 -S "Found PSK KEX MODE" \
110 -s "Pre shared key found" \
111 -S "No matched PSK or ticket" \
112 -S "key exchange mode: psk$" \
113 -S "key exchange mode: psk_ephemeral" \
114 -S "key exchange mode: ephemeral"
115
116requires_openssl_tls1_3
117requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
118requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
119requires_config_enabled MBEDTLS_SSL_SRV_C
120requires_config_enabled MBEDTLS_DEBUG_C
121# SOME_PSK_ENABLED
122requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
123 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
124run_test "TLS 1.3: PSK: psk: with matched key and identity, with psk_dhe_ke. O->m" \
125 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
126 "$O_NEXT_CLI -tls1_3 -msg \
127 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
128 1 \
129 -s "found psk key exchange modes extension" \
130 -s "found pre_shared_key extension" \
131 -s "Found PSK_EPHEMERAL KEX MODE" \
132 -S "Found PSK KEX MODE" \
133 -s "Pre shared key found" \
134 -S "No matched PSK or ticket" \
135 -S "key exchange mode: psk$" \
136 -S "key exchange mode: psk_ephemeral" \
137 -S "key exchange mode: ephemeral"
138
139requires_openssl_tls1_3
140requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
141requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
142requires_config_enabled MBEDTLS_SSL_SRV_C
143requires_config_enabled MBEDTLS_DEBUG_C
144# SOME_PSK_ENABLED
145requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
146 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
147run_test "TLS 1.3: PSK: psk: with mismatched identity, with psk_ke and psk_dhe_ke. G->m" \
148 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
149 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
150 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
151 localhost" \
152 1 \
153 -s "found psk key exchange modes extension" \
154 -s "found pre_shared_key extension" \
155 -s "Found PSK_EPHEMERAL KEX MODE" \
156 -s "Found PSK KEX MODE" \
157 -S "Pre shared key found" \
158 -s "No matched PSK or ticket" \
159 -S "key exchange mode: psk$" \
160 -S "key exchange mode: psk_ephemeral" \
161 -S "key exchange mode: ephemeral"
162
163requires_openssl_tls1_3
164requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
165requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
166requires_config_enabled MBEDTLS_SSL_SRV_C
167requires_config_enabled MBEDTLS_DEBUG_C
168# SOME_PSK_ENABLED
169requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
170 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
171run_test "TLS 1.3: PSK: psk: with mismatched identity, with psk_ke and psk_dhe_ke. O->m" \
172 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
173 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
174 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
175 1 \
176 -s "found psk key exchange modes extension" \
177 -s "found pre_shared_key extension" \
178 -s "Found PSK_EPHEMERAL KEX MODE" \
179 -s "Found PSK KEX MODE" \
180 -S "Pre shared key found" \
181 -s "No matched PSK or ticket" \
182 -S "key exchange mode: psk$" \
183 -S "key exchange mode: psk_ephemeral" \
184 -S "key exchange mode: ephemeral"
185
186requires_openssl_tls1_3
187requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
188requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
189requires_config_enabled MBEDTLS_SSL_SRV_C
190requires_config_enabled MBEDTLS_DEBUG_C
191# SOME_PSK_ENABLED
192requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
193 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
194run_test "TLS 1.3: PSK: psk: with mismatched identity, with psk_ke. G->m" \
195 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
196 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
197 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
198 localhost" \
199 1 \
200 -s "found psk key exchange modes extension" \
201 -s "found pre_shared_key extension" \
202 -S "Found PSK_EPHEMERAL KEX MODE" \
203 -s "Found PSK KEX MODE" \
204 -S "Pre shared key found" \
205 -s "No matched PSK or ticket" \
206 -S "key exchange mode: psk$" \
207 -S "key exchange mode: psk_ephemeral" \
208 -S "key exchange mode: ephemeral"
209
210requires_openssl_tls1_3
211requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
212requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
213requires_config_enabled MBEDTLS_SSL_SRV_C
214requires_config_enabled MBEDTLS_DEBUG_C
215# SOME_PSK_ENABLED
216requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
217 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
218run_test "TLS 1.3: PSK: psk: with mismatched identity, with psk_dhe_ke. G->m" \
219 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
220 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
221 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
222 localhost" \
223 1 \
224 -s "found psk key exchange modes extension" \
225 -s "found pre_shared_key extension" \
226 -s "Found PSK_EPHEMERAL KEX MODE" \
227 -S "Found PSK KEX MODE" \
228 -S "Pre shared key found" \
229 -s "No matched PSK or ticket" \
230 -S "key exchange mode: psk$" \
231 -S "key exchange mode: psk_ephemeral" \
232 -S "key exchange mode: ephemeral"
233
234requires_openssl_tls1_3
235requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
236requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
237requires_config_enabled MBEDTLS_SSL_SRV_C
238requires_config_enabled MBEDTLS_DEBUG_C
239# SOME_PSK_ENABLED
240requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
241 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
242run_test "TLS 1.3: PSK: psk: with mismatched identity, with psk_dhe_ke. O->m" \
243 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
244 "$O_NEXT_CLI -tls1_3 -msg \
245 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
246 1 \
247 -s "found psk key exchange modes extension" \
248 -s "found pre_shared_key extension" \
249 -s "Found PSK_EPHEMERAL KEX MODE" \
250 -S "Found PSK KEX MODE" \
251 -S "Pre shared key found" \
252 -s "No matched PSK or ticket" \
253 -S "key exchange mode: psk$" \
254 -S "key exchange mode: psk_ephemeral" \
255 -S "key exchange mode: ephemeral"
256
257requires_openssl_tls1_3
258requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
259requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
260requires_config_enabled MBEDTLS_SSL_SRV_C
261requires_config_enabled MBEDTLS_DEBUG_C
262# SOME_PSK_ENABLED
263requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
264 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
265run_test "TLS 1.3: PSK: psk: without pre_shared_key,with psk_ke and psk_dhe_ke. G->m" \
266 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
267 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+VERS-TLS1.3 \
268 localhost" \
269 1 \
270 -s "found psk key exchange modes extension" \
271 -S "found pre_shared_key extension" \
272 -s "Found PSK_EPHEMERAL KEX MODE" \
273 -s "Found PSK KEX MODE" \
274 -S "Pre shared key found" \
275 -S "No matched PSK or ticket" \
276 -S "key exchange mode: psk$" \
277 -S "key exchange mode: psk_ephemeral" \
278 -S "key exchange mode: ephemeral"
279
280requires_openssl_tls1_3
281requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
282requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
283requires_config_enabled MBEDTLS_SSL_SRV_C
284requires_config_enabled MBEDTLS_DEBUG_C
285# SOME_PSK_ENABLED
286requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
287 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
288run_test "TLS 1.3: PSK: psk: without pre_shared_key,with psk_ke and psk_dhe_ke. O->m" \
289 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
290 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex " \
291 1 \
292 -s "found psk key exchange modes extension" \
293 -S "found pre_shared_key extension" \
294 -s "Found PSK_EPHEMERAL KEX MODE" \
295 -s "Found PSK KEX MODE" \
296 -S "Pre shared key found" \
297 -S "No matched PSK or ticket" \
298 -S "key exchange mode: psk$" \
299 -S "key exchange mode: psk_ephemeral" \
300 -S "key exchange mode: ephemeral"
301
302requires_openssl_tls1_3
303requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
304requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
305requires_config_enabled MBEDTLS_SSL_SRV_C
306requires_config_enabled MBEDTLS_DEBUG_C
307# SOME_PSK_ENABLED
308requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
309 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
310run_test "TLS 1.3: PSK: psk: without pre_shared_key,with psk_dhe_ke. O->m" \
311 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
312 "$O_NEXT_CLI -tls1_3 -msg " \
313 1 \
314 -s "found psk key exchange modes extension" \
315 -S "found pre_shared_key extension" \
316 -s "Found PSK_EPHEMERAL KEX MODE" \
317 -S "Found PSK KEX MODE" \
318 -S "Pre shared key found" \
319 -S "No matched PSK or ticket" \
320 -S "key exchange mode: psk$" \
321 -S "key exchange mode: psk_ephemeral" \
322 -S "key exchange mode: ephemeral"
Jerry Yu9b83fa12022-07-31 13:13:51 +0800[diff] [blame]323
324requires_openssl_tls1_3
325requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
326requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
327requires_config_enabled MBEDTLS_SSL_SRV_C
328requires_config_enabled MBEDTLS_DEBUG_C
329# SOME_PSK_ENABLED
330requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
331 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
332# SOME_ECDHE_ENABLED?
333requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
334 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
335run_test "TLS 1.3: PSK: psk_ephemeral: with matched key and identity, with psk_ke and psk_dhe_ke. G->m" \
336 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
337 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
338 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
339 localhost" \
340 0 \
341 -s "found psk key exchange modes extension" \
342 -s "found pre_shared_key extension" \
343 -s "Found PSK_EPHEMERAL KEX MODE" \
344 -s "Found PSK KEX MODE" \
345 -s "Pre shared key found" \
346 -S "No matched PSK or ticket" \
347 -S "key exchange mode: psk$" \
348 -s "key exchange mode: psk_ephemeral" \
349 -S "key exchange mode: ephemeral"
350
351requires_openssl_tls1_3
352requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
353requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
354requires_config_enabled MBEDTLS_SSL_SRV_C
355requires_config_enabled MBEDTLS_DEBUG_C
356# SOME_PSK_ENABLED
357requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
358 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
359# SOME_ECDHE_ENABLED?
360requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
361 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
362run_test "TLS 1.3: PSK: psk_ephemeral: with matched key and identity, with psk_ke and psk_dhe_ke. O->m" \
363 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
364 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
365 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
366 0 \
367 -s "found psk key exchange modes extension" \
368 -s "found pre_shared_key extension" \
369 -s "Found PSK_EPHEMERAL KEX MODE" \
370 -s "Found PSK KEX MODE" \
371 -s "Pre shared key found" \
372 -S "No matched PSK or ticket" \
373 -S "key exchange mode: psk$" \
374 -s "key exchange mode: psk_ephemeral" \
375 -S "key exchange mode: ephemeral"
376
377requires_openssl_tls1_3
378requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
379requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
380requires_config_enabled MBEDTLS_SSL_SRV_C
381requires_config_enabled MBEDTLS_DEBUG_C
382# SOME_PSK_ENABLED
383requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
384 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
385# SOME_ECDHE_ENABLED?
386requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
387 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
388run_test "TLS 1.3: PSK: psk_ephemeral: with matched key and identity, with psk_ke. G->m" \
389 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
390 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
391 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
392 localhost" \
393 1 \
394 -s "found psk key exchange modes extension" \
395 -s "found pre_shared_key extension" \
396 -S "Found PSK_EPHEMERAL KEX MODE" \
397 -s "Found PSK KEX MODE" \
398 -s "Pre shared key found" \
399 -S "No matched PSK or ticket" \
400 -S "key exchange mode: psk$" \
401 -S "key exchange mode: psk_ephemeral" \
402 -S "key exchange mode: ephemeral"
403
404requires_openssl_tls1_3
405requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
406requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
407requires_config_enabled MBEDTLS_SSL_SRV_C
408requires_config_enabled MBEDTLS_DEBUG_C
409# SOME_PSK_ENABLED
410requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
411 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
412# SOME_ECDHE_ENABLED?
413requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
414 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
415run_test "TLS 1.3: PSK: psk_ephemeral: with matched key and identity, with psk_dhe_ke. G->m" \
416 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
417 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
418 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
419 localhost" \
420 0 \
421 -s "found psk key exchange modes extension" \
422 -s "found pre_shared_key extension" \
423 -s "Found PSK_EPHEMERAL KEX MODE" \
424 -S "Found PSK KEX MODE" \
425 -s "Pre shared key found" \
426 -S "No matched PSK or ticket" \
427 -S "key exchange mode: psk$" \
428 -s "key exchange mode: psk_ephemeral" \
429 -S "key exchange mode: ephemeral"
430
431requires_openssl_tls1_3
432requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
433requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
434requires_config_enabled MBEDTLS_SSL_SRV_C
435requires_config_enabled MBEDTLS_DEBUG_C
436# SOME_PSK_ENABLED
437requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
438 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
439# SOME_ECDHE_ENABLED?
440requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
441 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
442run_test "TLS 1.3: PSK: psk_ephemeral: with matched key and identity, with psk_dhe_ke. O->m" \
443 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
444 "$O_NEXT_CLI -tls1_3 -msg \
445 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
446 0 \
447 -s "found psk key exchange modes extension" \
448 -s "found pre_shared_key extension" \
449 -s "Found PSK_EPHEMERAL KEX MODE" \
450 -S "Found PSK KEX MODE" \
451 -s "Pre shared key found" \
452 -S "No matched PSK or ticket" \
453 -S "key exchange mode: psk$" \
454 -s "key exchange mode: psk_ephemeral" \
455 -S "key exchange mode: ephemeral"
456
457requires_openssl_tls1_3
458requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
459requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
460requires_config_enabled MBEDTLS_SSL_SRV_C
461requires_config_enabled MBEDTLS_DEBUG_C
462# SOME_PSK_ENABLED
463requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
464 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
465# SOME_ECDHE_ENABLED?
466requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
467 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
468run_test "TLS 1.3: PSK: psk_ephemeral: with mismatched identity, with psk_ke and psk_dhe_ke. G->m" \
469 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
470 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
471 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
472 localhost" \
473 1 \
474 -s "found psk key exchange modes extension" \
475 -s "found pre_shared_key extension" \
476 -s "Found PSK_EPHEMERAL KEX MODE" \
477 -s "Found PSK KEX MODE" \
478 -S "Pre shared key found" \
479 -s "No matched PSK or ticket" \
480 -S "key exchange mode: psk$" \
481 -S "key exchange mode: psk_ephemeral" \
482 -S "key exchange mode: ephemeral"
483
484requires_openssl_tls1_3
485requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
486requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
487requires_config_enabled MBEDTLS_SSL_SRV_C
488requires_config_enabled MBEDTLS_DEBUG_C
489# SOME_PSK_ENABLED
490requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
491 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
492# SOME_ECDHE_ENABLED?
493requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
494 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
495run_test "TLS 1.3: PSK: psk_ephemeral: with mismatched identity, with psk_ke and psk_dhe_ke. O->m" \
496 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
497 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
498 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
499 1 \
500 -s "found psk key exchange modes extension" \
501 -s "found pre_shared_key extension" \
502 -s "Found PSK_EPHEMERAL KEX MODE" \
503 -s "Found PSK KEX MODE" \
504 -S "Pre shared key found" \
505 -s "No matched PSK or ticket" \
506 -S "key exchange mode: psk$" \
507 -S "key exchange mode: psk_ephemeral" \
508 -S "key exchange mode: ephemeral"
509
510requires_openssl_tls1_3
511requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
512requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
513requires_config_enabled MBEDTLS_SSL_SRV_C
514requires_config_enabled MBEDTLS_DEBUG_C
515# SOME_PSK_ENABLED
516requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
517 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
518# SOME_ECDHE_ENABLED?
519requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
520 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
521run_test "TLS 1.3: PSK: psk_ephemeral: with mismatched identity, with psk_ke. G->m" \
522 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
523 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
524 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
525 localhost" \
526 1 \
527 -s "found psk key exchange modes extension" \
528 -s "found pre_shared_key extension" \
529 -S "Found PSK_EPHEMERAL KEX MODE" \
530 -s "Found PSK KEX MODE" \
531 -S "Pre shared key found" \
532 -s "No matched PSK or ticket" \
533 -S "key exchange mode: psk$" \
534 -S "key exchange mode: psk_ephemeral" \
535 -S "key exchange mode: ephemeral"
536
537requires_openssl_tls1_3
538requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
539requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
540requires_config_enabled MBEDTLS_SSL_SRV_C
541requires_config_enabled MBEDTLS_DEBUG_C
542# SOME_PSK_ENABLED
543requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
544 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
545# SOME_ECDHE_ENABLED?
546requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
547 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
548run_test "TLS 1.3: PSK: psk_ephemeral: with mismatched identity, with psk_dhe_ke. G->m" \
549 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
550 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
551 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
552 localhost" \
553 1 \
554 -s "found psk key exchange modes extension" \
555 -s "found pre_shared_key extension" \
556 -s "Found PSK_EPHEMERAL KEX MODE" \
557 -S "Found PSK KEX MODE" \
558 -S "Pre shared key found" \
559 -s "No matched PSK or ticket" \
560 -S "key exchange mode: psk$" \
561 -S "key exchange mode: psk_ephemeral" \
562 -S "key exchange mode: ephemeral"
563
564requires_openssl_tls1_3
565requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
566requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
567requires_config_enabled MBEDTLS_SSL_SRV_C
568requires_config_enabled MBEDTLS_DEBUG_C
569# SOME_PSK_ENABLED
570requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
571 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
572# SOME_ECDHE_ENABLED?
573requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
574 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
575run_test "TLS 1.3: PSK: psk_ephemeral: with mismatched identity, with psk_dhe_ke. O->m" \
576 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
577 "$O_NEXT_CLI -tls1_3 -msg \
578 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
579 1 \
580 -s "found psk key exchange modes extension" \
581 -s "found pre_shared_key extension" \
582 -s "Found PSK_EPHEMERAL KEX MODE" \
583 -S "Found PSK KEX MODE" \
584 -S "Pre shared key found" \
585 -s "No matched PSK or ticket" \
586 -S "key exchange mode: psk$" \
587 -S "key exchange mode: psk_ephemeral" \
588 -S "key exchange mode: ephemeral"
589
590requires_openssl_tls1_3
591requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
592requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
593requires_config_enabled MBEDTLS_SSL_SRV_C
594requires_config_enabled MBEDTLS_DEBUG_C
595# SOME_PSK_ENABLED
596requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
597 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
598# SOME_ECDHE_ENABLED?
599requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
600 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
601run_test "TLS 1.3: PSK: psk_ephemeral: without pre_shared_key,with psk_ke and psk_dhe_ke. G->m" \
602 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
603 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+VERS-TLS1.3 \
604 localhost" \
605 1 \
606 -s "found psk key exchange modes extension" \
607 -S "found pre_shared_key extension" \
608 -s "Found PSK_EPHEMERAL KEX MODE" \
609 -s "Found PSK KEX MODE" \
610 -S "Pre shared key found" \
611 -S "No matched PSK or ticket" \
612 -S "key exchange mode: psk$" \
613 -S "key exchange mode: psk_ephemeral" \
614 -S "key exchange mode: ephemeral"
615
616requires_openssl_tls1_3
617requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
618requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
619requires_config_enabled MBEDTLS_SSL_SRV_C
620requires_config_enabled MBEDTLS_DEBUG_C
621# SOME_PSK_ENABLED
622requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
623 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
624# SOME_ECDHE_ENABLED?
625requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
626 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
627run_test "TLS 1.3: PSK: psk_ephemeral: without pre_shared_key,with psk_ke and psk_dhe_ke. O->m" \
628 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
629 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex " \
630 1 \
631 -s "found psk key exchange modes extension" \
632 -S "found pre_shared_key extension" \
633 -s "Found PSK_EPHEMERAL KEX MODE" \
634 -s "Found PSK KEX MODE" \
635 -S "Pre shared key found" \
636 -S "No matched PSK or ticket" \
637 -S "key exchange mode: psk$" \
638 -S "key exchange mode: psk_ephemeral" \
639 -S "key exchange mode: ephemeral"
640
641requires_openssl_tls1_3
642requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
643requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
644requires_config_enabled MBEDTLS_SSL_SRV_C
645requires_config_enabled MBEDTLS_DEBUG_C
646# SOME_PSK_ENABLED
647requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
648 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
649# SOME_ECDHE_ENABLED?
650requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
651 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
652run_test "TLS 1.3: PSK: psk_ephemeral: without pre_shared_key,with psk_dhe_ke. O->m" \
653 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
654 "$O_NEXT_CLI -tls1_3 -msg " \
655 1 \
656 -s "found psk key exchange modes extension" \
657 -S "found pre_shared_key extension" \
658 -s "Found PSK_EPHEMERAL KEX MODE" \
659 -S "Found PSK KEX MODE" \
660 -S "Pre shared key found" \
661 -S "No matched PSK or ticket" \
662 -S "key exchange mode: psk$" \
663 -S "key exchange mode: psk_ephemeral" \
664 -S "key exchange mode: ephemeral"
665
Jerry Yufa8c3062022-07-31 13:14:56 +0800[diff] [blame]666requires_openssl_tls1_3
667requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
668requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
669requires_config_enabled MBEDTLS_SSL_SRV_C
670requires_config_enabled MBEDTLS_DEBUG_C
671# SOME_ECDHE_ENABLED?
672requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
673 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
674run_test "TLS 1.3: PSK: ephemeral: with matched key and identity, with psk_ke and psk_dhe_ke. G->m" \
675 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
676 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
677 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
678 localhost" \
679 0 \
680 -s "found psk key exchange modes extension" \
681 -s "found pre_shared_key extension" \
682 -s "Found PSK_EPHEMERAL KEX MODE" \
683 -s "Found PSK KEX MODE" \
684 -S "Pre shared key found" \
685 -S "No matched PSK or ticket"\
686 -S "key exchange mode: psk$" \
687 -S "key exchange mode: psk_ephemeral" \
688 -s "key exchange mode: ephemeral"
689
690requires_openssl_tls1_3
691requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
692requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
693requires_config_enabled MBEDTLS_SSL_SRV_C
694requires_config_enabled MBEDTLS_DEBUG_C
695# SOME_ECDHE_ENABLED?
696requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
697 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
698run_test "TLS 1.3: PSK: ephemeral: with matched key and identity, with psk_ke and psk_dhe_ke. O->m" \
699 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
700 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
701 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
702 0 \
703 -s "found psk key exchange modes extension" \
704 -s "found pre_shared_key extension" \
705 -s "Found PSK_EPHEMERAL KEX MODE" \
706 -s "Found PSK KEX MODE" \
707 -S "Pre shared key found" \
708 -S "No matched PSK or ticket"\
709 -S "key exchange mode: psk$" \
710 -S "key exchange mode: psk_ephemeral" \
711 -s "key exchange mode: ephemeral"
712
713requires_openssl_tls1_3
714requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
715requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
716requires_config_enabled MBEDTLS_SSL_SRV_C
717requires_config_enabled MBEDTLS_DEBUG_C
718# SOME_ECDHE_ENABLED?
719requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
720 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
721run_test "TLS 1.3: PSK: ephemeral: with matched key and identity, with psk_ke. G->m" \
722 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
723 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
724 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
725 localhost" \
726 0 \
727 -s "found psk key exchange modes extension" \
728 -s "found pre_shared_key extension" \
729 -S "Found PSK_EPHEMERAL KEX MODE" \
730 -s "Found PSK KEX MODE" \
731 -S "Pre shared key found" \
732 -S "No matched PSK or ticket"\
733 -S "key exchange mode: psk$" \
734 -S "key exchange mode: psk_ephemeral" \
735 -s "key exchange mode: ephemeral"
736
737requires_openssl_tls1_3
738requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
739requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
740requires_config_enabled MBEDTLS_SSL_SRV_C
741requires_config_enabled MBEDTLS_DEBUG_C
742# SOME_ECDHE_ENABLED?
743requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
744 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
745run_test "TLS 1.3: PSK: ephemeral: with matched key and identity, with psk_dhe_ke. G->m" \
746 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
747 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
748 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
749 localhost" \
750 0 \
751 -s "found psk key exchange modes extension" \
752 -s "found pre_shared_key extension" \
753 -s "Found PSK_EPHEMERAL KEX MODE" \
754 -S "Found PSK KEX MODE" \
755 -S "Pre shared key found" \
756 -S "No matched PSK or ticket"\
757 -S "key exchange mode: psk$" \
758 -S "key exchange mode: psk_ephemeral" \
759 -s "key exchange mode: ephemeral"
760
761requires_openssl_tls1_3
762requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
763requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
764requires_config_enabled MBEDTLS_SSL_SRV_C
765requires_config_enabled MBEDTLS_DEBUG_C
766# SOME_ECDHE_ENABLED?
767requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
768 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
769run_test "TLS 1.3: PSK: ephemeral: with matched key and identity, with psk_dhe_ke. O->m" \
770 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
771 "$O_NEXT_CLI -tls1_3 -msg \
772 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
773 0 \
774 -s "found psk key exchange modes extension" \
775 -s "found pre_shared_key extension" \
776 -s "Found PSK_EPHEMERAL KEX MODE" \
777 -S "Found PSK KEX MODE" \
778 -S "Pre shared key found" \
779 -S "No matched PSK or ticket"\
780 -S "key exchange mode: psk$" \
781 -S "key exchange mode: psk_ephemeral" \
782 -s "key exchange mode: ephemeral"
783
784requires_openssl_tls1_3
785requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
786requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
787requires_config_enabled MBEDTLS_SSL_SRV_C
788requires_config_enabled MBEDTLS_DEBUG_C
789# SOME_ECDHE_ENABLED?
790requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
791 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
792run_test "TLS 1.3: PSK: ephemeral: with mismatched identity, with psk_ke and psk_dhe_ke. G->m" \
793 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
794 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
795 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
796 localhost" \
797 0 \
798 -s "found psk key exchange modes extension" \
799 -s "found pre_shared_key extension" \
800 -s "Found PSK_EPHEMERAL KEX MODE" \
801 -s "Found PSK KEX MODE" \
802 -S "Pre shared key found" \
803 -S "No matched PSK or ticket"\
804 -S "key exchange mode: psk$" \
805 -S "key exchange mode: psk_ephemeral" \
806 -s "key exchange mode: ephemeral"
807
808requires_openssl_tls1_3
809requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
810requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
811requires_config_enabled MBEDTLS_SSL_SRV_C
812requires_config_enabled MBEDTLS_DEBUG_C
813# SOME_ECDHE_ENABLED?
814requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
815 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
816run_test "TLS 1.3: PSK: ephemeral: with mismatched identity, with psk_ke and psk_dhe_ke. O->m" \
817 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
818 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
819 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
820 0 \
821 -s "found psk key exchange modes extension" \
822 -s "found pre_shared_key extension" \
823 -s "Found PSK_EPHEMERAL KEX MODE" \
824 -s "Found PSK KEX MODE" \
825 -S "Pre shared key found" \
826 -S "No matched PSK or ticket"\
827 -S "key exchange mode: psk$" \
828 -S "key exchange mode: psk_ephemeral" \
829 -s "key exchange mode: ephemeral"
830
831requires_openssl_tls1_3
832requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
833requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
834requires_config_enabled MBEDTLS_SSL_SRV_C
835requires_config_enabled MBEDTLS_DEBUG_C
836# SOME_ECDHE_ENABLED?
837requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
838 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
839run_test "TLS 1.3: PSK: ephemeral: with mismatched identity, with psk_ke. G->m" \
840 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
841 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
842 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
843 localhost" \
844 0 \
845 -s "found psk key exchange modes extension" \
846 -s "found pre_shared_key extension" \
847 -S "Found PSK_EPHEMERAL KEX MODE" \
848 -s "Found PSK KEX MODE" \
849 -S "Pre shared key found" \
850 -S "No matched PSK or ticket"\
851 -S "key exchange mode: psk$" \
852 -S "key exchange mode: psk_ephemeral" \
853 -s "key exchange mode: ephemeral"
854
855requires_openssl_tls1_3
856requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
857requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
858requires_config_enabled MBEDTLS_SSL_SRV_C
859requires_config_enabled MBEDTLS_DEBUG_C
860# SOME_ECDHE_ENABLED?
861requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
862 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
863run_test "TLS 1.3: PSK: ephemeral: with mismatched identity, with psk_dhe_ke. G->m" \
864 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
865 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
866 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
867 localhost" \
868 0 \
869 -s "found psk key exchange modes extension" \
870 -s "found pre_shared_key extension" \
871 -s "Found PSK_EPHEMERAL KEX MODE" \
872 -S "Found PSK KEX MODE" \
873 -S "Pre shared key found" \
874 -S "No matched PSK or ticket"\
875 -S "key exchange mode: psk$" \
876 -S "key exchange mode: psk_ephemeral" \
877 -s "key exchange mode: ephemeral"
878
879requires_openssl_tls1_3
880requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
881requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
882requires_config_enabled MBEDTLS_SSL_SRV_C
883requires_config_enabled MBEDTLS_DEBUG_C
884# SOME_ECDHE_ENABLED?
885requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
886 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
887run_test "TLS 1.3: PSK: ephemeral: with mismatched identity, with psk_dhe_ke. O->m" \
888 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
889 "$O_NEXT_CLI -tls1_3 -msg \
890 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
891 0 \
892 -s "found psk key exchange modes extension" \
893 -s "found pre_shared_key extension" \
894 -s "Found PSK_EPHEMERAL KEX MODE" \
895 -S "Found PSK KEX MODE" \
896 -S "Pre shared key found" \
897 -S "No matched PSK or ticket"\
898 -S "key exchange mode: psk$" \
899 -S "key exchange mode: psk_ephemeral" \
900 -s "key exchange mode: ephemeral"
901
902requires_openssl_tls1_3
903requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
904requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
905requires_config_enabled MBEDTLS_SSL_SRV_C
906requires_config_enabled MBEDTLS_DEBUG_C
907# SOME_ECDHE_ENABLED?
908requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
909 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
910run_test "TLS 1.3: PSK: ephemeral: without pre_shared_key,with psk_ke and psk_dhe_ke. G->m" \
911 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
912 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+VERS-TLS1.3 \
913 localhost" \
914 0 \
915 -s "found psk key exchange modes extension" \
916 -S "found pre_shared_key extension" \
917 -s "Found PSK_EPHEMERAL KEX MODE" \
918 -s "Found PSK KEX MODE" \
919 -S "Pre shared key found" \
920 -S "No matched PSK or ticket"\
921 -S "key exchange mode: psk$" \
922 -S "key exchange mode: psk_ephemeral" \
923 -s "key exchange mode: ephemeral"
924
925requires_openssl_tls1_3
926requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
927requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
928requires_config_enabled MBEDTLS_SSL_SRV_C
929requires_config_enabled MBEDTLS_DEBUG_C
930# SOME_ECDHE_ENABLED?
931requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
932 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
933run_test "TLS 1.3: PSK: ephemeral: without pre_shared_key,with psk_ke and psk_dhe_ke. O->m" \
934 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
935 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex " \
936 0 \
937 -s "found psk key exchange modes extension" \
938 -S "found pre_shared_key extension" \
939 -s "Found PSK_EPHEMERAL KEX MODE" \
940 -s "Found PSK KEX MODE" \
941 -S "Pre shared key found" \
942 -S "No matched PSK or ticket"\
943 -S "key exchange mode: psk$" \
944 -S "key exchange mode: psk_ephemeral" \
945 -s "key exchange mode: ephemeral"
946
947requires_openssl_tls1_3
948requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
949requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
950requires_config_enabled MBEDTLS_SSL_SRV_C
951requires_config_enabled MBEDTLS_DEBUG_C
952# SOME_ECDHE_ENABLED?
953requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
954 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
955run_test "TLS 1.3: PSK: ephemeral: without pre_shared_key,with psk_dhe_ke. O->m" \
956 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
957 "$O_NEXT_CLI -tls1_3 -msg " \
958 0 \
959 -s "found psk key exchange modes extension" \
960 -S "found pre_shared_key extension" \
961 -s "Found PSK_EPHEMERAL KEX MODE" \
962 -S "Found PSK KEX MODE" \
963 -S "Pre shared key found" \
964 -S "No matched PSK or ticket"\
965 -S "key exchange mode: psk$" \
966 -S "key exchange mode: psk_ephemeral" \
967 -s "key exchange mode: ephemeral"
968
Jerry Yubadd46f2022-07-31 13:16:44 +0800[diff] [blame]969requires_openssl_tls1_3
970requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
971requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
972requires_config_enabled MBEDTLS_SSL_SRV_C
973requires_config_enabled MBEDTLS_DEBUG_C
974# SOME_PSK_ENABLED
975requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
976 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
977# SOME_ECDHE_ENABLED?
978requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
979 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
980run_test "TLS 1.3: PSK: psk_all: with matched key and identity, with psk_ke and psk_dhe_ke. G->m" \
981 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
982 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
983 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
984 localhost" \
985 0 \
986 -s "found psk key exchange modes extension" \
987 -s "found pre_shared_key extension" \
988 -s "Found PSK_EPHEMERAL KEX MODE" \
989 -s "Found PSK KEX MODE" \
990 -s "Pre shared key found"
991
992requires_openssl_tls1_3
993requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
994requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
995requires_config_enabled MBEDTLS_SSL_SRV_C
996requires_config_enabled MBEDTLS_DEBUG_C
997# SOME_PSK_ENABLED
998requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
999 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1000# SOME_ECDHE_ENABLED?
1001requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1002 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1003run_test "TLS 1.3: PSK: psk_all: with matched key and identity, with psk_ke and psk_dhe_ke. O->m" \
1004 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1005 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
1006 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1007 0 \
1008 -s "found psk key exchange modes extension" \
1009 -s "found pre_shared_key extension" \
1010 -s "Found PSK_EPHEMERAL KEX MODE" \
1011 -s "Found PSK KEX MODE" \
1012 -s "Pre shared key found"
1013
1014requires_openssl_tls1_3
1015requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1016requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1017requires_config_enabled MBEDTLS_SSL_SRV_C
1018requires_config_enabled MBEDTLS_DEBUG_C
1019# SOME_PSK_ENABLED
1020requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1021 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1022# SOME_ECDHE_ENABLED?
1023requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1024 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1025run_test "TLS 1.3: PSK: psk_all: with matched key and identity, with psk_ke. G->m" \
1026 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1027 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
1028 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1029 localhost" \
1030 0 \
1031 -s "found psk key exchange modes extension" \
1032 -s "found pre_shared_key extension" \
1033 -S "Found PSK_EPHEMERAL KEX MODE" \
1034 -s "Found PSK KEX MODE" \
1035 -s "Pre shared key found" \
1036 -s "key exchange mode: psk$" \
1037 -S "key exchange mode: psk_ephemeral" \
1038 -S "key exchange mode: ephemeral"
1039
1040requires_openssl_tls1_3
1041requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1042requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1043requires_config_enabled MBEDTLS_SSL_SRV_C
1044requires_config_enabled MBEDTLS_DEBUG_C
1045# SOME_PSK_ENABLED
1046requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1047 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1048# SOME_ECDHE_ENABLED?
1049requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1050 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1051run_test "TLS 1.3: PSK: psk_all: with matched key and identity, with psk_dhe_ke. G->m" \
1052 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1053 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
1054 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1055 localhost" \
1056 0 \
1057 -s "found psk key exchange modes extension" \
1058 -s "found pre_shared_key extension" \
1059 -s "Found PSK_EPHEMERAL KEX MODE" \
1060 -S "Found PSK KEX MODE" \
1061 -s "Pre shared key found" \
1062 -S "key exchange mode: psk$" \
1063 -s "key exchange mode: psk_ephemeral" \
1064 -S "key exchange mode: ephemeral"
1065
1066requires_openssl_tls1_3
1067requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1068requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1069requires_config_enabled MBEDTLS_SSL_SRV_C
1070requires_config_enabled MBEDTLS_DEBUG_C
1071# SOME_PSK_ENABLED
1072requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1073 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1074# SOME_ECDHE_ENABLED?
1075requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1076 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1077run_test "TLS 1.3: PSK: psk_all: with matched key and identity, with psk_dhe_ke. O->m" \
1078 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1079 "$O_NEXT_CLI -tls1_3 -msg \
1080 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1081 0 \
1082 -s "found psk key exchange modes extension" \
1083 -s "found pre_shared_key extension" \
1084 -s "Found PSK_EPHEMERAL KEX MODE" \
1085 -S "Found PSK KEX MODE" \
1086 -s "Pre shared key found" \
1087 -S "key exchange mode: psk$" \
1088 -s "key exchange mode: psk_ephemeral" \
1089 -S "key exchange mode: ephemeral"
1090
1091requires_openssl_tls1_3
1092requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1093requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1094requires_config_enabled MBEDTLS_SSL_SRV_C
1095requires_config_enabled MBEDTLS_DEBUG_C
1096# SOME_PSK_ENABLED
1097requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1098 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1099# SOME_ECDHE_ENABLED?
1100requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1101 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1102run_test "TLS 1.3: PSK: psk_all: with mismatched identity, with psk_ke and psk_dhe_ke. G->m" \
1103 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1104 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
1105 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1106 localhost" \
1107 1 \
1108 -s "found psk key exchange modes extension" \
1109 -s "found pre_shared_key extension" \
1110 -s "Found PSK_EPHEMERAL KEX MODE" \
1111 -s "Found PSK KEX MODE" \
1112 -S "Pre shared key found" \
1113 -s "No matched PSK or ticket" \
1114 -S "key exchange mode: psk$" \
1115 -S "key exchange mode: psk_ephemeral" \
1116 -S "key exchange mode: ephemeral"
1117
1118requires_openssl_tls1_3
1119requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1120requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1121requires_config_enabled MBEDTLS_SSL_SRV_C
1122requires_config_enabled MBEDTLS_DEBUG_C
1123# SOME_PSK_ENABLED
1124requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1125 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1126# SOME_ECDHE_ENABLED?
1127requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1128 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1129run_test "TLS 1.3: PSK: psk_all: with mismatched identity, with psk_ke and psk_dhe_ke. O->m" \
1130 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1131 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
1132 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1133 1 \
1134 -s "found psk key exchange modes extension" \
1135 -s "found pre_shared_key extension" \
1136 -s "Found PSK_EPHEMERAL KEX MODE" \
1137 -s "Found PSK KEX MODE" \
1138 -S "Pre shared key found" \
1139 -s "No matched PSK or ticket" \
1140 -S "key exchange mode: psk$" \
1141 -S "key exchange mode: psk_ephemeral" \
1142 -S "key exchange mode: ephemeral"
1143
1144requires_openssl_tls1_3
1145requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1146requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1147requires_config_enabled MBEDTLS_SSL_SRV_C
1148requires_config_enabled MBEDTLS_DEBUG_C
1149# SOME_PSK_ENABLED
1150requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1151 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1152# SOME_ECDHE_ENABLED?
1153requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1154 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1155run_test "TLS 1.3: PSK: psk_all: with mismatched identity, with psk_ke. G->m" \
1156 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1157 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
1158 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1159 localhost" \
1160 1 \
1161 -s "found psk key exchange modes extension" \
1162 -s "found pre_shared_key extension" \
1163 -S "Found PSK_EPHEMERAL KEX MODE" \
1164 -s "Found PSK KEX MODE" \
1165 -S "Pre shared key found" \
1166 -s "No matched PSK or ticket" \
1167 -S "key exchange mode: psk$" \
1168 -S "key exchange mode: psk_ephemeral" \
1169 -S "key exchange mode: ephemeral"
1170
1171requires_openssl_tls1_3
1172requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1173requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1174requires_config_enabled MBEDTLS_SSL_SRV_C
1175requires_config_enabled MBEDTLS_DEBUG_C
1176# SOME_PSK_ENABLED
1177requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1178 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1179# SOME_ECDHE_ENABLED?
1180requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1181 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1182run_test "TLS 1.3: PSK: psk_all: with mismatched identity, with psk_dhe_ke. G->m" \
1183 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1184 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
1185 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1186 localhost" \
1187 1 \
1188 -s "found psk key exchange modes extension" \
1189 -s "found pre_shared_key extension" \
1190 -s "Found PSK_EPHEMERAL KEX MODE" \
1191 -S "Found PSK KEX MODE" \
1192 -S "Pre shared key found" \
1193 -s "No matched PSK or ticket" \
1194 -S "key exchange mode: psk$" \
1195 -S "key exchange mode: psk_ephemeral" \
1196 -S "key exchange mode: ephemeral"
1197
1198requires_openssl_tls1_3
1199requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1200requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1201requires_config_enabled MBEDTLS_SSL_SRV_C
1202requires_config_enabled MBEDTLS_DEBUG_C
1203# SOME_PSK_ENABLED
1204requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1205 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1206# SOME_ECDHE_ENABLED?
1207requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1208 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1209run_test "TLS 1.3: PSK: psk_all: with mismatched identity, with psk_dhe_ke. O->m" \
1210 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1211 "$O_NEXT_CLI -tls1_3 -msg \
1212 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1213 1 \
1214 -s "found psk key exchange modes extension" \
1215 -s "found pre_shared_key extension" \
1216 -s "Found PSK_EPHEMERAL KEX MODE" \
1217 -S "Found PSK KEX MODE" \
1218 -S "Pre shared key found" \
1219 -s "No matched PSK or ticket" \
1220 -S "key exchange mode: psk$" \
1221 -S "key exchange mode: psk_ephemeral" \
1222 -S "key exchange mode: ephemeral"
1223
1224requires_openssl_tls1_3
1225requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1226requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1227requires_config_enabled MBEDTLS_SSL_SRV_C
1228requires_config_enabled MBEDTLS_DEBUG_C
1229# SOME_PSK_ENABLED
1230requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1231 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1232# SOME_ECDHE_ENABLED?
1233requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1234 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1235run_test "TLS 1.3: PSK: psk_all: without pre_shared_key,with psk_ke and psk_dhe_ke. G->m" \
1236 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1237 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+VERS-TLS1.3 \
1238 localhost" \
1239 1 \
1240 -s "found psk key exchange modes extension" \
1241 -S "found pre_shared_key extension" \
1242 -s "Found PSK_EPHEMERAL KEX MODE" \
1243 -s "Found PSK KEX MODE" \
1244 -S "Pre shared key found"
1245
1246requires_openssl_tls1_3
1247requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1248requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1249requires_config_enabled MBEDTLS_SSL_SRV_C
1250requires_config_enabled MBEDTLS_DEBUG_C
1251# SOME_PSK_ENABLED
1252requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1253 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1254# SOME_ECDHE_ENABLED?
1255requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1256 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1257run_test "TLS 1.3: PSK: psk_all: without pre_shared_key,with psk_ke and psk_dhe_ke. O->m" \
1258 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1259 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex " \
1260 1 \
1261 -s "found psk key exchange modes extension" \
1262 -S "found pre_shared_key extension" \
1263 -s "Found PSK_EPHEMERAL KEX MODE" \
1264 -s "Found PSK KEX MODE" \
1265 -S "Pre shared key found"
1266
1267requires_openssl_tls1_3
1268requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1269requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1270requires_config_enabled MBEDTLS_SSL_SRV_C
1271requires_config_enabled MBEDTLS_DEBUG_C
1272# SOME_PSK_ENABLED
1273requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1274 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1275# SOME_ECDHE_ENABLED?
1276requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1277 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1278run_test "TLS 1.3: PSK: psk_all: without pre_shared_key,with psk_dhe_ke. O->m" \
1279 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1280 "$O_NEXT_CLI -tls1_3 -msg " \
1281 1 \
1282 -s "found psk key exchange modes extension" \
1283 -S "found pre_shared_key extension" \
1284 -s "Found PSK_EPHEMERAL KEX MODE" \
1285 -S "Found PSK KEX MODE" \
1286 -S "Pre shared key found"
Jerry Yu3b70b3c2022-07-31 13:17:37 +0800[diff] [blame]1287requires_openssl_tls1_3
1288requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1289requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1290requires_config_enabled MBEDTLS_SSL_SRV_C
1291requires_config_enabled MBEDTLS_DEBUG_C
1292# SOME_ECDHE_ENABLED?
1293requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1294 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1295run_test "TLS 1.3: PSK: ephemeral_all: with matched key and identity, with psk_ke and psk_dhe_ke. G->m" \
1296 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1297 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
1298 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1299 localhost" \
1300 0 \
1301 -s "found psk key exchange modes extension" \
1302 -s "found pre_shared_key extension" \
1303 -s "Found PSK_EPHEMERAL KEX MODE" \
1304 -s "Found PSK KEX MODE" \
1305 -s "Pre shared key found" \
1306 -S "No matched PSK or ticket"\
1307 -S "key exchange mode: psk$" \
1308 -s "key exchange mode: psk_ephemeral" \
1309 -S "key exchange mode: ephemeral"
1310
1311requires_openssl_tls1_3
1312requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1313requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1314requires_config_enabled MBEDTLS_SSL_SRV_C
1315requires_config_enabled MBEDTLS_DEBUG_C
1316# SOME_ECDHE_ENABLED?
1317requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1318 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1319run_test "TLS 1.3: PSK: ephemeral_all: with matched key and identity, with psk_ke and psk_dhe_ke. O->m" \
1320 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1321 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
1322 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1323 0 \
1324 -s "found psk key exchange modes extension" \
1325 -s "found pre_shared_key extension" \
1326 -s "Found PSK_EPHEMERAL KEX MODE" \
1327 -s "Found PSK KEX MODE" \
1328 -s "Pre shared key found" \
1329 -S "No matched PSK or ticket"\
1330 -S "key exchange mode: psk$" \
1331 -s "key exchange mode: psk_ephemeral" \
1332 -S "key exchange mode: ephemeral"
1333
1334requires_openssl_tls1_3
1335requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1336requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1337requires_config_enabled MBEDTLS_SSL_SRV_C
1338requires_config_enabled MBEDTLS_DEBUG_C
1339# SOME_ECDHE_ENABLED?
1340requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1341 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1342run_test "TLS 1.3: PSK: ephemeral_all: with matched key and identity, with psk_ke. G->m" \
1343 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1344 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
1345 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1346 localhost" \
1347 0 \
1348 -s "found psk key exchange modes extension" \
1349 -s "found pre_shared_key extension" \
1350 -S "Found PSK_EPHEMERAL KEX MODE" \
1351 -s "Found PSK KEX MODE" \
1352 -s "Pre shared key found" \
1353 -S "No matched PSK or ticket"\
1354 -S "key exchange mode: psk$" \
1355 -S "key exchange mode: psk_ephemeral" \
1356 -s "key exchange mode: ephemeral"
1357
1358requires_openssl_tls1_3
1359requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1360requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1361requires_config_enabled MBEDTLS_SSL_SRV_C
1362requires_config_enabled MBEDTLS_DEBUG_C
1363# SOME_ECDHE_ENABLED?
1364requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1365 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1366run_test "TLS 1.3: PSK: ephemeral_all: with matched key and identity, with psk_dhe_ke. G->m" \
1367 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1368 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
1369 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1370 localhost" \
1371 0 \
1372 -s "found psk key exchange modes extension" \
1373 -s "found pre_shared_key extension" \
1374 -s "Found PSK_EPHEMERAL KEX MODE" \
1375 -S "Found PSK KEX MODE" \
1376 -s "Pre shared key found" \
1377 -S "No matched PSK or ticket"\
1378 -S "key exchange mode: psk$" \
1379 -s "key exchange mode: psk_ephemeral" \
1380 -S "key exchange mode: ephemeral"
1381
1382requires_openssl_tls1_3
1383requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1384requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1385requires_config_enabled MBEDTLS_SSL_SRV_C
1386requires_config_enabled MBEDTLS_DEBUG_C
1387# SOME_ECDHE_ENABLED?
1388requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1389 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1390run_test "TLS 1.3: PSK: ephemeral_all: with matched key and identity, with psk_dhe_ke. O->m" \
1391 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1392 "$O_NEXT_CLI -tls1_3 -msg \
1393 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1394 0 \
1395 -s "found psk key exchange modes extension" \
1396 -s "found pre_shared_key extension" \
1397 -s "Found PSK_EPHEMERAL KEX MODE" \
1398 -S "Found PSK KEX MODE" \
1399 -s "Pre shared key found" \
1400 -S "No matched PSK or ticket"\
1401 -S "key exchange mode: psk$" \
1402 -s "key exchange mode: psk_ephemeral" \
1403 -S "key exchange mode: ephemeral"
1404
1405requires_openssl_tls1_3
1406requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1407requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1408requires_config_enabled MBEDTLS_SSL_SRV_C
1409requires_config_enabled MBEDTLS_DEBUG_C
1410# SOME_ECDHE_ENABLED?
1411requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1412 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1413run_test "TLS 1.3: PSK: ephemeral_all: with mismatched identity, with psk_ke and psk_dhe_ke. G->m" \
1414 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1415 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
1416 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1417 localhost" \
1418 0 \
1419 -s "found psk key exchange modes extension" \
1420 -s "found pre_shared_key extension" \
1421 -s "Found PSK_EPHEMERAL KEX MODE" \
1422 -s "Found PSK KEX MODE" \
1423 -S "Pre shared key found" \
1424 -s "No matched PSK or ticket"\
1425 -S "key exchange mode: psk$" \
1426 -S "key exchange mode: psk_ephemeral" \
1427 -s "key exchange mode: ephemeral"
1428
1429requires_openssl_tls1_3
1430requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1431requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1432requires_config_enabled MBEDTLS_SSL_SRV_C
1433requires_config_enabled MBEDTLS_DEBUG_C
1434# SOME_ECDHE_ENABLED?
1435requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1436 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1437run_test "TLS 1.3: PSK: ephemeral_all: with mismatched identity, with psk_ke and psk_dhe_ke. O->m" \
1438 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1439 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
1440 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1441 0 \
1442 -s "found psk key exchange modes extension" \
1443 -s "found pre_shared_key extension" \
1444 -s "Found PSK_EPHEMERAL KEX MODE" \
1445 -s "Found PSK KEX MODE" \
1446 -S "Pre shared key found" \
1447 -s "No matched PSK or ticket"\
1448 -S "key exchange mode: psk$" \
1449 -S "key exchange mode: psk_ephemeral" \
1450 -s "key exchange mode: ephemeral"
1451
1452requires_openssl_tls1_3
1453requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1454requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1455requires_config_enabled MBEDTLS_SSL_SRV_C
1456requires_config_enabled MBEDTLS_DEBUG_C
1457# SOME_ECDHE_ENABLED?
1458requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1459 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1460run_test "TLS 1.3: PSK: ephemeral_all: with mismatched identity, with psk_ke. G->m" \
1461 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1462 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
1463 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1464 localhost" \
1465 0 \
1466 -s "found psk key exchange modes extension" \
1467 -s "found pre_shared_key extension" \
1468 -S "Found PSK_EPHEMERAL KEX MODE" \
1469 -s "Found PSK KEX MODE" \
1470 -S "Pre shared key found" \
1471 -s "No matched PSK or ticket"\
1472 -S "key exchange mode: psk$" \
1473 -S "key exchange mode: psk_ephemeral" \
1474 -s "key exchange mode: ephemeral"
1475
1476requires_openssl_tls1_3
1477requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1478requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1479requires_config_enabled MBEDTLS_SSL_SRV_C
1480requires_config_enabled MBEDTLS_DEBUG_C
1481# SOME_ECDHE_ENABLED?
1482requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1483 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1484run_test "TLS 1.3: PSK: ephemeral_all: with mismatched identity, with psk_dhe_ke. G->m" \
1485 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1486 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
1487 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1488 localhost" \
1489 0 \
1490 -s "found psk key exchange modes extension" \
1491 -s "found pre_shared_key extension" \
1492 -s "Found PSK_EPHEMERAL KEX MODE" \
1493 -S "Found PSK KEX MODE" \
1494 -S "Pre shared key found" \
1495 -s "No matched PSK or ticket"\
1496 -S "key exchange mode: psk$" \
1497 -S "key exchange mode: psk_ephemeral" \
1498 -s "key exchange mode: ephemeral"
1499
1500requires_openssl_tls1_3
1501requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1502requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1503requires_config_enabled MBEDTLS_SSL_SRV_C
1504requires_config_enabled MBEDTLS_DEBUG_C
1505# SOME_ECDHE_ENABLED?
1506requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1507 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1508run_test "TLS 1.3: PSK: ephemeral_all: with mismatched identity, with psk_dhe_ke. O->m" \
1509 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1510 "$O_NEXT_CLI -tls1_3 -msg \
1511 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1512 0 \
1513 -s "found psk key exchange modes extension" \
1514 -s "found pre_shared_key extension" \
1515 -s "Found PSK_EPHEMERAL KEX MODE" \
1516 -S "Found PSK KEX MODE" \
1517 -S "Pre shared key found" \
1518 -s "No matched PSK or ticket"\
1519 -S "key exchange mode: psk$" \
1520 -S "key exchange mode: psk_ephemeral" \
1521 -s "key exchange mode: ephemeral"
1522
1523requires_openssl_tls1_3
1524requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1525requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1526requires_config_enabled MBEDTLS_SSL_SRV_C
1527requires_config_enabled MBEDTLS_DEBUG_C
1528# SOME_ECDHE_ENABLED?
1529requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1530 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1531run_test "TLS 1.3: PSK: ephemeral_all: without pre_shared_key,with psk_ke and psk_dhe_ke. G->m" \
1532 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1533 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+VERS-TLS1.3 \
1534 localhost" \
1535 0 \
1536 -s "found psk key exchange modes extension" \
1537 -S "found pre_shared_key extension" \
1538 -s "Found PSK_EPHEMERAL KEX MODE" \
1539 -s "Found PSK KEX MODE" \
1540 -S "Pre shared key found" \
1541 -S "No matched PSK or ticket"\
1542 -S "key exchange mode: psk$" \
1543 -S "key exchange mode: psk_ephemeral" \
1544 -s "key exchange mode: ephemeral"
1545
1546requires_openssl_tls1_3
1547requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1548requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1549requires_config_enabled MBEDTLS_SSL_SRV_C
1550requires_config_enabled MBEDTLS_DEBUG_C
1551# SOME_ECDHE_ENABLED?
1552requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1553 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1554run_test "TLS 1.3: PSK: ephemeral_all: without pre_shared_key,with psk_ke and psk_dhe_ke. O->m" \
1555 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1556 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex " \
1557 0 \
1558 -s "found psk key exchange modes extension" \
1559 -S "found pre_shared_key extension" \
1560 -s "Found PSK_EPHEMERAL KEX MODE" \
1561 -s "Found PSK KEX MODE" \
1562 -S "Pre shared key found" \
1563 -S "No matched PSK or ticket"\
1564 -S "key exchange mode: psk$" \
1565 -S "key exchange mode: psk_ephemeral" \
1566 -s "key exchange mode: ephemeral"
1567
1568requires_openssl_tls1_3
1569requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1570requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1571requires_config_enabled MBEDTLS_SSL_SRV_C
1572requires_config_enabled MBEDTLS_DEBUG_C
1573# SOME_ECDHE_ENABLED?
1574requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1575 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1576run_test "TLS 1.3: PSK: ephemeral_all: without pre_shared_key,with psk_dhe_ke. O->m" \
1577 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1578 "$O_NEXT_CLI -tls1_3 -msg " \
1579 0 \
1580 -s "found psk key exchange modes extension" \
1581 -S "found pre_shared_key extension" \
1582 -s "Found PSK_EPHEMERAL KEX MODE" \
1583 -S "Found PSK KEX MODE" \
1584 -S "Pre shared key found" \
1585 -S "No matched PSK or ticket"\
1586 -S "key exchange mode: psk$" \
1587 -S "key exchange mode: psk_ephemeral" \
1588 -s "key exchange mode: ephemeral"
1589
Jerry Yu63c78b82022-07-31 13:19:11 +0800[diff] [blame^]1590requires_openssl_tls1_3
1591requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1592requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1593requires_config_enabled MBEDTLS_SSL_SRV_C
1594requires_config_enabled MBEDTLS_DEBUG_C
1595# SOME_ECDHE_ENABLED?
1596requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1597 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1598run_test "TLS 1.3: PSK: all: with matched key and identity, with psk_ke and psk_dhe_ke. G->m" \
1599 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1600 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
1601 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1602 localhost" \
1603 0 \
1604 -s "found psk key exchange modes extension" \
1605 -s "found pre_shared_key extension" \
1606 -s "Found PSK_EPHEMERAL KEX MODE" \
1607 -s "Found PSK KEX MODE" \
1608 -s "Pre shared key found" \
1609 -S "No matched PSK or ticket"\
1610 -S "key exchange mode: psk$" \
1611 -s "key exchange mode: psk_ephemeral" \
1612 -S "key exchange mode: ephemeral"
1613
1614requires_openssl_tls1_3
1615requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1616requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1617requires_config_enabled MBEDTLS_SSL_SRV_C
1618requires_config_enabled MBEDTLS_DEBUG_C
1619# SOME_ECDHE_ENABLED?
1620requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1621 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1622run_test "TLS 1.3: PSK: all: with matched key and identity, with psk_ke and psk_dhe_ke. O->m" \
1623 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1624 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
1625 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1626 0 \
1627 -s "found psk key exchange modes extension" \
1628 -s "found pre_shared_key extension" \
1629 -s "Found PSK_EPHEMERAL KEX MODE" \
1630 -s "Found PSK KEX MODE" \
1631 -s "Pre shared key found" \
1632 -S "No matched PSK or ticket"\
1633 -S "key exchange mode: psk$" \
1634 -s "key exchange mode: psk_ephemeral" \
1635 -S "key exchange mode: ephemeral"
1636
1637requires_openssl_tls1_3
1638requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1639requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1640requires_config_enabled MBEDTLS_SSL_SRV_C
1641requires_config_enabled MBEDTLS_DEBUG_C
1642# SOME_ECDHE_ENABLED?
1643requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1644 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1645run_test "TLS 1.3: PSK: all: with matched key and identity, with psk_ke. G->m" \
1646 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1647 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
1648 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1649 localhost" \
1650 0 \
1651 -s "found psk key exchange modes extension" \
1652 -s "found pre_shared_key extension" \
1653 -S "Found PSK_EPHEMERAL KEX MODE" \
1654 -s "Found PSK KEX MODE" \
1655 -s "Pre shared key found" \
1656 -S "No matched PSK or ticket"\
1657 -S "key exchange mode: psk$" \
1658 -S "key exchange mode: psk_ephemeral" \
1659 -s "key exchange mode: ephemeral"
1660
1661requires_openssl_tls1_3
1662requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1663requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1664requires_config_enabled MBEDTLS_SSL_SRV_C
1665requires_config_enabled MBEDTLS_DEBUG_C
1666# SOME_ECDHE_ENABLED?
1667requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1668 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1669run_test "TLS 1.3: PSK: all: with matched key and identity, with psk_dhe_ke. G->m" \
1670 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1671 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
1672 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1673 localhost" \
1674 0 \
1675 -s "found psk key exchange modes extension" \
1676 -s "found pre_shared_key extension" \
1677 -s "Found PSK_EPHEMERAL KEX MODE" \
1678 -S "Found PSK KEX MODE" \
1679 -s "Pre shared key found" \
1680 -S "No matched PSK or ticket"\
1681 -S "key exchange mode: psk$" \
1682 -s "key exchange mode: psk_ephemeral" \
1683 -S "key exchange mode: ephemeral"
1684
1685requires_openssl_tls1_3
1686requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1687requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1688requires_config_enabled MBEDTLS_SSL_SRV_C
1689requires_config_enabled MBEDTLS_DEBUG_C
1690# SOME_ECDHE_ENABLED?
1691requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1692 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1693run_test "TLS 1.3: PSK: all: with matched key and identity, with psk_dhe_ke. O->m" \
1694 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1695 "$O_NEXT_CLI -tls1_3 -msg \
1696 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1697 0 \
1698 -s "found psk key exchange modes extension" \
1699 -s "found pre_shared_key extension" \
1700 -s "Found PSK_EPHEMERAL KEX MODE" \
1701 -S "Found PSK KEX MODE" \
1702 -s "Pre shared key found" \
1703 -S "No matched PSK or ticket"\
1704 -S "key exchange mode: psk$" \
1705 -s "key exchange mode: psk_ephemeral" \
1706 -S "key exchange mode: ephemeral"
1707
1708requires_openssl_tls1_3
1709requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1710requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1711requires_config_enabled MBEDTLS_SSL_SRV_C
1712requires_config_enabled MBEDTLS_DEBUG_C
1713# SOME_ECDHE_ENABLED?
1714requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1715 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1716run_test "TLS 1.3: PSK: all: with mismatched identity, with psk_ke and psk_dhe_ke. G->m" \
1717 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1718 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
1719 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1720 localhost" \
1721 0 \
1722 -s "found psk key exchange modes extension" \
1723 -s "found pre_shared_key extension" \
1724 -s "Found PSK_EPHEMERAL KEX MODE" \
1725 -s "Found PSK KEX MODE" \
1726 -S "Pre shared key found" \
1727 -s "No matched PSK or ticket"\
1728 -S "key exchange mode: psk$" \
1729 -S "key exchange mode: psk_ephemeral" \
1730 -s "key exchange mode: ephemeral"
1731
1732requires_openssl_tls1_3
1733requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1734requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1735requires_config_enabled MBEDTLS_SSL_SRV_C
1736requires_config_enabled MBEDTLS_DEBUG_C
1737# SOME_ECDHE_ENABLED?
1738requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1739 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1740run_test "TLS 1.3: PSK: all: with mismatched identity, with psk_ke and psk_dhe_ke. O->m" \
1741 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1742 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
1743 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1744 0 \
1745 -s "found psk key exchange modes extension" \
1746 -s "found pre_shared_key extension" \
1747 -s "Found PSK_EPHEMERAL KEX MODE" \
1748 -s "Found PSK KEX MODE" \
1749 -S "Pre shared key found" \
1750 -s "No matched PSK or ticket"\
1751 -S "key exchange mode: psk$" \
1752 -S "key exchange mode: psk_ephemeral" \
1753 -s "key exchange mode: ephemeral"
1754
1755requires_openssl_tls1_3
1756requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1757requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1758requires_config_enabled MBEDTLS_SSL_SRV_C
1759requires_config_enabled MBEDTLS_DEBUG_C
1760# SOME_ECDHE_ENABLED?
1761requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1762 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1763run_test "TLS 1.3: PSK: all: with mismatched identity, with psk_ke. G->m" \
1764 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1765 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
1766 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1767 localhost" \
1768 0 \
1769 -s "found psk key exchange modes extension" \
1770 -s "found pre_shared_key extension" \
1771 -S "Found PSK_EPHEMERAL KEX MODE" \
1772 -s "Found PSK KEX MODE" \
1773 -S "Pre shared key found" \
1774 -s "No matched PSK or ticket"\
1775 -S "key exchange mode: psk$" \
1776 -S "key exchange mode: psk_ephemeral" \
1777 -s "key exchange mode: ephemeral"
1778
1779requires_openssl_tls1_3
1780requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1781requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1782requires_config_enabled MBEDTLS_SSL_SRV_C
1783requires_config_enabled MBEDTLS_DEBUG_C
1784# SOME_ECDHE_ENABLED?
1785requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1786 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1787run_test "TLS 1.3: PSK: all: with mismatched identity, with psk_dhe_ke. G->m" \
1788 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1789 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
1790 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1791 localhost" \
1792 0 \
1793 -s "found psk key exchange modes extension" \
1794 -s "found pre_shared_key extension" \
1795 -s "Found PSK_EPHEMERAL KEX MODE" \
1796 -S "Found PSK KEX MODE" \
1797 -S "Pre shared key found" \
1798 -s "No matched PSK or ticket"\
1799 -S "key exchange mode: psk$" \
1800 -S "key exchange mode: psk_ephemeral" \
1801 -s "key exchange mode: ephemeral"
1802
1803requires_openssl_tls1_3
1804requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1805requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1806requires_config_enabled MBEDTLS_SSL_SRV_C
1807requires_config_enabled MBEDTLS_DEBUG_C
1808# SOME_ECDHE_ENABLED?
1809requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1810 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1811run_test "TLS 1.3: PSK: all: with mismatched identity, with psk_dhe_ke. O->m" \
1812 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1813 "$O_NEXT_CLI -tls1_3 -msg \
1814 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1815 0 \
1816 -s "found psk key exchange modes extension" \
1817 -s "found pre_shared_key extension" \
1818 -s "Found PSK_EPHEMERAL KEX MODE" \
1819 -S "Found PSK KEX MODE" \
1820 -S "Pre shared key found" \
1821 -s "No matched PSK or ticket"\
1822 -S "key exchange mode: psk$" \
1823 -S "key exchange mode: psk_ephemeral" \
1824 -s "key exchange mode: ephemeral"
1825
1826requires_openssl_tls1_3
1827requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1828requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1829requires_config_enabled MBEDTLS_SSL_SRV_C
1830requires_config_enabled MBEDTLS_DEBUG_C
1831# SOME_ECDHE_ENABLED?
1832requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1833 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1834run_test "TLS 1.3: PSK: all: without pre_shared_key,with psk_ke and psk_dhe_ke. G->m" \
1835 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1836 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+VERS-TLS1.3 \
1837 localhost" \
1838 0 \
1839 -s "found psk key exchange modes extension" \
1840 -S "found pre_shared_key extension" \
1841 -s "Found PSK_EPHEMERAL KEX MODE" \
1842 -s "Found PSK KEX MODE" \
1843 -S "Pre shared key found" \
1844 -S "No matched PSK or ticket"\
1845 -S "key exchange mode: psk$" \
1846 -S "key exchange mode: psk_ephemeral" \
1847 -s "key exchange mode: ephemeral"
1848
1849requires_openssl_tls1_3
1850requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1851requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1852requires_config_enabled MBEDTLS_SSL_SRV_C
1853requires_config_enabled MBEDTLS_DEBUG_C
1854# SOME_ECDHE_ENABLED?
1855requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1856 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1857run_test "TLS 1.3: PSK: all: without pre_shared_key,with psk_ke and psk_dhe_ke. O->m" \
1858 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1859 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex " \
1860 0 \
1861 -s "found psk key exchange modes extension" \
1862 -S "found pre_shared_key extension" \
1863 -s "Found PSK_EPHEMERAL KEX MODE" \
1864 -s "Found PSK KEX MODE" \
1865 -S "Pre shared key found" \
1866 -S "No matched PSK or ticket"\
1867 -S "key exchange mode: psk$" \
1868 -S "key exchange mode: psk_ephemeral" \
1869 -s "key exchange mode: ephemeral"
1870
1871requires_openssl_tls1_3
1872requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1873requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1874requires_config_enabled MBEDTLS_SSL_SRV_C
1875requires_config_enabled MBEDTLS_DEBUG_C
1876# SOME_ECDHE_ENABLED?
1877requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1878 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1879run_test "TLS 1.3: PSK: all: without pre_shared_key,with psk_dhe_ke. O->m" \
1880 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1881 "$O_NEXT_CLI -tls1_3 -msg " \
1882 0 \
1883 -s "found psk key exchange modes extension" \
1884 -S "found pre_shared_key extension" \
1885 -s "Found PSK_EPHEMERAL KEX MODE" \
1886 -S "Found PSK KEX MODE" \
1887 -S "Pre shared key found" \
1888 -S "No matched PSK or ticket"\
1889 -S "key exchange mode: psk$" \
1890 -S "key exchange mode: psk_ephemeral" \
1891 -s "key exchange mode: ephemeral"
1892