TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 3c01d47ef791a2ed1cc702e9a332a8a6283634aa / . / tests / opt-testcases / tls13-kex-modes.sh
blob: d66f79b2eef121d01b11e5c9b10a2ccbcc3be300 [file] [log] [blame]
Jerry Yu6a9beba2022-07-31 12:45:25 +0800[diff] [blame]1#!/bin/sh
2
3# tls13-kex-modes.sh
4#
5# Copyright The Mbed TLS Contributors
6# SPDX-License-Identifier: Apache-2.0
7#
8# Licensed under the Apache License, Version 2.0 (the "License"); you may
9# not use this file except in compliance with the License.
10# You may obtain a copy of the License at
11#
12# http://www.apache.org/licenses/LICENSE-2.0
13#
14# Unless required by applicable law or agreed to in writing, software
15# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
16# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
17# See the License for the specific language governing permissions and
18# limitations under the License.
19#
20
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]21requires_gnutls_tls1_3
Jerry Yu6a9beba2022-07-31 12:45:25 +0800[diff] [blame]22requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
23requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
24requires_config_enabled MBEDTLS_SSL_SRV_C
25requires_config_enabled MBEDTLS_DEBUG_C
26# SOME_PSK_ENABLED
27requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
28 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
29run_test "TLS 1.3: PSK: psk: with matched key and identity, with psk_ke and psk_dhe_ke. G->m" \
30 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
31 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
32 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
33 localhost" \
34 0 \
35 -s "found psk key exchange modes extension" \
36 -s "found pre_shared_key extension" \
37 -s "Found PSK_EPHEMERAL KEX MODE" \
38 -s "Found PSK KEX MODE" \
39 -s "Pre shared key found" \
40 -S "No matched PSK or ticket" \
41 -s "key exchange mode: psk$" \
42 -S "key exchange mode: psk_ephemeral" \
43 -S "key exchange mode: ephemeral"
44
45requires_openssl_tls1_3
46requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
47requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
48requires_config_enabled MBEDTLS_SSL_SRV_C
49requires_config_enabled MBEDTLS_DEBUG_C
50# SOME_PSK_ENABLED
51requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
52 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
53run_test "TLS 1.3: PSK: psk: with matched key and identity, with psk_ke and psk_dhe_ke. O->m" \
54 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
55 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
56 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
57 0 \
58 -s "found psk key exchange modes extension" \
59 -s "found pre_shared_key extension" \
60 -s "Found PSK_EPHEMERAL KEX MODE" \
61 -s "Found PSK KEX MODE" \
62 -s "Pre shared key found" \
63 -S "No matched PSK or ticket" \
64 -s "key exchange mode: psk$" \
65 -S "key exchange mode: psk_ephemeral" \
66 -S "key exchange mode: ephemeral"
67
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]68requires_gnutls_tls1_3
Jerry Yu6a9beba2022-07-31 12:45:25 +0800[diff] [blame]69requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
70requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
71requires_config_enabled MBEDTLS_SSL_SRV_C
72requires_config_enabled MBEDTLS_DEBUG_C
73# SOME_PSK_ENABLED
74requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
75 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
76run_test "TLS 1.3: PSK: psk: with matched key and identity, with psk_ke. G->m" \
77 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
78 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
79 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
80 localhost" \
81 0 \
82 -s "found psk key exchange modes extension" \
83 -s "found pre_shared_key extension" \
84 -S "Found PSK_EPHEMERAL KEX MODE" \
85 -s "Found PSK KEX MODE" \
86 -s "Pre shared key found" \
87 -S "No matched PSK or ticket" \
88 -s "key exchange mode: psk$" \
89 -S "key exchange mode: psk_ephemeral" \
90 -S "key exchange mode: ephemeral"
91
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]92requires_gnutls_tls1_3
Jerry Yu6a9beba2022-07-31 12:45:25 +0800[diff] [blame]93requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
94requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
95requires_config_enabled MBEDTLS_SSL_SRV_C
96requires_config_enabled MBEDTLS_DEBUG_C
97# SOME_PSK_ENABLED
98requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
99 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
100run_test "TLS 1.3: PSK: psk: with matched key and identity, with psk_dhe_ke. G->m" \
101 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
102 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
103 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
104 localhost" \
105 1 \
106 -s "found psk key exchange modes extension" \
107 -s "found pre_shared_key extension" \
108 -s "Found PSK_EPHEMERAL KEX MODE" \
109 -S "Found PSK KEX MODE" \
110 -s "Pre shared key found" \
111 -S "No matched PSK or ticket" \
112 -S "key exchange mode: psk$" \
113 -S "key exchange mode: psk_ephemeral" \
114 -S "key exchange mode: ephemeral"
115
116requires_openssl_tls1_3
117requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
118requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
119requires_config_enabled MBEDTLS_SSL_SRV_C
120requires_config_enabled MBEDTLS_DEBUG_C
121# SOME_PSK_ENABLED
122requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
123 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
124run_test "TLS 1.3: PSK: psk: with matched key and identity, with psk_dhe_ke. O->m" \
125 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
126 "$O_NEXT_CLI -tls1_3 -msg \
127 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
128 1 \
129 -s "found psk key exchange modes extension" \
130 -s "found pre_shared_key extension" \
131 -s "Found PSK_EPHEMERAL KEX MODE" \
132 -S "Found PSK KEX MODE" \
133 -s "Pre shared key found" \
134 -S "No matched PSK or ticket" \
135 -S "key exchange mode: psk$" \
136 -S "key exchange mode: psk_ephemeral" \
137 -S "key exchange mode: ephemeral"
138
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]139requires_gnutls_tls1_3
Jerry Yu6a9beba2022-07-31 12:45:25 +0800[diff] [blame]140requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
141requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
142requires_config_enabled MBEDTLS_SSL_SRV_C
143requires_config_enabled MBEDTLS_DEBUG_C
144# SOME_PSK_ENABLED
145requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
146 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
147run_test "TLS 1.3: PSK: psk: with mismatched identity, with psk_ke and psk_dhe_ke. G->m" \
148 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
149 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
150 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
151 localhost" \
152 1 \
153 -s "found psk key exchange modes extension" \
154 -s "found pre_shared_key extension" \
155 -s "Found PSK_EPHEMERAL KEX MODE" \
156 -s "Found PSK KEX MODE" \
157 -S "Pre shared key found" \
158 -s "No matched PSK or ticket" \
159 -S "key exchange mode: psk$" \
160 -S "key exchange mode: psk_ephemeral" \
161 -S "key exchange mode: ephemeral"
162
163requires_openssl_tls1_3
164requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
165requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
166requires_config_enabled MBEDTLS_SSL_SRV_C
167requires_config_enabled MBEDTLS_DEBUG_C
168# SOME_PSK_ENABLED
169requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
170 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
171run_test "TLS 1.3: PSK: psk: with mismatched identity, with psk_ke and psk_dhe_ke. O->m" \
172 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
173 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
174 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
175 1 \
176 -s "found psk key exchange modes extension" \
177 -s "found pre_shared_key extension" \
178 -s "Found PSK_EPHEMERAL KEX MODE" \
179 -s "Found PSK KEX MODE" \
180 -S "Pre shared key found" \
181 -s "No matched PSK or ticket" \
182 -S "key exchange mode: psk$" \
183 -S "key exchange mode: psk_ephemeral" \
184 -S "key exchange mode: ephemeral"
185
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]186requires_gnutls_tls1_3
Jerry Yu6a9beba2022-07-31 12:45:25 +0800[diff] [blame]187requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
188requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
189requires_config_enabled MBEDTLS_SSL_SRV_C
190requires_config_enabled MBEDTLS_DEBUG_C
191# SOME_PSK_ENABLED
192requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
193 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
194run_test "TLS 1.3: PSK: psk: with mismatched identity, with psk_ke. G->m" \
195 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
196 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
197 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
198 localhost" \
199 1 \
200 -s "found psk key exchange modes extension" \
201 -s "found pre_shared_key extension" \
202 -S "Found PSK_EPHEMERAL KEX MODE" \
203 -s "Found PSK KEX MODE" \
204 -S "Pre shared key found" \
205 -s "No matched PSK or ticket" \
206 -S "key exchange mode: psk$" \
207 -S "key exchange mode: psk_ephemeral" \
208 -S "key exchange mode: ephemeral"
209
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]210requires_gnutls_tls1_3
Jerry Yu6a9beba2022-07-31 12:45:25 +0800[diff] [blame]211requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
212requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
213requires_config_enabled MBEDTLS_SSL_SRV_C
214requires_config_enabled MBEDTLS_DEBUG_C
215# SOME_PSK_ENABLED
216requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
217 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
218run_test "TLS 1.3: PSK: psk: with mismatched identity, with psk_dhe_ke. G->m" \
219 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
220 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
221 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
222 localhost" \
223 1 \
224 -s "found psk key exchange modes extension" \
225 -s "found pre_shared_key extension" \
226 -s "Found PSK_EPHEMERAL KEX MODE" \
227 -S "Found PSK KEX MODE" \
228 -S "Pre shared key found" \
229 -s "No matched PSK or ticket" \
230 -S "key exchange mode: psk$" \
231 -S "key exchange mode: psk_ephemeral" \
232 -S "key exchange mode: ephemeral"
233
234requires_openssl_tls1_3
235requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
236requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
237requires_config_enabled MBEDTLS_SSL_SRV_C
238requires_config_enabled MBEDTLS_DEBUG_C
239# SOME_PSK_ENABLED
240requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
241 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
242run_test "TLS 1.3: PSK: psk: with mismatched identity, with psk_dhe_ke. O->m" \
243 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
244 "$O_NEXT_CLI -tls1_3 -msg \
245 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
246 1 \
247 -s "found psk key exchange modes extension" \
248 -s "found pre_shared_key extension" \
249 -s "Found PSK_EPHEMERAL KEX MODE" \
250 -S "Found PSK KEX MODE" \
251 -S "Pre shared key found" \
252 -s "No matched PSK or ticket" \
253 -S "key exchange mode: psk$" \
254 -S "key exchange mode: psk_ephemeral" \
255 -S "key exchange mode: ephemeral"
256
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]257requires_gnutls_tls1_3
Jerry Yu6a9beba2022-07-31 12:45:25 +0800[diff] [blame]258requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
259requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
260requires_config_enabled MBEDTLS_SSL_SRV_C
261requires_config_enabled MBEDTLS_DEBUG_C
262# SOME_PSK_ENABLED
263requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
264 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
265run_test "TLS 1.3: PSK: psk: without pre_shared_key,with psk_ke and psk_dhe_ke. G->m" \
266 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
267 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+VERS-TLS1.3 \
268 localhost" \
269 1 \
270 -s "found psk key exchange modes extension" \
271 -S "found pre_shared_key extension" \
272 -s "Found PSK_EPHEMERAL KEX MODE" \
273 -s "Found PSK KEX MODE" \
274 -S "Pre shared key found" \
275 -S "No matched PSK or ticket" \
276 -S "key exchange mode: psk$" \
277 -S "key exchange mode: psk_ephemeral" \
278 -S "key exchange mode: ephemeral"
279
280requires_openssl_tls1_3
281requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
282requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
283requires_config_enabled MBEDTLS_SSL_SRV_C
284requires_config_enabled MBEDTLS_DEBUG_C
285# SOME_PSK_ENABLED
286requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
287 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
288run_test "TLS 1.3: PSK: psk: without pre_shared_key,with psk_ke and psk_dhe_ke. O->m" \
289 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
290 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex " \
291 1 \
292 -s "found psk key exchange modes extension" \
293 -S "found pre_shared_key extension" \
294 -s "Found PSK_EPHEMERAL KEX MODE" \
295 -s "Found PSK KEX MODE" \
296 -S "Pre shared key found" \
297 -S "No matched PSK or ticket" \
298 -S "key exchange mode: psk$" \
299 -S "key exchange mode: psk_ephemeral" \
300 -S "key exchange mode: ephemeral"
301
302requires_openssl_tls1_3
303requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
304requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
305requires_config_enabled MBEDTLS_SSL_SRV_C
306requires_config_enabled MBEDTLS_DEBUG_C
307# SOME_PSK_ENABLED
308requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
309 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
310run_test "TLS 1.3: PSK: psk: without pre_shared_key,with psk_dhe_ke. O->m" \
311 "$P_SRV force_version=tls13 tls13_kex_modes=psk debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
312 "$O_NEXT_CLI -tls1_3 -msg " \
313 1 \
314 -s "found psk key exchange modes extension" \
315 -S "found pre_shared_key extension" \
316 -s "Found PSK_EPHEMERAL KEX MODE" \
317 -S "Found PSK KEX MODE" \
318 -S "Pre shared key found" \
319 -S "No matched PSK or ticket" \
320 -S "key exchange mode: psk$" \
321 -S "key exchange mode: psk_ephemeral" \
322 -S "key exchange mode: ephemeral"
Jerry Yu9b83fa12022-07-31 13:13:51 +0800[diff] [blame]323
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]324requires_gnutls_tls1_3
Jerry Yu9b83fa12022-07-31 13:13:51 +0800[diff] [blame]325requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
326requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
327requires_config_enabled MBEDTLS_SSL_SRV_C
328requires_config_enabled MBEDTLS_DEBUG_C
329# SOME_PSK_ENABLED
330requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
331 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
332# SOME_ECDHE_ENABLED?
333requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
334 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
335run_test "TLS 1.3: PSK: psk_ephemeral: with matched key and identity, with psk_ke and psk_dhe_ke. G->m" \
336 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
337 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
338 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
339 localhost" \
340 0 \
341 -s "found psk key exchange modes extension" \
342 -s "found pre_shared_key extension" \
343 -s "Found PSK_EPHEMERAL KEX MODE" \
344 -s "Found PSK KEX MODE" \
345 -s "Pre shared key found" \
346 -S "No matched PSK or ticket" \
347 -S "key exchange mode: psk$" \
348 -s "key exchange mode: psk_ephemeral" \
349 -S "key exchange mode: ephemeral"
350
351requires_openssl_tls1_3
352requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
353requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
354requires_config_enabled MBEDTLS_SSL_SRV_C
355requires_config_enabled MBEDTLS_DEBUG_C
356# SOME_PSK_ENABLED
357requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
358 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
359# SOME_ECDHE_ENABLED?
360requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
361 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
362run_test "TLS 1.3: PSK: psk_ephemeral: with matched key and identity, with psk_ke and psk_dhe_ke. O->m" \
363 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
364 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
365 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
366 0 \
367 -s "found psk key exchange modes extension" \
368 -s "found pre_shared_key extension" \
369 -s "Found PSK_EPHEMERAL KEX MODE" \
370 -s "Found PSK KEX MODE" \
371 -s "Pre shared key found" \
372 -S "No matched PSK or ticket" \
373 -S "key exchange mode: psk$" \
374 -s "key exchange mode: psk_ephemeral" \
375 -S "key exchange mode: ephemeral"
376
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]377requires_gnutls_tls1_3
Jerry Yu9b83fa12022-07-31 13:13:51 +0800[diff] [blame]378requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
379requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
380requires_config_enabled MBEDTLS_SSL_SRV_C
381requires_config_enabled MBEDTLS_DEBUG_C
382# SOME_PSK_ENABLED
383requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
384 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
385# SOME_ECDHE_ENABLED?
386requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
387 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
388run_test "TLS 1.3: PSK: psk_ephemeral: with matched key and identity, with psk_ke. G->m" \
389 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
390 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
391 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
392 localhost" \
393 1 \
394 -s "found psk key exchange modes extension" \
395 -s "found pre_shared_key extension" \
396 -S "Found PSK_EPHEMERAL KEX MODE" \
397 -s "Found PSK KEX MODE" \
398 -s "Pre shared key found" \
399 -S "No matched PSK or ticket" \
400 -S "key exchange mode: psk$" \
401 -S "key exchange mode: psk_ephemeral" \
402 -S "key exchange mode: ephemeral"
403
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]404requires_gnutls_tls1_3
Jerry Yu9b83fa12022-07-31 13:13:51 +0800[diff] [blame]405requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
406requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
407requires_config_enabled MBEDTLS_SSL_SRV_C
408requires_config_enabled MBEDTLS_DEBUG_C
409# SOME_PSK_ENABLED
410requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
411 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
412# SOME_ECDHE_ENABLED?
413requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
414 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
415run_test "TLS 1.3: PSK: psk_ephemeral: with matched key and identity, with psk_dhe_ke. G->m" \
416 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
417 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
418 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
419 localhost" \
420 0 \
421 -s "found psk key exchange modes extension" \
422 -s "found pre_shared_key extension" \
423 -s "Found PSK_EPHEMERAL KEX MODE" \
424 -S "Found PSK KEX MODE" \
425 -s "Pre shared key found" \
426 -S "No matched PSK or ticket" \
427 -S "key exchange mode: psk$" \
428 -s "key exchange mode: psk_ephemeral" \
429 -S "key exchange mode: ephemeral"
430
431requires_openssl_tls1_3
432requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
433requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
434requires_config_enabled MBEDTLS_SSL_SRV_C
435requires_config_enabled MBEDTLS_DEBUG_C
436# SOME_PSK_ENABLED
437requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
438 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
439# SOME_ECDHE_ENABLED?
440requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
441 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
442run_test "TLS 1.3: PSK: psk_ephemeral: with matched key and identity, with psk_dhe_ke. O->m" \
443 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
444 "$O_NEXT_CLI -tls1_3 -msg \
445 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
446 0 \
447 -s "found psk key exchange modes extension" \
448 -s "found pre_shared_key extension" \
449 -s "Found PSK_EPHEMERAL KEX MODE" \
450 -S "Found PSK KEX MODE" \
451 -s "Pre shared key found" \
452 -S "No matched PSK or ticket" \
453 -S "key exchange mode: psk$" \
454 -s "key exchange mode: psk_ephemeral" \
455 -S "key exchange mode: ephemeral"
456
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]457requires_gnutls_tls1_3
Jerry Yu9b83fa12022-07-31 13:13:51 +0800[diff] [blame]458requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
459requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
460requires_config_enabled MBEDTLS_SSL_SRV_C
461requires_config_enabled MBEDTLS_DEBUG_C
462# SOME_PSK_ENABLED
463requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
464 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
465# SOME_ECDHE_ENABLED?
466requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
467 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
468run_test "TLS 1.3: PSK: psk_ephemeral: with mismatched identity, with psk_ke and psk_dhe_ke. G->m" \
469 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
470 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
471 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
472 localhost" \
473 1 \
474 -s "found psk key exchange modes extension" \
475 -s "found pre_shared_key extension" \
476 -s "Found PSK_EPHEMERAL KEX MODE" \
477 -s "Found PSK KEX MODE" \
478 -S "Pre shared key found" \
479 -s "No matched PSK or ticket" \
480 -S "key exchange mode: psk$" \
481 -S "key exchange mode: psk_ephemeral" \
482 -S "key exchange mode: ephemeral"
483
484requires_openssl_tls1_3
485requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
486requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
487requires_config_enabled MBEDTLS_SSL_SRV_C
488requires_config_enabled MBEDTLS_DEBUG_C
489# SOME_PSK_ENABLED
490requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
491 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
492# SOME_ECDHE_ENABLED?
493requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
494 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
495run_test "TLS 1.3: PSK: psk_ephemeral: with mismatched identity, with psk_ke and psk_dhe_ke. O->m" \
496 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
497 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
498 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
499 1 \
500 -s "found psk key exchange modes extension" \
501 -s "found pre_shared_key extension" \
502 -s "Found PSK_EPHEMERAL KEX MODE" \
503 -s "Found PSK KEX MODE" \
504 -S "Pre shared key found" \
505 -s "No matched PSK or ticket" \
506 -S "key exchange mode: psk$" \
507 -S "key exchange mode: psk_ephemeral" \
508 -S "key exchange mode: ephemeral"
509
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]510requires_gnutls_tls1_3
Jerry Yu9b83fa12022-07-31 13:13:51 +0800[diff] [blame]511requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
512requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
513requires_config_enabled MBEDTLS_SSL_SRV_C
514requires_config_enabled MBEDTLS_DEBUG_C
515# SOME_PSK_ENABLED
516requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
517 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
518# SOME_ECDHE_ENABLED?
519requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
520 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
521run_test "TLS 1.3: PSK: psk_ephemeral: with mismatched identity, with psk_ke. G->m" \
522 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
523 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
524 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
525 localhost" \
526 1 \
527 -s "found psk key exchange modes extension" \
528 -s "found pre_shared_key extension" \
529 -S "Found PSK_EPHEMERAL KEX MODE" \
530 -s "Found PSK KEX MODE" \
531 -S "Pre shared key found" \
532 -s "No matched PSK or ticket" \
533 -S "key exchange mode: psk$" \
534 -S "key exchange mode: psk_ephemeral" \
535 -S "key exchange mode: ephemeral"
536
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]537requires_gnutls_tls1_3
Jerry Yu9b83fa12022-07-31 13:13:51 +0800[diff] [blame]538requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
539requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
540requires_config_enabled MBEDTLS_SSL_SRV_C
541requires_config_enabled MBEDTLS_DEBUG_C
542# SOME_PSK_ENABLED
543requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
544 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
545# SOME_ECDHE_ENABLED?
546requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
547 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
548run_test "TLS 1.3: PSK: psk_ephemeral: with mismatched identity, with psk_dhe_ke. G->m" \
549 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
550 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
551 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
552 localhost" \
553 1 \
554 -s "found psk key exchange modes extension" \
555 -s "found pre_shared_key extension" \
556 -s "Found PSK_EPHEMERAL KEX MODE" \
557 -S "Found PSK KEX MODE" \
558 -S "Pre shared key found" \
559 -s "No matched PSK or ticket" \
560 -S "key exchange mode: psk$" \
561 -S "key exchange mode: psk_ephemeral" \
562 -S "key exchange mode: ephemeral"
563
564requires_openssl_tls1_3
565requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
566requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
567requires_config_enabled MBEDTLS_SSL_SRV_C
568requires_config_enabled MBEDTLS_DEBUG_C
569# SOME_PSK_ENABLED
570requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
571 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
572# SOME_ECDHE_ENABLED?
573requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
574 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
575run_test "TLS 1.3: PSK: psk_ephemeral: with mismatched identity, with psk_dhe_ke. O->m" \
576 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
577 "$O_NEXT_CLI -tls1_3 -msg \
578 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
579 1 \
580 -s "found psk key exchange modes extension" \
581 -s "found pre_shared_key extension" \
582 -s "Found PSK_EPHEMERAL KEX MODE" \
583 -S "Found PSK KEX MODE" \
584 -S "Pre shared key found" \
585 -s "No matched PSK or ticket" \
586 -S "key exchange mode: psk$" \
587 -S "key exchange mode: psk_ephemeral" \
588 -S "key exchange mode: ephemeral"
589
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]590requires_gnutls_tls1_3
Jerry Yu9b83fa12022-07-31 13:13:51 +0800[diff] [blame]591requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
592requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
593requires_config_enabled MBEDTLS_SSL_SRV_C
594requires_config_enabled MBEDTLS_DEBUG_C
595# SOME_PSK_ENABLED
596requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
597 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
598# SOME_ECDHE_ENABLED?
599requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
600 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
601run_test "TLS 1.3: PSK: psk_ephemeral: without pre_shared_key,with psk_ke and psk_dhe_ke. G->m" \
602 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
603 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+VERS-TLS1.3 \
604 localhost" \
605 1 \
606 -s "found psk key exchange modes extension" \
607 -S "found pre_shared_key extension" \
608 -s "Found PSK_EPHEMERAL KEX MODE" \
609 -s "Found PSK KEX MODE" \
610 -S "Pre shared key found" \
611 -S "No matched PSK or ticket" \
612 -S "key exchange mode: psk$" \
613 -S "key exchange mode: psk_ephemeral" \
614 -S "key exchange mode: ephemeral"
615
616requires_openssl_tls1_3
617requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
618requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
619requires_config_enabled MBEDTLS_SSL_SRV_C
620requires_config_enabled MBEDTLS_DEBUG_C
621# SOME_PSK_ENABLED
622requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
623 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
624# SOME_ECDHE_ENABLED?
625requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
626 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
627run_test "TLS 1.3: PSK: psk_ephemeral: without pre_shared_key,with psk_ke and psk_dhe_ke. O->m" \
628 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
629 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex " \
630 1 \
631 -s "found psk key exchange modes extension" \
632 -S "found pre_shared_key extension" \
633 -s "Found PSK_EPHEMERAL KEX MODE" \
634 -s "Found PSK KEX MODE" \
635 -S "Pre shared key found" \
636 -S "No matched PSK or ticket" \
637 -S "key exchange mode: psk$" \
638 -S "key exchange mode: psk_ephemeral" \
639 -S "key exchange mode: ephemeral"
640
641requires_openssl_tls1_3
642requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
643requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
644requires_config_enabled MBEDTLS_SSL_SRV_C
645requires_config_enabled MBEDTLS_DEBUG_C
646# SOME_PSK_ENABLED
647requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
648 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
649# SOME_ECDHE_ENABLED?
650requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
651 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
652run_test "TLS 1.3: PSK: psk_ephemeral: without pre_shared_key,with psk_dhe_ke. O->m" \
653 "$P_SRV force_version=tls13 tls13_kex_modes=psk_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
654 "$O_NEXT_CLI -tls1_3 -msg " \
655 1 \
656 -s "found psk key exchange modes extension" \
657 -S "found pre_shared_key extension" \
658 -s "Found PSK_EPHEMERAL KEX MODE" \
659 -S "Found PSK KEX MODE" \
660 -S "Pre shared key found" \
661 -S "No matched PSK or ticket" \
662 -S "key exchange mode: psk$" \
663 -S "key exchange mode: psk_ephemeral" \
664 -S "key exchange mode: ephemeral"
665
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]666requires_gnutls_tls1_3
Jerry Yufa8c3062022-07-31 13:14:56 +0800[diff] [blame]667requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
668requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
669requires_config_enabled MBEDTLS_SSL_SRV_C
670requires_config_enabled MBEDTLS_DEBUG_C
671# SOME_ECDHE_ENABLED?
672requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
673 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
674run_test "TLS 1.3: PSK: ephemeral: with matched key and identity, with psk_ke and psk_dhe_ke. G->m" \
675 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
676 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
677 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
678 localhost" \
679 0 \
680 -s "found psk key exchange modes extension" \
681 -s "found pre_shared_key extension" \
682 -s "Found PSK_EPHEMERAL KEX MODE" \
683 -s "Found PSK KEX MODE" \
684 -S "Pre shared key found" \
685 -S "No matched PSK or ticket"\
686 -S "key exchange mode: psk$" \
687 -S "key exchange mode: psk_ephemeral" \
688 -s "key exchange mode: ephemeral"
689
690requires_openssl_tls1_3
691requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
692requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
693requires_config_enabled MBEDTLS_SSL_SRV_C
694requires_config_enabled MBEDTLS_DEBUG_C
695# SOME_ECDHE_ENABLED?
696requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
697 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
698run_test "TLS 1.3: PSK: ephemeral: with matched key and identity, with psk_ke and psk_dhe_ke. O->m" \
699 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
700 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
701 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
702 0 \
703 -s "found psk key exchange modes extension" \
704 -s "found pre_shared_key extension" \
705 -s "Found PSK_EPHEMERAL KEX MODE" \
706 -s "Found PSK KEX MODE" \
707 -S "Pre shared key found" \
708 -S "No matched PSK or ticket"\
709 -S "key exchange mode: psk$" \
710 -S "key exchange mode: psk_ephemeral" \
711 -s "key exchange mode: ephemeral"
712
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]713requires_gnutls_tls1_3
Jerry Yufa8c3062022-07-31 13:14:56 +0800[diff] [blame]714requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
715requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
716requires_config_enabled MBEDTLS_SSL_SRV_C
717requires_config_enabled MBEDTLS_DEBUG_C
718# SOME_ECDHE_ENABLED?
719requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
720 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
721run_test "TLS 1.3: PSK: ephemeral: with matched key and identity, with psk_ke. G->m" \
722 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
723 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
724 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
725 localhost" \
726 0 \
727 -s "found psk key exchange modes extension" \
728 -s "found pre_shared_key extension" \
729 -S "Found PSK_EPHEMERAL KEX MODE" \
730 -s "Found PSK KEX MODE" \
731 -S "Pre shared key found" \
732 -S "No matched PSK or ticket"\
733 -S "key exchange mode: psk$" \
734 -S "key exchange mode: psk_ephemeral" \
735 -s "key exchange mode: ephemeral"
736
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]737requires_gnutls_tls1_3
Jerry Yufa8c3062022-07-31 13:14:56 +0800[diff] [blame]738requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
739requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
740requires_config_enabled MBEDTLS_SSL_SRV_C
741requires_config_enabled MBEDTLS_DEBUG_C
742# SOME_ECDHE_ENABLED?
743requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
744 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
745run_test "TLS 1.3: PSK: ephemeral: with matched key and identity, with psk_dhe_ke. G->m" \
746 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
747 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
748 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
749 localhost" \
750 0 \
751 -s "found psk key exchange modes extension" \
752 -s "found pre_shared_key extension" \
753 -s "Found PSK_EPHEMERAL KEX MODE" \
754 -S "Found PSK KEX MODE" \
755 -S "Pre shared key found" \
756 -S "No matched PSK or ticket"\
757 -S "key exchange mode: psk$" \
758 -S "key exchange mode: psk_ephemeral" \
759 -s "key exchange mode: ephemeral"
760
761requires_openssl_tls1_3
762requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
763requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
764requires_config_enabled MBEDTLS_SSL_SRV_C
765requires_config_enabled MBEDTLS_DEBUG_C
766# SOME_ECDHE_ENABLED?
767requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
768 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
769run_test "TLS 1.3: PSK: ephemeral: with matched key and identity, with psk_dhe_ke. O->m" \
770 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
771 "$O_NEXT_CLI -tls1_3 -msg \
772 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
773 0 \
774 -s "found psk key exchange modes extension" \
775 -s "found pre_shared_key extension" \
776 -s "Found PSK_EPHEMERAL KEX MODE" \
777 -S "Found PSK KEX MODE" \
778 -S "Pre shared key found" \
779 -S "No matched PSK or ticket"\
780 -S "key exchange mode: psk$" \
781 -S "key exchange mode: psk_ephemeral" \
782 -s "key exchange mode: ephemeral"
783
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]784requires_gnutls_tls1_3
Jerry Yufa8c3062022-07-31 13:14:56 +0800[diff] [blame]785requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
786requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
787requires_config_enabled MBEDTLS_SSL_SRV_C
788requires_config_enabled MBEDTLS_DEBUG_C
789# SOME_ECDHE_ENABLED?
790requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
791 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
792run_test "TLS 1.3: PSK: ephemeral: with mismatched identity, with psk_ke and psk_dhe_ke. G->m" \
793 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
794 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
795 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
796 localhost" \
797 0 \
798 -s "found psk key exchange modes extension" \
799 -s "found pre_shared_key extension" \
800 -s "Found PSK_EPHEMERAL KEX MODE" \
801 -s "Found PSK KEX MODE" \
802 -S "Pre shared key found" \
803 -S "No matched PSK or ticket"\
804 -S "key exchange mode: psk$" \
805 -S "key exchange mode: psk_ephemeral" \
806 -s "key exchange mode: ephemeral"
807
808requires_openssl_tls1_3
809requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
810requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
811requires_config_enabled MBEDTLS_SSL_SRV_C
812requires_config_enabled MBEDTLS_DEBUG_C
813# SOME_ECDHE_ENABLED?
814requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
815 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
816run_test "TLS 1.3: PSK: ephemeral: with mismatched identity, with psk_ke and psk_dhe_ke. O->m" \
817 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
818 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
819 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
820 0 \
821 -s "found psk key exchange modes extension" \
822 -s "found pre_shared_key extension" \
823 -s "Found PSK_EPHEMERAL KEX MODE" \
824 -s "Found PSK KEX MODE" \
825 -S "Pre shared key found" \
826 -S "No matched PSK or ticket"\
827 -S "key exchange mode: psk$" \
828 -S "key exchange mode: psk_ephemeral" \
829 -s "key exchange mode: ephemeral"
830
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]831requires_gnutls_tls1_3
Jerry Yufa8c3062022-07-31 13:14:56 +0800[diff] [blame]832requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
833requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
834requires_config_enabled MBEDTLS_SSL_SRV_C
835requires_config_enabled MBEDTLS_DEBUG_C
836# SOME_ECDHE_ENABLED?
837requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
838 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
839run_test "TLS 1.3: PSK: ephemeral: with mismatched identity, with psk_ke. G->m" \
840 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
841 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
842 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
843 localhost" \
844 0 \
845 -s "found psk key exchange modes extension" \
846 -s "found pre_shared_key extension" \
847 -S "Found PSK_EPHEMERAL KEX MODE" \
848 -s "Found PSK KEX MODE" \
849 -S "Pre shared key found" \
850 -S "No matched PSK or ticket"\
851 -S "key exchange mode: psk$" \
852 -S "key exchange mode: psk_ephemeral" \
853 -s "key exchange mode: ephemeral"
854
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]855requires_gnutls_tls1_3
Jerry Yufa8c3062022-07-31 13:14:56 +0800[diff] [blame]856requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
857requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
858requires_config_enabled MBEDTLS_SSL_SRV_C
859requires_config_enabled MBEDTLS_DEBUG_C
860# SOME_ECDHE_ENABLED?
861requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
862 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
863run_test "TLS 1.3: PSK: ephemeral: with mismatched identity, with psk_dhe_ke. G->m" \
864 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
865 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
866 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
867 localhost" \
868 0 \
869 -s "found psk key exchange modes extension" \
870 -s "found pre_shared_key extension" \
871 -s "Found PSK_EPHEMERAL KEX MODE" \
872 -S "Found PSK KEX MODE" \
873 -S "Pre shared key found" \
874 -S "No matched PSK or ticket"\
875 -S "key exchange mode: psk$" \
876 -S "key exchange mode: psk_ephemeral" \
877 -s "key exchange mode: ephemeral"
878
879requires_openssl_tls1_3
880requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
881requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
882requires_config_enabled MBEDTLS_SSL_SRV_C
883requires_config_enabled MBEDTLS_DEBUG_C
884# SOME_ECDHE_ENABLED?
885requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
886 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
887run_test "TLS 1.3: PSK: ephemeral: with mismatched identity, with psk_dhe_ke. O->m" \
888 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
889 "$O_NEXT_CLI -tls1_3 -msg \
890 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
891 0 \
892 -s "found psk key exchange modes extension" \
893 -s "found pre_shared_key extension" \
894 -s "Found PSK_EPHEMERAL KEX MODE" \
895 -S "Found PSK KEX MODE" \
896 -S "Pre shared key found" \
897 -S "No matched PSK or ticket"\
898 -S "key exchange mode: psk$" \
899 -S "key exchange mode: psk_ephemeral" \
900 -s "key exchange mode: ephemeral"
901
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]902requires_gnutls_tls1_3
Jerry Yufa8c3062022-07-31 13:14:56 +0800[diff] [blame]903requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
904requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
905requires_config_enabled MBEDTLS_SSL_SRV_C
906requires_config_enabled MBEDTLS_DEBUG_C
907# SOME_ECDHE_ENABLED?
908requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
909 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
910run_test "TLS 1.3: PSK: ephemeral: without pre_shared_key,with psk_ke and psk_dhe_ke. G->m" \
911 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
912 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+VERS-TLS1.3 \
913 localhost" \
914 0 \
915 -s "found psk key exchange modes extension" \
916 -S "found pre_shared_key extension" \
917 -s "Found PSK_EPHEMERAL KEX MODE" \
918 -s "Found PSK KEX MODE" \
919 -S "Pre shared key found" \
920 -S "No matched PSK or ticket"\
921 -S "key exchange mode: psk$" \
922 -S "key exchange mode: psk_ephemeral" \
923 -s "key exchange mode: ephemeral"
924
925requires_openssl_tls1_3
926requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
927requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
928requires_config_enabled MBEDTLS_SSL_SRV_C
929requires_config_enabled MBEDTLS_DEBUG_C
930# SOME_ECDHE_ENABLED?
931requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
932 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
933run_test "TLS 1.3: PSK: ephemeral: without pre_shared_key,with psk_ke and psk_dhe_ke. O->m" \
934 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
935 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex " \
936 0 \
937 -s "found psk key exchange modes extension" \
938 -S "found pre_shared_key extension" \
939 -s "Found PSK_EPHEMERAL KEX MODE" \
940 -s "Found PSK KEX MODE" \
941 -S "Pre shared key found" \
942 -S "No matched PSK or ticket"\
943 -S "key exchange mode: psk$" \
944 -S "key exchange mode: psk_ephemeral" \
945 -s "key exchange mode: ephemeral"
946
947requires_openssl_tls1_3
948requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
949requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
950requires_config_enabled MBEDTLS_SSL_SRV_C
951requires_config_enabled MBEDTLS_DEBUG_C
952# SOME_ECDHE_ENABLED?
953requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
954 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
955run_test "TLS 1.3: PSK: ephemeral: without pre_shared_key,with psk_dhe_ke. O->m" \
956 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
957 "$O_NEXT_CLI -tls1_3 -msg " \
958 0 \
959 -s "found psk key exchange modes extension" \
960 -S "found pre_shared_key extension" \
961 -s "Found PSK_EPHEMERAL KEX MODE" \
962 -S "Found PSK KEX MODE" \
963 -S "Pre shared key found" \
964 -S "No matched PSK or ticket"\
965 -S "key exchange mode: psk$" \
966 -S "key exchange mode: psk_ephemeral" \
967 -s "key exchange mode: ephemeral"
968
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]969requires_gnutls_tls1_3
Jerry Yubadd46f2022-07-31 13:16:44 +0800[diff] [blame]970requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
971requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
972requires_config_enabled MBEDTLS_SSL_SRV_C
973requires_config_enabled MBEDTLS_DEBUG_C
974# SOME_PSK_ENABLED
975requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
976 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
977# SOME_ECDHE_ENABLED?
978requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
979 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
980run_test "TLS 1.3: PSK: psk_all: with matched key and identity, with psk_ke and psk_dhe_ke. G->m" \
981 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
982 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
983 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
984 localhost" \
985 0 \
986 -s "found psk key exchange modes extension" \
987 -s "found pre_shared_key extension" \
988 -s "Found PSK_EPHEMERAL KEX MODE" \
989 -s "Found PSK KEX MODE" \
990 -s "Pre shared key found"
991
992requires_openssl_tls1_3
993requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
994requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
995requires_config_enabled MBEDTLS_SSL_SRV_C
996requires_config_enabled MBEDTLS_DEBUG_C
997# SOME_PSK_ENABLED
998requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
999 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1000# SOME_ECDHE_ENABLED?
1001requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1002 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1003run_test "TLS 1.3: PSK: psk_all: with matched key and identity, with psk_ke and psk_dhe_ke. O->m" \
1004 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1005 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
1006 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1007 0 \
1008 -s "found psk key exchange modes extension" \
1009 -s "found pre_shared_key extension" \
1010 -s "Found PSK_EPHEMERAL KEX MODE" \
1011 -s "Found PSK KEX MODE" \
1012 -s "Pre shared key found"
1013
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1014requires_gnutls_tls1_3
Jerry Yubadd46f2022-07-31 13:16:44 +0800[diff] [blame]1015requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1016requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1017requires_config_enabled MBEDTLS_SSL_SRV_C
1018requires_config_enabled MBEDTLS_DEBUG_C
1019# SOME_PSK_ENABLED
1020requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1021 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1022# SOME_ECDHE_ENABLED?
1023requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1024 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1025run_test "TLS 1.3: PSK: psk_all: with matched key and identity, with psk_ke. G->m" \
1026 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1027 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
1028 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1029 localhost" \
1030 0 \
1031 -s "found psk key exchange modes extension" \
1032 -s "found pre_shared_key extension" \
1033 -S "Found PSK_EPHEMERAL KEX MODE" \
1034 -s "Found PSK KEX MODE" \
1035 -s "Pre shared key found" \
1036 -s "key exchange mode: psk$" \
1037 -S "key exchange mode: psk_ephemeral" \
1038 -S "key exchange mode: ephemeral"
1039
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1040requires_gnutls_tls1_3
Jerry Yubadd46f2022-07-31 13:16:44 +0800[diff] [blame]1041requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1042requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1043requires_config_enabled MBEDTLS_SSL_SRV_C
1044requires_config_enabled MBEDTLS_DEBUG_C
1045# SOME_PSK_ENABLED
1046requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1047 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1048# SOME_ECDHE_ENABLED?
1049requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1050 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1051run_test "TLS 1.3: PSK: psk_all: with matched key and identity, with psk_dhe_ke. G->m" \
1052 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1053 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
1054 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1055 localhost" \
1056 0 \
1057 -s "found psk key exchange modes extension" \
1058 -s "found pre_shared_key extension" \
1059 -s "Found PSK_EPHEMERAL KEX MODE" \
1060 -S "Found PSK KEX MODE" \
1061 -s "Pre shared key found" \
1062 -S "key exchange mode: psk$" \
1063 -s "key exchange mode: psk_ephemeral" \
1064 -S "key exchange mode: ephemeral"
1065
1066requires_openssl_tls1_3
1067requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1068requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1069requires_config_enabled MBEDTLS_SSL_SRV_C
1070requires_config_enabled MBEDTLS_DEBUG_C
1071# SOME_PSK_ENABLED
1072requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1073 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1074# SOME_ECDHE_ENABLED?
1075requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1076 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1077run_test "TLS 1.3: PSK: psk_all: with matched key and identity, with psk_dhe_ke. O->m" \
1078 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1079 "$O_NEXT_CLI -tls1_3 -msg \
1080 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1081 0 \
1082 -s "found psk key exchange modes extension" \
1083 -s "found pre_shared_key extension" \
1084 -s "Found PSK_EPHEMERAL KEX MODE" \
1085 -S "Found PSK KEX MODE" \
1086 -s "Pre shared key found" \
1087 -S "key exchange mode: psk$" \
1088 -s "key exchange mode: psk_ephemeral" \
1089 -S "key exchange mode: ephemeral"
1090
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1091requires_gnutls_tls1_3
Jerry Yubadd46f2022-07-31 13:16:44 +0800[diff] [blame]1092requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1093requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1094requires_config_enabled MBEDTLS_SSL_SRV_C
1095requires_config_enabled MBEDTLS_DEBUG_C
1096# SOME_PSK_ENABLED
1097requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1098 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1099# SOME_ECDHE_ENABLED?
1100requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1101 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1102run_test "TLS 1.3: PSK: psk_all: with mismatched identity, with psk_ke and psk_dhe_ke. G->m" \
1103 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1104 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
1105 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1106 localhost" \
1107 1 \
1108 -s "found psk key exchange modes extension" \
1109 -s "found pre_shared_key extension" \
1110 -s "Found PSK_EPHEMERAL KEX MODE" \
1111 -s "Found PSK KEX MODE" \
1112 -S "Pre shared key found" \
1113 -s "No matched PSK or ticket" \
1114 -S "key exchange mode: psk$" \
1115 -S "key exchange mode: psk_ephemeral" \
1116 -S "key exchange mode: ephemeral"
1117
1118requires_openssl_tls1_3
1119requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1120requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1121requires_config_enabled MBEDTLS_SSL_SRV_C
1122requires_config_enabled MBEDTLS_DEBUG_C
1123# SOME_PSK_ENABLED
1124requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1125 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1126# SOME_ECDHE_ENABLED?
1127requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1128 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1129run_test "TLS 1.3: PSK: psk_all: with mismatched identity, with psk_ke and psk_dhe_ke. O->m" \
1130 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1131 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
1132 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1133 1 \
1134 -s "found psk key exchange modes extension" \
1135 -s "found pre_shared_key extension" \
1136 -s "Found PSK_EPHEMERAL KEX MODE" \
1137 -s "Found PSK KEX MODE" \
1138 -S "Pre shared key found" \
1139 -s "No matched PSK or ticket" \
1140 -S "key exchange mode: psk$" \
1141 -S "key exchange mode: psk_ephemeral" \
1142 -S "key exchange mode: ephemeral"
1143
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1144requires_gnutls_tls1_3
Jerry Yubadd46f2022-07-31 13:16:44 +0800[diff] [blame]1145requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1146requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1147requires_config_enabled MBEDTLS_SSL_SRV_C
1148requires_config_enabled MBEDTLS_DEBUG_C
1149# SOME_PSK_ENABLED
1150requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1151 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1152# SOME_ECDHE_ENABLED?
1153requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1154 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1155run_test "TLS 1.3: PSK: psk_all: with mismatched identity, with psk_ke. G->m" \
1156 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1157 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
1158 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1159 localhost" \
1160 1 \
1161 -s "found psk key exchange modes extension" \
1162 -s "found pre_shared_key extension" \
1163 -S "Found PSK_EPHEMERAL KEX MODE" \
1164 -s "Found PSK KEX MODE" \
1165 -S "Pre shared key found" \
1166 -s "No matched PSK or ticket" \
1167 -S "key exchange mode: psk$" \
1168 -S "key exchange mode: psk_ephemeral" \
1169 -S "key exchange mode: ephemeral"
1170
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1171requires_gnutls_tls1_3
Jerry Yubadd46f2022-07-31 13:16:44 +0800[diff] [blame]1172requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1173requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1174requires_config_enabled MBEDTLS_SSL_SRV_C
1175requires_config_enabled MBEDTLS_DEBUG_C
1176# SOME_PSK_ENABLED
1177requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1178 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1179# SOME_ECDHE_ENABLED?
1180requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1181 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1182run_test "TLS 1.3: PSK: psk_all: with mismatched identity, with psk_dhe_ke. G->m" \
1183 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1184 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
1185 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1186 localhost" \
1187 1 \
1188 -s "found psk key exchange modes extension" \
1189 -s "found pre_shared_key extension" \
1190 -s "Found PSK_EPHEMERAL KEX MODE" \
1191 -S "Found PSK KEX MODE" \
1192 -S "Pre shared key found" \
1193 -s "No matched PSK or ticket" \
1194 -S "key exchange mode: psk$" \
1195 -S "key exchange mode: psk_ephemeral" \
1196 -S "key exchange mode: ephemeral"
1197
1198requires_openssl_tls1_3
1199requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1200requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1201requires_config_enabled MBEDTLS_SSL_SRV_C
1202requires_config_enabled MBEDTLS_DEBUG_C
1203# SOME_PSK_ENABLED
1204requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1205 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1206# SOME_ECDHE_ENABLED?
1207requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1208 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1209run_test "TLS 1.3: PSK: psk_all: with mismatched identity, with psk_dhe_ke. O->m" \
1210 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1211 "$O_NEXT_CLI -tls1_3 -msg \
1212 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1213 1 \
1214 -s "found psk key exchange modes extension" \
1215 -s "found pre_shared_key extension" \
1216 -s "Found PSK_EPHEMERAL KEX MODE" \
1217 -S "Found PSK KEX MODE" \
1218 -S "Pre shared key found" \
1219 -s "No matched PSK or ticket" \
1220 -S "key exchange mode: psk$" \
1221 -S "key exchange mode: psk_ephemeral" \
1222 -S "key exchange mode: ephemeral"
1223
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1224requires_gnutls_tls1_3
Jerry Yubadd46f2022-07-31 13:16:44 +0800[diff] [blame]1225requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1226requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1227requires_config_enabled MBEDTLS_SSL_SRV_C
1228requires_config_enabled MBEDTLS_DEBUG_C
1229# SOME_PSK_ENABLED
1230requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1231 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1232# SOME_ECDHE_ENABLED?
1233requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1234 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1235run_test "TLS 1.3: PSK: psk_all: without pre_shared_key,with psk_ke and psk_dhe_ke. G->m" \
1236 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1237 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+VERS-TLS1.3 \
1238 localhost" \
1239 1 \
1240 -s "found psk key exchange modes extension" \
1241 -S "found pre_shared_key extension" \
1242 -s "Found PSK_EPHEMERAL KEX MODE" \
1243 -s "Found PSK KEX MODE" \
1244 -S "Pre shared key found"
1245
1246requires_openssl_tls1_3
1247requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1248requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1249requires_config_enabled MBEDTLS_SSL_SRV_C
1250requires_config_enabled MBEDTLS_DEBUG_C
1251# SOME_PSK_ENABLED
1252requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1253 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1254# SOME_ECDHE_ENABLED?
1255requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1256 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1257run_test "TLS 1.3: PSK: psk_all: without pre_shared_key,with psk_ke and psk_dhe_ke. O->m" \
1258 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1259 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex " \
1260 1 \
1261 -s "found psk key exchange modes extension" \
1262 -S "found pre_shared_key extension" \
1263 -s "Found PSK_EPHEMERAL KEX MODE" \
1264 -s "Found PSK KEX MODE" \
1265 -S "Pre shared key found"
1266
1267requires_openssl_tls1_3
1268requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1269requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1270requires_config_enabled MBEDTLS_SSL_SRV_C
1271requires_config_enabled MBEDTLS_DEBUG_C
1272# SOME_PSK_ENABLED
1273requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1274 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1275# SOME_ECDHE_ENABLED?
1276requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1277 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1278run_test "TLS 1.3: PSK: psk_all: without pre_shared_key,with psk_dhe_ke. O->m" \
1279 "$P_SRV force_version=tls13 tls13_kex_modes=psk_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1280 "$O_NEXT_CLI -tls1_3 -msg " \
1281 1 \
1282 -s "found psk key exchange modes extension" \
1283 -S "found pre_shared_key extension" \
1284 -s "Found PSK_EPHEMERAL KEX MODE" \
1285 -S "Found PSK KEX MODE" \
1286 -S "Pre shared key found"
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1287
1288requires_gnutls_tls1_3
Jerry Yu3b70b3c2022-07-31 13:17:37 +0800[diff] [blame]1289requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1290requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1291requires_config_enabled MBEDTLS_SSL_SRV_C
1292requires_config_enabled MBEDTLS_DEBUG_C
1293# SOME_ECDHE_ENABLED?
1294requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1295 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1296run_test "TLS 1.3: PSK: ephemeral_all: with matched key and identity, with psk_ke and psk_dhe_ke. G->m" \
1297 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1298 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
1299 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1300 localhost" \
1301 0 \
1302 -s "found psk key exchange modes extension" \
1303 -s "found pre_shared_key extension" \
1304 -s "Found PSK_EPHEMERAL KEX MODE" \
1305 -s "Found PSK KEX MODE" \
1306 -s "Pre shared key found" \
1307 -S "No matched PSK or ticket"\
1308 -S "key exchange mode: psk$" \
1309 -s "key exchange mode: psk_ephemeral" \
1310 -S "key exchange mode: ephemeral"
1311
1312requires_openssl_tls1_3
1313requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1314requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1315requires_config_enabled MBEDTLS_SSL_SRV_C
1316requires_config_enabled MBEDTLS_DEBUG_C
1317# SOME_ECDHE_ENABLED?
1318requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1319 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1320run_test "TLS 1.3: PSK: ephemeral_all: with matched key and identity, with psk_ke and psk_dhe_ke. O->m" \
1321 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1322 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
1323 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1324 0 \
1325 -s "found psk key exchange modes extension" \
1326 -s "found pre_shared_key extension" \
1327 -s "Found PSK_EPHEMERAL KEX MODE" \
1328 -s "Found PSK KEX MODE" \
1329 -s "Pre shared key found" \
1330 -S "No matched PSK or ticket"\
1331 -S "key exchange mode: psk$" \
1332 -s "key exchange mode: psk_ephemeral" \
1333 -S "key exchange mode: ephemeral"
1334
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1335requires_gnutls_tls1_3
Jerry Yu3b70b3c2022-07-31 13:17:37 +0800[diff] [blame]1336requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1337requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1338requires_config_enabled MBEDTLS_SSL_SRV_C
1339requires_config_enabled MBEDTLS_DEBUG_C
1340# SOME_ECDHE_ENABLED?
1341requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1342 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1343run_test "TLS 1.3: PSK: ephemeral_all: with matched key and identity, with psk_ke. G->m" \
1344 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1345 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
1346 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1347 localhost" \
1348 0 \
1349 -s "found psk key exchange modes extension" \
1350 -s "found pre_shared_key extension" \
1351 -S "Found PSK_EPHEMERAL KEX MODE" \
1352 -s "Found PSK KEX MODE" \
1353 -s "Pre shared key found" \
1354 -S "No matched PSK or ticket"\
1355 -S "key exchange mode: psk$" \
1356 -S "key exchange mode: psk_ephemeral" \
1357 -s "key exchange mode: ephemeral"
1358
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1359requires_gnutls_tls1_3
Jerry Yu3b70b3c2022-07-31 13:17:37 +0800[diff] [blame]1360requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1361requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1362requires_config_enabled MBEDTLS_SSL_SRV_C
1363requires_config_enabled MBEDTLS_DEBUG_C
1364# SOME_ECDHE_ENABLED?
1365requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1366 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1367run_test "TLS 1.3: PSK: ephemeral_all: with matched key and identity, with psk_dhe_ke. G->m" \
1368 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1369 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
1370 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1371 localhost" \
1372 0 \
1373 -s "found psk key exchange modes extension" \
1374 -s "found pre_shared_key extension" \
1375 -s "Found PSK_EPHEMERAL KEX MODE" \
1376 -S "Found PSK KEX MODE" \
1377 -s "Pre shared key found" \
1378 -S "No matched PSK or ticket"\
1379 -S "key exchange mode: psk$" \
1380 -s "key exchange mode: psk_ephemeral" \
1381 -S "key exchange mode: ephemeral"
1382
1383requires_openssl_tls1_3
1384requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1385requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1386requires_config_enabled MBEDTLS_SSL_SRV_C
1387requires_config_enabled MBEDTLS_DEBUG_C
1388# SOME_ECDHE_ENABLED?
1389requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1390 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1391run_test "TLS 1.3: PSK: ephemeral_all: with matched key and identity, with psk_dhe_ke. O->m" \
1392 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1393 "$O_NEXT_CLI -tls1_3 -msg \
1394 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1395 0 \
1396 -s "found psk key exchange modes extension" \
1397 -s "found pre_shared_key extension" \
1398 -s "Found PSK_EPHEMERAL KEX MODE" \
1399 -S "Found PSK KEX MODE" \
1400 -s "Pre shared key found" \
1401 -S "No matched PSK or ticket"\
1402 -S "key exchange mode: psk$" \
1403 -s "key exchange mode: psk_ephemeral" \
1404 -S "key exchange mode: ephemeral"
1405
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1406requires_gnutls_tls1_3
Jerry Yu3b70b3c2022-07-31 13:17:37 +0800[diff] [blame]1407requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1408requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1409requires_config_enabled MBEDTLS_SSL_SRV_C
1410requires_config_enabled MBEDTLS_DEBUG_C
1411# SOME_ECDHE_ENABLED?
1412requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1413 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1414run_test "TLS 1.3: PSK: ephemeral_all: with mismatched identity, with psk_ke and psk_dhe_ke. G->m" \
1415 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1416 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
1417 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1418 localhost" \
1419 0 \
1420 -s "found psk key exchange modes extension" \
1421 -s "found pre_shared_key extension" \
1422 -s "Found PSK_EPHEMERAL KEX MODE" \
1423 -s "Found PSK KEX MODE" \
1424 -S "Pre shared key found" \
1425 -s "No matched PSK or ticket"\
1426 -S "key exchange mode: psk$" \
1427 -S "key exchange mode: psk_ephemeral" \
1428 -s "key exchange mode: ephemeral"
1429
1430requires_openssl_tls1_3
1431requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1432requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1433requires_config_enabled MBEDTLS_SSL_SRV_C
1434requires_config_enabled MBEDTLS_DEBUG_C
1435# SOME_ECDHE_ENABLED?
1436requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1437 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1438run_test "TLS 1.3: PSK: ephemeral_all: with mismatched identity, with psk_ke and psk_dhe_ke. O->m" \
1439 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1440 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
1441 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1442 0 \
1443 -s "found psk key exchange modes extension" \
1444 -s "found pre_shared_key extension" \
1445 -s "Found PSK_EPHEMERAL KEX MODE" \
1446 -s "Found PSK KEX MODE" \
1447 -S "Pre shared key found" \
1448 -s "No matched PSK or ticket"\
1449 -S "key exchange mode: psk$" \
1450 -S "key exchange mode: psk_ephemeral" \
1451 -s "key exchange mode: ephemeral"
1452
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1453requires_gnutls_tls1_3
Jerry Yu3b70b3c2022-07-31 13:17:37 +0800[diff] [blame]1454requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1455requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1456requires_config_enabled MBEDTLS_SSL_SRV_C
1457requires_config_enabled MBEDTLS_DEBUG_C
1458# SOME_ECDHE_ENABLED?
1459requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1460 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1461run_test "TLS 1.3: PSK: ephemeral_all: with mismatched identity, with psk_ke. G->m" \
1462 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1463 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
1464 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1465 localhost" \
1466 0 \
1467 -s "found psk key exchange modes extension" \
1468 -s "found pre_shared_key extension" \
1469 -S "Found PSK_EPHEMERAL KEX MODE" \
1470 -s "Found PSK KEX MODE" \
1471 -S "Pre shared key found" \
1472 -s "No matched PSK or ticket"\
1473 -S "key exchange mode: psk$" \
1474 -S "key exchange mode: psk_ephemeral" \
1475 -s "key exchange mode: ephemeral"
1476
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1477requires_gnutls_tls1_3
Jerry Yu3b70b3c2022-07-31 13:17:37 +0800[diff] [blame]1478requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1479requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1480requires_config_enabled MBEDTLS_SSL_SRV_C
1481requires_config_enabled MBEDTLS_DEBUG_C
1482# SOME_ECDHE_ENABLED?
1483requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1484 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1485run_test "TLS 1.3: PSK: ephemeral_all: with mismatched identity, with psk_dhe_ke. G->m" \
1486 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1487 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
1488 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1489 localhost" \
1490 0 \
1491 -s "found psk key exchange modes extension" \
1492 -s "found pre_shared_key extension" \
1493 -s "Found PSK_EPHEMERAL KEX MODE" \
1494 -S "Found PSK KEX MODE" \
1495 -S "Pre shared key found" \
1496 -s "No matched PSK or ticket"\
1497 -S "key exchange mode: psk$" \
1498 -S "key exchange mode: psk_ephemeral" \
1499 -s "key exchange mode: ephemeral"
1500
1501requires_openssl_tls1_3
1502requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1503requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1504requires_config_enabled MBEDTLS_SSL_SRV_C
1505requires_config_enabled MBEDTLS_DEBUG_C
1506# SOME_ECDHE_ENABLED?
1507requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1508 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1509run_test "TLS 1.3: PSK: ephemeral_all: with mismatched identity, with psk_dhe_ke. O->m" \
1510 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1511 "$O_NEXT_CLI -tls1_3 -msg \
1512 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1513 0 \
1514 -s "found psk key exchange modes extension" \
1515 -s "found pre_shared_key extension" \
1516 -s "Found PSK_EPHEMERAL KEX MODE" \
1517 -S "Found PSK KEX MODE" \
1518 -S "Pre shared key found" \
1519 -s "No matched PSK or ticket"\
1520 -S "key exchange mode: psk$" \
1521 -S "key exchange mode: psk_ephemeral" \
1522 -s "key exchange mode: ephemeral"
1523
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1524requires_gnutls_tls1_3
Jerry Yu3b70b3c2022-07-31 13:17:37 +0800[diff] [blame]1525requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1526requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1527requires_config_enabled MBEDTLS_SSL_SRV_C
1528requires_config_enabled MBEDTLS_DEBUG_C
1529# SOME_ECDHE_ENABLED?
1530requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1531 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1532run_test "TLS 1.3: PSK: ephemeral_all: without pre_shared_key,with psk_ke and psk_dhe_ke. G->m" \
1533 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1534 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+VERS-TLS1.3 \
1535 localhost" \
1536 0 \
1537 -s "found psk key exchange modes extension" \
1538 -S "found pre_shared_key extension" \
1539 -s "Found PSK_EPHEMERAL KEX MODE" \
1540 -s "Found PSK KEX MODE" \
1541 -S "Pre shared key found" \
1542 -S "No matched PSK or ticket"\
1543 -S "key exchange mode: psk$" \
1544 -S "key exchange mode: psk_ephemeral" \
1545 -s "key exchange mode: ephemeral"
1546
1547requires_openssl_tls1_3
1548requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1549requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1550requires_config_enabled MBEDTLS_SSL_SRV_C
1551requires_config_enabled MBEDTLS_DEBUG_C
1552# SOME_ECDHE_ENABLED?
1553requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1554 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1555run_test "TLS 1.3: PSK: ephemeral_all: without pre_shared_key,with psk_ke and psk_dhe_ke. O->m" \
1556 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1557 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex " \
1558 0 \
1559 -s "found psk key exchange modes extension" \
1560 -S "found pre_shared_key extension" \
1561 -s "Found PSK_EPHEMERAL KEX MODE" \
1562 -s "Found PSK KEX MODE" \
1563 -S "Pre shared key found" \
1564 -S "No matched PSK or ticket"\
1565 -S "key exchange mode: psk$" \
1566 -S "key exchange mode: psk_ephemeral" \
1567 -s "key exchange mode: ephemeral"
1568
1569requires_openssl_tls1_3
1570requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1571requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1572requires_config_enabled MBEDTLS_SSL_SRV_C
1573requires_config_enabled MBEDTLS_DEBUG_C
1574# SOME_ECDHE_ENABLED?
1575requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1576 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1577run_test "TLS 1.3: PSK: ephemeral_all: without pre_shared_key,with psk_dhe_ke. O->m" \
1578 "$P_SRV force_version=tls13 tls13_kex_modes=ephemeral_all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1579 "$O_NEXT_CLI -tls1_3 -msg " \
1580 0 \
1581 -s "found psk key exchange modes extension" \
1582 -S "found pre_shared_key extension" \
1583 -s "Found PSK_EPHEMERAL KEX MODE" \
1584 -S "Found PSK KEX MODE" \
1585 -S "Pre shared key found" \
1586 -S "No matched PSK or ticket"\
1587 -S "key exchange mode: psk$" \
1588 -S "key exchange mode: psk_ephemeral" \
1589 -s "key exchange mode: ephemeral"
1590
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1591requires_gnutls_tls1_3
Jerry Yu63c78b82022-07-31 13:19:11 +0800[diff] [blame]1592requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1593requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1594requires_config_enabled MBEDTLS_SSL_SRV_C
1595requires_config_enabled MBEDTLS_DEBUG_C
1596# SOME_ECDHE_ENABLED?
1597requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1598 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1599run_test "TLS 1.3: PSK: all: with matched key and identity, with psk_ke and psk_dhe_ke. G->m" \
1600 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1601 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
1602 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1603 localhost" \
1604 0 \
1605 -s "found psk key exchange modes extension" \
1606 -s "found pre_shared_key extension" \
1607 -s "Found PSK_EPHEMERAL KEX MODE" \
1608 -s "Found PSK KEX MODE" \
1609 -s "Pre shared key found" \
1610 -S "No matched PSK or ticket"\
1611 -S "key exchange mode: psk$" \
1612 -s "key exchange mode: psk_ephemeral" \
1613 -S "key exchange mode: ephemeral"
1614
1615requires_openssl_tls1_3
1616requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1617requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1618requires_config_enabled MBEDTLS_SSL_SRV_C
1619requires_config_enabled MBEDTLS_DEBUG_C
1620# SOME_ECDHE_ENABLED?
1621requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1622 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1623run_test "TLS 1.3: PSK: all: with matched key and identity, with psk_ke and psk_dhe_ke. O->m" \
1624 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1625 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
1626 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1627 0 \
1628 -s "found psk key exchange modes extension" \
1629 -s "found pre_shared_key extension" \
1630 -s "Found PSK_EPHEMERAL KEX MODE" \
1631 -s "Found PSK KEX MODE" \
1632 -s "Pre shared key found" \
1633 -S "No matched PSK or ticket"\
1634 -S "key exchange mode: psk$" \
1635 -s "key exchange mode: psk_ephemeral" \
1636 -S "key exchange mode: ephemeral"
1637
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1638requires_gnutls_tls1_3
Jerry Yu63c78b82022-07-31 13:19:11 +0800[diff] [blame]1639requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1640requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1641requires_config_enabled MBEDTLS_SSL_SRV_C
1642requires_config_enabled MBEDTLS_DEBUG_C
1643# SOME_ECDHE_ENABLED?
1644requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1645 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1646run_test "TLS 1.3: PSK: all: with matched key and identity, with psk_ke. G->m" \
1647 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1648 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
1649 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1650 localhost" \
1651 0 \
1652 -s "found psk key exchange modes extension" \
1653 -s "found pre_shared_key extension" \
1654 -S "Found PSK_EPHEMERAL KEX MODE" \
1655 -s "Found PSK KEX MODE" \
1656 -s "Pre shared key found" \
1657 -S "No matched PSK or ticket"\
1658 -S "key exchange mode: psk$" \
1659 -S "key exchange mode: psk_ephemeral" \
1660 -s "key exchange mode: ephemeral"
1661
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1662requires_gnutls_tls1_3
Jerry Yu63c78b82022-07-31 13:19:11 +0800[diff] [blame]1663requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1664requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1665requires_config_enabled MBEDTLS_SSL_SRV_C
1666requires_config_enabled MBEDTLS_DEBUG_C
1667# SOME_ECDHE_ENABLED?
1668requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1669 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1670run_test "TLS 1.3: PSK: all: with matched key and identity, with psk_dhe_ke. G->m" \
1671 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1672 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
1673 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1674 localhost" \
1675 0 \
1676 -s "found psk key exchange modes extension" \
1677 -s "found pre_shared_key extension" \
1678 -s "Found PSK_EPHEMERAL KEX MODE" \
1679 -S "Found PSK KEX MODE" \
1680 -s "Pre shared key found" \
1681 -S "No matched PSK or ticket"\
1682 -S "key exchange mode: psk$" \
1683 -s "key exchange mode: psk_ephemeral" \
1684 -S "key exchange mode: ephemeral"
1685
1686requires_openssl_tls1_3
1687requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1688requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1689requires_config_enabled MBEDTLS_SSL_SRV_C
1690requires_config_enabled MBEDTLS_DEBUG_C
1691# SOME_ECDHE_ENABLED?
1692requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1693 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1694run_test "TLS 1.3: PSK: all: with matched key and identity, with psk_dhe_ke. O->m" \
1695 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1696 "$O_NEXT_CLI -tls1_3 -msg \
1697 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1698 0 \
1699 -s "found psk key exchange modes extension" \
1700 -s "found pre_shared_key extension" \
1701 -s "Found PSK_EPHEMERAL KEX MODE" \
1702 -S "Found PSK KEX MODE" \
1703 -s "Pre shared key found" \
1704 -S "No matched PSK or ticket"\
1705 -S "key exchange mode: psk$" \
1706 -s "key exchange mode: psk_ephemeral" \
1707 -S "key exchange mode: ephemeral"
1708
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1709requires_gnutls_tls1_3
Jerry Yu63c78b82022-07-31 13:19:11 +0800[diff] [blame]1710requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1711requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1712requires_config_enabled MBEDTLS_SSL_SRV_C
1713requires_config_enabled MBEDTLS_DEBUG_C
1714# SOME_ECDHE_ENABLED?
1715requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1716 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1717run_test "TLS 1.3: PSK: all: with mismatched identity, with psk_ke and psk_dhe_ke. G->m" \
1718 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1719 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
1720 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1721 localhost" \
1722 0 \
1723 -s "found psk key exchange modes extension" \
1724 -s "found pre_shared_key extension" \
1725 -s "Found PSK_EPHEMERAL KEX MODE" \
1726 -s "Found PSK KEX MODE" \
1727 -S "Pre shared key found" \
1728 -s "No matched PSK or ticket"\
1729 -S "key exchange mode: psk$" \
1730 -S "key exchange mode: psk_ephemeral" \
1731 -s "key exchange mode: ephemeral"
1732
1733requires_openssl_tls1_3
1734requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1735requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1736requires_config_enabled MBEDTLS_SSL_SRV_C
1737requires_config_enabled MBEDTLS_DEBUG_C
1738# SOME_ECDHE_ENABLED?
1739requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1740 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1741run_test "TLS 1.3: PSK: all: with mismatched identity, with psk_ke and psk_dhe_ke. O->m" \
1742 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1743 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
1744 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1745 0 \
1746 -s "found psk key exchange modes extension" \
1747 -s "found pre_shared_key extension" \
1748 -s "Found PSK_EPHEMERAL KEX MODE" \
1749 -s "Found PSK KEX MODE" \
1750 -S "Pre shared key found" \
1751 -s "No matched PSK or ticket"\
1752 -S "key exchange mode: psk$" \
1753 -S "key exchange mode: psk_ephemeral" \
1754 -s "key exchange mode: ephemeral"
1755
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1756requires_gnutls_tls1_3
Jerry Yu63c78b82022-07-31 13:19:11 +0800[diff] [blame]1757requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1758requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1759requires_config_enabled MBEDTLS_SSL_SRV_C
1760requires_config_enabled MBEDTLS_DEBUG_C
1761# SOME_ECDHE_ENABLED?
1762requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1763 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1764run_test "TLS 1.3: PSK: all: with mismatched identity, with psk_ke. G->m" \
1765 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1766 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
1767 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1768 localhost" \
1769 0 \
1770 -s "found psk key exchange modes extension" \
1771 -s "found pre_shared_key extension" \
1772 -S "Found PSK_EPHEMERAL KEX MODE" \
1773 -s "Found PSK KEX MODE" \
1774 -S "Pre shared key found" \
1775 -s "No matched PSK or ticket"\
1776 -S "key exchange mode: psk$" \
1777 -S "key exchange mode: psk_ephemeral" \
1778 -s "key exchange mode: ephemeral"
1779
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1780requires_gnutls_tls1_3
Jerry Yu63c78b82022-07-31 13:19:11 +0800[diff] [blame]1781requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1782requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1783requires_config_enabled MBEDTLS_SSL_SRV_C
1784requires_config_enabled MBEDTLS_DEBUG_C
1785# SOME_ECDHE_ENABLED?
1786requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1787 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1788run_test "TLS 1.3: PSK: all: with mismatched identity, with psk_dhe_ke. G->m" \
1789 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1790 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
1791 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1792 localhost" \
1793 0 \
1794 -s "found psk key exchange modes extension" \
1795 -s "found pre_shared_key extension" \
1796 -s "Found PSK_EPHEMERAL KEX MODE" \
1797 -S "Found PSK KEX MODE" \
1798 -S "Pre shared key found" \
1799 -s "No matched PSK or ticket"\
1800 -S "key exchange mode: psk$" \
1801 -S "key exchange mode: psk_ephemeral" \
1802 -s "key exchange mode: ephemeral"
1803
1804requires_openssl_tls1_3
1805requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1806requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1807requires_config_enabled MBEDTLS_SSL_SRV_C
1808requires_config_enabled MBEDTLS_DEBUG_C
1809# SOME_ECDHE_ENABLED?
1810requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1811 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1812run_test "TLS 1.3: PSK: all: with mismatched identity, with psk_dhe_ke. O->m" \
1813 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1814 "$O_NEXT_CLI -tls1_3 -msg \
1815 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1816 0 \
1817 -s "found psk key exchange modes extension" \
1818 -s "found pre_shared_key extension" \
1819 -s "Found PSK_EPHEMERAL KEX MODE" \
1820 -S "Found PSK KEX MODE" \
1821 -S "Pre shared key found" \
1822 -s "No matched PSK or ticket"\
1823 -S "key exchange mode: psk$" \
1824 -S "key exchange mode: psk_ephemeral" \
1825 -s "key exchange mode: ephemeral"
1826
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1827requires_gnutls_tls1_3
Jerry Yu63c78b82022-07-31 13:19:11 +0800[diff] [blame]1828requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1829requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1830requires_config_enabled MBEDTLS_SSL_SRV_C
1831requires_config_enabled MBEDTLS_DEBUG_C
1832# SOME_ECDHE_ENABLED?
1833requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1834 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1835run_test "TLS 1.3: PSK: all: without pre_shared_key,with psk_ke and psk_dhe_ke. G->m" \
1836 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1837 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+VERS-TLS1.3 \
1838 localhost" \
1839 0 \
1840 -s "found psk key exchange modes extension" \
1841 -S "found pre_shared_key extension" \
1842 -s "Found PSK_EPHEMERAL KEX MODE" \
1843 -s "Found PSK KEX MODE" \
1844 -S "Pre shared key found" \
1845 -S "No matched PSK or ticket"\
1846 -S "key exchange mode: psk$" \
1847 -S "key exchange mode: psk_ephemeral" \
1848 -s "key exchange mode: ephemeral"
1849
1850requires_openssl_tls1_3
1851requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1852requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1853requires_config_enabled MBEDTLS_SSL_SRV_C
1854requires_config_enabled MBEDTLS_DEBUG_C
1855# SOME_ECDHE_ENABLED?
1856requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1857 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1858run_test "TLS 1.3: PSK: all: without pre_shared_key,with psk_ke and psk_dhe_ke. O->m" \
1859 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1860 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex " \
1861 0 \
1862 -s "found psk key exchange modes extension" \
1863 -S "found pre_shared_key extension" \
1864 -s "Found PSK_EPHEMERAL KEX MODE" \
1865 -s "Found PSK KEX MODE" \
1866 -S "Pre shared key found" \
1867 -S "No matched PSK or ticket"\
1868 -S "key exchange mode: psk$" \
1869 -S "key exchange mode: psk_ephemeral" \
1870 -s "key exchange mode: ephemeral"
1871
1872requires_openssl_tls1_3
1873requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1874requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1875requires_config_enabled MBEDTLS_SSL_SRV_C
1876requires_config_enabled MBEDTLS_DEBUG_C
1877# SOME_ECDHE_ENABLED?
1878requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1879 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1880run_test "TLS 1.3: PSK: all: without pre_shared_key,with psk_dhe_ke. O->m" \
1881 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1882 "$O_NEXT_CLI -tls1_3 -msg " \
1883 0 \
1884 -s "found psk key exchange modes extension" \
1885 -S "found pre_shared_key extension" \
1886 -s "Found PSK_EPHEMERAL KEX MODE" \
1887 -S "Found PSK KEX MODE" \
1888 -S "Pre shared key found" \
1889 -S "No matched PSK or ticket"\
1890 -S "key exchange mode: psk$" \
1891 -S "key exchange mode: psk_ephemeral" \
1892 -s "key exchange mode: ephemeral"
1893
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1894requires_gnutls_tls1_3
Jerry Yu2b7a51b2022-08-01 10:19:13 +0800[diff] [blame]1895requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1896requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1897requires_config_enabled MBEDTLS_SSL_SRV_C
1898requires_config_enabled MBEDTLS_DEBUG_C
1899# SOME_PSK_ENABLED
1900requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1901 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1902# SOME_ECDHE_ENABLED?
1903requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1904 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1905run_test "TLS 1.3: PSK: psk_or_ephemeral: with matched key and identity, with psk_ke and psk_dhe_ke. G->m" \
1906 "$P_SRV force_version=tls13 tls13_kex_modes=psk_or_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1907 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
1908 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1909 localhost" \
1910 0 \
1911 -s "found psk key exchange modes extension" \
1912 -s "found pre_shared_key extension" \
1913 -s "Found PSK_EPHEMERAL KEX MODE" \
1914 -s "Found PSK KEX MODE" \
1915 -s "Pre shared key found" \
1916 -S "No matched PSK or ticket" \
1917 -S "key exchange mode: psk$" \
1918 -S "key exchange mode: psk_ephemeral" \
1919 -s "key exchange mode: ephemeral"
1920
1921requires_openssl_tls1_3
1922requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1923requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1924requires_config_enabled MBEDTLS_SSL_SRV_C
1925requires_config_enabled MBEDTLS_DEBUG_C
1926# SOME_PSK_ENABLED
1927requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1928 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1929# SOME_ECDHE_ENABLED?
1930requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1931 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1932run_test "TLS 1.3: PSK: psk_or_ephemeral: with matched key and identity, with psk_ke and psk_dhe_ke. O->m" \
1933 "$P_SRV force_version=tls13 tls13_kex_modes=psk_or_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1934 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
1935 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
1936 0 \
1937 -s "found psk key exchange modes extension" \
1938 -s "found pre_shared_key extension" \
1939 -s "Found PSK_EPHEMERAL KEX MODE" \
1940 -s "Found PSK KEX MODE" \
1941 -s "Pre shared key found" \
1942 -S "No matched PSK or ticket" \
1943 -S "key exchange mode: psk$" \
1944 -S "key exchange mode: psk_ephemeral" \
1945 -s "key exchange mode: ephemeral"
1946
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1947requires_gnutls_tls1_3
Jerry Yu2b7a51b2022-08-01 10:19:13 +0800[diff] [blame]1948requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1949requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1950requires_config_enabled MBEDTLS_SSL_SRV_C
1951requires_config_enabled MBEDTLS_DEBUG_C
1952# SOME_PSK_ENABLED
1953requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1954 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1955# SOME_ECDHE_ENABLED?
1956requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1957 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1958run_test "TLS 1.3: PSK: psk_or_ephemeral: with matched key and identity, with psk_ke. G->m" \
1959 "$P_SRV force_version=tls13 tls13_kex_modes=psk_or_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1960 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
1961 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1962 localhost" \
1963 0 \
1964 -s "found psk key exchange modes extension" \
1965 -s "found pre_shared_key extension" \
1966 -S "Found PSK_EPHEMERAL KEX MODE" \
1967 -s "Found PSK KEX MODE" \
1968 -s "Pre shared key found" \
1969 -S "No matched PSK or ticket" \
1970 -S "key exchange mode: psk$" \
1971 -S "key exchange mode: psk_ephemeral" \
1972 -s "key exchange mode: ephemeral"
1973
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]1974requires_gnutls_tls1_3
Jerry Yu2b7a51b2022-08-01 10:19:13 +0800[diff] [blame]1975requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
1976requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
1977requires_config_enabled MBEDTLS_SSL_SRV_C
1978requires_config_enabled MBEDTLS_DEBUG_C
1979# SOME_PSK_ENABLED
1980requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
1981 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1982# SOME_ECDHE_ENABLED?
1983requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
1984 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
1985run_test "TLS 1.3: PSK: psk_or_ephemeral: with matched key and identity, with psk_dhe_ke. G->m" \
1986 "$P_SRV force_version=tls13 tls13_kex_modes=psk_or_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
1987 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
1988 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
1989 localhost" \
1990 0 \
1991 -s "found psk key exchange modes extension" \
1992 -s "found pre_shared_key extension" \
1993 -s "Found PSK_EPHEMERAL KEX MODE" \
1994 -S "Found PSK KEX MODE" \
1995 -s "Pre shared key found" \
1996 -S "No matched PSK or ticket" \
1997 -S "key exchange mode: psk$" \
1998 -S "key exchange mode: psk_ephemeral" \
1999 -s "key exchange mode: ephemeral"
2000
2001requires_openssl_tls1_3
2002requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2003requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
2004requires_config_enabled MBEDTLS_SSL_SRV_C
2005requires_config_enabled MBEDTLS_DEBUG_C
2006# SOME_PSK_ENABLED
2007requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
2008 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2009# SOME_ECDHE_ENABLED?
2010requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
2011 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2012run_test "TLS 1.3: PSK: psk_or_ephemeral: with matched key and identity, with psk_dhe_ke. O->m" \
2013 "$P_SRV force_version=tls13 tls13_kex_modes=psk_or_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
2014 "$O_NEXT_CLI -tls1_3 -msg \
2015 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
2016 0 \
2017 -s "found psk key exchange modes extension" \
2018 -s "found pre_shared_key extension" \
2019 -s "Found PSK_EPHEMERAL KEX MODE" \
2020 -S "Found PSK KEX MODE" \
2021 -s "Pre shared key found" \
2022 -S "No matched PSK or ticket" \
2023 -S "key exchange mode: psk$" \
2024 -S "key exchange mode: psk_ephemeral" \
2025 -s "key exchange mode: ephemeral"
2026
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]2027requires_gnutls_tls1_3
Jerry Yu2b7a51b2022-08-01 10:19:13 +0800[diff] [blame]2028requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2029requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
2030requires_config_enabled MBEDTLS_SSL_SRV_C
2031requires_config_enabled MBEDTLS_DEBUG_C
2032# SOME_PSK_ENABLED
2033requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
2034 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2035# SOME_ECDHE_ENABLED?
2036requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
2037 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2038run_test "TLS 1.3: PSK: psk_or_ephemeral: with mismatched identity, with psk_ke and psk_dhe_ke. G->m" \
2039 "$P_SRV force_version=tls13 tls13_kex_modes=psk_or_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
2040 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
2041 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
2042 localhost" \
2043 0 \
2044 -s "found psk key exchange modes extension" \
2045 -s "found pre_shared_key extension" \
2046 -s "Found PSK_EPHEMERAL KEX MODE" \
2047 -s "Found PSK KEX MODE" \
2048 -S "Pre shared key found" \
2049 -s "No matched PSK or ticket" \
2050 -S "key exchange mode: psk$" \
2051 -S "key exchange mode: psk_ephemeral" \
2052 -s "key exchange mode: ephemeral"
2053
2054requires_openssl_tls1_3
2055requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2056requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
2057requires_config_enabled MBEDTLS_SSL_SRV_C
2058requires_config_enabled MBEDTLS_DEBUG_C
2059# SOME_PSK_ENABLED
2060requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
2061 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2062# SOME_ECDHE_ENABLED?
2063requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
2064 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2065run_test "TLS 1.3: PSK: psk_or_ephemeral: with mismatched identity, with psk_ke and psk_dhe_ke. O->m" \
2066 "$P_SRV force_version=tls13 tls13_kex_modes=psk_or_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
2067 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
2068 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
2069 0 \
2070 -s "found psk key exchange modes extension" \
2071 -s "found pre_shared_key extension" \
2072 -s "Found PSK_EPHEMERAL KEX MODE" \
2073 -s "Found PSK KEX MODE" \
2074 -S "Pre shared key found" \
2075 -s "No matched PSK or ticket" \
2076 -S "key exchange mode: psk$" \
2077 -S "key exchange mode: psk_ephemeral" \
2078 -s "key exchange mode: ephemeral"
2079
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]2080requires_gnutls_tls1_3
Jerry Yu2b7a51b2022-08-01 10:19:13 +0800[diff] [blame]2081requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2082requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
2083requires_config_enabled MBEDTLS_SSL_SRV_C
2084requires_config_enabled MBEDTLS_DEBUG_C
2085# SOME_PSK_ENABLED
2086requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
2087 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2088# SOME_ECDHE_ENABLED?
2089requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
2090 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2091run_test "TLS 1.3: PSK: psk_or_ephemeral: with mismatched identity, with psk_ke. G->m" \
2092 "$P_SRV force_version=tls13 tls13_kex_modes=psk_or_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
2093 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:-ECDHE-PSK:-DHE-PSK:+PSK:+VERS-TLS1.3 \
2094 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
2095 localhost" \
2096 0 \
2097 -s "found psk key exchange modes extension" \
2098 -s "found pre_shared_key extension" \
2099 -S "Found PSK_EPHEMERAL KEX MODE" \
2100 -s "Found PSK KEX MODE" \
2101 -S "Pre shared key found" \
2102 -s "No matched PSK or ticket" \
2103 -S "key exchange mode: psk$" \
2104 -S "key exchange mode: psk_ephemeral" \
2105 -s "key exchange mode: ephemeral"
2106
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]2107requires_gnutls_tls1_3
Jerry Yu2b7a51b2022-08-01 10:19:13 +0800[diff] [blame]2108requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2109requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
2110requires_config_enabled MBEDTLS_SSL_SRV_C
2111requires_config_enabled MBEDTLS_DEBUG_C
2112# SOME_PSK_ENABLED
2113requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
2114 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2115# SOME_ECDHE_ENABLED?
2116requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
2117 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2118run_test "TLS 1.3: PSK: psk_or_ephemeral: with mismatched identity, with psk_dhe_ke. G->m" \
2119 "$P_SRV force_version=tls13 tls13_kex_modes=psk_or_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
2120 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:-PSK:+VERS-TLS1.3 \
2121 --pskusername wrong_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
2122 localhost" \
2123 0 \
2124 -s "found psk key exchange modes extension" \
2125 -s "found pre_shared_key extension" \
2126 -s "Found PSK_EPHEMERAL KEX MODE" \
2127 -S "Found PSK KEX MODE" \
2128 -S "Pre shared key found" \
2129 -s "No matched PSK or ticket" \
2130 -S "key exchange mode: psk$" \
2131 -S "key exchange mode: psk_ephemeral" \
2132 -s "key exchange mode: ephemeral"
2133
2134requires_openssl_tls1_3
2135requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2136requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
2137requires_config_enabled MBEDTLS_SSL_SRV_C
2138requires_config_enabled MBEDTLS_DEBUG_C
2139# SOME_PSK_ENABLED
2140requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
2141 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2142# SOME_ECDHE_ENABLED?
2143requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
2144 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2145run_test "TLS 1.3: PSK: psk_or_ephemeral: with mismatched identity, with psk_dhe_ke. O->m" \
2146 "$P_SRV force_version=tls13 tls13_kex_modes=psk_or_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
2147 "$O_NEXT_CLI -tls1_3 -msg \
2148 -psk_identity wrong_identity -psk 6162636465666768696a6b6c6d6e6f70" \
2149 0 \
2150 -s "found psk key exchange modes extension" \
2151 -s "found pre_shared_key extension" \
2152 -s "Found PSK_EPHEMERAL KEX MODE" \
2153 -S "Found PSK KEX MODE" \
2154 -S "Pre shared key found" \
2155 -s "No matched PSK or ticket" \
2156 -S "key exchange mode: psk$" \
2157 -S "key exchange mode: psk_ephemeral" \
2158 -s "key exchange mode: ephemeral"
2159
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]2160requires_gnutls_tls1_3
Jerry Yu2b7a51b2022-08-01 10:19:13 +0800[diff] [blame]2161requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2162requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
2163requires_config_enabled MBEDTLS_SSL_SRV_C
2164requires_config_enabled MBEDTLS_DEBUG_C
2165# SOME_PSK_ENABLED
2166requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
2167 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2168# SOME_ECDHE_ENABLED?
2169requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
2170 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2171run_test "TLS 1.3: PSK: psk_or_ephemeral: without pre_shared_key,with psk_ke and psk_dhe_ke. G->m" \
2172 "$P_SRV force_version=tls13 tls13_kex_modes=psk_or_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
2173 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+VERS-TLS1.3 \
2174 localhost" \
2175 0 \
2176 -s "found psk key exchange modes extension" \
2177 -S "found pre_shared_key extension" \
2178 -s "Found PSK_EPHEMERAL KEX MODE" \
2179 -s "Found PSK KEX MODE" \
2180 -S "Pre shared key found" \
2181 -S "No matched PSK or ticket" \
2182 -S "key exchange mode: psk$" \
2183 -S "key exchange mode: psk_ephemeral" \
2184 -s "key exchange mode: ephemeral"
2185
2186requires_openssl_tls1_3
2187requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2188requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
2189requires_config_enabled MBEDTLS_SSL_SRV_C
2190requires_config_enabled MBEDTLS_DEBUG_C
2191# SOME_PSK_ENABLED
2192requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
2193 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2194# SOME_ECDHE_ENABLED?
2195requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
2196 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2197run_test "TLS 1.3: PSK: psk_or_ephemeral: without pre_shared_key,with psk_ke and psk_dhe_ke. O->m" \
2198 "$P_SRV force_version=tls13 tls13_kex_modes=psk_or_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
2199 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex " \
2200 0 \
2201 -s "found psk key exchange modes extension" \
2202 -S "found pre_shared_key extension" \
2203 -s "Found PSK_EPHEMERAL KEX MODE" \
2204 -s "Found PSK KEX MODE" \
2205 -S "Pre shared key found" \
2206 -S "No matched PSK or ticket" \
2207 -S "key exchange mode: psk$" \
2208 -S "key exchange mode: psk_ephemeral" \
2209 -s "key exchange mode: ephemeral"
2210
2211requires_openssl_tls1_3
2212requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2213requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
2214requires_config_enabled MBEDTLS_SSL_SRV_C
2215requires_config_enabled MBEDTLS_DEBUG_C
2216# SOME_PSK_ENABLED
2217requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_RSA_PSK_ENABLED \
2218 MBEDTLS_KEY_EXCHANGE_DHE_PSK_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2219# SOME_ECDHE_ENABLED?
2220requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
2221 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2222run_test "TLS 1.3: PSK: psk_or_ephemeral: without pre_shared_key,with psk_dhe_ke. O->m" \
2223 "$P_SRV force_version=tls13 tls13_kex_modes=psk_or_ephemeral debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
2224 "$O_NEXT_CLI -tls1_3 -msg " \
2225 0 \
2226 -s "found psk key exchange modes extension" \
2227 -S "found pre_shared_key extension" \
2228 -s "Found PSK_EPHEMERAL KEX MODE" \
2229 -S "Found PSK KEX MODE" \
2230 -S "Pre shared key found" \
2231 -S "No matched PSK or ticket" \
2232 -S "key exchange mode: psk$" \
2233 -S "key exchange mode: psk_ephemeral" \
2234 -s "key exchange mode: ephemeral"
Jerry Yub25d10f2022-08-21 12:53:53 +0800[diff] [blame]2235
Jerry Yu66f35f22022-08-22 17:27:41 +0800[diff] [blame]2236requires_gnutls_tls1_3
Jerry Yub25d10f2022-08-21 12:53:53 +0800[diff] [blame]2237requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2238requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
2239requires_config_enabled MBEDTLS_SSL_SRV_C
2240requires_config_enabled MBEDTLS_DEBUG_C
2241# SOME_ECDHE_ENABLED?
2242requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
2243 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2244run_test "TLS 1.3: PSK: all: with mismatched key, with psk_ke and psk_dhe_ke. G->m" \
2245 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
2246 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
2247 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f71 \
2248 localhost" \
2249 1 \
2250 -s "found psk key exchange modes extension" \
2251 -s "found pre_shared_key extension" \
2252 -s "Found PSK_EPHEMERAL KEX MODE" \
2253 -s "Found PSK KEX MODE" \
Jerry Yu3c01d472022-08-25 11:34:36 +0800[diff] [blame^]2254 -s "Invalid binder." \
Jerry Yub25d10f2022-08-21 12:53:53 +0800[diff] [blame]2255 -S "Pre shared key found" \
2256 -S "No matched PSK or ticket"\
2257 -S "key exchange mode: psk$" \
2258 -S "key exchange mode: psk_ephemeral" \
2259 -S "key exchange mode: ephemeral"
2260
2261requires_openssl_tls1_3
2262requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2263requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
2264requires_config_enabled MBEDTLS_SSL_SRV_C
2265requires_config_enabled MBEDTLS_DEBUG_C
2266# SOME_ECDHE_ENABLED?
2267requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
2268 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2269run_test "TLS 1.3: PSK: all: with mismatched key, with psk_ke and psk_dhe_ke. O->m" \
2270 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
2271 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex \
2272 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f71" \
2273 1 \
2274 -s "found psk key exchange modes extension" \
2275 -s "found pre_shared_key extension" \
2276 -s "Found PSK_EPHEMERAL KEX MODE" \
2277 -s "Found PSK KEX MODE" \
Jerry Yu3c01d472022-08-25 11:34:36 +0800[diff] [blame^]2278 -s "Invalid binder." \
Jerry Yub25d10f2022-08-21 12:53:53 +0800[diff] [blame]2279 -S "Pre shared key found" \
2280 -S "No matched PSK or ticket"\
2281 -S "key exchange mode: psk$" \
2282 -S "key exchange mode: psk_ephemeral" \
2283 -S "key exchange mode: ephemeral"
Jerry Yu2185c0f2022-08-23 16:12:43 +0800[diff] [blame]2284
2285requires_gnutls_tls1_3
2286requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2287requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
2288requires_config_enabled MBEDTLS_SSL_SRV_C
2289requires_config_enabled MBEDTLS_DEBUG_C
2290# SOME_ECDHE_ENABLED?
2291requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
2292 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2293run_test "TLS 1.3: PSK: test ciphersuite TLS_AES_256_GCM_SHA384. G->m" \
2294 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
2295 "$G_NEXT_CLI -d 10 --priority NORMAL:-VERS-ALL:-CIPHER-ALL:+AES-256-GCM:+AEAD:+SHA384:-KX-ALL:+ECDHE-PSK:+DHE-PSK:+PSK:+VERS-TLS1.3 \
2296 --pskusername Client_identity --pskkey=6162636465666768696a6b6c6d6e6f70 \
2297 localhost" \
2298 1 \
2299 -s "found psk key exchange modes extension" \
2300 -s "found pre_shared_key extension" \
2301 -s "Found PSK_EPHEMERAL KEX MODE" \
2302 -s "Found PSK KEX MODE" \
2303 -S "Pre shared key found" \
2304 -S "No matched PSK or ticket"\
2305 -S "key exchange mode: psk$" \
2306 -S "key exchange mode: psk_ephemeral" \
2307 -S "key exchange mode: ephemeral"
2308
2309requires_openssl_tls1_3
2310requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
2311requires_config_enabled MBEDTLS_SSL_TLS1_3_COMPATIBILITY_MODE
2312requires_config_enabled MBEDTLS_SSL_SRV_C
2313requires_config_enabled MBEDTLS_DEBUG_C
2314# SOME_ECDHE_ENABLED?
2315requires_any_configs_enabled MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED \
2316 MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED
2317run_test "TLS 1.3: PSK: test ciphersuite TLS_AES_256_GCM_SHA384. O->m" \
2318 "$P_SRV force_version=tls13 tls13_kex_modes=all debug_level=5 psk_identity=Client_identity psk=6162636465666768696a6b6c6d6e6f70" \
2319 "$O_NEXT_CLI -tls1_3 -msg -allow_no_dhe_kex -ciphersuites TLS_AES_256_GCM_SHA384\
2320 -psk_identity Client_identity -psk 6162636465666768696a6b6c6d6e6f70" \
2321 1 \
2322 -s "found psk key exchange modes extension" \
2323 -s "found pre_shared_key extension" \
2324 -s "Found PSK_EPHEMERAL KEX MODE" \
2325 -s "Found PSK KEX MODE" \
2326 -S "Pre shared key found" \
2327 -S "No matched PSK or ticket"\
2328 -S "key exchange mode: psk$" \
2329 -S "key exchange mode: psk_ephemeral" \
2330 -S "key exchange mode: ephemeral"