TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 587cfe65ca3c82f65f60fd855c1f163652c4a4ba^! / . / tests / ssl-opt.sh
commit587cfe65ca3c82f65f60fd855c1f163652c4a4ba[log] [tgz]
authorRonald Cron <ronald.cron@arm.com>Thu Feb 08 08:56:09 2024 +0100
committerRonald Cron <ronald.cron@arm.com>Thu Feb 08 12:09:42 2024 +0100
tree4c45242fafec4a915ddb454cd8d388288f08814e
parent195c0bc24edd7a6feeb2951d2d255f4482c8d323 [diff] [blame]
ssl-opt.sh: Establish TLS 1.2 then TLS 1.3 connection

Add a test where first we establish a
TLS 1.2 session, then a TLS 1.3 one
with the same server.

Signed-off-by: Ronald Cron <ronald.cron@arm.com>

diff --git a/tests/ssl-opt.sh b/tests/ssl-opt.sh
index 26c5a79..be4c6f7 100755
--- a/tests/ssl-opt.sh
+++ b/tests/ssl-opt.sh

@@ -11700,6 +11700,18 @@
             -s "ECDH/FFDH group: " \
             -s "selected signature algorithm ecdsa_secp256r1_sha256"
 
+requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_2
+requires_config_enabled MBEDTLS_SSL_PROTO_TLS1_3
+requires_config_enabled MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_EPHEMERAL_ENABLED
+requires_any_configs_enabled $TLS1_2_KEY_EXCHANGES_WITH_CERT
+run_test    "Establish TLS 1.2 then TLS 1.3 session" \
+            "$P_SRV" \
+            "( $P_CLI force_version=tls12; \
+               $P_CLI force_version=tls13 )" \
+            0 \
+            -s "Protocol is TLSv1.2" \
+            -s "Protocol is TLSv1.3" \
+
 requires_openssl_tls1_3_with_compatible_ephemeral
 requires_config_enabled MBEDTLS_DEBUG_C
 requires_config_enabled MBEDTLS_SSL_CLI_C