14-curves.cnf 79 KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288128912901291129212931294129512961297129812991300130113021303130413051306130713081309131013111312131313141315131613171318131913201321132213231324132513261327132813291330133113321333133413351336133713381339134013411342134313441345134613471348134913501351135213531354135513561357135813591360136113621363136413651366136713681369137013711372137313741375137613771378137913801381138213831384138513861387138813891390139113921393139413951396139713981399140014011402140314041405140614071408140914101411141214131414141514161417141814191420142114221423142414251426142714281429143014311432143314341435143614371438143914401441144214431444144514461447144814491450145114521453145414551456145714581459146014611462146314641465146614671468146914701471147214731474147514761477147814791480148114821483148414851486148714881489149014911492149314941495149614971498149915001501150215031504150515061507150815091510151115121513151415151516151715181519152015211522152315241525152615271528152915301531153215331534153515361537153815391540154115421543154415451546154715481549155015511552155315541555155615571558155915601561156215631564156515661567156815691570157115721573157415751576157715781579158015811582158315841585158615871588158915901591159215931594159515961597159815991600160116021603160416051606160716081609161016111612161316141615161616171618161916201621162216231624162516261627162816291630163116321633163416351636163716381639164016411642164316441645164616471648164916501651165216531654165516561657165816591660166116621663166416651666166716681669167016711672167316741675167616771678167916801681168216831684168516861687168816891690169116921693169416951696169716981699170017011702170317041705170617071708170917101711171217131714171517161717171817191720172117221723172417251726172717281729173017311732173317341735173617371738173917401741174217431744174517461747174817491750175117521753175417551756175717581759176017611762176317641765176617671768176917701771177217731774177517761777177817791780178117821783178417851786178717881789179017911792179317941795179617971798179918001801180218031804180518061807180818091810181118121813181418151816181718181819182018211822182318241825182618271828182918301831183218331834183518361837183818391840184118421843184418451846184718481849185018511852185318541855185618571858185918601861186218631864186518661867186818691870187118721873187418751876187718781879188018811882188318841885188618871888188918901891189218931894189518961897189818991900190119021903190419051906190719081909191019111912191319141915191619171918191919201921192219231924192519261927192819291930193119321933193419351936193719381939194019411942194319441945194619471948194919501951195219531954195519561957195819591960196119621963196419651966196719681969197019711972197319741975197619771978197919801981198219831984198519861987198819891990199119921993199419951996199719981999200020012002200320042005200620072008200920102011201220132014201520162017201820192020202120222023202420252026202720282029203020312032203320342035203620372038203920402041204220432044204520462047204820492050205120522053205420552056205720582059206020612062206320642065206620672068206920702071207220732074207520762077207820792080208120822083208420852086208720882089209020912092209320942095209620972098209921002101210221032104210521062107210821092110211121122113211421152116211721182119212021212122212321242125212621272128212921302131213221332134213521362137213821392140214121422143214421452146214721482149215021512152215321542155215621572158215921602161216221632164216521662167216821692170217121722173217421752176217721782179218021812182218321842185218621872188218921902191219221932194219521962197219821992200220122022203220422052206220722082209221022112212221322142215221622172218221922202221222222232224222522262227222822292230223122322233223422352236223722382239224022412242224322442245224622472248224922502251225222532254225522562257225822592260226122622263226422652266226722682269227022712272227322742275227622772278227922802281228222832284228522862287228822892290229122922293229422952296229722982299230023012302230323042305230623072308230923102311231223132314231523162317231823192320232123222323232423252326232723282329233023312332233323342335233623372338233923402341234223432344234523462347234823492350235123522353235423552356235723582359236023612362236323642365236623672368236923702371237223732374237523762377237823792380238123822383238423852386238723882389239023912392239323942395239623972398239924002401240224032404240524062407240824092410241124122413241424152416241724182419242024212422242324242425242624272428242924302431243224332434243524362437243824392440244124422443244424452446244724482449245024512452245324542455245624572458245924602461246224632464246524662467246824692470247124722473247424752476247724782479248024812482248324842485248624872488248924902491249224932494249524962497249824992500250125022503250425052506250725082509251025112512251325142515251625172518251925202521252225232524252525262527252825292530253125322533253425352536253725382539254025412542254325442545254625472548254925502551255225532554255525562557255825592560256125622563256425652566256725682569257025712572257325742575257625772578257925802581258225832584258525862587258825892590259125922593259425952596259725982599260026012602260326042605260626072608260926102611261226132614261526162617261826192620262126222623262426252626262726282629263026312632263326342635263626372638263926402641264226432644264526462647264826492650265126522653265426552656265726582659266026612662266326642665266626672668266926702671267226732674267526762677267826792680268126822683268426852686268726882689269026912692269326942695269626972698269927002701270227032704270527062707270827092710271127122713271427152716271727182719272027212722272327242725272627272728272927302731273227332734273527362737273827392740274127422743274427452746274727482749275027512752275327542755275627572758275927602761276227632764276527662767276827692770277127722773277427752776277727782779278027812782278327842785278627872788278927902791279227932794279527962797279827992800280128022803280428052806280728082809281028112812281328142815281628172818281928202821282228232824282528262827282828292830283128322833283428352836283728382839284028412842284328442845284628472848284928502851285228532854285528562857285828592860286128622863286428652866286728682869287028712872287328742875287628772878287928802881288228832884288528862887288828892890289128922893289428952896289728982899290029012902290329042905290629072908290929102911291229132914291529162917291829192920292129222923292429252926292729282929293029312932293329342935293629372938293929402941294229432944294529462947294829492950295129522953295429552956295729582959296029612962296329642965296629672968296929702971297229732974297529762977297829792980298129822983298429852986298729882989299029912992299329942995299629972998299930003001300230033004300530063007300830093010301130123013301430153016301730183019302030213022302330243025302630273028302930303031303230333034303530363037303830393040304130423043304430453046304730483049305030513052305330543055305630573058305930603061306230633064306530663067
  1. # Generated with generate_ssl_tests.pl
  2. num_tests = 104
  3. test-0 = 0-curve-prime256v1
  4. test-1 = 1-curve-secp384r1
  5. test-2 = 2-curve-secp521r1
  6. test-3 = 3-curve-X25519
  7. test-4 = 4-curve-X448
  8. test-5 = 5-curve-ffdhe2048
  9. test-6 = 6-curve-ffdhe3072
  10. test-7 = 7-curve-ffdhe4096
  11. test-8 = 8-curve-ffdhe6144
  12. test-9 = 9-curve-ffdhe8192
  13. test-10 = 10-curve-brainpoolP256r1tls13
  14. test-11 = 11-curve-brainpoolP384r1tls13
  15. test-12 = 12-curve-brainpoolP512r1tls13
  16. test-13 = 13-curve-sect233k1
  17. test-14 = 14-curve-sect233r1
  18. test-15 = 15-curve-sect283k1
  19. test-16 = 16-curve-sect283r1
  20. test-17 = 17-curve-sect409k1
  21. test-18 = 18-curve-sect409r1
  22. test-19 = 19-curve-sect571k1
  23. test-20 = 20-curve-sect571r1
  24. test-21 = 21-curve-secp224r1
  25. test-22 = 22-curve-sect163k1
  26. test-23 = 23-curve-sect163r2
  27. test-24 = 24-curve-prime192v1
  28. test-25 = 25-curve-sect163r1
  29. test-26 = 26-curve-sect193r1
  30. test-27 = 27-curve-sect193r2
  31. test-28 = 28-curve-sect239k1
  32. test-29 = 29-curve-secp160k1
  33. test-30 = 30-curve-secp160r1
  34. test-31 = 31-curve-secp160r2
  35. test-32 = 32-curve-secp192k1
  36. test-33 = 33-curve-secp224k1
  37. test-34 = 34-curve-secp256k1
  38. test-35 = 35-curve-brainpoolP256r1
  39. test-36 = 36-curve-brainpoolP384r1
  40. test-37 = 37-curve-brainpoolP512r1
  41. test-38 = 38-curve-sect233k1-tls12-in-tls13
  42. test-39 = 39-curve-sect233r1-tls12-in-tls13
  43. test-40 = 40-curve-sect283k1-tls12-in-tls13
  44. test-41 = 41-curve-sect283r1-tls12-in-tls13
  45. test-42 = 42-curve-sect409k1-tls12-in-tls13
  46. test-43 = 43-curve-sect409r1-tls12-in-tls13
  47. test-44 = 44-curve-sect571k1-tls12-in-tls13
  48. test-45 = 45-curve-sect571r1-tls12-in-tls13
  49. test-46 = 46-curve-secp224r1-tls12-in-tls13
  50. test-47 = 47-curve-sect163k1-tls12-in-tls13
  51. test-48 = 48-curve-sect163r2-tls12-in-tls13
  52. test-49 = 49-curve-prime192v1-tls12-in-tls13
  53. test-50 = 50-curve-sect163r1-tls12-in-tls13
  54. test-51 = 51-curve-sect193r1-tls12-in-tls13
  55. test-52 = 52-curve-sect193r2-tls12-in-tls13
  56. test-53 = 53-curve-sect239k1-tls12-in-tls13
  57. test-54 = 54-curve-secp160k1-tls12-in-tls13
  58. test-55 = 55-curve-secp160r1-tls12-in-tls13
  59. test-56 = 56-curve-secp160r2-tls12-in-tls13
  60. test-57 = 57-curve-secp192k1-tls12-in-tls13
  61. test-58 = 58-curve-secp224k1-tls12-in-tls13
  62. test-59 = 59-curve-secp256k1-tls12-in-tls13
  63. test-60 = 60-curve-brainpoolP256r1-tls12-in-tls13
  64. test-61 = 61-curve-brainpoolP384r1-tls12-in-tls13
  65. test-62 = 62-curve-brainpoolP512r1-tls12-in-tls13
  66. test-63 = 63-curve-sect233k1-tls13
  67. test-64 = 64-curve-sect233r1-tls13
  68. test-65 = 65-curve-sect283k1-tls13
  69. test-66 = 66-curve-sect283r1-tls13
  70. test-67 = 67-curve-sect409k1-tls13
  71. test-68 = 68-curve-sect409r1-tls13
  72. test-69 = 69-curve-sect571k1-tls13
  73. test-70 = 70-curve-sect571r1-tls13
  74. test-71 = 71-curve-secp224r1-tls13
  75. test-72 = 72-curve-sect163k1-tls13
  76. test-73 = 73-curve-sect163r2-tls13
  77. test-74 = 74-curve-prime192v1-tls13
  78. test-75 = 75-curve-sect163r1-tls13
  79. test-76 = 76-curve-sect193r1-tls13
  80. test-77 = 77-curve-sect193r2-tls13
  81. test-78 = 78-curve-sect239k1-tls13
  82. test-79 = 79-curve-secp160k1-tls13
  83. test-80 = 80-curve-secp160r1-tls13
  84. test-81 = 81-curve-secp160r2-tls13
  85. test-82 = 82-curve-secp192k1-tls13
  86. test-83 = 83-curve-secp224k1-tls13
  87. test-84 = 84-curve-secp256k1-tls13
  88. test-85 = 85-curve-brainpoolP256r1-tls13
  89. test-86 = 86-curve-brainpoolP384r1-tls13
  90. test-87 = 87-curve-brainpoolP512r1-tls13
  91. test-88 = 88-curve-ffdhe2048-tls13-in-tls12
  92. test-89 = 89-curve-ffdhe2048-tls13-in-tls12-2
  93. test-90 = 90-curve-ffdhe3072-tls13-in-tls12
  94. test-91 = 91-curve-ffdhe3072-tls13-in-tls12-2
  95. test-92 = 92-curve-ffdhe4096-tls13-in-tls12
  96. test-93 = 93-curve-ffdhe4096-tls13-in-tls12-2
  97. test-94 = 94-curve-ffdhe6144-tls13-in-tls12
  98. test-95 = 95-curve-ffdhe6144-tls13-in-tls12-2
  99. test-96 = 96-curve-ffdhe8192-tls13-in-tls12
  100. test-97 = 97-curve-ffdhe8192-tls13-in-tls12-2
  101. test-98 = 98-curve-brainpoolP256r1tls13-tls13-in-tls12
  102. test-99 = 99-curve-brainpoolP256r1tls13-tls13-in-tls12-2
  103. test-100 = 100-curve-brainpoolP384r1tls13-tls13-in-tls12
  104. test-101 = 101-curve-brainpoolP384r1tls13-tls13-in-tls12-2
  105. test-102 = 102-curve-brainpoolP512r1tls13-tls13-in-tls12
  106. test-103 = 103-curve-brainpoolP512r1tls13-tls13-in-tls12-2
  107. # ===========================================================
  108. [0-curve-prime256v1]
  109. ssl_conf = 0-curve-prime256v1-ssl
  110. [0-curve-prime256v1-ssl]
  111. server = 0-curve-prime256v1-server
  112. client = 0-curve-prime256v1-client
  113. [0-curve-prime256v1-server]
  114. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  115. CipherString = DEFAULT@SECLEVEL=1
  116. Curves = prime256v1
  117. MaxProtocol = TLSv1.3
  118. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  119. [0-curve-prime256v1-client]
  120. CipherString = ECDHE@SECLEVEL=1
  121. Curves = prime256v1
  122. MaxProtocol = TLSv1.3
  123. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  124. VerifyMode = Peer
  125. [test-0]
  126. ExpectedProtocol = TLSv1.3
  127. ExpectedResult = Success
  128. ExpectedTmpKeyType = prime256v1
  129. # ===========================================================
  130. [1-curve-secp384r1]
  131. ssl_conf = 1-curve-secp384r1-ssl
  132. [1-curve-secp384r1-ssl]
  133. server = 1-curve-secp384r1-server
  134. client = 1-curve-secp384r1-client
  135. [1-curve-secp384r1-server]
  136. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  137. CipherString = DEFAULT@SECLEVEL=1
  138. Curves = secp384r1
  139. MaxProtocol = TLSv1.3
  140. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  141. [1-curve-secp384r1-client]
  142. CipherString = ECDHE@SECLEVEL=1
  143. Curves = secp384r1
  144. MaxProtocol = TLSv1.3
  145. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  146. VerifyMode = Peer
  147. [test-1]
  148. ExpectedProtocol = TLSv1.3
  149. ExpectedResult = Success
  150. ExpectedTmpKeyType = secp384r1
  151. # ===========================================================
  152. [2-curve-secp521r1]
  153. ssl_conf = 2-curve-secp521r1-ssl
  154. [2-curve-secp521r1-ssl]
  155. server = 2-curve-secp521r1-server
  156. client = 2-curve-secp521r1-client
  157. [2-curve-secp521r1-server]
  158. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  159. CipherString = DEFAULT@SECLEVEL=1
  160. Curves = secp521r1
  161. MaxProtocol = TLSv1.3
  162. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  163. [2-curve-secp521r1-client]
  164. CipherString = ECDHE@SECLEVEL=1
  165. Curves = secp521r1
  166. MaxProtocol = TLSv1.3
  167. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  168. VerifyMode = Peer
  169. [test-2]
  170. ExpectedProtocol = TLSv1.3
  171. ExpectedResult = Success
  172. ExpectedTmpKeyType = secp521r1
  173. # ===========================================================
  174. [3-curve-X25519]
  175. ssl_conf = 3-curve-X25519-ssl
  176. [3-curve-X25519-ssl]
  177. server = 3-curve-X25519-server
  178. client = 3-curve-X25519-client
  179. [3-curve-X25519-server]
  180. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  181. CipherString = DEFAULT@SECLEVEL=1
  182. Curves = X25519
  183. MaxProtocol = TLSv1.3
  184. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  185. [3-curve-X25519-client]
  186. CipherString = ECDHE@SECLEVEL=1
  187. Curves = X25519
  188. MaxProtocol = TLSv1.3
  189. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  190. VerifyMode = Peer
  191. [test-3]
  192. ExpectedProtocol = TLSv1.3
  193. ExpectedResult = Success
  194. ExpectedTmpKeyType = X25519
  195. # ===========================================================
  196. [4-curve-X448]
  197. ssl_conf = 4-curve-X448-ssl
  198. [4-curve-X448-ssl]
  199. server = 4-curve-X448-server
  200. client = 4-curve-X448-client
  201. [4-curve-X448-server]
  202. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  203. CipherString = DEFAULT@SECLEVEL=1
  204. Curves = X448
  205. MaxProtocol = TLSv1.3
  206. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  207. [4-curve-X448-client]
  208. CipherString = ECDHE@SECLEVEL=1
  209. Curves = X448
  210. MaxProtocol = TLSv1.3
  211. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  212. VerifyMode = Peer
  213. [test-4]
  214. ExpectedProtocol = TLSv1.3
  215. ExpectedResult = Success
  216. ExpectedTmpKeyType = X448
  217. # ===========================================================
  218. [5-curve-ffdhe2048]
  219. ssl_conf = 5-curve-ffdhe2048-ssl
  220. [5-curve-ffdhe2048-ssl]
  221. server = 5-curve-ffdhe2048-server
  222. client = 5-curve-ffdhe2048-client
  223. [5-curve-ffdhe2048-server]
  224. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  225. CipherString = DEFAULT@SECLEVEL=1
  226. Curves = ffdhe2048
  227. MaxProtocol = TLSv1.3
  228. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  229. [5-curve-ffdhe2048-client]
  230. CipherString = ECDHE@SECLEVEL=1
  231. Curves = ffdhe2048
  232. MaxProtocol = TLSv1.3
  233. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  234. VerifyMode = Peer
  235. [test-5]
  236. ExpectedProtocol = TLSv1.3
  237. ExpectedResult = Success
  238. ExpectedTmpKeyType = dhKeyAgreement
  239. # ===========================================================
  240. [6-curve-ffdhe3072]
  241. ssl_conf = 6-curve-ffdhe3072-ssl
  242. [6-curve-ffdhe3072-ssl]
  243. server = 6-curve-ffdhe3072-server
  244. client = 6-curve-ffdhe3072-client
  245. [6-curve-ffdhe3072-server]
  246. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  247. CipherString = DEFAULT@SECLEVEL=1
  248. Curves = ffdhe3072
  249. MaxProtocol = TLSv1.3
  250. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  251. [6-curve-ffdhe3072-client]
  252. CipherString = ECDHE@SECLEVEL=1
  253. Curves = ffdhe3072
  254. MaxProtocol = TLSv1.3
  255. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  256. VerifyMode = Peer
  257. [test-6]
  258. ExpectedProtocol = TLSv1.3
  259. ExpectedResult = Success
  260. ExpectedTmpKeyType = dhKeyAgreement
  261. # ===========================================================
  262. [7-curve-ffdhe4096]
  263. ssl_conf = 7-curve-ffdhe4096-ssl
  264. [7-curve-ffdhe4096-ssl]
  265. server = 7-curve-ffdhe4096-server
  266. client = 7-curve-ffdhe4096-client
  267. [7-curve-ffdhe4096-server]
  268. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  269. CipherString = DEFAULT@SECLEVEL=1
  270. Curves = ffdhe4096
  271. MaxProtocol = TLSv1.3
  272. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  273. [7-curve-ffdhe4096-client]
  274. CipherString = ECDHE@SECLEVEL=1
  275. Curves = ffdhe4096
  276. MaxProtocol = TLSv1.3
  277. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  278. VerifyMode = Peer
  279. [test-7]
  280. ExpectedProtocol = TLSv1.3
  281. ExpectedResult = Success
  282. ExpectedTmpKeyType = dhKeyAgreement
  283. # ===========================================================
  284. [8-curve-ffdhe6144]
  285. ssl_conf = 8-curve-ffdhe6144-ssl
  286. [8-curve-ffdhe6144-ssl]
  287. server = 8-curve-ffdhe6144-server
  288. client = 8-curve-ffdhe6144-client
  289. [8-curve-ffdhe6144-server]
  290. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  291. CipherString = DEFAULT@SECLEVEL=1
  292. Curves = ffdhe6144
  293. MaxProtocol = TLSv1.3
  294. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  295. [8-curve-ffdhe6144-client]
  296. CipherString = ECDHE@SECLEVEL=1
  297. Curves = ffdhe6144
  298. MaxProtocol = TLSv1.3
  299. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  300. VerifyMode = Peer
  301. [test-8]
  302. ExpectedProtocol = TLSv1.3
  303. ExpectedResult = Success
  304. ExpectedTmpKeyType = dhKeyAgreement
  305. # ===========================================================
  306. [9-curve-ffdhe8192]
  307. ssl_conf = 9-curve-ffdhe8192-ssl
  308. [9-curve-ffdhe8192-ssl]
  309. server = 9-curve-ffdhe8192-server
  310. client = 9-curve-ffdhe8192-client
  311. [9-curve-ffdhe8192-server]
  312. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  313. CipherString = DEFAULT@SECLEVEL=1
  314. Curves = ffdhe8192
  315. MaxProtocol = TLSv1.3
  316. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  317. [9-curve-ffdhe8192-client]
  318. CipherString = ECDHE@SECLEVEL=1
  319. Curves = ffdhe8192
  320. MaxProtocol = TLSv1.3
  321. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  322. VerifyMode = Peer
  323. [test-9]
  324. ExpectedProtocol = TLSv1.3
  325. ExpectedResult = Success
  326. ExpectedTmpKeyType = dhKeyAgreement
  327. # ===========================================================
  328. [10-curve-brainpoolP256r1tls13]
  329. ssl_conf = 10-curve-brainpoolP256r1tls13-ssl
  330. [10-curve-brainpoolP256r1tls13-ssl]
  331. server = 10-curve-brainpoolP256r1tls13-server
  332. client = 10-curve-brainpoolP256r1tls13-client
  333. [10-curve-brainpoolP256r1tls13-server]
  334. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  335. CipherString = DEFAULT@SECLEVEL=1
  336. Curves = brainpoolP256r1tls13
  337. MaxProtocol = TLSv1.3
  338. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  339. [10-curve-brainpoolP256r1tls13-client]
  340. CipherString = ECDHE@SECLEVEL=1
  341. Curves = brainpoolP256r1tls13
  342. MaxProtocol = TLSv1.3
  343. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  344. VerifyMode = Peer
  345. [test-10]
  346. ExpectedProtocol = TLSv1.3
  347. ExpectedResult = Success
  348. ExpectedTmpKeyType = brainpoolP256r1tls13
  349. # ===========================================================
  350. [11-curve-brainpoolP384r1tls13]
  351. ssl_conf = 11-curve-brainpoolP384r1tls13-ssl
  352. [11-curve-brainpoolP384r1tls13-ssl]
  353. server = 11-curve-brainpoolP384r1tls13-server
  354. client = 11-curve-brainpoolP384r1tls13-client
  355. [11-curve-brainpoolP384r1tls13-server]
  356. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  357. CipherString = DEFAULT@SECLEVEL=1
  358. Curves = brainpoolP384r1tls13
  359. MaxProtocol = TLSv1.3
  360. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  361. [11-curve-brainpoolP384r1tls13-client]
  362. CipherString = ECDHE@SECLEVEL=1
  363. Curves = brainpoolP384r1tls13
  364. MaxProtocol = TLSv1.3
  365. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  366. VerifyMode = Peer
  367. [test-11]
  368. ExpectedProtocol = TLSv1.3
  369. ExpectedResult = Success
  370. ExpectedTmpKeyType = brainpoolP384r1tls13
  371. # ===========================================================
  372. [12-curve-brainpoolP512r1tls13]
  373. ssl_conf = 12-curve-brainpoolP512r1tls13-ssl
  374. [12-curve-brainpoolP512r1tls13-ssl]
  375. server = 12-curve-brainpoolP512r1tls13-server
  376. client = 12-curve-brainpoolP512r1tls13-client
  377. [12-curve-brainpoolP512r1tls13-server]
  378. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  379. CipherString = DEFAULT@SECLEVEL=1
  380. Curves = brainpoolP512r1tls13
  381. MaxProtocol = TLSv1.3
  382. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  383. [12-curve-brainpoolP512r1tls13-client]
  384. CipherString = ECDHE@SECLEVEL=1
  385. Curves = brainpoolP512r1tls13
  386. MaxProtocol = TLSv1.3
  387. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  388. VerifyMode = Peer
  389. [test-12]
  390. ExpectedProtocol = TLSv1.3
  391. ExpectedResult = Success
  392. ExpectedTmpKeyType = brainpoolP512r1tls13
  393. # ===========================================================
  394. [13-curve-sect233k1]
  395. ssl_conf = 13-curve-sect233k1-ssl
  396. [13-curve-sect233k1-ssl]
  397. server = 13-curve-sect233k1-server
  398. client = 13-curve-sect233k1-client
  399. [13-curve-sect233k1-server]
  400. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  401. CipherString = DEFAULT@SECLEVEL=1
  402. Curves = sect233k1
  403. MaxProtocol = TLSv1.3
  404. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  405. [13-curve-sect233k1-client]
  406. CipherString = ECDHE@SECLEVEL=1
  407. Curves = sect233k1
  408. MaxProtocol = TLSv1.2
  409. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  410. VerifyMode = Peer
  411. [test-13]
  412. ExpectedProtocol = TLSv1.2
  413. ExpectedResult = Success
  414. ExpectedTmpKeyType = sect233k1
  415. # ===========================================================
  416. [14-curve-sect233r1]
  417. ssl_conf = 14-curve-sect233r1-ssl
  418. [14-curve-sect233r1-ssl]
  419. server = 14-curve-sect233r1-server
  420. client = 14-curve-sect233r1-client
  421. [14-curve-sect233r1-server]
  422. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  423. CipherString = DEFAULT@SECLEVEL=1
  424. Curves = sect233r1
  425. MaxProtocol = TLSv1.3
  426. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  427. [14-curve-sect233r1-client]
  428. CipherString = ECDHE@SECLEVEL=1
  429. Curves = sect233r1
  430. MaxProtocol = TLSv1.2
  431. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  432. VerifyMode = Peer
  433. [test-14]
  434. ExpectedProtocol = TLSv1.2
  435. ExpectedResult = Success
  436. ExpectedTmpKeyType = sect233r1
  437. # ===========================================================
  438. [15-curve-sect283k1]
  439. ssl_conf = 15-curve-sect283k1-ssl
  440. [15-curve-sect283k1-ssl]
  441. server = 15-curve-sect283k1-server
  442. client = 15-curve-sect283k1-client
  443. [15-curve-sect283k1-server]
  444. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  445. CipherString = DEFAULT@SECLEVEL=1
  446. Curves = sect283k1
  447. MaxProtocol = TLSv1.3
  448. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  449. [15-curve-sect283k1-client]
  450. CipherString = ECDHE@SECLEVEL=1
  451. Curves = sect283k1
  452. MaxProtocol = TLSv1.2
  453. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  454. VerifyMode = Peer
  455. [test-15]
  456. ExpectedProtocol = TLSv1.2
  457. ExpectedResult = Success
  458. ExpectedTmpKeyType = sect283k1
  459. # ===========================================================
  460. [16-curve-sect283r1]
  461. ssl_conf = 16-curve-sect283r1-ssl
  462. [16-curve-sect283r1-ssl]
  463. server = 16-curve-sect283r1-server
  464. client = 16-curve-sect283r1-client
  465. [16-curve-sect283r1-server]
  466. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  467. CipherString = DEFAULT@SECLEVEL=1
  468. Curves = sect283r1
  469. MaxProtocol = TLSv1.3
  470. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  471. [16-curve-sect283r1-client]
  472. CipherString = ECDHE@SECLEVEL=1
  473. Curves = sect283r1
  474. MaxProtocol = TLSv1.2
  475. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  476. VerifyMode = Peer
  477. [test-16]
  478. ExpectedProtocol = TLSv1.2
  479. ExpectedResult = Success
  480. ExpectedTmpKeyType = sect283r1
  481. # ===========================================================
  482. [17-curve-sect409k1]
  483. ssl_conf = 17-curve-sect409k1-ssl
  484. [17-curve-sect409k1-ssl]
  485. server = 17-curve-sect409k1-server
  486. client = 17-curve-sect409k1-client
  487. [17-curve-sect409k1-server]
  488. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  489. CipherString = DEFAULT@SECLEVEL=1
  490. Curves = sect409k1
  491. MaxProtocol = TLSv1.3
  492. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  493. [17-curve-sect409k1-client]
  494. CipherString = ECDHE@SECLEVEL=1
  495. Curves = sect409k1
  496. MaxProtocol = TLSv1.2
  497. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  498. VerifyMode = Peer
  499. [test-17]
  500. ExpectedProtocol = TLSv1.2
  501. ExpectedResult = Success
  502. ExpectedTmpKeyType = sect409k1
  503. # ===========================================================
  504. [18-curve-sect409r1]
  505. ssl_conf = 18-curve-sect409r1-ssl
  506. [18-curve-sect409r1-ssl]
  507. server = 18-curve-sect409r1-server
  508. client = 18-curve-sect409r1-client
  509. [18-curve-sect409r1-server]
  510. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  511. CipherString = DEFAULT@SECLEVEL=1
  512. Curves = sect409r1
  513. MaxProtocol = TLSv1.3
  514. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  515. [18-curve-sect409r1-client]
  516. CipherString = ECDHE@SECLEVEL=1
  517. Curves = sect409r1
  518. MaxProtocol = TLSv1.2
  519. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  520. VerifyMode = Peer
  521. [test-18]
  522. ExpectedProtocol = TLSv1.2
  523. ExpectedResult = Success
  524. ExpectedTmpKeyType = sect409r1
  525. # ===========================================================
  526. [19-curve-sect571k1]
  527. ssl_conf = 19-curve-sect571k1-ssl
  528. [19-curve-sect571k1-ssl]
  529. server = 19-curve-sect571k1-server
  530. client = 19-curve-sect571k1-client
  531. [19-curve-sect571k1-server]
  532. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  533. CipherString = DEFAULT@SECLEVEL=1
  534. Curves = sect571k1
  535. MaxProtocol = TLSv1.3
  536. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  537. [19-curve-sect571k1-client]
  538. CipherString = ECDHE@SECLEVEL=1
  539. Curves = sect571k1
  540. MaxProtocol = TLSv1.2
  541. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  542. VerifyMode = Peer
  543. [test-19]
  544. ExpectedProtocol = TLSv1.2
  545. ExpectedResult = Success
  546. ExpectedTmpKeyType = sect571k1
  547. # ===========================================================
  548. [20-curve-sect571r1]
  549. ssl_conf = 20-curve-sect571r1-ssl
  550. [20-curve-sect571r1-ssl]
  551. server = 20-curve-sect571r1-server
  552. client = 20-curve-sect571r1-client
  553. [20-curve-sect571r1-server]
  554. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  555. CipherString = DEFAULT@SECLEVEL=1
  556. Curves = sect571r1
  557. MaxProtocol = TLSv1.3
  558. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  559. [20-curve-sect571r1-client]
  560. CipherString = ECDHE@SECLEVEL=1
  561. Curves = sect571r1
  562. MaxProtocol = TLSv1.2
  563. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  564. VerifyMode = Peer
  565. [test-20]
  566. ExpectedProtocol = TLSv1.2
  567. ExpectedResult = Success
  568. ExpectedTmpKeyType = sect571r1
  569. # ===========================================================
  570. [21-curve-secp224r1]
  571. ssl_conf = 21-curve-secp224r1-ssl
  572. [21-curve-secp224r1-ssl]
  573. server = 21-curve-secp224r1-server
  574. client = 21-curve-secp224r1-client
  575. [21-curve-secp224r1-server]
  576. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  577. CipherString = DEFAULT@SECLEVEL=1
  578. Curves = secp224r1
  579. MaxProtocol = TLSv1.3
  580. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  581. [21-curve-secp224r1-client]
  582. CipherString = ECDHE@SECLEVEL=1
  583. Curves = secp224r1
  584. MaxProtocol = TLSv1.2
  585. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  586. VerifyMode = Peer
  587. [test-21]
  588. ExpectedProtocol = TLSv1.2
  589. ExpectedResult = Success
  590. ExpectedTmpKeyType = secp224r1
  591. # ===========================================================
  592. [22-curve-sect163k1]
  593. ssl_conf = 22-curve-sect163k1-ssl
  594. [22-curve-sect163k1-ssl]
  595. server = 22-curve-sect163k1-server
  596. client = 22-curve-sect163k1-client
  597. [22-curve-sect163k1-server]
  598. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  599. CipherString = DEFAULT@SECLEVEL=1
  600. Curves = sect163k1
  601. MaxProtocol = TLSv1.3
  602. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  603. [22-curve-sect163k1-client]
  604. CipherString = ECDHE@SECLEVEL=1
  605. Curves = sect163k1
  606. MaxProtocol = TLSv1.2
  607. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  608. VerifyMode = Peer
  609. [test-22]
  610. ExpectedProtocol = TLSv1.2
  611. ExpectedResult = Success
  612. ExpectedTmpKeyType = sect163k1
  613. # ===========================================================
  614. [23-curve-sect163r2]
  615. ssl_conf = 23-curve-sect163r2-ssl
  616. [23-curve-sect163r2-ssl]
  617. server = 23-curve-sect163r2-server
  618. client = 23-curve-sect163r2-client
  619. [23-curve-sect163r2-server]
  620. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  621. CipherString = DEFAULT@SECLEVEL=1
  622. Curves = sect163r2
  623. MaxProtocol = TLSv1.3
  624. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  625. [23-curve-sect163r2-client]
  626. CipherString = ECDHE@SECLEVEL=1
  627. Curves = sect163r2
  628. MaxProtocol = TLSv1.2
  629. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  630. VerifyMode = Peer
  631. [test-23]
  632. ExpectedProtocol = TLSv1.2
  633. ExpectedResult = Success
  634. ExpectedTmpKeyType = sect163r2
  635. # ===========================================================
  636. [24-curve-prime192v1]
  637. ssl_conf = 24-curve-prime192v1-ssl
  638. [24-curve-prime192v1-ssl]
  639. server = 24-curve-prime192v1-server
  640. client = 24-curve-prime192v1-client
  641. [24-curve-prime192v1-server]
  642. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  643. CipherString = DEFAULT@SECLEVEL=1
  644. Curves = prime192v1
  645. MaxProtocol = TLSv1.3
  646. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  647. [24-curve-prime192v1-client]
  648. CipherString = ECDHE@SECLEVEL=1
  649. Curves = prime192v1
  650. MaxProtocol = TLSv1.2
  651. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  652. VerifyMode = Peer
  653. [test-24]
  654. ExpectedProtocol = TLSv1.2
  655. ExpectedResult = Success
  656. ExpectedTmpKeyType = prime192v1
  657. # ===========================================================
  658. [25-curve-sect163r1]
  659. ssl_conf = 25-curve-sect163r1-ssl
  660. [25-curve-sect163r1-ssl]
  661. server = 25-curve-sect163r1-server
  662. client = 25-curve-sect163r1-client
  663. [25-curve-sect163r1-server]
  664. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  665. CipherString = DEFAULT@SECLEVEL=1
  666. Curves = sect163r1
  667. MaxProtocol = TLSv1.3
  668. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  669. [25-curve-sect163r1-client]
  670. CipherString = ECDHE@SECLEVEL=1
  671. Curves = sect163r1
  672. MaxProtocol = TLSv1.2
  673. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  674. VerifyMode = Peer
  675. [test-25]
  676. ExpectedProtocol = TLSv1.2
  677. ExpectedResult = Success
  678. ExpectedTmpKeyType = sect163r1
  679. # ===========================================================
  680. [26-curve-sect193r1]
  681. ssl_conf = 26-curve-sect193r1-ssl
  682. [26-curve-sect193r1-ssl]
  683. server = 26-curve-sect193r1-server
  684. client = 26-curve-sect193r1-client
  685. [26-curve-sect193r1-server]
  686. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  687. CipherString = DEFAULT@SECLEVEL=1
  688. Curves = sect193r1
  689. MaxProtocol = TLSv1.3
  690. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  691. [26-curve-sect193r1-client]
  692. CipherString = ECDHE@SECLEVEL=1
  693. Curves = sect193r1
  694. MaxProtocol = TLSv1.2
  695. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  696. VerifyMode = Peer
  697. [test-26]
  698. ExpectedProtocol = TLSv1.2
  699. ExpectedResult = Success
  700. ExpectedTmpKeyType = sect193r1
  701. # ===========================================================
  702. [27-curve-sect193r2]
  703. ssl_conf = 27-curve-sect193r2-ssl
  704. [27-curve-sect193r2-ssl]
  705. server = 27-curve-sect193r2-server
  706. client = 27-curve-sect193r2-client
  707. [27-curve-sect193r2-server]
  708. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  709. CipherString = DEFAULT@SECLEVEL=1
  710. Curves = sect193r2
  711. MaxProtocol = TLSv1.3
  712. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  713. [27-curve-sect193r2-client]
  714. CipherString = ECDHE@SECLEVEL=1
  715. Curves = sect193r2
  716. MaxProtocol = TLSv1.2
  717. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  718. VerifyMode = Peer
  719. [test-27]
  720. ExpectedProtocol = TLSv1.2
  721. ExpectedResult = Success
  722. ExpectedTmpKeyType = sect193r2
  723. # ===========================================================
  724. [28-curve-sect239k1]
  725. ssl_conf = 28-curve-sect239k1-ssl
  726. [28-curve-sect239k1-ssl]
  727. server = 28-curve-sect239k1-server
  728. client = 28-curve-sect239k1-client
  729. [28-curve-sect239k1-server]
  730. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  731. CipherString = DEFAULT@SECLEVEL=1
  732. Curves = sect239k1
  733. MaxProtocol = TLSv1.3
  734. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  735. [28-curve-sect239k1-client]
  736. CipherString = ECDHE@SECLEVEL=1
  737. Curves = sect239k1
  738. MaxProtocol = TLSv1.2
  739. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  740. VerifyMode = Peer
  741. [test-28]
  742. ExpectedProtocol = TLSv1.2
  743. ExpectedResult = Success
  744. ExpectedTmpKeyType = sect239k1
  745. # ===========================================================
  746. [29-curve-secp160k1]
  747. ssl_conf = 29-curve-secp160k1-ssl
  748. [29-curve-secp160k1-ssl]
  749. server = 29-curve-secp160k1-server
  750. client = 29-curve-secp160k1-client
  751. [29-curve-secp160k1-server]
  752. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  753. CipherString = DEFAULT@SECLEVEL=1
  754. Curves = secp160k1
  755. MaxProtocol = TLSv1.3
  756. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  757. [29-curve-secp160k1-client]
  758. CipherString = ECDHE@SECLEVEL=1
  759. Curves = secp160k1
  760. MaxProtocol = TLSv1.2
  761. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  762. VerifyMode = Peer
  763. [test-29]
  764. ExpectedProtocol = TLSv1.2
  765. ExpectedResult = Success
  766. ExpectedTmpKeyType = secp160k1
  767. # ===========================================================
  768. [30-curve-secp160r1]
  769. ssl_conf = 30-curve-secp160r1-ssl
  770. [30-curve-secp160r1-ssl]
  771. server = 30-curve-secp160r1-server
  772. client = 30-curve-secp160r1-client
  773. [30-curve-secp160r1-server]
  774. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  775. CipherString = DEFAULT@SECLEVEL=1
  776. Curves = secp160r1
  777. MaxProtocol = TLSv1.3
  778. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  779. [30-curve-secp160r1-client]
  780. CipherString = ECDHE@SECLEVEL=1
  781. Curves = secp160r1
  782. MaxProtocol = TLSv1.2
  783. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  784. VerifyMode = Peer
  785. [test-30]
  786. ExpectedProtocol = TLSv1.2
  787. ExpectedResult = Success
  788. ExpectedTmpKeyType = secp160r1
  789. # ===========================================================
  790. [31-curve-secp160r2]
  791. ssl_conf = 31-curve-secp160r2-ssl
  792. [31-curve-secp160r2-ssl]
  793. server = 31-curve-secp160r2-server
  794. client = 31-curve-secp160r2-client
  795. [31-curve-secp160r2-server]
  796. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  797. CipherString = DEFAULT@SECLEVEL=1
  798. Curves = secp160r2
  799. MaxProtocol = TLSv1.3
  800. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  801. [31-curve-secp160r2-client]
  802. CipherString = ECDHE@SECLEVEL=1
  803. Curves = secp160r2
  804. MaxProtocol = TLSv1.2
  805. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  806. VerifyMode = Peer
  807. [test-31]
  808. ExpectedProtocol = TLSv1.2
  809. ExpectedResult = Success
  810. ExpectedTmpKeyType = secp160r2
  811. # ===========================================================
  812. [32-curve-secp192k1]
  813. ssl_conf = 32-curve-secp192k1-ssl
  814. [32-curve-secp192k1-ssl]
  815. server = 32-curve-secp192k1-server
  816. client = 32-curve-secp192k1-client
  817. [32-curve-secp192k1-server]
  818. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  819. CipherString = DEFAULT@SECLEVEL=1
  820. Curves = secp192k1
  821. MaxProtocol = TLSv1.3
  822. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  823. [32-curve-secp192k1-client]
  824. CipherString = ECDHE@SECLEVEL=1
  825. Curves = secp192k1
  826. MaxProtocol = TLSv1.2
  827. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  828. VerifyMode = Peer
  829. [test-32]
  830. ExpectedProtocol = TLSv1.2
  831. ExpectedResult = Success
  832. ExpectedTmpKeyType = secp192k1
  833. # ===========================================================
  834. [33-curve-secp224k1]
  835. ssl_conf = 33-curve-secp224k1-ssl
  836. [33-curve-secp224k1-ssl]
  837. server = 33-curve-secp224k1-server
  838. client = 33-curve-secp224k1-client
  839. [33-curve-secp224k1-server]
  840. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  841. CipherString = DEFAULT@SECLEVEL=1
  842. Curves = secp224k1
  843. MaxProtocol = TLSv1.3
  844. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  845. [33-curve-secp224k1-client]
  846. CipherString = ECDHE@SECLEVEL=1
  847. Curves = secp224k1
  848. MaxProtocol = TLSv1.2
  849. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  850. VerifyMode = Peer
  851. [test-33]
  852. ExpectedProtocol = TLSv1.2
  853. ExpectedResult = Success
  854. ExpectedTmpKeyType = secp224k1
  855. # ===========================================================
  856. [34-curve-secp256k1]
  857. ssl_conf = 34-curve-secp256k1-ssl
  858. [34-curve-secp256k1-ssl]
  859. server = 34-curve-secp256k1-server
  860. client = 34-curve-secp256k1-client
  861. [34-curve-secp256k1-server]
  862. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  863. CipherString = DEFAULT@SECLEVEL=1
  864. Curves = secp256k1
  865. MaxProtocol = TLSv1.3
  866. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  867. [34-curve-secp256k1-client]
  868. CipherString = ECDHE@SECLEVEL=1
  869. Curves = secp256k1
  870. MaxProtocol = TLSv1.2
  871. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  872. VerifyMode = Peer
  873. [test-34]
  874. ExpectedProtocol = TLSv1.2
  875. ExpectedResult = Success
  876. ExpectedTmpKeyType = secp256k1
  877. # ===========================================================
  878. [35-curve-brainpoolP256r1]
  879. ssl_conf = 35-curve-brainpoolP256r1-ssl
  880. [35-curve-brainpoolP256r1-ssl]
  881. server = 35-curve-brainpoolP256r1-server
  882. client = 35-curve-brainpoolP256r1-client
  883. [35-curve-brainpoolP256r1-server]
  884. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  885. CipherString = DEFAULT@SECLEVEL=1
  886. Curves = brainpoolP256r1
  887. MaxProtocol = TLSv1.3
  888. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  889. [35-curve-brainpoolP256r1-client]
  890. CipherString = ECDHE@SECLEVEL=1
  891. Curves = brainpoolP256r1
  892. MaxProtocol = TLSv1.2
  893. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  894. VerifyMode = Peer
  895. [test-35]
  896. ExpectedProtocol = TLSv1.2
  897. ExpectedResult = Success
  898. ExpectedTmpKeyType = brainpoolP256r1
  899. # ===========================================================
  900. [36-curve-brainpoolP384r1]
  901. ssl_conf = 36-curve-brainpoolP384r1-ssl
  902. [36-curve-brainpoolP384r1-ssl]
  903. server = 36-curve-brainpoolP384r1-server
  904. client = 36-curve-brainpoolP384r1-client
  905. [36-curve-brainpoolP384r1-server]
  906. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  907. CipherString = DEFAULT@SECLEVEL=1
  908. Curves = brainpoolP384r1
  909. MaxProtocol = TLSv1.3
  910. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  911. [36-curve-brainpoolP384r1-client]
  912. CipherString = ECDHE@SECLEVEL=1
  913. Curves = brainpoolP384r1
  914. MaxProtocol = TLSv1.2
  915. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  916. VerifyMode = Peer
  917. [test-36]
  918. ExpectedProtocol = TLSv1.2
  919. ExpectedResult = Success
  920. ExpectedTmpKeyType = brainpoolP384r1
  921. # ===========================================================
  922. [37-curve-brainpoolP512r1]
  923. ssl_conf = 37-curve-brainpoolP512r1-ssl
  924. [37-curve-brainpoolP512r1-ssl]
  925. server = 37-curve-brainpoolP512r1-server
  926. client = 37-curve-brainpoolP512r1-client
  927. [37-curve-brainpoolP512r1-server]
  928. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  929. CipherString = DEFAULT@SECLEVEL=1
  930. Curves = brainpoolP512r1
  931. MaxProtocol = TLSv1.3
  932. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  933. [37-curve-brainpoolP512r1-client]
  934. CipherString = ECDHE@SECLEVEL=1
  935. Curves = brainpoolP512r1
  936. MaxProtocol = TLSv1.2
  937. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  938. VerifyMode = Peer
  939. [test-37]
  940. ExpectedProtocol = TLSv1.2
  941. ExpectedResult = Success
  942. ExpectedTmpKeyType = brainpoolP512r1
  943. # ===========================================================
  944. [38-curve-sect233k1-tls12-in-tls13]
  945. ssl_conf = 38-curve-sect233k1-tls12-in-tls13-ssl
  946. [38-curve-sect233k1-tls12-in-tls13-ssl]
  947. server = 38-curve-sect233k1-tls12-in-tls13-server
  948. client = 38-curve-sect233k1-tls12-in-tls13-client
  949. [38-curve-sect233k1-tls12-in-tls13-server]
  950. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  951. CipherString = DEFAULT@SECLEVEL=1
  952. Curves = sect233k1:P-256
  953. MaxProtocol = TLSv1.3
  954. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  955. [38-curve-sect233k1-tls12-in-tls13-client]
  956. CipherString = ECDHE@SECLEVEL=1
  957. Curves = sect233k1:P-256
  958. MaxProtocol = TLSv1.3
  959. MinProtocol = TLSv1.3
  960. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  961. VerifyMode = Peer
  962. [test-38]
  963. ExpectedProtocol = TLSv1.3
  964. ExpectedResult = Success
  965. ExpectedTmpKeyType = P-256
  966. # ===========================================================
  967. [39-curve-sect233r1-tls12-in-tls13]
  968. ssl_conf = 39-curve-sect233r1-tls12-in-tls13-ssl
  969. [39-curve-sect233r1-tls12-in-tls13-ssl]
  970. server = 39-curve-sect233r1-tls12-in-tls13-server
  971. client = 39-curve-sect233r1-tls12-in-tls13-client
  972. [39-curve-sect233r1-tls12-in-tls13-server]
  973. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  974. CipherString = DEFAULT@SECLEVEL=1
  975. Curves = sect233r1:P-256
  976. MaxProtocol = TLSv1.3
  977. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  978. [39-curve-sect233r1-tls12-in-tls13-client]
  979. CipherString = ECDHE@SECLEVEL=1
  980. Curves = sect233r1:P-256
  981. MaxProtocol = TLSv1.3
  982. MinProtocol = TLSv1.3
  983. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  984. VerifyMode = Peer
  985. [test-39]
  986. ExpectedProtocol = TLSv1.3
  987. ExpectedResult = Success
  988. ExpectedTmpKeyType = P-256
  989. # ===========================================================
  990. [40-curve-sect283k1-tls12-in-tls13]
  991. ssl_conf = 40-curve-sect283k1-tls12-in-tls13-ssl
  992. [40-curve-sect283k1-tls12-in-tls13-ssl]
  993. server = 40-curve-sect283k1-tls12-in-tls13-server
  994. client = 40-curve-sect283k1-tls12-in-tls13-client
  995. [40-curve-sect283k1-tls12-in-tls13-server]
  996. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  997. CipherString = DEFAULT@SECLEVEL=1
  998. Curves = sect283k1:P-256
  999. MaxProtocol = TLSv1.3
  1000. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1001. [40-curve-sect283k1-tls12-in-tls13-client]
  1002. CipherString = ECDHE@SECLEVEL=1
  1003. Curves = sect283k1:P-256
  1004. MaxProtocol = TLSv1.3
  1005. MinProtocol = TLSv1.3
  1006. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1007. VerifyMode = Peer
  1008. [test-40]
  1009. ExpectedProtocol = TLSv1.3
  1010. ExpectedResult = Success
  1011. ExpectedTmpKeyType = P-256
  1012. # ===========================================================
  1013. [41-curve-sect283r1-tls12-in-tls13]
  1014. ssl_conf = 41-curve-sect283r1-tls12-in-tls13-ssl
  1015. [41-curve-sect283r1-tls12-in-tls13-ssl]
  1016. server = 41-curve-sect283r1-tls12-in-tls13-server
  1017. client = 41-curve-sect283r1-tls12-in-tls13-client
  1018. [41-curve-sect283r1-tls12-in-tls13-server]
  1019. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1020. CipherString = DEFAULT@SECLEVEL=1
  1021. Curves = sect283r1:P-256
  1022. MaxProtocol = TLSv1.3
  1023. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1024. [41-curve-sect283r1-tls12-in-tls13-client]
  1025. CipherString = ECDHE@SECLEVEL=1
  1026. Curves = sect283r1:P-256
  1027. MaxProtocol = TLSv1.3
  1028. MinProtocol = TLSv1.3
  1029. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1030. VerifyMode = Peer
  1031. [test-41]
  1032. ExpectedProtocol = TLSv1.3
  1033. ExpectedResult = Success
  1034. ExpectedTmpKeyType = P-256
  1035. # ===========================================================
  1036. [42-curve-sect409k1-tls12-in-tls13]
  1037. ssl_conf = 42-curve-sect409k1-tls12-in-tls13-ssl
  1038. [42-curve-sect409k1-tls12-in-tls13-ssl]
  1039. server = 42-curve-sect409k1-tls12-in-tls13-server
  1040. client = 42-curve-sect409k1-tls12-in-tls13-client
  1041. [42-curve-sect409k1-tls12-in-tls13-server]
  1042. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1043. CipherString = DEFAULT@SECLEVEL=1
  1044. Curves = sect409k1:P-256
  1045. MaxProtocol = TLSv1.3
  1046. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1047. [42-curve-sect409k1-tls12-in-tls13-client]
  1048. CipherString = ECDHE@SECLEVEL=1
  1049. Curves = sect409k1:P-256
  1050. MaxProtocol = TLSv1.3
  1051. MinProtocol = TLSv1.3
  1052. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1053. VerifyMode = Peer
  1054. [test-42]
  1055. ExpectedProtocol = TLSv1.3
  1056. ExpectedResult = Success
  1057. ExpectedTmpKeyType = P-256
  1058. # ===========================================================
  1059. [43-curve-sect409r1-tls12-in-tls13]
  1060. ssl_conf = 43-curve-sect409r1-tls12-in-tls13-ssl
  1061. [43-curve-sect409r1-tls12-in-tls13-ssl]
  1062. server = 43-curve-sect409r1-tls12-in-tls13-server
  1063. client = 43-curve-sect409r1-tls12-in-tls13-client
  1064. [43-curve-sect409r1-tls12-in-tls13-server]
  1065. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1066. CipherString = DEFAULT@SECLEVEL=1
  1067. Curves = sect409r1:P-256
  1068. MaxProtocol = TLSv1.3
  1069. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1070. [43-curve-sect409r1-tls12-in-tls13-client]
  1071. CipherString = ECDHE@SECLEVEL=1
  1072. Curves = sect409r1:P-256
  1073. MaxProtocol = TLSv1.3
  1074. MinProtocol = TLSv1.3
  1075. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1076. VerifyMode = Peer
  1077. [test-43]
  1078. ExpectedProtocol = TLSv1.3
  1079. ExpectedResult = Success
  1080. ExpectedTmpKeyType = P-256
  1081. # ===========================================================
  1082. [44-curve-sect571k1-tls12-in-tls13]
  1083. ssl_conf = 44-curve-sect571k1-tls12-in-tls13-ssl
  1084. [44-curve-sect571k1-tls12-in-tls13-ssl]
  1085. server = 44-curve-sect571k1-tls12-in-tls13-server
  1086. client = 44-curve-sect571k1-tls12-in-tls13-client
  1087. [44-curve-sect571k1-tls12-in-tls13-server]
  1088. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1089. CipherString = DEFAULT@SECLEVEL=1
  1090. Curves = sect571k1:P-256
  1091. MaxProtocol = TLSv1.3
  1092. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1093. [44-curve-sect571k1-tls12-in-tls13-client]
  1094. CipherString = ECDHE@SECLEVEL=1
  1095. Curves = sect571k1:P-256
  1096. MaxProtocol = TLSv1.3
  1097. MinProtocol = TLSv1.3
  1098. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1099. VerifyMode = Peer
  1100. [test-44]
  1101. ExpectedProtocol = TLSv1.3
  1102. ExpectedResult = Success
  1103. ExpectedTmpKeyType = P-256
  1104. # ===========================================================
  1105. [45-curve-sect571r1-tls12-in-tls13]
  1106. ssl_conf = 45-curve-sect571r1-tls12-in-tls13-ssl
  1107. [45-curve-sect571r1-tls12-in-tls13-ssl]
  1108. server = 45-curve-sect571r1-tls12-in-tls13-server
  1109. client = 45-curve-sect571r1-tls12-in-tls13-client
  1110. [45-curve-sect571r1-tls12-in-tls13-server]
  1111. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1112. CipherString = DEFAULT@SECLEVEL=1
  1113. Curves = sect571r1:P-256
  1114. MaxProtocol = TLSv1.3
  1115. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1116. [45-curve-sect571r1-tls12-in-tls13-client]
  1117. CipherString = ECDHE@SECLEVEL=1
  1118. Curves = sect571r1:P-256
  1119. MaxProtocol = TLSv1.3
  1120. MinProtocol = TLSv1.3
  1121. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1122. VerifyMode = Peer
  1123. [test-45]
  1124. ExpectedProtocol = TLSv1.3
  1125. ExpectedResult = Success
  1126. ExpectedTmpKeyType = P-256
  1127. # ===========================================================
  1128. [46-curve-secp224r1-tls12-in-tls13]
  1129. ssl_conf = 46-curve-secp224r1-tls12-in-tls13-ssl
  1130. [46-curve-secp224r1-tls12-in-tls13-ssl]
  1131. server = 46-curve-secp224r1-tls12-in-tls13-server
  1132. client = 46-curve-secp224r1-tls12-in-tls13-client
  1133. [46-curve-secp224r1-tls12-in-tls13-server]
  1134. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1135. CipherString = DEFAULT@SECLEVEL=1
  1136. Curves = secp224r1:P-256
  1137. MaxProtocol = TLSv1.3
  1138. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1139. [46-curve-secp224r1-tls12-in-tls13-client]
  1140. CipherString = ECDHE@SECLEVEL=1
  1141. Curves = secp224r1:P-256
  1142. MaxProtocol = TLSv1.3
  1143. MinProtocol = TLSv1.3
  1144. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1145. VerifyMode = Peer
  1146. [test-46]
  1147. ExpectedProtocol = TLSv1.3
  1148. ExpectedResult = Success
  1149. ExpectedTmpKeyType = P-256
  1150. # ===========================================================
  1151. [47-curve-sect163k1-tls12-in-tls13]
  1152. ssl_conf = 47-curve-sect163k1-tls12-in-tls13-ssl
  1153. [47-curve-sect163k1-tls12-in-tls13-ssl]
  1154. server = 47-curve-sect163k1-tls12-in-tls13-server
  1155. client = 47-curve-sect163k1-tls12-in-tls13-client
  1156. [47-curve-sect163k1-tls12-in-tls13-server]
  1157. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1158. CipherString = DEFAULT@SECLEVEL=1
  1159. Curves = sect163k1:P-256
  1160. MaxProtocol = TLSv1.3
  1161. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1162. [47-curve-sect163k1-tls12-in-tls13-client]
  1163. CipherString = ECDHE@SECLEVEL=1
  1164. Curves = sect163k1:P-256
  1165. MaxProtocol = TLSv1.3
  1166. MinProtocol = TLSv1.3
  1167. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1168. VerifyMode = Peer
  1169. [test-47]
  1170. ExpectedProtocol = TLSv1.3
  1171. ExpectedResult = Success
  1172. ExpectedTmpKeyType = P-256
  1173. # ===========================================================
  1174. [48-curve-sect163r2-tls12-in-tls13]
  1175. ssl_conf = 48-curve-sect163r2-tls12-in-tls13-ssl
  1176. [48-curve-sect163r2-tls12-in-tls13-ssl]
  1177. server = 48-curve-sect163r2-tls12-in-tls13-server
  1178. client = 48-curve-sect163r2-tls12-in-tls13-client
  1179. [48-curve-sect163r2-tls12-in-tls13-server]
  1180. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1181. CipherString = DEFAULT@SECLEVEL=1
  1182. Curves = sect163r2:P-256
  1183. MaxProtocol = TLSv1.3
  1184. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1185. [48-curve-sect163r2-tls12-in-tls13-client]
  1186. CipherString = ECDHE@SECLEVEL=1
  1187. Curves = sect163r2:P-256
  1188. MaxProtocol = TLSv1.3
  1189. MinProtocol = TLSv1.3
  1190. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1191. VerifyMode = Peer
  1192. [test-48]
  1193. ExpectedProtocol = TLSv1.3
  1194. ExpectedResult = Success
  1195. ExpectedTmpKeyType = P-256
  1196. # ===========================================================
  1197. [49-curve-prime192v1-tls12-in-tls13]
  1198. ssl_conf = 49-curve-prime192v1-tls12-in-tls13-ssl
  1199. [49-curve-prime192v1-tls12-in-tls13-ssl]
  1200. server = 49-curve-prime192v1-tls12-in-tls13-server
  1201. client = 49-curve-prime192v1-tls12-in-tls13-client
  1202. [49-curve-prime192v1-tls12-in-tls13-server]
  1203. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1204. CipherString = DEFAULT@SECLEVEL=1
  1205. Curves = prime192v1:P-256
  1206. MaxProtocol = TLSv1.3
  1207. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1208. [49-curve-prime192v1-tls12-in-tls13-client]
  1209. CipherString = ECDHE@SECLEVEL=1
  1210. Curves = prime192v1:P-256
  1211. MaxProtocol = TLSv1.3
  1212. MinProtocol = TLSv1.3
  1213. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1214. VerifyMode = Peer
  1215. [test-49]
  1216. ExpectedProtocol = TLSv1.3
  1217. ExpectedResult = Success
  1218. ExpectedTmpKeyType = P-256
  1219. # ===========================================================
  1220. [50-curve-sect163r1-tls12-in-tls13]
  1221. ssl_conf = 50-curve-sect163r1-tls12-in-tls13-ssl
  1222. [50-curve-sect163r1-tls12-in-tls13-ssl]
  1223. server = 50-curve-sect163r1-tls12-in-tls13-server
  1224. client = 50-curve-sect163r1-tls12-in-tls13-client
  1225. [50-curve-sect163r1-tls12-in-tls13-server]
  1226. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1227. CipherString = DEFAULT@SECLEVEL=1
  1228. Curves = sect163r1:P-256
  1229. MaxProtocol = TLSv1.3
  1230. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1231. [50-curve-sect163r1-tls12-in-tls13-client]
  1232. CipherString = ECDHE@SECLEVEL=1
  1233. Curves = sect163r1:P-256
  1234. MaxProtocol = TLSv1.3
  1235. MinProtocol = TLSv1.3
  1236. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1237. VerifyMode = Peer
  1238. [test-50]
  1239. ExpectedProtocol = TLSv1.3
  1240. ExpectedResult = Success
  1241. ExpectedTmpKeyType = P-256
  1242. # ===========================================================
  1243. [51-curve-sect193r1-tls12-in-tls13]
  1244. ssl_conf = 51-curve-sect193r1-tls12-in-tls13-ssl
  1245. [51-curve-sect193r1-tls12-in-tls13-ssl]
  1246. server = 51-curve-sect193r1-tls12-in-tls13-server
  1247. client = 51-curve-sect193r1-tls12-in-tls13-client
  1248. [51-curve-sect193r1-tls12-in-tls13-server]
  1249. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1250. CipherString = DEFAULT@SECLEVEL=1
  1251. Curves = sect193r1:P-256
  1252. MaxProtocol = TLSv1.3
  1253. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1254. [51-curve-sect193r1-tls12-in-tls13-client]
  1255. CipherString = ECDHE@SECLEVEL=1
  1256. Curves = sect193r1:P-256
  1257. MaxProtocol = TLSv1.3
  1258. MinProtocol = TLSv1.3
  1259. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1260. VerifyMode = Peer
  1261. [test-51]
  1262. ExpectedProtocol = TLSv1.3
  1263. ExpectedResult = Success
  1264. ExpectedTmpKeyType = P-256
  1265. # ===========================================================
  1266. [52-curve-sect193r2-tls12-in-tls13]
  1267. ssl_conf = 52-curve-sect193r2-tls12-in-tls13-ssl
  1268. [52-curve-sect193r2-tls12-in-tls13-ssl]
  1269. server = 52-curve-sect193r2-tls12-in-tls13-server
  1270. client = 52-curve-sect193r2-tls12-in-tls13-client
  1271. [52-curve-sect193r2-tls12-in-tls13-server]
  1272. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1273. CipherString = DEFAULT@SECLEVEL=1
  1274. Curves = sect193r2:P-256
  1275. MaxProtocol = TLSv1.3
  1276. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1277. [52-curve-sect193r2-tls12-in-tls13-client]
  1278. CipherString = ECDHE@SECLEVEL=1
  1279. Curves = sect193r2:P-256
  1280. MaxProtocol = TLSv1.3
  1281. MinProtocol = TLSv1.3
  1282. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1283. VerifyMode = Peer
  1284. [test-52]
  1285. ExpectedProtocol = TLSv1.3
  1286. ExpectedResult = Success
  1287. ExpectedTmpKeyType = P-256
  1288. # ===========================================================
  1289. [53-curve-sect239k1-tls12-in-tls13]
  1290. ssl_conf = 53-curve-sect239k1-tls12-in-tls13-ssl
  1291. [53-curve-sect239k1-tls12-in-tls13-ssl]
  1292. server = 53-curve-sect239k1-tls12-in-tls13-server
  1293. client = 53-curve-sect239k1-tls12-in-tls13-client
  1294. [53-curve-sect239k1-tls12-in-tls13-server]
  1295. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1296. CipherString = DEFAULT@SECLEVEL=1
  1297. Curves = sect239k1:P-256
  1298. MaxProtocol = TLSv1.3
  1299. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1300. [53-curve-sect239k1-tls12-in-tls13-client]
  1301. CipherString = ECDHE@SECLEVEL=1
  1302. Curves = sect239k1:P-256
  1303. MaxProtocol = TLSv1.3
  1304. MinProtocol = TLSv1.3
  1305. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1306. VerifyMode = Peer
  1307. [test-53]
  1308. ExpectedProtocol = TLSv1.3
  1309. ExpectedResult = Success
  1310. ExpectedTmpKeyType = P-256
  1311. # ===========================================================
  1312. [54-curve-secp160k1-tls12-in-tls13]
  1313. ssl_conf = 54-curve-secp160k1-tls12-in-tls13-ssl
  1314. [54-curve-secp160k1-tls12-in-tls13-ssl]
  1315. server = 54-curve-secp160k1-tls12-in-tls13-server
  1316. client = 54-curve-secp160k1-tls12-in-tls13-client
  1317. [54-curve-secp160k1-tls12-in-tls13-server]
  1318. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1319. CipherString = DEFAULT@SECLEVEL=1
  1320. Curves = secp160k1:P-256
  1321. MaxProtocol = TLSv1.3
  1322. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1323. [54-curve-secp160k1-tls12-in-tls13-client]
  1324. CipherString = ECDHE@SECLEVEL=1
  1325. Curves = secp160k1:P-256
  1326. MaxProtocol = TLSv1.3
  1327. MinProtocol = TLSv1.3
  1328. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1329. VerifyMode = Peer
  1330. [test-54]
  1331. ExpectedProtocol = TLSv1.3
  1332. ExpectedResult = Success
  1333. ExpectedTmpKeyType = P-256
  1334. # ===========================================================
  1335. [55-curve-secp160r1-tls12-in-tls13]
  1336. ssl_conf = 55-curve-secp160r1-tls12-in-tls13-ssl
  1337. [55-curve-secp160r1-tls12-in-tls13-ssl]
  1338. server = 55-curve-secp160r1-tls12-in-tls13-server
  1339. client = 55-curve-secp160r1-tls12-in-tls13-client
  1340. [55-curve-secp160r1-tls12-in-tls13-server]
  1341. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1342. CipherString = DEFAULT@SECLEVEL=1
  1343. Curves = secp160r1:P-256
  1344. MaxProtocol = TLSv1.3
  1345. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1346. [55-curve-secp160r1-tls12-in-tls13-client]
  1347. CipherString = ECDHE@SECLEVEL=1
  1348. Curves = secp160r1:P-256
  1349. MaxProtocol = TLSv1.3
  1350. MinProtocol = TLSv1.3
  1351. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1352. VerifyMode = Peer
  1353. [test-55]
  1354. ExpectedProtocol = TLSv1.3
  1355. ExpectedResult = Success
  1356. ExpectedTmpKeyType = P-256
  1357. # ===========================================================
  1358. [56-curve-secp160r2-tls12-in-tls13]
  1359. ssl_conf = 56-curve-secp160r2-tls12-in-tls13-ssl
  1360. [56-curve-secp160r2-tls12-in-tls13-ssl]
  1361. server = 56-curve-secp160r2-tls12-in-tls13-server
  1362. client = 56-curve-secp160r2-tls12-in-tls13-client
  1363. [56-curve-secp160r2-tls12-in-tls13-server]
  1364. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1365. CipherString = DEFAULT@SECLEVEL=1
  1366. Curves = secp160r2:P-256
  1367. MaxProtocol = TLSv1.3
  1368. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1369. [56-curve-secp160r2-tls12-in-tls13-client]
  1370. CipherString = ECDHE@SECLEVEL=1
  1371. Curves = secp160r2:P-256
  1372. MaxProtocol = TLSv1.3
  1373. MinProtocol = TLSv1.3
  1374. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1375. VerifyMode = Peer
  1376. [test-56]
  1377. ExpectedProtocol = TLSv1.3
  1378. ExpectedResult = Success
  1379. ExpectedTmpKeyType = P-256
  1380. # ===========================================================
  1381. [57-curve-secp192k1-tls12-in-tls13]
  1382. ssl_conf = 57-curve-secp192k1-tls12-in-tls13-ssl
  1383. [57-curve-secp192k1-tls12-in-tls13-ssl]
  1384. server = 57-curve-secp192k1-tls12-in-tls13-server
  1385. client = 57-curve-secp192k1-tls12-in-tls13-client
  1386. [57-curve-secp192k1-tls12-in-tls13-server]
  1387. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1388. CipherString = DEFAULT@SECLEVEL=1
  1389. Curves = secp192k1:P-256
  1390. MaxProtocol = TLSv1.3
  1391. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1392. [57-curve-secp192k1-tls12-in-tls13-client]
  1393. CipherString = ECDHE@SECLEVEL=1
  1394. Curves = secp192k1:P-256
  1395. MaxProtocol = TLSv1.3
  1396. MinProtocol = TLSv1.3
  1397. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1398. VerifyMode = Peer
  1399. [test-57]
  1400. ExpectedProtocol = TLSv1.3
  1401. ExpectedResult = Success
  1402. ExpectedTmpKeyType = P-256
  1403. # ===========================================================
  1404. [58-curve-secp224k1-tls12-in-tls13]
  1405. ssl_conf = 58-curve-secp224k1-tls12-in-tls13-ssl
  1406. [58-curve-secp224k1-tls12-in-tls13-ssl]
  1407. server = 58-curve-secp224k1-tls12-in-tls13-server
  1408. client = 58-curve-secp224k1-tls12-in-tls13-client
  1409. [58-curve-secp224k1-tls12-in-tls13-server]
  1410. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1411. CipherString = DEFAULT@SECLEVEL=1
  1412. Curves = secp224k1:P-256
  1413. MaxProtocol = TLSv1.3
  1414. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1415. [58-curve-secp224k1-tls12-in-tls13-client]
  1416. CipherString = ECDHE@SECLEVEL=1
  1417. Curves = secp224k1:P-256
  1418. MaxProtocol = TLSv1.3
  1419. MinProtocol = TLSv1.3
  1420. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1421. VerifyMode = Peer
  1422. [test-58]
  1423. ExpectedProtocol = TLSv1.3
  1424. ExpectedResult = Success
  1425. ExpectedTmpKeyType = P-256
  1426. # ===========================================================
  1427. [59-curve-secp256k1-tls12-in-tls13]
  1428. ssl_conf = 59-curve-secp256k1-tls12-in-tls13-ssl
  1429. [59-curve-secp256k1-tls12-in-tls13-ssl]
  1430. server = 59-curve-secp256k1-tls12-in-tls13-server
  1431. client = 59-curve-secp256k1-tls12-in-tls13-client
  1432. [59-curve-secp256k1-tls12-in-tls13-server]
  1433. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1434. CipherString = DEFAULT@SECLEVEL=1
  1435. Curves = secp256k1:P-256
  1436. MaxProtocol = TLSv1.3
  1437. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1438. [59-curve-secp256k1-tls12-in-tls13-client]
  1439. CipherString = ECDHE@SECLEVEL=1
  1440. Curves = secp256k1:P-256
  1441. MaxProtocol = TLSv1.3
  1442. MinProtocol = TLSv1.3
  1443. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1444. VerifyMode = Peer
  1445. [test-59]
  1446. ExpectedProtocol = TLSv1.3
  1447. ExpectedResult = Success
  1448. ExpectedTmpKeyType = P-256
  1449. # ===========================================================
  1450. [60-curve-brainpoolP256r1-tls12-in-tls13]
  1451. ssl_conf = 60-curve-brainpoolP256r1-tls12-in-tls13-ssl
  1452. [60-curve-brainpoolP256r1-tls12-in-tls13-ssl]
  1453. server = 60-curve-brainpoolP256r1-tls12-in-tls13-server
  1454. client = 60-curve-brainpoolP256r1-tls12-in-tls13-client
  1455. [60-curve-brainpoolP256r1-tls12-in-tls13-server]
  1456. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1457. CipherString = DEFAULT@SECLEVEL=1
  1458. Curves = brainpoolP256r1:P-256
  1459. MaxProtocol = TLSv1.3
  1460. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1461. [60-curve-brainpoolP256r1-tls12-in-tls13-client]
  1462. CipherString = ECDHE@SECLEVEL=1
  1463. Curves = brainpoolP256r1:P-256
  1464. MaxProtocol = TLSv1.3
  1465. MinProtocol = TLSv1.3
  1466. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1467. VerifyMode = Peer
  1468. [test-60]
  1469. ExpectedProtocol = TLSv1.3
  1470. ExpectedResult = Success
  1471. ExpectedTmpKeyType = P-256
  1472. # ===========================================================
  1473. [61-curve-brainpoolP384r1-tls12-in-tls13]
  1474. ssl_conf = 61-curve-brainpoolP384r1-tls12-in-tls13-ssl
  1475. [61-curve-brainpoolP384r1-tls12-in-tls13-ssl]
  1476. server = 61-curve-brainpoolP384r1-tls12-in-tls13-server
  1477. client = 61-curve-brainpoolP384r1-tls12-in-tls13-client
  1478. [61-curve-brainpoolP384r1-tls12-in-tls13-server]
  1479. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1480. CipherString = DEFAULT@SECLEVEL=1
  1481. Curves = brainpoolP384r1:P-256
  1482. MaxProtocol = TLSv1.3
  1483. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1484. [61-curve-brainpoolP384r1-tls12-in-tls13-client]
  1485. CipherString = ECDHE@SECLEVEL=1
  1486. Curves = brainpoolP384r1:P-256
  1487. MaxProtocol = TLSv1.3
  1488. MinProtocol = TLSv1.3
  1489. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1490. VerifyMode = Peer
  1491. [test-61]
  1492. ExpectedProtocol = TLSv1.3
  1493. ExpectedResult = Success
  1494. ExpectedTmpKeyType = P-256
  1495. # ===========================================================
  1496. [62-curve-brainpoolP512r1-tls12-in-tls13]
  1497. ssl_conf = 62-curve-brainpoolP512r1-tls12-in-tls13-ssl
  1498. [62-curve-brainpoolP512r1-tls12-in-tls13-ssl]
  1499. server = 62-curve-brainpoolP512r1-tls12-in-tls13-server
  1500. client = 62-curve-brainpoolP512r1-tls12-in-tls13-client
  1501. [62-curve-brainpoolP512r1-tls12-in-tls13-server]
  1502. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1503. CipherString = DEFAULT@SECLEVEL=1
  1504. Curves = brainpoolP512r1:P-256
  1505. MaxProtocol = TLSv1.3
  1506. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1507. [62-curve-brainpoolP512r1-tls12-in-tls13-client]
  1508. CipherString = ECDHE@SECLEVEL=1
  1509. Curves = brainpoolP512r1:P-256
  1510. MaxProtocol = TLSv1.3
  1511. MinProtocol = TLSv1.3
  1512. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1513. VerifyMode = Peer
  1514. [test-62]
  1515. ExpectedProtocol = TLSv1.3
  1516. ExpectedResult = Success
  1517. ExpectedTmpKeyType = P-256
  1518. # ===========================================================
  1519. [63-curve-sect233k1-tls13]
  1520. ssl_conf = 63-curve-sect233k1-tls13-ssl
  1521. [63-curve-sect233k1-tls13-ssl]
  1522. server = 63-curve-sect233k1-tls13-server
  1523. client = 63-curve-sect233k1-tls13-client
  1524. [63-curve-sect233k1-tls13-server]
  1525. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1526. CipherString = DEFAULT@SECLEVEL=1
  1527. Curves = sect233k1
  1528. MaxProtocol = TLSv1.3
  1529. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1530. [63-curve-sect233k1-tls13-client]
  1531. CipherString = ECDHE@SECLEVEL=1
  1532. Curves = sect233k1
  1533. MinProtocol = TLSv1.3
  1534. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1535. VerifyMode = Peer
  1536. [test-63]
  1537. ExpectedResult = ClientFail
  1538. # ===========================================================
  1539. [64-curve-sect233r1-tls13]
  1540. ssl_conf = 64-curve-sect233r1-tls13-ssl
  1541. [64-curve-sect233r1-tls13-ssl]
  1542. server = 64-curve-sect233r1-tls13-server
  1543. client = 64-curve-sect233r1-tls13-client
  1544. [64-curve-sect233r1-tls13-server]
  1545. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1546. CipherString = DEFAULT@SECLEVEL=1
  1547. Curves = sect233r1
  1548. MaxProtocol = TLSv1.3
  1549. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1550. [64-curve-sect233r1-tls13-client]
  1551. CipherString = ECDHE@SECLEVEL=1
  1552. Curves = sect233r1
  1553. MinProtocol = TLSv1.3
  1554. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1555. VerifyMode = Peer
  1556. [test-64]
  1557. ExpectedResult = ClientFail
  1558. # ===========================================================
  1559. [65-curve-sect283k1-tls13]
  1560. ssl_conf = 65-curve-sect283k1-tls13-ssl
  1561. [65-curve-sect283k1-tls13-ssl]
  1562. server = 65-curve-sect283k1-tls13-server
  1563. client = 65-curve-sect283k1-tls13-client
  1564. [65-curve-sect283k1-tls13-server]
  1565. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1566. CipherString = DEFAULT@SECLEVEL=1
  1567. Curves = sect283k1
  1568. MaxProtocol = TLSv1.3
  1569. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1570. [65-curve-sect283k1-tls13-client]
  1571. CipherString = ECDHE@SECLEVEL=1
  1572. Curves = sect283k1
  1573. MinProtocol = TLSv1.3
  1574. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1575. VerifyMode = Peer
  1576. [test-65]
  1577. ExpectedResult = ClientFail
  1578. # ===========================================================
  1579. [66-curve-sect283r1-tls13]
  1580. ssl_conf = 66-curve-sect283r1-tls13-ssl
  1581. [66-curve-sect283r1-tls13-ssl]
  1582. server = 66-curve-sect283r1-tls13-server
  1583. client = 66-curve-sect283r1-tls13-client
  1584. [66-curve-sect283r1-tls13-server]
  1585. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1586. CipherString = DEFAULT@SECLEVEL=1
  1587. Curves = sect283r1
  1588. MaxProtocol = TLSv1.3
  1589. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1590. [66-curve-sect283r1-tls13-client]
  1591. CipherString = ECDHE@SECLEVEL=1
  1592. Curves = sect283r1
  1593. MinProtocol = TLSv1.3
  1594. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1595. VerifyMode = Peer
  1596. [test-66]
  1597. ExpectedResult = ClientFail
  1598. # ===========================================================
  1599. [67-curve-sect409k1-tls13]
  1600. ssl_conf = 67-curve-sect409k1-tls13-ssl
  1601. [67-curve-sect409k1-tls13-ssl]
  1602. server = 67-curve-sect409k1-tls13-server
  1603. client = 67-curve-sect409k1-tls13-client
  1604. [67-curve-sect409k1-tls13-server]
  1605. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1606. CipherString = DEFAULT@SECLEVEL=1
  1607. Curves = sect409k1
  1608. MaxProtocol = TLSv1.3
  1609. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1610. [67-curve-sect409k1-tls13-client]
  1611. CipherString = ECDHE@SECLEVEL=1
  1612. Curves = sect409k1
  1613. MinProtocol = TLSv1.3
  1614. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1615. VerifyMode = Peer
  1616. [test-67]
  1617. ExpectedResult = ClientFail
  1618. # ===========================================================
  1619. [68-curve-sect409r1-tls13]
  1620. ssl_conf = 68-curve-sect409r1-tls13-ssl
  1621. [68-curve-sect409r1-tls13-ssl]
  1622. server = 68-curve-sect409r1-tls13-server
  1623. client = 68-curve-sect409r1-tls13-client
  1624. [68-curve-sect409r1-tls13-server]
  1625. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1626. CipherString = DEFAULT@SECLEVEL=1
  1627. Curves = sect409r1
  1628. MaxProtocol = TLSv1.3
  1629. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1630. [68-curve-sect409r1-tls13-client]
  1631. CipherString = ECDHE@SECLEVEL=1
  1632. Curves = sect409r1
  1633. MinProtocol = TLSv1.3
  1634. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1635. VerifyMode = Peer
  1636. [test-68]
  1637. ExpectedResult = ClientFail
  1638. # ===========================================================
  1639. [69-curve-sect571k1-tls13]
  1640. ssl_conf = 69-curve-sect571k1-tls13-ssl
  1641. [69-curve-sect571k1-tls13-ssl]
  1642. server = 69-curve-sect571k1-tls13-server
  1643. client = 69-curve-sect571k1-tls13-client
  1644. [69-curve-sect571k1-tls13-server]
  1645. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1646. CipherString = DEFAULT@SECLEVEL=1
  1647. Curves = sect571k1
  1648. MaxProtocol = TLSv1.3
  1649. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1650. [69-curve-sect571k1-tls13-client]
  1651. CipherString = ECDHE@SECLEVEL=1
  1652. Curves = sect571k1
  1653. MinProtocol = TLSv1.3
  1654. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1655. VerifyMode = Peer
  1656. [test-69]
  1657. ExpectedResult = ClientFail
  1658. # ===========================================================
  1659. [70-curve-sect571r1-tls13]
  1660. ssl_conf = 70-curve-sect571r1-tls13-ssl
  1661. [70-curve-sect571r1-tls13-ssl]
  1662. server = 70-curve-sect571r1-tls13-server
  1663. client = 70-curve-sect571r1-tls13-client
  1664. [70-curve-sect571r1-tls13-server]
  1665. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1666. CipherString = DEFAULT@SECLEVEL=1
  1667. Curves = sect571r1
  1668. MaxProtocol = TLSv1.3
  1669. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1670. [70-curve-sect571r1-tls13-client]
  1671. CipherString = ECDHE@SECLEVEL=1
  1672. Curves = sect571r1
  1673. MinProtocol = TLSv1.3
  1674. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1675. VerifyMode = Peer
  1676. [test-70]
  1677. ExpectedResult = ClientFail
  1678. # ===========================================================
  1679. [71-curve-secp224r1-tls13]
  1680. ssl_conf = 71-curve-secp224r1-tls13-ssl
  1681. [71-curve-secp224r1-tls13-ssl]
  1682. server = 71-curve-secp224r1-tls13-server
  1683. client = 71-curve-secp224r1-tls13-client
  1684. [71-curve-secp224r1-tls13-server]
  1685. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1686. CipherString = DEFAULT@SECLEVEL=1
  1687. Curves = secp224r1
  1688. MaxProtocol = TLSv1.3
  1689. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1690. [71-curve-secp224r1-tls13-client]
  1691. CipherString = ECDHE@SECLEVEL=1
  1692. Curves = secp224r1
  1693. MinProtocol = TLSv1.3
  1694. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1695. VerifyMode = Peer
  1696. [test-71]
  1697. ExpectedResult = ClientFail
  1698. # ===========================================================
  1699. [72-curve-sect163k1-tls13]
  1700. ssl_conf = 72-curve-sect163k1-tls13-ssl
  1701. [72-curve-sect163k1-tls13-ssl]
  1702. server = 72-curve-sect163k1-tls13-server
  1703. client = 72-curve-sect163k1-tls13-client
  1704. [72-curve-sect163k1-tls13-server]
  1705. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1706. CipherString = DEFAULT@SECLEVEL=1
  1707. Curves = sect163k1
  1708. MaxProtocol = TLSv1.3
  1709. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1710. [72-curve-sect163k1-tls13-client]
  1711. CipherString = ECDHE@SECLEVEL=1
  1712. Curves = sect163k1
  1713. MinProtocol = TLSv1.3
  1714. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1715. VerifyMode = Peer
  1716. [test-72]
  1717. ExpectedResult = ClientFail
  1718. # ===========================================================
  1719. [73-curve-sect163r2-tls13]
  1720. ssl_conf = 73-curve-sect163r2-tls13-ssl
  1721. [73-curve-sect163r2-tls13-ssl]
  1722. server = 73-curve-sect163r2-tls13-server
  1723. client = 73-curve-sect163r2-tls13-client
  1724. [73-curve-sect163r2-tls13-server]
  1725. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1726. CipherString = DEFAULT@SECLEVEL=1
  1727. Curves = sect163r2
  1728. MaxProtocol = TLSv1.3
  1729. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1730. [73-curve-sect163r2-tls13-client]
  1731. CipherString = ECDHE@SECLEVEL=1
  1732. Curves = sect163r2
  1733. MinProtocol = TLSv1.3
  1734. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1735. VerifyMode = Peer
  1736. [test-73]
  1737. ExpectedResult = ClientFail
  1738. # ===========================================================
  1739. [74-curve-prime192v1-tls13]
  1740. ssl_conf = 74-curve-prime192v1-tls13-ssl
  1741. [74-curve-prime192v1-tls13-ssl]
  1742. server = 74-curve-prime192v1-tls13-server
  1743. client = 74-curve-prime192v1-tls13-client
  1744. [74-curve-prime192v1-tls13-server]
  1745. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1746. CipherString = DEFAULT@SECLEVEL=1
  1747. Curves = prime192v1
  1748. MaxProtocol = TLSv1.3
  1749. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1750. [74-curve-prime192v1-tls13-client]
  1751. CipherString = ECDHE@SECLEVEL=1
  1752. Curves = prime192v1
  1753. MinProtocol = TLSv1.3
  1754. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1755. VerifyMode = Peer
  1756. [test-74]
  1757. ExpectedResult = ClientFail
  1758. # ===========================================================
  1759. [75-curve-sect163r1-tls13]
  1760. ssl_conf = 75-curve-sect163r1-tls13-ssl
  1761. [75-curve-sect163r1-tls13-ssl]
  1762. server = 75-curve-sect163r1-tls13-server
  1763. client = 75-curve-sect163r1-tls13-client
  1764. [75-curve-sect163r1-tls13-server]
  1765. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1766. CipherString = DEFAULT@SECLEVEL=1
  1767. Curves = sect163r1
  1768. MaxProtocol = TLSv1.3
  1769. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1770. [75-curve-sect163r1-tls13-client]
  1771. CipherString = ECDHE@SECLEVEL=1
  1772. Curves = sect163r1
  1773. MinProtocol = TLSv1.3
  1774. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1775. VerifyMode = Peer
  1776. [test-75]
  1777. ExpectedResult = ClientFail
  1778. # ===========================================================
  1779. [76-curve-sect193r1-tls13]
  1780. ssl_conf = 76-curve-sect193r1-tls13-ssl
  1781. [76-curve-sect193r1-tls13-ssl]
  1782. server = 76-curve-sect193r1-tls13-server
  1783. client = 76-curve-sect193r1-tls13-client
  1784. [76-curve-sect193r1-tls13-server]
  1785. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1786. CipherString = DEFAULT@SECLEVEL=1
  1787. Curves = sect193r1
  1788. MaxProtocol = TLSv1.3
  1789. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1790. [76-curve-sect193r1-tls13-client]
  1791. CipherString = ECDHE@SECLEVEL=1
  1792. Curves = sect193r1
  1793. MinProtocol = TLSv1.3
  1794. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1795. VerifyMode = Peer
  1796. [test-76]
  1797. ExpectedResult = ClientFail
  1798. # ===========================================================
  1799. [77-curve-sect193r2-tls13]
  1800. ssl_conf = 77-curve-sect193r2-tls13-ssl
  1801. [77-curve-sect193r2-tls13-ssl]
  1802. server = 77-curve-sect193r2-tls13-server
  1803. client = 77-curve-sect193r2-tls13-client
  1804. [77-curve-sect193r2-tls13-server]
  1805. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1806. CipherString = DEFAULT@SECLEVEL=1
  1807. Curves = sect193r2
  1808. MaxProtocol = TLSv1.3
  1809. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1810. [77-curve-sect193r2-tls13-client]
  1811. CipherString = ECDHE@SECLEVEL=1
  1812. Curves = sect193r2
  1813. MinProtocol = TLSv1.3
  1814. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1815. VerifyMode = Peer
  1816. [test-77]
  1817. ExpectedResult = ClientFail
  1818. # ===========================================================
  1819. [78-curve-sect239k1-tls13]
  1820. ssl_conf = 78-curve-sect239k1-tls13-ssl
  1821. [78-curve-sect239k1-tls13-ssl]
  1822. server = 78-curve-sect239k1-tls13-server
  1823. client = 78-curve-sect239k1-tls13-client
  1824. [78-curve-sect239k1-tls13-server]
  1825. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1826. CipherString = DEFAULT@SECLEVEL=1
  1827. Curves = sect239k1
  1828. MaxProtocol = TLSv1.3
  1829. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1830. [78-curve-sect239k1-tls13-client]
  1831. CipherString = ECDHE@SECLEVEL=1
  1832. Curves = sect239k1
  1833. MinProtocol = TLSv1.3
  1834. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1835. VerifyMode = Peer
  1836. [test-78]
  1837. ExpectedResult = ClientFail
  1838. # ===========================================================
  1839. [79-curve-secp160k1-tls13]
  1840. ssl_conf = 79-curve-secp160k1-tls13-ssl
  1841. [79-curve-secp160k1-tls13-ssl]
  1842. server = 79-curve-secp160k1-tls13-server
  1843. client = 79-curve-secp160k1-tls13-client
  1844. [79-curve-secp160k1-tls13-server]
  1845. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1846. CipherString = DEFAULT@SECLEVEL=1
  1847. Curves = secp160k1
  1848. MaxProtocol = TLSv1.3
  1849. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1850. [79-curve-secp160k1-tls13-client]
  1851. CipherString = ECDHE@SECLEVEL=1
  1852. Curves = secp160k1
  1853. MinProtocol = TLSv1.3
  1854. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1855. VerifyMode = Peer
  1856. [test-79]
  1857. ExpectedResult = ClientFail
  1858. # ===========================================================
  1859. [80-curve-secp160r1-tls13]
  1860. ssl_conf = 80-curve-secp160r1-tls13-ssl
  1861. [80-curve-secp160r1-tls13-ssl]
  1862. server = 80-curve-secp160r1-tls13-server
  1863. client = 80-curve-secp160r1-tls13-client
  1864. [80-curve-secp160r1-tls13-server]
  1865. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1866. CipherString = DEFAULT@SECLEVEL=1
  1867. Curves = secp160r1
  1868. MaxProtocol = TLSv1.3
  1869. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1870. [80-curve-secp160r1-tls13-client]
  1871. CipherString = ECDHE@SECLEVEL=1
  1872. Curves = secp160r1
  1873. MinProtocol = TLSv1.3
  1874. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1875. VerifyMode = Peer
  1876. [test-80]
  1877. ExpectedResult = ClientFail
  1878. # ===========================================================
  1879. [81-curve-secp160r2-tls13]
  1880. ssl_conf = 81-curve-secp160r2-tls13-ssl
  1881. [81-curve-secp160r2-tls13-ssl]
  1882. server = 81-curve-secp160r2-tls13-server
  1883. client = 81-curve-secp160r2-tls13-client
  1884. [81-curve-secp160r2-tls13-server]
  1885. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1886. CipherString = DEFAULT@SECLEVEL=1
  1887. Curves = secp160r2
  1888. MaxProtocol = TLSv1.3
  1889. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1890. [81-curve-secp160r2-tls13-client]
  1891. CipherString = ECDHE@SECLEVEL=1
  1892. Curves = secp160r2
  1893. MinProtocol = TLSv1.3
  1894. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1895. VerifyMode = Peer
  1896. [test-81]
  1897. ExpectedResult = ClientFail
  1898. # ===========================================================
  1899. [82-curve-secp192k1-tls13]
  1900. ssl_conf = 82-curve-secp192k1-tls13-ssl
  1901. [82-curve-secp192k1-tls13-ssl]
  1902. server = 82-curve-secp192k1-tls13-server
  1903. client = 82-curve-secp192k1-tls13-client
  1904. [82-curve-secp192k1-tls13-server]
  1905. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1906. CipherString = DEFAULT@SECLEVEL=1
  1907. Curves = secp192k1
  1908. MaxProtocol = TLSv1.3
  1909. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1910. [82-curve-secp192k1-tls13-client]
  1911. CipherString = ECDHE@SECLEVEL=1
  1912. Curves = secp192k1
  1913. MinProtocol = TLSv1.3
  1914. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1915. VerifyMode = Peer
  1916. [test-82]
  1917. ExpectedResult = ClientFail
  1918. # ===========================================================
  1919. [83-curve-secp224k1-tls13]
  1920. ssl_conf = 83-curve-secp224k1-tls13-ssl
  1921. [83-curve-secp224k1-tls13-ssl]
  1922. server = 83-curve-secp224k1-tls13-server
  1923. client = 83-curve-secp224k1-tls13-client
  1924. [83-curve-secp224k1-tls13-server]
  1925. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1926. CipherString = DEFAULT@SECLEVEL=1
  1927. Curves = secp224k1
  1928. MaxProtocol = TLSv1.3
  1929. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1930. [83-curve-secp224k1-tls13-client]
  1931. CipherString = ECDHE@SECLEVEL=1
  1932. Curves = secp224k1
  1933. MinProtocol = TLSv1.3
  1934. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1935. VerifyMode = Peer
  1936. [test-83]
  1937. ExpectedResult = ClientFail
  1938. # ===========================================================
  1939. [84-curve-secp256k1-tls13]
  1940. ssl_conf = 84-curve-secp256k1-tls13-ssl
  1941. [84-curve-secp256k1-tls13-ssl]
  1942. server = 84-curve-secp256k1-tls13-server
  1943. client = 84-curve-secp256k1-tls13-client
  1944. [84-curve-secp256k1-tls13-server]
  1945. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1946. CipherString = DEFAULT@SECLEVEL=1
  1947. Curves = secp256k1
  1948. MaxProtocol = TLSv1.3
  1949. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1950. [84-curve-secp256k1-tls13-client]
  1951. CipherString = ECDHE@SECLEVEL=1
  1952. Curves = secp256k1
  1953. MinProtocol = TLSv1.3
  1954. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1955. VerifyMode = Peer
  1956. [test-84]
  1957. ExpectedResult = ClientFail
  1958. # ===========================================================
  1959. [85-curve-brainpoolP256r1-tls13]
  1960. ssl_conf = 85-curve-brainpoolP256r1-tls13-ssl
  1961. [85-curve-brainpoolP256r1-tls13-ssl]
  1962. server = 85-curve-brainpoolP256r1-tls13-server
  1963. client = 85-curve-brainpoolP256r1-tls13-client
  1964. [85-curve-brainpoolP256r1-tls13-server]
  1965. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1966. CipherString = DEFAULT@SECLEVEL=1
  1967. Curves = brainpoolP256r1
  1968. MaxProtocol = TLSv1.3
  1969. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1970. [85-curve-brainpoolP256r1-tls13-client]
  1971. CipherString = ECDHE@SECLEVEL=1
  1972. Curves = brainpoolP256r1
  1973. MinProtocol = TLSv1.3
  1974. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1975. VerifyMode = Peer
  1976. [test-85]
  1977. ExpectedResult = ClientFail
  1978. # ===========================================================
  1979. [86-curve-brainpoolP384r1-tls13]
  1980. ssl_conf = 86-curve-brainpoolP384r1-tls13-ssl
  1981. [86-curve-brainpoolP384r1-tls13-ssl]
  1982. server = 86-curve-brainpoolP384r1-tls13-server
  1983. client = 86-curve-brainpoolP384r1-tls13-client
  1984. [86-curve-brainpoolP384r1-tls13-server]
  1985. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  1986. CipherString = DEFAULT@SECLEVEL=1
  1987. Curves = brainpoolP384r1
  1988. MaxProtocol = TLSv1.3
  1989. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  1990. [86-curve-brainpoolP384r1-tls13-client]
  1991. CipherString = ECDHE@SECLEVEL=1
  1992. Curves = brainpoolP384r1
  1993. MinProtocol = TLSv1.3
  1994. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  1995. VerifyMode = Peer
  1996. [test-86]
  1997. ExpectedResult = ClientFail
  1998. # ===========================================================
  1999. [87-curve-brainpoolP512r1-tls13]
  2000. ssl_conf = 87-curve-brainpoolP512r1-tls13-ssl
  2001. [87-curve-brainpoolP512r1-tls13-ssl]
  2002. server = 87-curve-brainpoolP512r1-tls13-server
  2003. client = 87-curve-brainpoolP512r1-tls13-client
  2004. [87-curve-brainpoolP512r1-tls13-server]
  2005. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2006. CipherString = DEFAULT@SECLEVEL=1
  2007. Curves = brainpoolP512r1
  2008. MaxProtocol = TLSv1.3
  2009. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2010. [87-curve-brainpoolP512r1-tls13-client]
  2011. CipherString = ECDHE@SECLEVEL=1
  2012. Curves = brainpoolP512r1
  2013. MinProtocol = TLSv1.3
  2014. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2015. VerifyMode = Peer
  2016. [test-87]
  2017. ExpectedResult = ClientFail
  2018. # ===========================================================
  2019. [88-curve-ffdhe2048-tls13-in-tls12]
  2020. ssl_conf = 88-curve-ffdhe2048-tls13-in-tls12-ssl
  2021. [88-curve-ffdhe2048-tls13-in-tls12-ssl]
  2022. server = 88-curve-ffdhe2048-tls13-in-tls12-server
  2023. client = 88-curve-ffdhe2048-tls13-in-tls12-client
  2024. [88-curve-ffdhe2048-tls13-in-tls12-server]
  2025. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2026. CipherString = DEFAULT@SECLEVEL=1
  2027. Curves = ffdhe2048
  2028. MaxProtocol = TLSv1.3
  2029. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2030. [88-curve-ffdhe2048-tls13-in-tls12-client]
  2031. CipherString = ECDHE@SECLEVEL=1
  2032. Curves = ffdhe2048
  2033. MaxProtocol = TLSv1.2
  2034. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2035. VerifyMode = Peer
  2036. [test-88]
  2037. ExpectedResult = ServerFail
  2038. # ===========================================================
  2039. [89-curve-ffdhe2048-tls13-in-tls12-2]
  2040. ssl_conf = 89-curve-ffdhe2048-tls13-in-tls12-2-ssl
  2041. [89-curve-ffdhe2048-tls13-in-tls12-2-ssl]
  2042. server = 89-curve-ffdhe2048-tls13-in-tls12-2-server
  2043. client = 89-curve-ffdhe2048-tls13-in-tls12-2-client
  2044. [89-curve-ffdhe2048-tls13-in-tls12-2-server]
  2045. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2046. CipherString = DEFAULT@SECLEVEL=1
  2047. Curves = ffdhe2048
  2048. MaxProtocol = TLSv1.2
  2049. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2050. [89-curve-ffdhe2048-tls13-in-tls12-2-client]
  2051. CipherString = DEFAULT@SECLEVEL=1
  2052. Curves = ffdhe2048
  2053. MaxProtocol = TLSv1.3
  2054. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2055. VerifyMode = Peer
  2056. [test-89]
  2057. ExpectedResult = Success
  2058. # ===========================================================
  2059. [90-curve-ffdhe3072-tls13-in-tls12]
  2060. ssl_conf = 90-curve-ffdhe3072-tls13-in-tls12-ssl
  2061. [90-curve-ffdhe3072-tls13-in-tls12-ssl]
  2062. server = 90-curve-ffdhe3072-tls13-in-tls12-server
  2063. client = 90-curve-ffdhe3072-tls13-in-tls12-client
  2064. [90-curve-ffdhe3072-tls13-in-tls12-server]
  2065. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2066. CipherString = DEFAULT@SECLEVEL=1
  2067. Curves = ffdhe3072
  2068. MaxProtocol = TLSv1.3
  2069. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2070. [90-curve-ffdhe3072-tls13-in-tls12-client]
  2071. CipherString = ECDHE@SECLEVEL=1
  2072. Curves = ffdhe3072
  2073. MaxProtocol = TLSv1.2
  2074. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2075. VerifyMode = Peer
  2076. [test-90]
  2077. ExpectedResult = ServerFail
  2078. # ===========================================================
  2079. [91-curve-ffdhe3072-tls13-in-tls12-2]
  2080. ssl_conf = 91-curve-ffdhe3072-tls13-in-tls12-2-ssl
  2081. [91-curve-ffdhe3072-tls13-in-tls12-2-ssl]
  2082. server = 91-curve-ffdhe3072-tls13-in-tls12-2-server
  2083. client = 91-curve-ffdhe3072-tls13-in-tls12-2-client
  2084. [91-curve-ffdhe3072-tls13-in-tls12-2-server]
  2085. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2086. CipherString = DEFAULT@SECLEVEL=1
  2087. Curves = ffdhe3072
  2088. MaxProtocol = TLSv1.2
  2089. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2090. [91-curve-ffdhe3072-tls13-in-tls12-2-client]
  2091. CipherString = DEFAULT@SECLEVEL=1
  2092. Curves = ffdhe3072
  2093. MaxProtocol = TLSv1.3
  2094. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2095. VerifyMode = Peer
  2096. [test-91]
  2097. ExpectedResult = Success
  2098. # ===========================================================
  2099. [92-curve-ffdhe4096-tls13-in-tls12]
  2100. ssl_conf = 92-curve-ffdhe4096-tls13-in-tls12-ssl
  2101. [92-curve-ffdhe4096-tls13-in-tls12-ssl]
  2102. server = 92-curve-ffdhe4096-tls13-in-tls12-server
  2103. client = 92-curve-ffdhe4096-tls13-in-tls12-client
  2104. [92-curve-ffdhe4096-tls13-in-tls12-server]
  2105. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2106. CipherString = DEFAULT@SECLEVEL=1
  2107. Curves = ffdhe4096
  2108. MaxProtocol = TLSv1.3
  2109. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2110. [92-curve-ffdhe4096-tls13-in-tls12-client]
  2111. CipherString = ECDHE@SECLEVEL=1
  2112. Curves = ffdhe4096
  2113. MaxProtocol = TLSv1.2
  2114. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2115. VerifyMode = Peer
  2116. [test-92]
  2117. ExpectedResult = ServerFail
  2118. # ===========================================================
  2119. [93-curve-ffdhe4096-tls13-in-tls12-2]
  2120. ssl_conf = 93-curve-ffdhe4096-tls13-in-tls12-2-ssl
  2121. [93-curve-ffdhe4096-tls13-in-tls12-2-ssl]
  2122. server = 93-curve-ffdhe4096-tls13-in-tls12-2-server
  2123. client = 93-curve-ffdhe4096-tls13-in-tls12-2-client
  2124. [93-curve-ffdhe4096-tls13-in-tls12-2-server]
  2125. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2126. CipherString = DEFAULT@SECLEVEL=1
  2127. Curves = ffdhe4096
  2128. MaxProtocol = TLSv1.2
  2129. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2130. [93-curve-ffdhe4096-tls13-in-tls12-2-client]
  2131. CipherString = DEFAULT@SECLEVEL=1
  2132. Curves = ffdhe4096
  2133. MaxProtocol = TLSv1.3
  2134. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2135. VerifyMode = Peer
  2136. [test-93]
  2137. ExpectedResult = Success
  2138. # ===========================================================
  2139. [94-curve-ffdhe6144-tls13-in-tls12]
  2140. ssl_conf = 94-curve-ffdhe6144-tls13-in-tls12-ssl
  2141. [94-curve-ffdhe6144-tls13-in-tls12-ssl]
  2142. server = 94-curve-ffdhe6144-tls13-in-tls12-server
  2143. client = 94-curve-ffdhe6144-tls13-in-tls12-client
  2144. [94-curve-ffdhe6144-tls13-in-tls12-server]
  2145. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2146. CipherString = DEFAULT@SECLEVEL=1
  2147. Curves = ffdhe6144
  2148. MaxProtocol = TLSv1.3
  2149. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2150. [94-curve-ffdhe6144-tls13-in-tls12-client]
  2151. CipherString = ECDHE@SECLEVEL=1
  2152. Curves = ffdhe6144
  2153. MaxProtocol = TLSv1.2
  2154. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2155. VerifyMode = Peer
  2156. [test-94]
  2157. ExpectedResult = ServerFail
  2158. # ===========================================================
  2159. [95-curve-ffdhe6144-tls13-in-tls12-2]
  2160. ssl_conf = 95-curve-ffdhe6144-tls13-in-tls12-2-ssl
  2161. [95-curve-ffdhe6144-tls13-in-tls12-2-ssl]
  2162. server = 95-curve-ffdhe6144-tls13-in-tls12-2-server
  2163. client = 95-curve-ffdhe6144-tls13-in-tls12-2-client
  2164. [95-curve-ffdhe6144-tls13-in-tls12-2-server]
  2165. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2166. CipherString = DEFAULT@SECLEVEL=1
  2167. Curves = ffdhe6144
  2168. MaxProtocol = TLSv1.2
  2169. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2170. [95-curve-ffdhe6144-tls13-in-tls12-2-client]
  2171. CipherString = DEFAULT@SECLEVEL=1
  2172. Curves = ffdhe6144
  2173. MaxProtocol = TLSv1.3
  2174. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2175. VerifyMode = Peer
  2176. [test-95]
  2177. ExpectedResult = Success
  2178. # ===========================================================
  2179. [96-curve-ffdhe8192-tls13-in-tls12]
  2180. ssl_conf = 96-curve-ffdhe8192-tls13-in-tls12-ssl
  2181. [96-curve-ffdhe8192-tls13-in-tls12-ssl]
  2182. server = 96-curve-ffdhe8192-tls13-in-tls12-server
  2183. client = 96-curve-ffdhe8192-tls13-in-tls12-client
  2184. [96-curve-ffdhe8192-tls13-in-tls12-server]
  2185. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2186. CipherString = DEFAULT@SECLEVEL=1
  2187. Curves = ffdhe8192
  2188. MaxProtocol = TLSv1.3
  2189. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2190. [96-curve-ffdhe8192-tls13-in-tls12-client]
  2191. CipherString = ECDHE@SECLEVEL=1
  2192. Curves = ffdhe8192
  2193. MaxProtocol = TLSv1.2
  2194. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2195. VerifyMode = Peer
  2196. [test-96]
  2197. ExpectedResult = ServerFail
  2198. # ===========================================================
  2199. [97-curve-ffdhe8192-tls13-in-tls12-2]
  2200. ssl_conf = 97-curve-ffdhe8192-tls13-in-tls12-2-ssl
  2201. [97-curve-ffdhe8192-tls13-in-tls12-2-ssl]
  2202. server = 97-curve-ffdhe8192-tls13-in-tls12-2-server
  2203. client = 97-curve-ffdhe8192-tls13-in-tls12-2-client
  2204. [97-curve-ffdhe8192-tls13-in-tls12-2-server]
  2205. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2206. CipherString = DEFAULT@SECLEVEL=1
  2207. Curves = ffdhe8192
  2208. MaxProtocol = TLSv1.2
  2209. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2210. [97-curve-ffdhe8192-tls13-in-tls12-2-client]
  2211. CipherString = DEFAULT@SECLEVEL=1
  2212. Curves = ffdhe8192
  2213. MaxProtocol = TLSv1.3
  2214. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2215. VerifyMode = Peer
  2216. [test-97]
  2217. ExpectedResult = Success
  2218. # ===========================================================
  2219. [98-curve-brainpoolP256r1tls13-tls13-in-tls12]
  2220. ssl_conf = 98-curve-brainpoolP256r1tls13-tls13-in-tls12-ssl
  2221. [98-curve-brainpoolP256r1tls13-tls13-in-tls12-ssl]
  2222. server = 98-curve-brainpoolP256r1tls13-tls13-in-tls12-server
  2223. client = 98-curve-brainpoolP256r1tls13-tls13-in-tls12-client
  2224. [98-curve-brainpoolP256r1tls13-tls13-in-tls12-server]
  2225. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2226. CipherString = DEFAULT@SECLEVEL=1
  2227. Curves = brainpoolP256r1tls13
  2228. MaxProtocol = TLSv1.3
  2229. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2230. [98-curve-brainpoolP256r1tls13-tls13-in-tls12-client]
  2231. CipherString = ECDHE@SECLEVEL=1
  2232. Curves = brainpoolP256r1tls13
  2233. MaxProtocol = TLSv1.2
  2234. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2235. VerifyMode = Peer
  2236. [test-98]
  2237. ExpectedResult = ServerFail
  2238. # ===========================================================
  2239. [99-curve-brainpoolP256r1tls13-tls13-in-tls12-2]
  2240. ssl_conf = 99-curve-brainpoolP256r1tls13-tls13-in-tls12-2-ssl
  2241. [99-curve-brainpoolP256r1tls13-tls13-in-tls12-2-ssl]
  2242. server = 99-curve-brainpoolP256r1tls13-tls13-in-tls12-2-server
  2243. client = 99-curve-brainpoolP256r1tls13-tls13-in-tls12-2-client
  2244. [99-curve-brainpoolP256r1tls13-tls13-in-tls12-2-server]
  2245. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2246. CipherString = DEFAULT@SECLEVEL=1
  2247. Curves = brainpoolP256r1tls13
  2248. MaxProtocol = TLSv1.2
  2249. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2250. [99-curve-brainpoolP256r1tls13-tls13-in-tls12-2-client]
  2251. CipherString = DEFAULT@SECLEVEL=1
  2252. Curves = brainpoolP256r1tls13
  2253. MaxProtocol = TLSv1.3
  2254. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2255. VerifyMode = Peer
  2256. [test-99]
  2257. ExpectedResult = Success
  2258. # ===========================================================
  2259. [100-curve-brainpoolP384r1tls13-tls13-in-tls12]
  2260. ssl_conf = 100-curve-brainpoolP384r1tls13-tls13-in-tls12-ssl
  2261. [100-curve-brainpoolP384r1tls13-tls13-in-tls12-ssl]
  2262. server = 100-curve-brainpoolP384r1tls13-tls13-in-tls12-server
  2263. client = 100-curve-brainpoolP384r1tls13-tls13-in-tls12-client
  2264. [100-curve-brainpoolP384r1tls13-tls13-in-tls12-server]
  2265. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2266. CipherString = DEFAULT@SECLEVEL=1
  2267. Curves = brainpoolP384r1tls13
  2268. MaxProtocol = TLSv1.3
  2269. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2270. [100-curve-brainpoolP384r1tls13-tls13-in-tls12-client]
  2271. CipherString = ECDHE@SECLEVEL=1
  2272. Curves = brainpoolP384r1tls13
  2273. MaxProtocol = TLSv1.2
  2274. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2275. VerifyMode = Peer
  2276. [test-100]
  2277. ExpectedResult = ServerFail
  2278. # ===========================================================
  2279. [101-curve-brainpoolP384r1tls13-tls13-in-tls12-2]
  2280. ssl_conf = 101-curve-brainpoolP384r1tls13-tls13-in-tls12-2-ssl
  2281. [101-curve-brainpoolP384r1tls13-tls13-in-tls12-2-ssl]
  2282. server = 101-curve-brainpoolP384r1tls13-tls13-in-tls12-2-server
  2283. client = 101-curve-brainpoolP384r1tls13-tls13-in-tls12-2-client
  2284. [101-curve-brainpoolP384r1tls13-tls13-in-tls12-2-server]
  2285. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2286. CipherString = DEFAULT@SECLEVEL=1
  2287. Curves = brainpoolP384r1tls13
  2288. MaxProtocol = TLSv1.2
  2289. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2290. [101-curve-brainpoolP384r1tls13-tls13-in-tls12-2-client]
  2291. CipherString = DEFAULT@SECLEVEL=1
  2292. Curves = brainpoolP384r1tls13
  2293. MaxProtocol = TLSv1.3
  2294. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2295. VerifyMode = Peer
  2296. [test-101]
  2297. ExpectedResult = Success
  2298. # ===========================================================
  2299. [102-curve-brainpoolP512r1tls13-tls13-in-tls12]
  2300. ssl_conf = 102-curve-brainpoolP512r1tls13-tls13-in-tls12-ssl
  2301. [102-curve-brainpoolP512r1tls13-tls13-in-tls12-ssl]
  2302. server = 102-curve-brainpoolP512r1tls13-tls13-in-tls12-server
  2303. client = 102-curve-brainpoolP512r1tls13-tls13-in-tls12-client
  2304. [102-curve-brainpoolP512r1tls13-tls13-in-tls12-server]
  2305. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2306. CipherString = DEFAULT@SECLEVEL=1
  2307. Curves = brainpoolP512r1tls13
  2308. MaxProtocol = TLSv1.3
  2309. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2310. [102-curve-brainpoolP512r1tls13-tls13-in-tls12-client]
  2311. CipherString = ECDHE@SECLEVEL=1
  2312. Curves = brainpoolP512r1tls13
  2313. MaxProtocol = TLSv1.2
  2314. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2315. VerifyMode = Peer
  2316. [test-102]
  2317. ExpectedResult = ServerFail
  2318. # ===========================================================
  2319. [103-curve-brainpoolP512r1tls13-tls13-in-tls12-2]
  2320. ssl_conf = 103-curve-brainpoolP512r1tls13-tls13-in-tls12-2-ssl
  2321. [103-curve-brainpoolP512r1tls13-tls13-in-tls12-2-ssl]
  2322. server = 103-curve-brainpoolP512r1tls13-tls13-in-tls12-2-server
  2323. client = 103-curve-brainpoolP512r1tls13-tls13-in-tls12-2-client
  2324. [103-curve-brainpoolP512r1tls13-tls13-in-tls12-2-server]
  2325. Certificate = ${ENV::TEST_CERTS_DIR}/servercert.pem
  2326. CipherString = DEFAULT@SECLEVEL=1
  2327. Curves = brainpoolP512r1tls13
  2328. MaxProtocol = TLSv1.2
  2329. PrivateKey = ${ENV::TEST_CERTS_DIR}/serverkey.pem
  2330. [103-curve-brainpoolP512r1tls13-tls13-in-tls12-2-client]
  2331. CipherString = DEFAULT@SECLEVEL=1
  2332. Curves = brainpoolP512r1tls13
  2333. MaxProtocol = TLSv1.3
  2334. VerifyCAFile = ${ENV::TEST_CERTS_DIR}/rootcert.pem
  2335. VerifyMode = Peer
  2336. [test-103]
  2337. ExpectedResult = Success