public void CipherSuitesPolicy_AllowSameTwoOnBothSidesLessPreferredIsTls13_Success()
{
CheckPrereqsForNonTls13Tests(1);
var p = new ConnectionParams()
{
CipherSuitesPolicy = BuildPolicy(SupportedNonTls13CipherSuites[0],
TlsCipherSuite.TLS_AES_128_GCM_SHA256)
};
NegotiatedParams ret = ConnectAndGetNegotiatedParams(p, p);
ret.Succeeded();
// If both sides can speak TLS 1.3 they should speak it
if (Tls13Supported)
{
ret.CheckCipherSuite(TlsCipherSuite.TLS_AES_128_GCM_SHA256);
}
else
{
ret.CheckCipherSuite(SupportedNonTls13CipherSuites[0]);
}
}
public void CipherSuitesPolicy_AllowTwoOnBothSidesWithNoOverlapNonTls13_Fails()
{
CheckPrereqsForNonTls13Tests(4);
var a = new ConnectionParams()
{
CipherSuitesPolicy = BuildPolicy(SupportedNonTls13CipherSuites[0],
SupportedNonTls13CipherSuites[1])
};
var b = new ConnectionParams()
{
CipherSuitesPolicy = BuildPolicy(SupportedNonTls13CipherSuites[2],
SupportedNonTls13CipherSuites[3])
};
for (int i = 0; i < 2; i++)
{
NegotiatedParams ret = i == 0 ?
ConnectAndGetNegotiatedParams(a, b) :
ConnectAndGetNegotiatedParams(b, a);
ret.Failed();
}
}
