Merge pull request #9316 from gilles-peskine-arm/test_suite_config-booleans-2.28

Backport 2.28: Report configuration settings in the outcome file

scripts/config.py

@@ -389,6 +389,7 @@ class ConfigFile(Config):
                                 self.default_path)
         super().__init__()
         self.filename = filename
+        self.inclusion_guard = None
         self.current_section = 'header'
         with open(filename, 'r', encoding='utf-8') as file:
             self.templates = [self._parse_line(line) for line in file]
@@ -406,9 +407,11 @@ class ConfigFile(Config):
                            r'(?P<arguments>(?:\((?:\w|\s|,)*\))?)' +
                            r'(?P<separator>\s*)' +
                            r'(?P<value>.*)')
+    _ifndef_line_regexp = r'#ifndef (?P<inclusion_guard>\w+)'
     _section_line_regexp = (r'\s*/?\*+\s*[\\@]name\s+SECTION:\s*' +
                             r'(?P<section>.*)[ */]*')
     _config_line_regexp = re.compile(r'|'.join([_define_line_regexp,
+                                                _ifndef_line_regexp,
                                                 _section_line_regexp]))
     def _parse_line(self, line):
         """Parse a line in config.h and return the corresponding template."""
@@ -419,10 +422,16 @@ class ConfigFile(Config):
         elif m.group('section'):
             self.current_section = m.group('section')
             return line
+        elif m.group('inclusion_guard') and self.inclusion_guard is None:
+            self.inclusion_guard = m.group('inclusion_guard')
+            return line
         else:
             active = not m.group('commented_out')
             name = m.group('name')
             value = m.group('value')
+            if name == self.inclusion_guard and value == '':
+                # The file double-inclusion guard is not an option.
+                return line
             template = (name,
                         m.group('indentation'),
                         m.group('define') + name +

tests/.gitignore

@@ -3,13 +3,13 @@
 
 *.log
 /test_suite*
-data_files/mpi_write
-data_files/hmac_drbg_seed
-data_files/ctr_drbg_seed
-data_files/entropy_seed
+/data_files/mpi_write
+/data_files/hmac_drbg_seed
+/data_files/ctr_drbg_seed
+/data_files/entropy_seed
 
-include/test/instrument_record_status.h
+/include/test/instrument_record_status.h
 
-src/libmbed*
+/src/libmbed*
 
-libtestdriver1/*
+/libtestdriver1/*

tests/scripts/check-generated-files.sh

@@ -102,4 +102,5 @@ check scripts/generate_visualc_files.pl visualc/VS2010
 check scripts/generate_psa_constants.py programs/psa/psa_constant_names_generated.c
 check tests/scripts/generate_psa_wrappers.py tests/include/test/psa_test_wrappers.h tests/src/psa_test_wrappers.c
 check tests/scripts/generate_bignum_tests.py $(tests/scripts/generate_bignum_tests.py --list)
+check tests/scripts/generate_config_tests.py $(tests/scripts/generate_config_tests.py --list)
 check tests/scripts/generate_psa_tests.py $(tests/scripts/generate_psa_tests.py --list)

tests/scripts/generate_config_tests.py

@@ -0,0 +1,164 @@
+#!/usr/bin/env python3
+"""Generate test data for configuration reporting.
+"""
+
+# Copyright The Mbed TLS Contributors
+# SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
+
+import re
+import sys
+from typing import Iterable, Iterator, List, Optional, Tuple
+
+import scripts_path # pylint: disable=unused-import
+import config
+from mbedtls_dev import test_case
+from mbedtls_dev import test_data_generation
+
+
+def single_setting_case(setting: config.Setting, when_on: bool,
+                        dependencies: List[str],
+                        note: Optional[str]) -> test_case.TestCase:
+    """Construct a test case for a boolean setting.
+
+    This test case passes if the setting and its dependencies are enabled,
+    and is skipped otherwise.
+
+    * setting: the setting to be tested.
+    * when_on: True to test with the setting enabled, or False to test
+      with the setting disabled.
+    * dependencies: extra dependencies for the test case.
+    * note: a note to add after the setting name in the test description.
+      This is generally a summary of dependencies, and is generally empty
+      if the given setting is only tested once.
+    """
+    base = setting.name if when_on else '!' + setting.name
+    tc = test_case.TestCase()
+    tc.set_function('pass')
+    description_suffix = ' (' + note + ')' if note else ''
+    tc.set_description('Config: ' + base + description_suffix)
+    tc.set_dependencies([base] + dependencies)
+    return tc
+
+
+# If foo is a setting that is only meaningful when bar is enabled, set
+# SIMPLE_DEPENDENCIES[foo]=bar. More generally, bar can be a colon-separated
+# list of settings, meaning that all the settings must be enabled. Each setting
+# in bar can be prefixed with '!' to negate it. This is the same syntax as a
+# depends_on directive in test data.
+# See also `dependencies_of_settting`.
+SIMPLE_DEPENDENCIES = {
+    'MBEDTLS_AESNI_C': 'MBEDTLS_AES_C',
+    'MBEDTLS_ERROR_STRERROR_DUMMY': '!MBEDTLS_ERROR_C',
+    'MBEDTLS_GENPRIME': 'MBEDTLS_RSA_C',
+    'MBEDTLS_NO_DEFAULT_ENTROPY_SOURCES': 'MBEDTLS_ENTROPY_C',
+    'MBEDTLS_NO_PLATFORM_ENTROPY': 'MBEDTLS_ENTROPY_C',
+    'MBEDTLS_PKCS1_V15': 'MBEDTLS_RSA_C',
+    'MBEDTLS_PKCS1_V21': 'MBEDTLS_RSA_C',
+    'MBEDTLS_PSA_CRYPTO_CLIENT': '!MBEDTLS_PSA_CRYPTO_C',
+    'MBEDTLS_PSA_INJECT_ENTROPY': 'MBEDTLS_PSA_CRYPTO_C',
+    'MBEDTLS_PSA_ASSUME_EXCLUSIVE_BUFFERS': 'MBEDTLS_PSA_CRYPTO_C',
+    'MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL': 'MBEDTLS_SSL_CLI_C:MBEDTLS_SSL_SRV_C',
+}
+
+def dependencies_of_setting(cfg: config.Config,
+                            setting: config.Setting) -> Optional[str]:
+    """Return dependencies without which a setting is not meaningful.
+
+    The dependencies of a setting express when a setting can be enabled and
+    is relevant. For example, if ``check_config.h`` errors out when
+    ``defined(FOO) && !defined(BAR)``, then ``BAR`` is a dependency of ``FOO``.
+    If ``FOO`` has no effect when ``CORGE`` is disabled, then ``CORGE``
+    is a dependency of ``FOO``.
+
+    The return value can be a colon-separated list of settings, if the setting
+    is only meaningful when all of these settings are enabled. Each setting can
+    be negated by prefixing them with '!'. This is the same syntax as a
+    depends_on directive in test data.
+    """
+    #pylint: disable=too-many-return-statements
+    name = setting.name
+    if name in SIMPLE_DEPENDENCIES:
+        return SIMPLE_DEPENDENCIES[name]
+    if name.startswith('MBEDTLS_') and not name.endswith('_C'):
+        if name.startswith('MBEDTLS_CIPHER_PADDING_'):
+            return 'MBEDTLS_CIPHER_C:MBEDTLS_CIPHER_MODE_CBC'
+        if name.startswith('MBEDTLS_PK_PARSE_EC_'):
+            return 'MBEDTLS_PK_C:MBEDTLS_PK_HAVE_ECC_KEYS'
+        # For TLS settings, insist on having them once off and once on in
+        # a configuration where both client support and server support are
+        # enabled. The settings are also meaningful when only one side is
+        # enabled, but there isn't much point in having separate records
+        # for client-side and server-side, so we keep things simple.
+        # Requiring both sides to be enabled also means we know we'll run
+        # tests that only run Mbed TLS against itself, which only run in
+        # configurations with both sides enabled.
+        if name.startswith('MBEDTLS_SSL_TLS1_3_'):
+            return 'MBEDTLS_SSL_CLI_C:MBEDTLS_SSL_SRV_C:MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL'
+        if name.startswith('MBEDTLS_SSL_DTLS_'):
+            return 'MBEDTLS_SSL_CLI_C:MBEDTLS_SSL_SRV_C:MBEDTLS_SSL_PROTO_DTLS'
+        if name.startswith('MBEDTLS_SSL_'):
+            return 'MBEDTLS_SSL_CLI_C:MBEDTLS_SSL_SRV_C'
+        for pos in re.finditer(r'_', name):
+            super_name = name[:pos.start()] + '_C'
+            if cfg.known(super_name):
+                return super_name
+    return None
+
+def conditions_for_setting(cfg: config.Config,
+                           setting: config.Setting
+                           ) -> Iterator[Tuple[List[str], str]]:
+    """Enumerate the conditions under which to test the given setting.
+
+    * cfg: all configuration settings.
+    * setting: the setting to be tested.
+
+    Generate a stream of conditions, i.e. extra dependencies to test with
+    together with a human-readable explanation of each dependency. Some
+    typical cases:
+
+    * By default, generate a one-element stream with no extra dependencies.
+    * If the setting is ignored unless some other setting is enabled, generate
+      a one-element stream with that other setting as an extra dependency.
+    * If the setting is known to interact with some other setting, generate
+      a stream with one element where this setting is on and one where it's off.
+    * To skip the setting altogether, generate an empty stream.
+    """
+    name = setting.name
+    if name.endswith('_ALT') and not config.is_seamless_alt(name):
+        # We don't test alt implementations, except (most) platform alts
+        return
+    dependencies = dependencies_of_setting(cfg, setting)
+    if dependencies:
+        yield [dependencies], ''
+        return
+    yield [], ''
+
+
+def enumerate_boolean_setting_cases(cfg: config.Config
+                                   ) -> Iterable[test_case.TestCase]:
+    """Emit test cases for all boolean settings."""
+    for name in sorted(cfg.settings.keys()):
+        setting = cfg.settings[name]
+        if not name.startswith('PSA_WANT_') and setting.value:
+            continue # non-boolean setting
+        for when_on in True, False:
+            for deps, note in conditions_for_setting(cfg, setting):
+                yield single_setting_case(setting, when_on, deps, note)
+
+
+
+class ConfigTestGenerator(test_data_generation.TestGenerator):
+    """Generate test cases for configuration reporting."""
+
+    def __init__(self, settings):
+        self.mbedtls_config = config.ConfigFile()
+        self.targets['test_suite_config.mbedtls_boolean'] = \
+            lambda: enumerate_boolean_setting_cases(self.mbedtls_config)
+        self.psa_config = config.ConfigFile('include/psa/crypto_config.h')
+        self.targets['test_suite_config.psa_boolean'] = \
+            lambda: enumerate_boolean_setting_cases(self.psa_config)
+        super().__init__(settings)
+
+
+if __name__ == '__main__':
+    test_data_generation.main(sys.argv[1:], __doc__, ConfigTestGenerator)

tests/suites/test_suite_config.crypto_combinations.data

@@ -0,0 +1,9 @@
+# Interesting combinations of low-level crypto options
+
+Config: ECC: Weierstrass curves only
+depends_on:MBEDTLS_ECP_SHORT_WEIERSTRASS_ENABLED:!MBEDTLS_ECP_MONTGOMERY_ENABLED
+pass:
+
+Config: ECC: Montgomery curves only
+depends_on:!MBEDTLS_ECP_SHORT_WEIERSTRASS_ENABLED:MBEDTLS_ECP_MONTGOMERY_ENABLED
+pass:

tests/suites/test_suite_config.function

@@ -0,0 +1,14 @@
+/* BEGIN_HEADER */
+
+/* END_HEADER */
+
+/* BEGIN_CASE */
+/* This test case always passes. It is intended solely for configuration
+ * reporting in the outcome file. Write test cases using this function
+ * with dependencies to record in which configurations the dependencies
+ * are met. */
+void pass()
+{
+    goto exit;
+}
+/* END_CASE */

tests/suites/test_suite_config.psa_boolean.data

@@ -0,0 +1,475 @@
+# Automatically generated by generate_config_tests.py. Do not edit!
+
+Config: PSA_WANT_ALG_CBC_MAC
+depends_on:PSA_WANT_ALG_CBC_MAC
+pass:
+
+Config: !PSA_WANT_ALG_CBC_MAC
+depends_on:!PSA_WANT_ALG_CBC_MAC
+pass:
+
+Config: PSA_WANT_ALG_CBC_NO_PADDING
+depends_on:PSA_WANT_ALG_CBC_NO_PADDING
+pass:
+
+Config: !PSA_WANT_ALG_CBC_NO_PADDING
+depends_on:!PSA_WANT_ALG_CBC_NO_PADDING
+pass:
+
+Config: PSA_WANT_ALG_CBC_PKCS7
+depends_on:PSA_WANT_ALG_CBC_PKCS7
+pass:
+
+Config: !PSA_WANT_ALG_CBC_PKCS7
+depends_on:!PSA_WANT_ALG_CBC_PKCS7
+pass:
+
+Config: PSA_WANT_ALG_CCM
+depends_on:PSA_WANT_ALG_CCM
+pass:
+
+Config: !PSA_WANT_ALG_CCM
+depends_on:!PSA_WANT_ALG_CCM
+pass:
+
+Config: PSA_WANT_ALG_CFB
+depends_on:PSA_WANT_ALG_CFB
+pass:
+
+Config: !PSA_WANT_ALG_CFB
+depends_on:!PSA_WANT_ALG_CFB
+pass:
+
+Config: PSA_WANT_ALG_CHACHA20_POLY1305
+depends_on:PSA_WANT_ALG_CHACHA20_POLY1305
+pass:
+
+Config: !PSA_WANT_ALG_CHACHA20_POLY1305
+depends_on:!PSA_WANT_ALG_CHACHA20_POLY1305
+pass:
+
+Config: PSA_WANT_ALG_CMAC
+depends_on:PSA_WANT_ALG_CMAC
+pass:
+
+Config: !PSA_WANT_ALG_CMAC
+depends_on:!PSA_WANT_ALG_CMAC
+pass:
+
+Config: PSA_WANT_ALG_CTR
+depends_on:PSA_WANT_ALG_CTR
+pass:
+
+Config: !PSA_WANT_ALG_CTR
+depends_on:!PSA_WANT_ALG_CTR
+pass:
+
+Config: PSA_WANT_ALG_DETERMINISTIC_ECDSA
+depends_on:PSA_WANT_ALG_DETERMINISTIC_ECDSA
+pass:
+
+Config: !PSA_WANT_ALG_DETERMINISTIC_ECDSA
+depends_on:!PSA_WANT_ALG_DETERMINISTIC_ECDSA
+pass:
+
+Config: PSA_WANT_ALG_ECB_NO_PADDING
+depends_on:PSA_WANT_ALG_ECB_NO_PADDING
+pass:
+
+Config: !PSA_WANT_ALG_ECB_NO_PADDING
+depends_on:!PSA_WANT_ALG_ECB_NO_PADDING
+pass:
+
+Config: PSA_WANT_ALG_ECDH
+depends_on:PSA_WANT_ALG_ECDH
+pass:
+
+Config: !PSA_WANT_ALG_ECDH
+depends_on:!PSA_WANT_ALG_ECDH
+pass:
+
+Config: PSA_WANT_ALG_ECDSA
+depends_on:PSA_WANT_ALG_ECDSA
+pass:
+
+Config: !PSA_WANT_ALG_ECDSA
+depends_on:!PSA_WANT_ALG_ECDSA
+pass:
+
+Config: PSA_WANT_ALG_GCM
+depends_on:PSA_WANT_ALG_GCM
+pass:
+
+Config: !PSA_WANT_ALG_GCM
+depends_on:!PSA_WANT_ALG_GCM
+pass:
+
+Config: PSA_WANT_ALG_HKDF
+depends_on:PSA_WANT_ALG_HKDF
+pass:
+
+Config: !PSA_WANT_ALG_HKDF
+depends_on:!PSA_WANT_ALG_HKDF
+pass:
+
+Config: PSA_WANT_ALG_HMAC
+depends_on:PSA_WANT_ALG_HMAC
+pass:
+
+Config: !PSA_WANT_ALG_HMAC
+depends_on:!PSA_WANT_ALG_HMAC
+pass:
+
+Config: PSA_WANT_ALG_MD2
+depends_on:PSA_WANT_ALG_MD2
+pass:
+
+Config: !PSA_WANT_ALG_MD2
+depends_on:!PSA_WANT_ALG_MD2
+pass:
+
+Config: PSA_WANT_ALG_MD4
+depends_on:PSA_WANT_ALG_MD4
+pass:
+
+Config: !PSA_WANT_ALG_MD4
+depends_on:!PSA_WANT_ALG_MD4
+pass:
+
+Config: PSA_WANT_ALG_MD5
+depends_on:PSA_WANT_ALG_MD5
+pass:
+
+Config: !PSA_WANT_ALG_MD5
+depends_on:!PSA_WANT_ALG_MD5
+pass:
+
+Config: PSA_WANT_ALG_OFB
+depends_on:PSA_WANT_ALG_OFB
+pass:
+
+Config: !PSA_WANT_ALG_OFB
+depends_on:!PSA_WANT_ALG_OFB
+pass:
+
+Config: PSA_WANT_ALG_RIPEMD160
+depends_on:PSA_WANT_ALG_RIPEMD160
+pass:
+
+Config: !PSA_WANT_ALG_RIPEMD160
+depends_on:!PSA_WANT_ALG_RIPEMD160
+pass:
+
+Config: PSA_WANT_ALG_RSA_OAEP
+depends_on:PSA_WANT_ALG_RSA_OAEP
+pass:
+
+Config: !PSA_WANT_ALG_RSA_OAEP
+depends_on:!PSA_WANT_ALG_RSA_OAEP
+pass:
+
+Config: PSA_WANT_ALG_RSA_PKCS1V15_CRYPT
+depends_on:PSA_WANT_ALG_RSA_PKCS1V15_CRYPT
+pass:
+
+Config: !PSA_WANT_ALG_RSA_PKCS1V15_CRYPT
+depends_on:!PSA_WANT_ALG_RSA_PKCS1V15_CRYPT
+pass:
+
+Config: PSA_WANT_ALG_RSA_PKCS1V15_SIGN
+depends_on:PSA_WANT_ALG_RSA_PKCS1V15_SIGN
+pass:
+
+Config: !PSA_WANT_ALG_RSA_PKCS1V15_SIGN
+depends_on:!PSA_WANT_ALG_RSA_PKCS1V15_SIGN
+pass:
+
+Config: PSA_WANT_ALG_RSA_PSS
+depends_on:PSA_WANT_ALG_RSA_PSS
+pass:
+
+Config: !PSA_WANT_ALG_RSA_PSS
+depends_on:!PSA_WANT_ALG_RSA_PSS
+pass:
+
+Config: PSA_WANT_ALG_SHA_1
+depends_on:PSA_WANT_ALG_SHA_1
+pass:
+
+Config: !PSA_WANT_ALG_SHA_1
+depends_on:!PSA_WANT_ALG_SHA_1
+pass:
+
+Config: PSA_WANT_ALG_SHA_224
+depends_on:PSA_WANT_ALG_SHA_224
+pass:
+
+Config: !PSA_WANT_ALG_SHA_224
+depends_on:!PSA_WANT_ALG_SHA_224
+pass:
+
+Config: PSA_WANT_ALG_SHA_256
+depends_on:PSA_WANT_ALG_SHA_256
+pass:
+
+Config: !PSA_WANT_ALG_SHA_256
+depends_on:!PSA_WANT_ALG_SHA_256
+pass:
+
+Config: PSA_WANT_ALG_SHA_384
+depends_on:PSA_WANT_ALG_SHA_384
+pass:
+
+Config: !PSA_WANT_ALG_SHA_384
+depends_on:!PSA_WANT_ALG_SHA_384
+pass:
+
+Config: PSA_WANT_ALG_SHA_512
+depends_on:PSA_WANT_ALG_SHA_512
+pass:
+
+Config: !PSA_WANT_ALG_SHA_512
+depends_on:!PSA_WANT_ALG_SHA_512
+pass:
+
+Config: PSA_WANT_ALG_STREAM_CIPHER
+depends_on:PSA_WANT_ALG_STREAM_CIPHER
+pass:
+
+Config: !PSA_WANT_ALG_STREAM_CIPHER
+depends_on:!PSA_WANT_ALG_STREAM_CIPHER
+pass:
+
+Config: PSA_WANT_ALG_TLS12_PRF
+depends_on:PSA_WANT_ALG_TLS12_PRF
+pass:
+
+Config: !PSA_WANT_ALG_TLS12_PRF
+depends_on:!PSA_WANT_ALG_TLS12_PRF
+pass:
+
+Config: PSA_WANT_ALG_TLS12_PSK_TO_MS
+depends_on:PSA_WANT_ALG_TLS12_PSK_TO_MS
+pass:
+
+Config: !PSA_WANT_ALG_TLS12_PSK_TO_MS
+depends_on:!PSA_WANT_ALG_TLS12_PSK_TO_MS
+pass:
+
+Config: PSA_WANT_ALG_XTS
+depends_on:PSA_WANT_ALG_XTS
+pass:
+
+Config: !PSA_WANT_ALG_XTS
+depends_on:!PSA_WANT_ALG_XTS
+pass:
+
+Config: PSA_WANT_ECC_BRAINPOOL_P_R1_256
+depends_on:PSA_WANT_ECC_BRAINPOOL_P_R1_256
+pass:
+
+Config: !PSA_WANT_ECC_BRAINPOOL_P_R1_256
+depends_on:!PSA_WANT_ECC_BRAINPOOL_P_R1_256
+pass:
+
+Config: PSA_WANT_ECC_BRAINPOOL_P_R1_384
+depends_on:PSA_WANT_ECC_BRAINPOOL_P_R1_384
+pass:
+
+Config: !PSA_WANT_ECC_BRAINPOOL_P_R1_384
+depends_on:!PSA_WANT_ECC_BRAINPOOL_P_R1_384
+pass:
+
+Config: PSA_WANT_ECC_BRAINPOOL_P_R1_512
+depends_on:PSA_WANT_ECC_BRAINPOOL_P_R1_512
+pass:
+
+Config: !PSA_WANT_ECC_BRAINPOOL_P_R1_512
+depends_on:!PSA_WANT_ECC_BRAINPOOL_P_R1_512
+pass:
+
+Config: PSA_WANT_ECC_MONTGOMERY_255
+depends_on:PSA_WANT_ECC_MONTGOMERY_255
+pass:
+
+Config: !PSA_WANT_ECC_MONTGOMERY_255
+depends_on:!PSA_WANT_ECC_MONTGOMERY_255
+pass:
+
+Config: PSA_WANT_ECC_MONTGOMERY_448
+depends_on:PSA_WANT_ECC_MONTGOMERY_448
+pass:
+
+Config: !PSA_WANT_ECC_MONTGOMERY_448
+depends_on:!PSA_WANT_ECC_MONTGOMERY_448
+pass:
+
+Config: PSA_WANT_ECC_SECP_K1_192
+depends_on:PSA_WANT_ECC_SECP_K1_192
+pass:
+
+Config: !PSA_WANT_ECC_SECP_K1_192
+depends_on:!PSA_WANT_ECC_SECP_K1_192
+pass:
+
+Config: PSA_WANT_ECC_SECP_K1_224
+depends_on:PSA_WANT_ECC_SECP_K1_224
+pass:
+
+Config: !PSA_WANT_ECC_SECP_K1_224
+depends_on:!PSA_WANT_ECC_SECP_K1_224
+pass:
+
+Config: PSA_WANT_ECC_SECP_K1_256
+depends_on:PSA_WANT_ECC_SECP_K1_256
+pass:
+
+Config: !PSA_WANT_ECC_SECP_K1_256
+depends_on:!PSA_WANT_ECC_SECP_K1_256
+pass:
+
+Config: PSA_WANT_ECC_SECP_R1_192
+depends_on:PSA_WANT_ECC_SECP_R1_192
+pass:
+
+Config: !PSA_WANT_ECC_SECP_R1_192
+depends_on:!PSA_WANT_ECC_SECP_R1_192
+pass:
+
+Config: PSA_WANT_ECC_SECP_R1_224
+depends_on:PSA_WANT_ECC_SECP_R1_224
+pass:
+
+Config: !PSA_WANT_ECC_SECP_R1_224
+depends_on:!PSA_WANT_ECC_SECP_R1_224
+pass:
+
+Config: PSA_WANT_ECC_SECP_R1_256
+depends_on:PSA_WANT_ECC_SECP_R1_256
+pass:
+
+Config: !PSA_WANT_ECC_SECP_R1_256
+depends_on:!PSA_WANT_ECC_SECP_R1_256
+pass:
+
+Config: PSA_WANT_ECC_SECP_R1_384
+depends_on:PSA_WANT_ECC_SECP_R1_384
+pass:
+
+Config: !PSA_WANT_ECC_SECP_R1_384
+depends_on:!PSA_WANT_ECC_SECP_R1_384
+pass:
+
+Config: PSA_WANT_ECC_SECP_R1_521
+depends_on:PSA_WANT_ECC_SECP_R1_521
+pass:
+
+Config: !PSA_WANT_ECC_SECP_R1_521
+depends_on:!PSA_WANT_ECC_SECP_R1_521
+pass:
+
+Config: PSA_WANT_KEY_TYPE_AES
+depends_on:PSA_WANT_KEY_TYPE_AES
+pass:
+
+Config: !PSA_WANT_KEY_TYPE_AES
+depends_on:!PSA_WANT_KEY_TYPE_AES
+pass:
+
+Config: PSA_WANT_KEY_TYPE_ARC4
+depends_on:PSA_WANT_KEY_TYPE_ARC4
+pass:
+
+Config: !PSA_WANT_KEY_TYPE_ARC4
+depends_on:!PSA_WANT_KEY_TYPE_ARC4
+pass:
+
+Config: PSA_WANT_KEY_TYPE_ARIA
+depends_on:PSA_WANT_KEY_TYPE_ARIA
+pass:
+
+Config: !PSA_WANT_KEY_TYPE_ARIA
+depends_on:!PSA_WANT_KEY_TYPE_ARIA
+pass:
+
+Config: PSA_WANT_KEY_TYPE_CAMELLIA
+depends_on:PSA_WANT_KEY_TYPE_CAMELLIA
+pass:
+
+Config: !PSA_WANT_KEY_TYPE_CAMELLIA
+depends_on:!PSA_WANT_KEY_TYPE_CAMELLIA
+pass:
+
+Config: PSA_WANT_KEY_TYPE_CHACHA20
+depends_on:PSA_WANT_KEY_TYPE_CHACHA20
+pass:
+
+Config: !PSA_WANT_KEY_TYPE_CHACHA20
+depends_on:!PSA_WANT_KEY_TYPE_CHACHA20
+pass:
+
+Config: PSA_WANT_KEY_TYPE_DERIVE
+depends_on:PSA_WANT_KEY_TYPE_DERIVE
+pass:
+
+Config: !PSA_WANT_KEY_TYPE_DERIVE
+depends_on:!PSA_WANT_KEY_TYPE_DERIVE
+pass:
+
+Config: PSA_WANT_KEY_TYPE_DES
+depends_on:PSA_WANT_KEY_TYPE_DES
+pass:
+
+Config: !PSA_WANT_KEY_TYPE_DES
+depends_on:!PSA_WANT_KEY_TYPE_DES
+pass:
+
+Config: PSA_WANT_KEY_TYPE_ECC_KEY_PAIR
+depends_on:PSA_WANT_KEY_TYPE_ECC_KEY_PAIR
+pass:
+
+Config: !PSA_WANT_KEY_TYPE_ECC_KEY_PAIR
+depends_on:!PSA_WANT_KEY_TYPE_ECC_KEY_PAIR
+pass:
+
+Config: PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY
+depends_on:PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY
+pass:
+
+Config: !PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY
+depends_on:!PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY
+pass:
+
+Config: PSA_WANT_KEY_TYPE_HMAC
+depends_on:PSA_WANT_KEY_TYPE_HMAC
+pass:
+
+Config: !PSA_WANT_KEY_TYPE_HMAC
+depends_on:!PSA_WANT_KEY_TYPE_HMAC
+pass:
+
+Config: PSA_WANT_KEY_TYPE_RAW_DATA
+depends_on:PSA_WANT_KEY_TYPE_RAW_DATA
+pass:
+
+Config: !PSA_WANT_KEY_TYPE_RAW_DATA
+depends_on:!PSA_WANT_KEY_TYPE_RAW_DATA
+pass:
+
+Config: PSA_WANT_KEY_TYPE_RSA_KEY_PAIR
+depends_on:PSA_WANT_KEY_TYPE_RSA_KEY_PAIR
+pass:
+
+Config: !PSA_WANT_KEY_TYPE_RSA_KEY_PAIR
+depends_on:!PSA_WANT_KEY_TYPE_RSA_KEY_PAIR
+pass:
+
+Config: PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY
+depends_on:PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY
+pass:
+
+Config: !PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY
+depends_on:!PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY
+pass:
+
+# End of automatically generated file.

tests/suites/test_suite_config.psa_combinations.data

@@ -0,0 +1,9 @@
+# Interesting combinations of PSA options
+
+Config: PSA_WANT_ALG_ECDSA without PSA_WANT_ALG_DETERMINISTIC_ECDSA
+depends_on:PSA_WANT_ALG_ECDSA:!PSA_WANT_ALG_DETERMINISTIC_ECDSA
+pass:
+
+Config: PSA_WANT_ALG_DETERMINSTIC_ECDSA without PSA_WANT_ALG_ECDSA
+depends_on:PSA_WANT_ALG_DETERMINISTIC_ECDSA:!PSA_WANT_ALG_ECDSA
+pass:

tests/suites/test_suite_config.tls_combinations.data

@@ -0,0 +1,13 @@
+# Interesting combinations of TLS options
+
+Config: TLS 1.0 only
+depends_on:!MBEDTLS_SSL_PROTO_SSL3:MBEDTLS_SSL_PROTO_TLS1:!MBEDTLS_SSL_PROTO_TLS1_1:!MBEDTLS_SSL_PROTO_TLS1_2:!MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL
+pass:
+
+Config: TLS 1.1 only
+depends_on:!MBEDTLS_SSL_PROTO_SSL3:!MBEDTLS_SSL_PROTO_TLS1:MBEDTLS_SSL_PROTO_TLS1_1:!MBEDTLS_SSL_PROTO_TLS1_2:!MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL
+pass:
+
+Config: TLS 1.2 only
+depends_on:!MBEDTLS_SSL_PROTO_SSL3:!MBEDTLS_SSL_PROTO_TLS1:!MBEDTLS_SSL_PROTO_TLS1_1:MBEDTLS_SSL_PROTO_TLS1_2:!MBEDTLS_SSL_PROTO_TLS1_3_EXPERIMENTAL
+pass: