Stop disabling TLSv1.3 if ec and dh are disabled

Even if EC and DH are disabled then we may still be able to use TLSv1.3 if we have groups that have been plugged in by an external provider. Fixes #13767 Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/13916)
author: Matt Caswell <matt@openssl.org> 2021-01-14 15:50:20 +0000
committer: Matt Caswell <matt@openssl.org> 2021-02-05 15:22:40 +0000
commit: a763ca11777ce01a286751f3f3dd9b106ef74f30 (patch)
tree: 7ad54dd22661b8373f57ffefdee897b6282dc225 /test/recipes/70-test_sslversions.t
parent: 8b1db5d329740bd5363fd1763d4030d0e015b521 (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/test/recipes/70-test_sslversions.t b/test/recipes/70-test_sslversions.t
index 864f4f5283..0a67fe1006 100644
--- a/test/recipes/70-test_sslversions.t
+++ b/test/recipes/70-test_sslversions.t
@@ -37,7 +37,10 @@ plan skip_all => "$test_name needs the sock feature enabled"
     if disabled("sock");
 
 plan skip_all => "$test_name needs TLS1.3, TLS1.2 and TLS1.1 enabled"
-    if disabled("tls1_3") || disabled("tls1_2") || disabled("tls1_1");
+    if disabled("tls1_3")
+       || (disabled("ec") && disabled("dh"))
+       || disabled("tls1_2")
+       || disabled("tls1_1");
 
 $ENV{OPENSSL_ia32cap} = '~0x200000200000000';
author	Matt Caswell <matt@openssl.org>	2021-01-14 15:50:20 +0000
committer	Matt Caswell <matt@openssl.org>	2021-02-05 15:22:40 +0000
commit	a763ca11777ce01a286751f3f3dd9b106ef74f30 (patch)
tree	7ad54dd22661b8373f57ffefdee897b6282dc225 /test/recipes/70-test_sslversions.t
parent	8b1db5d329740bd5363fd1763d4030d0e015b521 (diff)