diff --git a/programs/ssl/ssl_client2.c b/programs/ssl/ssl_client2.c index aeeaee983..39e89ece0 100644 --- a/programs/ssl/ssl_client2.c +++ b/programs/ssl/ssl_client2.c @@ -1707,7 +1707,8 @@ int main( int argc, char *argv[] ) } #endif /* MBEDTLS_USE_PSA_CRYPTO */ - mbedtls_printf( " ok (key type: %s)\n", mbedtls_pk_get_name( &pkey ) ); + mbedtls_printf( " ok (key type: %s)\n", + strlen( opt.key_file ) ? mbedtls_pk_get_name( &pkey ) : "none" ); #endif /* MBEDTLS_X509_CRT_PARSE_C */ /* diff --git a/programs/ssl/ssl_server2.c b/programs/ssl/ssl_server2.c index fb8c5a3e3..c77119b02 100644 --- a/programs/ssl/ssl_server2.c +++ b/programs/ssl/ssl_server2.c @@ -2531,7 +2531,9 @@ int main( int argc, char *argv[] ) } #endif /* MBEDTLS_USE_PSA_CRYPTO */ - mbedtls_printf( " ok (key types: %s - %s)\n", mbedtls_pk_get_name( &pkey ), mbedtls_pk_get_name( &pkey2 ) ); + mbedtls_printf( " ok (key types: %s, %s)\n", + key_cert_init ? mbedtls_pk_get_name( &pkey ) : "none", + key_cert_init2 ? mbedtls_pk_get_name( &pkey2 ) : "none" ); #endif /* MBEDTLS_X509_CRT_PARSE_C */ #if defined(MBEDTLS_DHM_C) && defined(MBEDTLS_FS_IO) diff --git a/tests/ssl-opt.sh b/tests/ssl-opt.sh index 295b82ea8..4650be58d 100755 --- a/tests/ssl-opt.sh +++ b/tests/ssl-opt.sh @@ -1570,7 +1570,7 @@ run_test "Opaque key for server authentication" \ 0 \ -c "Verifying peer X.509 certificate... ok" \ -c "Ciphersuite is TLS-ECDHE-ECDSA" \ - -s "key types: Opaque - invalid PK" \ + -s "key types: Opaque, none" \ -s "Ciphersuite is TLS-ECDHE-ECDSA" \ -S "error" \ -C "error" @@ -1589,7 +1589,7 @@ run_test "Opaque key for client/server authentication" \ -c "key type: Opaque" \ -c "Verifying peer X.509 certificate... ok" \ -c "Ciphersuite is TLS-ECDHE-ECDSA" \ - -s "key types: Opaque - invalid PK" \ + -s "key types: Opaque, none" \ -s "Verifying peer X.509 certificate... ok" \ -s "Ciphersuite is TLS-ECDHE-ECDSA" \ -S "error" \