[Feature request] Test Ciphers against Curvces

Question

[Feature request] Test Ciphers against Curvces

Opened this issue 3 months ago · 0 comments

I would like to have a possiblity in the script, that the cipher list also includes the used curve and also test each curve alone.
So if a server can speak : prime256v1 secp384r1 secp521r1 X25519 X448
That for TLS1.2 the entries would be multiple for the same Cipher

Exampe:
Instead of only showing this info:

Cipher Suite Name (OpenSSL) KeyExch. Encryption Bits Cipher Suite Name (IANA/RFC)
TLS_AES_256_GCM_SHA384 ECDH 256 AESGCM 256 TLS_AES_256_GCM_SHA384

It would be great if the info would include the Curve used in this test aswell as multiple entries for all curves:

Cipher Suite Name (OpenSSL) KeyExch. Curve Encryption Bits Cipher Suite Name (IANA/RFC)
TLS_AES_256_GCM_SHA384 ECDH 256 prime256v1 AESGCM 256 TLS_AES_256_GCM_SHA384
TLS_AES_256_GCM_SHA384 ECDH 256 secp384r1 AESGCM 256 TLS_AES_256_GCM_SHA384
TLS_AES_256_GCM_SHA384 ECDH 256 secp521r1 AESGCM 256 TLS_AES_256_GCM_SHA384
TLS_AES_256_GCM_SHA384 ECDH 256 X25519 AESGCM 256 TLS_AES_256_GCM_SHA384
TLS_AES_256_GCM_SHA384 ECDH 256 X448 AESGCM 256 TLS_AES_256_GCM_SHA384
(just as an example, not the real output)

Which version are you referring to
3.2rc3

Please check this repo whether this is a known feature request
There is none

Describe the solution you'd like
I Would like a switch or attribute which can enable this feature for the curves check. if there is one I did not see it in the documentation or help text.