Support draft-kwiatkowski-tls-ecdhe-mlkem

[dcooper16]

Describe your changes

This commit adds support for the three code points in draft-kwiatkowski-tls-ecdhe-mlkem.

What is your pull request about?

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• Typo fix
• Documentation update
• Update of other files

If it's a code change please check the boxes which are applicable

• For the main program: My edits contain no tabs and the indentation is five spaces
• I've read CONTRIBUTING.md and Coding_Convention.md
• I have tested this fix against >=2 hosts and I couldn't spot a problem
• I have tested this new feature against >=2 hosts which show this feature and >=2 host which does not (in order to avoid side effects) . I couldn't spot a problem
• For the new feature I have made corresponding changes to the documentation and / or to help()
• If it's a bigger change: I added myself to CREDITS.md (alphabetical order) and the change to CHANGELOG.md

[drwetter]

FYI: I reran the Ci jobs after stopping the previous one which ran after 4 hours

[drwetter]

whohoo ! 👍

cloudflare.com and google.com miss to show any TLS 1.3 sig algorithms with this patch . For Geert's site it's fine.

[drwetter]

Correction: that seems to be a MacOS thing. On Debian it works like expected. 🧐 .Not MacOS, for some reason using the supplied openssl is fine . So ./testssl.sh --openssl=/usr/bin/openssl -f google.com misses the TLS 1.3 sig algs too on Debian (12) with this patch.

[dcooper16]

Thanks for catching the mistake. I was adding the new PQC groups to the ClientHello whenever OpenSSL supported X25519 and X448, which was a mistake. The result was that when searching for supported signature algorithms, a PQC group was being selected, the response could not be decrypted, and the signature algorithm could not be determined.

I may not have caught this because I was getting the same results when using --openssl=/usr/bin/openssl with and without this change. The reason was that the current testssl.sh was not finding any TLS 1.3 signature algorithms when using --openssl=/usr/bin/openssl. I found the reason for that and submitted #2625 to fix that.

[drwetter]

Thanks a lot, David! 🚀