Change unsupported KEM identifier To a definitely not real one. Otherwise tests fail if you do actually support DHKEM(P-256, HKDF-SHA256). Change-Id: Icb60458bba94e8df1954f154f5f6c9965543af45 Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/67927 Reviewed-by: David Benjamin <davidben@google.com> Commit-Queue: David Benjamin <davidben@google.com> Commit-Queue: Roland Shoemaker <bracewell@google.com>

commit: d8d1c6a2d034df2a62bcf75604a4824f0e20e19e [log] [tgz]
author: Roland Shoemaker <bracewell@google.com> Mon Apr 22 10:55:47 2024 -0700
committer: Boringssl LUCI CQ <boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com> Mon Apr 22 23:43:45 2024 +0000
tree: 7fdd93817d34d77badec5f969c1cad0b28158b43
parent: b62a6e6eeb05b9db60bb6ef7adc2c093250ad0a5 [diff]
diff --git a/ssl/test/runner/runner.go b/ssl/test/runner/runner.go
index 6f2befd..45693d1 100644
--- a/ssl/test/runner/runner.go
+++ b/ssl/test/runner/runner.go

@@ -18002,10 +18002,9 @@
 
 		// Test that the client iterates over configurations in the
 		// ECHConfigList and selects the first with supported parameters.
-		p256Key := ecdsaP256Certificate.PrivateKey.(*ecdsa.PrivateKey)
 		unsupportedKEM := generateServerECHConfig(&ECHConfig{
-			KEM:       hpke.P256WithHKDFSHA256,
-			PublicKey: elliptic.Marshal(elliptic.P256(), p256Key.X, p256Key.Y),
+			KEM:       0x6666,
+			PublicKey: []byte{1, 2, 3, 4},
 		}).ECHConfig
 		unsupportedCipherSuites := generateServerECHConfig(&ECHConfig{
 			CipherSuites: []HPKECipherSuite{{0x1111, 0x2222}},
commit	d8d1c6a2d034df2a62bcf75604a4824f0e20e19e	[log] [tgz]
author	Roland Shoemaker <bracewell@google.com>	Mon Apr 22 10:55:47 2024 -0700
committer	Boringssl LUCI CQ <boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com>	Mon Apr 22 23:43:45 2024 +0000
tree	7fdd93817d34d77badec5f969c1cad0b28158b43
parent	b62a6e6eeb05b9db60bb6ef7adc2c093250ad0a5 [diff]