diff --git a/examples/client/client.c b/examples/client/client.c
index 8127a4afb..d1fcbaa21 100755
--- a/examples/client/client.c
+++ b/examples/client/client.c
@@ -3184,7 +3184,7 @@ THREAD_RETURN WOLFSSL_THREAD client_test(void* args)
                                       useLibOqs, oqsAlg, exitWithRet, version,
                                       onlyKeyShare);
         wolfSSL_CTX_free(ctx); ctx = NULL;
-        if (!exitWithRet)
+        if (((func_args*)args)->return_code != EXIT_SUCCESS && !exitWithRet)
             XEXIT_T(EXIT_SUCCESS);
         else
             goto exit;
diff --git a/examples/server/server.c b/examples/server/server.c
index 7317b851a..f39d66845 100755
--- a/examples/server/server.c
+++ b/examples/server/server.c
@@ -395,7 +395,7 @@ int ServerEchoData(SSL* ssl, int clientfd, int echoData, int block,
             /* Read data */
             while (rx_pos < len) {
                 ret = SSL_read(ssl, &buffer[rx_pos], len - rx_pos);
-                if (ret < 0) {
+                if (ret <= 0) {
                     err = SSL_get_error(ssl, 0);
                 #ifdef WOLFSSL_ASYNC_CRYPT
                     if (err == WC_PENDING_E) {
@@ -3183,6 +3183,8 @@ THREAD_RETURN WOLFSSL_THREAD server_test(void* args)
         }
         else if (err == 0 || err == WOLFSSL_ERROR_ZERO_RETURN) {
             err = ServerEchoData(ssl, clientfd, echoData, block, throughput);
+            if (err == WOLFSSL_ERROR_ZERO_RETURN && runWithErrors == 1) /* Got close notify */
+                err = 0;
             if (err != 0) {
                 SSL_free(ssl); ssl = NULL;
                 SSL_CTX_free(ctx); ctx = NULL;
@@ -3199,13 +3201,11 @@ THREAD_RETURN WOLFSSL_THREAD server_test(void* args)
         Task_yield();
 #endif
 
-        if (dtlsUDP == 0) {
-            ret = SSL_shutdown(ssl);
-            if (wc_shutdown && ret == WOLFSSL_SHUTDOWN_NOT_DONE) {
-                ret = SSL_shutdown(ssl); /* bidirectional shutdown */
-                if (ret == WOLFSSL_SUCCESS)
-                    printf("Bidirectional shutdown complete\n");
-            }
+        ret = SSL_shutdown(ssl);
+        if (wc_shutdown && ret == WOLFSSL_SHUTDOWN_NOT_DONE) {
+            ret = SSL_shutdown(ssl); /* bidirectional shutdown */
+            if (ret == WOLFSSL_SUCCESS)
+                printf("Bidirectional shutdown complete\n");
         }
 
         /* display collected statistics */
diff --git a/src/internal.c b/src/internal.c
index f831ec405..a6fe8d37c 100644
--- a/src/internal.c
+++ b/src/internal.c
@@ -8683,7 +8683,7 @@ static int SendHandshakeMsg(WOLFSSL* ssl, byte* input, word32 inputSz,
         inputSz += HANDSHAKE_HEADER_SZ;
         headerSz = RECORD_HEADER_SZ;
     }
-    maxFrag = wolfSSL_GetMaxRecordSize(ssl, (int)inputSz);
+    maxFrag = wolfSSL_GetMaxFragSize(ssl, (int)inputSz);
 
     /* Make sure input is not the ssl output buffer as this
      * function doesn't handle that */
@@ -18240,7 +18240,7 @@ exit_buildmsg:
     ssl->options.buildMsgState = BUILD_MSG_BEGIN;
 
     #ifdef WOLFSSL_DTLS
-        if (ret == 0 && ssl->options.dtls)
+        if (ret == 0 && ssl->options.dtls && !sizeOnly)
             DtlsSEQIncrement(ssl, epochOrder);
     #endif
 
@@ -18532,10 +18532,25 @@ int CreateOcspResponse(WOLFSSL* ssl, OcspRequest** ocspRequest,
 
 static int cipherExtraData(WOLFSSL* ssl)
 {
+    int cipherExtra;
     /* Cipher data that may be added by BuildMessage */
-    return ssl->specs.hash_size + ssl->specs.block_size +
-            ssl->specs.aead_mac_size + ssl->specs.iv_size +
-            ssl->specs.pad_size;
+    /* There is always an IV (expect for chacha). For AEAD ciphers,
+     * there is the authentication tag (aead_mac_size). For block
+     * ciphers we have the hash_size MAC on the message, and one
+     * block size for possible padding. */
+    if (ssl->specs.cipher_type == aead) {
+        cipherExtra = ssl->specs.aead_mac_size;
+        /* CHACHA does not have an explicit IV. */
+        if (ssl->specs.bulk_cipher_algorithm != wolfssl_chacha) {
+            cipherExtra += AESGCM_EXP_IV_SZ;
+        }
+    }
+    else {
+        cipherExtra = ssl->specs.iv_size + ssl->specs.block_size +
+            ssl->specs.hash_size;
+    }
+    /* Sanity check so we don't ever return negative. */
+    return cipherExtra > 0 ? cipherExtra : 0;
 }
 
 #ifndef WOLFSSL_NO_TLS12
@@ -18600,7 +18615,7 @@ int SendCertificate(WOLFSSL* ssl)
 
     maxFragment = MAX_RECORD_SIZE;
 
-    maxFragment = wolfSSL_GetMaxRecordSize(ssl, maxFragment);
+    maxFragment = wolfSSL_GetMaxFragSize(ssl, maxFragment);
 
     while (length > 0 && ret == 0) {
         byte*  output = NULL;
@@ -18632,10 +18647,8 @@ int SendCertificate(WOLFSSL* ssl)
         else {
         #ifdef WOLFSSL_DTLS
             fragSz = min(length, maxFragment);
-            sendSz += fragSz + DTLS_RECORD_EXTRA + DTLS_HANDSHAKE_EXTRA
-                      + HANDSHAKE_HEADER_SZ;
-            i      += DTLS_RECORD_EXTRA + DTLS_HANDSHAKE_EXTRA
-                      + HANDSHAKE_HEADER_SZ;
+            sendSz += fragSz + DTLS_RECORD_EXTRA + DTLS_HANDSHAKE_HEADER_SZ;
+            i      += DTLS_RECORD_EXTRA + DTLS_HANDSHAKE_HEADER_SZ;
         #endif
         }
 
@@ -19364,6 +19377,28 @@ int IsSCR(WOLFSSL* ssl)
 }
 
 
+#ifdef WOLFSSL_DTLS
+static int ModifyForMTU(WOLFSSL* ssl, int buffSz, int outputSz, int mtuSz)
+{
+    int recordExtra = outputSz - buffSz;
+
+    (void)ssl;
+
+    if (recordExtra > 0 && outputSz > mtuSz) {
+        buffSz = mtuSz - recordExtra;
+#ifndef WOLFSSL_AEAD_ONLY
+        /* Subtract a block size to be certain that returned fragment
+         * size won't get more padding. */
+        if (ssl->specs.cipher_type == block)
+            buffSz -= ssl->specs.block_size;
+#endif
+    }
+
+    return buffSz;
+}
+#endif
+
+
 int SendData(WOLFSSL* ssl, const void* data, int sz)
 {
     int sent = 0,  /* plainText size */
@@ -19459,9 +19494,18 @@ int SendData(WOLFSSL* ssl, const void* data, int sz)
         byte  comp[MAX_RECORD_SIZE + MAX_COMP_EXTRA];
 #endif
 
-        if (sent == sz) break;
+#ifdef WOLFSSL_DTLS
+        if (ssl->options.dtls) {
+            buffSz = wolfSSL_GetMaxFragSize(ssl, sz - sent);
+        }
+        else
+#endif
+        {
+            buffSz = wolfSSL_GetMaxFragSize(ssl, sz - sent);
 
-        buffSz = wolfSSL_GetMaxRecordSize(ssl, sz - sent);
+        }
+
+        if (sent == sz) break;
 
 #if defined(WOLFSSL_DTLS) && !defined(WOLFSSL_NO_DTLS_SIZE_CHECK)
         if (ssl->options.dtls && (buffSz < sz - sent)) {
@@ -19470,9 +19514,8 @@ int SendData(WOLFSSL* ssl, const void* data, int sz)
             return ssl->error;
         }
 #endif
-        outputSz = buffSz + COMP_EXTRA + DTLS_RECORD_HEADER_SZ +
-                DTLS_HANDSHAKE_HEADER_SZ;
-        if (IsEncryptionOn(ssl, 1))
+        outputSz = buffSz + COMP_EXTRA + DTLS_RECORD_HEADER_SZ;
+        if (IsEncryptionOn(ssl, 1) || ssl->options.tls1_3)
             outputSz += cipherExtraData(ssl);
 
         /* check for available size */
@@ -32342,8 +32385,15 @@ int wolfSSL_AsyncPush(WOLFSSL* ssl, WC_ASYNC_DEV* asyncDev)
 #endif /* WOLFSSL_ASYNC_CRYPT */
 
 
-/* return the max record size */
-int wolfSSL_GetMaxRecordSize(WOLFSSL* ssl, int maxFragment)
+/**
+ * Return the max fragment size. This is essentially the maximum
+ * fragment_length available.
+ * @param ssl         WOLFSSL object containing ciphersuite information.
+ * @param maxFragment The amount of space we want to check is available. This
+ *                    is only the fragment length WITHOUT the (D)TLS headers.
+ * @return            Max fragment size
+ */
+int wolfSSL_GetMaxFragSize(WOLFSSL* ssl, int maxFragment)
 {
     (void) ssl; /* Avoid compiler warnings */
 
@@ -32358,24 +32408,27 @@ int wolfSSL_GetMaxRecordSize(WOLFSSL* ssl, int maxFragment)
 #endif /* HAVE_MAX_FRAGMENT */
 #ifdef WOLFSSL_DTLS
     if (IsDtlsNotSctpMode(ssl)) {
-        int cipherExtra = IsEncryptionOn(ssl, 1) ? cipherExtraData(ssl) : 0;
-        if (maxFragment > MAX_UDP_SIZE) {
-            maxFragment = MAX_UDP_SIZE;
+        int outputSz, mtuSz;
+
+        /* Given a input buffer size of maxFragment, how big will the
+         * encrypted output be? */
+        if (IsEncryptionOn(ssl, 1)) {
+            outputSz = BuildMessage(ssl, NULL, 0, NULL,
+                    maxFragment + DTLS_HANDSHAKE_HEADER_SZ,
+                    application_data, 0, 1, 0, CUR_ORDER);
         }
-        if (maxFragment > MAX_MTU - COMP_EXTRA - DTLS_RECORD_HEADER_SZ -
-                DTLS_HANDSHAKE_HEADER_SZ - cipherExtra) {
-            maxFragment = MAX_MTU - COMP_EXTRA - DTLS_RECORD_HEADER_SZ -
-                    DTLS_HANDSHAKE_HEADER_SZ - cipherExtra;
+        else {
+            outputSz = maxFragment + DTLS_RECORD_HEADER_SZ +
+                    DTLS_HANDSHAKE_HEADER_SZ;
         }
-    #if defined(WOLFSSL_DTLS_MTU)
-        {
-            int overheadSz = DTLS_RECORD_HEADER_SZ + DTLS_HANDSHAKE_HEADER_SZ +
-                    COMP_EXTRA + cipherExtra;
-            if (maxFragment > ssl->dtlsMtuSz - overheadSz) {
-                maxFragment = ssl->dtlsMtuSz - overheadSz;
-            }
-        }
-    #endif
+
+        /* Readjust maxFragment for MTU size. */
+        #if defined(WOLFSSL_DTLS_MTU)
+            mtuSz = ssl->dtlsMtuSz;
+        #else
+            mtuSz = MAX_MTU;
+        #endif
+        maxFragment = ModifyForMTU(ssl, maxFragment, outputSz, mtuSz);
     }
 #endif
 
diff --git a/src/ssl.c b/src/ssl.c
index 88cf6e330..5598a5d76 100644
--- a/src/ssl.c
+++ b/src/ssl.c
@@ -1807,7 +1807,7 @@ int wolfSSL_GetMaxOutputSize(WOLFSSL* ssl)
         return BAD_FUNC_ARG;
     }
 
-    return wolfSSL_GetMaxRecordSize(ssl, OUTPUT_RECORD_SIZE);
+    return wolfSSL_GetMaxFragSize(ssl, OUTPUT_RECORD_SIZE);
 }
 
 
diff --git a/src/tls13.c b/src/tls13.c
index 70d9f6cce..e36dcd56b 100644
--- a/src/tls13.c
+++ b/src/tls13.c
@@ -5748,7 +5748,7 @@ static int SendTls13Certificate(WOLFSSL* ssl)
     if (ssl->fragOffset != 0)
         length -= (ssl->fragOffset + headerSz);
 
-    maxFragment = wolfSSL_GetMaxRecordSize(ssl, MAX_RECORD_SIZE);
+    maxFragment = wolfSSL_GetMaxFragSize(ssl, MAX_RECORD_SIZE);
 
     while (length > 0 && ret == 0) {
         byte*  output = NULL;
diff --git a/tests/test-dtls-mtu.conf b/tests/test-dtls-mtu.conf
index cb08e2e06..495b93b3d 100644
--- a/tests/test-dtls-mtu.conf
+++ b/tests/test-dtls-mtu.conf
@@ -1,28 +1,1139 @@
 # server DTLSv1.2 DHE-RSA-CHACHA20-POLY1305
+-e
+-u
+-f
+-v 3
+-l DHE-RSA-CHACHA20-POLY1305
+
+# client DTLSv1.2 DHE-RSA-CHACHA20-POLY1305
+-B 4000,1359
+-u
+-f
+-v 3
+-l DHE-RSA-CHACHA20-POLY1305
+
+# server DTLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
+-e
+-u
+-f
+-v 3
+-l ECDHE-RSA-CHACHA20-POLY1305
+
+# client DTLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
+-B 4000,1359
+-u
+-f
+-v 3
+-l ECDHE-RSA-CHACHA20-POLY1305
+
+# server DTLSv1.2 ECDHE-EDCSA-CHACHA20-POLY1305
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-CHACHA20-POLY1305
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305
+-B 4000,1359
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-CHACHA20-POLY1305
+-A ./certs/ca-ecc-cert.pem
+
+# server TLSv1.2 DHE-PSK-CHACHA20-POLY1305
+-e
+-u
+-f
+-v 3
+-s
+-l DHE-PSK-CHACHA20-POLY1305
+
+# client TLSv1.2 DHE-PSK-CHACHA20-POLY1305
+-B 4000,1359
+-u
+-f
+-v 3
+-s
+-l DHE-PSK-CHACHA20-POLY1305
+
+# server TLSv1.2 ECDHE-PSK-CHACHA20-POLY1305
+-e
+-u
+-f
+-v 3
+-s
+-l ECDHE-PSK-CHACHA20-POLY1305
+
+# client TLSv1.2 ECDHE-PSK-CHACHA20-POLY1305
+-B 4000,1359
+-u
+-f
+-v 3
+-s
+-l ECDHE-PSK-CHACHA20-POLY1305
+
+# server TLSv1.2 PSK-CHACHA20-POLY1305
+-e
+-u
+-f
+-v 3
+-s
+-l PSK-CHACHA20-POLY1305
+
+# client TLSv1.2 PSK-CHACHA20-POLY1305
+-B 4000,1359
+-u
+-f
+-v 3
+-s
+-l PSK-CHACHA20-POLY1305
+
+# server DTLSv1.2 DHE-RSA-CHACHA20-POLY1305-OLD
+-e
+-u
+-f
+-v 3
+-l DHE-RSA-CHACHA20-POLY1305-OLD
+
+# client DTLSv1.2 DHE-RSA-CHACHA20-POLY1305-OLD
+-B 4000,1359
+-u
+-f
+-v 3
+-l DHE-RSA-CHACHA20-POLY1305-OLD
+
+# server DTLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD
+-e
+-u
+-f
+-v 3
+-l ECDHE-RSA-CHACHA20-POLY1305-OLD
+
+# client DTLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD
+-B 4000,1359
+-u
+-f
+-v 3
+-l ECDHE-RSA-CHACHA20-POLY1305-OLD
+
+# server DTLSv1.2 ECDHE-EDCSA-CHACHA20-POLY1305-OLD
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-CHACHA20-POLY1305-OLD
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD
+-B 4000,1359
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-CHACHA20-POLY1305-OLD
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDHE-RSA-DES3
+-e
+-u
+-f
+-v 2
+-l ECDHE-RSA-DES-CBC3-SHA
+
+# client DTLSv1.1 ECDHE-RSA-DES3
+-B 4000,1334
+-u
+-f
+-v 2
+-l ECDHE-RSA-DES-CBC3-SHA
+
+# server DTLSv1.1 ECDHE-RSA-AES128
+-e
+-u
+-f
+-v 2
+-l ECDHE-RSA-AES128-SHA
+
+# client DTLSv1.1 ECDHE-RSA-AES128
+-B 4000,1310
+-u
+-f
+-v 2
+-l ECDHE-RSA-AES128-SHA
+
+# server DTLSv1.1 ECDHE-RSA-AES256
+-e
+-u
+-f
+-v 2
+-l ECDHE-RSA-AES256-SHA
+
+# client DTLSv1.1 ECDHE-RSA-AES256
+-B 4000,1310
+-u
+-f
+-v 2
+-l ECDHE-RSA-AES256-SHA
+
+# server DTLSv1.2 ECDHE-RSA-DES3
+-e
+-u
+-f
+-v 3
+-l ECDHE-RSA-DES-CBC3-SHA
+
+# client DTLSv1.2 ECDHE-RSA-DES3
+-B 4000,1334
+-u
+-f
+-v 3
+-l ECDHE-RSA-DES-CBC3-SHA
+
+# server DTLSv1.2 ECDHE-RSA-AES128
+-e
+-u
+-f
+-v 3
+-l ECDHE-RSA-AES128-SHA
+
+# client DTLSv1.2 ECDHE-RSA-AES128
+-B 4000,1310
+-u
+-f
+-v 3
+-l ECDHE-RSA-AES128-SHA
+
+# server DTLSv1.2 ECDHE-RSA-AES128-SHA256
+-e
+-u
+-f
+-v 3
+-l ECDHE-RSA-AES128-SHA256
+
+# client DTLSv1.2 ECDHE-RSA-AES128-SHA256
+-B 4000,1298
+-u
+-f
+-v 3
+-l ECDHE-RSA-AES128-SHA256
+
+# server DTLSv1.2 ECDHE-RSA-AES256
+-e
+-u
+-f
+-v 3
+-l ECDHE-RSA-AES256-SHA
+
+# client DTLSv1.2 ECDHE-RSA-AES256
+-B 4000,1310
+-u
+-f
+-v 3
+-l ECDHE-RSA-AES256-SHA
+
+# server TLSv1 ECDHE-ECDSA-NULL-SHA
+-e
+-u
+-f
+-v 1
+-l ECDHE-ECDSA-NULL-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client TLSv1 ECDHE-ECDSA-NULL-SHA
+-B 4000,1355
+-u
+-f
+-v 1
+-l ECDHE-ECDSA-NULL-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server TLSv1.1 ECDHE-ECDSA-NULL-SHA
+-e
+-u
+-f
+-v 2
+-l ECDHE-ECDSA-NULL-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client TLSv1 ECDHE-ECDSA-NULL-SHA
+-B 4000,1355
+-u
+-f
+-v 2
+-l ECDHE-ECDSA-NULL-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server TLSv1.2 ECDHE-ECDSA-NULL-SHA
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-NULL-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client TLSv1.2 ECDHE-ECDSA-NULL-SHA
+-B 4000,1355
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-NULL-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDHE-ECDSA-DES3
+-e
+-u
+-f
+-v 2
+-l ECDHE-ECDSA-DES-CBC3-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDHE-ECDSA-DES3
+-B 4000,1334
+-u
+-f
+-v 2
+-l ECDHE-ECDSA-DES-CBC3-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDHE-ECDSA-AES128
+-e
+-u
+-f
+-v 2
+-l ECDHE-ECDSA-AES128-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDHE-ECDSA-AES128
+-B 4000,1310
+-u
+-f
+-v 2
+-l ECDHE-ECDSA-AES128-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDHE-ECDSA-AES256
+-e
+-u
+-f
+-v 2
+-l ECDHE-ECDSA-AES256-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDHE-ECDSA-AES256
+-B 4000,1310
+-u
+-f
+-v 2
+-l ECDHE-ECDSA-AES256-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-DES3
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-DES-CBC3-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-DES3
+-B 4000,1334
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-DES-CBC3-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128
+-B 4000,1310
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-SHA256
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-SHA256
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-SHA256
+-B 4000,1298
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-SHA256
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256
+-B 4000,1310
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDH-RSA-DES3
+-e
+-u
+-f
+-v 2
+-l ECDH-RSA-DES-CBC3-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-RSA-DES3
+-B 4000,1334
+-u
+-f
+-v 2
+-l ECDH-RSA-DES-CBC3-SHA
+
+# server DTLSv1.1 ECDH-RSA-AES128
+-e
+-u
+-f
+-v 2
+-l ECDH-RSA-AES128-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-RSA-AES128
+-B 4000,1310
+-u
+-f
+-v 2
+-l ECDH-RSA-AES128-SHA
+
+# server DTLSv1.1 ECDH-RSA-AES256
+-e
+-u
+-f
+-v 2
+-l ECDH-RSA-AES256-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-RSA-AES256
+-B 4000,1310
+-u
+-f
+-v 2
+-l ECDH-RSA-AES256-SHA
+
+# server DTLSv1.2 ECDH-RSA-DES3
+-e
+-u
+-f
+-v 3
+-l ECDH-RSA-DES-CBC3-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-DES3
+-B 4000,1334
+-u
+-f
+-v 3
+-l ECDH-RSA-DES-CBC3-SHA
+
+# server DTLSv1.2 ECDH-RSA-AES128
+-e
+-u
+-f
+-v 3
+-l ECDH-RSA-AES128-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES128
+-B 4000,1310
+-u
+-f
+-v 3
+-l ECDH-RSA-AES128-SHA
+
+# server DTLSv1.2 ECDH-RSA-AES128-SHA256
+-e
+-u
+-f
+-v 3
+-l ECDH-RSA-AES128-SHA256
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES128-SHA256
+-B 4000,1298
+-u
+-f
+-v 3
+-l ECDH-RSA-AES128-SHA256
+
+# server DTLSv1.2 ECDH-RSA-AES256
+-e
+-u
+-f
+-v 3
+-l ECDH-RSA-AES256-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES256
+-B 4000,1310
+-u
+-f
+-v 3
+-l ECDH-RSA-AES256-SHA
+
+# server DTLSv1.1 ECDH-ECDSA-DES3
+-e
+-u
+-f
+-v 2
+-l ECDH-ECDSA-DES-CBC3-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-ECDSA-DES3
+-B 4000,1334
+-u
+-f
+-v 2
+-l ECDH-ECDSA-DES-CBC3-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDH-ECDSA-AES128
+-e
+-u
+-f
+-v 2
+-l ECDH-ECDSA-AES128-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-ECDSA-AES128
+-B 4000,1310
+-u
+-f
+-v 2
+-l ECDH-ECDSA-AES128-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDH-ECDSA-AES256
+-e
+-u
+-f
+-v 2
+-l ECDH-ECDSA-AES256-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-ECDSA-AES256
+-B 4000,1310
+-u
+-f
+-v 2
+-l ECDH-ECDSA-AES256-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-DES3
+-e
+-u
+-f
+-v 3
+-l ECDH-ECDSA-DES-CBC3-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-DES3
+-B 4000,1334
+-u
+-f
+-v 3
+-l ECDH-ECDSA-DES-CBC3-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES128
+-e
+-u
+-f
+-v 3
+-l ECDH-ECDSA-AES128-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES128
+-B 4000,1310
+-u
+-f
+-v 3
+-l ECDH-ECDSA-AES128-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES128-SHA256
+-e
+-u
+-f
+-v 3
+-l ECDH-ECDSA-AES128-SHA256
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES128-SHA256
+-B 4000,1298
+-u
+-f
+-v 3
+-l ECDH-ECDSA-AES128-SHA256
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES256
+-e
+-u
+-f
+-v 3
+-l ECDH-ECDSA-AES256-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES256
+-B 4000,1310
+-u
+-f
+-v 3
+-l ECDH-ECDSA-AES256-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-RSA-AES256-SHA384
+-e
+-u
+-f
+-v 3
+-l ECDHE-RSA-AES256-SHA384
+
+# client DTLSv1.2 ECDHE-RSA-AES256-SHA384
+-B 4000,1282
+-u
+-f
+-v 3
+-l ECDHE-RSA-AES256-SHA384
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256-SHA384
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-SHA384
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256-SHA384
+-B 4000,1282
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-SHA384
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-RSA-AES256-SHA384
+-e
+-u
+-f
+-v 3
+-l ECDH-RSA-AES256-SHA384
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES256-SHA384
+-B 4000,1282
+-u
+-f
+-v 3
+-l ECDH-RSA-AES256-SHA384
+
+# server DTLSv1.2 ECDH-ECDSA-AES256-SHA384
+-e
+-u
+-f
+-v 3
+-l ECDH-ECDSA-AES256-SHA384
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES256-SHA384
+-B 4000,1282
+-u
+-f
+-v 3
+-l ECDH-ECDSA-AES256-SHA384
+-A ./certs/ca-ecc-cert.pem
+
+# server TLSv1.2 ECDHE-PSK-AES128-CBC-SHA256
+-e
+-s
+-u
+-f
+-v 3
+-l ECDHE-PSK-AES128-CBC-SHA256
+
+# client TLSv1.2 ECDHE-PSK-AES128-CBC-SHA256
+-B 4000,1298
+-s
+-u
+-f
+-v 3
+-l ECDHE-PSK-AES128-CBC-SHA256
+
+# server TLSv1.2 ECDHE-PSK-NULL-SHA256
+-e
+-s
+-u
+-f
+-v 3
+-l ECDHE-PSK-NULL-SHA256
+
+# client TLSv1.2 ECDHE-PSK-NULL-SHA256
+-B 4000,1343
+-s
+-u
+-f
+-v 3
+-l ECDHE-PSK-NULL-SHA256
+
+# server DTLSv1 PSK-AES128
+-e
+-s
+-u
+-f
+-v 2
+-l PSK-AES128-CBC-SHA
+
+# client DTLSv1 PSK-AES128
+-B 4000,1310
+-s
+-u
+-f
+-v 2
+-l PSK-AES128-CBC-SHA
+
+# server DTLSv1 PSK-AES256
+-e
+-s
+-u
+-f
+-v 2
+-l PSK-AES256-CBC-SHA
+
+# client DTLSv1 PSK-AES256
+-B 4000,1310
+-s
+-u
+-f
+-v 2
+-l PSK-AES256-CBC-SHA
+
+# server DTLSv1.2 PSK-AES128
+-e
+-s
+-u
+-f
+-v 3
+-l PSK-AES128-CBC-SHA
+
+# client DTLSv1.2 PSK-AES128
+-B 4000,1310
+-s
+-u
+-f
+-v 3
+-l PSK-AES128-CBC-SHA
+
+# server DTLSv1.2 PSK-AES256
+-e
+-s
+-u
+-f
+-v 3
+-l PSK-AES256-CBC-SHA
+
+# client DTLSv1.2 PSK-AES256
+-B 4000,1310
+-s
+-u
+-f
+-v 3
+-l PSK-AES256-CBC-SHA
+
+# server DTLSv1.2 PSK-AES128-SHA256
+-e
+-s
+-u
+-f
+-v 3
+-l PSK-AES128-CBC-SHA256
+
+# client DTLSv1.2 PSK-AES128-SHA256
+-B 4000,1298
+-s
+-u
+-f
+-v 3
+-l PSK-AES128-CBC-SHA256
+
+# server DTLSv1.2 PSK-AES256-SHA384
+-e
+-s
+-u
+-f
+-v 3
+-l PSK-AES256-CBC-SHA384
+
+# client DTLSv1.2 PSK-AES256-SHA384
+-B 4000,1282
+-s
+-u
+-f
+-v 3
+-l PSK-AES256-CBC-SHA384
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-GCM-SHA256
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256
+-B 4000,1351
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-GCM-SHA256
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-GCM-SHA384
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384
+-B 4000,1351
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-GCM-SHA384
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES128-GCM-SHA256
+-e
+-u
+-f
+-v 3
+-l ECDH-ECDSA-AES128-GCM-SHA256
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES128-GCM-SHA256
+-B 4000,1351
+-u
+-f
+-v 3
+-l ECDH-ECDSA-AES128-GCM-SHA256
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES256-GCM-SHA384
+-e
+-u
+-f
+-v 3
+-l ECDH-ECDSA-AES256-GCM-SHA384
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES256-GCM-SHA384
+-B 4000,1351
+-u
+-f
+-v 3
+-l ECDH-ECDSA-AES256-GCM-SHA384
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
+-e
+-u
+-f
+-v 3
+-l ECDHE-RSA-AES128-GCM-SHA256
+
+# client DTLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
+-B 4000,1351
+-u
+-f
+-v 3
+-l ECDHE-RSA-AES128-GCM-SHA256
+
+# server DTLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
+-e
+-u
+-f
+-v 3
+-l ECDHE-RSA-AES256-GCM-SHA384
+
+# client DTLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
+-B 4000,1351
+-u
+-f
+-v 3
+-l ECDHE-RSA-AES256-GCM-SHA384
+
+# server DTLSv1.2 ECDH-RSA-AES128-GCM-SHA256
+-e
+-u
+-f
+-v 3
+-l ECDH-RSA-AES128-GCM-SHA256
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES128-GCM-SHA256
+-B 4000,1351
+-u
+-f
+-v 3
+-l ECDH-RSA-AES128-GCM-SHA256
+
+# server DTLSv1.2 ECDH-RSA-AES256-GCM-SHA384
+-e
+-u
+-f
+-v 3
+-l ECDH-RSA-AES256-GCM-SHA384
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES256-GCM-SHA384
+-B 4000,1351
+-u
+-f
+-v 3
+-l ECDH-RSA-AES256-GCM-SHA384
+
+# server DTLSv1.2 PSK-AES128-GCM-SHA256
+-e
+-u
+-f
+-s
+-v 3
+-l PSK-AES128-GCM-SHA256
+
+# client DTLSv1.2 PSK-AES128-GCM-SHA256
+-B 4000,1351
+-u
+-f
+-s
+-v 3
+-l PSK-AES128-GCM-SHA256
+
+# server DTLSv1.2 PSK-AES256-GCM-SHA384
+-e
+-u
+-f
+-s
+-v 3
+-l PSK-AES256-GCM-SHA384
+
+# client DTLSv1.2 PSK-AES256-GCM-SHA384
+-B 4000,1351
+-u
+-f
+-s
+-v 3
+-l PSK-AES256-GCM-SHA384
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM
+-B 4000,1351
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM-8
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM-8
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM-8
+-B 4000,1359
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM-8
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256-CCM-8
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-CCM-8
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256-CCM-8
+-B 4000,1359
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-CCM-8
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM8 (OpenSSL-compat alias)
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM8
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM8 (OpenSSL-compat alias)
+-B 4000,1359
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM8
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256-CCM8 (OpenSSL-compat alias)
+-e
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-CCM8
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256-CCM8 (OpenSSL-compat alias)
+-B 4000,1359
+-u
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-CCM8
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ADH-AES128-SHA
+-e
+-u
+-f
+-a
+-v 3
+-l ADH-AES128-SHA
+
+# client DTLSv1.2 ADH-AES128-SHA
+-B 4000,1310
+-u
+-f
+-a
+-v 3
+-l ADH-AES128-SHA
+
+# server DTLSv1.0 ADH-AES128-SHA
+-e
+-u
+-f
+-a
+-v 2
+-l ADH-AES128-SHA
+
+# client DTLSv1.0 ADH-AES128-SHA
+-B 4000,1310
+-u
+-f
+-a
+-v 2
+-l ADH-AES128-SHA
+
+# server DTLSv1.2 DHE-RSA-CHACHA20-POLY1305
+-e
 -u 1024
 -f
 -v 3
 -l DHE-RSA-CHACHA20-POLY1305
 
 # client DTLSv1.2 DHE-RSA-CHACHA20-POLY1305
+-B 4000,983
 -u 1024
 -f
 -v 3
 -l DHE-RSA-CHACHA20-POLY1305
 
 # server DTLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
+-e
 -u 1024
 -f
 -v 3
 -l ECDHE-RSA-CHACHA20-POLY1305
 
 # client DTLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
+-B 4000,983
 -u 1024
 -f
 -v 3
 -l ECDHE-RSA-CHACHA20-POLY1305
 
 # server DTLSv1.2 ECDHE-EDCSA-CHACHA20-POLY1305
+-e
 -u 1024
 -f
 -v 3
@@ -31,6 +1142,7 @@
 -k ./certs/ecc-key.pem
 
 # client DTLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305
+-B 4000,983
 -u 1024
 -f
 -v 3
@@ -38,6 +1150,7 @@
 -A ./certs/ca-ecc-cert.pem
 
 # server TLSv1.2 DHE-PSK-CHACHA20-POLY1305
+-e
 -u 1024
 -f
 -v 3
@@ -45,6 +1158,7 @@
 -l DHE-PSK-CHACHA20-POLY1305
 
 # client TLSv1.2 DHE-PSK-CHACHA20-POLY1305
+-B 4000,983
 -u 1024
 -f
 -v 3
@@ -52,6 +1166,7 @@
 -l DHE-PSK-CHACHA20-POLY1305
 
 # server TLSv1.2 ECDHE-PSK-CHACHA20-POLY1305
+-e
 -u 1024
 -f
 -v 3
@@ -59,6 +1174,7 @@
 -l ECDHE-PSK-CHACHA20-POLY1305
 
 # client TLSv1.2 ECDHE-PSK-CHACHA20-POLY1305
+-B 4000,983
 -u 1024
 -f
 -v 3
@@ -66,6 +1182,7 @@
 -l ECDHE-PSK-CHACHA20-POLY1305
 
 # server TLSv1.2 PSK-CHACHA20-POLY1305
+-e
 -u 1024
 -f
 -v 3
@@ -73,6 +1190,7 @@
 -l PSK-CHACHA20-POLY1305
 
 # client TLSv1.2 PSK-CHACHA20-POLY1305
+-B 4000,983
 -u 1024
 -f
 -v 3
@@ -80,30 +1198,35 @@
 -l PSK-CHACHA20-POLY1305
 
 # server DTLSv1.2 DHE-RSA-CHACHA20-POLY1305-OLD
+-e
 -u 1024
 -f
 -v 3
 -l DHE-RSA-CHACHA20-POLY1305-OLD
 
 # client DTLSv1.2 DHE-RSA-CHACHA20-POLY1305-OLD
+-B 4000,983
 -u 1024
 -f
 -v 3
 -l DHE-RSA-CHACHA20-POLY1305-OLD
 
 # server DTLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD
+-e
 -u 1024
 -f
 -v 3
 -l ECDHE-RSA-CHACHA20-POLY1305-OLD
 
 # client DTLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD
+-B 4000,983
 -u 1024
 -f
 -v 3
 -l ECDHE-RSA-CHACHA20-POLY1305-OLD
 
 # server DTLSv1.2 ECDHE-EDCSA-CHACHA20-POLY1305-OLD
+-e
 -u 1024
 -f
 -v 3
@@ -112,12 +1235,995 @@
 -k ./certs/ecc-key.pem
 
 # client DTLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD
+-B 4000,983
 -u 1024
 -f
 -v 3
 -l ECDHE-ECDSA-CHACHA20-POLY1305-OLD
 -A ./certs/ca-ecc-cert.pem
 
+# server DTLSv1.1 ECDHE-RSA-DES3
+-e
+-u 1024
+-f
+-v 2
+-l ECDHE-RSA-DES-CBC3-SHA
+
+# client DTLSv1.1 ECDHE-RSA-DES3
+-B 4000,958
+-u 1024
+-f
+-v 2
+-l ECDHE-RSA-DES-CBC3-SHA
+
+# server DTLSv1.1 ECDHE-RSA-AES128
+-e
+-u 1024
+-f
+-v 2
+-l ECDHE-RSA-AES128-SHA
+
+# client DTLSv1.1 ECDHE-RSA-AES128
+-B 4000,934
+-u 1024
+-f
+-v 2
+-l ECDHE-RSA-AES128-SHA
+
+# server DTLSv1.1 ECDHE-RSA-AES256
+-e
+-u 1024
+-f
+-v 2
+-l ECDHE-RSA-AES256-SHA
+
+# client DTLSv1.1 ECDHE-RSA-AES256
+-B 4000,934
+-u 1024
+-f
+-v 2
+-l ECDHE-RSA-AES256-SHA
+
+# server DTLSv1.2 ECDHE-RSA-DES3
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-RSA-DES-CBC3-SHA
+
+# client DTLSv1.2 ECDHE-RSA-DES3
+-B 4000,958
+-u 1024
+-f
+-v 3
+-l ECDHE-RSA-DES-CBC3-SHA
+
+# server DTLSv1.2 ECDHE-RSA-AES128
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-RSA-AES128-SHA
+
+# client DTLSv1.2 ECDHE-RSA-AES128
+-B 4000,934
+-u 1024
+-f
+-v 3
+-l ECDHE-RSA-AES128-SHA
+
+# server DTLSv1.2 ECDHE-RSA-AES128-SHA256
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-RSA-AES128-SHA256
+
+# client DTLSv1.2 ECDHE-RSA-AES128-SHA256
+-B 4000,922
+-u 1024
+-f
+-v 3
+-l ECDHE-RSA-AES128-SHA256
+
+# server DTLSv1.2 ECDHE-RSA-AES256
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-RSA-AES256-SHA
+
+# client DTLSv1.2 ECDHE-RSA-AES256
+-B 4000,934
+-u 1024
+-f
+-v 3
+-l ECDHE-RSA-AES256-SHA
+
+# server TLSv1 ECDHE-ECDSA-NULL-SHA
+-e
+-u 1024
+-f
+-v 1
+-l ECDHE-ECDSA-NULL-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client TLSv1 ECDHE-ECDSA-NULL-SHA
+-B 4000,979
+-u 1024
+-f
+-v 1
+-l ECDHE-ECDSA-NULL-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server TLSv1.1 ECDHE-ECDSA-NULL-SHA
+-e
+-u 1024
+-f
+-v 2
+-l ECDHE-ECDSA-NULL-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client TLSv1 ECDHE-ECDSA-NULL-SHA
+-B 4000,979
+-u 1024
+-f
+-v 2
+-l ECDHE-ECDSA-NULL-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server TLSv1.2 ECDHE-ECDSA-NULL-SHA
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-NULL-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client TLSv1.2 ECDHE-ECDSA-NULL-SHA
+-B 4000,979
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-NULL-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDHE-ECDSA-DES3
+-e
+-u 1024
+-f
+-v 2
+-l ECDHE-ECDSA-DES-CBC3-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDHE-ECDSA-DES3
+-B 4000,958
+-u 1024
+-f
+-v 2
+-l ECDHE-ECDSA-DES-CBC3-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDHE-ECDSA-AES128
+-e
+-u 1024
+-f
+-v 2
+-l ECDHE-ECDSA-AES128-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDHE-ECDSA-AES128
+-B 4000,934
+-u 1024
+-f
+-v 2
+-l ECDHE-ECDSA-AES128-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDHE-ECDSA-AES256
+-e
+-u 1024
+-f
+-v 2
+-l ECDHE-ECDSA-AES256-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDHE-ECDSA-AES256
+-B 4000,934
+-u 1024
+-f
+-v 2
+-l ECDHE-ECDSA-AES256-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-DES3
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-DES-CBC3-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-DES3
+-B 4000,958
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-DES-CBC3-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128
+-B 4000,934
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-SHA256
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-SHA256
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-SHA256
+-B 4000,922
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-SHA256
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256
+-B 4000,934
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDH-RSA-DES3
+-e
+-u 1024
+-f
+-v 2
+-l ECDH-RSA-DES-CBC3-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-RSA-DES3
+-B 4000,958
+-u 1024
+-f
+-v 2
+-l ECDH-RSA-DES-CBC3-SHA
+
+# server DTLSv1.1 ECDH-RSA-AES128
+-e
+-u 1024
+-f
+-v 2
+-l ECDH-RSA-AES128-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-RSA-AES128
+-B 4000,934
+-u 1024
+-f
+-v 2
+-l ECDH-RSA-AES128-SHA
+
+# server DTLSv1.1 ECDH-RSA-AES256
+-e
+-u 1024
+-f
+-v 2
+-l ECDH-RSA-AES256-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-RSA-AES256
+-B 4000,934
+-u 1024
+-f
+-v 2
+-l ECDH-RSA-AES256-SHA
+
+# server DTLSv1.2 ECDH-RSA-DES3
+-e
+-u 1024
+-f
+-v 3
+-l ECDH-RSA-DES-CBC3-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-DES3
+-B 4000,958
+-u 1024
+-f
+-v 3
+-l ECDH-RSA-DES-CBC3-SHA
+
+# server DTLSv1.2 ECDH-RSA-AES128
+-e
+-u 1024
+-f
+-v 3
+-l ECDH-RSA-AES128-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES128
+-B 4000,934
+-u 1024
+-f
+-v 3
+-l ECDH-RSA-AES128-SHA
+
+# server DTLSv1.2 ECDH-RSA-AES128-SHA256
+-e
+-u 1024
+-f
+-v 3
+-l ECDH-RSA-AES128-SHA256
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES128-SHA256
+-B 4000,922
+-u 1024
+-f
+-v 3
+-l ECDH-RSA-AES128-SHA256
+
+# server DTLSv1.2 ECDH-RSA-AES256
+-e
+-u 1024
+-f
+-v 3
+-l ECDH-RSA-AES256-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES256
+-B 4000,934
+-u 1024
+-f
+-v 3
+-l ECDH-RSA-AES256-SHA
+
+# server DTLSv1.1 ECDH-ECDSA-DES3
+-e
+-u 1024
+-f
+-v 2
+-l ECDH-ECDSA-DES-CBC3-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-ECDSA-DES3
+-B 4000,958
+-u 1024
+-f
+-v 2
+-l ECDH-ECDSA-DES-CBC3-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDH-ECDSA-AES128
+-e
+-u 1024
+-f
+-v 2
+-l ECDH-ECDSA-AES128-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-ECDSA-AES128
+-B 4000,934
+-u 1024
+-f
+-v 2
+-l ECDH-ECDSA-AES128-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDH-ECDSA-AES256
+-e
+-u 1024
+-f
+-v 2
+-l ECDH-ECDSA-AES256-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-ECDSA-AES256
+-B 4000,934
+-u 1024
+-f
+-v 2
+-l ECDH-ECDSA-AES256-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-DES3
+-e
+-u 1024
+-f
+-v 3
+-l ECDH-ECDSA-DES-CBC3-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-DES3
+-B 4000,958
+-u 1024
+-f
+-v 3
+-l ECDH-ECDSA-DES-CBC3-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES128
+-e
+-u 1024
+-f
+-v 3
+-l ECDH-ECDSA-AES128-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES128
+-B 4000,934
+-u 1024
+-f
+-v 3
+-l ECDH-ECDSA-AES128-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES128-SHA256
+-e
+-u 1024
+-f
+-v 3
+-l ECDH-ECDSA-AES128-SHA256
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES128-SHA256
+-B 4000,922
+-u 1024
+-f
+-v 3
+-l ECDH-ECDSA-AES128-SHA256
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES256
+-e
+-u 1024
+-f
+-v 3
+-l ECDH-ECDSA-AES256-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES256
+-B 4000,934
+-u 1024
+-f
+-v 3
+-l ECDH-ECDSA-AES256-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-RSA-AES256-SHA384
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-RSA-AES256-SHA384
+
+# client DTLSv1.2 ECDHE-RSA-AES256-SHA384
+-B 4000,906
+-u 1024
+-f
+-v 3
+-l ECDHE-RSA-AES256-SHA384
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256-SHA384
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-SHA384
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256-SHA384
+-B 4000,906
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-SHA384
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-RSA-AES256-SHA384
+-e
+-u 1024
+-f
+-v 3
+-l ECDH-RSA-AES256-SHA384
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES256-SHA384
+-B 4000,906
+-u 1024
+-f
+-v 3
+-l ECDH-RSA-AES256-SHA384
+
+# server DTLSv1.2 ECDH-ECDSA-AES256-SHA384
+-e
+-u 1024
+-f
+-v 3
+-l ECDH-ECDSA-AES256-SHA384
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES256-SHA384
+-B 4000,906
+-u 1024
+-f
+-v 3
+-l ECDH-ECDSA-AES256-SHA384
+-A ./certs/ca-ecc-cert.pem
+
+# server TLSv1.2 ECDHE-PSK-AES128-CBC-SHA256
+-e
+-s
+-u 1024
+-f
+-v 3
+-l ECDHE-PSK-AES128-CBC-SHA256
+
+# client TLSv1.2 ECDHE-PSK-AES128-CBC-SHA256
+-B 4000,922
+-s
+-u 1024
+-f
+-v 3
+-l ECDHE-PSK-AES128-CBC-SHA256
+
+# server TLSv1.2 ECDHE-PSK-AES128-SHA256
+-s
+-u 1024
+-f
+-v 3
+-l ECDHE-PSK-AES128-SHA256
+
+# client TLSv1.2 ECDHE-PSK-AES128-SHA256
+-s
+-u 1024
+-f
+-v 3
+-l ECDHE-PSK-AES128-SHA256
+
+# server TLSv1.2 ECDHE-PSK-NULL-SHA256
+-e
+-s
+-u 1024
+-f
+-v 3
+-l ECDHE-PSK-NULL-SHA256
+
+# client TLSv1.2 ECDHE-PSK-NULL-SHA256
+-B 4000,967
+-s
+-u 1024
+-f
+-v 3
+-l ECDHE-PSK-NULL-SHA256
+
+# server DTLSv1 PSK-AES128
+-e
+-s
+-u 1024
+-f
+-v 2
+-l PSK-AES128-CBC-SHA
+
+# client DTLSv1 PSK-AES128
+-B 4000,934
+-s
+-u 1024
+-f
+-v 2
+-l PSK-AES128-CBC-SHA
+
+# server DTLSv1 PSK-AES256
+-e
+-s
+-u 1024
+-f
+-v 2
+-l PSK-AES256-CBC-SHA
+
+# client DTLSv1 PSK-AES256
+-B 4000,934
+-s
+-u 1024
+-f
+-v 2
+-l PSK-AES256-CBC-SHA
+
+# server DTLSv1.2 PSK-AES128
+-e
+-s
+-u 1024
+-f
+-v 3
+-l PSK-AES128-CBC-SHA
+
+# client DTLSv1.2 PSK-AES128
+-B 4000,934
+-s
+-u 1024
+-f
+-v 3
+-l PSK-AES128-CBC-SHA
+
+# server DTLSv1.2 PSK-AES256
+-e
+-s
+-u 1024
+-f
+-v 3
+-l PSK-AES256-CBC-SHA
+
+# client DTLSv1.2 PSK-AES256
+-B 4000,934
+-s
+-u 1024
+-f
+-v 3
+-l PSK-AES256-CBC-SHA
+
+# server DTLSv1.2 PSK-AES128-SHA256
+-e
+-s
+-u 1024
+-f
+-v 3
+-l PSK-AES128-CBC-SHA256
+
+# client DTLSv1.2 PSK-AES128-SHA256
+-B 4000,922
+-s
+-u 1024
+-f
+-v 3
+-l PSK-AES128-CBC-SHA256
+
+# server DTLSv1.2 PSK-AES256-SHA384
+-e
+-s
+-u 1024
+-f
+-v 3
+-l PSK-AES256-CBC-SHA384
+
+# client DTLSv1.2 PSK-AES256-SHA384
+-B 4000,906
+-s
+-u 1024
+-f
+-v 3
+-l PSK-AES256-CBC-SHA384
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-GCM-SHA256
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256
+-B 4000,975
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-GCM-SHA256
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-GCM-SHA384
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384
+-B 4000,975
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-GCM-SHA384
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES128-GCM-SHA256
+-e
+-u 1024
+-f
+-v 3
+-l ECDH-ECDSA-AES128-GCM-SHA256
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES128-GCM-SHA256
+-B 4000,975
+-u 1024
+-f
+-v 3
+-l ECDH-ECDSA-AES128-GCM-SHA256
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES256-GCM-SHA384
+-e
+-u 1024
+-f
+-v 3
+-l ECDH-ECDSA-AES256-GCM-SHA384
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES256-GCM-SHA384
+-B 4000,975
+-u 1024
+-f
+-v 3
+-l ECDH-ECDSA-AES256-GCM-SHA384
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-RSA-AES128-GCM-SHA256
+
+# client DTLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
+-B 4000,975
+-u 1024
+-f
+-v 3
+-l ECDHE-RSA-AES128-GCM-SHA256
+
+# server DTLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-RSA-AES256-GCM-SHA384
+
+# client DTLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
+-B 4000,975
+-u 1024
+-f
+-v 3
+-l ECDHE-RSA-AES256-GCM-SHA384
+
+# server DTLSv1.2 ECDH-RSA-AES128-GCM-SHA256
+-e
+-u 1024
+-f
+-v 3
+-l ECDH-RSA-AES128-GCM-SHA256
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES128-GCM-SHA256
+-B 4000,975
+-u 1024
+-f
+-v 3
+-l ECDH-RSA-AES128-GCM-SHA256
+
+# server DTLSv1.2 ECDH-RSA-AES256-GCM-SHA384
+-e
+-u 1024
+-f
+-v 3
+-l ECDH-RSA-AES256-GCM-SHA384
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES256-GCM-SHA384
+-B 4000,975
+-u 1024
+-f
+-v 3
+-l ECDH-RSA-AES256-GCM-SHA384
+
+# server DTLSv1.2 PSK-AES128-GCM-SHA256
+-e
+-u 1024
+-f
+-s
+-v 3
+-l PSK-AES128-GCM-SHA256
+
+# client DTLSv1.2 PSK-AES128-GCM-SHA256
+-B 4000,975
+-u 1024
+-f
+-s
+-v 3
+-l PSK-AES128-GCM-SHA256
+
+# server DTLSv1.2 PSK-AES256-GCM-SHA384
+-e
+-u 1024
+-f
+-s
+-v 3
+-l PSK-AES256-GCM-SHA384
+
+# client DTLSv1.2 PSK-AES256-GCM-SHA384
+-B 4000,975
+-u 1024
+-f
+-s
+-v 3
+-l PSK-AES256-GCM-SHA384
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM
+-B 4000,975
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM-8
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM-8
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM-8
+-B 4000,983
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM-8
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256-CCM-8
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-CCM-8
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256-CCM-8
+-B 4000,983
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-CCM-8
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM8 (OpenSSL-compat alias)
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM8
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM8 (OpenSSL-compat alias)
+-B 4000,983
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM8
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256-CCM8 (OpenSSL-compat alias)
+-e
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-CCM8
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256-CCM8 (OpenSSL-compat alias)
+-B 4000,983
+-u 1024
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-CCM8
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ADH-AES128-SHA
+-e
+-u 1024
+-f
+-a
+-v 3
+-l ADH-AES128-SHA
+
+# client DTLSv1.2 ADH-AES128-SHA
+-B 4000,934
+-u 1024
+-f
+-a
+-v 3
+-l ADH-AES128-SHA
+
+# server DTLSv1.0 ADH-AES128-SHA
+-e
+-u 1024
+-f
+-a
+-v 2
+-l ADH-AES128-SHA
+
+# client DTLSv1.0 ADH-AES128-SHA
+-B 4000,934
+-u 1024
+-f
+-a
+-v 2
+-l ADH-AES128-SHA
+
 # server DTLSv1 IDEA-CBC-SHA
 -u 1024
 -f
@@ -226,879 +2332,36 @@
 -v 3
 -l AES256-SHA256
 
-# server DTLSv1.1 ECDHE-RSA-DES3
--u 1024
--f
--v 2
--l ECDHE-RSA-DES-CBC3-SHA
-
-# client DTLSv1.1 ECDHE-RSA-DES3
--u 1024
--f
--v 2
--l ECDHE-RSA-DES-CBC3-SHA
-
-# server DTLSv1.1 ECDHE-RSA-AES128
--u 1024
--f
--v 2
--l ECDHE-RSA-AES128-SHA
-
-# client DTLSv1.1 ECDHE-RSA-AES128
--u 1024
--f
--v 2
--l ECDHE-RSA-AES128-SHA
-
-# server DTLSv1.1 ECDHE-RSA-AES256
--u 1024
--f
--v 2
--l ECDHE-RSA-AES256-SHA
-
-# client DTLSv1.1 ECDHE-RSA-AES256
--u 1024
--f
--v 2
--l ECDHE-RSA-AES256-SHA
-
-# server DTLSv1.2 ECDHE-RSA-DES3
--u 1024
--f
--v 3
--l ECDHE-RSA-DES-CBC3-SHA
-
-# client DTLSv1.2 ECDHE-RSA-DES3
--u 1024
--f
--v 3
--l ECDHE-RSA-DES-CBC3-SHA
-
-# server DTLSv1.2 ECDHE-RSA-AES128
--u 1024
--f
--v 3
--l ECDHE-RSA-AES128-SHA
-
-# client DTLSv1.2 ECDHE-RSA-AES128
--u 1024
--f
--v 3
--l ECDHE-RSA-AES128-SHA
-
-# server DTLSv1.2 ECDHE-RSA-AES128-SHA256
--u 1024
--f
--v 3
--l ECDHE-RSA-AES128-SHA256
-
-# client DTLSv1.2 ECDHE-RSA-AES128-SHA256
--u 1024
--f
--v 3
--l ECDHE-RSA-AES128-SHA256
-
-# server DTLSv1.2 ECDHE-RSA-AES256
--u 1024
--f
--v 3
--l ECDHE-RSA-AES256-SHA
-
-# client DTLSv1.2 ECDHE-RSA-AES256
--u 1024
--f
--v 3
--l ECDHE-RSA-AES256-SHA
-
-# server TLSv1 ECDHE-ECDSA-NULL-SHA
--u 1024
--f
--v 1
--l ECDHE-ECDSA-NULL-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client TLSv1 ECDHE-ECDSA-NULL-SHA
--u 1024
--f
--v 1
--l ECDHE-ECDSA-NULL-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server TLSv1.1 ECDHE-ECDSA-NULL-SHA
--u 1024
--f
--v 2
--l ECDHE-ECDSA-NULL-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client TLSv1 ECDHE-ECDSA-NULL-SHA
--u 1024
--f
--v 2
--l ECDHE-ECDSA-NULL-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server TLSv1.2 ECDHE-ECDSA-NULL-SHA
--u 1024
--f
--v 3
--l ECDHE-ECDSA-NULL-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client TLSv1.2 ECDHE-ECDSA-NULL-SHA
--u 1024
--f
--v 3
--l ECDHE-ECDSA-NULL-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.1 ECDHE-ECDSA-DES3
--u 1024
--f
--v 2
--l ECDHE-ECDSA-DES-CBC3-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDHE-ECDSA-DES3
--u 1024
--f
--v 2
--l ECDHE-ECDSA-DES-CBC3-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.1 ECDHE-ECDSA-AES128
--u 1024
--f
--v 2
--l ECDHE-ECDSA-AES128-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDHE-ECDSA-AES128
--u 1024
--f
--v 2
--l ECDHE-ECDSA-AES128-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.1 ECDHE-ECDSA-AES256
--u 1024
--f
--v 2
--l ECDHE-ECDSA-AES256-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDHE-ECDSA-AES256
--u 1024
--f
--v 2
--l ECDHE-ECDSA-AES256-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-DES3
--u 1024
--f
--v 3
--l ECDHE-ECDSA-DES-CBC3-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-DES3
--u 1024
--f
--v 3
--l ECDHE-ECDSA-DES-CBC3-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES128
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES128-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES128
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES128-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES128-SHA256
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES128-SHA256
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES128-SHA256
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES128-SHA256
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES256
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES256-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES256
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES256-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.1 ECDH-RSA-DES3
--u 1024
--f
--v 2
--l ECDH-RSA-DES-CBC3-SHA
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDH-RSA-DES3
--u 1024
--f
--v 2
--l ECDH-RSA-DES-CBC3-SHA
-
-# server DTLSv1.1 ECDH-RSA-AES128
--u 1024
--f
--v 2
--l ECDH-RSA-AES128-SHA
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDH-RSA-AES128
--u 1024
--f
--v 2
--l ECDH-RSA-AES128-SHA
-
-# server DTLSv1.1 ECDH-RSA-AES256
--u 1024
--f
--v 2
--l ECDH-RSA-AES256-SHA
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDH-RSA-AES256
--u 1024
--f
--v 2
--l ECDH-RSA-AES256-SHA
-
-# server DTLSv1.2 ECDH-RSA-DES3
--u 1024
--f
--v 3
--l ECDH-RSA-DES-CBC3-SHA
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-RSA-DES3
--u 1024
--f
--v 3
--l ECDH-RSA-DES-CBC3-SHA
-
-# server DTLSv1.2 ECDH-RSA-AES128
--u 1024
--f
--v 3
--l ECDH-RSA-AES128-SHA
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-RSA-AES128
--u 1024
--f
--v 3
--l ECDH-RSA-AES128-SHA
-
-# server DTLSv1.2 ECDH-RSA-AES128-SHA256
--u 1024
--f
--v 3
--l ECDH-RSA-AES128-SHA256
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-RSA-AES128-SHA256
--u 1024
--f
--v 3
--l ECDH-RSA-AES128-SHA256
-
-# server DTLSv1.2 ECDH-RSA-AES256
--u 1024
--f
--v 3
--l ECDH-RSA-AES256-SHA
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-RSA-AES256
--u 1024
--f
--v 3
--l ECDH-RSA-AES256-SHA
-
-# server DTLSv1.1 ECDH-ECDSA-DES3
--u 1024
--f
--v 2
--l ECDH-ECDSA-DES-CBC3-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDH-ECDSA-DES3
--u 1024
--f
--v 2
--l ECDH-ECDSA-DES-CBC3-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.1 ECDH-ECDSA-AES128
--u 1024
--f
--v 2
--l ECDH-ECDSA-AES128-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDH-ECDSA-AES128
--u 1024
--f
--v 2
--l ECDH-ECDSA-AES128-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.1 ECDH-ECDSA-AES256
--u 1024
--f
--v 2
--l ECDH-ECDSA-AES256-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDH-ECDSA-AES256
--u 1024
--f
--v 2
--l ECDH-ECDSA-AES256-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDH-ECDSA-DES3
--u 1024
--f
--v 3
--l ECDH-ECDSA-DES-CBC3-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-ECDSA-DES3
--u 1024
--f
--v 3
--l ECDH-ECDSA-DES-CBC3-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDH-ECDSA-AES128
--u 1024
--f
--v 3
--l ECDH-ECDSA-AES128-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-ECDSA-AES128
--u 1024
--f
--v 3
--l ECDH-ECDSA-AES128-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDH-ECDSA-AES128-SHA256
--u 1024
--f
--v 3
--l ECDH-ECDSA-AES128-SHA256
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-ECDSA-AES128-SHA256
--u 1024
--f
--v 3
--l ECDH-ECDSA-AES128-SHA256
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDH-ECDSA-AES256
--u 1024
--f
--v 3
--l ECDH-ECDSA-AES256-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-ECDSA-AES256
--u 1024
--f
--v 3
--l ECDH-ECDSA-AES256-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-RSA-AES256-SHA384
--u 1024
--f
--v 3
--l ECDHE-RSA-AES256-SHA384
-
-# client DTLSv1.2 ECDHE-RSA-AES256-SHA384
--u 1024
--f
--v 3
--l ECDHE-RSA-AES256-SHA384
-
-# server DTLSv1.2 ECDHE-ECDSA-AES256-SHA384
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES256-SHA384
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES256-SHA384
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES256-SHA384
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDH-RSA-AES256-SHA384
--u 1024
--f
--v 3
--l ECDH-RSA-AES256-SHA384
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-RSA-AES256-SHA384
--u 1024
--f
--v 3
--l ECDH-RSA-AES256-SHA384
-
-# server DTLSv1.2 ECDH-ECDSA-AES256-SHA384
--u 1024
--f
--v 3
--l ECDH-ECDSA-AES256-SHA384
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-ECDSA-AES256-SHA384
--u 1024
--f
--v 3
--l ECDH-ECDSA-AES256-SHA384
--A ./certs/ca-ecc-cert.pem
-
-# server TLSv1.2 ECDHE-PSK-AES128-SHA256
--s
--u 1024
--f
--v 3
--l ECDHE-PSK-AES128-SHA256
-
-# client TLSv1.2 ECDHE-PSK-AES128-SHA256
--s
--u 1024
--f
--v 3
--l ECDHE-PSK-AES128-SHA256
-
-# server TLSv1.2 ECDHE-PSK-NULL-SHA256
--s
--u 1024
--f
--v 3
--l ECDHE-PSK-NULL-SHA256
-
-# client TLSv1.2 ECDHE-PSK-NULL-SHA256
--s
--u 1024
--f
--v 3
--l ECDHE-PSK-NULL-SHA256
-
-# server DTLSv1 PSK-AES128
--s
--u 1024
--f
--v 2
--l PSK-AES128-CBC-SHA
-
-# client DTLSv1 PSK-AES128
--s
--u 1024
--f
--v 2
--l PSK-AES128-CBC-SHA
-
-# server DTLSv1 PSK-AES256
--s
--u 1024
--f
--v 2
--l PSK-AES256-CBC-SHA
-
-# client DTLSv1 PSK-AES256
--s
--u 1024
--f
--v 2
--l PSK-AES256-CBC-SHA
-
-# server DTLSv1.2 PSK-AES128
--s
--u 1024
--f
--v 3
--l PSK-AES128-CBC-SHA
-
-# client DTLSv1.2 PSK-AES128
--s
--u 1024
--f
--v 3
--l PSK-AES128-CBC-SHA
-
-# server DTLSv1.2 PSK-AES256
--s
--u 1024
--f
--v 3
--l PSK-AES256-CBC-SHA
-
-# client DTLSv1.2 PSK-AES256
--s
--u 1024
--f
--v 3
--l PSK-AES256-CBC-SHA
-
-# server DTLSv1.2 PSK-AES128-SHA256
--s
--u 1024
--f
--v 3
--l PSK-AES128-CBC-SHA256
-
-# client DTLSv1.2 PSK-AES128-SHA256
--s
--u 1024
--f
--v 3
--l PSK-AES128-CBC-SHA256
-
-# server DTLSv1.2 PSK-AES256-SHA384
--s
--u 1024
--f
--v 3
--l PSK-AES256-CBC-SHA384
-
-# client DTLSv1.2 PSK-AES256-SHA384
--s
--u 1024
--f
--v 3
--l PSK-AES256-CBC-SHA384
-
-# server DTLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES128-GCM-SHA256
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES128-GCM-SHA256
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES256-GCM-SHA384
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES256-GCM-SHA384
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDH-ECDSA-AES128-GCM-SHA256
--u 1024
--f
--v 3
--l ECDH-ECDSA-AES128-GCM-SHA256
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-ECDSA-AES128-GCM-SHA256
--u 1024
--f
--v 3
--l ECDH-ECDSA-AES128-GCM-SHA256
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDH-ECDSA-AES256-GCM-SHA384
--u 1024
--f
--v 3
--l ECDH-ECDSA-AES256-GCM-SHA384
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-ECDSA-AES256-GCM-SHA384
--u 1024
--f
--v 3
--l ECDH-ECDSA-AES256-GCM-SHA384
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
--u 1024
--f
--v 3
--l ECDHE-RSA-AES128-GCM-SHA256
-
-# client DTLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
--u 1024
--f
--v 3
--l ECDHE-RSA-AES128-GCM-SHA256
-
-# server DTLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
--u 1024
--f
--v 3
--l ECDHE-RSA-AES256-GCM-SHA384
-
-# client DTLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
--u 1024
--f
--v 3
--l ECDHE-RSA-AES256-GCM-SHA384
-
-# server DTLSv1.2 ECDH-RSA-AES128-GCM-SHA256
--u 1024
--f
--v 3
--l ECDH-RSA-AES128-GCM-SHA256
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-RSA-AES128-GCM-SHA256
--u 1024
--f
--v 3
--l ECDH-RSA-AES128-GCM-SHA256
-
-# server DTLSv1.2 ECDH-RSA-AES256-GCM-SHA384
--u 1024
--f
--v 3
--l ECDH-RSA-AES256-GCM-SHA384
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-RSA-AES256-GCM-SHA384
--u 1024
--f
--v 3
--l ECDH-RSA-AES256-GCM-SHA384
-
-# server DTLSv1.2 PSK-AES128-GCM-SHA256
--u 1024
--f
--s
--v 3
--l PSK-AES128-GCM-SHA256
-
-# client DTLSv1.2 PSK-AES128-GCM-SHA256
--u 1024
--f
--s
--v 3
--l PSK-AES128-GCM-SHA256
-
-# server DTLSv1.2 PSK-AES256-GCM-SHA384
--u 1024
--f
--s
--v 3
--l PSK-AES256-GCM-SHA384
-
-# client DTLSv1.2 PSK-AES256-GCM-SHA384
--u 1024
--f
--s
--v 3
--l PSK-AES256-GCM-SHA384
-
-# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES128-CCM
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES128-CCM
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM-8
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES128-CCM-8
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM-8
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES128-CCM-8
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES256-CCM-8
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES256-CCM-8
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES256-CCM-8
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES256-CCM-8
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM8 (OpenSSL-compat alias)
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES128-CCM8
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM8 (OpenSSL-compat alias)
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES128-CCM8
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES256-CCM8 (OpenSSL-compat alias)
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES256-CCM8
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES256-CCM8 (OpenSSL-compat alias)
--u 1024
--f
--v 3
--l ECDHE-ECDSA-AES256-CCM8
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ADH-AES128-SHA
--u 1024
--f
--a
--v 3
--l ADH-AES128-SHA
-
-# client DTLSv1.2 ADH-AES128-SHA
--u 1024
--f
--a
--v 3
--l ADH-AES128-SHA
-
-# server DTLSv1.0 ADH-AES128-SHA
--u 1024
--f
--a
--v 2
--l ADH-AES128-SHA
-
-# client DTLSv1.0 ADH-AES128-SHA
--u 1024
--f
--a
--v 2
--l ADH-AES128-SHA
-
 # server DTLSv1.2 DHE-RSA-CHACHA20-POLY1305
+-e
 -u 512
 -f
 -v 3
 -l DHE-RSA-CHACHA20-POLY1305
 
 # client DTLSv1.2 DHE-RSA-CHACHA20-POLY1305
+-B 4000,471
 -u 512
 -f
 -v 3
 -l DHE-RSA-CHACHA20-POLY1305
 
 # server DTLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
+-e
 -u 512
 -f
 -v 3
 -l ECDHE-RSA-CHACHA20-POLY1305
 
 # client DTLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
+-B 4000,471
 -u 512
 -f
 -v 3
 -l ECDHE-RSA-CHACHA20-POLY1305
 
 # server DTLSv1.2 ECDHE-EDCSA-CHACHA20-POLY1305
+-e
 -u 512
 -f
 -v 3
@@ -1107,6 +2370,7 @@
 -k ./certs/ecc-key.pem
 
 # client DTLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305
+-B 4000,471
 -u 512
 -f
 -v 3
@@ -1114,6 +2378,7 @@
 -A ./certs/ca-ecc-cert.pem
 
 # server TLSv1.2 DHE-PSK-CHACHA20-POLY1305
+-e
 -u 512
 -f
 -v 3
@@ -1121,6 +2386,7 @@
 -l DHE-PSK-CHACHA20-POLY1305
 
 # client TLSv1.2 DHE-PSK-CHACHA20-POLY1305
+-B 4000,471
 -u 512
 -f
 -v 3
@@ -1128,6 +2394,7 @@
 -l DHE-PSK-CHACHA20-POLY1305
 
 # server TLSv1.2 ECDHE-PSK-CHACHA20-POLY1305
+-e
 -u 512
 -f
 -v 3
@@ -1135,6 +2402,7 @@
 -l ECDHE-PSK-CHACHA20-POLY1305
 
 # client TLSv1.2 ECDHE-PSK-CHACHA20-POLY1305
+-B 4000,471
 -u 512
 -f
 -v 3
@@ -1142,6 +2410,7 @@
 -l ECDHE-PSK-CHACHA20-POLY1305
 
 # server TLSv1.2 PSK-CHACHA20-POLY1305
+-e
 -u 512
 -f
 -v 3
@@ -1149,6 +2418,7 @@
 -l PSK-CHACHA20-POLY1305
 
 # client TLSv1.2 PSK-CHACHA20-POLY1305
+-B 4000,471
 -u 512
 -f
 -v 3
@@ -1156,30 +2426,35 @@
 -l PSK-CHACHA20-POLY1305
 
 # server DTLSv1.2 DHE-RSA-CHACHA20-POLY1305-OLD
+-e
 -u 512
 -f
 -v 3
 -l DHE-RSA-CHACHA20-POLY1305-OLD
 
 # client DTLSv1.2 DHE-RSA-CHACHA20-POLY1305-OLD
+-B 4000,471
 -u 512
 -f
 -v 3
 -l DHE-RSA-CHACHA20-POLY1305-OLD
 
 # server DTLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD
+-e
 -u 512
 -f
 -v 3
 -l ECDHE-RSA-CHACHA20-POLY1305-OLD
 
 # client DTLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD
+-B 4000,471
 -u 512
 -f
 -v 3
 -l ECDHE-RSA-CHACHA20-POLY1305-OLD
 
 # server DTLSv1.2 ECDHE-EDCSA-CHACHA20-POLY1305-OLD
+-e
 -u 512
 -f
 -v 3
@@ -1188,12 +2463,981 @@
 -k ./certs/ecc-key.pem
 
 # client DTLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD
+-B 4000,471
 -u 512
 -f
 -v 3
 -l ECDHE-ECDSA-CHACHA20-POLY1305-OLD
 -A ./certs/ca-ecc-cert.pem
 
+# server DTLSv1.1 ECDHE-RSA-DES3
+-e
+-u 512
+-f
+-v 2
+-l ECDHE-RSA-DES-CBC3-SHA
+
+# client DTLSv1.1 ECDHE-RSA-DES3
+-B 4000,446
+-u 512
+-f
+-v 2
+-l ECDHE-RSA-DES-CBC3-SHA
+
+# server DTLSv1.1 ECDHE-RSA-AES128
+-e
+-u 512
+-f
+-v 2
+-l ECDHE-RSA-AES128-SHA
+
+# client DTLSv1.1 ECDHE-RSA-AES128
+-B 4000,422
+-u 512
+-f
+-v 2
+-l ECDHE-RSA-AES128-SHA
+
+# server DTLSv1.1 ECDHE-RSA-AES256
+-e
+-u 512
+-f
+-v 2
+-l ECDHE-RSA-AES256-SHA
+
+# client DTLSv1.1 ECDHE-RSA-AES256
+-B 4000,422
+-u 512
+-f
+-v 2
+-l ECDHE-RSA-AES256-SHA
+
+# server DTLSv1.2 ECDHE-RSA-DES3
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-RSA-DES-CBC3-SHA
+
+# client DTLSv1.2 ECDHE-RSA-DES3
+-B 4000,446
+-u 512
+-f
+-v 3
+-l ECDHE-RSA-DES-CBC3-SHA
+
+# server DTLSv1.2 ECDHE-RSA-AES128
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-RSA-AES128-SHA
+
+# client DTLSv1.2 ECDHE-RSA-AES128
+-B 4000,422
+-u 512
+-f
+-v 3
+-l ECDHE-RSA-AES128-SHA
+
+# server DTLSv1.2 ECDHE-RSA-AES128-SHA256
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-RSA-AES128-SHA256
+
+# client DTLSv1.2 ECDHE-RSA-AES128-SHA256
+-B 4000,410
+-u 512
+-f
+-v 3
+-l ECDHE-RSA-AES128-SHA256
+
+# server DTLSv1.2 ECDHE-RSA-AES256
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-RSA-AES256-SHA
+
+# client DTLSv1.2 ECDHE-RSA-AES256
+-B 4000,422
+-u 512
+-f
+-v 3
+-l ECDHE-RSA-AES256-SHA
+
+# server TLSv1 ECDHE-ECDSA-NULL-SHA
+-e
+-u 512
+-f
+-v 1
+-l ECDHE-ECDSA-NULL-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client TLSv1 ECDHE-ECDSA-NULL-SHA
+-B 4000,467
+-u 512
+-f
+-v 1
+-l ECDHE-ECDSA-NULL-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server TLSv1.1 ECDHE-ECDSA-NULL-SHA
+-e
+-u 512
+-f
+-v 2
+-l ECDHE-ECDSA-NULL-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client TLSv1 ECDHE-ECDSA-NULL-SHA
+-B 4000,467
+-u 512
+-f
+-v 2
+-l ECDHE-ECDSA-NULL-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server TLSv1.2 ECDHE-ECDSA-NULL-SHA
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-NULL-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client TLSv1.2 ECDHE-ECDSA-NULL-SHA
+-B 4000,467
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-NULL-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDHE-ECDSA-DES3
+-e
+-u 512
+-f
+-v 2
+-l ECDHE-ECDSA-DES-CBC3-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDHE-ECDSA-DES3
+-B 4000,446
+-u 512
+-f
+-v 2
+-l ECDHE-ECDSA-DES-CBC3-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDHE-ECDSA-AES128
+-e
+-u 512
+-f
+-v 2
+-l ECDHE-ECDSA-AES128-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDHE-ECDSA-AES128
+-B 4000,422
+-u 512
+-f
+-v 2
+-l ECDHE-ECDSA-AES128-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDHE-ECDSA-AES256
+-e
+-u 512
+-f
+-v 2
+-l ECDHE-ECDSA-AES256-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDHE-ECDSA-AES256
+-B 4000,422
+-u 512
+-f
+-v 2
+-l ECDHE-ECDSA-AES256-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-DES3
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-DES-CBC3-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-DES3
+-B 4000,446
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-DES-CBC3-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128
+-B 4000,422
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-SHA256
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-SHA256
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-SHA256
+-B 4000,410
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-SHA256
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256
+-B 4000,422
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDH-RSA-DES3
+-e
+-u 512
+-f
+-v 2
+-l ECDH-RSA-DES-CBC3-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-RSA-DES3
+-B 4000,446
+-u 512
+-f
+-v 2
+-l ECDH-RSA-DES-CBC3-SHA
+
+# server DTLSv1.1 ECDH-RSA-AES128
+-e
+-u 512
+-f
+-v 2
+-l ECDH-RSA-AES128-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-RSA-AES128
+-B 4000,422
+-u 512
+-f
+-v 2
+-l ECDH-RSA-AES128-SHA
+
+# server DTLSv1.1 ECDH-RSA-AES256
+-e
+-u 512
+-f
+-v 2
+-l ECDH-RSA-AES256-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-RSA-AES256
+-B 4000,422
+-u 512
+-f
+-v 2
+-l ECDH-RSA-AES256-SHA
+
+# server DTLSv1.2 ECDH-RSA-DES3
+-e
+-u 512
+-f
+-v 3
+-l ECDH-RSA-DES-CBC3-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-DES3
+-B 4000,446
+-u 512
+-f
+-v 3
+-l ECDH-RSA-DES-CBC3-SHA
+
+# server DTLSv1.2 ECDH-RSA-AES128
+-e
+-u 512
+-f
+-v 3
+-l ECDH-RSA-AES128-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES128
+-B 4000,422
+-u 512
+-f
+-v 3
+-l ECDH-RSA-AES128-SHA
+
+# server DTLSv1.2 ECDH-RSA-AES128-SHA256
+-e
+-u 512
+-f
+-v 3
+-l ECDH-RSA-AES128-SHA256
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES128-SHA256
+-B 4000,410
+-u 512
+-f
+-v 3
+-l ECDH-RSA-AES128-SHA256
+
+# server DTLSv1.2 ECDH-RSA-AES256
+-e
+-u 512
+-f
+-v 3
+-l ECDH-RSA-AES256-SHA
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES256
+-B 4000,422
+-u 512
+-f
+-v 3
+-l ECDH-RSA-AES256-SHA
+
+# server DTLSv1.1 ECDH-ECDSA-DES3
+-e
+-u 512
+-f
+-v 2
+-l ECDH-ECDSA-DES-CBC3-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-ECDSA-DES3
+-B 4000,446
+-u 512
+-f
+-v 2
+-l ECDH-ECDSA-DES-CBC3-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDH-ECDSA-AES128
+-e
+-u 512
+-f
+-v 2
+-l ECDH-ECDSA-AES128-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-ECDSA-AES128
+-B 4000,422
+-u 512
+-f
+-v 2
+-l ECDH-ECDSA-AES128-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.1 ECDH-ECDSA-AES256
+-e
+-u 512
+-f
+-v 2
+-l ECDH-ECDSA-AES256-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.1 ECDH-ECDSA-AES256
+-B 4000,422
+-u 512
+-f
+-v 2
+-l ECDH-ECDSA-AES256-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-DES3
+-e
+-u 512
+-f
+-v 3
+-l ECDH-ECDSA-DES-CBC3-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-DES3
+-B 4000,446
+-u 512
+-f
+-v 3
+-l ECDH-ECDSA-DES-CBC3-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES128
+-e
+-u 512
+-f
+-v 3
+-l ECDH-ECDSA-AES128-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES128
+-B 4000,422
+-u 512
+-f
+-v 3
+-l ECDH-ECDSA-AES128-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES128-SHA256
+-e
+-u 512
+-f
+-v 3
+-l ECDH-ECDSA-AES128-SHA256
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES128-SHA256
+-B 4000,410
+-u 512
+-f
+-v 3
+-l ECDH-ECDSA-AES128-SHA256
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES256
+-e
+-u 512
+-f
+-v 3
+-l ECDH-ECDSA-AES256-SHA
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES256
+-B 4000,422
+-u 512
+-f
+-v 3
+-l ECDH-ECDSA-AES256-SHA
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-RSA-AES256-SHA384
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-RSA-AES256-SHA384
+
+# client DTLSv1.2 ECDHE-RSA-AES256-SHA384
+-B 4000,394
+-u 512
+-f
+-v 3
+-l ECDHE-RSA-AES256-SHA384
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256-SHA384
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-SHA384
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256-SHA384
+-B 4000,394
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-SHA384
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-RSA-AES256-SHA384
+-e
+-u 512
+-f
+-v 3
+-l ECDH-RSA-AES256-SHA384
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES256-SHA384
+-B 4000,394
+-u 512
+-f
+-v 3
+-l ECDH-RSA-AES256-SHA384
+
+# server DTLSv1.2 ECDH-ECDSA-AES256-SHA384
+-e
+-u 512
+-f
+-v 3
+-l ECDH-ECDSA-AES256-SHA384
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES256-SHA384
+-B 4000,394
+-u 512
+-f
+-v 3
+-l ECDH-ECDSA-AES256-SHA384
+-A ./certs/ca-ecc-cert.pem
+
+# server TLSv1.2 ECDHE-PSK-AES128-CBC-SHA256
+-e
+-s
+-u 512
+-f
+-v 3
+-l ECDHE-PSK-AES128-CBC-SHA256
+
+# client TLSv1.2 ECDHE-PSK-AES128-CBC-SHA256
+-B 4000,410
+-s
+-u 512
+-f
+-v 3
+-l ECDHE-PSK-AES128-CBC-SHA256
+
+# server TLSv1.2 ECDHE-PSK-NULL-SHA256
+-e
+-s
+-u 512
+-f
+-v 3
+-l ECDHE-PSK-NULL-SHA256
+
+# client TLSv1.2 ECDHE-PSK-NULL-SHA256
+-B 4000,455
+-s
+-u 512
+-f
+-v 3
+-l ECDHE-PSK-NULL-SHA256
+
+# server DTLSv1 PSK-AES128
+-e
+-s
+-u 512
+-f
+-v 2
+-l PSK-AES128-CBC-SHA
+
+# client DTLSv1 PSK-AES128
+-B 4000,422
+-s
+-u 512
+-f
+-v 2
+-l PSK-AES128-CBC-SHA
+
+# server DTLSv1 PSK-AES256
+-e
+-s
+-u 512
+-f
+-v 2
+-l PSK-AES256-CBC-SHA
+
+# client DTLSv1 PSK-AES256
+-B 4000,422
+-s
+-u 512
+-f
+-v 2
+-l PSK-AES256-CBC-SHA
+
+# server DTLSv1.2 PSK-AES128
+-e
+-s
+-u 512
+-f
+-v 3
+-l PSK-AES128-CBC-SHA
+
+# client DTLSv1.2 PSK-AES128
+-B 4000,422
+-s
+-u 512
+-f
+-v 3
+-l PSK-AES128-CBC-SHA
+
+# server DTLSv1.2 PSK-AES256
+-e
+-s
+-u 512
+-f
+-v 3
+-l PSK-AES256-CBC-SHA
+
+# client DTLSv1.2 PSK-AES256
+-B 4000,422
+-s
+-u 512
+-f
+-v 3
+-l PSK-AES256-CBC-SHA
+
+# server DTLSv1.2 PSK-AES128-SHA256
+-e
+-s
+-u 512
+-f
+-v 3
+-l PSK-AES128-CBC-SHA256
+
+# client DTLSv1.2 PSK-AES128-SHA256
+-B 4000,410
+-s
+-u 512
+-f
+-v 3
+-l PSK-AES128-CBC-SHA256
+
+# server DTLSv1.2 PSK-AES256-SHA384
+-e
+-s
+-u 512
+-f
+-v 3
+-l PSK-AES256-CBC-SHA384
+
+# client DTLSv1.2 PSK-AES256-SHA384
+-B 4000,394
+-s
+-u 512
+-f
+-v 3
+-l PSK-AES256-CBC-SHA384
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-GCM-SHA256
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256
+-B 4000,463
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-GCM-SHA256
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-GCM-SHA384
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384
+-B 4000,463
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-GCM-SHA384
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES128-GCM-SHA256
+-e
+-u 512
+-f
+-v 3
+-l ECDH-ECDSA-AES128-GCM-SHA256
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES128-GCM-SHA256
+-B 4000,463
+-u 512
+-f
+-v 3
+-l ECDH-ECDSA-AES128-GCM-SHA256
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDH-ECDSA-AES256-GCM-SHA384
+-e
+-u 512
+-f
+-v 3
+-l ECDH-ECDSA-AES256-GCM-SHA384
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-ECDSA-AES256-GCM-SHA384
+-B 4000,463
+-u 512
+-f
+-v 3
+-l ECDH-ECDSA-AES256-GCM-SHA384
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-RSA-AES128-GCM-SHA256
+
+# client DTLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
+-B 4000,463
+-u 512
+-f
+-v 3
+-l ECDHE-RSA-AES128-GCM-SHA256
+
+# server DTLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-RSA-AES256-GCM-SHA384
+
+# client DTLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
+-B 4000,463
+-u 512
+-f
+-v 3
+-l ECDHE-RSA-AES256-GCM-SHA384
+
+# server DTLSv1.2 ECDH-RSA-AES128-GCM-SHA256
+-e
+-u 512
+-f
+-v 3
+-l ECDH-RSA-AES128-GCM-SHA256
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES128-GCM-SHA256
+-B 4000,463
+-u 512
+-f
+-v 3
+-l ECDH-RSA-AES128-GCM-SHA256
+
+# server DTLSv1.2 ECDH-RSA-AES256-GCM-SHA384
+-e
+-u 512
+-f
+-v 3
+-l ECDH-RSA-AES256-GCM-SHA384
+-c ./certs/server-ecc-rsa.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDH-RSA-AES256-GCM-SHA384
+-B 4000,463
+-u 512
+-f
+-v 3
+-l ECDH-RSA-AES256-GCM-SHA384
+
+# server DTLSv1.2 PSK-AES128-GCM-SHA256
+-e
+-u 512
+-f
+-s
+-v 3
+-l PSK-AES128-GCM-SHA256
+
+# client DTLSv1.2 PSK-AES128-GCM-SHA256
+-B 4000,463
+-u 512
+-f
+-s
+-v 3
+-l PSK-AES128-GCM-SHA256
+
+# server DTLSv1.2 PSK-AES256-GCM-SHA384
+-e
+-u 512
+-f
+-s
+-v 3
+-l PSK-AES256-GCM-SHA384
+
+# client DTLSv1.2 PSK-AES256-GCM-SHA384
+-B 4000,463
+-u 512
+-f
+-s
+-v 3
+-l PSK-AES256-GCM-SHA384
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM
+-B 4000,463
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM-8
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM-8
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM-8
+-B 4000,471
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM-8
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256-CCM-8
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-CCM-8
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256-CCM-8
+-B 4000,471
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-CCM-8
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM8 (OpenSSL-compat alias)
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM8
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM8 (OpenSSL-compat alias)
+-B 4000,471
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES128-CCM8
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ECDHE-ECDSA-AES256-CCM8 (OpenSSL-compat alias)
+-e
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-CCM8
+-c ./certs/server-ecc.pem
+-k ./certs/ecc-key.pem
+
+# client DTLSv1.2 ECDHE-ECDSA-AES256-CCM8 (OpenSSL-compat alias)
+-B 4000,471
+-u 512
+-f
+-v 3
+-l ECDHE-ECDSA-AES256-CCM8
+-A ./certs/ca-ecc-cert.pem
+
+# server DTLSv1.2 ADH-AES128-SHA
+-e
+-u 512
+-f
+-a
+-v 3
+-l ADH-AES128-SHA
+
+# client DTLSv1.2 ADH-AES128-SHA
+-B 4000,422
+-u 512
+-f
+-a
+-v 3
+-l ADH-AES128-SHA
+
+# server DTLSv1.0 ADH-AES128-SHA
+-e
+-u 512
+-f
+-a
+-v 2
+-l ADH-AES128-SHA
+
+# client DTLSv1.0 ADH-AES128-SHA
+-B 4000,422
+-u 512
+-f
+-a
+-v 2
+-l ADH-AES128-SHA
+
 # server DTLSv1 IDEA-CBC-SHA
 -u 512
 -f
@@ -1301,851 +3545,3 @@
 -f
 -v 3
 -l AES256-SHA256
-
-# server DTLSv1.1 ECDHE-RSA-DES3
--u 512
--f
--v 2
--l ECDHE-RSA-DES-CBC3-SHA
-
-# client DTLSv1.1 ECDHE-RSA-DES3
--u 512
--f
--v 2
--l ECDHE-RSA-DES-CBC3-SHA
-
-# server DTLSv1.1 ECDHE-RSA-AES128
--u 512
--f
--v 2
--l ECDHE-RSA-AES128-SHA
-
-# client DTLSv1.1 ECDHE-RSA-AES128
--u 512
--f
--v 2
--l ECDHE-RSA-AES128-SHA
-
-# server DTLSv1.1 ECDHE-RSA-AES256
--u 512
--f
--v 2
--l ECDHE-RSA-AES256-SHA
-
-# client DTLSv1.1 ECDHE-RSA-AES256
--u 512
--f
--v 2
--l ECDHE-RSA-AES256-SHA
-
-# server DTLSv1.2 ECDHE-RSA-DES3
--u 512
--f
--v 3
--l ECDHE-RSA-DES-CBC3-SHA
-
-# client DTLSv1.2 ECDHE-RSA-DES3
--u 512
--f
--v 3
--l ECDHE-RSA-DES-CBC3-SHA
-
-# server DTLSv1.2 ECDHE-RSA-AES128
--u 512
--f
--v 3
--l ECDHE-RSA-AES128-SHA
-
-# client DTLSv1.2 ECDHE-RSA-AES128
--u 512
--f
--v 3
--l ECDHE-RSA-AES128-SHA
-
-# server DTLSv1.2 ECDHE-RSA-AES128-SHA256
--u 512
--f
--v 3
--l ECDHE-RSA-AES128-SHA256
-
-# client DTLSv1.2 ECDHE-RSA-AES128-SHA256
--u 512
--f
--v 3
--l ECDHE-RSA-AES128-SHA256
-
-# server DTLSv1.2 ECDHE-RSA-AES256
--u 512
--f
--v 3
--l ECDHE-RSA-AES256-SHA
-
-# client DTLSv1.2 ECDHE-RSA-AES256
--u 512
--f
--v 3
--l ECDHE-RSA-AES256-SHA
-
-# server TLSv1 ECDHE-ECDSA-NULL-SHA
--u 512
--f
--v 1
--l ECDHE-ECDSA-NULL-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client TLSv1 ECDHE-ECDSA-NULL-SHA
--u 512
--f
--v 1
--l ECDHE-ECDSA-NULL-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server TLSv1.1 ECDHE-ECDSA-NULL-SHA
--u 512
--f
--v 2
--l ECDHE-ECDSA-NULL-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client TLSv1 ECDHE-ECDSA-NULL-SHA
--u 512
--f
--v 2
--l ECDHE-ECDSA-NULL-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server TLSv1.2 ECDHE-ECDSA-NULL-SHA
--u 512
--f
--v 3
--l ECDHE-ECDSA-NULL-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client TLSv1.2 ECDHE-ECDSA-NULL-SHA
--u 512
--f
--v 3
--l ECDHE-ECDSA-NULL-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.1 ECDHE-ECDSA-DES3
--u 512
--f
--v 2
--l ECDHE-ECDSA-DES-CBC3-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDHE-ECDSA-DES3
--u 512
--f
--v 2
--l ECDHE-ECDSA-DES-CBC3-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.1 ECDHE-ECDSA-AES128
--u 512
--f
--v 2
--l ECDHE-ECDSA-AES128-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDHE-ECDSA-AES128
--u 512
--f
--v 2
--l ECDHE-ECDSA-AES128-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.1 ECDHE-ECDSA-AES256
--u 512
--f
--v 2
--l ECDHE-ECDSA-AES256-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDHE-ECDSA-AES256
--u 512
--f
--v 2
--l ECDHE-ECDSA-AES256-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-DES3
--u 512
--f
--v 3
--l ECDHE-ECDSA-DES-CBC3-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-DES3
--u 512
--f
--v 3
--l ECDHE-ECDSA-DES-CBC3-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES128
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES128-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES128
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES128-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES128-SHA256
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES128-SHA256
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES128-SHA256
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES128-SHA256
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES256
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES256-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES256
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES256-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.1 ECDH-RSA-DES3
--u 512
--f
--v 2
--l ECDH-RSA-DES-CBC3-SHA
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDH-RSA-DES3
--u 512
--f
--v 2
--l ECDH-RSA-DES-CBC3-SHA
-
-# server DTLSv1.1 ECDH-RSA-AES128
--u 512
--f
--v 2
--l ECDH-RSA-AES128-SHA
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDH-RSA-AES128
--u 512
--f
--v 2
--l ECDH-RSA-AES128-SHA
-
-# server DTLSv1.1 ECDH-RSA-AES256
--u 512
--f
--v 2
--l ECDH-RSA-AES256-SHA
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDH-RSA-AES256
--u 512
--f
--v 2
--l ECDH-RSA-AES256-SHA
-
-# server DTLSv1.2 ECDH-RSA-DES3
--u 512
--f
--v 3
--l ECDH-RSA-DES-CBC3-SHA
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-RSA-DES3
--u 512
--f
--v 3
--l ECDH-RSA-DES-CBC3-SHA
-
-# server DTLSv1.2 ECDH-RSA-AES128
--u 512
--f
--v 3
--l ECDH-RSA-AES128-SHA
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-RSA-AES128
--u 512
--f
--v 3
--l ECDH-RSA-AES128-SHA
-
-# server DTLSv1.2 ECDH-RSA-AES128-SHA256
--u 512
--f
--v 3
--l ECDH-RSA-AES128-SHA256
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-RSA-AES128-SHA256
--u 512
--f
--v 3
--l ECDH-RSA-AES128-SHA256
-
-# server DTLSv1.2 ECDH-RSA-AES256
--u 512
--f
--v 3
--l ECDH-RSA-AES256-SHA
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-RSA-AES256
--u 512
--f
--v 3
--l ECDH-RSA-AES256-SHA
-
-# server DTLSv1.1 ECDH-ECDSA-DES3
--u 512
--f
--v 2
--l ECDH-ECDSA-DES-CBC3-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDH-ECDSA-DES3
--u 512
--f
--v 2
--l ECDH-ECDSA-DES-CBC3-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.1 ECDH-ECDSA-AES128
--u 512
--f
--v 2
--l ECDH-ECDSA-AES128-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDH-ECDSA-AES128
--u 512
--f
--v 2
--l ECDH-ECDSA-AES128-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.1 ECDH-ECDSA-AES256
--u 512
--f
--v 2
--l ECDH-ECDSA-AES256-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.1 ECDH-ECDSA-AES256
--u 512
--f
--v 2
--l ECDH-ECDSA-AES256-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDH-ECDSA-DES3
--u 512
--f
--v 3
--l ECDH-ECDSA-DES-CBC3-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-ECDSA-DES3
--u 512
--f
--v 3
--l ECDH-ECDSA-DES-CBC3-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDH-ECDSA-AES128
--u 512
--f
--v 3
--l ECDH-ECDSA-AES128-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-ECDSA-AES128
--u 512
--f
--v 3
--l ECDH-ECDSA-AES128-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDH-ECDSA-AES128-SHA256
--u 512
--f
--v 3
--l ECDH-ECDSA-AES128-SHA256
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-ECDSA-AES128-SHA256
--u 512
--f
--v 3
--l ECDH-ECDSA-AES128-SHA256
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDH-ECDSA-AES256
--u 512
--f
--v 3
--l ECDH-ECDSA-AES256-SHA
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-ECDSA-AES256
--u 512
--f
--v 3
--l ECDH-ECDSA-AES256-SHA
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-RSA-AES256-SHA384
--u 512
--f
--v 3
--l ECDHE-RSA-AES256-SHA384
-
-# client DTLSv1.2 ECDHE-RSA-AES256-SHA384
--u 512
--f
--v 3
--l ECDHE-RSA-AES256-SHA384
-
-# server DTLSv1.2 ECDHE-ECDSA-AES256-SHA384
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES256-SHA384
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES256-SHA384
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES256-SHA384
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDH-RSA-AES256-SHA384
--u 512
--f
--v 3
--l ECDH-RSA-AES256-SHA384
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-RSA-AES256-SHA384
--u 512
--f
--v 3
--l ECDH-RSA-AES256-SHA384
-
-# server DTLSv1.2 ECDH-ECDSA-AES256-SHA384
--u 512
--f
--v 3
--l ECDH-ECDSA-AES256-SHA384
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-ECDSA-AES256-SHA384
--u 512
--f
--v 3
--l ECDH-ECDSA-AES256-SHA384
--A ./certs/ca-ecc-cert.pem
-
-# server TLSv1.2 ECDHE-PSK-AES128-SHA256
--s
--u 512
--f
--v 3
--l ECDHE-PSK-AES128-SHA256
-
-# client TLSv1.2 ECDHE-PSK-AES128-SHA256
--s
--u 512
--f
--v 3
--l ECDHE-PSK-AES128-SHA256
-
-# server TLSv1.2 ECDHE-PSK-NULL-SHA256
--s
--u 512
--f
--v 3
--l ECDHE-PSK-NULL-SHA256
-
-# client TLSv1.2 ECDHE-PSK-NULL-SHA256
--s
--u 512
--f
--v 3
--l ECDHE-PSK-NULL-SHA256
-
-# server DTLSv1 PSK-AES128
--s
--u 512
--f
--v 2
--l PSK-AES128-CBC-SHA
-
-# client DTLSv1 PSK-AES128
--s
--u 512
--f
--v 2
--l PSK-AES128-CBC-SHA
-
-# server DTLSv1 PSK-AES256
--s
--u 512
--f
--v 2
--l PSK-AES256-CBC-SHA
-
-# client DTLSv1 PSK-AES256
--s
--u 512
--f
--v 2
--l PSK-AES256-CBC-SHA
-
-# server DTLSv1.2 PSK-AES128
--s
--u 512
--f
--v 3
--l PSK-AES128-CBC-SHA
-
-# client DTLSv1.2 PSK-AES128
--s
--u 512
--f
--v 3
--l PSK-AES128-CBC-SHA
-
-# server DTLSv1.2 PSK-AES256
--s
--u 512
--f
--v 3
--l PSK-AES256-CBC-SHA
-
-# client DTLSv1.2 PSK-AES256
--s
--u 512
--f
--v 3
--l PSK-AES256-CBC-SHA
-
-# server DTLSv1.2 PSK-AES128-SHA256
--s
--u 512
--f
--v 3
--l PSK-AES128-CBC-SHA256
-
-# client DTLSv1.2 PSK-AES128-SHA256
--s
--u 512
--f
--v 3
--l PSK-AES128-CBC-SHA256
-
-# server DTLSv1.2 PSK-AES256-SHA384
--s
--u 512
--f
--v 3
--l PSK-AES256-CBC-SHA384
-
-# client DTLSv1.2 PSK-AES256-SHA384
--s
--u 512
--f
--v 3
--l PSK-AES256-CBC-SHA384
-
-# server DTLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES128-GCM-SHA256
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES128-GCM-SHA256
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES256-GCM-SHA384
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES256-GCM-SHA384
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDH-ECDSA-AES128-GCM-SHA256
--u 512
--f
--v 3
--l ECDH-ECDSA-AES128-GCM-SHA256
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-ECDSA-AES128-GCM-SHA256
--u 512
--f
--v 3
--l ECDH-ECDSA-AES128-GCM-SHA256
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDH-ECDSA-AES256-GCM-SHA384
--u 512
--f
--v 3
--l ECDH-ECDSA-AES256-GCM-SHA384
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-ECDSA-AES256-GCM-SHA384
--u 512
--f
--v 3
--l ECDH-ECDSA-AES256-GCM-SHA384
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
--u 512
--f
--v 3
--l ECDHE-RSA-AES128-GCM-SHA256
-
-# client DTLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
--u 512
--f
--v 3
--l ECDHE-RSA-AES128-GCM-SHA256
-
-# server DTLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
--u 512
--f
--v 3
--l ECDHE-RSA-AES256-GCM-SHA384
-
-# client DTLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
--u 512
--f
--v 3
--l ECDHE-RSA-AES256-GCM-SHA384
-
-# server DTLSv1.2 ECDH-RSA-AES128-GCM-SHA256
--u 512
--f
--v 3
--l ECDH-RSA-AES128-GCM-SHA256
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-RSA-AES128-GCM-SHA256
--u 512
--f
--v 3
--l ECDH-RSA-AES128-GCM-SHA256
-
-# server DTLSv1.2 ECDH-RSA-AES256-GCM-SHA384
--u 512
--f
--v 3
--l ECDH-RSA-AES256-GCM-SHA384
--c ./certs/server-ecc-rsa.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDH-RSA-AES256-GCM-SHA384
--u 512
--f
--v 3
--l ECDH-RSA-AES256-GCM-SHA384
-
-# server DTLSv1.2 PSK-AES128-GCM-SHA256
--u 512
--f
--s
--v 3
--l PSK-AES128-GCM-SHA256
-
-# client DTLSv1.2 PSK-AES128-GCM-SHA256
--u 512
--f
--s
--v 3
--l PSK-AES128-GCM-SHA256
-
-# server DTLSv1.2 PSK-AES256-GCM-SHA384
--u 512
--f
--s
--v 3
--l PSK-AES256-GCM-SHA384
-
-# client DTLSv1.2 PSK-AES256-GCM-SHA384
--u 512
--f
--s
--v 3
--l PSK-AES256-GCM-SHA384
-
-# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES128-CCM
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES128-CCM
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM-8
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES128-CCM-8
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM-8
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES128-CCM-8
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES256-CCM-8
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES256-CCM-8
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES256-CCM-8
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES256-CCM-8
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES128-CCM8 (OpenSSL-compat alias)
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES128-CCM8
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES128-CCM8 (OpenSSL-compat alias)
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES128-CCM8
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ECDHE-ECDSA-AES256-CCM8 (OpenSSL-compat alias)
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES256-CCM8
--c ./certs/server-ecc.pem
--k ./certs/ecc-key.pem
-
-# client DTLSv1.2 ECDHE-ECDSA-AES256-CCM8 (OpenSSL-compat alias)
--u 512
--f
--v 3
--l ECDHE-ECDSA-AES256-CCM8
--A ./certs/ca-ecc-cert.pem
-
-# server DTLSv1.2 ADH-AES128-SHA
--u 512
--f
--a
--v 3
--l ADH-AES128-SHA
-
-# client DTLSv1.2 ADH-AES128-SHA
--u 512
--f
--a
--v 3
--l ADH-AES128-SHA
-
-# server DTLSv1.0 ADH-AES128-SHA
--u 512
--f
--a
--v 2
--l ADH-AES128-SHA
-
-# client DTLSv1.0 ADH-AES128-SHA
--u 512
--f
--a
--v 2
--l ADH-AES128-SHA
diff --git a/tests/unit.c b/tests/unit.c
index d5a1f375c..e3f29528b 100644
--- a/tests/unit.c
+++ b/tests/unit.c
@@ -122,11 +122,16 @@ int unit_test(int argc, char** argv)
     }
 #endif
 
-    ApiTest();
+#ifdef WOLFSSL_ALLOW_SKIP_UNIT_TESTS
+    if (argc == 1)
+#endif
+    {
+        ApiTest();
 
-    if ( (ret = HashTest()) != 0){
-        printf("hash test failed with %d\n", ret);
-        goto exit;
+        if ( (ret = HashTest()) != 0){
+            printf("hash test failed with %d\n", ret);
+            goto exit;
+        }
     }
 
 #ifndef NO_WOLFSSL_CIPHER_SUITE_TEST
diff --git a/wolfssl/internal.h b/wolfssl/internal.h
index 0804e3209..dd26e61fd 100644
--- a/wolfssl/internal.h
+++ b/wolfssl/internal.h
@@ -4649,7 +4649,7 @@ WOLFSSL_LOCAL void ShrinkOutputBuffer(WOLFSSL* ssl);
 WOLFSSL_LOCAL int VerifyClientSuite(WOLFSSL* ssl);
 
 WOLFSSL_LOCAL int SetTicket(WOLFSSL*, const byte*, word32);
-WOLFSSL_LOCAL int wolfSSL_GetMaxRecordSize(WOLFSSL* ssl, int maxFragment);
+WOLFSSL_LOCAL int wolfSSL_GetMaxFragSize(WOLFSSL* ssl, int maxFragment);
 
 #if defined(WOLFSSL_IOTSAFE) && defined(HAVE_PK_CALLBACKS)
 WOLFSSL_LOCAL IOTSAFE *wolfSSL_get_iotsafe_ctx(WOLFSSL *ssl);