Add a packed renegotiation test.
Ridiculous as it is, the protocol does not forbid packing HelloRequest and Finished into the same record. Add a test for this case. Change-Id: I8e1455b261f56169309070bf44d14d40a63eae50 Reviewed-on: https://boringssl-review.googlesource.com/8901 Reviewed-by: Steven Valdez <svaldez@google.com> Reviewed-by: David Benjamin <davidben@google.com>
This commit is contained in:
parent
0e04498934
commit
12d2c48086
@ -997,6 +997,10 @@ type ProtocolBugs struct {
|
|||||||
// SkipHelloRetryRequest, if true, causes the TLS 1.3 server to not send
|
// SkipHelloRetryRequest, if true, causes the TLS 1.3 server to not send
|
||||||
// HelloRetryRequest.
|
// HelloRetryRequest.
|
||||||
SkipHelloRetryRequest bool
|
SkipHelloRetryRequest bool
|
||||||
|
|
||||||
|
// PackHelloRequestWithFinished, if true, causes the TLS server to send
|
||||||
|
// HelloRequest in the same record as Finished.
|
||||||
|
PackHelloRequestWithFinished bool
|
||||||
}
|
}
|
||||||
|
|
||||||
func (c *Config) serverInit() {
|
func (c *Config) serverInit() {
|
||||||
|
@ -1268,6 +1268,10 @@ func (c *Conn) Write(b []byte) (int, error) {
|
|||||||
c.out.Lock()
|
c.out.Lock()
|
||||||
defer c.out.Unlock()
|
defer c.out.Unlock()
|
||||||
|
|
||||||
|
// Flush any pending handshake data. PackHelloRequestWithFinished may
|
||||||
|
// have been set and the handshake not followed by Renegotiate.
|
||||||
|
c.flushHandshake()
|
||||||
|
|
||||||
if err := c.out.err; err != nil {
|
if err := c.out.err; err != nil {
|
||||||
return 0, err
|
return 0, err
|
||||||
}
|
}
|
||||||
|
@ -1391,8 +1391,11 @@ func (hs *serverHandshakeState) sendFinished(out []byte) error {
|
|||||||
|
|
||||||
if !c.config.Bugs.SkipFinished && len(postCCSBytes) > 0 {
|
if !c.config.Bugs.SkipFinished && len(postCCSBytes) > 0 {
|
||||||
c.writeRecord(recordTypeHandshake, postCCSBytes)
|
c.writeRecord(recordTypeHandshake, postCCSBytes)
|
||||||
|
if !c.config.Bugs.PackHelloRequestWithFinished {
|
||||||
|
// Defer flushing until renegotiation.
|
||||||
c.flushHandshake()
|
c.flushHandshake()
|
||||||
}
|
}
|
||||||
|
}
|
||||||
|
|
||||||
c.cipherSuite = hs.suite
|
c.cipherSuite = hs.suite
|
||||||
|
|
||||||
|
@ -5021,6 +5021,24 @@ func addRenegotiationTests() {
|
|||||||
},
|
},
|
||||||
})
|
})
|
||||||
|
|
||||||
|
// Test renegotiation works if HelloRequest and server Finished come in
|
||||||
|
// the same record.
|
||||||
|
testCases = append(testCases, testCase{
|
||||||
|
name: "Renegotiate-Client-Packed",
|
||||||
|
config: Config{
|
||||||
|
MaxVersion: VersionTLS12,
|
||||||
|
Bugs: ProtocolBugs{
|
||||||
|
PackHandshakeFlight: true,
|
||||||
|
PackHelloRequestWithFinished: true,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
renegotiate: 1,
|
||||||
|
flags: []string{
|
||||||
|
"-renegotiate-freely",
|
||||||
|
"-expect-total-renegotiations", "1",
|
||||||
|
},
|
||||||
|
})
|
||||||
|
|
||||||
// Renegotiation is forbidden in TLS 1.3.
|
// Renegotiation is forbidden in TLS 1.3.
|
||||||
//
|
//
|
||||||
// TODO(davidben): This test current asserts that we ignore
|
// TODO(davidben): This test current asserts that we ignore
|
||||||
|
Loading…
Reference in New Issue
Block a user