Google Git
Sign in
boringssl/boringssl.git/1c375dda8a254d762f1439e22489b505a2a051bd^!/./ssl/test/runner/common.go
commit
1c375dda8a254d762f1439e22489b505a2a051bd
[log]
author
David Benjamin <davidben@chromium.org>
Sat Jul 12 00:48:23 2014 -0400
committer
Adam Langley <agl@google.com>
Mon Jul 14 20:50:09 2014 +0000
tree
110dc17fa5151afc0b0473471c93823e5654b5d1
parent
d26aea6c9645badb67f0952e148bcc8905151c9b [diff] [blame]
Add UnauthenticatedECDH bug test.

This works, but there's enough shared codepaths that it's worth a test to
ensure it stays that way.

Change-Id: I5d5a729811e35832170322957258304213204e3b
Reviewed-on: https://boringssl-review.googlesource.com/1155
Reviewed-by: Adam Langley <agl@google.com>

diff --git a/ssl/test/runner/common.go b/ssl/test/runner/common.go
index dca3e9d..328807a 100644
--- a/ssl/test/runner/common.go
+++ b/ssl/test/runner/common.go

@@ -353,6 +353,12 @@
 	// DuplicateExtension causes an extra empty extension of bogus type to
 	// be emitted in either the ClientHello or the ServerHello.
 	DuplicateExtension bool
+
+	// UnauthenticatedECDH causes the server to pretend ECDHE_RSA
+	// and ECDHE_ECDSA cipher suites are actually ECDH_anon. No
+	// Certificate message is sent and no signature is added to
+	// ServerKeyExchange.
+	UnauthenticatedECDH bool
 }
 
 func (c *Config) serverInit() {