Add TLS 1.3 version of EmptyCertificateList. It tests the same thing right now with Fake TLS 1.3, but we'll need this tested in real TLS 1.3. Change-Id: Iacd32c2d4e56d341e5709a2ccd80fed5d556c94d Reviewed-on: https://boringssl-review.googlesource.com/8783 Reviewed-by: Steven Valdez <svaldez@google.com> Reviewed-by: David Benjamin <davidben@google.com> Commit-Queue: David Benjamin <davidben@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>

commit: 9ec1c75f2553f279e994a784b47697c52013726c [log] [tgz]
author: David Benjamin <davidben@google.com> Thu Jul 14 12:45:01 2016 -0400
committer: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Sat Jul 16 07:55:24 2016 +0000
tree: 08558065891518c85fb7a375ca57555d635b6925
parent: edd65fb13229755f67b4c496ecce5156c0f2966d [diff]
diff --git a/ssl/test/runner/runner.go b/ssl/test/runner/runner.go
index a285b26..5393b5b 100644
--- a/ssl/test/runner/runner.go
+++ b/ssl/test/runner/runner.go

@@ -1379,6 +1379,18 @@
 			expectedError: ":DECODE_ERROR:",
 		},
 		{
+			name: "EmptyCertificateList-TLS13",
+			config: Config{
+				MaxVersion:   VersionTLS13,
+				CipherSuites: []uint16{TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256},
+				Bugs: ProtocolBugs{
+					EmptyCertificateList: true,
+				},
+			},
+			shouldFail:    true,
+			expectedError: ":DECODE_ERROR:",
+		},
+		{
 			name:             "TLSFatalBadPackets",
 			damageFirstWrite: true,
 			shouldFail:       true,
commit	9ec1c75f2553f279e994a784b47697c52013726c	[log] [tgz]
author	David Benjamin <davidben@google.com>	Thu Jul 14 12:45:01 2016 -0400
committer	CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>	Sat Jul 16 07:55:24 2016 +0000
tree	08558065891518c85fb7a375ca57555d635b6925
parent	edd65fb13229755f67b4c496ecce5156c0f2966d [diff]