Check duplicate extensions before processing. ClientHello and ServerHello are not allowed to include duplicate extensions. Add a new helper function to check this and call as appropriate. Remove ad-hoc per-extension duplicate checks which are no unnecessary. Add runner.go tests to verify such message correctly rejected. Change-Id: I7babd5b642dfec941459512869e2dd6de26a831c Reviewed-on: https://boringssl-review.googlesource.com/1100 Reviewed-by: Adam Langley <agl@google.com>

commit: 35a7a4492ddc6082e1b0e71252f35701f8aa848a [log] [tgz]
author: David Benjamin <davidben@chromium.org> Sat Jul 05 00:23:20 2014 -0400
committer: Adam Langley <agl@google.com> Tue Jul 08 22:17:59 2014 +0000
tree: 52234c29c813b224068d25eec9007209b277b36d
parent: 398ba895fba66c3f191add14299b3da2def64af4 [diff] [blame]
diff --git a/ssl/ssl.h b/ssl/ssl.h
index 07de254..87ffe9b 100644
--- a/ssl/ssl.h
+++ b/ssl/ssl.h

@@ -2580,6 +2580,7 @@
 #define SSL_F_tls1_change_cipher_state_cipher 278
 #define SSL_F_tls1_change_cipher_state_aead 279
 #define SSL_F_tls1_aead_ctx_init 280
+#define SSL_F_tls1_check_duplicate_extensions 281
 #define SSL_R_UNABLE_TO_FIND_ECDH_PARAMETERS 100
 #define SSL_R_DECRYPTION_FAILED_OR_BAD_RECORD_MAC 101
 #define SSL_R_INVALID_NULL_CMD_NAME 102
commit	35a7a4492ddc6082e1b0e71252f35701f8aa848a	[log] [tgz]
author	David Benjamin <davidben@chromium.org>	Sat Jul 05 00:23:20 2014 -0400
committer	Adam Langley <agl@google.com>	Tue Jul 08 22:17:59 2014 +0000
tree	52234c29c813b224068d25eec9007209b277b36d
parent	398ba895fba66c3f191add14299b3da2def64af4 [diff] [blame]