4cf369b9204f066e0ffac8fa583bd19e72c82592 - boringssl

commit	4cf369b9204f066e0ffac8fa583bd19e72c82592	[log] [tgz]
author	David Benjamin <davidben@chromium.org>	Sat Aug 22 01:35:43 2015 -0400
committer	Adam Langley <agl@google.com>	Fri Aug 28 22:03:00 2015 +0000
tree	a765ba5fe6cbea8528f33a693146b82cab4440fe
parent	b8d28cf532e6dde3d5684ededb3878b05e692e00 [diff]

Reject empty records of unexpected type.

The old empty record logic discarded the records at a very low-level.
Let the error bubble up to ssl3_read_bytes so the type mismatch logic
may kick in before the empty record is skipped.

Add tests for when the record in question is application data, before
before the handshake and post ChangeCipherSpec.

BUG=521840

Change-Id: I47dff389cda65d6672b9be39d7d89490331063fa
Reviewed-on: https://boringssl-review.googlesource.com/5754
Reviewed-by: Adam Langley <agl@google.com>

ssl/d1_pkt.c[diff]
ssl/dtls_record.c[diff]
ssl/s3_pkt.c[diff]
ssl/test/runner/common.go[diff]
ssl/test/runner/conn.go[diff]
ssl/test/runner/runner.go[diff]
ssl/tls_record.c[diff]

7 files changed

tree: a765ba5fe6cbea8528f33a693146b82cab4440fe

crypto/
decrepit/
include/
ssl/
tool/
util/
.clang-format
.gitignore
BUILDING
CMakeLists.txt
codereview.settings
LICENSE
STYLE