Google Git
Sign in
boringssl / boringssl / ef5dfd298019b7eb721725b04ef3117eb37f2614^! / . / ssl / test / runner
commitef5dfd298019b7eb721725b04ef3117eb37f2614[log] [tgz]
authorDavid Benjamin <davidben@chromium.org>Sun Dec 06 13:17:07 2015 -0500
committerAdam Langley <agl@google.com>Wed Dec 16 17:40:29 2015 +0000
tree377ed0c9dc27e0d7b671243a9d912d8f6cc24ec3
parent8411b248c3fd118e9619abfb7f83bb7c4177d585 [diff]
Add tests for malformed HelloRequests.

Change-Id: Iff053022c7ffe5b01c0daf95726cc7d49c33cbd6
Reviewed-on: https://boringssl-review.googlesource.com/6640
Reviewed-by: Adam Langley <agl@google.com>

diff --git a/ssl/test/runner/common.go b/ssl/test/runner/common.go
index ec0e2db..caf4aee 100644
--- a/ssl/test/runner/common.go
+++ b/ssl/test/runner/common.go

@@ -809,6 +809,10 @@
 	// BadChangeCipherSpec, if not nil, is the body to be sent in
 	// ChangeCipherSpec records instead of {1}.
 	BadChangeCipherSpec []byte
+
+	// BadHelloRequest, if not nil, is what to send instead of a
+	// HelloRequest.
+	BadHelloRequest []byte
 }
 
 func (c *Config) serverInit() {

diff --git a/ssl/test/runner/conn.go b/ssl/test/runner/conn.go
index 7178d20..cb60a92 100644
--- a/ssl/test/runner/conn.go
+++ b/ssl/test/runner/conn.go

@@ -1201,8 +1201,11 @@
 
 func (c *Conn) Renegotiate() error {
 	if !c.isClient {
-		helloReq := new(helloRequestMsg)
-		c.writeRecord(recordTypeHandshake, helloReq.marshal())
+		helloReq := new(helloRequestMsg).marshal()
+		if c.config.Bugs.BadHelloRequest != nil {
+			helloReq = c.config.Bugs.BadHelloRequest
+		}
+		c.writeRecord(recordTypeHandshake, helloReq)
 	}
 
 	c.handshakeComplete = false

diff --git a/ssl/test/runner/runner.go b/ssl/test/runner/runner.go
index 1e5ffd9..5af93df 100644
--- a/ssl/test/runner/runner.go
+++ b/ssl/test/runner/runner.go

@@ -2037,6 +2037,36 @@
 			shouldFail:    true,
 			expectedError: ":BAD_CHANGE_CIPHER_SPEC:",
 		},
+		{
+			name:        "BadHelloRequest-1",
+			renegotiate: 1,
+			config: Config{
+				Bugs: ProtocolBugs{
+					BadHelloRequest: []byte{typeHelloRequest, 0, 0, 1, 1},
+				},
+			},
+			flags: []string{
+				"-renegotiate-freely",
+				"-expect-total-renegotiations", "1",
+			},
+			shouldFail:    true,
+			expectedError: ":BAD_HELLO_REQUEST:",
+		},
+		{
+			name:        "BadHelloRequest-2",
+			renegotiate: 1,
+			config: Config{
+				Bugs: ProtocolBugs{
+					BadHelloRequest: []byte{typeServerKeyExchange, 0, 0, 0},
+				},
+			},
+			flags: []string{
+				"-renegotiate-freely",
+				"-expect-total-renegotiations", "1",
+			},
+			shouldFail:    true,
+			expectedError: ":BAD_HELLO_REQUEST:",
+		},
 	}
 	testCases = append(testCases, basicTests...)
 }