Test unknown TLS 1.3 ServerHello extensions. These too must be rejected. Test both unknown extensions and extensions in the wrong context. Change-Id: I54d5a5060f9efc26e5e4d23a0bde3c0d4d302d09 Reviewed-on: https://boringssl-review.googlesource.com/11501 Reviewed-by: Steven Valdez <svaldez@google.com> Reviewed-by: David Benjamin <davidben@google.com> Commit-Queue: David Benjamin <davidben@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>

commit: 490469f850ec94c7ce46eb7d44fe1ccb3bdbdae6 [log] [tgz]
author: David Benjamin <davidben@google.com> Wed Oct 05 22:44:38 2016 -0400
committer: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Tue Oct 11 19:12:13 2016 +0000
tree: bcb8fe5ff683d0f422dba807c137e540aac4c215
parent: 4fec04b48406111cb88fdd8d196253adc54f7a31 [diff] [blame]
diff --git a/ssl/test/runner/handshake_server.go b/ssl/test/runner/handshake_server.go
index abadf3a..59b34fa 100644
--- a/ssl/test/runner/handshake_server.go
+++ b/ssl/test/runner/handshake_server.go

@@ -359,9 +359,11 @@
 	config := c.config
 
 	hs.hello = &serverHelloMsg{
-		isDTLS:       c.isDTLS,
-		vers:         versionToWire(c.vers, c.isDTLS),
-		versOverride: config.Bugs.SendServerHelloVersion,
+		isDTLS:          c.isDTLS,
+		vers:            versionToWire(c.vers, c.isDTLS),
+		versOverride:    config.Bugs.SendServerHelloVersion,
+		customExtension: config.Bugs.CustomUnencryptedExtension,
+		unencryptedALPN: config.Bugs.SendUnencryptedALPN,
 	}
 
 	hs.hello.random = make([]byte, 32)
commit	490469f850ec94c7ce46eb7d44fe1ccb3bdbdae6	[log] [tgz]
author	David Benjamin <davidben@google.com>	Wed Oct 05 22:44:38 2016 -0400
committer	CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>	Tue Oct 11 19:12:13 2016 +0000
tree	bcb8fe5ff683d0f422dba807c137e540aac4c215
parent	4fec04b48406111cb88fdd8d196253adc54f7a31 [diff] [blame]