Add a test for out-of-order ChangeCipherSpec in DTLS. We were missing this case. It is possible to receive an early unencrypted ChangeCipherSpec alert in DTLS because they aren't ordered relative to the handshake. Test this case. (ChangeCipherSpec in DTLS is kind of pointless.) Change-Id: I84268bc1821734f606fb20bfbeda91abf372f32c Reviewed-on: https://boringssl-review.googlesource.com/8460 Reviewed-by: Adam Langley <agl@google.com>

commit: 8144f9984d3cfbb9f59c78ab7ebd148b77cce771 [log] [tgz]
author: David Benjamin <davidben@google.com> Wed Jun 22 17:05:13 2016 -0400
committer: Adam Langley <agl@google.com> Wed Jun 22 21:47:26 2016 +0000
tree: dac03883981e6d36de3f6ef4c443fe251acab3cd
parent: 72acbecb8969ef9195b7a6350f09e0bf4c3adf52 [diff] [blame]
diff --git a/ssl/test/runner/common.go b/ssl/test/runner/common.go
index ae03850..2a5565b 100644
--- a/ssl/test/runner/common.go
+++ b/ssl/test/runner/common.go

@@ -493,6 +493,11 @@
 	// and 1.0.1 modes, respectively.
 	EarlyChangeCipherSpec int
 
+	// StrayChangeCipherSpec causes every pre-ChangeCipherSpec handshake
+	// message in DTLS to be prefaced by stray ChangeCipherSpec record. This
+	// may be used to test DTLS's handling of reordered ChangeCipherSpec.
+	StrayChangeCipherSpec bool
+
 	// FragmentAcrossChangeCipherSpec causes the implementation to fragment
 	// the Finished (or NextProto) message around the ChangeCipherSpec
 	// messages.
commit	8144f9984d3cfbb9f59c78ab7ebd148b77cce771	[log] [tgz]
author	David Benjamin <davidben@google.com>	Wed Jun 22 17:05:13 2016 -0400
committer	Adam Langley <agl@google.com>	Wed Jun 22 21:47:26 2016 +0000
tree	dac03883981e6d36de3f6ef4c443fe251acab3cd
parent	72acbecb8969ef9195b7a6350f09e0bf4c3adf52 [diff] [blame]