Add tests for full handshakes under renegotiation. In verifying the fix for CVE-2015-0291, I noticed we don't actually have any test coverage for full handshakes on renegotiation. All our tests always do resumptions. Change-Id: Ia9b701e8a50ba9353fefb8cc4fb86e78065d0b40 Reviewed-on: https://boringssl-review.googlesource.com/4050 Reviewed-by: Adam Langley <agl@google.com>

commit: cdea40c3e217a9f0a86ea4b87560727b932ed231 [log] [tgz]
author: David Benjamin <davidben@chromium.org> Thu Mar 19 14:09:43 2015 -0400
committer: Adam Langley <agl@google.com> Thu Mar 19 19:51:16 2015 +0000
tree: 161faf26dd99c6c8b72a29c40984a122b49139b6
parent: 4b1510c71ecadeb15e866f17086487a2d9691b48 [diff] [blame]
diff --git a/ssl/test/runner/runner.go b/ssl/test/runner/runner.go
index 3f26786..3ea0332 100644
--- a/ssl/test/runner/runner.go
+++ b/ssl/test/runner/runner.go

@@ -2619,6 +2619,17 @@
 	})
 	testCases = append(testCases, testCase{
 		testType: serverTest,
+		name:     "Renegotiate-Server-Full",
+		config: Config{
+			Bugs: ProtocolBugs{
+				NeverResumeOnRenego: true,
+			},
+		},
+		flags:           []string{"-renegotiate"},
+		shimWritesFirst: true,
+	})
+	testCases = append(testCases, testCase{
+		testType: serverTest,
 		name:     "Renegotiate-Server-EmptyExt",
 		config: Config{
 			Bugs: ProtocolBugs{
@@ -2677,6 +2688,15 @@
 		renegotiate: true,
 	})
 	testCases = append(testCases, testCase{
+		name: "Renegotiate-Client-Full",
+		config: Config{
+			Bugs: ProtocolBugs{
+				NeverResumeOnRenego: true,
+			},
+		},
+		renegotiate: true,
+	})
+	testCases = append(testCases, testCase{
 		name:        "Renegotiate-Client-EmptyExt",
 		renegotiate: true,
 		config: Config{
commit	cdea40c3e217a9f0a86ea4b87560727b932ed231	[log] [tgz]
author	David Benjamin <davidben@chromium.org>	Thu Mar 19 14:09:43 2015 -0400
committer	Adam Langley <agl@google.com>	Thu Mar 19 19:51:16 2015 +0000
tree	161faf26dd99c6c8b72a29c40984a122b49139b6
parent	4b1510c71ecadeb15e866f17086487a2d9691b48 [diff] [blame]