Add SendServerHelloAsHelloRetryRequest test. There was a case we were not covering. Change-Id: Ia8bc1b73f5db3d18afc3cdcfa249867784c3dcd2 Reviewed-on: https://boringssl-review.googlesource.com/14824 Commit-Queue: David Benjamin <davidben@google.com> Commit-Queue: Steven Valdez <svaldez@google.com> Reviewed-by: Steven Valdez <svaldez@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>

commit: ebacdeed67c510c201f7f4bb94cf9721477e2597 [log] [tgz]
author: David Benjamin <davidben@google.com> Sat Apr 08 11:00:45 2017 -0400
committer: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Mon Apr 10 14:13:46 2017 +0000
tree: cadfae6f79d1b6aac503c88cb379dd6ac95cb653
parent: d3bca049ee0700453eb252db5e21fbe86ca7c0c5 [diff] [blame]
diff --git a/ssl/test/runner/runner.go b/ssl/test/runner/runner.go
index 4f478bc..02824b8 100644
--- a/ssl/test/runner/runner.go
+++ b/ssl/test/runner/runner.go

@@ -9600,6 +9600,22 @@
 
 		testCases = append(testCases, t.test)
 	}
+
+	// The processing order for TLS 1.3 version negotiation is such that one
+	// may accidentally accept a HelloRetryRequest in lieu of ServerHello in
+	// TLS 1.2. Test that we do not do this.
+	testCases = append(testCases, testCase{
+		name: "SendServerHelloAsHelloRetryRequest",
+		config: Config{
+			MaxVersion: VersionTLS12,
+			Bugs: ProtocolBugs{
+				SendServerHelloAsHelloRetryRequest: true,
+			},
+		},
+		shouldFail:         true,
+		expectedError:      ":UNEXPECTED_MESSAGE:",
+		expectedLocalError: "remote error: unexpected message",
+	})
 }
 
 func addTrailingMessageDataTests() {
commit	ebacdeed67c510c201f7f4bb94cf9721477e2597	[log] [tgz]
author	David Benjamin <davidben@google.com>	Sat Apr 08 11:00:45 2017 -0400
committer	CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>	Mon Apr 10 14:13:46 2017 +0000
tree	cadfae6f79d1b6aac503c88cb379dd6ac95cb653
parent	d3bca049ee0700453eb252db5e21fbe86ca7c0c5 [diff] [blame]