Add a test to check the EC point formats extension appears when we expect The previous commit fixed a bug where the EC point formats extensions did not appear in the ServerHello. This should have been caught by 70-test_sslmessages but that test never tries an EC ciphersuite. This updates the test to do that. Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/2153)

commit: 397f4f78760480f982adaeed98ccb10bda4d3fbb [log] [tgz]
author: Matt Caswell <matt@openssl.org> Wed Dec 28 15:01:57 2016 +0000
committer: Matt Caswell <matt@openssl.org> Thu Dec 29 13:32:54 2016 +0000
tree: e585c2b778e89cf433a41633e04a825e5130c5e4
parent: 3b58c54f26b826abd55a513494ef892e7ad069ad [diff] [blame]
diff --git a/util/TLSProxy/ServerKeyExchange.pm b/util/TLSProxy/ServerKeyExchange.pm
index 6e5b4cd..7640b3f 100644
--- a/util/TLSProxy/ServerKeyExchange.pm
+++ b/util/TLSProxy/ServerKeyExchange.pm

@@ -42,9 +42,9 @@
 {
     my $self = shift;
 
-    #Minimal SKE parsing. Only supports DHE at the moment (if its not DHE
-    #the parsing data will be trash...which is ok as long as we don't try to
-    #use it)
+    #Minimal SKE parsing. Only supports one known DHE ciphersuite at the moment
+    return if (TLSProxy::Proxy->ciphersuite()
+               != TLSProxy::Message::CIPHER_ADH_AES_128_SHA);
 
     my $p_len = unpack('n', $self->data);
     my $ptr = 2;
commit	397f4f78760480f982adaeed98ccb10bda4d3fbb	[log] [tgz]
author	Matt Caswell <matt@openssl.org>	Wed Dec 28 15:01:57 2016 +0000
committer	Matt Caswell <matt@openssl.org>	Thu Dec 29 13:32:54 2016 +0000
tree	e585c2b778e89cf433a41633e04a825e5130c5e4
parent	3b58c54f26b826abd55a513494ef892e7ad069ad [diff] [blame]