Align ServerHello cipher and opaque ALPN behavior in TLS-F

2026-06-19 01:11:09 +03:00 · 2026-05-28 16:11:25 +03:00
parent 31da0a1356
commit 2a0fcd6e35
6 changed files with 427 additions and 89 deletions
@@ -65,6 +65,7 @@ fn emulated_server_hello_keeps_single_change_cipher_spec_for_client_compatibilit
        false,
        true,
        ClientHelloTlsVersion::Tls13,
+        [0x13, 0x01],
        &rng,
        None,
        0,
@@ -89,6 +90,7 @@ fn emulated_server_hello_does_not_emit_profile_ticket_tail_when_disabled() {
        false,
        true,
        ClientHelloTlsVersion::Tls13,
+        [0x13, 0x01],
        &rng,
        None,
        0,
@@ -111,6 +113,7 @@ fn emulated_server_hello_uses_profile_ticket_lengths_when_enabled() {
        false,
        true,
        ClientHelloTlsVersion::Tls13,
+        [0x13, 0x01],
        &rng,
        None,
        2,
@@ -58,6 +58,7 @@ fn emulated_server_hello_ignores_oversized_alpn_when_marker_would_not_fit() {
        true,
        true,
        ClientHelloTlsVersion::Tls13,
+        [0x13, 0x01],
        &rng,
        Some(oversized_alpn),
        0,
@@ -84,7 +85,7 @@ fn emulated_server_hello_ignores_oversized_alpn_when_marker_would_not_fit() {
 }

 #[test]
-fn emulated_server_hello_embeds_full_alpn_marker_when_body_can_fit() {
+fn emulated_server_hello_keeps_alpn_marker_out_of_appdata() {
    let cached = make_cached(None);
    let rng = SecureRandom::new();

@@ -96,6 +97,7 @@ fn emulated_server_hello_embeds_full_alpn_marker_when_body_can_fit() {
        true,
        true,
        ClientHelloTlsVersion::Tls13,
+        [0x13, 0x01],
        &rng,
        Some(b"h2".to_vec()),
        0,
@@ -104,8 +106,8 @@ fn emulated_server_hello_embeds_full_alpn_marker_when_body_can_fit() {
    let payload = first_app_data_payload(&response);
    let expected = [0x00u8, 0x10, 0x00, 0x05, 0x00, 0x03, 0x02, b'h', b'2'];
    assert!(
-        payload.starts_with(&expected),
-        "when body has enough capacity, emulated first application record must include full ALPN marker"
+        !payload.starts_with(&expected),
+        "emulated ApplicationData must not expose plaintext ALPN marker bytes"
    );
 }

@@ -126,6 +128,7 @@ fn emulated_server_hello_prefers_cert_payload_over_alpn_marker() {
        true,
        true,
        ClientHelloTlsVersion::Tls12,
+        [0x13, 0x01],
        &rng,
        Some(b"h2".to_vec()),
        0,