Merge pull request #861 from lucas-clemente/cert-invalid-integrationtest

add an integration test for invalid certificates
2017-10-02 18:16:20 -05:00
parent 474b036474 47d87740ae
commit 52ed5579f7
1 changed files with 11 additions and 0 deletions
--- a/integrationtests/self/handshake_rtt_test.go
+++ b/integrationtests/self/handshake_rtt_test.go
@@ -149,4 +149,15 @@ var _ = Describe("Handshake RTT tests", func() {
 		// plus 1 RTT: the timer starts 0.5 RTTs after sending the first packet, and the CONNECTION_CLOSE needs another 0.5 RTTs to reach the client
 		expectDurationInRTTs(3)
 	})
+
+	It("errors when the client doesn't accept the certificate", func() {
+		// don't validate the client's address, send the certificate in the first flight
+		serverConfig.AcceptCookie = func(_ net.Addr, _ *quic.Cookie) bool {
+			return true
+		}
+		runServerAndProxy()
+		_, err := quic.DialAddr(proxy.LocalAddr().String(), nil, nil)
+		Expect(err).To(MatchError(qerr.ProofInvalid))
+		expectDurationInRTTs(1)
+	})
 })