commit 8a67c857c9a8db88a1aa2bd0bd7958fda71acac7
author Kazuho Oku <kazuhooku@gmail.com> Thu Nov 21 16:38:16 2024 +0900
committer GitHub <noreply@github.com> Thu Nov 21 16:38:16 2024 +0900
tree 15f607e45ed410b1fce9bda097ba447ca6e61635
parent e7d65c7e7389ea0807d62ae730486532ef655b30
parent b0f76730b7e943927a7e4118233df1ab6fefd354

Merge pull request #550 from h2o/kazuho/keyex-invalid-input

[add test] returned output should be clean when given invalid input

t/picotls.c

diff --git a/t/picotls.c b/t/picotls.c
index 1872cdd..42aaa78 100644
--- a/t/picotls.c
+++ b/t/picotls.c
@@ -2501,9 +2501,22 @@
     ok(ret == 0);
     ok(ctx == NULL);
 
+    /* client invalid input */
+    ret = client->create(client, &ctx);
+    ok(ret == 0);
+    client_secret = ptls_iovec_init(NULL, 0);
+    ret = ctx->on_exchange(&ctx, 1, &client_secret, ptls_iovec_init(ctx->pubkey.base, ctx->pubkey.len - 1));
+    ok(ret != 0);
+    ok(ctx == NULL);
+    ok(client_secret.base == NULL);
+
     /* test derivation failure. In case of X25519, the outcome is derived key becoming all-zero and rejected. In case of others, it
      * is most likely that the provided key would be rejected. */
+    server_pubkey = ptls_iovec_init(NULL, 0);
+    server_secret = ptls_iovec_init(NULL, 0);
     static uint8_t zeros[32] = {0};
     ret = server->exchange(server, &server_pubkey, &server_secret, ptls_iovec_init(zeros, sizeof(zeros)));
     ok(ret != 0);
+    ok(server_pubkey.base == NULL);
+    ok(server_secret.base == NULL);
 }