tttls1.3 0.2.15 → 0.2.16

data/lib/tttls1.3/message/record.rb

@@ -11,23 +11,19 @@ module TTTLS13
       attr_reader :type
       attr_reader :legacy_record_version
       attr_reader :messages
-      attr_reader :surplus_binary
       attr_reader :cipher
 
       # @param type [TTTLS13::Message::ContentType]
       # @param legacy_record_version [TTTLS13::Message::ProtocolVersion]
       # @param messages [Array of TTTLS13::Message::$Object]
-      # @param surplus_binary [String]
       # @param cipher [TTTLS13::Cryptograph::$Object]
       def initialize(type:,
                      legacy_record_version: ProtocolVersion::TLS_1_2,
                      messages:,
-                     surplus_binary: '',
                      cipher:)
         @type = type
         @legacy_record_version = legacy_record_version
         @messages = messages
-        @surplus_binary = surplus_binary
         @cipher = cipher
       end
 
@@ -40,7 +36,7 @@ module TTTLS13
       #
       # @return [String]
       def serialize(record_size_limit = DEFAULT_RECORD_SIZE_LIMIT)
-        tlsplaintext = @messages.map(&:serialize).join + @surplus_binary
+        tlsplaintext = @messages.map(&:serialize).join
         if @cipher.is_a?(Cryptograph::Aead)
           max = @cipher.tlsplaintext_length_limit(record_size_limit)
           fragments = tlsplaintext.scan(/.{1,#{max}}/m)
@@ -66,6 +62,8 @@ module TTTLS13
       # @raise [TTTLS13::Error::ErrorAlerts]
       #
       # @return [TTTLS13::Message::Record]
+      # @return [Array of String]
+      # @return [String]
       # rubocop: disable Metrics/AbcSize
       # rubocop: disable Metrics/CyclomaticComplexity
       # rubocop: disable Metrics/PerceivedComplexity
@@ -93,13 +91,17 @@ module TTTLS13
           fragment, inner_type = cipher.decrypt(fragment, binary.slice(0, 5))
         end
 
-        messages, surplus_binary = deserialize_fragment(buffered + fragment,
-                                                        inner_type || type)
-        Record.new(type: type,
-                   legacy_record_version: legacy_record_version,
-                   messages: messages,
-                   surplus_binary: surplus_binary,
-                   cipher: cipher)
+        messages, orig_msgs, surplus_binary = deserialize_fragment(
+          buffered + fragment,
+          inner_type || type
+        )
+        record = Record.new(
+          type: type,
+          legacy_record_version: legacy_record_version,
+          messages: messages,
+          cipher: cipher
+        )
+        [record, orig_msgs, surplus_binary]
       end
       # rubocop: enable Metrics/AbcSize
       # rubocop: enable Metrics/CyclomaticComplexity
@@ -116,6 +118,7 @@ module TTTLS13
               Message::ServerHello,
               Message::EncryptedExtensions,
               Message::Certificate,
+              Message::CompressedCertificate,
               Message::CertificateVerify,
               Message::Finished,
               Message::EndOfEarlyData,
@@ -152,20 +155,24 @@ module TTTLS13
           raise Error::ErrorAlerts, :internal_error if binary.nil?
 
           surplus_binary = ''
+          orig_msgs = []
           case type
           when ContentType::HANDSHAKE
-            messages, surplus_binary = deserialize_handshake(binary)
+            messages, orig_msgs, surplus_binary = deserialize_handshake(binary)
           when ContentType::CCS
             messages = [ChangeCipherSpec.deserialize(binary)]
+            orig_msgs = [binary]
           when ContentType::APPLICATION_DATA
             messages = [ApplicationData.deserialize(binary)]
+            orig_msgs = [binary]
           when ContentType::ALERT
             messages = [Alert.deserialize(binary)]
+            orig_msgs = [binary]
           else
             raise Error::ErrorAlerts, :unexpected_message
           end
 
-          [messages, surplus_binary]
+          [messages, orig_msgs, surplus_binary]
         end
 
         # @param binary [String]
@@ -173,11 +180,13 @@ module TTTLS13
         # @raise [TTTLS13::Error::ErrorAlerts]
         #
         # @return [Array of TTTLS13::Message::$Object]
+        # @return [Array of String]
         # @return [String]
         def deserialize_handshake(binary)
           raise Error::ErrorAlerts, :internal_error if binary.nil?
 
           handshakes = []
+          orig_msgs = []
           i = 0
           while i < binary.length
             # Handshake.length is kind of uint24 and Record.length is kind of
@@ -185,18 +194,19 @@ module TTTLS13
             if binary.length < 4 + i ||
                binary.length < 4 + i + Convert.bin2i(binary.slice(i + 1, 3))
               surplus_binary = binary[i..]
-              return [handshakes, surplus_binary]
+              return [handshakes, orig_msgs, surplus_binary]
             end
 
             msg_len = Convert.bin2i(binary.slice(i + 1, 3))
             msg_bin = binary.slice(i, msg_len + 4)
+            orig_msgs << msg_bin
             message = do_deserialize_handshake(msg_bin)
             i += msg_len + 4
             handshakes << message
           end
 
           surplus_binary = binary[i..]
-          [handshakes, surplus_binary]
+          [handshakes, orig_msgs, surplus_binary]
         end
 
         # @param binary [String]
@@ -226,6 +236,8 @@ module TTTLS13
             NewSessionTicket.deserialize(binary)
           when HandshakeType::END_OF_EARLY_DATA
             EndOfEarlyData.deserialize(binary)
+          when HandshakeType::COMPRESSED_CERTIFICATE
+            CompressedCertificate.deserialize(binary)
           else
             raise Error::ErrorAlerts, :unexpected_message
           end

data/lib/tttls1.3/message.rb

@@ -21,26 +21,27 @@ module TTTLS13
     DEFAULT_VERSIONS = [ProtocolVersion::TLS_1_3].freeze
 
     module HandshakeType
-      HELLO_REQUEST        = "\x00" # RESERVED
-      CLIENT_HELLO         = "\x01"
-      SERVER_HELLO         = "\x02"
-      HELLO_VERIFY_REQUEST = "\x03" # RESERVED
-      NEW_SESSION_TICKET   = "\x04"
-      END_OF_EARLY_DATA    = "\x05"
-      HELLO_RETRY_REQUEST  = "\x06" # RESERVED
-      ENCRYPTED_EXTENSIONS = "\x08"
-      CERTIFICATE          = "\x0b"
-      SERVER_KEY_EXCHANGE  = "\x0c" # RESERVED
-      CERTIFICATE_REQUEST  = "\x0d"
-      SERVER_HELLO_DONE    = "\x0e" # RESERVED
-      CERTIFICATE_VERIFY   = "\x0f"
-      CLIENT_KEY_EXCHANGE  = "\x10" # RESERVED
-      FINISHED             = "\x14"
-      CERTIFICATE_URL      = "\x15" # RESERVED
-      CERTIFICATE_STATUS   = "\x16" # RESERVED
-      SUPPLEMENTAL_DATA    = "\x17" # RESERVED
-      KEY_UPDATE           = "\x18"
-      MESSAGE_HASH         = "\xfe"
+      HELLO_REQUEST          = "\x00" # RESERVED
+      CLIENT_HELLO           = "\x01"
+      SERVER_HELLO           = "\x02"
+      HELLO_VERIFY_REQUEST   = "\x03" # RESERVED
+      NEW_SESSION_TICKET     = "\x04"
+      END_OF_EARLY_DATA      = "\x05"
+      HELLO_RETRY_REQUEST    = "\x06" # RESERVED
+      ENCRYPTED_EXTENSIONS   = "\x08"
+      CERTIFICATE            = "\x0b"
+      SERVER_KEY_EXCHANGE    = "\x0c" # RESERVED
+      CERTIFICATE_REQUEST    = "\x0d"
+      SERVER_HELLO_DONE      = "\x0e" # RESERVED
+      CERTIFICATE_VERIFY     = "\x0f"
+      CLIENT_KEY_EXCHANGE    = "\x10" # RESERVED
+      FINISHED               = "\x14"
+      CERTIFICATE_URL        = "\x15" # RESERVED
+      CERTIFICATE_STATUS     = "\x16" # RESERVED
+      SUPPLEMENTAL_DATA      = "\x17" # RESERVED
+      KEY_UPDATE             = "\x18"
+      COMPRESSED_CERTIFICATE = "\x19"
+      MESSAGE_HASH           = "\xfe"
     end
 
     module ExtensionType
@@ -56,6 +57,7 @@ module TTTLS13
       CLIENT_CERTIFICATE_TYPE                = "\x00\x13"
       SERVER_CERTIFICATE_TYPE                = "\x00\x14"
       PADDING                                = "\x00\x15"
+      COMPRESS_CERTIFICATE                   = "\x00\x1b"
       RECORD_SIZE_LIMIT                      = "\x00\x1c"
       PWD_PROTECT                            = "\x00\x1d"
       PWD_CLEAR                              = "\x00\x1e"

data/lib/tttls1.3/server.rb

@@ -44,6 +44,11 @@ module TTTLS13
   ].freeze
   private_constant :DEFAULT_SP_NAMED_GROUP_LIST
 
+  DEFAULT_SP_COMPRESS_CERTIFICATE_ALGORITHMS = [
+    Message::Extension::CertificateCompressionAlgorithm::ZLIB
+  ].freeze
+  private_constant :DEFAULT_SP_COMPRESS_CERTIFICATE_ALGORITHMS
+
   DEFAULT_SERVER_SETTINGS = {
     crt_file: nil,
     chain_files: nil,
@@ -53,6 +58,7 @@ module TTTLS13
     supported_groups: DEFAULT_SP_NAMED_GROUP_LIST,
     alpn: nil,
     process_ocsp_response: nil,
+    compress_certificate_algorithms: DEFAULT_SP_COMPRESS_CERTIFICATE_ALGORITHMS,
     compatibility_mode: true,
     loglevel: Logger::WARN
   }.freeze
@@ -140,7 +146,6 @@ module TTTLS13
       transcript = Transcript.new
       key_schedule = nil # TTTLS13::KeySchedule
       priv_key = nil # OpenSSL::PKey::$Object
-
       hs_wcipher = nil # TTTLS13::Cryptograph::$Object
       hs_rcipher = nil # TTTLS13::Cryptograph::$Object
 
@@ -151,7 +156,7 @@ module TTTLS13
           logger.debug('ServerState::START')
 
           receivable_ccs = transcript.include?(CH1)
-          ch = transcript[CH] = recv_client_hello(receivable_ccs)
+          ch, = transcript[CH] = recv_client_hello(receivable_ccs)
 
           # support only TLS 1.3
           terminate(:protocol_version) unless ch.negotiated_tls_1_3?
@@ -183,7 +188,7 @@ module TTTLS13
           logger.debug('ServerState::RECVD_CH')
 
           # select parameters
-          ch = transcript[CH]
+          ch, = transcript[CH]
           @cipher_suite = select_cipher_suite(ch)
           @named_group = select_named_group(ch)
           @signature_scheme = select_signature_scheme(ch, @crt)
@@ -192,8 +197,9 @@ module TTTLS13
 
           # send HRR
           if @named_group.nil?
-            ch1 = transcript[CH1] = transcript.delete(CH)
-            transcript[HRR] = send_hello_retry_request(ch1, @cipher_suite)
+            ch1, = transcript[CH1] = transcript.delete(CH)
+            hrr = send_hello_retry_request(ch1, @cipher_suite)
+            transcript[HRR] = [hrr, hrr.serialize]
             @state = ServerState::START
             next
           end
@@ -201,10 +207,14 @@ module TTTLS13
         when ServerState::NEGOTIATED
           logger.debug('ServerState::NEGOTIATED')
 
-          ch = transcript[CH]
+          ch, = transcript[CH]
           extensions, priv_key = gen_sh_extensions(@named_group)
-          transcript[SH] = send_server_hello(extensions, @cipher_suite,
-                                             ch.legacy_session_id)
+          sh = send_server_hello(
+            extensions,
+            @cipher_suite,
+            ch.legacy_session_id
+          )
+          transcript[SH] = [sh, sh.serialize]
           send_ccs if @settings[:compatibility_mode]
 
           # generate shared secret
@@ -235,29 +245,30 @@ module TTTLS13
         when ServerState::WAIT_FLIGHT2
           logger.debug('ServerState::WAIT_FLIGHT2')
 
-          ch = transcript[CH]
+          ch, = transcript[CH]
           rsl = @send_record_size \
             if ch.extensions.include?(Message::ExtensionType::RECORD_SIZE_LIMIT)
-          ee = transcript[EE] = gen_encrypted_extensions(ch, @alpn, rsl)
+          ee = gen_encrypted_extensions(ch, @alpn, rsl)
+          transcript[EE] = [ee, ee.serialize]
           # TODO: [Send CertificateRequest]
 
           # status_request
           ocsp_response = fetch_ocsp_response \
             if ch.extensions.include?(Message::ExtensionType::STATUS_REQUEST)
-          ct = transcript[CT] = gen_certificate(@crt, @chain, ocsp_response)
+          ct = gen_certificate(@crt, ch, @chain, ocsp_response)
+          transcript[CT] = [ct, ct.serialize]
           digest = CipherSuite.digest(@cipher_suite)
-          cv = transcript[CV] = gen_certificate_verify(
-            @key,
-            @signature_scheme,
-            transcript.hash(digest, CT)
-          )
+          hash = transcript.hash(digest, CT)
+          cv = gen_certificate_verify(@key, @signature_scheme, hash)
+          transcript[CV] = [cv, cv.serialize]
           finished_key = key_schedule.server_finished_key
           signature = sign_finished(
             digest: digest,
             finished_key: finished_key,
             hash: transcript.hash(digest, CV)
           )
-          sf = transcript[SF] = Message::Finished.new(signature)
+          sf = Message::Finished.new(signature)
+          transcript[SF] = [sf, sf.serialize]
           send_server_parameters([ee, ct, cv, sf], hs_wcipher)
           @state = ServerState::WAIT_FINISHED
         when ServerState::WAIT_CERT
@@ -267,7 +278,7 @@ module TTTLS13
         when ServerState::WAIT_FINISHED
           logger.debug('ServerState::WAIT_FINISHED')
 
-          cf = transcript[CF] = recv_finished(hs_rcipher)
+          cf, = transcript[CF] = recv_finished(hs_rcipher)
           digest = CipherSuite.digest(@cipher_suite)
           verified = verified_finished?(
             finished: cf,
@@ -325,12 +336,15 @@ module TTTLS13
     # @raise [TTTLS13::Error::ErrorAlerts]
     #
     # @return [TTTLS13::Message::ClientHello]
+    # @return [String]
     def recv_client_hello(receivable_ccs)
-      ch = recv_message(receivable_ccs: receivable_ccs,
-                        cipher: Cryptograph::Passer.new)
+      ch, orig_msg = recv_message(
+        receivable_ccs: receivable_ccs,
+        cipher: Cryptograph::Passer.new
+      )
       terminate(:unexpected_message) unless ch.is_a?(Message::ClientHello)
 
-      ch
+      [ch, orig_msg]
     end
 
     # @param extensions [TTTLS13::Message::Extensions]
@@ -408,19 +422,39 @@ module TTTLS13
     end
 
     # @param crt [OpenSSL::X509::Certificate]
+    # @param ch [TTTLS13::Message::ClientHell]
     # @param chain [Array of OpenSSL::X509::Certificate]
     # @param ocsp_response [OpenSSL::OCSP::Response]
     #
-    # @return [TTTLS13::Message::Certificate, nil]
-    def gen_certificate(crt, chain = [], ocsp_response = nil)
+    # @return [TTTLS13::Message::Certificate, CompressedCertificate, nil]
+    # rubocop: disable Metrics/CyclomaticComplexity
+    def gen_certificate(crt, ch, chain = [], ocsp_response = nil)
       exs = Message::Extensions.new
       # status_request
       exs << Message::Extension::OCSPResponse.new(ocsp_response) \
         unless ocsp_response.nil?
       ces = [Message::CertificateEntry.new(crt, exs)] \
             + (chain || []).map { |c| Message::CertificateEntry.new(c) }
-      Message::Certificate.new(certificate_list: ces)
+      ct = Message::Certificate.new(certificate_list: ces)
+
+      # compress_certificate
+      cc = ch.extensions[Message::ExtensionType::COMPRESS_CERTIFICATE]
+      if !cc.nil? && !cc.algorithms.empty?
+        cca = (@settings[:compress_certificate_algorithms] || []).find do |a|
+          cc.algorithms.include?(a)
+        end
+
+        unless cca.nil?
+          ct = Message::CompressedCertificate.new(
+            certificate_message: ct,
+            algorithm: cca
+          )
+        end
+      end
+
+      ct
     end
+    # rubocop: enable Metrics/CyclomaticComplexity
 
     # @param key [OpenSSL::PKey::PKey]
     # @param signature_scheme [TTTLS13::SignatureScheme]
@@ -442,11 +476,12 @@ module TTTLS13
     # @raise [TTTLS13::Error::ErrorAlerts]
     #
     # @return [TTTLS13::Message::Finished]
+    # @return [String]
     def recv_finished(cipher)
-      cf = recv_message(receivable_ccs: true, cipher: cipher)
+      cf, orig_msg = recv_message(receivable_ccs: true, cipher: cipher)
       terminate(:unexpected_message) unless cf.is_a?(Message::Finished)
 
-      cf
+      [cf, orig_msg]
     end
 
     # @param named_group [TTTLS13::NamedGroup]

data/lib/tttls1.3/transcript.rb

@@ -19,10 +19,6 @@ module TTTLS13
   CF   = 12
 
   class Transcript < Hash
-    def initialize
-      super
-    end
-
     alias super_include? include?
 
     # @param digest [String] name of digest algorithm
@@ -62,12 +58,12 @@ module TTTLS13
         exc_prefix = Message::HandshakeType::MESSAGE_HASH \
                      + "\x00\x00" \
                      + OpenSSL::Digest.new(digest).digest_length.to_uint8 \
-                     + OpenSSL::Digest.digest(digest, self[CH1].serialize) \
-                     + self[HRR].serialize
+                     + OpenSSL::Digest.digest(digest, self[CH1].last) \
+                     + self[HRR].last
       end
 
       messages = (CH..end_index).to_a.map do |m|
-        include?(m) ? self[m].serialize : ''
+        include?(m) ? self[m].last : ''
       end
       exc_prefix + messages.join
     end

data/lib/tttls1.3/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module TTTLS13
-  VERSION = '0.2.15'
+  VERSION = '0.2.16'
 end

data/spec/client_spec.rb

@@ -11,7 +11,7 @@ RSpec.describe Client do
       client = Client.new(mock_socket, 'localhost')
       extensions, _priv_keys = client.send(:gen_ch_extensions)
       client.send(:send_client_hello, extensions)
-      Record.deserialize(mock_socket.read, Cryptograph::Passer.new)
+      Record.deserialize(mock_socket.read, Cryptograph::Passer.new).first
     end
 
     it 'should send default ClientHello' do
@@ -37,7 +37,7 @@ RSpec.describe Client do
                         + msg_len.to_uint16 \
                         + TESTBINARY_SERVER_HELLO)
       client = Client.new(mock_socket, 'localhost')
-      client.send(:recv_server_hello)
+      client.send(:recv_server_hello).first
     end
 
     it 'should receive ServerHello' do
@@ -65,20 +65,20 @@ RSpec.describe Client do
     end
 
     it 'should receive EncryptedExtensions' do
-      message = client.send(:recv_encrypted_extensions, cipher)
+      message, = client.send(:recv_encrypted_extensions, cipher)
       expect(message.msg_type).to eq HandshakeType::ENCRYPTED_EXTENSIONS
     end
 
     it 'should receive Certificate' do
       client.send(:recv_encrypted_extensions, cipher) # to skip
-      message = client.send(:recv_certificate, cipher)
+      message, = client.send(:recv_certificate, cipher)
       expect(message.msg_type).to eq HandshakeType::CERTIFICATE
     end
 
     it 'should receive CertificateVerify' do
       client.send(:recv_encrypted_extensions, cipher) # to skip
       client.send(:recv_certificate, cipher)          # to skip
-      message = client.send(:recv_certificate_verify, cipher)
+      message, = client.send(:recv_certificate_verify, cipher)
       expect(message.msg_type).to eq HandshakeType::CERTIFICATE_VERIFY
     end
 
@@ -86,7 +86,7 @@ RSpec.describe Client do
       client.send(:recv_encrypted_extensions, cipher) # to skip
       client.send(:recv_certificate, cipher)          # to skip
       client.send(:recv_certificate_verify, cipher)   # to skip
-      message = client.send(:recv_finished, cipher)
+      message, = client.send(:recv_finished, cipher)
       expect(message.msg_type).to eq HandshakeType::FINISHED
     end
   end
@@ -97,14 +97,20 @@ RSpec.describe Client do
     end
 
     let(:transcript) do
+      ch = ClientHello.deserialize(TESTBINARY_CLIENT_HELLO)
+      sh = ServerHello.deserialize(TESTBINARY_SERVER_HELLO)
+      ee = EncryptedExtensions.deserialize(TESTBINARY_ENCRYPTED_EXTENSIONS)
+      ct = Certificate.deserialize(TESTBINARY_CERTIFICATE)
+      cv = CertificateVerify.deserialize(TESTBINARY_CERTIFICATE_VERIFY)
+      sf = Finished.deserialize(TESTBINARY_SERVER_FINISHED)
       transcript = Transcript.new
       transcript.merge!(
-        CH => ClientHello.deserialize(TESTBINARY_CLIENT_HELLO),
-        SH => ServerHello.deserialize(TESTBINARY_SERVER_HELLO),
-        EE => EncryptedExtensions.deserialize(TESTBINARY_ENCRYPTED_EXTENSIONS),
-        CT => Certificate.deserialize(TESTBINARY_CERTIFICATE),
-        CV => CertificateVerify.deserialize(TESTBINARY_CERTIFICATE_VERIFY),
-        SF => Finished.deserialize(TESTBINARY_SERVER_FINISHED)
+        CH => [ch, TESTBINARY_CLIENT_HELLO],
+        SH => [sh, TESTBINARY_SERVER_HELLO],
+        EE => [ee, TESTBINARY_ENCRYPTED_EXTENSIONS],
+        CT => [ct, TESTBINARY_CERTIFICATE],
+        CV => [cv, TESTBINARY_CERTIFICATE_VERIFY],
+        SF => [sf, TESTBINARY_SERVER_FINISHED]
       )
       transcript
     end
@@ -140,7 +146,7 @@ RSpec.describe Client do
         write_iv: TESTBINARY_CLIENT_FINISHED_WRITE_IV,
         sequence_number: SequenceNumber.new
       )
-      Record.deserialize(mock_socket.read, hs_rcipher)
+      Record.deserialize(mock_socket.read, hs_rcipher).first
     end
 
     it 'should send Finished' do
@@ -170,14 +176,17 @@ RSpec.describe Client do
     end
 
     let(:transcript) do
+      ch = ClientHello.deserialize(TESTBINARY_CLIENT_HELLO)
+      sh = ServerHello.deserialize(TESTBINARY_SERVER_HELLO)
+      ee = EncryptedExtensions.deserialize(TESTBINARY_ENCRYPTED_EXTENSIONS)
       transcript = Transcript.new
       transcript.merge!(
-        CH => ClientHello.deserialize(TESTBINARY_CLIENT_HELLO),
-        SH => ServerHello.deserialize(TESTBINARY_SERVER_HELLO),
-        EE => EncryptedExtensions.deserialize(TESTBINARY_ENCRYPTED_EXTENSIONS),
-        CT => ct,
-        CV => cv,
-        SF => sf
+        CH => [ch, TESTBINARY_CLIENT_HELLO],
+        SH => [sh, TESTBINARY_SERVER_HELLO],
+        EE => [ee, TESTBINARY_ENCRYPTED_EXTENSIONS],
+        CT => [ct, TESTBINARY_CERTIFICATE],
+        CV => [cv, TESTBINARY_CERTIFICATE_VERIFY],
+        SF => [sf, TESTBINARY_SERVER_FINISHED]
       )
     end
 

data/spec/compress_certificate_spec.rb

@@ -0,0 +1,54 @@
+# encoding: ascii-8bit
+# frozen_string_literal: true
+
+require_relative 'spec_helper'
+using Refinements
+
+RSpec.describe Alpn do
+  context 'valid compress_certificate' do
+    let(:algorithms) do
+      [CertificateCompressionAlgorithm::ZLIB]
+    end
+
+    let(:extension) do
+      CompressCertificate.new(algorithms)
+    end
+
+    it 'should be generated' do
+      expect(extension.extension_type)
+        .to eq ExtensionType::COMPRESS_CERTIFICATE
+      expect(extension.algorithms).to eq algorithms
+    end
+
+    it 'should be serialized' do
+      expect(extension.serialize)
+        .to eq ExtensionType::COMPRESS_CERTIFICATE \
+               + 3.to_uint16 \
+               + 2.to_uint8 \
+               + "\x00\x01"
+    end
+  end
+
+  context 'invalid compress_certificate, empty,' do
+    let(:extension) do
+      CompressCertificate.new([])
+    end
+
+    it 'should not be generated' do
+      expect { extension }.to raise_error(ErrorAlerts)
+    end
+  end
+
+  context 'valid compress_certificate binary' do
+    let(:extension) do
+      CompressCertificate.deserialize(TESTBINARY_COMPRESS_CERTIFICATE)
+    end
+
+    it 'should generate valid object' do
+      expect(extension.extension_type)
+        .to eq ExtensionType::COMPRESS_CERTIFICATE
+      expect(extension.algorithms)
+        .to eq [CertificateCompressionAlgorithm::ZLIB]
+    end
+  end
+end

data/spec/connection_spec.rb

@@ -32,15 +32,18 @@ RSpec.describe Connection do
     end
 
     let(:transcript) do
+      ch = ClientHello.deserialize(TESTBINARY_CLIENT_HELLO)
+      sh = ServerHello.deserialize(TESTBINARY_SERVER_HELLO)
+      ee = EncryptedExtensions.deserialize(TESTBINARY_ENCRYPTED_EXTENSIONS)
       transcript = Transcript.new
       transcript.merge!(
-        CH => ClientHello.deserialize(TESTBINARY_CLIENT_HELLO),
-        SH => ServerHello.deserialize(TESTBINARY_SERVER_HELLO),
-        EE => EncryptedExtensions.deserialize(TESTBINARY_ENCRYPTED_EXTENSIONS),
-        CT => ct,
-        CV => cv,
-        CF => cf,
-        SF => sf
+        CH => [ch, TESTBINARY_CLIENT_HELLO],
+        SH => [sh, TESTBINARY_SERVER_HELLO],
+        EE => [ee, TESTBINARY_ENCRYPTED_EXTENSIONS],
+        CT => [ct, TESTBINARY_CERTIFICATE],
+        CV => [cv, TESTBINARY_CERTIFICATE_VERIFY],
+        CF => [cf, TESTBINARY_CLIENT_FINISHED],
+        SF => [sf, TESTBINARY_SERVER_FINISHED]
       )
     end
 
@@ -115,16 +118,20 @@ RSpec.describe Connection do
     end
 
     let(:transcript) do
+      ch1 = ClientHello.deserialize(TESTBINARY_HRR_CLIENT_HELLO1)
+      hrr = ServerHello.deserialize(TESTBINARY_HRR_HELLO_RETRY_REQUEST)
+      ch = ClientHello.deserialize(TESTBINARY_HRR_CLIENT_HELLO)
+      sh = ServerHello.deserialize(TESTBINARY_HRR_SERVER_HELLO)
+      ee = EncryptedExtensions.deserialize(TESTBINARY_HRR_ENCRYPTED_EXTENSIONS)
       transcript = Transcript.new
       transcript.merge!(
-        CH1 => ClientHello.deserialize(TESTBINARY_HRR_CLIENT_HELLO1),
-        HRR => ServerHello.deserialize(TESTBINARY_HRR_HELLO_RETRY_REQUEST),
-        CH => ClientHello.deserialize(TESTBINARY_HRR_CLIENT_HELLO),
-        SH => ServerHello.deserialize(TESTBINARY_HRR_SERVER_HELLO),
-        EE =>
-        EncryptedExtensions.deserialize(TESTBINARY_HRR_ENCRYPTED_EXTENSIONS),
-        CT => ct,
-        CV => cv
+        CH1 => [ch1, TESTBINARY_HRR_CLIENT_HELLO1],
+        HRR => [hrr, TESTBINARY_HRR_HELLO_RETRY_REQUEST],
+        CH => [ch, TESTBINARY_HRR_CLIENT_HELLO],
+        SH => [sh, TESTBINARY_HRR_SERVER_HELLO],
+        EE => [ee, TESTBINARY_HRR_ENCRYPTED_EXTENSIONS],
+        CT => [ct, TESTBINARY_HRR_CERTIFICATE],
+        CV => [cv, TESTBINARY_HRR_CERTIFICATE_VERIFY]
       )
     end