jdk-sandbox: jdk/src/java.base/share/classes/sun/security/ssl/OutputRecord.java@2ee9017c7597 (annotated)

2 90ce3da70b43 Initial load duke parents: diff changeset	1	/*
16113 946ec9b22004 8006777: Improve TLS handling of invalid messages xuelei parents: 14664 diff changeset	2	* Copyright (c) 1996, 2013, Oracle and/or its affiliates. All rights reserved.
2 90ce3da70b43 Initial load duke parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
90ce3da70b43 Initial load duke parents: diff changeset	4	*
90ce3da70b43 Initial load duke parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
90ce3da70b43 Initial load duke parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 715 diff changeset	7	* published by the Free Software Foundation. Oracle designates this
2 90ce3da70b43 Initial load duke parents: diff changeset	8	* particular file as subject to the "Classpath" exception as provided
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 715 diff changeset	9	* by Oracle in the LICENSE file that accompanied this code.
2 90ce3da70b43 Initial load duke parents: diff changeset	10	*
90ce3da70b43 Initial load duke parents: diff changeset	11	* This code is distributed in the hope that it will be useful, but WITHOUT
90ce3da70b43 Initial load duke parents: diff changeset	12	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
90ce3da70b43 Initial load duke parents: diff changeset	13	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
90ce3da70b43 Initial load duke parents: diff changeset	14	* version 2 for more details (a copy is included in the LICENSE file that
90ce3da70b43 Initial load duke parents: diff changeset	15	* accompanied this code).
90ce3da70b43 Initial load duke parents: diff changeset	16	*
90ce3da70b43 Initial load duke parents: diff changeset	17	* You should have received a copy of the GNU General Public License version
90ce3da70b43 Initial load duke parents: diff changeset	18	* 2 along with this work; if not, write to the Free Software Foundation,
90ce3da70b43 Initial load duke parents: diff changeset	19	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
90ce3da70b43 Initial load duke parents: diff changeset	20	*
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 715 diff changeset	21	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 715 diff changeset	22	* or visit www.oracle.com if you need additional information or have any
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 715 diff changeset	23	* questions.
2 90ce3da70b43 Initial load duke parents: diff changeset	24	*/
90ce3da70b43 Initial load duke parents: diff changeset	25
90ce3da70b43 Initial load duke parents: diff changeset	26	package sun.security.ssl;
90ce3da70b43 Initial load duke parents: diff changeset	27
90ce3da70b43 Initial load duke parents: diff changeset	28	import java.io.*;
90ce3da70b43 Initial load duke parents: diff changeset	29	import java.nio.*;
12428 e9feb65d37fa 7157903: JSSE client sockets are very slow wetmore parents: 6856 diff changeset	30	import java.util.Arrays;
2 90ce3da70b43 Initial load duke parents: diff changeset	31
90ce3da70b43 Initial load duke parents: diff changeset	32	import javax.net.ssl.SSLException;
90ce3da70b43 Initial load duke parents: diff changeset	33	import sun.misc.HexDumpEncoder;
90ce3da70b43 Initial load duke parents: diff changeset	34
90ce3da70b43 Initial load duke parents: diff changeset	35
90ce3da70b43 Initial load duke parents: diff changeset	36	/**
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	37	* {@code OutputRecord} takes care of the management of SSL/TLS/DTLS output
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	38	* records, including buffering, encryption, handshake messages marshal, etc.
2 90ce3da70b43 Initial load duke parents: diff changeset	39	*
90ce3da70b43 Initial load duke parents: diff changeset	40	* @author David Brownell
90ce3da70b43 Initial load duke parents: diff changeset	41	*/
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	42	abstract class OutputRecord extends ByteArrayOutputStream
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	43	implements Record, Closeable {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	44
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	45	/* Class and subclass dynamic debugging support */
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	46	static final Debug debug = Debug.getInstance("ssl");
2 90ce3da70b43 Initial load duke parents: diff changeset	47
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	48	Authenticator writeAuthenticator;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	49	CipherBox writeCipher;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	50
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	51	HandshakeHash handshakeHash;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	52	boolean firstMessage;
2 90ce3da70b43 Initial load duke parents: diff changeset	53
90ce3da70b43 Initial load duke parents: diff changeset	54	// current protocol version, sent as record version
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	55	ProtocolVersion protocolVersion;
2 90ce3da70b43 Initial load duke parents: diff changeset	56
90ce3da70b43 Initial load duke parents: diff changeset	57	// version for the ClientHello message. Only relevant if this is a
90ce3da70b43 Initial load duke parents: diff changeset	58	// client handshake record. If set to ProtocolVersion.SSL20Hello,
90ce3da70b43 Initial load duke parents: diff changeset	59	// the V3 client hello is converted to V2 format.
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	60	ProtocolVersion helloVersion;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	61
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	62	// Is it the first application record to write?
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	63	boolean isFirstAppOutputRecord = true;
2 90ce3da70b43 Initial load duke parents: diff changeset	64
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	65	// packet size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	66	int packetSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	67
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	68	// fragment size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	69	int fragmentSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	70
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	71	// closed or not?
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	72	boolean isClosed;
2 90ce3da70b43 Initial load duke parents: diff changeset	73
90ce3da70b43 Initial load duke parents: diff changeset	74	/*
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	75	* Mappings from V3 cipher suite encodings to their pure V2 equivalents.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	76	* This is taken from the SSL V3 specification, Appendix E.
2 90ce3da70b43 Initial load duke parents: diff changeset	77	*/
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	78	private static int[] V3toV2CipherMap1 =
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	79	{-1, -1, -1, 0x02, 0x01, -1, 0x04, 0x05, -1, 0x06, 0x07};
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	80	private static int[] V3toV2CipherMap3 =
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	81	{-1, -1, -1, 0x80, 0x80, -1, 0x80, 0x80, -1, 0x40, 0xC0};
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	82
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	83	OutputRecord() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	84	this.writeCipher = CipherBox.NULL;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	85	this.firstMessage = true;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	86	this.fragmentSize = Record.maxDataSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	87
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	88	// Please set packetSize and protocolVersion in the implementation.
2 90ce3da70b43 Initial load duke parents: diff changeset	89	}
90ce3da70b43 Initial load duke parents: diff changeset	90
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	91	void setVersion(ProtocolVersion protocolVersion) {
2 90ce3da70b43 Initial load duke parents: diff changeset	92	this.protocolVersion = protocolVersion;
90ce3da70b43 Initial load duke parents: diff changeset	93	}
90ce3da70b43 Initial load duke parents: diff changeset	94
90ce3da70b43 Initial load duke parents: diff changeset	95	/*
90ce3da70b43 Initial load duke parents: diff changeset	96	* Updates helloVersion of this record.
90ce3da70b43 Initial load duke parents: diff changeset	97	*/
90ce3da70b43 Initial load duke parents: diff changeset	98	synchronized void setHelloVersion(ProtocolVersion helloVersion) {
90ce3da70b43 Initial load duke parents: diff changeset	99	this.helloVersion = helloVersion;
90ce3da70b43 Initial load duke parents: diff changeset	100	}
90ce3da70b43 Initial load duke parents: diff changeset	101
90ce3da70b43 Initial load duke parents: diff changeset	102	/*
90ce3da70b43 Initial load duke parents: diff changeset	103	* For handshaking, we need to be able to hash every byte above the
90ce3da70b43 Initial load duke parents: diff changeset	104	* record marking layer. This is where we're guaranteed to see those
90ce3da70b43 Initial load duke parents: diff changeset	105	* bytes, so this is where we can hash them.
90ce3da70b43 Initial load duke parents: diff changeset	106	*/
90ce3da70b43 Initial load duke parents: diff changeset	107	void setHandshakeHash(HandshakeHash handshakeHash) {
90ce3da70b43 Initial load duke parents: diff changeset	108	this.handshakeHash = handshakeHash;
90ce3da70b43 Initial load duke parents: diff changeset	109	}
90ce3da70b43 Initial load duke parents: diff changeset	110
90ce3da70b43 Initial load duke parents: diff changeset	111	/*
90ce3da70b43 Initial load duke parents: diff changeset	112	* Return true iff the record is empty -- to avoid doing the work
90ce3da70b43 Initial load duke parents: diff changeset	113	* of sending empty records over the network.
90ce3da70b43 Initial load duke parents: diff changeset	114	*/
90ce3da70b43 Initial load duke parents: diff changeset	115	boolean isEmpty() {
100 01ef29ca378f 6447412: Issue with socket.close() for ssl sockets when poweroff on other system xuelei parents: 2 diff changeset	116	return false;
01ef29ca378f 6447412: Issue with socket.close() for ssl sockets when poweroff on other system xuelei parents: 2 diff changeset	117	}
2 90ce3da70b43 Initial load duke parents: diff changeset	118
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	119	boolean seqNumIsHuge() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	120	return (writeAuthenticator != null) &&
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	121	writeAuthenticator.seqNumIsHuge();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	122	}
16913 a6f4d1626ad9 8011680: Re-integrate AEAD implementation of JSSE xuelei parents: 16126 diff changeset	123
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	124	// SSLEngine and SSLSocket
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	125	abstract void encodeAlert(byte level, byte description) throws IOException;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	126
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	127	// SSLEngine and SSLSocket
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	128	abstract void encodeHandshake(byte[] buffer,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	129	int offset, int length) throws IOException;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	130
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	131	// SSLEngine and SSLSocket
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	132	abstract void encodeChangeCipherSpec() throws IOException;
16913 a6f4d1626ad9 8011680: Re-integrate AEAD implementation of JSSE xuelei parents: 16126 diff changeset	133
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	134	// apply to SSLEngine only
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	135	Ciphertext encode(ByteBuffer[] sources, int offset, int length,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	136	ByteBuffer destination) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	137	throw new UnsupportedOperationException();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	138	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	139
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	140	// apply to SSLEngine only
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	141	void encodeV2NoCipher() throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	142	throw new UnsupportedOperationException();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	143	}
16913 a6f4d1626ad9 8011680: Re-integrate AEAD implementation of JSSE xuelei parents: 16126 diff changeset	144
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	145	// apply to SSLSocket only
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	146	void deliver(byte[] source, int offset, int length) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	147	throw new UnsupportedOperationException();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	148	}
16913 a6f4d1626ad9 8011680: Re-integrate AEAD implementation of JSSE xuelei parents: 16126 diff changeset	149
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	150	// apply to SSLSocket only
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	151	void setDeliverStream(OutputStream outputStream) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	152	throw new UnsupportedOperationException();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	153	}
16913 a6f4d1626ad9 8011680: Re-integrate AEAD implementation of JSSE xuelei parents: 16126 diff changeset	154
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	155	// apply to SSLEngine only
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	156	Ciphertext acquireCiphertext(ByteBuffer destination) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	157	throw new UnsupportedOperationException();
2 90ce3da70b43 Initial load duke parents: diff changeset	158	}
90ce3da70b43 Initial load duke parents: diff changeset	159
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	160	void changeWriteCiphers(Authenticator writeAuthenticator,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	161	CipherBox writeCipher) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	162
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	163	encodeChangeCipherSpec();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	164
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	165	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	166	* Dispose of any intermediate state in the underlying cipher.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	167	* For PKCS11 ciphers, this will release any attached sessions,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	168	* and thus make finalization faster.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	169	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	170	* Since MAC's doFinal() is called for every SSL/TLS packet, it's
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	171	* not necessary to do the same with MAC's.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	172	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	173	writeCipher.dispose();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	174
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	175	this.writeAuthenticator = writeAuthenticator;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	176	this.writeCipher = writeCipher;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	177	this.isFirstAppOutputRecord = true;
2 90ce3da70b43 Initial load duke parents: diff changeset	178	}
90ce3da70b43 Initial load duke parents: diff changeset	179
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	180	void changePacketSize(int packetSize) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	181	this.packetSize = packetSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	182	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	183
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	184	void changeFragmentSize(int fragmentSize) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	185	this.fragmentSize = fragmentSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	186	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	187
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	188	int getMaxPacketSize() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	189	return packetSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	190	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	191
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	192	// apply to DTLS SSLEngine
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	193	void initHandshaker() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	194	// blank
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	195	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	196
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	197	@Override
32649 2ee9017c7597 8136583: Core libraries should use blessed modifier order martin parents: 30904 diff changeset	198	public synchronized void close() throws IOException {
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	199	if (!isClosed) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	200	isClosed = true;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	201	writeCipher.dispose();
12428 e9feb65d37fa 7157903: JSSE client sockets are very slow wetmore parents: 6856 diff changeset	202	}
e9feb65d37fa 7157903: JSSE client sockets are very slow wetmore parents: 6856 diff changeset	203	}
e9feb65d37fa 7157903: JSSE client sockets are very slow wetmore parents: 6856 diff changeset	204
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	205	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	206	// shared helpers
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	207	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	208
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	209	// Encrypt a fragment and wrap up a record.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	210	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	211	// To be consistent with the spec of SSLEngine.wrap() methods, the
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	212	// destination ByteBuffer's position is updated to reflect the amount
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	213	// of data produced. The limit remains the same.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	214	static long encrypt(Authenticator authenticator,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	215	CipherBox encCipher, byte contentType, ByteBuffer destination,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	216	int headerOffset, int dstLim, int headerSize,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	217	ProtocolVersion protocolVersion, boolean isDTLS) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	218
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	219	byte[] sequenceNumber = null;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	220	int dstContent = destination.position();
2 90ce3da70b43 Initial load duke parents: diff changeset	221
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	222	// Acquire the current sequence number before using.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	223	if (isDTLS) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	224	sequenceNumber = authenticator.sequenceNumber();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	225	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	226
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	227	// "flip" but skip over header again, add MAC & encrypt
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	228	if (authenticator instanceof MAC) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	229	MAC signer = (MAC)authenticator;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	230	if (signer.MAClen() != 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	231	byte[] hash = signer.compute(contentType, destination, false);
12428 e9feb65d37fa 7157903: JSSE client sockets are very slow wetmore parents: 6856 diff changeset	232
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	233	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	234	* position was advanced to limit in MAC compute above.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	235	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	236	* Mark next area as writable (above layers should have
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	237	* established that we have plenty of room), then write
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	238	* out the hash.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	239	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	240	destination.limit(destination.limit() + hash.length);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	241	destination.put(hash);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	242
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	243	// reset the position and limit
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	244	destination.limit(destination.position());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	245	destination.position(dstContent);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	246	}
2 90ce3da70b43 Initial load duke parents: diff changeset	247	}
90ce3da70b43 Initial load duke parents: diff changeset	248
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	249	if (!encCipher.isNullCipher()) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	250	if (protocolVersion.useTLS11PlusSpec() &&
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	251	(encCipher.isCBCMode() \|\| encCipher.isAEADMode())) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	252	byte[] nonce = encCipher.createExplicitNonce(
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	253	authenticator, contentType, destination.remaining());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	254	destination.position(headerOffset + headerSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	255	destination.put(nonce);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	256	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	257	if (!encCipher.isAEADMode()) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	258	// The explicit IV in TLS 1.1 and later can be encrypted.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	259	destination.position(headerOffset + headerSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	260	} // Otherwise, DON'T encrypt the nonce_explicit for AEAD mode
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	261
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	262	// Encrypt may pad, so again the limit may be changed.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	263	encCipher.encrypt(destination, dstLim);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	264	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	265	destination.position(destination.limit());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	266	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	267
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	268	// Finish out the record header.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	269	int fragLen = destination.limit() - headerOffset - headerSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	270
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	271	destination.put(headerOffset, contentType); // content type
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	272	destination.put(headerOffset + 1, protocolVersion.major);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	273	destination.put(headerOffset + 2, protocolVersion.minor);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	274	if (!isDTLS) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	275	// fragment length
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	276	destination.put(headerOffset + 3, (byte)(fragLen >> 8));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	277	destination.put(headerOffset + 4, (byte)fragLen);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	278	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	279	// epoch and sequence_number
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	280	destination.put(headerOffset + 3, sequenceNumber[0]);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	281	destination.put(headerOffset + 4, sequenceNumber[1]);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	282	destination.put(headerOffset + 5, sequenceNumber[2]);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	283	destination.put(headerOffset + 6, sequenceNumber[3]);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	284	destination.put(headerOffset + 7, sequenceNumber[4]);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	285	destination.put(headerOffset + 8, sequenceNumber[5]);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	286	destination.put(headerOffset + 9, sequenceNumber[6]);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	287	destination.put(headerOffset + 10, sequenceNumber[7]);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	288
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	289	// fragment length
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	290	destination.put(headerOffset + 11, (byte)(fragLen >> 8));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	291	destination.put(headerOffset + 12, (byte)fragLen);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	292
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	293	// Increase the sequence number for next use.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	294	authenticator.increaseSequenceNumber();
2 90ce3da70b43 Initial load duke parents: diff changeset	295	}
90ce3da70b43 Initial load duke parents: diff changeset	296
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	297	// Update destination position to reflect the amount of data produced.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	298	destination.position(destination.limit());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	299
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	300	return Authenticator.toLong(sequenceNumber);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	301	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	302
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	303	// Encrypt a fragment and wrap up a record.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	304	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	305	// Uses the internal expandable buf variable and the current
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	306	// protocolVersion variable.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	307	void encrypt(Authenticator authenticator,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	308	CipherBox encCipher, byte contentType, int headerSize) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	309
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	310	int position = headerSize + writeCipher.getExplicitNonceSize();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	311
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	312	// "flip" but skip over header again, add MAC & encrypt
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	313	int macLen = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	314	if (authenticator instanceof MAC) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	315	MAC signer = (MAC)authenticator;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	316	macLen = signer.MAClen();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	317	if (macLen != 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	318	byte[] hash = signer.compute(contentType,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	319	buf, position, (count - position), false);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	320
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	321	write(hash, 0, hash.length);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	322	}
2 90ce3da70b43 Initial load duke parents: diff changeset	323	}
90ce3da70b43 Initial load duke parents: diff changeset	324
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	325	if (!encCipher.isNullCipher()) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	326	// Requires explicit IV/nonce for CBC/AEAD cipher suites for
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	327	// TLS 1.1 or later.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	328	if (protocolVersion.useTLS11PlusSpec() &&
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	329	(encCipher.isCBCMode() \|\| encCipher.isAEADMode())) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	330
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	331	byte[] nonce = encCipher.createExplicitNonce(
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	332	authenticator, contentType, (count - position));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	333	int noncePos = position - nonce.length;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	334	System.arraycopy(nonce, 0, buf, noncePos, nonce.length);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	335	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	336
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	337	if (!encCipher.isAEADMode()) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	338	// The explicit IV in TLS 1.1 and later can be encrypted.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	339	position = headerSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	340	} // Otherwise, DON'T encrypt the nonce_explicit for AEAD mode
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	341
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	342	// increase buf capacity if necessary
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	343	int fragSize = count - position;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	344	int packetSize =
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	345	encCipher.calculatePacketSize(fragSize, macLen, headerSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	346	if (packetSize > (buf.length - position)) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	347	byte[] newBuf = new byte[position + packetSize];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	348	System.arraycopy(buf, 0, newBuf, 0, count);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	349	buf = newBuf;
2 90ce3da70b43 Initial load duke parents: diff changeset	350	}
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	351
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	352	// Encrypt may pad, so again the count may be changed.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	353	count = position +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	354	encCipher.encrypt(buf, position, (count - position));
2 90ce3da70b43 Initial load duke parents: diff changeset	355	}
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	356
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	357	// Fill out the header, write it and the message.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	358	int fragLen = count - headerSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	359	buf[0] = contentType;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	360	buf[1] = protocolVersion.major;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	361	buf[2] = protocolVersion.minor;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	362	buf[3] = (byte)((fragLen >> 8) & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	363	buf[4] = (byte)(fragLen & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	364	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	365
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	366	static ByteBuffer encodeV2ClientHello(
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	367	byte[] fragment, int offset, int length) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	368
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	369	int v3SessIdLenOffset = offset + 34; // 2: client_version
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	370	// 32: random
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	371
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	372	int v3SessIdLen = fragment[v3SessIdLenOffset];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	373	int v3CSLenOffset = v3SessIdLenOffset + 1 + v3SessIdLen;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	374	int v3CSLen = ((fragment[v3CSLenOffset] & 0xff) << 8) +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	375	(fragment[v3CSLenOffset + 1] & 0xff);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	376	int cipherSpecs = v3CSLen / 2; // 2: cipher spec size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	377
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	378	// Estimate the max V2ClientHello message length
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	379	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	380	// 11: header size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	381	// (cipherSpecs * 6): cipher_specs
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	382	// 6: one cipher suite may need 6 bytes, see V3toV2CipherSuite.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	383	// 3: placeholder for the TLS_EMPTY_RENEGOTIATION_INFO_SCSV
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	384	// signaling cipher suite
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	385	// 32: challenge size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	386	int v2MaxMsgLen = 11 + (cipherSpecs * 6) + 3 + 32;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	387
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	388	// Create a ByteBuffer backed by an accessible byte array.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	389	byte[] dstBytes = new byte[v2MaxMsgLen];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	390	ByteBuffer dstBuf = ByteBuffer.wrap(dstBytes);
2 90ce3da70b43 Initial load duke parents: diff changeset	391
12428 e9feb65d37fa 7157903: JSSE client sockets are very slow wetmore parents: 6856 diff changeset	392	/*
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	393	* Copy over the cipher specs. We don't care about actually
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	394	* translating them for use with an actual V2 server since
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	395	* we only talk V3. Therefore, just copy over the V3 cipher
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	396	* spec values with a leading 0.
12428 e9feb65d37fa 7157903: JSSE client sockets are very slow wetmore parents: 6856 diff changeset	397	*/
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	398	int v3CSOffset = v3CSLenOffset + 2; // skip length field
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	399	int v2CSLen = 0;
2 90ce3da70b43 Initial load duke parents: diff changeset	400
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	401	dstBuf.position(11);
6856 533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	402	boolean containsRenegoInfoSCSV = false;
2 90ce3da70b43 Initial load duke parents: diff changeset	403	for (int i = 0; i < cipherSpecs; i++) {
90ce3da70b43 Initial load duke parents: diff changeset	404	byte byte1, byte2;
90ce3da70b43 Initial load duke parents: diff changeset	405
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	406	byte1 = fragment[v3CSOffset++];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	407	byte2 = fragment[v3CSOffset++];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	408	v2CSLen += V3toV2CipherSuite(dstBuf, byte1, byte2);
6856 533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	409	if (!containsRenegoInfoSCSV &&
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	410	byte1 == (byte)0x00 && byte2 == (byte)0xFF) {
6856 533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	411	containsRenegoInfoSCSV = true;
533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	412	}
533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	413	}
533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	414
533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	415	if (!containsRenegoInfoSCSV) {
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	416	v2CSLen += V3toV2CipherSuite(dstBuf, (byte)0x00, (byte)0xFF);
2 90ce3da70b43 Initial load duke parents: diff changeset	417	}
90ce3da70b43 Initial load duke parents: diff changeset	418
90ce3da70b43 Initial load duke parents: diff changeset	419	/*
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	420	* Copy in the nonce.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	421	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	422	dstBuf.put(fragment, (offset + 2), 32);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	423
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	424	/*
2 90ce3da70b43 Initial load duke parents: diff changeset	425	* Build the first part of the V3 record header from the V2 one
90ce3da70b43 Initial load duke parents: diff changeset	426	* that's now buffered up. (Lengths are fixed up later).
90ce3da70b43 Initial load duke parents: diff changeset	427	*/
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	428	int msgLen = dstBuf.position() - 2; // Exclude the legth field itself
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	429	dstBuf.position(0);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	430	dstBuf.put((byte)(0x80 \| ((msgLen >>> 8) & 0xFF))); // pos: 0
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	431	dstBuf.put((byte)(msgLen & 0xFF)); // pos: 1
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	432	dstBuf.put(HandshakeMessage.ht_client_hello); // pos: 2
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	433	dstBuf.put(fragment[offset]); // major version, pos: 3
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	434	dstBuf.put(fragment[offset + 1]); // minor version, pos: 4
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	435	dstBuf.put((byte)(v2CSLen >>> 8)); // pos: 5
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	436	dstBuf.put((byte)(v2CSLen & 0xFF)); // pos: 6
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	437	dstBuf.put((byte)0x00); // session_id_length, pos: 7
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	438	dstBuf.put((byte)0x00); // pos: 8
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	439	dstBuf.put((byte)0x00); // challenge_length, pos: 9
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	440	dstBuf.put((byte)32); // pos: 10
2 90ce3da70b43 Initial load duke parents: diff changeset	441
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	442	dstBuf.position(0);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	443	dstBuf.limit(msgLen + 2);
2 90ce3da70b43 Initial load duke parents: diff changeset	444
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	445	return dstBuf;
2 90ce3da70b43 Initial load duke parents: diff changeset	446	}
90ce3da70b43 Initial load duke parents: diff changeset	447
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	448	private static int V3toV2CipherSuite(ByteBuffer dstBuf,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	449	byte byte1, byte byte2) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	450	dstBuf.put((byte)0);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	451	dstBuf.put(byte1);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	452	dstBuf.put(byte2);
2 90ce3da70b43 Initial load duke parents: diff changeset	453
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	454	if (((byte2 & 0xff) > 0xA) \|\| (V3toV2CipherMap1[byte2] == -1)) {
2 90ce3da70b43 Initial load duke parents: diff changeset	455	return 3;
90ce3da70b43 Initial load duke parents: diff changeset	456	}
90ce3da70b43 Initial load duke parents: diff changeset	457
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	458	dstBuf.put((byte)V3toV2CipherMap1[byte2]);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	459	dstBuf.put((byte)0);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	460	dstBuf.put((byte)V3toV2CipherMap3[byte2]);
2 90ce3da70b43 Initial load duke parents: diff changeset	461
90ce3da70b43 Initial load duke parents: diff changeset	462	return 6;
90ce3da70b43 Initial load duke parents: diff changeset	463	}
90ce3da70b43 Initial load duke parents: diff changeset	464	}

author	martin
	Tue, 15 Sep 2015 21:56:04 -0700
changeset 32649	2ee9017c7597
parent 30904	ec0224270f90
child 34687	d302ed125dc9
permissions	-rw-r--r--