jdk-sandbox: src/java.base/share/classes/sun/security/ssl/InputRecord.java@56aaa6cb3693 (annotated)

2 90ce3da70b43 Initial load duke parents: diff changeset	1	/*
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	2	* Copyright (c) 1996, 2018, Oracle and/or its affiliates. All rights reserved.
2 90ce3da70b43 Initial load duke parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
90ce3da70b43 Initial load duke parents: diff changeset	4	*
90ce3da70b43 Initial load duke parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
90ce3da70b43 Initial load duke parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 715 diff changeset	7	* published by the Free Software Foundation. Oracle designates this
2 90ce3da70b43 Initial load duke parents: diff changeset	8	* particular file as subject to the "Classpath" exception as provided
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 715 diff changeset	9	* by Oracle in the LICENSE file that accompanied this code.
2 90ce3da70b43 Initial load duke parents: diff changeset	10	*
90ce3da70b43 Initial load duke parents: diff changeset	11	* This code is distributed in the hope that it will be useful, but WITHOUT
90ce3da70b43 Initial load duke parents: diff changeset	12	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
90ce3da70b43 Initial load duke parents: diff changeset	13	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
90ce3da70b43 Initial load duke parents: diff changeset	14	* version 2 for more details (a copy is included in the LICENSE file that
90ce3da70b43 Initial load duke parents: diff changeset	15	* accompanied this code).
90ce3da70b43 Initial load duke parents: diff changeset	16	*
90ce3da70b43 Initial load duke parents: diff changeset	17	* You should have received a copy of the GNU General Public License version
90ce3da70b43 Initial load duke parents: diff changeset	18	* 2 along with this work; if not, write to the Free Software Foundation,
90ce3da70b43 Initial load duke parents: diff changeset	19	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
90ce3da70b43 Initial load duke parents: diff changeset	20	*
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 715 diff changeset	21	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 715 diff changeset	22	* or visit www.oracle.com if you need additional information or have any
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 715 diff changeset	23	* questions.
2 90ce3da70b43 Initial load duke parents: diff changeset	24	*/
90ce3da70b43 Initial load duke parents: diff changeset	25
90ce3da70b43 Initial load duke parents: diff changeset	26	package sun.security.ssl;
90ce3da70b43 Initial load duke parents: diff changeset	27
90ce3da70b43 Initial load duke parents: diff changeset	28	import java.io.*;
90ce3da70b43 Initial load duke parents: diff changeset	29	import java.nio.*;
90ce3da70b43 Initial load duke parents: diff changeset	30	import javax.crypto.BadPaddingException;
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	31	import sun.security.ssl.SSLCipher.SSLReadCipher;
2 90ce3da70b43 Initial load duke parents: diff changeset	32
90ce3da70b43 Initial load duke parents: diff changeset	33	/**
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	34	* {@code InputRecord} takes care of the management of SSL/TLS/DTLS input
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	35	* records, including buffering, decryption, handshake messages marshal, etc.
2 90ce3da70b43 Initial load duke parents: diff changeset	36	*
90ce3da70b43 Initial load duke parents: diff changeset	37	* @author David Brownell
90ce3da70b43 Initial load duke parents: diff changeset	38	*/
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	39	abstract class InputRecord implements Record, Closeable {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	40	SSLReadCipher readCipher;
2 90ce3da70b43 Initial load duke parents: diff changeset	41
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	42	final HandshakeHash handshakeHash;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	43	boolean isClosed;
2 90ce3da70b43 Initial load duke parents: diff changeset	44
90ce3da70b43 Initial load duke parents: diff changeset	45	// The ClientHello version to accept. If set to ProtocolVersion.SSL20Hello
90ce3da70b43 Initial load duke parents: diff changeset	46	// and the first message we read is a ClientHello in V2 format, we convert
90ce3da70b43 Initial load duke parents: diff changeset	47	// it to V3. Otherwise we throw an exception when encountering a V2 hello.
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	48	ProtocolVersion helloVersion;
2 90ce3da70b43 Initial load duke parents: diff changeset	49
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	50	// fragment size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	51	int fragmentSize;
2 90ce3da70b43 Initial load duke parents: diff changeset	52
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	53	InputRecord(HandshakeHash handshakeHash, SSLReadCipher readCipher) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	54	this.readCipher = readCipher;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	55	this.helloVersion = ProtocolVersion.TLS10;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	56	this.handshakeHash = handshakeHash;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	57	this.isClosed = false;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	58	this.fragmentSize = Record.maxDataSize;
2 90ce3da70b43 Initial load duke parents: diff changeset	59	}
90ce3da70b43 Initial load duke parents: diff changeset	60
90ce3da70b43 Initial load duke parents: diff changeset	61	void setHelloVersion(ProtocolVersion helloVersion) {
90ce3da70b43 Initial load duke parents: diff changeset	62	this.helloVersion = helloVersion;
90ce3da70b43 Initial load duke parents: diff changeset	63	}
90ce3da70b43 Initial load duke parents: diff changeset	64
90ce3da70b43 Initial load duke parents: diff changeset	65	ProtocolVersion getHelloVersion() {
90ce3da70b43 Initial load duke parents: diff changeset	66	return helloVersion;
90ce3da70b43 Initial load duke parents: diff changeset	67	}
90ce3da70b43 Initial load duke parents: diff changeset	68
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	69	boolean seqNumIsHuge() {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	70	return (readCipher.authenticator != null) &&
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	71	readCipher.authenticator.seqNumIsHuge();
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	72	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	73
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	74	boolean isEmpty() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	75	return false;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	76	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	77
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	78	// apply to DTLS SSLEngine
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	79	void expectingFinishFlight() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	80	// blank
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	81	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	82
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	83	// apply to DTLS SSLEngine
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	84	void finishHandshake() {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	85	// blank
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	86	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	87
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	88	/**
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	89	* Prevent any more data from being read into this record,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	90	* and flag the record as holding no data.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	91	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	92	@Override
32649 2ee9017c7597 8136583: Core libraries should use blessed modifier order martin parents: 30904 diff changeset	93	public synchronized void close() throws IOException {
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	94	if (!isClosed) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	95	isClosed = true;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	96	readCipher.dispose();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	97	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	98	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	99
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	100	synchronized boolean isClosed() {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	101	return isClosed;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	102	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	103
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	104	// apply to SSLSocket and SSLEngine
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	105	void changeReadCiphers(SSLReadCipher readCipher) {
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	106
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	107	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	108	* Dispose of any intermediate state in the underlying cipher.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	109	* For PKCS11 ciphers, this will release any attached sessions,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	110	* and thus make finalization faster.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	111	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	112	* Since MAC's doFinal() is called for every SSL/TLS packet, it's
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	113	* not necessary to do the same with MAC's.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	114	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	115	readCipher.dispose();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	116
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	117	this.readCipher = readCipher;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	118	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	119
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	120	// change fragment size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	121	void changeFragmentSize(int fragmentSize) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	122	this.fragmentSize = fragmentSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	123	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	124
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	125	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	126	* Check if there is enough inbound data in the ByteBuffer to make
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	127	* a inbound packet.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	128	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	129	* @return -1 if there are not enough bytes to tell (small header),
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	130	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	131	// apply to SSLEngine only
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	132	int bytesInCompletePacket(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	133	ByteBuffer[] srcs, int srcsOffset, int srcsLength) throws IOException {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	134
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	135	throw new UnsupportedOperationException("Not supported yet.");
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	136	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	137
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	138	// apply to SSLSocket only
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	139	int bytesInCompletePacket() throws IOException {
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	140	throw new UnsupportedOperationException();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	141	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	142
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	143	// apply to SSLSocket only
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	144	void setReceiverStream(InputStream inputStream) {
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	145	throw new UnsupportedOperationException();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	146	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	147
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	148	// apply to DTLS SSLEngine only
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	149	Plaintext acquirePlaintext()
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	150	throws IOException, BadPaddingException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	151	throw new UnsupportedOperationException();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	152	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	153
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	154	// read, decrypt and decompress the network record.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	155	//
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	156	abstract Plaintext[] decode(ByteBuffer[] srcs, int srcsOffset,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	157	int srcsLength) throws IOException, BadPaddingException;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	158
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	159	// apply to SSLSocket only
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	160	void setDeliverStream(OutputStream outputStream) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	161	throw new UnsupportedOperationException();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	162	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	163
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	164	// calculate plaintext fragment size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	165	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	166	// apply to SSLEngine only
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	167	int estimateFragmentSize(int packetSize) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	168	throw new UnsupportedOperationException();
2 90ce3da70b43 Initial load duke parents: diff changeset	169	}
90ce3da70b43 Initial load duke parents: diff changeset	170
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	171	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	172	// shared helpers
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	173	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	174
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	175	// Not apply to DTLS
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	176	static ByteBuffer convertToClientHello(ByteBuffer packet) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	177	int srcPos = packet.position();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	178
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	179	byte firstByte = packet.get();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	180	byte secondByte = packet.get();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	181	int recordLen = (((firstByte & 0x7F) << 8) \| (secondByte & 0xFF)) + 2;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	182
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	183	packet.position(srcPos + 3); // the V2ClientHello record header
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	184
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	185	byte majorVersion = packet.get();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	186	byte minorVersion = packet.get();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	187
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	188	int cipherSpecLen = ((packet.get() & 0xFF) << 8) +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	189	(packet.get() & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	190	int sessionIdLen = ((packet.get() & 0xFF) << 8) +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	191	(packet.get() & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	192	int nonceLen = ((packet.get() & 0xFF) << 8) +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	193	(packet.get() & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	194
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	195	// Required space for the target SSLv3 ClientHello message.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	196	// 5: record header size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	197	// 4: handshake header size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	198	// 2: ClientHello.client_version
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	199	// 32: ClientHello.random
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	200	// 1: length byte of ClientHello.session_id
43008 c6c74a38f1ad 8172273: SSLEngine.unwrap fails with ArrayIndexOutOfBoundsException xuelei parents: 34687 diff changeset	201	// 2: length bytes of ClientHello.cipher_suites
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	202	// 2: empty ClientHello.compression_methods
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	203	int requiredSize = 48 + sessionIdLen + ((cipherSpecLen * 2 ) / 3);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	204	byte[] converted = new byte[requiredSize];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	205
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	206	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	207	* Build the first part of the V3 record header from the V2 one
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	208	* that's now buffered up. (Lengths are fixed up later).
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	209	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	210	// Note: need not to set the header actually.
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	211	converted[0] = ContentType.HANDSHAKE.id;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	212	converted[1] = majorVersion;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	213	converted[2] = minorVersion;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	214	// header [3..4] for handshake message length
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	215	// required size is 5;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	216
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	217	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	218	* Store the generic V3 handshake header: 4 bytes
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	219	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	220	converted[5] = 1; // HandshakeMessage.ht_client_hello
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	221	// buf [6..8] for length of ClientHello (int24)
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	222	// required size += 4;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	223
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	224	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	225	* ClientHello header starts with SSL version
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	226	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	227	converted[9] = majorVersion;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	228	converted[10] = minorVersion;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	229	// required size += 2;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	230	int pointer = 11;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	231
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	232	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	233	* Copy Random value/nonce ... if less than the 32 bytes of
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	234	* a V3 "Random", right justify and zero pad to the left. Else
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	235	* just take the last 32 bytes.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	236	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	237	int offset = srcPos + 11 + cipherSpecLen + sessionIdLen;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	238
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	239	if (nonceLen < 32) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	240	for (int i = 0; i < (32 - nonceLen); i++) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	241	converted[pointer++] = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	242	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	243	packet.position(offset);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	244	packet.get(converted, pointer, nonceLen);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	245
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	246	pointer += nonceLen;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	247	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	248	packet.position(offset + nonceLen - 32);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	249	packet.get(converted, pointer, 32);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	250
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	251	pointer += 32;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	252	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	253
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	254	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	255	* Copy session ID (only one byte length!)
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	256	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	257	offset -= sessionIdLen;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	258	converted[pointer++] = (byte)(sessionIdLen & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	259	packet.position(offset);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	260	packet.get(converted, pointer, sessionIdLen);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	261
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	262	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	263	* Copy and translate cipher suites ... V2 specs with first byte zero
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	264	* are really V3 specs (in the last 2 bytes), just copy those and drop
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	265	* the other ones. Preference order remains unchanged.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	266	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	267	* Example: Netscape Navigator 3.0 (exportable) says:
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	268	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	269	* 0/3, SSL_RSA_EXPORT_WITH_RC4_40_MD5
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	270	* 0/6, SSL_RSA_EXPORT_WITH_RC2_CBC_40_MD5
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	271	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	272	* Microsoft Internet Explorer 3.0 (exportable) supports only
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	273	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	274	* 0/3, SSL_RSA_EXPORT_WITH_RC4_40_MD5
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	275	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	276	int j;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	277
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	278	offset -= cipherSpecLen;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	279	packet.position(offset);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	280
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	281	j = pointer + 2;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	282	for (int i = 0; i < cipherSpecLen; i += 3) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	283	if (packet.get() != 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	284	// Ignore version 2.0 specifix cipher suite. Clients
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	285	// should also include the version 3.0 equivalent in
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	286	// the V2ClientHello message.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	287	packet.get(); // ignore the 2nd byte
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	288	packet.get(); // ignore the 3rd byte
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	289	continue;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	290	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	291
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	292	converted[j++] = packet.get();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	293	converted[j++] = packet.get();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	294	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	295
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	296	j -= pointer + 2;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	297	converted[pointer++] = (byte)((j >>> 8) & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	298	converted[pointer++] = (byte)(j & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	299	pointer += j;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	300
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	301	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	302	* Append compression methods (default/null only)
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	303	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	304	converted[pointer++] = 1;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	305	converted[pointer++] = 0; // Session.compression_null
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	306
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	307	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	308	* Fill in lengths of the messages we synthesized (nested:
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	309	* V3 handshake message within V3 record).
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	310	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	311	// Note: need not to set the header actually.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	312	int fragLen = pointer - 5; // TLSPlaintext.length
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	313	converted[3] = (byte)((fragLen >>> 8) & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	314	converted[4] = (byte)(fragLen & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	315
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	316	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	317	* Handshake.length, length of ClientHello message
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	318	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	319	fragLen = pointer - 9; // Handshake.length
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	320	converted[6] = (byte)((fragLen >>> 16) & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	321	converted[7] = (byte)((fragLen >>> 8) & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	322	converted[8] = (byte)(fragLen & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	323
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	324	// consume the full record
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	325	packet.position(srcPos + recordLen);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	326
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	327	// Need no header bytes.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	328	return ByteBuffer.wrap(converted, 5, pointer - 5); // 5: header size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	329	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	330
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	331	// Extract an SSL/(D)TLS record from the specified source buffers.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	332	static ByteBuffer extract(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	333	ByteBuffer[] buffers, int offset, int length, int headerSize) {
2 90ce3da70b43 Initial load duke parents: diff changeset	334
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	335	boolean hasFullHeader = false;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	336	int contentLen = -1;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	337	for (int i = offset, j = 0;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	338	i < (offset + length) && j < headerSize; i++) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	339	int remains = buffers[i].remaining();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	340	int pos = buffers[i].position();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	341	for (int k = 0; k < remains && j < headerSize; j++, k++) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	342	byte b = buffers[i].get(pos + k);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	343	if (j == (headerSize - 2)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	344	contentLen = ((b & 0xFF) << 8);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	345	} else if (j == (headerSize -1)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	346	contentLen \|= (b & 0xFF);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	347	hasFullHeader = true;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	348	break;
16113 946ec9b22004 8006777: Improve TLS handling of invalid messages xuelei parents: 14664 diff changeset	349	}
946ec9b22004 8006777: Improve TLS handling of invalid messages xuelei parents: 14664 diff changeset	350	}
2 90ce3da70b43 Initial load duke parents: diff changeset	351	}
90ce3da70b43 Initial load duke parents: diff changeset	352
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	353	if (!hasFullHeader) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	354	throw new BufferUnderflowException();
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	355	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	356
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	357	int packetLen = headerSize + contentLen;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	358	int remains = 0;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	359	for (int i = offset; i < offset + length; i++) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	360	remains += buffers[i].remaining();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	361	if (remains >= packetLen) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	362	break;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	363	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	364	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	365
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	366	if (remains < packetLen) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	367	throw new BufferUnderflowException();
2 90ce3da70b43 Initial load duke parents: diff changeset	368	}
90ce3da70b43 Initial load duke parents: diff changeset	369
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	370	byte[] packet = new byte[packetLen];
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	371	int packetOffset = 0;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	372	int packetSpaces = packetLen;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	373	for (int i = offset; i < offset + length; i++) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	374	if (buffers[i].hasRemaining()) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	375	int len = Math.min(packetSpaces, buffers[i].remaining());
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	376	buffers[i].get(packet, packetOffset, len);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	377	packetOffset += len;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	378	packetSpaces -= len;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	379	}
16113 946ec9b22004 8006777: Improve TLS handling of invalid messages xuelei parents: 14664 diff changeset	380
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	381	if (packetSpaces <= 0) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	382	break;
2 90ce3da70b43 Initial load duke parents: diff changeset	383	}
90ce3da70b43 Initial load duke parents: diff changeset	384	}
16113 946ec9b22004 8006777: Improve TLS handling of invalid messages xuelei parents: 14664 diff changeset	385
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	386	return ByteBuffer.wrap(packet);
2 90ce3da70b43 Initial load duke parents: diff changeset	387	}
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 25859 diff changeset	388	}

author	wetmore
	Fri, 11 May 2018 15:53:12 -0700
branch	JDK-8145252-TLS13-branch
changeset 56542	56aaa6cb3693
parent 47216	71c04702a3d5
child 56694	aa54a1f8e426
permissions	-rw-r--r--