jdk-sandbox: src/java.base/share/classes/sun/security/ssl/SSLSocketOutputRecord.java@56aaa6cb3693 (annotated)

30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	1	/*
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	2	* Copyright (c) 1996, 2018, Oracle and/or its affiliates. All rights reserved.
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	4	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	7	* published by the Free Software Foundation. Oracle designates this
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	8	* particular file as subject to the "Classpath" exception as provided
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	9	* by Oracle in the LICENSE file that accompanied this code.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	10	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	11	* This code is distributed in the hope that it will be useful, but WITHOUT
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	12	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	13	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	14	* version 2 for more details (a copy is included in the LICENSE file that
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	15	* accompanied this code).
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	16	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	17	* You should have received a copy of the GNU General Public License version
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	18	* 2 along with this work; if not, write to the Free Software Foundation,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	19	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	20	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	21	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	22	* or visit www.oracle.com if you need additional information or have any
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	23	* questions.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	24	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	25
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	26	package sun.security.ssl;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	27
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	28	import java.io.ByteArrayInputStream;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	29	import java.io.IOException;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	30	import java.io.OutputStream;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	31	import java.nio.ByteBuffer;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	32	import javax.net.ssl.SSLHandshakeException;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	33
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	34	import sun.security.ssl.KeyUpdate.KeyUpdateMessage;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	35
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	36	/**
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	37	* {@code OutputRecord} implementation for {@code SSLSocket}.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	38	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	39	final class SSLSocketOutputRecord extends OutputRecord implements SSLRecord {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	40	private OutputStream deliverStream = null;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	41
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	42	SSLSocketOutputRecord(HandshakeHash handshakeHash) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	43	this(handshakeHash, null);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	44	}
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	45
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	46	SSLSocketOutputRecord(HandshakeHash handshakeHash,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	47	TransportContext tc) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	48	super(handshakeHash, SSLCipher.SSLWriteCipher.nullTlsWriteCipher());
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	49	this.tc = tc;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	50	this.packetSize = SSLRecord.maxRecordSize;
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	51	this.protocolVersion = ProtocolVersion.NONE;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	52	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	53
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	54	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	55	void encodeAlert(byte level, byte description) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	56	// use the buf of ByteArrayOutputStream
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	57	int position = headerSize + writeCipher.getExplicitNonceSize();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	58	count = position;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	59
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	60	write(level);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	61	write(description);
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	62	if (SSLLogger.isOn && SSLLogger.isOn("record")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	63	SSLLogger.fine("WRITE: " + protocolVersion +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	64	" " + ContentType.ALERT.name +
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	65	", length = " + (count - headerSize));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	66	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	67
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	68	// Encrypt the fragment and wrap up a record.
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	69	encrypt(writeCipher, ContentType.ALERT.id, headerSize);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	70
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	71	// deliver this message
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	72	deliverStream.write(buf, 0, count); // may throw IOException
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	73	deliverStream.flush(); // may throw IOException
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	74
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	75	if (SSLLogger.isOn && SSLLogger.isOn("packet")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	76	SSLLogger.fine("Raw write",
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	77	(new ByteArrayInputStream(buf, 0, count)));
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	78	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	79
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	80	// reset the internal buffer
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	81	count = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	82	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	83
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	84	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	85	void encodeHandshake(byte[] source,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	86	int offset, int length) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	87	if (firstMessage) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	88	firstMessage = false;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	89
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	90	if ((helloVersion == ProtocolVersion.SSL20Hello) &&
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	91	(source[offset] == SSLHandshake.CLIENT_HELLO.id) &&
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	92	// 5: recode header size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	93	(source[offset + 4 + 2 + 32] == 0)) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	94	// V3 session ID is empty
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	95	// 4: handshake header size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	96	// 2: client_version in ClientHello
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	97	// 32: random in ClientHello
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	98
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	99	ByteBuffer v2ClientHello = encodeV2ClientHello(
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	100	source, (offset + 4), (length - 4));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	101
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	102	byte[] record = v2ClientHello.array(); // array offset is zero
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	103	int limit = v2ClientHello.limit();
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	104	handshakeHash.deliver(record, 2, (limit - 2));
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	105
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	106	if (SSLLogger.isOn && SSLLogger.isOn("record")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	107	SSLLogger.fine(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	108	"WRITE: SSLv2 ClientHello message" +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	109	", length = " + limit);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	110	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	111
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	112	// deliver this message
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	113	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	114	// Version 2 ClientHello message should be plaintext.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	115	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	116	// No max fragment length negotiation.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	117	deliverStream.write(record, 0, limit);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	118	deliverStream.flush();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	119
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	120	if (SSLLogger.isOn && SSLLogger.isOn("packet")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	121	SSLLogger.fine("Raw write",
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	122	(new ByteArrayInputStream(record, 0, limit)));
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	123	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	124
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	125	return;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	126	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	127	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	128
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	129	byte handshakeType = source[0];
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	130	if (handshakeHash.isHashable(handshakeType)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	131	handshakeHash.deliver(source, offset, length);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	132	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	133
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	134	int fragLimit = getFragLimit();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	135	int position = headerSize + writeCipher.getExplicitNonceSize();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	136	if (count == 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	137	count = position;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	138	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	139
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	140	if ((count - position) < (fragLimit - length)) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	141	write(source, offset, length);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	142	return;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	143	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	144
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	145	for (int limit = (offset + length); offset < limit;) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	146
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	147	int remains = (limit - offset) + (count - position);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	148	int fragLen = Math.min(fragLimit, remains);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	149
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	150	// use the buf of ByteArrayOutputStream
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	151	write(source, offset, fragLen);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	152	if (remains < fragLimit) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	153	return;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	154	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	155
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	156	if (SSLLogger.isOn && SSLLogger.isOn("record")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	157	SSLLogger.fine(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	158	"WRITE: " + protocolVersion +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	159	" " + ContentType.HANDSHAKE.name +
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	160	", length = " + (count - headerSize));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	161	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	162
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	163	// Encrypt the fragment and wrap up a record.
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	164	encrypt(writeCipher, ContentType.HANDSHAKE.id, headerSize);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	165
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	166	// deliver this message
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	167	deliverStream.write(buf, 0, count); // may throw IOException
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	168	deliverStream.flush(); // may throw IOException
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	169
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	170	if (SSLLogger.isOn && SSLLogger.isOn("packet")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	171	SSLLogger.fine("Raw write",
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	172	(new ByteArrayInputStream(buf, 0, count)));
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	173	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	174
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	175	// reset the offset
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	176	offset += fragLen;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	177
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	178	// reset the internal buffer
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	179	count = position;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	180	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	181	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	182
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	183	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	184	void encodeChangeCipherSpec() throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	185
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	186	// use the buf of ByteArrayOutputStream
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	187	int position = headerSize + writeCipher.getExplicitNonceSize();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	188	count = position;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	189
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	190	write((byte)1); // byte 1: change_cipher_spec(
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	191
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	192	// Encrypt the fragment and wrap up a record.
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	193	encrypt(writeCipher, ContentType.CHANGE_CIPHER_SPEC.id, headerSize);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	194
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	195	// deliver this message
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	196	deliverStream.write(buf, 0, count); // may throw IOException
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	197	// deliverStream.flush(); // flush in Finished
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	198
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	199	if (SSLLogger.isOn && SSLLogger.isOn("packet")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	200	SSLLogger.fine("Raw write",
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	201	(new ByteArrayInputStream(buf, 0, count)));
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	202	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	203
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	204	// reset the internal buffer
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	205	count = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	206	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	207
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	208	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	209	public void flush() throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	210	int position = headerSize + writeCipher.getExplicitNonceSize();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	211	if (count <= position) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	212	return;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	213	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	214
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	215	if (SSLLogger.isOn && SSLLogger.isOn("record")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	216	SSLLogger.fine(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	217	"WRITE: " + protocolVersion +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	218	" " + ContentType.HANDSHAKE.name +
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	219	", length = " + (count - headerSize));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	220	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	221
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	222	// Encrypt the fragment and wrap up a record.
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	223	encrypt(writeCipher, ContentType.HANDSHAKE.id, headerSize);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	224
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	225	// deliver this message
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	226	deliverStream.write(buf, 0, count); // may throw IOException
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	227	deliverStream.flush(); // may throw IOException
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	228
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	229	if (SSLLogger.isOn && SSLLogger.isOn("packet")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	230	SSLLogger.fine("Raw write",
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	231	(new ByteArrayInputStream(buf, 0, count)));
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	232	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	233
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	234	// reset the internal buffer
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	235	count = 0; // DON'T use position
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	236	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	237
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	238	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	239	void deliver(byte[] source, int offset, int length) throws IOException {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	240	if (writeCipher.authenticator.seqNumOverflow()) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	241	if (SSLLogger.isOn && SSLLogger.isOn("ssl")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	242	SSLLogger.fine(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	243	"sequence number extremely close to overflow " +
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	244	"(2^64-1 packets). Closing connection.");
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	245	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	246
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	247	throw new SSLHandshakeException("sequence number overflow");
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	248	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	249
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	250	boolean isFirstRecordOfThePayload = true;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	251	for (int limit = (offset + length); offset < limit;) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	252	int fragLen;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	253	if (packetSize > 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	254	fragLen = Math.min(maxRecordSize, packetSize);
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	255	fragLen =
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	256	writeCipher.calculateFragmentSize(fragLen, headerSize);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	257
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	258	fragLen = Math.min(fragLen, Record.maxDataSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	259	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	260	fragLen = Record.maxDataSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	261	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	262
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	263	if (fragmentSize > 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	264	fragLen = Math.min(fragLen, fragmentSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	265	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	266
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	267	if (isFirstRecordOfThePayload && needToSplitPayload()) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	268	fragLen = 1;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	269	isFirstRecordOfThePayload = false;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	270	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	271	fragLen = Math.min(fragLen, (limit - offset));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	272	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	273
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	274	// use the buf of ByteArrayOutputStream
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	275	int position = headerSize + writeCipher.getExplicitNonceSize();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	276	count = position;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	277	write(source, offset, fragLen);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	278
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	279	if (SSLLogger.isOn && SSLLogger.isOn("record")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	280	SSLLogger.fine(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	281	"WRITE: " + protocolVersion +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	282	" " + ContentType.APPLICATION_DATA.name +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	283	", length = " + (count - position));
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	284	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	285
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	286	// Encrypt the fragment and wrap up a record.
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	287	encrypt(writeCipher, ContentType.APPLICATION_DATA.id, headerSize);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	288
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	289	// deliver this message
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	290	deliverStream.write(buf, 0, count); // may throw IOException
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	291	deliverStream.flush(); // may throw IOException
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	292
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	293	if (SSLLogger.isOn && SSLLogger.isOn("packet")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	294	SSLLogger.fine("Raw write",
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	295	(new ByteArrayInputStream(buf, 0, count)));
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	296	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	297
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	298	// reset the internal buffer
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	299	count = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	300
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	301	if (isFirstAppOutputRecord) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	302	isFirstAppOutputRecord = false;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	303	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	304
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	305	offset += fragLen;
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	306
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	307	if (writeCipher.atKeyLimit()) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	308	if (SSLLogger.isOn && SSLLogger.isOn("ssl")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	309	SSLLogger.fine("KeyUpdate: triggered");
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	310	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	311
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	312	PostHandshakeContext p = new PostHandshakeContext(tc);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	313	KeyUpdate.handshakeProducer.produce(p,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	314	new KeyUpdateMessage(p, KeyUpdateMessage.REQUSTED));
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	315	}
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	316	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	317	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	318
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	319	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	320	void setDeliverStream(OutputStream outputStream) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	321	this.deliverStream = outputStream;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	322	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	323
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	324	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	325	* Need to split the payload except the following cases:
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	326	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	327	* 1. protocol version is TLS 1.1 or later;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	328	* 2. bulk cipher does not use CBC mode, including null bulk cipher suites.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	329	* 3. the payload is the first application record of a freshly
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	330	* negotiated TLS session.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	331	* 4. the CBC protection is disabled;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	332	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	333	* By default, we counter chosen plaintext issues on CBC mode
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	334	* ciphersuites in SSLv3/TLS1.0 by sending one byte of application
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	335	* data in the first record of every payload, and the rest in
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	336	* subsequent record(s). Note that the issues have been solved in
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	337	* TLS 1.1 or later.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	338	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	339	* It is not necessary to split the very first application record of
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	340	* a freshly negotiated TLS session, as there is no previous
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	341	* application data to guess. To improve compatibility, we will not
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	342	* split such records.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	343	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	344	* This avoids issues in the outbound direction. For a full fix,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	345	* the peer must have similar protections.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	346	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	347	boolean needToSplitPayload() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	348	return (!protocolVersion.useTLS11PlusSpec()) &&
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	349	writeCipher.isCBCMode() && !isFirstAppOutputRecord &&
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	350	Record.enableCBCProtection;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	351	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	352
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	353	private int getFragLimit() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	354	int fragLimit;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	355	if (packetSize > 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	356	fragLimit = Math.min(maxRecordSize, packetSize);
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	357	fragLimit =
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	358	writeCipher.calculateFragmentSize(fragLimit, headerSize);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	359
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	360	fragLimit = Math.min(fragLimit, Record.maxDataSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	361	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	362	fragLimit = Record.maxDataSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	363	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	364
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	365	if (fragmentSize > 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	366	fragLimit = Math.min(fragLimit, fragmentSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	367	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	368
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	369	return fragLimit;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	370	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	371	}

author	wetmore
	Fri, 11 May 2018 15:53:12 -0700
branch	JDK-8145252-TLS13-branch
changeset 56542	56aaa6cb3693
parent 47216	71c04702a3d5
child 56660	66c803c3ce32
permissions	-rw-r--r--