jdk-sandbox: src/java.base/share/classes/sun/security/ssl/HandshakeContext.java@66c803c3ce32 (annotated)

2 90ce3da70b43 Initial load duke parents: diff changeset	1	/*
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	2	* Copyright (c) 2018, Oracle and/or its affiliates. All rights reserved.
2 90ce3da70b43 Initial load duke parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
90ce3da70b43 Initial load duke parents: diff changeset	4	*
90ce3da70b43 Initial load duke parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
90ce3da70b43 Initial load duke parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 5182 diff changeset	7	* published by the Free Software Foundation. Oracle designates this
2 90ce3da70b43 Initial load duke parents: diff changeset	8	* particular file as subject to the "Classpath" exception as provided
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 5182 diff changeset	9	* by Oracle in the LICENSE file that accompanied this code.
2 90ce3da70b43 Initial load duke parents: diff changeset	10	*
90ce3da70b43 Initial load duke parents: diff changeset	11	* This code is distributed in the hope that it will be useful, but WITHOUT
90ce3da70b43 Initial load duke parents: diff changeset	12	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
90ce3da70b43 Initial load duke parents: diff changeset	13	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
90ce3da70b43 Initial load duke parents: diff changeset	14	* version 2 for more details (a copy is included in the LICENSE file that
90ce3da70b43 Initial load duke parents: diff changeset	15	* accompanied this code).
90ce3da70b43 Initial load duke parents: diff changeset	16	*
90ce3da70b43 Initial load duke parents: diff changeset	17	* You should have received a copy of the GNU General Public License version
90ce3da70b43 Initial load duke parents: diff changeset	18	* 2 along with this work; if not, write to the Free Software Foundation,
90ce3da70b43 Initial load duke parents: diff changeset	19	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
90ce3da70b43 Initial load duke parents: diff changeset	20	*
5506 202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 5182 diff changeset	21	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 5182 diff changeset	22	* or visit www.oracle.com if you need additional information or have any
202f599c92aa 6943119: Rebrand source copyright notices ohair parents: 5182 diff changeset	23	* questions.
2 90ce3da70b43 Initial load duke parents: diff changeset	24	*/
90ce3da70b43 Initial load duke parents: diff changeset	25
90ce3da70b43 Initial load duke parents: diff changeset	26	package sun.security.ssl;
90ce3da70b43 Initial load duke parents: diff changeset	27
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	28	import java.io.IOException;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 28555 diff changeset	29	import java.nio.ByteBuffer;
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	30	import java.security.AlgorithmConstraints;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	31	import java.security.CryptoPrimitive;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	32	import java.util.AbstractMap.SimpleImmutableEntry;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	33	import java.util.ArrayList;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	34	import java.util.Collections;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	35	import java.util.EnumMap;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	36	import java.util.EnumSet;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	37	import java.util.HashMap;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	38	import java.util.LinkedHashMap;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	39	import java.util.LinkedList;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	40	import java.util.List;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	41	import java.util.Map;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	42	import java.util.Queue;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	43	import javax.crypto.SecretKey;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	44	import javax.net.ssl.SNIServerName;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	45	import javax.net.ssl.SSLHandshakeException;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	46	import sun.security.ssl.SupportedGroupsExtension.NamedGroup;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	47	import sun.security.ssl.SupportedGroupsExtension.NamedGroupType;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	48	import static sun.security.ssl.SupportedGroupsExtension.NamedGroupType.*;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	49	import sun.security.ssl.SupportedGroupsExtension.SupportedGroups;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	50	import sun.security.ssl.PskKeyExchangeModesExtension.PskKeyExchangeMode;
2 90ce3da70b43 Initial load duke parents: diff changeset	51
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	52	abstract class HandshakeContext implements ConnectionContext {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	53	// System properties
2 90ce3da70b43 Initial load duke parents: diff changeset	54
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	55	// By default, disable the unsafe legacy session renegotiation.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	56	static final boolean allowUnsafeRenegotiation =
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	57	Utilities.getBooleanProperty(
5182 62836694baeb 6898739: TLS renegotiation issue xuelei parents: 715 diff changeset	58	"sun.security.ssl.allowUnsafeRenegotiation", false);
62836694baeb 6898739: TLS renegotiation issue xuelei parents: 715 diff changeset	59
6856 533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	60	// For maximum interoperability and backward compatibility, RFC 5746
533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	61	// allows server (or client) to accept ClientHello (or ServerHello)
533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	62	// message without the secure renegotiation_info extension or SCSV.
533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	63	//
533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	64	// For maximum security, RFC 5746 also allows server (or client) to
533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	65	// reject such message with a fatal "handshake_failure" alert.
533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	66	//
533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	67	// By default, allow such legacy hello messages.
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	68	static final boolean allowLegacyHelloMessages =
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	69	Utilities.getBooleanProperty(
6856 533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	70	"sun.security.ssl.allowLegacyHelloMessages", true);
533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	71
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	72	// registered handshake message actors
56544 ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	73	LinkedHashMap<Byte, SSLConsumer> handshakeConsumers;
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	74	final HashMap<Byte, HandshakeProducer> handshakeProducers;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	75
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	76	// context
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	77	final SSLContextImpl sslContext;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	78	final TransportContext conContext;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	79	final SSLConfiguration sslConfig;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	80
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	81	// consolidated parameters
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	82	final List<ProtocolVersion> activeProtocols;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	83	final List<CipherSuite> activeCipherSuites;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	84	final AlgorithmConstraints algorithmConstraints;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	85	final ProtocolVersion maximumActiveProtocol;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	86
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	87	// output stream
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	88	final HandshakeOutStream handshakeOutput;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	89
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	90	// handshake transcript hash
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	91	final HandshakeHash handshakeHash;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	92
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	93	// negotiated security parameters
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	94	SSLSessionImpl handshakeSession;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	95	boolean handshakeFinished;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	96	// boolean isInvalidated;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	97
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	98	boolean kickstartMessageDelivered;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	99
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	100	// Resumption
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	101	boolean isResumption;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	102	SSLSessionImpl resumingSession;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	103
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	104	final Queue<Map.Entry<Byte, ByteBuffer>> delegatedActions;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	105	volatile boolean taskDelegated = false;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	106	volatile Exception delegatedThrown = null;
18283 f842a42076b9 7188658: Add possibility to disable client initiated renegotiation xuelei parents: 16913 diff changeset	107
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	108	ProtocolVersion negotiatedProtocol;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	109	CipherSuite negotiatedCipherSuite;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	110	final List<SSLPossession> handshakePossessions;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	111	final List<SSLCredentials> handshakeCredentials;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	112	SSLKeyDerivation handshakeKeyDerivation;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	113	SSLKeyExchange handshakeKeyExchange;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	114	SecretKey baseReadSecret;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	115	SecretKey baseWriteSecret;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	116
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	117	// protocol version being established
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	118	int clientHelloVersion;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	119	String applicationProtocol;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	120
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	121	// the preferable signature algorithm used by ServerKeyExchange message
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	122	SignatureScheme preferableSignatureAlgorithm;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	123
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	124	RandomCookie clientHelloRandom;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	125	RandomCookie serverHelloRandom;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	126	byte[] certRequestContext;
48225 718669e6b375 8148421: Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension xuelei parents: 47216 diff changeset	127
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	128	////////////////////
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	129	// Extensions
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	130
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	131	// the extensions used in the handshake
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	132	final Map<SSLExtension, SSLExtension.SSLExtensionSpec>
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	133	handshakeExtensions;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	134
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	135	// MaxFragmentLength
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	136	int maxFragmentLength;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	137
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	138	// SignatureScheme
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	139	List<SignatureScheme> localSupportedSignAlgs;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	140	List<SignatureScheme> peerRequestedSignatureSchemes;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	141	List<SignatureScheme> peerRequestedCertSignSchemes;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	142
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	143	// SupportedGroups
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	144	List<NamedGroup> clientRequestedNamedGroups;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	145
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	146	// HelloRetryRequest
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	147	NamedGroup serverSelectedNamedGroup;
48225 718669e6b375 8148421: Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension xuelei parents: 47216 diff changeset	148
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	149	// if server name indicator is negotiated
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	150	//
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	151	// May need a public API for the indication in the future.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	152	List<SNIServerName> requestedServerNames;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	153	SNIServerName negotiatedServerName;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	154
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	155	List<PskKeyExchangeMode> pskKeyExchangeModes = new ArrayList<>();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	156
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	157	// OCSP Stapling info
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	158	boolean staplingActive = false;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	159
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	160	protected HandshakeContext(SSLContextImpl sslContext,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	161	TransportContext conContext) throws IOException {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	162	this.sslContext = sslContext;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	163	this.conContext = conContext;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	164	this.sslConfig = (SSLConfiguration)conContext.sslConfig.clone();
48225 718669e6b375 8148421: Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension xuelei parents: 47216 diff changeset	165
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	166	this.activeProtocols = getActiveProtocols(sslConfig.enabledProtocols,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	167	sslConfig.enabledCipherSuites, sslConfig.algorithmConstraints);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	168	if (activeProtocols.isEmpty()) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	169	throw new SSLHandshakeException(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	170	"No appropriate protocol (protocol is disabled or " +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	171	"cipher suites are inappropriate)");
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	172	}
48225 718669e6b375 8148421: Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension xuelei parents: 47216 diff changeset	173
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	174	ProtocolVersion maximumVersion = ProtocolVersion.NONE;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	175	for (ProtocolVersion pv : this.activeProtocols) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	176	if (maximumVersion == ProtocolVersion.NONE \|\|
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	177	pv.compare(maximumVersion) > 0) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	178	maximumVersion = pv;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	179	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	180	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	181	this.maximumActiveProtocol = maximumVersion;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	182	this.activeCipherSuites = getActiveCipherSuites(this.activeProtocols,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	183	sslConfig.enabledCipherSuites, sslConfig.algorithmConstraints);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	184	if (activeCipherSuites.isEmpty()) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	185	throw new SSLHandshakeException("No appropriate cipher suite");
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	186	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	187	this.algorithmConstraints =
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	188	new SSLAlgorithmConstraints(sslConfig.algorithmConstraints);
5182 62836694baeb 6898739: TLS renegotiation issue xuelei parents: 715 diff changeset	189
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	190	this.handshakeConsumers = new LinkedHashMap<>();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	191	this.handshakeProducers = new HashMap<>();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	192	this.handshakeHash = conContext.inputRecord.handshakeHash;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	193	this.handshakeOutput = new HandshakeOutStream(conContext.outputRecord);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	194
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	195	this.handshakeFinished = false;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	196	this.kickstartMessageDelivered = false;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	197
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	198	this.delegatedActions = new LinkedList<>();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	199	this.handshakeExtensions = new HashMap<>();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	200	this.handshakePossessions = new LinkedList<>();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	201	this.handshakeCredentials = new LinkedList<>();
56561 5f23e0400f27 Use PostHandshakeContext for New Session Ticket when approriate ascarpino parents: 56544 diff changeset	202	this.requestedServerNames = null;
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	203	this.negotiatedServerName = null;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	204	this.negotiatedCipherSuite = conContext.cipherSuite;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	205	initialize();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	206	}
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: 28555 diff changeset	207
56544 ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	208	/**
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	209	* Constructor for PostHandshakeContext
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	210	*/
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	211	HandshakeContext(TransportContext conContext) {
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	212	this.sslContext = conContext.sslContext;
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	213	this.conContext = conContext;
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	214	this.sslConfig = conContext.sslConfig;
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	215
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	216	this.negotiatedProtocol = conContext.protocolVersion;
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	217	this.negotiatedCipherSuite = conContext.cipherSuite;
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	218	this.handshakeOutput = new HandshakeOutStream(conContext.outputRecord);
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	219	this.delegatedActions = new LinkedList<>();
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	220
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	221	this.handshakeProducers = null;
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	222	this.handshakeHash = null;
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	223	this.activeProtocols = null;
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	224	this.activeCipherSuites = null;
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	225	this.algorithmConstraints = null;
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	226	this.maximumActiveProtocol = null;
56561 5f23e0400f27 Use PostHandshakeContext for New Session Ticket when approriate ascarpino parents: 56544 diff changeset	227	this.handshakeExtensions = Collections.emptyMap(); // Not in TLS13
56544 ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	228	this.handshakePossessions = null;
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	229	this.handshakeCredentials = null;
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	230	}
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	231
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	232	// Initialize the non-final class variables.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	233	private void initialize() throws IOException {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	234	ProtocolVersion inputHelloVersion;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	235	ProtocolVersion outputHelloVersion;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	236	if (conContext.isNegotiated) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	237	inputHelloVersion = conContext.protocolVersion;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	238	outputHelloVersion = conContext.protocolVersion;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	239	} else {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	240	if (activeProtocols.contains(ProtocolVersion.SSL20Hello)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	241	inputHelloVersion = ProtocolVersion.SSL20Hello;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	242
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	243	// Per TLS 1.3 protocol, implementation MUST NOT send an SSL
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	244	// version 2.0 compatible CLIENT-HELLO.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	245	if (maximumActiveProtocol.useTLS13PlusSpec()) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	246	outputHelloVersion = maximumActiveProtocol;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	247	} else {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	248	outputHelloVersion = ProtocolVersion.SSL20Hello;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	249	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	250	} else {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	251	inputHelloVersion = maximumActiveProtocol;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	252	outputHelloVersion = maximumActiveProtocol;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	253	}
48225 718669e6b375 8148421: Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension xuelei parents: 47216 diff changeset	254	}
718669e6b375 8148421: Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension xuelei parents: 47216 diff changeset	255
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	256	conContext.inputRecord.setHelloVersion(inputHelloVersion);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	257	conContext.outputRecord.setHelloVersion(outputHelloVersion);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	258
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	259	if (!conContext.isNegotiated) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	260	conContext.protocolVersion = maximumActiveProtocol;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	261	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	262	conContext.outputRecord.setVersion(conContext.protocolVersion);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	263	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	264
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	265	private static List<ProtocolVersion> getActiveProtocols(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	266	List<ProtocolVersion> enabledProtocols,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	267	List<CipherSuite> enabledCipherSuites,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	268	AlgorithmConstraints algorithmConstraints) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	269	boolean enabledSSL20Hello = false;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	270	ArrayList<ProtocolVersion> protocols = new ArrayList<>(4);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	271	for (ProtocolVersion protocol : enabledProtocols) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	272	if (!enabledSSL20Hello && protocol == ProtocolVersion.SSL20Hello) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	273	enabledSSL20Hello = true;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	274	continue;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	275	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	276
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	277	if (!algorithmConstraints.permits(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	278	EnumSet.of(CryptoPrimitive.KEY_AGREEMENT),
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	279	protocol.name, null)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	280	// Ignore disabled protocol.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	281	continue;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	282	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	283
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	284	boolean found = false;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	285	Map<NamedGroupType, Boolean> cachedStatus =
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	286	new EnumMap<>(NamedGroupType.class);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	287	for (CipherSuite suite : enabledCipherSuites) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	288	if (suite.isAvailable() && suite.supports(protocol)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	289	if (isActivatable(suite,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	290	algorithmConstraints, cachedStatus)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	291	protocols.add(protocol);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	292	found = true;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	293	break;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	294	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	295	} else if (SSLLogger.isOn && SSLLogger.isOn("verbose")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	296	SSLLogger.fine(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	297	"Ignore unsupported cipher suite: " + suite +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	298	" for " + protocol);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	299	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	300	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	301
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	302	if (!found && (SSLLogger.isOn) && SSLLogger.isOn("handshake")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	303	SSLLogger.fine(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	304	"No available cipher suite for " + protocol);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	305	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	306	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	307
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	308	if (!protocols.isEmpty()) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	309	if (enabledSSL20Hello) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	310	protocols.add(ProtocolVersion.SSL20Hello);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	311	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	312	Collections.sort(protocols);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	313	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	314
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	315	return Collections.unmodifiableList(protocols);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	316	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	317
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	318	private static List<CipherSuite> getActiveCipherSuites(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	319	List<ProtocolVersion> enabledProtocols,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	320	List<CipherSuite> enabledCipherSuites,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	321	AlgorithmConstraints algorithmConstraints) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	322
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	323	List<CipherSuite> suites = new LinkedList<>();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	324	if (enabledProtocols != null && !enabledProtocols.isEmpty()) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	325	Map<NamedGroupType, Boolean> cachedStatus =
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	326	new EnumMap<>(NamedGroupType.class);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	327	for (CipherSuite suite : enabledCipherSuites) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	328	if (!suite.isAvailable()) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	329	continue;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	330	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	331
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	332	boolean isSupported = false;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	333	for (ProtocolVersion protocol : enabledProtocols) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	334	if (!suite.supports(protocol)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	335	continue;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	336	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	337	if (isActivatable(suite,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	338	algorithmConstraints, cachedStatus)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	339	suites.add(suite);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	340	isSupported = true;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	341	break;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	342	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	343	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	344
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	345	if (!isSupported &&
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	346	SSLLogger.isOn && SSLLogger.isOn("verbose")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	347	SSLLogger.finest(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	348	"Ignore unsupported cipher suite: " + suite);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	349	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	350	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	351	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	352
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	353	return Collections.unmodifiableList(suites);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	354	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	355
56544 ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	356	/**
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	357	* Parse the handshake record and return the contentType
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	358	*/
56660 66c803c3ce32 key and iv implementation update, and two tests correction xuelei parents: 56561 diff changeset	359	static byte getHandshakeType(TransportContext conContext,
66c803c3ce32 key and iv implementation update, and two tests correction xuelei parents: 56561 diff changeset	360	Plaintext plaintext) throws IOException {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	361	// struct {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	362	// HandshakeType msg_type; /* handshake type */
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	363	// uint24 length; /* bytes in message */
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	364	// select (HandshakeType) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	365	// ...
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	366	// } body;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	367	// } Handshake;
56544 ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	368
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	369	if (plaintext.contentType != ContentType.HANDSHAKE.id) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	370	conContext.fatal(Alert.INTERNAL_ERROR,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	371	"Unexpected operation for record: " + plaintext.contentType);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	372
56544 ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	373	return 0;
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	374	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	375
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	376	if (plaintext.fragment == null \|\| plaintext.fragment.remaining() < 4) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	377	conContext.fatal(Alert.UNEXPECTED_MESSAGE,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	378	"Invalid handshake message: insufficient data");
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	379
56544 ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	380	return 0;
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	381	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	382
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	383	byte handshakeType = (byte)Record.getInt8(plaintext.fragment);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	384	int handshakeLen = Record.getInt24(plaintext.fragment);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	385	if (handshakeLen != plaintext.fragment.remaining()) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	386	conContext.fatal(Alert.UNEXPECTED_MESSAGE,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	387	"Invalid handshake message: insufficient handshake body");
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	388
56544 ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	389	return 0;
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	390	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	391
56544 ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	392	return handshakeType;
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	393	}
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	394
ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	395	void dispatch(byte handshakeType, Plaintext plaintext) throws IOException {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	396	if (conContext.transport.useDelegatedTask()) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	397	boolean hasDelegated = !delegatedActions.isEmpty();
56660 66c803c3ce32 key and iv implementation update, and two tests correction xuelei parents: 56561 diff changeset	398	if (hasDelegated \|\|
66c803c3ce32 key and iv implementation update, and two tests correction xuelei parents: 56561 diff changeset	399	(handshakeType != SSLHandshake.FINISHED.id &&
66c803c3ce32 key and iv implementation update, and two tests correction xuelei parents: 56561 diff changeset	400	handshakeType != SSLHandshake.KEY_UPDATE.id &&
66c803c3ce32 key and iv implementation update, and two tests correction xuelei parents: 56561 diff changeset	401	handshakeType != SSLHandshake.NEW_SESSION_TICKET.id)) {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	402	if (!hasDelegated) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	403	taskDelegated = false;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	404	delegatedThrown = null;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	405	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	406
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	407	// Clone the fragment for delegated actions.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	408	//
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	409	// The plaintext may share the application buffers. It is
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	410	// fine to use shared buffers if no delegated actions.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	411	// However, for delegated actions, the shared buffers may be
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	412	// polluted in application layer before the delegated actions
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	413	// executed.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	414	ByteBuffer fragment = ByteBuffer.wrap(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	415	new byte[plaintext.fragment.remaining()]);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	416	fragment.put(plaintext.fragment);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	417	fragment = fragment.rewind();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	418
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	419	delegatedActions.add(new SimpleImmutableEntry<>(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	420	handshakeType,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	421	fragment
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	422	));
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	423	} else {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	424	dispatch(handshakeType, plaintext.fragment);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	425	}
48225 718669e6b375 8148421: Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension xuelei parents: 47216 diff changeset	426	} else {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	427	dispatch(handshakeType, plaintext.fragment);
48225 718669e6b375 8148421: Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension xuelei parents: 47216 diff changeset	428	}
718669e6b375 8148421: Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension xuelei parents: 47216 diff changeset	429	}
718669e6b375 8148421: Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension xuelei parents: 47216 diff changeset	430
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	431	void dispatch(byte handshakeType,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	432	ByteBuffer fragment) throws IOException {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	433	SSLConsumer consumer;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	434	if (handshakeType == SSLHandshake.HELLO_REQUEST.id) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	435	// For TLS 1.2 and prior versions, the HelloRequest message MAY
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	436	// be sent by the server at any time.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	437	consumer = SSLHandshake.HELLO_REQUEST;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	438	} else {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	439	consumer = handshakeConsumers.get(handshakeType);
6856 533f4ad71f88 6914943: Implement final TLS renegotiation fix xuelei parents: 5506 diff changeset	440	}
2 90ce3da70b43 Initial load duke parents: diff changeset	441
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	442	if (consumer == null) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	443	conContext.fatal(Alert.UNEXPECTED_MESSAGE,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	444	"Unexpected handshake message: " +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	445	SSLHandshake.nameOf(handshakeType));
56544 ad120e0dfcfb start/beginHandshake and more post-handshake changes ascarpino parents: 56542 diff changeset	446	return;
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	447	}
2 90ce3da70b43 Initial load duke parents: diff changeset	448
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	449	try {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	450	consumer.consume(this, fragment);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	451	} catch (UnsupportedOperationException unsoe) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	452	conContext.fatal(Alert.UNEXPECTED_MESSAGE,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	453	"Unsupported handshake message: " +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	454	SSLHandshake.nameOf(handshakeType), unsoe);
2 90ce3da70b43 Initial load duke parents: diff changeset	455	}
90ce3da70b43 Initial load duke parents: diff changeset	456
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	457	// update handshake hash after handshake message consumption.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	458	handshakeHash.consume();
2 90ce3da70b43 Initial load duke parents: diff changeset	459	}
90ce3da70b43 Initial load duke parents: diff changeset	460
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	461	abstract void kickstart() throws IOException;
2 90ce3da70b43 Initial load duke parents: diff changeset	462
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	463	/**
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	464	* Check if the given cipher suite is enabled and available within
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	465	* the current active cipher suites.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	466	*
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	467	* Does not check if the required server certificates are available.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	468	*/
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	469	boolean isNegotiable(CipherSuite cs) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	470	return isNegotiable(activeCipherSuites, cs);
2 90ce3da70b43 Initial load duke parents: diff changeset	471	}
90ce3da70b43 Initial load duke parents: diff changeset	472
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	473	/**
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	474	* Check if the given cipher suite is enabled and available within
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	475	* the proposed cipher suite list.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	476	*
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	477	* Does not check if the required server certificates are available.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	478	*/
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	479	static final boolean isNegotiable(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	480	List<CipherSuite> proposed, CipherSuite cs) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	481	return proposed.contains(cs) && cs.isNegotiable();
2 90ce3da70b43 Initial load duke parents: diff changeset	482	}
90ce3da70b43 Initial load duke parents: diff changeset	483
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	484	/**
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	485	* Check if the given cipher suite is enabled and available within
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	486	* the proposed cipher suite list and specific protocol version.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	487	*
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	488	* Does not check if the required server certificates are available.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	489	*/
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	490	static final boolean isNegotiable(List<CipherSuite> proposed,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	491	ProtocolVersion protocolVersion, CipherSuite cs) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	492	return proposed.contains(cs) &&
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	493	cs.isNegotiable() && cs.supports(protocolVersion);
2 90ce3da70b43 Initial load duke parents: diff changeset	494	}
90ce3da70b43 Initial load duke parents: diff changeset	495
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	496	/**
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	497	* Check if the given protocol version is enabled and available.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	498	*/
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	499	boolean isNegotiable(ProtocolVersion protocolVersion) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	500	return activeProtocols.contains(protocolVersion);
2 90ce3da70b43 Initial load duke parents: diff changeset	501	}
90ce3da70b43 Initial load duke parents: diff changeset	502
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	503	boolean isNegotiable(byte majorVersion, byte minorVersion) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	504	ProtocolVersion pv =
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	505	ProtocolVersion.valueOf(majorVersion, minorVersion);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	506	if (pv == null) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	507	// unsupported protocol version
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	508	return false;
27068 5fe2d67f5f68 8037066: Secure transport layer xuelei parents: 25859 diff changeset	509	}
5fe2d67f5f68 8037066: Secure transport layer xuelei parents: 25859 diff changeset	510
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	511	return activeProtocols.contains(pv);
2 90ce3da70b43 Initial load duke parents: diff changeset	512	}
90ce3da70b43 Initial load duke parents: diff changeset	513
90ce3da70b43 Initial load duke parents: diff changeset	514	/**
90ce3da70b43 Initial load duke parents: diff changeset	515	* Set the active protocol version and propagate it to the SSLSocket
90ce3da70b43 Initial load duke parents: diff changeset	516	* and our handshake streams. Called from ClientHandshaker
90ce3da70b43 Initial load duke parents: diff changeset	517	* and ServerHandshaker with the negotiated protocol version.
90ce3da70b43 Initial load duke parents: diff changeset	518	*/
90ce3da70b43 Initial load duke parents: diff changeset	519	void setVersion(ProtocolVersion protocolVersion) {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	520	this.conContext.protocolVersion = protocolVersion;
19823 f0fd09e20528 7188657: There should be a way to reorder the JSSE ciphers xuelei parents: 18554 diff changeset	521	}
f0fd09e20528 7188657: There should be a way to reorder the JSSE ciphers xuelei parents: 18554 diff changeset	522
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	523	private static boolean isActivatable(CipherSuite suite,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	524	AlgorithmConstraints algorithmConstraints,
45064 b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	525	Map<NamedGroupType, Boolean> cachedStatus) {
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	526
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	527	if (algorithmConstraints.permits(
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	528	EnumSet.of(CryptoPrimitive.KEY_AGREEMENT), suite.name, null)) {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	529	if (suite.keyExchange == null) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	530	// TLS 1.3, no definition of key exchange in cipher suite.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	531	return true;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	532	}
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	533
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	534	boolean available;
45064 b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	535	NamedGroupType groupType = suite.keyExchange.groupType;
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	536	if (groupType != NAMED_GROUP_NONE) {
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	537	Boolean checkedStatus = cachedStatus.get(groupType);
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	538	if (checkedStatus == null) {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	539	available = SupportedGroups.isActivatable(
45064 b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	540	algorithmConstraints, groupType);
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	541	cachedStatus.put(groupType, available);
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	542
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	543	if (!available &&
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	544	SSLLogger.isOn && SSLLogger.isOn("verbose")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	545	SSLLogger.fine("No activated named group");
45064 b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	546	}
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	547	} else {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	548	available = checkedStatus;
45064 b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	549	}
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	550
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	551	if (!available && SSLLogger.isOn && SSLLogger.isOn("verbose")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	552	SSLLogger.fine(
45064 b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	553	"No active named group, ignore " + suite);
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	554	}
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	555	return available;
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	556	} else {
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	557	return true;
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	558	}
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	559	} else if (SSLLogger.isOn && SSLLogger.isOn("verbose")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	560	SSLLogger.fine("Ignore disabled cipher suite: " + suite);
45064 b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	561	}
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	562
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	563	return false;
b1b45177051b 8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS xuelei parents: 42706 diff changeset	564	}
56561 5f23e0400f27 Use PostHandshakeContext for New Session Ticket when approriate ascarpino parents: 56544 diff changeset	565
5f23e0400f27 Use PostHandshakeContext for New Session Ticket when approriate ascarpino parents: 56544 diff changeset	566	List<SNIServerName> getRequestedServerNames() {
5f23e0400f27 Use PostHandshakeContext for New Session Ticket when approriate ascarpino parents: 56544 diff changeset	567	if (requestedServerNames == null) {
5f23e0400f27 Use PostHandshakeContext for New Session Ticket when approriate ascarpino parents: 56544 diff changeset	568	return Collections.<SNIServerName>emptyList();
5f23e0400f27 Use PostHandshakeContext for New Session Ticket when approriate ascarpino parents: 56544 diff changeset	569	}
5f23e0400f27 Use PostHandshakeContext for New Session Ticket when approriate ascarpino parents: 56544 diff changeset	570	return requestedServerNames;
5f23e0400f27 Use PostHandshakeContext for New Session Ticket when approriate ascarpino parents: 56544 diff changeset	571	}
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 48225 diff changeset	572	}
2 90ce3da70b43 Initial load duke parents: diff changeset	573

author	xuelei
	Sat, 02 Jun 2018 21:23:02 -0700
branch	JDK-8145252-TLS13-branch
changeset 56660	66c803c3ce32
parent 56561	5f23e0400f27
child 56702	75527e40bdfd
permissions	-rw-r--r--