jdk-sandbox: src/java.base/share/classes/sun/security/ssl/PskKeyExchangeModesExtension.java@68fa3d4026ea (annotated)

50768 68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	1	/*
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	2	* Copyright (c) 2018, Oracle and/or its affiliates. All rights reserved.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	4	*
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	7	* published by the Free Software Foundation. Oracle designates this
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	8	* particular file as subject to the "Classpath" exception as provided
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	9	* by Oracle in the LICENSE file that accompanied this code.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	10	*
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	11	* This code is distributed in the hope that it will be useful, but WITHOUT
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	12	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	13	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	14	* version 2 for more details (a copy is included in the LICENSE file that
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	15	* accompanied this code).
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	16	*
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	17	* You should have received a copy of the GNU General Public License version
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	18	* 2 along with this work; if not, write to the Free Software Foundation,
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	19	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	20	*
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	21	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	22	* or visit www.oracle.com if you need additional information or have any
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	23	* questions.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	24	*/
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	25	package sun.security.ssl;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	26
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	27	import java.io.IOException;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	28	import java.nio.ByteBuffer;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	29	import java.text.MessageFormat;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	30	import java.util.*;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	31	import javax.net.ssl.SSLProtocolException;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	32	import sun.security.ssl.SSLExtension.ExtensionConsumer;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	33
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	34	import sun.security.ssl.SSLExtension.SSLExtensionSpec;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	35	import sun.security.ssl.SSLHandshake.HandshakeMessage;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	36
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	37	/**
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	38	* Pack of the "psk_key_exchange_modes" extensions.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	39	*/
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	40	final class PskKeyExchangeModesExtension {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	41	static final HandshakeProducer chNetworkProducer =
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	42	new PskKeyExchangeModesProducer();
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	43	static final ExtensionConsumer chOnLoadConsumer =
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	44	new PskKeyExchangeModesConsumer();
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	45	static final HandshakeAbsence chOnLoadAbsence =
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	46	new PskKeyExchangeModesOnLoadAbsence();
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	47	static final HandshakeAbsence chOnTradeAbsence =
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	48	new PskKeyExchangeModesOnTradeAbsence();
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	49
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	50	static final SSLStringizer pkemStringizer =
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	51	new PskKeyExchangeModesStringizer();
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	52
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	53	enum PskKeyExchangeMode {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	54	PSK_KE ((byte)0, "psk_ke"),
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	55	PSK_DHE_KE ((byte)1, "psk_dhe_ke");
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	56
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	57	final byte id;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	58	final String name;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	59
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	60	PskKeyExchangeMode(byte id, String name) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	61	this.id = id;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	62	this.name = name;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	63	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	64
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	65	static PskKeyExchangeMode valueOf(byte id) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	66	for(PskKeyExchangeMode pkem : values()) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	67	if (pkem.id == id) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	68	return pkem;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	69	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	70	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	71
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	72	return null;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	73	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	74
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	75	static String nameOf(byte id) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	76	for (PskKeyExchangeMode pkem : PskKeyExchangeMode.values()) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	77	if (pkem.id == id) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	78	return pkem.name;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	79	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	80	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	81
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	82	return "<UNKNOWN PskKeyExchangeMode TYPE: " + (id & 0x0FF) + ">";
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	83	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	84	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	85
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	86	static final
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	87	class PskKeyExchangeModesSpec implements SSLExtensionSpec {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	88	private static final PskKeyExchangeModesSpec DEFAULT =
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	89	new PskKeyExchangeModesSpec(new byte[] {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	90	PskKeyExchangeMode.PSK_DHE_KE.id});
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	91
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	92	final byte[] modes;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	93
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	94	PskKeyExchangeModesSpec(byte[] modes) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	95	this.modes = modes;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	96	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	97
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	98	PskKeyExchangeModesSpec(ByteBuffer m) throws IOException {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	99	if (m.remaining() < 2) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	100	throw new SSLProtocolException(
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	101	"Invalid psk_key_exchange_modes extension: " +
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	102	"insufficient data");
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	103	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	104
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	105	this.modes = Record.getBytes8(m);
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	106	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	107
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	108	boolean contains(PskKeyExchangeMode mode) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	109	if (modes != null) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	110	for (byte m : modes) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	111	if (mode.id == m) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	112	return true;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	113	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	114	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	115	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	116
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	117	return false;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	118	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	119
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	120	@Override
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	121	public String toString() {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	122	MessageFormat messageFormat = new MessageFormat(
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	123	"\"ke_modes\": '['{0}']'", Locale.ENGLISH);
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	124	if (modes == null \|\| modes.length == 0) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	125	Object[] messageFields = {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	126	"<no PSK key exchange modes specified>"
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	127	};
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	128	return messageFormat.format(messageFields);
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	129	} else {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	130	StringBuilder builder = new StringBuilder(64);
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	131	boolean isFirst = true;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	132	for (byte mode : modes) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	133	if (isFirst) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	134	isFirst = false;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	135	} else {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	136	builder.append(", ");
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	137	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	138
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	139	builder.append(PskKeyExchangeMode.nameOf(mode));
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	140	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	141
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	142	Object[] messageFields = {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	143	builder.toString()
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	144	};
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	145
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	146	return messageFormat.format(messageFields);
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	147	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	148	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	149	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	150
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	151	private static final
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	152	class PskKeyExchangeModesStringizer implements SSLStringizer {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	153	@Override
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	154	public String toString(ByteBuffer buffer) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	155	try {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	156	return (new PskKeyExchangeModesSpec(buffer)).toString();
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	157	} catch (IOException ioe) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	158	// For debug logging only, so please swallow exceptions.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	159	return ioe.getMessage();
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	160	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	161	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	162	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	163
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	164	/**
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	165	* Network data consumer of a "psk_key_exchange_modes" extension in
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	166	* the ClientHello handshake message.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	167	*/
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	168	private static final
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	169	class PskKeyExchangeModesConsumer implements ExtensionConsumer {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	170	// Prevent instantiation of this class.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	171	private PskKeyExchangeModesConsumer() {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	172	// blank
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	173	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	174
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	175	@Override
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	176	public void consume(ConnectionContext context,
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	177	HandshakeMessage message, ByteBuffer buffer) throws IOException {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	178
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	179	// The consuming happens in server side only.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	180	ServerHandshakeContext shc = (ServerHandshakeContext)context;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	181
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	182	// Is it a supported and enabled extension?
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	183	if (!shc.sslConfig.isAvailable(
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	184	SSLExtension.PSK_KEY_EXCHANGE_MODES)) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	185	if (SSLLogger.isOn && SSLLogger.isOn("ssl,handshake")) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	186	SSLLogger.fine(
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	187	"Ignore unavailable psk_key_exchange_modes extension");
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	188	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	189
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	190	// No session resumption is allowed.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	191	if (shc.isResumption && shc.resumingSession != null) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	192	shc.isResumption = false;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	193	shc.resumingSession = null;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	194	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	195
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	196	return; // ignore the extension
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	197	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	198
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	199	// Parse the extension.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	200	PskKeyExchangeModesSpec spec;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	201	try {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	202	spec = new PskKeyExchangeModesSpec(buffer);
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	203	} catch (IOException ioe) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	204	shc.conContext.fatal(Alert.UNEXPECTED_MESSAGE, ioe);
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	205	return; // fatal() always throws, make the compiler happy.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	206	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	207
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	208	// Update the context.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	209	shc.handshakeExtensions.put(
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	210	SSLExtension.PSK_KEY_EXCHANGE_MODES, spec);
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	211
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	212	// Impact on session resumption.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	213	//
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	214	// Do the requested modes support session resumption?
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	215	if (shc.isResumption) { // resumingSession may not be set
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	216	// Note: psk_dhe_ke is the only supported mode now. If the
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	217	// psk_ke mode is supported in the future, may need an update
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	218	// here.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	219	if (!spec.contains(PskKeyExchangeMode.PSK_DHE_KE)) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	220	shc.isResumption = false;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	221	shc.resumingSession = null;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	222	if (SSLLogger.isOn && SSLLogger.isOn("ssl,handshake")) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	223	SSLLogger.fine(
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	224	"abort session resumption, " +
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	225	"no supported psk_dhe_ke PSK key exchange mode");
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	226	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	227	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	228	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	229	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	230	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	231
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	232	/**
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	233	* Network data producer of a "psk_key_exchange_modes" extension in the
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	234	* ClientHello handshake message.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	235	*/
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	236	private static final
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	237	class PskKeyExchangeModesProducer implements HandshakeProducer {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	238
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	239	// Prevent instantiation of this class.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	240	private PskKeyExchangeModesProducer() {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	241	// blank
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	242	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	243
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	244	@Override
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	245	public byte[] produce(ConnectionContext context,
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	246	HandshakeMessage message) throws IOException {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	247	// The producing happens in client side only.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	248	ClientHandshakeContext chc = (ClientHandshakeContext)context;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	249
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	250	// Is it a supported and enabled extension?
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	251	if (!chc.sslConfig.isAvailable(
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	252	SSLExtension.PSK_KEY_EXCHANGE_MODES)) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	253	if (SSLLogger.isOn && SSLLogger.isOn("ssl,handshake")) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	254	SSLLogger.warning(
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	255	"Ignore unavailable psk_key_exchange_modes extension");
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	256	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	257
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	258	return null;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	259	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	260
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	261	byte[] extData = new byte[] {0x01, 0x01}; // psk_dhe_ke
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	262
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	263	// Update the context.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	264	chc.handshakeExtensions.put(
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	265	SSLExtension.PSK_KEY_EXCHANGE_MODES,
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	266	PskKeyExchangeModesSpec.DEFAULT);
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	267
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	268	return extData;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	269	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	270	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	271	/**
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	272	* The absence processing if a "psk_key_exchange_modes" extension is
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	273	* not present in the ClientHello handshake message.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	274	*/
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	275	private static final
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	276	class PskKeyExchangeModesOnLoadAbsence implements HandshakeAbsence {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	277
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	278	// Prevent instantiation of this class.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	279	private PskKeyExchangeModesOnLoadAbsence() {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	280	// blank
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	281	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	282
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	283	@Override
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	284	public void absent(ConnectionContext context,
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	285	HandshakeMessage message) throws IOException {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	286	// The consuming happens in server side only.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	287	ServerHandshakeContext shc = (ServerHandshakeContext)context;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	288
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	289	// No session resumptio is allowed.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	290	if (shc.isResumption) { // resumingSession may not be set
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	291	shc.isResumption = false;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	292	shc.resumingSession = null;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	293	if (SSLLogger.isOn && SSLLogger.isOn("ssl,handshake")) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	294	SSLLogger.fine(
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	295	"abort session resumption, " +
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	296	"no supported psk_dhe_ke PSK key exchange mode");
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	297	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	298	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	299	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	300	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	301
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	302	/**
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	303	* The absence processing if a "signature_algorithms" extension is
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	304	* not present in the ClientHello handshake message.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	305	*/
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	306	private static final
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	307	class PskKeyExchangeModesOnTradeAbsence implements HandshakeAbsence {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	308
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	309	// Prevent instantiation of this class.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	310	private PskKeyExchangeModesOnTradeAbsence() {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	311	// blank
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	312	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	313
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	314	@Override
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	315	public void absent(ConnectionContext context,
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	316	HandshakeMessage message) throws IOException {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	317	// The consuming happens in server side only.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	318	ServerHandshakeContext shc = (ServerHandshakeContext)context;
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	319
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	320	// A client MUST provide a "psk_key_exchange_modes" extension if
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	321	// it offers a "pre_shared_key" extension. If clients offer
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	322	// "pre_shared_key" without a "psk_key_exchange_modes" extension,
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	323	// servers MUST abort the handshake.
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	324	SSLExtensionSpec spec =
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	325	shc.handshakeExtensions.get(SSLExtension.CH_PRE_SHARED_KEY);
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	326	if (spec == null) {
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	327	shc.conContext.fatal(Alert.HANDSHAKE_FAILURE,
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	328	"pre_shared_key key extension is offered " +
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	329	"without a psk_key_exchange_modes extension");
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	330	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	331	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	332	}
68fa3d4026ea 8196584: TLS 1.3 Implementation xuelei parents: diff changeset	333	}

author	xuelei
	Mon, 25 Jun 2018 13:41:39 -0700
changeset 50768	68fa3d4026ea
child 51654	b6ccd982e33d
permissions	-rw-r--r--