jdk-sandbox: jdk/src/java.base/share/classes/sun/security/ssl/DTLSOutputRecord.java@e4d5230193da (annotated)

30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	1	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	2	* Copyright (c) 1996, 2014, Oracle and/or its affiliates. All rights reserved.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	4	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	7	* published by the Free Software Foundation. Oracle designates this
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	8	* particular file as subject to the "Classpath" exception as provided
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	9	* by Oracle in the LICENSE file that accompanied this code.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	10	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	11	* This code is distributed in the hope that it will be useful, but WITHOUT
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	12	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	13	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	14	* version 2 for more details (a copy is included in the LICENSE file that
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	15	* accompanied this code).
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	16	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	17	* You should have received a copy of the GNU General Public License version
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	18	* 2 along with this work; if not, write to the Free Software Foundation,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	19	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	20	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	21	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	22	* or visit www.oracle.com if you need additional information or have any
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	23	* questions.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	24	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	25
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	26	package sun.security.ssl;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	27
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	28	import java.io.*;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	29	import java.nio.*;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	30	import java.util.*;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	31
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	32	import javax.crypto.BadPaddingException;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	33
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	34	import javax.net.ssl.*;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	35
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	36	import sun.misc.HexDumpEncoder;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	37	import static sun.security.ssl.Ciphertext.RecordType;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	38
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	39	/**
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	40	* DTLS {@code OutputRecord} implementation for {@code SSLEngine}.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	41	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	42	final class DTLSOutputRecord extends OutputRecord implements DTLSRecord {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	43
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	44	private DTLSFragmenter fragmenter = null;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	45
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	46	int writeEpoch;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	47
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	48	int prevWriteEpoch;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	49	Authenticator prevWriteAuthenticator;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	50	CipherBox prevWriteCipher;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	51
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	52	private LinkedList<RecordMemo> alertMemos = new LinkedList<>();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	53
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	54	DTLSOutputRecord() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	55	this.writeAuthenticator = new MAC(true);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	56
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	57	this.writeEpoch = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	58	this.prevWriteEpoch = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	59	this.prevWriteCipher = CipherBox.NULL;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	60	this.prevWriteAuthenticator = new MAC(true);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	61
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	62	this.packetSize = DTLSRecord.maxRecordSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	63	this.protocolVersion = ProtocolVersion.DEFAULT_DTLS;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	64	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	65
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	66	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	67	void changeWriteCiphers(Authenticator writeAuthenticator,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	68	CipherBox writeCipher) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	69
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	70	encodeChangeCipherSpec();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	71
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	72	prevWriteCipher.dispose();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	73
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	74	this.prevWriteAuthenticator = this.writeAuthenticator;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	75	this.prevWriteCipher = this.writeCipher;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	76	this.prevWriteEpoch = this.writeEpoch;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	77
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	78	this.writeAuthenticator = writeAuthenticator;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	79	this.writeCipher = writeCipher;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	80	this.writeEpoch++;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	81
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	82	this.isFirstAppOutputRecord = true;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	83
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	84	// set the epoch number
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	85	this.writeAuthenticator.setEpochNumber(this.writeEpoch);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	86	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	87
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	88	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	89	void encodeAlert(byte level, byte description) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	90	RecordMemo memo = new RecordMemo();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	91
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	92	memo.contentType = Record.ct_alert;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	93	memo.majorVersion = protocolVersion.major;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	94	memo.minorVersion = protocolVersion.minor;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	95	memo.encodeEpoch = writeEpoch;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	96	memo.encodeCipher = writeCipher;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	97	memo.encodeAuthenticator = writeAuthenticator;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	98
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	99	memo.fragment = new byte[2];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	100	memo.fragment[0] = level;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	101	memo.fragment[1] = description;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	102
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	103	alertMemos.add(memo);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	104	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	105
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	106	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	107	void encodeChangeCipherSpec() throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	108	if (fragmenter == null) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	109	fragmenter = new DTLSFragmenter();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	110	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	111	fragmenter.queueUpChangeCipherSpec();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	112	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	113
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	114	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	115	void encodeHandshake(byte[] source,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	116	int offset, int length) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	117
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	118	if (firstMessage) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	119	firstMessage = false;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	120	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	121
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	122	if (fragmenter == null) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	123	fragmenter = new DTLSFragmenter();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	124	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	125
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	126	fragmenter.queueUpHandshake(source, offset, length);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	127	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	128
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	129	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	130	Ciphertext encode(ByteBuffer[] sources, int offset, int length,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	131	ByteBuffer destination) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	132
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	133	if (writeAuthenticator.seqNumOverflow()) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	134	if (debug != null && Debug.isOn("ssl")) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	135	System.out.println(Thread.currentThread().getName() +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	136	", sequence number extremely close to overflow " +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	137	"(2^64-1 packets). Closing connection.");
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	138	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	139
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	140	throw new SSLHandshakeException("sequence number overflow");
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	141	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	142
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	143	// not apply to handshake message
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	144	int macLen = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	145	if (writeAuthenticator instanceof MAC) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	146	macLen = ((MAC)writeAuthenticator).MAClen();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	147	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	148
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	149	int fragLen;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	150	if (packetSize > 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	151	fragLen = Math.min(maxRecordSize, packetSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	152	fragLen = writeCipher.calculateFragmentSize(
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	153	fragLen, macLen, headerSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	154
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	155	fragLen = Math.min(fragLen, Record.maxDataSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	156	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	157	fragLen = Record.maxDataSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	158	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	159
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	160	if (fragmentSize > 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	161	fragLen = Math.min(fragLen, fragmentSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	162	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	163
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	164	int dstPos = destination.position();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	165	int dstLim = destination.limit();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	166	int dstContent = dstPos + headerSize +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	167	writeCipher.getExplicitNonceSize();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	168	destination.position(dstContent);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	169
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	170	int remains = Math.min(fragLen, destination.remaining());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	171	fragLen = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	172	int srcsLen = offset + length;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	173	for (int i = offset; (i < srcsLen) && (remains > 0); i++) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	174	int amount = Math.min(sources[i].remaining(), remains);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	175	int srcLimit = sources[i].limit();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	176	sources[i].limit(sources[i].position() + amount);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	177	destination.put(sources[i]);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	178	sources[i].limit(srcLimit); // restore the limit
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	179	remains -= amount;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	180	fragLen += amount;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	181	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	182
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	183	destination.limit(destination.position());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	184	destination.position(dstContent);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	185
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	186	if ((debug != null) && Debug.isOn("record")) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	187	System.out.println(Thread.currentThread().getName() +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	188	", WRITE: " + protocolVersion + " " +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	189	Record.contentName(Record.ct_application_data) +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	190	", length = " + destination.remaining());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	191	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	192
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	193	// Encrypt the fragment and wrap up a record.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	194	long recordSN = encrypt(writeAuthenticator, writeCipher,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	195	Record.ct_application_data, destination,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	196	dstPos, dstLim, headerSize,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	197	protocolVersion, true);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	198
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	199	if ((debug != null) && Debug.isOn("packet")) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	200	ByteBuffer temporary = destination.duplicate();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	201	temporary.limit(temporary.position());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	202	temporary.position(dstPos);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	203	Debug.printHex(
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	204	"[Raw write]: length = " + temporary.remaining(),
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	205	temporary);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	206	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	207
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	208	// remain the limit unchanged
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	209	destination.limit(dstLim);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	210
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	211	return new Ciphertext(RecordType.RECORD_APPLICATION_DATA, recordSN);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	212	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	213
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	214	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	215	Ciphertext acquireCiphertext(ByteBuffer destination) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	216	if (alertMemos != null && !alertMemos.isEmpty()) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	217	RecordMemo memo = alertMemos.pop();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	218
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	219	int macLen = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	220	if (memo.encodeAuthenticator instanceof MAC) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	221	macLen = ((MAC)memo.encodeAuthenticator).MAClen();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	222	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	223
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	224	int dstPos = destination.position();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	225	int dstLim = destination.limit();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	226	int dstContent = dstPos + headerSize +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	227	writeCipher.getExplicitNonceSize();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	228	destination.position(dstContent);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	229
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	230	destination.put(memo.fragment);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	231
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	232	destination.limit(destination.position());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	233	destination.position(dstContent);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	234
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	235	if ((debug != null) && Debug.isOn("record")) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	236	System.out.println(Thread.currentThread().getName() +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	237	", WRITE: " + protocolVersion + " " +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	238	Record.contentName(Record.ct_alert) +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	239	", length = " + destination.remaining());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	240	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	241
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	242	// Encrypt the fragment and wrap up a record.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	243	long recordSN = encrypt(memo.encodeAuthenticator, memo.encodeCipher,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	244	Record.ct_alert, destination, dstPos, dstLim, headerSize,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	245	ProtocolVersion.valueOf(memo.majorVersion,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	246	memo.minorVersion), true);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	247
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	248	if ((debug != null) && Debug.isOn("packet")) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	249	ByteBuffer temporary = destination.duplicate();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	250	temporary.limit(temporary.position());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	251	temporary.position(dstPos);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	252	Debug.printHex(
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	253	"[Raw write]: length = " + temporary.remaining(),
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	254	temporary);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	255	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	256
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	257	// remain the limit unchanged
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	258	destination.limit(dstLim);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	259
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	260	return new Ciphertext(RecordType.RECORD_ALERT, recordSN);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	261	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	262
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	263	if (fragmenter != null) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	264	return fragmenter.acquireCiphertext(destination);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	265	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	266
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	267	return null;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	268	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	269
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	270	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	271	boolean isEmpty() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	272	return ((fragmenter == null) \|\| fragmenter.isEmpty()) &&
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	273	((alertMemos == null) \|\| alertMemos.isEmpty());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	274	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	275
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	276	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	277	void initHandshaker() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	278	// clean up
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	279	fragmenter = null;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	280	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	281
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	282	// buffered record fragment
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	283	private static class RecordMemo {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	284	byte contentType;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	285	byte majorVersion;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	286	byte minorVersion;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	287	int encodeEpoch;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	288	CipherBox encodeCipher;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	289	Authenticator encodeAuthenticator;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	290
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	291	byte[] fragment;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	292	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	293
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	294	private static class HandshakeMemo extends RecordMemo {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	295	byte handshakeType;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	296	int messageSequence;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	297	int acquireOffset;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	298	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	299
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	300	private final class DTLSFragmenter {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	301	private LinkedList<RecordMemo> handshakeMemos = new LinkedList<>();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	302	private int acquireIndex = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	303	private int messageSequence = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	304	private boolean flightIsReady = false;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	305
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	306	// Per section 4.1.1, RFC 6347:
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	307	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	308	// If repeated retransmissions do not result in a response, and the
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	309	// PMTU is unknown, subsequent retransmissions SHOULD back off to a
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	310	// smaller record size, fragmenting the handshake message as
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	311	// appropriate.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	312	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	313	// In this implementation, two times of retransmits would be attempted
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	314	// before backing off. The back off is supported only if the packet
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	315	// size is bigger than 256 bytes.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	316	private int retransmits = 2; // attemps of retransmits
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	317
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	318	void queueUpChangeCipherSpec() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	319
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	320	// Cleanup if a new flight starts.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	321	if (flightIsReady) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	322	handshakeMemos.clear();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	323	acquireIndex = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	324	flightIsReady = false;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	325	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	326
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	327	RecordMemo memo = new RecordMemo();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	328
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	329	memo.contentType = Record.ct_change_cipher_spec;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	330	memo.majorVersion = protocolVersion.major;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	331	memo.minorVersion = protocolVersion.minor;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	332	memo.encodeEpoch = writeEpoch;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	333	memo.encodeCipher = writeCipher;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	334	memo.encodeAuthenticator = writeAuthenticator;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	335
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	336	memo.fragment = new byte[1];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	337	memo.fragment[0] = 1;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	338
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	339	handshakeMemos.add(memo);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	340	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	341
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	342	void queueUpHandshake(byte[] buf,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	343	int offset, int length) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	344
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	345	// Cleanup if a new flight starts.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	346	if (flightIsReady) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	347	handshakeMemos.clear();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	348	acquireIndex = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	349	flightIsReady = false;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	350	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	351
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	352	HandshakeMemo memo = new HandshakeMemo();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	353
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	354	memo.contentType = Record.ct_handshake;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	355	memo.majorVersion = protocolVersion.major;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	356	memo.minorVersion = protocolVersion.minor;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	357	memo.encodeEpoch = writeEpoch;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	358	memo.encodeCipher = writeCipher;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	359	memo.encodeAuthenticator = writeAuthenticator;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	360
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	361	memo.handshakeType = buf[offset];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	362	memo.messageSequence = messageSequence++;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	363	memo.acquireOffset = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	364	memo.fragment = new byte[length - 4]; // 4: header size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	365	// 1: HandshakeType
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	366	// 3: message length
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	367	System.arraycopy(buf, offset + 4, memo.fragment, 0, length - 4);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	368
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	369	handshakeHashing(memo, memo.fragment);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	370	handshakeMemos.add(memo);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	371
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	372	if ((memo.handshakeType == HandshakeMessage.ht_client_hello) \|\|
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	373	(memo.handshakeType == HandshakeMessage.ht_hello_request) \|\|
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	374	(memo.handshakeType ==
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	375	HandshakeMessage.ht_hello_verify_request) \|\|
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	376	(memo.handshakeType == HandshakeMessage.ht_server_hello_done) \|\|
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	377	(memo.handshakeType == HandshakeMessage.ht_finished)) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	378
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	379	flightIsReady = true;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	380	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	381	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	382
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	383	Ciphertext acquireCiphertext(ByteBuffer dstBuf) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	384	if (isEmpty()) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	385	if (isRetransmittable()) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	386	setRetransmission(); // configure for retransmission
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	387	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	388	return null;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	389	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	390	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	391
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	392	RecordMemo memo = handshakeMemos.get(acquireIndex);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	393	HandshakeMemo hsMemo = null;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	394	if (memo.contentType == Record.ct_handshake) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	395	hsMemo = (HandshakeMemo)memo;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	396	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	397
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	398	int macLen = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	399	if (memo.encodeAuthenticator instanceof MAC) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	400	macLen = ((MAC)memo.encodeAuthenticator).MAClen();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	401	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	402
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	403	// ChangeCipherSpec message is pretty small. Don't worry about
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	404	// the fragmentation of ChangeCipherSpec record.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	405	int fragLen;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	406	if (packetSize > 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	407	fragLen = Math.min(maxRecordSize, packetSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	408	fragLen = memo.encodeCipher.calculateFragmentSize(
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	409	fragLen, macLen, 25); // 25: header size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	410	// 13: DTLS record
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	411	// 12: DTLS handshake message
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	412	fragLen = Math.min(fragLen, Record.maxDataSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	413	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	414	fragLen = Record.maxDataSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	415	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	416
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	417	if (fragmentSize > 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	418	fragLen = Math.min(fragLen, fragmentSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	419	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	420
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	421	int dstPos = dstBuf.position();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	422	int dstLim = dstBuf.limit();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	423	int dstContent = dstPos + headerSize +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	424	memo.encodeCipher.getExplicitNonceSize();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	425	dstBuf.position(dstContent);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	426
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	427	if (hsMemo != null) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	428	fragLen = Math.min(fragLen,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	429	(hsMemo.fragment.length - hsMemo.acquireOffset));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	430
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	431	dstBuf.put(hsMemo.handshakeType);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	432	dstBuf.put((byte)((hsMemo.fragment.length >> 16) & 0xFF));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	433	dstBuf.put((byte)((hsMemo.fragment.length >> 8) & 0xFF));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	434	dstBuf.put((byte)(hsMemo.fragment.length & 0xFF));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	435	dstBuf.put((byte)((hsMemo.messageSequence >> 8) & 0xFF));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	436	dstBuf.put((byte)(hsMemo.messageSequence & 0xFF));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	437	dstBuf.put((byte)((hsMemo.acquireOffset >> 16) & 0xFF));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	438	dstBuf.put((byte)((hsMemo.acquireOffset >> 8) & 0xFF));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	439	dstBuf.put((byte)(hsMemo.acquireOffset & 0xFF));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	440	dstBuf.put((byte)((fragLen >> 16) & 0xFF));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	441	dstBuf.put((byte)((fragLen >> 8) & 0xFF));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	442	dstBuf.put((byte)(fragLen & 0xFF));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	443	dstBuf.put(hsMemo.fragment, hsMemo.acquireOffset, fragLen);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	444	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	445	fragLen = Math.min(fragLen, memo.fragment.length);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	446	dstBuf.put(memo.fragment, 0, fragLen);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	447	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	448
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	449	dstBuf.limit(dstBuf.position());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	450	dstBuf.position(dstContent);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	451
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	452	if ((debug != null) && Debug.isOn("record")) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	453	System.out.println(Thread.currentThread().getName() +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	454	", WRITE: " + protocolVersion + " " +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	455	Record.contentName(memo.contentType) +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	456	", length = " + dstBuf.remaining());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	457	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	458
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	459	// Encrypt the fragment and wrap up a record.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	460	long recordSN = encrypt(memo.encodeAuthenticator, memo.encodeCipher,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	461	memo.contentType, dstBuf,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	462	dstPos, dstLim, headerSize,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	463	ProtocolVersion.valueOf(memo.majorVersion,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	464	memo.minorVersion), true);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	465
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	466	if ((debug != null) && Debug.isOn("packet")) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	467	ByteBuffer temporary = dstBuf.duplicate();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	468	temporary.limit(temporary.position());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	469	temporary.position(dstPos);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	470	Debug.printHex(
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	471	"[Raw write]: length = " + temporary.remaining(),
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	472	temporary);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	473	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	474
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	475	// remain the limit unchanged
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	476	dstBuf.limit(dstLim);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	477
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	478	// Reset the fragmentation offset.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	479	if (hsMemo != null) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	480	hsMemo.acquireOffset += fragLen;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	481	if (hsMemo.acquireOffset == hsMemo.fragment.length) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	482	acquireIndex++;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	483	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	484
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	485	return new Ciphertext(RecordType.valueOf(
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	486	hsMemo.contentType, hsMemo.handshakeType), recordSN);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	487	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	488	acquireIndex++;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	489	return new Ciphertext(
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	490	RecordType.RECORD_CHANGE_CIPHER_SPEC, recordSN);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	491	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	492	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	493
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	494	private void handshakeHashing(HandshakeMemo hsFrag, byte[] hsBody) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	495
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	496	byte hsType = hsFrag.handshakeType;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	497	if ((hsType == HandshakeMessage.ht_hello_request) \|\|
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	498	(hsType == HandshakeMessage.ht_hello_verify_request)) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	499
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	500	// omitted from handshake hash computation
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	501	return;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	502	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	503
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	504	if ((hsFrag.messageSequence == 0) &&
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	505	(hsType == HandshakeMessage.ht_client_hello)) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	506
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	507	// omit initial ClientHello message
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	508	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	509	// 2: ClientHello.client_version
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	510	// 32: ClientHello.random
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	511	int sidLen = hsBody[34];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	512
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	513	if (sidLen == 0) { // empty session_id, initial handshake
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	514	return;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	515	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	516	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	517
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	518	// calculate the DTLS header
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	519	byte[] temporary = new byte[12]; // 12: handshake header size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	520
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	521	// Handshake.msg_type
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	522	temporary[0] = hsFrag.handshakeType;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	523
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	524	// Handshake.length
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	525	temporary[1] = (byte)((hsBody.length >> 16) & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	526	temporary[2] = (byte)((hsBody.length >> 8) & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	527	temporary[3] = (byte)(hsBody.length & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	528
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	529	// Handshake.message_seq
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	530	temporary[4] = (byte)((hsFrag.messageSequence >> 8) & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	531	temporary[5] = (byte)(hsFrag.messageSequence & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	532
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	533	// Handshake.fragment_offset
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	534	temporary[6] = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	535	temporary[7] = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	536	temporary[8] = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	537
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	538	// Handshake.fragment_length
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	539	temporary[9] = temporary[1];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	540	temporary[10] = temporary[2];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	541	temporary[11] = temporary[3];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	542
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	543	if ((hsType != HandshakeMessage.ht_finished) &&
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	544	(hsType != HandshakeMessage.ht_certificate_verify)) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	545
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	546	handshakeHash.update(temporary, 0, 12);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	547	handshakeHash.update(hsBody, 0, hsBody.length);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	548	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	549	// Reserve until this handshake message has been processed.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	550	handshakeHash.reserve(temporary, 0, 12);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	551	handshakeHash.reserve(hsBody, 0, hsBody.length);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	552	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	553
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	554	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	555
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	556	boolean isEmpty() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	557	if (!flightIsReady \|\| handshakeMemos.isEmpty() \|\|
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	558	acquireIndex >= handshakeMemos.size()) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	559	return true;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	560	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	561
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	562	return false;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	563	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	564
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	565	boolean isRetransmittable() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	566	return (flightIsReady && !handshakeMemos.isEmpty() &&
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	567	(acquireIndex >= handshakeMemos.size()));
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	568	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	569
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	570	private void setRetransmission() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	571	acquireIndex = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	572	for (RecordMemo memo : handshakeMemos) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	573	if (memo instanceof HandshakeMemo) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	574	HandshakeMemo hmemo = (HandshakeMemo)memo;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	575	hmemo.acquireOffset = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	576	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	577	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	578
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	579	// Shrink packet size if:
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	580	// 1. maximum fragment size is allowed, in which case the packet
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	581	// size is configured bigger than maxRecordSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	582	// 2. maximum packet is bigger than 256 bytes;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	583	// 3. two times of retransmits have been attempted.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	584	if ((packetSize <= maxRecordSize) &&
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	585	(packetSize > 256) && ((retransmits--) <= 0)) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	586
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	587	// shrink packet size
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	588	shrinkPacketSize();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	589	retransmits = 2; // attemps of retransmits
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	590	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	591	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	592
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	593	private void shrinkPacketSize() {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	594	packetSize = Math.max(256, packetSize / 2);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	595	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	596	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	597	}

author	xuelei
	Wed, 22 Apr 2015 05:09:54 +0000
changeset 31712	e4d5230193da
parent 30904	ec0224270f90
child 34687	d302ed125dc9
permissions	-rw-r--r--