jdk-sandbox: src/java.base/share/classes/sun/security/ssl/SSLSocketInputRecord.java@e4fe7c97b1de (annotated)

30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	1	/*
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	2	* Copyright (c) 1996, 2018, Oracle and/or its affiliates. All rights reserved.
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	4	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	7	* published by the Free Software Foundation. Oracle designates this
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	8	* particular file as subject to the "Classpath" exception as provided
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	9	* by Oracle in the LICENSE file that accompanied this code.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	10	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	11	* This code is distributed in the hope that it will be useful, but WITHOUT
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	12	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	13	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	14	* version 2 for more details (a copy is included in the LICENSE file that
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	15	* accompanied this code).
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	16	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	17	* You should have received a copy of the GNU General Public License version
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	18	* 2 along with this work; if not, write to the Free Software Foundation,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	19	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	20	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	21	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	22	* or visit www.oracle.com if you need additional information or have any
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	23	* questions.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	24	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	25
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	26	package sun.security.ssl;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	27
56694 aa54a1f8e426 InputRecord related fixes ascarpino parents: 56542 diff changeset	28	import java.io.EOFException;
aa54a1f8e426 InputRecord related fixes ascarpino parents: 56542 diff changeset	29	import java.io.IOException;
aa54a1f8e426 InputRecord related fixes ascarpino parents: 56542 diff changeset	30	import java.io.InputStream;
aa54a1f8e426 InputRecord related fixes ascarpino parents: 56542 diff changeset	31	import java.io.OutputStream;
aa54a1f8e426 InputRecord related fixes ascarpino parents: 56542 diff changeset	32	import java.nio.ByteBuffer;
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	33	import java.security.GeneralSecurityException;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	34	import java.util.ArrayList;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	35	import javax.crypto.BadPaddingException;
56694 aa54a1f8e426 InputRecord related fixes ascarpino parents: 56542 diff changeset	36	import javax.net.ssl.SSLException;
aa54a1f8e426 InputRecord related fixes ascarpino parents: 56542 diff changeset	37	import javax.net.ssl.SSLHandshakeException;
aa54a1f8e426 InputRecord related fixes ascarpino parents: 56542 diff changeset	38	import javax.net.ssl.SSLProtocolException;
aa54a1f8e426 InputRecord related fixes ascarpino parents: 56542 diff changeset	39
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	40	import sun.security.ssl.SSLCipher.SSLReadCipher;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	41
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	42	/**
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	43	* {@code InputRecord} implementation for {@code SSLSocket}.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	44	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	45	* @author David Brownell
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	46	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	47	final class SSLSocketInputRecord extends InputRecord implements SSLRecord {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	48	private InputStream is = null;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	49	private OutputStream os = null;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	50	private final byte[] temporary = new byte[1024];
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	51
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	52	private boolean formatVerified = false; // SSLv2 ruled out?
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	53
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	54	// Cache for incomplete handshake messages.
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	55	private ByteBuffer handshakeBuffer = null;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	56
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	57	private boolean hasHeader = false; // Had read the record header
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	58
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	59	SSLSocketInputRecord(HandshakeHash handshakeHash) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	60	super(handshakeHash, SSLReadCipher.nullTlsReadCipher());
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	61	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	62
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	63	@Override
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	64	int bytesInCompletePacket() throws IOException {
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	65	if (!hasHeader) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	66	// read exactly one record
56712 bad9f4c7eeec handle EOFException for SSLSocket xuelei parents: 56694 diff changeset	67	try {
bad9f4c7eeec handle EOFException for SSLSocket xuelei parents: 56694 diff changeset	68	int really = read(is, temporary, 0, headerSize);
bad9f4c7eeec handle EOFException for SSLSocket xuelei parents: 56694 diff changeset	69	if (really < 0) {
bad9f4c7eeec handle EOFException for SSLSocket xuelei parents: 56694 diff changeset	70	// EOF: peer shut down incorrectly
bad9f4c7eeec handle EOFException for SSLSocket xuelei parents: 56694 diff changeset	71	return -1;
bad9f4c7eeec handle EOFException for SSLSocket xuelei parents: 56694 diff changeset	72	}
bad9f4c7eeec handle EOFException for SSLSocket xuelei parents: 56694 diff changeset	73	} catch (EOFException eofe) {
bad9f4c7eeec handle EOFException for SSLSocket xuelei parents: 56694 diff changeset	74	// The caller will handle EOF.
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	75	return -1;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	76	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	77	hasHeader = true;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	78	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	79
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	80	byte byteZero = temporary[0];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	81	int len = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	82
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	83	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	84	* If we have already verified previous packets, we can
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	85	* ignore the verifications steps, and jump right to the
56694 aa54a1f8e426 InputRecord related fixes ascarpino parents: 56542 diff changeset	86	* determination. Otherwise, try one last heuristic to
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	87	* see if it's SSL/TLS.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	88	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	89	if (formatVerified \|\|
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	90	(byteZero == ContentType.HANDSHAKE.id) \|\|
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	91	(byteZero == ContentType.ALERT.id)) {
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	92	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	93	* Last sanity check that it's not a wild record
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	94	*/
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	95	if (!ProtocolVersion.isNegotiable(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	96	temporary[1], temporary[2], false, false)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	97	throw new SSLException("Unrecognized record version " +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	98	ProtocolVersion.nameOf(temporary[1], temporary[2]) +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	99	" , plaintext connection?");
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	100	}
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	101
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	102	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	103	* Reasonably sure this is a V3, disable further checks.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	104	* We can't do the same in the v2 check below, because
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	105	* read still needs to parse/handle the v2 clientHello.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	106	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	107	formatVerified = true;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	108
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	109	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	110	* One of the SSLv3/TLS message types.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	111	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	112	len = ((temporary[3] & 0xFF) << 8) +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	113	(temporary[4] & 0xFF) + headerSize;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	114	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	115	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	116	* Must be SSLv2 or something unknown.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	117	* Check if it's short (2 bytes) or
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	118	* long (3) header.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	119	*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	120	* Internals can warn about unsupported SSLv2
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	121	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	122	boolean isShort = ((byteZero & 0x80) != 0);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	123
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	124	if (isShort && ((temporary[2] == 1) \|\| (temporary[2] == 4))) {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	125	if (!ProtocolVersion.isNegotiable(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	126	temporary[3], temporary[4], false, false)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	127	throw new SSLException("Unrecognized record version " +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	128	ProtocolVersion.nameOf(temporary[3], temporary[4]) +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	129	" , plaintext connection?");
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	130	}
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	131
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	132	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	133	* Client or Server Hello
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	134	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	135	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	136	// Short header is using here. We reverse the code here
37880 60ec48925dc6 8156661: Handful of typos in javadoc igerasim parents: 34687 diff changeset	137	// in case it is used in the future.
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	138	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	139	// int mask = (isShort ? 0x7F : 0x3F);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	140	// len = ((byteZero & mask) << 8) +
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	141	// (temporary[1] & 0xFF) + (isShort ? 2 : 3);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	142	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	143	len = ((byteZero & 0x7F) << 8) + (temporary[1] & 0xFF) + 2;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	144	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	145	// Gobblygook!
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	146	throw new SSLException(
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	147	"Unrecognized SSL message, plaintext connection?");
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	148	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	149	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	150
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	151	return len;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	152	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	153
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	154	// Note that the input arguments are not used actually.
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	155	@Override
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	156	Plaintext[] decode(ByteBuffer[] srcs, int srcsOffset,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	157	int srcsLength) throws IOException, BadPaddingException {
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	158
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	159	if (isClosed) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	160	return null;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	161	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	162
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	163	if (!hasHeader) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	164	// read exactly one record
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	165	int really = read(is, temporary, 0, headerSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	166	if (really < 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	167	throw new EOFException("SSL peer shut down incorrectly");
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	168	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	169	hasHeader = true;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	170	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	171
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	172	Plaintext plaintext = null;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	173	if (!formatVerified) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	174	formatVerified = true;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	175
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	176	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	177	* The first record must either be a handshake record or an
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	178	* alert message. If it's not, it is either invalid or an
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	179	* SSLv2 message.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	180	*/
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	181	if ((temporary[0] != ContentType.HANDSHAKE.id) &&
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	182	(temporary[0] != ContentType.ALERT.id)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	183	hasHeader = false;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	184	return handleUnknownRecord(temporary);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	185	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	186	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	187
56694 aa54a1f8e426 InputRecord related fixes ascarpino parents: 56542 diff changeset	188	// The record header should has consumed.
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	189	hasHeader = false;
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	190	return decodeInputRecord(temporary);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	191	}
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	192
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	193	@Override
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	194	void setReceiverStream(InputStream inputStream) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	195	this.is = inputStream;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	196	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	197
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	198	@Override
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	199	void setDeliverStream(OutputStream outputStream) {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	200	this.os = outputStream;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	201	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	202
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	203	// Note that destination may be null
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	204	private Plaintext[] decodeInputRecord(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	205	byte[] header) throws IOException, BadPaddingException {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	206	byte contentType = header[0]; // pos: 0
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	207	byte majorVersion = header[1]; // pos: 1
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	208	byte minorVersion = header[2]; // pos: 2
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	209	int contentLen = ((header[3] & 0xFF) << 8) +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	210	(header[4] & 0xFF); // pos: 3, 4
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	211
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	212	if (SSLLogger.isOn && SSLLogger.isOn("record")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	213	SSLLogger.fine(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	214	"READ: " +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	215	ProtocolVersion.nameOf(majorVersion, minorVersion) +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	216	" " + ContentType.nameOf(contentType) + ", length = " +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	217	contentLen);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	218	}
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	219
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	220	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	221	// Check for upper bound.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	222	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	223	// Note: May check packetSize limit in the future.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	224	if (contentLen < 0 \|\| contentLen > maxLargeRecordSize - headerSize) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	225	throw new SSLProtocolException(
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	226	"Bad input record size, TLSCiphertext.length = " + contentLen);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	227	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	228
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	229	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	230	// Read a complete record.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	231	//
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	232	ByteBuffer destination = ByteBuffer.allocate(headerSize + contentLen);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	233	int dstPos = destination.position();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	234	destination.put(temporary, 0, headerSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	235	while (contentLen > 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	236	int howmuch = Math.min(temporary.length, contentLen);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	237	int really = read(is, temporary, 0, howmuch);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	238	if (really < 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	239	throw new EOFException("SSL peer shut down incorrectly");
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	240	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	241
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	242	destination.put(temporary, 0, howmuch);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	243	contentLen -= howmuch;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	244	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	245	destination.flip();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	246	destination.position(dstPos + headerSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	247
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	248	if (SSLLogger.isOn && SSLLogger.isOn("record")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	249	SSLLogger.fine(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	250	"READ: " +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	251	ProtocolVersion.nameOf(majorVersion, minorVersion) +
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	252	" " + ContentType.nameOf(contentType) + ", length = " +
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	253	destination.remaining());
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	254	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	255
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	256	//
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	257	// Decrypt the fragment
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	258	//
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	259	ByteBuffer fragment;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	260	try {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	261	Plaintext plaintext =
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	262	readCipher.decrypt(contentType, destination, null);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	263	fragment = plaintext.fragment;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	264	contentType = plaintext.contentType;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	265	} catch (BadPaddingException bpe) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	266	throw bpe;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	267	} catch (GeneralSecurityException gse) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	268	throw (SSLProtocolException)(new SSLProtocolException(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	269	"Unexpected exception")).initCause(gse);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	270	}
56717 e4fe7c97b1de Use StackWalker and checking content type after decryption xuelei parents: 56712 diff changeset	271
56694 aa54a1f8e426 InputRecord related fixes ascarpino parents: 56542 diff changeset	272	if (contentType != ContentType.HANDSHAKE.id &&
aa54a1f8e426 InputRecord related fixes ascarpino parents: 56542 diff changeset	273	handshakeBuffer != null && handshakeBuffer.hasRemaining()) {
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	274	throw new SSLProtocolException(
56717 e4fe7c97b1de Use StackWalker and checking content type after decryption xuelei parents: 56712 diff changeset	275	"Expecting a handshake fragment, but received " +
e4fe7c97b1de Use StackWalker and checking content type after decryption xuelei parents: 56712 diff changeset	276	ContentType.nameOf(contentType));
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	277	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	278
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	279	//
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	280	// parse handshake messages
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	281	//
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	282	if (contentType == ContentType.HANDSHAKE.id) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	283	ByteBuffer handshakeFrag = fragment;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	284	if ((handshakeBuffer != null) &&
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	285	(handshakeBuffer.remaining() != 0)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	286	ByteBuffer bb = ByteBuffer.wrap(new byte[
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	287	handshakeBuffer.remaining() + fragment.remaining()]);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	288	bb.put(handshakeBuffer);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	289	bb.put(fragment);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	290	handshakeFrag = bb.rewind();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	291	handshakeBuffer = null;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	292	}
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	293
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	294	ArrayList<Plaintext> plaintexts = new ArrayList<>(5);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	295	while (handshakeFrag.hasRemaining()) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	296	int remaining = handshakeFrag.remaining();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	297	if (remaining < handshakeHeaderSize) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	298	handshakeBuffer = ByteBuffer.wrap(new byte[remaining]);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	299	handshakeBuffer.put(handshakeFrag);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	300	handshakeBuffer.rewind();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	301	break;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	302	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	303
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	304	handshakeFrag.mark();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	305	// skip the first byte: handshake type
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	306	byte handshakeType = handshakeFrag.get();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	307	int handshakeBodyLen = Record.getInt24(handshakeFrag);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	308	handshakeFrag.reset();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	309	int handshakeMessageLen =
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	310	handshakeHeaderSize + handshakeBodyLen;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	311	if (remaining < handshakeMessageLen) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	312	handshakeBuffer = ByteBuffer.wrap(new byte[remaining]);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	313	handshakeBuffer.put(handshakeFrag);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	314	handshakeBuffer.rewind();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	315	break;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	316	} if (remaining == handshakeMessageLen) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	317	if (handshakeHash.isHashable(handshakeType)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	318	handshakeHash.receive(handshakeFrag);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	319	}
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	320
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	321	plaintexts.add(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	322	new Plaintext(contentType,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	323	majorVersion, minorVersion, -1, -1L, handshakeFrag)
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	324	);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	325	break;
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	326	} else {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	327	int fragPos = handshakeFrag.position();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	328	int fragLim = handshakeFrag.limit();
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	329	int nextPos = fragPos + handshakeMessageLen;
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	330	handshakeFrag.limit(nextPos);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	331
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	332	if (handshakeHash.isHashable(handshakeType)) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	333	handshakeHash.receive(handshakeFrag);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	334	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	335
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	336	plaintexts.add(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	337	new Plaintext(contentType, majorVersion, minorVersion,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	338	-1, -1L, handshakeFrag.slice())
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	339	);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	340
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	341	handshakeFrag.position(nextPos);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	342	handshakeFrag.limit(fragLim);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	343	}
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	344	}
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	345
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	346	return plaintexts.toArray(new Plaintext[0]);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	347	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	348
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	349	return new Plaintext[] {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	350	new Plaintext(contentType,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	351	majorVersion, minorVersion, -1, -1L, fragment)
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	352	// recordEpoch, recordSeq, plaintext);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	353	};
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	354	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	355
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	356	private Plaintext[] handleUnknownRecord(
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	357	byte[] header) throws IOException, BadPaddingException {
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	358	byte firstByte = header[0];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	359	byte thirdByte = header[2];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	360
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	361	// Does it look like a Version 2 client hello (V2ClientHello)?
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	362	if (((firstByte & 0x80) != 0) && (thirdByte == 1)) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	363	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	364	* If SSLv2Hello is not enabled, throw an exception.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	365	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	366	if (helloVersion != ProtocolVersion.SSL20Hello) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	367	throw new SSLHandshakeException("SSLv2Hello is not enabled");
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	368	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	369
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	370	byte majorVersion = header[3];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	371	byte minorVersion = header[4];
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	372
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	373	if ((majorVersion == ProtocolVersion.SSL20Hello.major) &&
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	374	(minorVersion == ProtocolVersion.SSL20Hello.minor)) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	375
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	376	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	377	* Looks like a V2 client hello, but not one saying
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	378	* "let's talk SSLv3". So we need to send an SSLv2
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	379	* error message, one that's treated as fatal by
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	380	* clients (Otherwise we'll hang.)
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	381	*/
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	382	os.write(SSLRecord.v2NoCipher); // SSLv2Hello
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	383
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	384	if (SSLLogger.isOn) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	385	if (SSLLogger.isOn("record")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	386	SSLLogger.fine(
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	387	"Requested to negotiate unsupported SSLv2!");
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	388	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	389
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	390	if (SSLLogger.isOn("packet")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	391	SSLLogger.fine("Raw write", SSLRecord.v2NoCipher);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	392	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	393	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	394
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	395	throw new SSLException("Unsupported SSL v2.0 ClientHello");
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	396	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	397
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	398	int msgLen = ((header[0] & 0x7F) << 8) \| (header[1] & 0xFF);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	399
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	400	ByteBuffer destination = ByteBuffer.allocate(headerSize + msgLen);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	401	destination.put(temporary, 0, headerSize);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	402	msgLen -= 3; // had read 3 bytes of content as header
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	403	while (msgLen > 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	404	int howmuch = Math.min(temporary.length, msgLen);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	405	int really = read(is, temporary, 0, howmuch);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	406	if (really < 0) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	407	throw new EOFException("SSL peer shut down incorrectly");
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	408	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	409
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	410	destination.put(temporary, 0, howmuch);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	411	msgLen -= howmuch;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	412	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	413	destination.flip();
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	414
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	415	/*
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	416	* If we can map this into a V3 ClientHello, read and
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	417	* hash the rest of the V2 handshake, turn it into a
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	418	* V3 ClientHello message, and pass it up.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	419	*/
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	420	destination.position(2); // exclude the header
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	421	handshakeHash.receive(destination);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	422	destination.position(0);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	423
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	424	ByteBuffer converted = convertToClientHello(destination);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	425
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	426	if (SSLLogger.isOn && SSLLogger.isOn("packet")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	427	SSLLogger.fine(
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	428	"[Converted] ClientHello", converted);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	429	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	430
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	431	return new Plaintext[] {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	432	new Plaintext(ContentType.HANDSHAKE.id,
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	433	majorVersion, minorVersion, -1, -1L, converted)
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	434	};
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	435	} else {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	436	if (((firstByte & 0x80) != 0) && (thirdByte == 4)) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	437	throw new SSLException("SSL V2.0 servers are not supported.");
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	438	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	439
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	440	throw new SSLException("Unsupported or unrecognized SSL message");
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	441	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	442	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	443
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	444	// Read the exact bytes of data, otherwise, return -1.
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	445	private static int read(InputStream is,
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	446	byte[] buffer, int offset, int len) throws IOException {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	447	int n = 0;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	448	while (n < len) {
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	449	int readLen = is.read(buffer, offset + n, len - n);
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	450	if (readLen < 0) {
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	451	if (SSLLogger.isOn && SSLLogger.isOn("packet")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	452	SSLLogger.fine("Raw read: EOF");
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	453	}
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	454	return -1;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	455	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	456
56542 56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	457	if (SSLLogger.isOn && SSLLogger.isOn("packet")) {
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	458	ByteBuffer bb = ByteBuffer.wrap(buffer, offset + n, readLen);
56aaa6cb3693 Initial TLSv1.3 Implementation wetmore parents: 47216 diff changeset	459	SSLLogger.fine("Raw read", bb);
30904 ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	460	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	461
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	462	n += readLen;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	463	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	464
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	465	return n;
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	466	}
ec0224270f90 8043758: Datagram Transport Layer Security (DTLS) xuelei parents: diff changeset	467	}

author	xuelei
	Sun, 10 Jun 2018 13:36:40 -0700
branch	JDK-8145252-TLS13-branch
changeset 56717	e4fe7c97b1de
parent 56712	bad9f4c7eeec
child 56784	6210466cf1ac
permissions	-rw-r--r--