jdk-sandbox: comparison src/java.base/share/classes/sun/security/ssl/SSLAlgorithmDecomposer.java

equal deleted inserted replaced

-:356eaea05bf0
+:68fa3d4026ea
 /*
-* Copyright (c) 2015, Oracle and/or its affiliates. All rights reserved.
+* Copyright (c) 2015, 2018, Oracle and/or its affiliates. All rights reserved.
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
 *
 * This code is free software; you can redistribute it and/or modify it
 * under the terms of the GNU General Public License version 2 only, as
 * published by the Free Software Foundation.  Oracle designates this
 package sun.security.ssl;
 import java.util.HashSet;
 import java.util.Set;
+import sun.security.ssl.CipherSuite.HashAlg;
+import sun.security.ssl.CipherSuite.KeyExchange;
+import static sun.security.ssl.CipherSuite.KeyExchange.*;
+import sun.security.ssl.CipherSuite.MacAlg;
+import static sun.security.ssl.SSLCipher.*;
 import sun.security.util.AlgorithmDecomposer;
-import static sun.security.ssl.CipherSuite.*;
-import static sun.security.ssl.CipherSuite.KeyExchange.*;
 /**
 * The class decomposes standard SSL/TLS cipher suites into sub-elements.
 */
 class SSLAlgorithmDecomposer extends AlgorithmDecomposer {
 components.add("ANON");
 components.add("ECDH_ANON");
 }
 break;
 default:
-if (ClientKeyExchangeService.find(keyExchange.name) != null) {
-if (!onlyX509) {
-components.add(keyExchange.name);
-}
-}
 // otherwise ignore
 }
 return components;
 }
-private Set<String> decomposes(CipherSuite.BulkCipher bulkCipher) {
+private Set<String> decomposes(SSLCipher bulkCipher) {
 Set<String> components = new HashSet<>();
 if (bulkCipher.transformation != null) {
 components.addAll(super.decompose(bulkCipher.transformation));
 }
 return components;
 }
 private Set<String> decomposes(CipherSuite.MacAlg macAlg,
-BulkCipher cipher) {
+SSLCipher cipher) {
 Set<String> components = new HashSet<>();
 if (macAlg == CipherSuite.MacAlg.M_NULL
 && cipher.cipherType != CipherType.AEAD_CIPHER) {
 components.add("M_NULL");
 }
 return components;
 }
-private Set<String> decompose(KeyExchange keyExchange, BulkCipher cipher,
+private Set<String> decomposes(CipherSuite.HashAlg hashAlg) {
-MacAlg macAlg) {
+Set<String> components = new HashSet<>();
+if (hashAlg == CipherSuite.HashAlg.H_SHA256) {
+components.add("SHA256");
+components.add("SHA-256");
+components.add("HmacSHA256");
+} else if (hashAlg == CipherSuite.HashAlg.H_SHA384) {
+components.add("SHA384");
+components.add("SHA-384");
+components.add("HmacSHA384");
+}
+return components;
+}
+private Set<String> decompose(KeyExchange keyExchange,
+SSLCipher cipher,
+MacAlg macAlg,
+HashAlg hashAlg) {
 Set<String> components = new HashSet<>();
 if (keyExchange != null) {
 components.addAll(decomposes(keyExchange));
 }
 components.addAll(decomposes(cipher));
 }
 if (macAlg != null) {
 components.addAll(decomposes(macAlg, cipher));
+}
+if (hashAlg != null) {
+components.addAll(decomposes(hashAlg));
 }
 return components;
 }
 @Override
 public Set<String> decompose(String algorithm) {
 if (algorithm.startsWith("SSL_") || algorithm.startsWith("TLS_")) {
 CipherSuite cipherSuite = null;
 try {
-cipherSuite = CipherSuite.valueOf(algorithm);
+cipherSuite = CipherSuite.nameOf(algorithm);
 } catch (IllegalArgumentException iae) {
 // ignore: unknown or unsupported ciphersuite
 }
 if (cipherSuite != null) {
-return decompose(cipherSuite.keyExchange, cipherSuite.cipher,
+return decompose(cipherSuite.keyExchange,
-cipherSuite.macAlg);
+cipherSuite.bulkCipher,
+cipherSuite.macAlg,
+cipherSuite.hashAlg);
 }
 }
 return super.decompose(algorithm);
 }
 }

changeset 50768	68fa3d4026ea
parent 47216	71c04702a3d5
child 53549	ad3438957ff5