package sun.security.ssl;
import java.io.IOException;
import java.nio.ByteBuffer;
import java.security.AlgorithmConstraints;
import java.text.MessageFormat;
import java.util.ArrayList;
import java.util.Collections;
import java.util.LinkedList;
import java.util.List;
import java.util.Locale;
import javax.net.ssl.SSLProtocolException;
import sun.security.action.GetPropertyAction;
import sun.security.ssl.NamedGroup.NamedGroupSpec;
import static sun.security.ssl.SSLExtension.CH_SUPPORTED_GROUPS;
import static sun.security.ssl.SSLExtension.EE_SUPPORTED_GROUPS;
import sun.security.ssl.SSLExtension.ExtensionConsumer;
import sun.security.ssl.SSLExtension.SSLExtensionSpec;
import sun.security.ssl.SSLHandshake.HandshakeMessage;
final class SupportedGroupsExtension {
static final HandshakeProducer chNetworkProducer =
new CHSupportedGroupsProducer();
static final ExtensionConsumer chOnLoadConsumer =
new CHSupportedGroupsConsumer();
static final HandshakeAbsence chOnTradAbsence =
new CHSupportedGroupsOnTradeAbsence();
static final SSLStringizer sgsStringizer =
new SupportedGroupsStringizer();
static final HandshakeProducer eeNetworkProducer =
new EESupportedGroupsProducer();
static final ExtensionConsumer eeOnLoadConsumer =
new EESupportedGroupsConsumer();
static final class SupportedGroupsSpec implements SSLExtensionSpec {
final int[] namedGroupsIds;
private SupportedGroupsSpec(int[] namedGroupsIds) {
this.namedGroupsIds = namedGroupsIds;
}
private SupportedGroupsSpec(List<NamedGroup> namedGroups) {
this.namedGroupsIds = new int[namedGroups.size()];
int i = 0;
for (NamedGroup ng : namedGroups) {
namedGroupsIds[i++] = ng.id;
}
}
private SupportedGroupsSpec(HandshakeContext hc,
ByteBuffer m) throws IOException {
if (m.remaining() < 2) {
throw hc.conContext.fatal(Alert.DECODE_ERROR,
new SSLProtocolException(
"Invalid supported_groups extension: insufficient data"));
}
byte[] ngs = Record.getBytes16(m);
if (m.hasRemaining()) {
throw hc.conContext.fatal(Alert.DECODE_ERROR,
new SSLProtocolException(
"Invalid supported_groups extension: unknown extra data"));
}
if ((ngs == null) || (ngs.length == 0) || (ngs.length % 2 != 0)) {
throw hc.conContext.fatal(Alert.DECODE_ERROR,
new SSLProtocolException(
"Invalid supported_groups extension: incomplete data"));
}
int[] ids = new int[ngs.length / 2];
for (int i = 0, j = 0; i < ngs.length;) {
ids[j++] = ((ngs[i++] & 0xFF) << 8) | (ngs[i++] & 0xFF);
}
this.namedGroupsIds = ids;
}
@Override
public String toString() {
MessageFormat messageFormat = new MessageFormat(
"\"versions\": '['{0}']'", Locale.ENGLISH);
if (namedGroupsIds == null || namedGroupsIds.length == 0) {
Object[] messageFields = {
"<no supported named group specified>"
};
return messageFormat.format(messageFields);
} else {
StringBuilder builder = new StringBuilder(512);
boolean isFirst = true;
for (int ngid : namedGroupsIds) {
if (isFirst) {
isFirst = false;
} else {
builder.append(", ");
}
builder.append(NamedGroup.nameOf(ngid));
}
Object[] messageFields = {
builder.toString()
};
return messageFormat.format(messageFields);
}
}
}
private static final
class SupportedGroupsStringizer implements SSLStringizer {
@Override
public String toString(HandshakeContext hc, ByteBuffer buffer) {
try {
return (new SupportedGroupsSpec(hc, buffer)).toString();
} catch (IOException ioe) {
return ioe.getMessage();
}
}
}
static class SupportedGroups {
static final boolean enableFFDHE =
Utilities.getBooleanProperty("jsse.enableFFDHE", true);
static final NamedGroup[] supportedNamedGroups;
static {
String property = GetPropertyAction
.privilegedGetProperty("jdk.tls.namedGroups");
if (property != null && !property.isEmpty()) {
if (property.length() > 1 && property.charAt(0) == '"' &&
property.charAt(property.length() - 1) == '"') {
property = property.substring(1, property.length() - 1);
}
}
ArrayList<NamedGroup> groupList;
if (property != null && !property.isEmpty()) {
String[] groups = property.split(",");
groupList = new ArrayList<>(groups.length);
for (String group : groups) {
group = group.trim();
if (!group.isEmpty()) {
NamedGroup namedGroup = NamedGroup.nameOf(group);
if (namedGroup != null) {
if (namedGroup.isAvailable) {
groupList.add(namedGroup);
}
}
}
}
if (groupList.isEmpty()) {
throw new IllegalArgumentException(
"System property jdk.tls.namedGroups(" +
property + ") contains no supported named groups");
}
} else {
NamedGroup[] groups = new NamedGroup[] {
NamedGroup.X25519,
NamedGroup.SECP256_R1,
NamedGroup.SECP384_R1,
NamedGroup.SECP521_R1,
NamedGroup.X448,
NamedGroup.FFDHE_2048,
NamedGroup.FFDHE_3072,
NamedGroup.FFDHE_4096,
NamedGroup.FFDHE_6144,
NamedGroup.FFDHE_8192,
};
groupList = new ArrayList<>(groups.length);
for (NamedGroup group : groups) {
if (group.isAvailable) {
groupList.add(group);
}
}
if (groupList.isEmpty() &&
SSLLogger.isOn && SSLLogger.isOn("ssl")) {
SSLLogger.warning("No default named groups");
}
}
supportedNamedGroups = new NamedGroup[groupList.size()];
int i = 0;
for (NamedGroup namedGroup : groupList) {
supportedNamedGroups[i++] = namedGroup;
}
}
static boolean isActivatable(
AlgorithmConstraints constraints, NamedGroupSpec type) {
boolean hasFFDHEGroups = false;
for (NamedGroup namedGroup : supportedNamedGroups) {
if (namedGroup.isAvailable && namedGroup.spec == type) {
if (namedGroup.isPermitted(constraints)) {
return true;
}
if (!hasFFDHEGroups &&
(type == NamedGroupSpec.NAMED_GROUP_FFDHE)) {
hasFFDHEGroups = true;
}
}
}
return !hasFFDHEGroups && type == NamedGroupSpec.NAMED_GROUP_FFDHE;
}
static boolean isActivatable(
AlgorithmConstraints constraints, NamedGroup namedGroup) {
if (!namedGroup.isAvailable || !isSupported(namedGroup)) {
return false;
}
return namedGroup.isPermitted(constraints);
}
static boolean isSupported(NamedGroup namedGroup) {
for (NamedGroup group : supportedNamedGroups) {
if (namedGroup.id == group.id) {
return true;
}
}
return false;
}
static NamedGroup getPreferredGroup(
ProtocolVersion negotiatedProtocol,
AlgorithmConstraints constraints, NamedGroupSpec[] types,
List<NamedGroup> requestedNamedGroups) {
for (NamedGroup namedGroup : requestedNamedGroups) {
if ((NamedGroupSpec.arrayContains(types, namedGroup.spec)) &&
namedGroup.isAvailable(negotiatedProtocol) &&
isSupported(namedGroup) &&
namedGroup.isPermitted(constraints)) {
return namedGroup;
}
}
return null;
}
static NamedGroup getPreferredGroup(
ProtocolVersion negotiatedProtocol,
AlgorithmConstraints constraints, NamedGroupSpec[] types) {
for (NamedGroup namedGroup : supportedNamedGroups) {
if ((NamedGroupSpec.arrayContains(types, namedGroup.spec)) &&
namedGroup.isAvailable(negotiatedProtocol) &&
namedGroup.isPermitted(constraints)) {
return namedGroup;
}
}
return null;
}
}
private static final class CHSupportedGroupsProducer
extends SupportedGroups implements HandshakeProducer {
private CHSupportedGroupsProducer() {
}
@Override
public byte[] produce(ConnectionContext context,
HandshakeMessage message) throws IOException {
ClientHandshakeContext chc = (ClientHandshakeContext)context;
if (!chc.sslConfig.isAvailable(CH_SUPPORTED_GROUPS)) {
if (SSLLogger.isOn && SSLLogger.isOn("ssl,handshake")) {
SSLLogger.fine(
"Ignore unavailable supported_groups extension");
}
return null;
}
ArrayList<NamedGroup> namedGroups =
new ArrayList<>(SupportedGroups.supportedNamedGroups.length);
for (NamedGroup ng : SupportedGroups.supportedNamedGroups) {
if ((!SupportedGroups.enableFFDHE) &&
(ng.spec == NamedGroupSpec.NAMED_GROUP_FFDHE)) {
continue;
}
if (ng.isAvailable(chc.activeProtocols) &&
ng.isSupported(chc.activeCipherSuites) &&
ng.isPermitted(chc.algorithmConstraints)) {
namedGroups.add(ng);
} else if (SSLLogger.isOn && SSLLogger.isOn("ssl,handshake")) {
SSLLogger.fine(
"Ignore inactive or disabled named group: " + ng.name);
}
}
if (namedGroups.isEmpty()) {
if (SSLLogger.isOn && SSLLogger.isOn("ssl,handshake")) {
SSLLogger.warning("no available named group");
}
return null;
}
int vectorLen = namedGroups.size() << 1;
byte[] extData = new byte[vectorLen + 2];
ByteBuffer m = ByteBuffer.wrap(extData);
Record.putInt16(m, vectorLen);
for (NamedGroup namedGroup : namedGroups) {
Record.putInt16(m, namedGroup.id);
}
chc.clientRequestedNamedGroups =
Collections.<NamedGroup>unmodifiableList(namedGroups);
chc.handshakeExtensions.put(CH_SUPPORTED_GROUPS,
new SupportedGroupsSpec(namedGroups));
return extData;
}
}
private static final
class CHSupportedGroupsConsumer implements ExtensionConsumer {
private CHSupportedGroupsConsumer() {
}
@Override
public void consume(ConnectionContext context,
HandshakeMessage message, ByteBuffer buffer) throws IOException {
ServerHandshakeContext shc = (ServerHandshakeContext)context;
if (!shc.sslConfig.isAvailable(CH_SUPPORTED_GROUPS)) {
if (SSLLogger.isOn && SSLLogger.isOn("ssl,handshake")) {
SSLLogger.fine(
"Ignore unavailable supported_groups extension");
}
return;
}
SupportedGroupsSpec spec = new SupportedGroupsSpec(shc, buffer);
List<NamedGroup> knownNamedGroups = new LinkedList<>();
for (int id : spec.namedGroupsIds) {
NamedGroup ng = NamedGroup.valueOf(id);
if (ng != null) {
knownNamedGroups.add(ng);
}
}
shc.clientRequestedNamedGroups = knownNamedGroups;
shc.handshakeExtensions.put(CH_SUPPORTED_GROUPS, spec);
}
}
private static final class CHSupportedGroupsOnTradeAbsence
implements HandshakeAbsence {
@Override
public void absent(ConnectionContext context,
HandshakeMessage message) throws IOException {
ServerHandshakeContext shc = (ServerHandshakeContext)context;
if (shc.negotiatedProtocol.useTLS13PlusSpec() &&
shc.handshakeExtensions.containsKey(
SSLExtension.CH_KEY_SHARE)) {
throw shc.conContext.fatal(Alert.MISSING_EXTENSION,
"No supported_groups extension to work with " +
"the key_share extension");
}
}
}
private static final class EESupportedGroupsProducer
extends SupportedGroups implements HandshakeProducer {
private EESupportedGroupsProducer() {
}
@Override
public byte[] produce(ConnectionContext context,
HandshakeMessage message) throws IOException {
ServerHandshakeContext shc = (ServerHandshakeContext)context;
if (!shc.sslConfig.isAvailable(EE_SUPPORTED_GROUPS)) {
if (SSLLogger.isOn && SSLLogger.isOn("ssl,handshake")) {
SSLLogger.fine(
"Ignore unavailable supported_groups extension");
}
return null;
}
ArrayList<NamedGroup> namedGroups = new ArrayList<>(
SupportedGroups.supportedNamedGroups.length);
for (NamedGroup ng : SupportedGroups.supportedNamedGroups) {
if ((!SupportedGroups.enableFFDHE) &&
(ng.spec == NamedGroupSpec.NAMED_GROUP_FFDHE)) {
continue;
}
if (ng.isAvailable(shc.activeProtocols) &&
ng.isSupported(shc.activeCipherSuites) &&
ng.isPermitted(shc.algorithmConstraints)) {
namedGroups.add(ng);
} else if (SSLLogger.isOn && SSLLogger.isOn("ssl,handshake")) {
SSLLogger.fine(
"Ignore inactive or disabled named group: " + ng.name);
}
}
if (namedGroups.isEmpty()) {
if (SSLLogger.isOn && SSLLogger.isOn("ssl,handshake")) {
SSLLogger.warning("no available named group");
}
return null;
}
int vectorLen = namedGroups.size() << 1;
byte[] extData = new byte[vectorLen + 2];
ByteBuffer m = ByteBuffer.wrap(extData);
Record.putInt16(m, vectorLen);
for (NamedGroup namedGroup : namedGroups) {
Record.putInt16(m, namedGroup.id);
}
shc.conContext.serverRequestedNamedGroups =
Collections.<NamedGroup>unmodifiableList(namedGroups);
SupportedGroupsSpec spec = new SupportedGroupsSpec(namedGroups);
shc.handshakeExtensions.put(EE_SUPPORTED_GROUPS, spec);
return extData;
}
}
private static final
class EESupportedGroupsConsumer implements ExtensionConsumer {
private EESupportedGroupsConsumer() {
}
@Override
public void consume(ConnectionContext context,
HandshakeMessage message, ByteBuffer buffer) throws IOException {
ClientHandshakeContext chc = (ClientHandshakeContext)context;
if (!chc.sslConfig.isAvailable(EE_SUPPORTED_GROUPS)) {
if (SSLLogger.isOn && SSLLogger.isOn("ssl,handshake")) {
SSLLogger.fine(
"Ignore unavailable supported_groups extension");
}
return;
}
SupportedGroupsSpec spec = new SupportedGroupsSpec(chc, buffer);
List<NamedGroup> knownNamedGroups =
new ArrayList<>(spec.namedGroupsIds.length);
for (int id : spec.namedGroupsIds) {
NamedGroup ng = NamedGroup.valueOf(id);
if (ng != null) {
knownNamedGroups.add(ng);
}
}
chc.conContext.serverRequestedNamedGroups = knownNamedGroups;
chc.handshakeExtensions.put(EE_SUPPORTED_GROUPS, spec);
}
}
}