| /* |
| * Copyright (c) 2019, Oracle and/or its affiliates. All rights reserved. |
| * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. |
| * |
| * This code is free software; you can redistribute it and/or modify it |
| * under the terms of the GNU General Public License version 2 only, as |
| * published by the Free Software Foundation. |
| * |
| * This code is distributed in the hope that it will be useful, but WITHOUT |
| * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or |
| * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License |
| * version 2 for more details (a copy is included in the LICENSE file that |
| * accompanied this code). |
| * |
| * You should have received a copy of the GNU General Public License version |
| * 2 along with this work; if not, write to the Free Software Foundation, |
| * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. |
| * |
| * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA |
| * or visit www.oracle.com if you need additional information or have any |
| * questions. |
| */ |
| |
| // |
| // Please run in othervm mode. SunJSSE does not support dynamic system |
| // properties, no way to re-use system properties in samevm/agentvm mode. |
| // |
| |
| /* |
| * @test |
| * @bug 8221253 |
| * @summary TLSv1.3 may generate TLSInnerPlainText longer than 2^14+1 bytes |
| * @modules jdk.crypto.ec |
| * @library /javax/net/ssl/templates |
| * @run main/othervm Tls13PacketSize |
| */ |
| import java.io.InputStream; |
| import java.io.OutputStream; |
| import javax.net.ssl.SSLSocket; |
| |
| public class Tls13PacketSize extends SSLSocketTemplate { |
| private static final byte[] appData = new byte[16385]; |
| static { |
| for (int i = 0; i < appData.length; i++) { |
| appData[i] = (byte)('A' + (i % 26)); |
| } |
| } |
| |
| // Run the test case. |
| public static void main(String[] args) throws Exception { |
| (new Tls13PacketSize()).run(); |
| } |
| |
| @Override |
| protected void runServerApplication(SSLSocket socket) throws Exception { |
| // here comes the test logic |
| InputStream sslIS = socket.getInputStream(); |
| OutputStream sslOS = socket.getOutputStream(); |
| |
| sslIS.read(); |
| int extra = sslIS.available(); |
| System.out.println("Server input bytes: " + extra); |
| // Considering the padding impact, the record plaintext is less |
| // than the TLSPlaintext.fragment length (2^14). |
| if (extra >= 16383) { // 16383: 2^14 - 1 byte read above |
| throw new Exception( |
| "Client record plaintext exceeds 2^14 octets: " + extra); |
| } |
| |
| sslOS.write(appData); |
| sslOS.flush(); |
| } |
| |
| /* |
| * Define the client side application of the test for the specified socket. |
| * This method is used if the returned value of |
| * isCustomizedClientConnection() is false. |
| * |
| * @param socket may be null is no client socket is generated. |
| * |
| * @see #isCustomizedClientConnection() |
| */ |
| protected void runClientApplication(SSLSocket socket) throws Exception { |
| socket.setEnabledProtocols(new String[] {"TLSv1.3"}); |
| InputStream sslIS = socket.getInputStream(); |
| OutputStream sslOS = socket.getOutputStream(); |
| |
| sslOS.write(appData); |
| sslOS.flush(); |
| |
| sslIS.read(); |
| int extra = sslIS.available(); |
| System.out.println("Client input bytes: " + extra); |
| // Considering the padding impact, the record plaintext is less |
| // than the TLSPlaintext.fragment length (2^14). |
| if (extra >= 16383) { // 16383: 2^14 - 1 byte read above |
| throw new Exception( |
| "Server record plaintext exceeds 2^14 octets: " + extra); |
| } |
| } |
| } |