151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski/* 251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Copyright (c) 2003, 2010, Oracle and/or its affiliates. All rights reserved. 351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. 451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * This code is free software; you can redistribute it and/or modify it 651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * under the terms of the GNU General Public License version 2 only, as 751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * published by the Free Software Foundation. Oracle designates this 851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * particular file as subject to the "Classpath" exception as provided 951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * by Oracle in the LICENSE file that accompanied this code. 1051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 1151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * This code is distributed in the hope that it will be useful, but WITHOUT 1251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or 1351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License 1451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * version 2 for more details (a copy is included in the LICENSE file that 1551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * accompanied this code). 1651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 1751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * You should have received a copy of the GNU General Public License version 1851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 2 along with this work; if not, write to the Free Software Foundation, 1951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. 2051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 2151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA 2251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * or visit www.oracle.com if you need additional information or have any 2351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * questions. 2451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 2551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 2651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskipackage sun.security.ssl; 2751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 2851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.io.IOException; 2951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.io.PrintStream; 3051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.security.AccessController; 3151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.security.AccessControlContext; 3251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.security.Principal; 3351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.security.PrivilegedAction; 3451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.security.SecureRandom; 3551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport javax.crypto.SecretKey; 3651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 3751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski/** 3851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * A helper class that calls the KerberosClientKeyExchange implementation. 3951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */ 4051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskipublic class KerberosClientKeyExchange extends HandshakeMessage { 4151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 4251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski private static final String IMPL_CLASS = 4351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski "sun.security.ssl.krb5.KerberosClientKeyExchangeImpl"; 4451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 4551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski private static final Class<?> implClass = AccessController.doPrivileged( 4651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski new PrivilegedAction<Class<?>>() { 4751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public Class<?> run() { 4851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski try { 4951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return Class.forName(IMPL_CLASS, true, null); 5051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } catch (ClassNotFoundException cnf) { 5151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return null; 5251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 5351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 5451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 5551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski ); 5651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski private final KerberosClientKeyExchange impl = createImpl(); 5751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 5851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski private KerberosClientKeyExchange createImpl() { 5951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (getClass() == KerberosClientKeyExchange.class) { 6051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski try { 6151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return (KerberosClientKeyExchange)implClass.newInstance(); 6251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } catch (InstantiationException e) { 6351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski throw new AssertionError(e); 6451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } catch (IllegalAccessException e) { 6551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski throw new AssertionError(e); 6651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 6751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 6851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return null; 6951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 7051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 7151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public KerberosClientKeyExchange() { 7251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski // empty 7351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 7451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 7551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public KerberosClientKeyExchange(String serverName, boolean isLoopback, 7651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski AccessControlContext acc, ProtocolVersion protocolVersion, 7751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski SecureRandom rand) throws IOException { 7851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 7951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (impl != null) { 8051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski init(serverName, isLoopback, acc, protocolVersion, rand); 8151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } else { 8251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski throw new IllegalStateException("Kerberos is unavailable"); 8351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 8451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 8551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 8651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public KerberosClientKeyExchange(ProtocolVersion protocolVersion, 8751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski ProtocolVersion clientVersion, SecureRandom rand, 8851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski HandshakeInStream input, SecretKey[] serverKeys) throws IOException { 8951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 9051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (impl != null) { 9151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski init(protocolVersion, clientVersion, rand, input, serverKeys); 9251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } else { 9351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski throw new IllegalStateException("Kerberos is unavailable"); 9451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 9551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 9651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 9751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski @Override 9851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski int messageType() { 9951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return ht_client_key_exchange; 10051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 10151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 10251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski @Override 10351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public int messageLength() { 10451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return impl.messageLength(); 10551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 10651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 10751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski @Override 10851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public void send(HandshakeOutStream s) throws IOException { 10951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski impl.send(s); 11051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 11151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 11251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski @Override 11351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public void print(PrintStream p) throws IOException { 11451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski impl.print(p); 11551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 11651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 11751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public void init(String serverName, boolean isLoopback, 11851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski AccessControlContext acc, ProtocolVersion protocolVersion, 11951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski SecureRandom rand) throws IOException { 12051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 12151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (impl != null) { 12251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski impl.init(serverName, isLoopback, acc, protocolVersion, rand); 12351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 12451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 12551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 12651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public void init(ProtocolVersion protocolVersion, 12751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski ProtocolVersion clientVersion, SecureRandom rand, 12851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski HandshakeInStream input, SecretKey[] serverKeys) throws IOException { 12951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 13051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski if (impl != null) { 13151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski impl.init(protocolVersion, clientVersion, rand, input, serverKeys); 13251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 13351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 13451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 13551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public byte[] getUnencryptedPreMasterSecret() { 13651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return impl.getUnencryptedPreMasterSecret(); 13751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 13851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 13951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public Principal getPeerPrincipal(){ 14051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return impl.getPeerPrincipal(); 14151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 14251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski 14351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski public Principal getLocalPrincipal(){ 14451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski return impl.getLocalPrincipal(); 14551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski } 14651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski} 147