151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski/*
251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Copyright (c) 2003, 2010, Oracle and/or its affiliates. All rights reserved.
351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski *
551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * This code is free software; you can redistribute it and/or modify it
651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * under the terms of the GNU General Public License version 2 only, as
751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * published by the Free Software Foundation.  Oracle designates this
851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * particular file as subject to the "Classpath" exception as provided
951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * by Oracle in the LICENSE file that accompanied this code.
1051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski *
1151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * This code is distributed in the hope that it will be useful, but WITHOUT
1251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
1351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
1451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * version 2 for more details (a copy is included in the LICENSE file that
1551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * accompanied this code).
1651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski *
1751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * You should have received a copy of the GNU General Public License version
1851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * 2 along with this work; if not, write to the Free Software Foundation,
1951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
2051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski *
2151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
2251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * or visit www.oracle.com if you need additional information or have any
2351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * questions.
2451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */
2551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
2651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskipackage sun.security.ssl;
2751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
2851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.io.IOException;
2951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.io.PrintStream;
3051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.security.AccessController;
3151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.security.AccessControlContext;
3251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.security.Principal;
3351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.security.PrivilegedAction;
3451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport java.security.SecureRandom;
3551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskiimport javax.crypto.SecretKey;
3651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
3751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski/**
3851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski * A helper class that calls the KerberosClientKeyExchange implementation.
3951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski */
4051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebskipublic class KerberosClientKeyExchange extends HandshakeMessage {
4151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
4251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    private static final String IMPL_CLASS =
4351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        "sun.security.ssl.krb5.KerberosClientKeyExchangeImpl";
4451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
4551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    private static final Class<?> implClass = AccessController.doPrivileged(
4651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski            new PrivilegedAction<Class<?>>() {
4751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski                public Class<?> run() {
4851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski                    try {
4951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski                        return Class.forName(IMPL_CLASS, true, null);
5051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski                    } catch (ClassNotFoundException cnf) {
5151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski                        return null;
5251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski                    }
5351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski                }
5451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski            }
5551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        );
5651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    private final KerberosClientKeyExchange impl = createImpl();
5751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
5851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    private KerberosClientKeyExchange createImpl() {
5951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        if (getClass() == KerberosClientKeyExchange.class) {
6051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski            try {
6151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski                return (KerberosClientKeyExchange)implClass.newInstance();
6251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski            } catch (InstantiationException e) {
6351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski                throw new AssertionError(e);
6451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski            } catch (IllegalAccessException e) {
6551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski                throw new AssertionError(e);
6651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski            }
6751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        }
6851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        return null;
6951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    }
7051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
7151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    public KerberosClientKeyExchange() {
7251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        // empty
7351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    }
7451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
7551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    public KerberosClientKeyExchange(String serverName, boolean isLoopback,
7651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        AccessControlContext acc, ProtocolVersion protocolVersion,
7751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        SecureRandom rand) throws IOException {
7851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
7951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        if (impl != null) {
8051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski            init(serverName, isLoopback, acc, protocolVersion, rand);
8151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        } else {
8251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski            throw new IllegalStateException("Kerberos is unavailable");
8351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        }
8451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    }
8551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
8651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    public KerberosClientKeyExchange(ProtocolVersion protocolVersion,
8751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        ProtocolVersion clientVersion, SecureRandom rand,
8851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        HandshakeInStream input, SecretKey[] serverKeys) throws IOException {
8951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
9051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        if (impl != null) {
9151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski            init(protocolVersion, clientVersion, rand, input, serverKeys);
9251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        } else {
9351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski            throw new IllegalStateException("Kerberos is unavailable");
9451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        }
9551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    }
9651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
9751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    @Override
9851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    int messageType() {
9951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        return ht_client_key_exchange;
10051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    }
10151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
10251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    @Override
10351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    public int  messageLength() {
10451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        return impl.messageLength();
10551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    }
10651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
10751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    @Override
10851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    public void send(HandshakeOutStream s) throws IOException {
10951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        impl.send(s);
11051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    }
11151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
11251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    @Override
11351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    public void print(PrintStream p) throws IOException {
11451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        impl.print(p);
11551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    }
11651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
11751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    public void init(String serverName, boolean isLoopback,
11851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        AccessControlContext acc, ProtocolVersion protocolVersion,
11951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        SecureRandom rand) throws IOException {
12051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
12151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        if (impl != null) {
12251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski            impl.init(serverName, isLoopback, acc, protocolVersion, rand);
12351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        }
12451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    }
12551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
12651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    public void init(ProtocolVersion protocolVersion,
12751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        ProtocolVersion clientVersion, SecureRandom rand,
12851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        HandshakeInStream input, SecretKey[] serverKeys) throws IOException {
12951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
13051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        if (impl != null) {
13151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski            impl.init(protocolVersion, clientVersion, rand, input, serverKeys);
13251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        }
13351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    }
13451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
13551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    public byte[] getUnencryptedPreMasterSecret() {
13651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        return impl.getUnencryptedPreMasterSecret();
13751b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    }
13851b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
13951b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    public Principal getPeerPrincipal(){
14051b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        return impl.getPeerPrincipal();
14151b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    }
14251b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski
14351b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    public Principal getLocalPrincipal(){
14451b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski        return impl.getLocalPrincipal();
14551b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski    }
14651b1b6997fd3f980076b8081f7f1165ccc2a4008Piotr Jastrzebski}
147