DTLS: Throw TlsFatalAlertReceived when fatal alert received

peterdettman · peterdettman · commit 1c5e9984b4b9 · 2025-07-24T18:02:50.000+07:00
diff --git a/tls/src/main/java/org/bouncycastle/tls/DTLSClientProtocol.java b/tls/src/main/java/org/bouncycastle/tls/DTLSClientProtocol.java
@@ -51,6 +51,12 @@ public DTLSTransport connect(TlsClient client, DatagramTransport transport)
         {
             return clientHandshake(state, recordLayer);
         }
+        catch (TlsFatalAlertReceived fatalAlertReceived)
+        {
+//            assert recordLayer.isFailed();
+            invalidateSession(state);
+            throw fatalAlertReceived;
+        }
         catch (TlsFatalAlert fatalAlert)
         {
             abortClientHandshake(state, recordLayer, fatalAlert.getAlertDescription());
diff --git a/tls/src/main/java/org/bouncycastle/tls/DTLSRecordLayer.java b/tls/src/main/java/org/bouncycastle/tls/DTLSRecordLayer.java
@@ -150,6 +150,11 @@ boolean isClosed()
         return closed;
     }
 
+    boolean isFailed()
+    {
+        return failed;
+    }
+
     void resetAfterHelloVerifyRequestServer(long recordSeq)
     {
         this.inConnection = true;
@@ -740,7 +745,7 @@ else if (null != retransmitEpoch && epoch == retransmitEpoch.getEpoch())
                 if (alertLevel == AlertLevel.fatal)
                 {
                     failed();
-                    throw new TlsFatalAlert(alertDescription);
+                    throw new TlsFatalAlertReceived(alertDescription);
                 }
 
                 // TODO Can close_notify be a fatal alert?
diff --git a/tls/src/main/java/org/bouncycastle/tls/DTLSServerProtocol.java b/tls/src/main/java/org/bouncycastle/tls/DTLSServerProtocol.java
@@ -67,6 +67,12 @@ public DTLSTransport accept(TlsServer server, DatagramTransport transport, DTLSR
         {
             return serverHandshake(state, recordLayer, request);
         }
+        catch (TlsFatalAlertReceived fatalAlertReceived)
+        {
+//            assert recordLayer.isFailed();
+            invalidateSession(state);
+            throw fatalAlertReceived;
+        }
         catch (TlsFatalAlert fatalAlert)
         {
             abortServerHandshake(state, recordLayer, fatalAlert.getAlertDescription());
diff --git a/tls/src/main/java/org/bouncycastle/tls/DTLSTransport.java b/tls/src/main/java/org/bouncycastle/tls/DTLSTransport.java
@@ -55,6 +55,11 @@ public int receive(byte[] buf, int off, int len, int waitMillis, DTLSRecordCallb
         {
             return recordLayer.receive(buf, off, len, waitMillis, recordCallback);
         }
+        catch (TlsFatalAlertReceived fatalAlertReceived)
+        {
+//            assert recordLayer.isFailed();
+            throw fatalAlertReceived;
+        }
         catch (TlsFatalAlert fatalAlert)
         {
             if (AlertDescription.bad_record_mac == fatalAlert.getAlertDescription())
@@ -107,6 +112,11 @@ public int receivePending(byte[] buf, int off, int len, DTLSRecordCallback recor
         {
             return recordLayer.receivePending(buf, off, len, recordCallback);
         }
+        catch (TlsFatalAlertReceived fatalAlertReceived)
+        {
+//            assert recordLayer.isFailed();
+            throw fatalAlertReceived;
+        }
         catch (TlsFatalAlert fatalAlert)
         {
             if (AlertDescription.bad_record_mac == fatalAlert.getAlertDescription())
diff --git a/tls/src/main/java/org/bouncycastle/tls/TlsProtocol.java b/tls/src/main/java/org/bouncycastle/tls/TlsProtocol.java
@@ -144,7 +144,7 @@ protected boolean isTLSv13ConnectionState()
     private TlsOutputStream tlsOutputStream = null;
 
     private volatile boolean closed = false;
-    private volatile boolean failedWithError = false;
+    private volatile boolean failed = false;
     private volatile boolean appDataReady = false;
     private volatile boolean appDataSplitEnabled = true;
     private volatile boolean keyUpdateEnabled = false;
@@ -324,7 +324,7 @@ protected void handleException(short alertDescription, String message, Throwable
     protected void handleFailure() throws IOException
     {
         this.closed = true;
-        this.failedWithError = true;
+        this.failed = true;
 
         /*
          * RFC 2246 7.2.1. The session becomes unresumable if any connection is terminated
@@ -819,7 +819,7 @@ public int readApplicationData(byte[] buf, int off, int len)
         {
             if (this.closed)
             {
-                if (this.failedWithError)
+                if (this.failed)
                 {
                     throw new IOException("Cannot read application data on failed TLS connection");
                 }
@@ -885,7 +885,7 @@ protected void safeReadRecord()
         }
         catch (TlsFatalAlertReceived e)
         {
-            // Connection failure already handled at source
+//            assert isFailed();
             throw e;
         }
         catch (TlsFatalAlert e)
@@ -916,6 +916,11 @@ protected boolean safeReadFullRecord(byte[] input, int inputOff, int inputLen)
         {
             return recordStream.readFullRecord(input, inputOff, inputLen);
         }
+        catch (TlsFatalAlertReceived e)
+        {
+//            assert isFailed();
+            throw e;
+        }
         catch (TlsFatalAlert e)
         {
             handleException(e.getAlertDescription(), "Failed to process record", e);
@@ -1917,6 +1922,11 @@ public boolean isConnected()
         return null != context && context.isConnected();
     }
 
+    public boolean isFailed()
+    {
+        return failed;
+    }
+
     public boolean isHandshaking()
     {
         if (closed)

Original file line number	Diff line number	Diff line change
`@@ -51,6 +51,12 @@ public DTLSTransport connect(TlsClient client, DatagramTransport transport)`
`51`	`51`	`{`
`52`	`52`	`return clientHandshake(state, recordLayer);`
`53`	`53`	`}`
	`54`	`+ catch (TlsFatalAlertReceived fatalAlertReceived)`
	`55`	`+ {`
	`56`	`+// assert recordLayer.isFailed();`
	`57`	`+ invalidateSession(state);`
	`58`	`+ throw fatalAlertReceived;`
	`59`	`+ }`
`54`	`60`	`catch (TlsFatalAlert fatalAlert)`
`55`	`61`	`{`
`56`	`62`	`abortClientHandshake(state, recordLayer, fatalAlert.getAlertDescription());`
Original file line number	Diff line number	Diff line change
`@@ -150,6 +150,11 @@ boolean isClosed()`
`150`	`150`	`return closed;`
`151`	`151`	`}`
`152`	`152`
	`153`	`+ boolean isFailed()`
	`154`	`+ {`
	`155`	`+ return failed;`
	`156`	`+ }`
	`157`	`+`
`153`	`158`	`void resetAfterHelloVerifyRequestServer(long recordSeq)`
`154`	`159`	`{`
`155`	`160`	`this.inConnection = true;`
`@@ -740,7 +745,7 @@ else if (null != retransmitEpoch && epoch == retransmitEpoch.getEpoch())`
`740`	`745`	`if (alertLevel == AlertLevel.fatal)`
`741`	`746`	`{`
`742`	`747`	`failed();`
`743`		`- throw new TlsFatalAlert(alertDescription);`
	`748`	`+ throw new TlsFatalAlertReceived(alertDescription);`
`744`	`749`	`}`
`745`	`750`
`746`	`751`	`// TODO Can close_notify be a fatal alert?`
Original file line number	Diff line number	Diff line change
`@@ -67,6 +67,12 @@ public DTLSTransport accept(TlsServer server, DatagramTransport transport, DTLSR`
`67`	`67`	`{`
`68`	`68`	`return serverHandshake(state, recordLayer, request);`
`69`	`69`	`}`
	`70`	`+ catch (TlsFatalAlertReceived fatalAlertReceived)`
	`71`	`+ {`
	`72`	`+// assert recordLayer.isFailed();`
	`73`	`+ invalidateSession(state);`
	`74`	`+ throw fatalAlertReceived;`
	`75`	`+ }`
`70`	`76`	`catch (TlsFatalAlert fatalAlert)`
`71`	`77`	`{`
`72`	`78`	`abortServerHandshake(state, recordLayer, fatalAlert.getAlertDescription());`
Original file line number	Diff line number	Diff line change
`@@ -55,6 +55,11 @@ public int receive(byte[] buf, int off, int len, int waitMillis, DTLSRecordCallb`
`55`	`55`	`{`
`56`	`56`	`return recordLayer.receive(buf, off, len, waitMillis, recordCallback);`
`57`	`57`	`}`
	`58`	`+ catch (TlsFatalAlertReceived fatalAlertReceived)`
	`59`	`+ {`
	`60`	`+// assert recordLayer.isFailed();`
	`61`	`+ throw fatalAlertReceived;`
	`62`	`+ }`
`58`	`63`	`catch (TlsFatalAlert fatalAlert)`
`59`	`64`	`{`
`60`	`65`	`if (AlertDescription.bad_record_mac == fatalAlert.getAlertDescription())`
`@@ -107,6 +112,11 @@ public int receivePending(byte[] buf, int off, int len, DTLSRecordCallback recor`
`107`	`112`	`{`
`108`	`113`	`return recordLayer.receivePending(buf, off, len, recordCallback);`
`109`	`114`	`}`
	`115`	`+ catch (TlsFatalAlertReceived fatalAlertReceived)`
	`116`	`+ {`
	`117`	`+// assert recordLayer.isFailed();`
	`118`	`+ throw fatalAlertReceived;`
	`119`	`+ }`
`110`	`120`	`catch (TlsFatalAlert fatalAlert)`
`111`	`121`	`{`
`112`	`122`	`if (AlertDescription.bad_record_mac == fatalAlert.getAlertDescription())`
Original file line number	Diff line number	Diff line change
`@@ -144,7 +144,7 @@ protected boolean isTLSv13ConnectionState()`
`144`	`144`	`private TlsOutputStream tlsOutputStream = null;`
`145`	`145`
`146`	`146`	`private volatile boolean closed = false;`
`147`		`- private volatile boolean failedWithError = false;`
	`147`	`+ private volatile boolean failed = false;`
`148`	`148`	`private volatile boolean appDataReady = false;`
`149`	`149`	`private volatile boolean appDataSplitEnabled = true;`
`150`	`150`	`private volatile boolean keyUpdateEnabled = false;`
`@@ -324,7 +324,7 @@ protected void handleException(short alertDescription, String message, Throwable`
`324`	`324`	`protected void handleFailure() throws IOException`
`325`	`325`	`{`
`326`	`326`	`this.closed = true;`
`327`		`- this.failedWithError = true;`
	`327`	`+ this.failed = true;`
`328`	`328`
`329`	`329`	`/*`
`330`	`330`	`* RFC 2246 7.2.1. The session becomes unresumable if any connection is terminated`
`@@ -819,7 +819,7 @@ public int readApplicationData(byte[] buf, int off, int len)`
`819`	`819`	`{`
`820`	`820`	`if (this.closed)`
`821`	`821`	`{`
`822`		`- if (this.failedWithError)`
	`822`	`+ if (this.failed)`
`823`	`823`	`{`
`824`	`824`	`throw new IOException("Cannot read application data on failed TLS connection");`
`825`	`825`	`}`
`@@ -885,7 +885,7 @@ protected void safeReadRecord()`
`885`	`885`	`}`
`886`	`886`	`catch (TlsFatalAlertReceived e)`
`887`	`887`	`{`
`888`		`- // Connection failure already handled at source`
	`888`	`+// assert isFailed();`
`889`	`889`	`throw e;`
`890`	`890`	`}`
`891`	`891`	`catch (TlsFatalAlert e)`
`@@ -916,6 +916,11 @@ protected boolean safeReadFullRecord(byte[] input, int inputOff, int inputLen)`
`916`	`916`	`{`
`917`	`917`	`return recordStream.readFullRecord(input, inputOff, inputLen);`
`918`	`918`	`}`
	`919`	`+ catch (TlsFatalAlertReceived e)`
	`920`	`+ {`
	`921`	`+// assert isFailed();`
	`922`	`+ throw e;`
	`923`	`+ }`
`919`	`924`	`catch (TlsFatalAlert e)`
`920`	`925`	`{`
`921`	`926`	`handleException(e.getAlertDescription(), "Failed to process record", e);`
`@@ -1917,6 +1922,11 @@ public boolean isConnected()`
`1917`	`1922`	`return null != context && context.isConnected();`
`1918`	`1923`	`}`
`1919`	`1924`
	`1925`	`+ public boolean isFailed()`
	`1926`	`+ {`
	`1927`	`+ return failed;`
	`1928`	`+ }`
	`1929`	`+`
`1920`	`1930`	`public boolean isHandshaking()`
`1921`	`1931`	`{`
`1922`	`1932`	`if (closed)`