Merge branch 'main' of gitlab.cryptoworkshop.com:root/bc-java

dghgit · dghgit · commit a05312a980d7 · 2025-10-02T20:23:47.000+10:00
diff --git a/tls/src/main/java/org/bouncycastle/tls/DTLSClientProtocol.java b/tls/src/main/java/org/bouncycastle/tls/DTLSClientProtocol.java
@@ -322,6 +322,8 @@ protected DTLSTransport clientHandshake(ClientHandshakeState state)
         securityParameters.sessionHash = TlsUtils.getCurrentPRFHash(handshake.getHandshakeHash());
 
         TlsProtocol.establishMasterSecret(clientContext, state.keyExchange);
+        state.keyExchange = null;
+
         recordLayer.initPendingEpoch(TlsUtils.initCipher(clientContext));
 
         if (clientAuthSigner != null)
@@ -875,7 +877,8 @@ protected void processServerHello(ClientHandshakeState state, byte[] body)
                  */
                 if (null == TlsUtils.getExtensionData(state.clientExtensions, extType))
                 {
-                    throw new TlsFatalAlert(AlertDescription.unsupported_extension);
+                    throw new TlsFatalAlert(AlertDescription.unsupported_extension,
+                        "Unrequested extension in ServerHello: " + ExtensionType.getText(extType.intValue()));
                 }
 
                 /*
diff --git a/tls/src/main/java/org/bouncycastle/tls/DTLSServerProtocol.java b/tls/src/main/java/org/bouncycastle/tls/DTLSServerProtocol.java
@@ -345,6 +345,8 @@ protected DTLSTransport serverHandshake(ServerHandshakeState state, DTLSRequest
         securityParameters.sessionHash = TlsUtils.getCurrentPRFHash(handshake.getHandshakeHash());
 
         TlsProtocol.establishMasterSecret(serverContext, state.keyExchange);
+        state.keyExchange = null;
+
         recordLayer.initPendingEpoch(TlsUtils.initCipher(serverContext));
 
         /*
diff --git a/tls/src/main/java/org/bouncycastle/tls/ReflectionUtil.java b/tls/src/main/java/org/bouncycastle/tls/ReflectionUtil.java
@@ -1,4 +1,4 @@
-package org.bouncycastle.jsse.provider;
+package org.bouncycastle.tls;
 
 import java.lang.reflect.Constructor;
 import java.lang.reflect.Field;
@@ -7,9 +7,9 @@
 import java.security.AccessController;
 import java.security.PrivilegedAction;
 
-class ReflectionUtil
+public abstract class ReflectionUtil
 {
-    static Method findMethod(Method[] methods, String name)
+    public static Method findMethod(Method[] methods, String name)
     {
         if (methods != null)
         {
@@ -24,13 +24,12 @@ static Method findMethod(Method[] methods, String name)
         return null;
     }
 
-    static boolean hasMethod(Method[] methods, String name)
+    public static boolean hasMethod(Method[] methods, String name)
     {
         return null != findMethod(methods, name);
     }
 
-
-    static Class<?> getClass(final String className)
+    public static Class<?> getClass(final String className)
     {
         if (null == className)
         {
@@ -58,7 +57,7 @@ public Class<?> run()
         });
     }
 
-    static <T> Constructor<T> getDeclaredConstructor(final String className, final Class<?>... parameterTypes)
+    public static <T> Constructor<T> getDeclaredConstructor(final String className, final Class<?>... parameterTypes)
     {
         if (null == className)
         {
@@ -90,7 +89,7 @@ public Constructor<T> run()
         });
     }
 
-    static Method getMethod(final String className, final String methodName, final Class<?>... parameterTypes)
+    public static Method getMethod(final String className, final String methodName, final Class<?>... parameterTypes)
     {
         if (null == className || null == methodName)
         {
@@ -122,7 +121,7 @@ public Method run()
         });
     }
 
-    static Method[] getMethods(final String className)
+    public static Method[] getMethods(final String className)
     {
         if (null == className)
         {
@@ -154,7 +153,7 @@ public Method[] run()
         });
     }
 
-    static Integer getStaticInt(final String className, final String fieldName)
+    public static Integer getStaticInt(final String className, final String fieldName)
     {
         return AccessController.doPrivileged(new PrivilegedAction<Integer>()
         {
@@ -189,18 +188,18 @@ public Integer run()
         });
     }
 
-    static Integer getStaticIntOrDefault(final String className, final String fieldName, int defaultValue)
+    public static Integer getStaticIntOrDefault(final String className, final String fieldName, int defaultValue)
     {
         Integer value = getStaticInt(className, fieldName);
         return null == value ? defaultValue : value.intValue();
     }
 
-    static Object invokeGetter(final Object obj, final Method method)
+    public static Object invokeGetter(final Object obj, final Method method)
     {
         return invokeMethod(obj, method);
     }
 
-    static Object invokeMethod(final Object obj, final Method method, final Object... args)
+    public static Object invokeMethod(final Object obj, final Method method, final Object... args)
     {
         return AccessController.doPrivileged(new PrivilegedAction<Object>()
         {
@@ -222,7 +221,7 @@ public Object run()
         });
     }
 
-    static void invokeSetter(final Object obj, final Method method, final Object arg)
+    public static void invokeSetter(final Object obj, final Method method, final Object arg)
     {
         invokeMethod(obj, method, arg);
     }
diff --git a/tls/src/main/java/org/bouncycastle/tls/TlsClientProtocol.java b/tls/src/main/java/org/bouncycastle/tls/TlsClientProtocol.java
@@ -551,7 +551,7 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)
                 handleServerCertificate();
 
                 // There was no server key exchange message; check it's OK
-                this.keyExchange.skipServerKeyExchange();
+                keyExchange.skipServerKeyExchange();
 
                 // NB: Fall through to next case label
             }
@@ -645,6 +645,8 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)
                     establishMasterSecret(tlsClientContext, keyExchange);
                 }
 
+                this.keyExchange = null;
+
                 recordStream.setPendingCipher(TlsUtils.initCipher(tlsClientContext));
 
                 if (clientAuthSigner != null)
@@ -688,7 +690,7 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)
             {
                 handleServerCertificate();
 
-                this.keyExchange.processServerKeyExchange(buf);
+                keyExchange.processServerKeyExchange(buf);
 
                 assertEmpty(buf);
                 break;
@@ -710,7 +712,7 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)
                 handleServerCertificate();
 
                 // There was no server key exchange message; check it's OK
-                this.keyExchange.skipServerKeyExchange();
+                keyExchange.skipServerKeyExchange();
 
                 // NB: Fall through to next case label
             }
@@ -867,7 +869,7 @@ protected void process13HelloRetryRequest(ServerHello helloRetryRequest)
                 if (null == TlsUtils.getExtensionData(clientExtensions, extType))
                 {
                     throw new TlsFatalAlert(AlertDescription.unsupported_extension,
-                        "received unrequested extension response: " + ExtensionType.getText(extensionType));
+                        "Unrequested extension in HelloRetryRequest: " + ExtensionType.getText(extensionType));
                 }
             }
         }
@@ -1527,7 +1529,8 @@ protected void receive13EncryptedExtensions(ByteArrayInputStream buf)
 
                 if (null == TlsUtils.getExtensionData(clientExtensions, extType))
                 {
-                    throw new TlsFatalAlert(AlertDescription.unsupported_extension);
+                    throw new TlsFatalAlert(AlertDescription.unsupported_extension,
+                        "Unrequested extension in EncryptedExtensions: " + ExtensionType.getText(extType.intValue()));
                 }
             }
         }
@@ -1910,6 +1913,8 @@ protected void sendClientHello()
             this.clientExtensions.remove(TlsExtensionsUtils.EXT_extended_master_secret);
         }
 
+        boolean hasRenegSCSV = Arrays.contains(offeredCipherSuites, CipherSuite.TLS_EMPTY_RENEGOTIATION_INFO_SCSV);
+
         if (securityParameters.isRenegotiating())
         {
             /*
@@ -1919,13 +1924,19 @@ protected void sendClientHello()
              */
             if (!securityParameters.isSecureRenegotiation())
             {
-                throw new TlsFatalAlert(AlertDescription.internal_error);
+                throw new TlsFatalAlert(AlertDescription.internal_error, "Renegotiation requires secure_renegotiation");
             }
 
             /*
              * The client MUST include the "renegotiation_info" extension in the ClientHello,
              * containing the saved client_verify_data. The SCSV MUST NOT be included.
              */
+            if (hasRenegSCSV)
+            {
+                throw new TlsFatalAlert(AlertDescription.internal_error,
+                    "Renegotiation cannot use TLS_EMPTY_RENEGOTIATION_INFO_SCSV");
+            }
+
             SecurityParameters saved = tlsClientContext.getSecurityParametersConnection();
 
             this.clientExtensions.put(EXT_RenegotiationInfo, createRenegotiationInfo(saved.getLocalVerifyData()));
@@ -1942,7 +1953,7 @@ protected void sendClientHello()
              * Including both is NOT RECOMMENDED.
              */
             boolean noRenegExt = (null == TlsUtils.getExtensionData(clientExtensions, EXT_RenegotiationInfo));
-            boolean noRenegSCSV = !Arrays.contains(offeredCipherSuites, CipherSuite.TLS_EMPTY_RENEGOTIATION_INFO_SCSV);
+            boolean noRenegSCSV = !hasRenegSCSV;
 
             if (noRenegExt && noRenegSCSV)
             {
@@ -1993,7 +2004,7 @@ protected void sendClientKeyExchange()
         throws IOException
     {
         HandshakeMessageOutput message = new HandshakeMessageOutput(HandshakeType.client_key_exchange);
-        this.keyExchange.generateClientKeyExchange(message);
+        keyExchange.generateClientKeyExchange(message);
         message.send(this);
     }
 
diff --git a/tls/src/main/java/org/bouncycastle/tls/TlsServerProtocol.java b/tls/src/main/java/org/bouncycastle/tls/TlsServerProtocol.java
@@ -1121,11 +1121,11 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)
                     ByteArrayOutputStream endPointHash = new ByteArrayOutputStream();
                     if (null == serverCredentials)
                     {
-                        this.keyExchange.skipServerCredentials();
+                        keyExchange.skipServerCredentials();
                     }
                     else
                     {
-                        this.keyExchange.processServerCredentials(serverCredentials);
+                        keyExchange.processServerCredentials(serverCredentials);
 
                         serverCertificate = serverCredentials.getCertificate();
                         sendCertificateMessage(serverCertificate, endPointHash);
@@ -1151,7 +1151,7 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)
                     }
                 }
 
-                byte[] serverKeyExchange = this.keyExchange.generateServerKeyExchange();
+                byte[] serverKeyExchange = keyExchange.generateServerKeyExchange();
                 if (serverKeyExchange != null)
                 {
                     sendServerKeyExchangeMessage(serverKeyExchange);
@@ -1181,7 +1181,7 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)
                             throw new TlsFatalAlert(AlertDescription.internal_error);
                         }
 
-                        this.certificateRequest = TlsUtils.validateCertificateRequest(this.certificateRequest, this.keyExchange);
+                        this.certificateRequest = TlsUtils.validateCertificateRequest(certificateRequest, keyExchange);
 
                         TlsUtils.establishServerSigAlgs(securityParameters, certificateRequest);
 
@@ -1270,7 +1270,7 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)
             {
                 if (null == certificateRequest)
                 {
-                    this.keyExchange.skipClientCredentials();
+                    keyExchange.skipClientCredentials();
                 }
                 else if (TlsUtils.isTLSv12(tlsServerContext))
                 {
@@ -1536,6 +1536,8 @@ protected void receiveClientKeyExchangeMessage(ByteArrayInputStream buf)
             establishMasterSecret(tlsServerContext, keyExchange);
         }
 
+        this.keyExchange = null;
+
         recordStream.setPendingCipher(TlsUtils.initCipher(tlsServerContext));
 
         if (!expectCertificateVerifyMessage())
diff --git a/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/IDNUtil.java b/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/IDNUtil.java
@@ -2,6 +2,8 @@
 
 import java.lang.reflect.Method;
 
+import org.bouncycastle.tls.ReflectionUtil;
+
 public class IDNUtil
 {
     public static final int ALLOW_UNASSIGNED;
diff --git a/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/KeyStoreUtil.java b/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/KeyStoreUtil.java
@@ -7,6 +7,8 @@
 import java.security.NoSuchAlgorithmException;
 import java.security.UnrecoverableKeyException;
 
+import org.bouncycastle.tls.ReflectionUtil;
+
 abstract class KeyStoreUtil
 {
     private static final Method getProtectionAlgorithm;
diff --git a/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/PKIXUtil.java b/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/PKIXUtil.java
@@ -5,6 +5,8 @@
 import java.security.cert.X509Certificate;
 import java.util.Map;
 
+import org.bouncycastle.tls.ReflectionUtil;
+
 abstract class PKIXUtil
 {
     private static final Class<?> pkixRevocationCheckerClass;
diff --git a/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/SSLEngineUtil.java b/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/SSLEngineUtil.java
@@ -9,6 +9,7 @@
 import org.bouncycastle.jsse.BCExtendedSSLSession;
 import org.bouncycastle.jsse.BCSSLEngine;
 import org.bouncycastle.jsse.BCSSLParameters;
+import org.bouncycastle.tls.ReflectionUtil;
 
 abstract class SSLEngineUtil
 {
diff --git a/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/SSLParametersUtil.java b/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/SSLParametersUtil.java
@@ -10,6 +10,7 @@
 import org.bouncycastle.jsse.BCSNIServerName;
 import org.bouncycastle.jsse.BCSSLParameters;
 import org.bouncycastle.jsse.java.security.BCAlgorithmConstraints;
+import org.bouncycastle.tls.ReflectionUtil;
 
 abstract class SSLParametersUtil
 {
diff --git a/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/SSLSessionUtil.java b/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/SSLSessionUtil.java
@@ -6,6 +6,7 @@
 import javax.net.ssl.SSLSession;
 
 import org.bouncycastle.jsse.BCExtendedSSLSession;
+import org.bouncycastle.tls.ReflectionUtil;
 
 abstract class SSLSessionUtil
 {
diff --git a/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/SSLSocketUtil.java b/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/SSLSocketUtil.java
@@ -15,6 +15,7 @@
 import org.bouncycastle.jsse.BCExtendedSSLSession;
 import org.bouncycastle.jsse.BCSSLParameters;
 import org.bouncycastle.jsse.BCSSLSocket;
+import org.bouncycastle.tls.ReflectionUtil;
 
 abstract class SSLSocketUtil
 {
diff --git a/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/X509TrustManagerUtil.java b/tls/src/main/jdk1.5/org/bouncycastle/jsse/provider/X509TrustManagerUtil.java
@@ -8,6 +8,7 @@
 
 import org.bouncycastle.jcajce.util.JcaJceHelper;
 import org.bouncycastle.jsse.BCX509ExtendedTrustManager;
+import org.bouncycastle.tls.ReflectionUtil;
 
 abstract class X509TrustManagerUtil
 {
diff --git a/tls/src/main/jdk1.5/org/bouncycastle/tls/crypto/impl/jcajce/PrivateKeyUtil.java b/tls/src/main/jdk1.5/org/bouncycastle/tls/crypto/impl/jcajce/PrivateKeyUtil.java
@@ -0,0 +1,32 @@
+package org.bouncycastle.tls.crypto.impl.jcajce;
+
+import java.lang.reflect.Method;
+import java.security.PrivateKey;
+
+import org.bouncycastle.tls.ReflectionUtil;
+
+abstract class PrivateKeyUtil
+{
+    private static final Method destroy;
+
+    static
+    {
+        Method[] methods = ReflectionUtil.getMethods("java.security.PrivateKey");
+
+        destroy = ReflectionUtil.findMethod(methods, "destroy");
+    }
+
+    static void destroy(PrivateKey privateKey)
+    {
+        if (destroy != null)
+        {
+            try
+            {
+                ReflectionUtil.invokeMethod(privateKey, destroy);
+            }
+            catch (Exception e)
+            {
+            }
+        }
+    }
+}
diff --git a/tls/src/main/jdk1.9/org/bouncycastle/jsse/provider/SSLParametersUtil.java b/tls/src/main/jdk1.9/org/bouncycastle/jsse/provider/SSLParametersUtil.java
@@ -13,6 +13,7 @@
 import org.bouncycastle.jsse.BCSNIServerName;
 import org.bouncycastle.jsse.BCSSLParameters;
 import org.bouncycastle.jsse.java.security.BCAlgorithmConstraints;
+import org.bouncycastle.tls.ReflectionUtil;
 
 abstract class SSLParametersUtil
 {
diff --git a/tls/src/main/jdk1.9/org/bouncycastle/tls/crypto/impl/jcajce/PrivateKeyUtil.java b/tls/src/main/jdk1.9/org/bouncycastle/tls/crypto/impl/jcajce/PrivateKeyUtil.java

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-package org.bouncycastle.jsse.provider;`
	`1`	`+package org.bouncycastle.tls;`
`2`	`2`
`3`	`3`	`import java.lang.reflect.Constructor;`
`4`	`4`	`import java.lang.reflect.Field;`
`@@ -7,9 +7,9 @@`
`7`	`7`	`import java.security.AccessController;`
`8`	`8`	`import java.security.PrivilegedAction;`
`9`	`9`
`10`		`-class ReflectionUtil`
	`10`	`+public abstract class ReflectionUtil`
`11`	`11`	`{`
`12`		`- static Method findMethod(Method[] methods, String name)`
	`12`	`+ public static Method findMethod(Method[] methods, String name)`
`13`	`13`	`{`
`14`	`14`	`if (methods != null)`
`15`	`15`	`{`
`@@ -24,13 +24,12 @@ static Method findMethod(Method[] methods, String name)`
`24`	`24`	`return null;`
`25`	`25`	`}`
`26`	`26`
`27`		`- static boolean hasMethod(Method[] methods, String name)`
	`27`	`+ public static boolean hasMethod(Method[] methods, String name)`
`28`	`28`	`{`
`29`	`29`	`return null != findMethod(methods, name);`
`30`	`30`	`}`
`31`	`31`
`32`		`-`
`33`		`- static Class<?> getClass(final String className)`
	`32`	`+ public static Class<?> getClass(final String className)`
`34`	`33`	`{`
`35`	`34`	`if (null == className)`
`36`	`35`	`{`
`@@ -58,7 +57,7 @@ public Class<?> run()`
`58`	`57`	`});`
`59`	`58`	`}`
`60`	`59`
`61`		`- static <T> Constructor<T> getDeclaredConstructor(final String className, final Class<?>... parameterTypes)`
	`60`	`+ public static <T> Constructor<T> getDeclaredConstructor(final String className, final Class<?>... parameterTypes)`
`62`	`61`	`{`
`63`	`62`	`if (null == className)`
`64`	`63`	`{`
`@@ -90,7 +89,7 @@ public Constructor<T> run()`
`90`	`89`	`});`
`91`	`90`	`}`
`92`	`91`
`93`		`- static Method getMethod(final String className, final String methodName, final Class<?>... parameterTypes)`
	`92`	`+ public static Method getMethod(final String className, final String methodName, final Class<?>... parameterTypes)`
`94`	`93`	`{`
`95`	`94`	`if (null == className \|\| null == methodName)`
`96`	`95`	`{`
`@@ -122,7 +121,7 @@ public Method run()`
`122`	`121`	`});`
`123`	`122`	`}`
`124`	`123`
`125`		`- static Method[] getMethods(final String className)`
	`124`	`+ public static Method[] getMethods(final String className)`
`126`	`125`	`{`
`127`	`126`	`if (null == className)`
`128`	`127`	`{`
`@@ -154,7 +153,7 @@ public Method[] run()`
`154`	`153`	`});`
`155`	`154`	`}`
`156`	`155`
`157`		`- static Integer getStaticInt(final String className, final String fieldName)`
	`156`	`+ public static Integer getStaticInt(final String className, final String fieldName)`
`158`	`157`	`{`
`159`	`158`	`return AccessController.doPrivileged(new PrivilegedAction<Integer>()`
`160`	`159`	`{`
`@@ -189,18 +188,18 @@ public Integer run()`
`189`	`188`	`});`
`190`	`189`	`}`
`191`	`190`
`192`		`- static Integer getStaticIntOrDefault(final String className, final String fieldName, int defaultValue)`
	`191`	`+ public static Integer getStaticIntOrDefault(final String className, final String fieldName, int defaultValue)`
`193`	`192`	`{`
`194`	`193`	`Integer value = getStaticInt(className, fieldName);`
`195`	`194`	`return null == value ? defaultValue : value.intValue();`
`196`	`195`	`}`
`197`	`196`
`198`		`- static Object invokeGetter(final Object obj, final Method method)`
	`197`	`+ public static Object invokeGetter(final Object obj, final Method method)`
`199`	`198`	`{`
`200`	`199`	`return invokeMethod(obj, method);`
`201`	`200`	`}`
`202`	`201`
`203`		`- static Object invokeMethod(final Object obj, final Method method, final Object... args)`
	`202`	`+ public static Object invokeMethod(final Object obj, final Method method, final Object... args)`
`204`	`203`	`{`
`205`	`204`	`return AccessController.doPrivileged(new PrivilegedAction<Object>()`
`206`	`205`	`{`
`@@ -222,7 +221,7 @@ public Object run()`
`222`	`221`	`});`
`223`	`222`	`}`
`224`	`223`
`225`		`- static void invokeSetter(final Object obj, final Method method, final Object arg)`
	`224`	`+ public static void invokeSetter(final Object obj, final Method method, final Object arg)`
`226`	`225`	`{`
`227`	`226`	`invokeMethod(obj, method, arg);`
`228`	`227`	`}`
Original file line number	Diff line number	Diff line change
`@@ -551,7 +551,7 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)`
`551`	`551`	`handleServerCertificate();`
`552`	`552`
`553`	`553`	`// There was no server key exchange message; check it's OK`
`554`		`- this.keyExchange.skipServerKeyExchange();`
	`554`	`+ keyExchange.skipServerKeyExchange();`
`555`	`555`
`556`	`556`	`// NB: Fall through to next case label`
`557`	`557`	`}`
`@@ -645,6 +645,8 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)`
`645`	`645`	`establishMasterSecret(tlsClientContext, keyExchange);`
`646`	`646`	`}`
`647`	`647`
	`648`	`+ this.keyExchange = null;`
	`649`	`+`
`648`	`650`	`recordStream.setPendingCipher(TlsUtils.initCipher(tlsClientContext));`
`649`	`651`
`650`	`652`	`if (clientAuthSigner != null)`
`@@ -688,7 +690,7 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)`
`688`	`690`	`{`
`689`	`691`	`handleServerCertificate();`
`690`	`692`
`691`		`- this.keyExchange.processServerKeyExchange(buf);`
	`693`	`+ keyExchange.processServerKeyExchange(buf);`
`692`	`694`
`693`	`695`	`assertEmpty(buf);`
`694`	`696`	`break;`
`@@ -710,7 +712,7 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)`
`710`	`712`	`handleServerCertificate();`
`711`	`713`
`712`	`714`	`// There was no server key exchange message; check it's OK`
`713`		`- this.keyExchange.skipServerKeyExchange();`
	`715`	`+ keyExchange.skipServerKeyExchange();`
`714`	`716`
`715`	`717`	`// NB: Fall through to next case label`
`716`	`718`	`}`
`@@ -867,7 +869,7 @@ protected void process13HelloRetryRequest(ServerHello helloRetryRequest)`
`867`	`869`	`if (null == TlsUtils.getExtensionData(clientExtensions, extType))`
`868`	`870`	`{`
`869`	`871`	`throw new TlsFatalAlert(AlertDescription.unsupported_extension,`
`870`		`- "received unrequested extension response: " + ExtensionType.getText(extensionType));`
	`872`	`+ "Unrequested extension in HelloRetryRequest: " + ExtensionType.getText(extensionType));`
`871`	`873`	`}`
`872`	`874`	`}`
`873`	`875`	`}`
`@@ -1527,7 +1529,8 @@ protected void receive13EncryptedExtensions(ByteArrayInputStream buf)`
`1527`	`1529`
`1528`	`1530`	`if (null == TlsUtils.getExtensionData(clientExtensions, extType))`
`1529`	`1531`	`{`
`1530`		`- throw new TlsFatalAlert(AlertDescription.unsupported_extension);`
	`1532`	`+ throw new TlsFatalAlert(AlertDescription.unsupported_extension,`
	`1533`	`+ "Unrequested extension in EncryptedExtensions: " + ExtensionType.getText(extType.intValue()));`
`1531`	`1534`	`}`
`1532`	`1535`	`}`
`1533`	`1536`	`}`
`@@ -1910,6 +1913,8 @@ protected void sendClientHello()`
`1910`	`1913`	`this.clientExtensions.remove(TlsExtensionsUtils.EXT_extended_master_secret);`
`1911`	`1914`	`}`
`1912`	`1915`
	`1916`	`+ boolean hasRenegSCSV = Arrays.contains(offeredCipherSuites, CipherSuite.TLS_EMPTY_RENEGOTIATION_INFO_SCSV);`
	`1917`	`+`
`1913`	`1918`	`if (securityParameters.isRenegotiating())`
`1914`	`1919`	`{`
`1915`	`1920`	`/*`
`@@ -1919,13 +1924,19 @@ protected void sendClientHello()`
`1919`	`1924`	`*/`
`1920`	`1925`	`if (!securityParameters.isSecureRenegotiation())`
`1921`	`1926`	`{`
`1922`		`- throw new TlsFatalAlert(AlertDescription.internal_error);`
	`1927`	`+ throw new TlsFatalAlert(AlertDescription.internal_error, "Renegotiation requires secure_renegotiation");`
`1923`	`1928`	`}`
`1924`	`1929`
`1925`	`1930`	`/*`
`1926`	`1931`	`* The client MUST include the "renegotiation_info" extension in the ClientHello,`
`1927`	`1932`	`* containing the saved client_verify_data. The SCSV MUST NOT be included.`
`1928`	`1933`	`*/`
	`1934`	`+ if (hasRenegSCSV)`
	`1935`	`+ {`
	`1936`	`+ throw new TlsFatalAlert(AlertDescription.internal_error,`
	`1937`	`+ "Renegotiation cannot use TLS_EMPTY_RENEGOTIATION_INFO_SCSV");`
	`1938`	`+ }`
	`1939`	`+`
`1929`	`1940`	`SecurityParameters saved = tlsClientContext.getSecurityParametersConnection();`
`1930`	`1941`
`1931`	`1942`	`this.clientExtensions.put(EXT_RenegotiationInfo, createRenegotiationInfo(saved.getLocalVerifyData()));`
`@@ -1942,7 +1953,7 @@ protected void sendClientHello()`
`1942`	`1953`	`* Including both is NOT RECOMMENDED.`
`1943`	`1954`	`*/`
`1944`	`1955`	`boolean noRenegExt = (null == TlsUtils.getExtensionData(clientExtensions, EXT_RenegotiationInfo));`
`1945`		`- boolean noRenegSCSV = !Arrays.contains(offeredCipherSuites, CipherSuite.TLS_EMPTY_RENEGOTIATION_INFO_SCSV);`
	`1956`	`+ boolean noRenegSCSV = !hasRenegSCSV;`
`1946`	`1957`
`1947`	`1958`	`if (noRenegExt && noRenegSCSV)`
`1948`	`1959`	`{`
`@@ -1993,7 +2004,7 @@ protected void sendClientKeyExchange()`
`1993`	`2004`	`throws IOException`
`1994`	`2005`	`{`
`1995`	`2006`	`HandshakeMessageOutput message = new HandshakeMessageOutput(HandshakeType.client_key_exchange);`
`1996`		`- this.keyExchange.generateClientKeyExchange(message);`
	`2007`	`+ keyExchange.generateClientKeyExchange(message);`
`1997`	`2008`	`message.send(this);`
`1998`	`2009`	`}`
`1999`	`2010`
Original file line number	Diff line number	Diff line change
`@@ -1121,11 +1121,11 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)`
`1121`	`1121`	`ByteArrayOutputStream endPointHash = new ByteArrayOutputStream();`
`1122`	`1122`	`if (null == serverCredentials)`
`1123`	`1123`	`{`
`1124`		`- this.keyExchange.skipServerCredentials();`
	`1124`	`+ keyExchange.skipServerCredentials();`
`1125`	`1125`	`}`
`1126`	`1126`	`else`
`1127`	`1127`	`{`
`1128`		`- this.keyExchange.processServerCredentials(serverCredentials);`
	`1128`	`+ keyExchange.processServerCredentials(serverCredentials);`
`1129`	`1129`
`1130`	`1130`	`serverCertificate = serverCredentials.getCertificate();`
`1131`	`1131`	`sendCertificateMessage(serverCertificate, endPointHash);`
`@@ -1151,7 +1151,7 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)`
`1151`	`1151`	`}`
`1152`	`1152`	`}`
`1153`	`1153`
`1154`		`- byte[] serverKeyExchange = this.keyExchange.generateServerKeyExchange();`
	`1154`	`+ byte[] serverKeyExchange = keyExchange.generateServerKeyExchange();`
`1155`	`1155`	`if (serverKeyExchange != null)`
`1156`	`1156`	`{`
`1157`	`1157`	`sendServerKeyExchangeMessage(serverKeyExchange);`
`@@ -1181,7 +1181,7 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)`
`1181`	`1181`	`throw new TlsFatalAlert(AlertDescription.internal_error);`
`1182`	`1182`	`}`
`1183`	`1183`
`1184`		`- this.certificateRequest = TlsUtils.validateCertificateRequest(this.certificateRequest, this.keyExchange);`
	`1184`	`+ this.certificateRequest = TlsUtils.validateCertificateRequest(certificateRequest, keyExchange);`
`1185`	`1185`
`1186`	`1186`	`TlsUtils.establishServerSigAlgs(securityParameters, certificateRequest);`
`1187`	`1187`
`@@ -1270,7 +1270,7 @@ protected void handleHandshakeMessage(short type, HandshakeMessageInput buf)`
`1270`	`1270`	`{`
`1271`	`1271`	`if (null == certificateRequest)`
`1272`	`1272`	`{`
`1273`		`- this.keyExchange.skipClientCredentials();`
	`1273`	`+ keyExchange.skipClientCredentials();`
`1274`	`1274`	`}`
`1275`	`1275`	`else if (TlsUtils.isTLSv12(tlsServerContext))`
`1276`	`1276`	`{`
`@@ -1536,6 +1536,8 @@ protected void receiveClientKeyExchangeMessage(ByteArrayInputStream buf)`
`1536`	`1536`	`establishMasterSecret(tlsServerContext, keyExchange);`
`1537`	`1537`	`}`
`1538`	`1538`
	`1539`	`+ this.keyExchange = null;`
	`1540`	`+`
`1539`	`1541`	`recordStream.setPendingCipher(TlsUtils.initCipher(tlsServerContext));`
`1540`	`1542`
`1541`	`1543`	`if (!expectCertificateVerifyMessage())`
Original file line number	Diff line number	Diff line change
`@@ -2,6 +2,8 @@`
`2`	`2`
`3`	`3`	`import java.lang.reflect.Method;`
`4`	`4`
	`5`	`+import org.bouncycastle.tls.ReflectionUtil;`
	`6`	`+`
`5`	`7`	`public class IDNUtil`
`6`	`8`	`{`
`7`	`9`	`public static final int ALLOW_UNASSIGNED;`
Original file line number	Diff line number	Diff line change
`@@ -7,6 +7,8 @@`
`7`	`7`	`import java.security.NoSuchAlgorithmException;`
`8`	`8`	`import java.security.UnrecoverableKeyException;`
`9`	`9`
	`10`	`+import org.bouncycastle.tls.ReflectionUtil;`
	`11`	`+`
`10`	`12`	`abstract class KeyStoreUtil`
`11`	`13`	`{`
`12`	`14`	`private static final Method getProtectionAlgorithm;`
Original file line number	Diff line number	Diff line change
`@@ -5,6 +5,8 @@`
`5`	`5`	`import java.security.cert.X509Certificate;`
`6`	`6`	`import java.util.Map;`
`7`	`7`
	`8`	`+import org.bouncycastle.tls.ReflectionUtil;`
	`9`	`+`
`8`	`10`	`abstract class PKIXUtil`
`9`	`11`	`{`
`10`	`12`	`private static final Class<?> pkixRevocationCheckerClass;`
Original file line number	Diff line number	Diff line change
`@@ -9,6 +9,7 @@`
`9`	`9`	`import org.bouncycastle.jsse.BCExtendedSSLSession;`
`10`	`10`	`import org.bouncycastle.jsse.BCSSLEngine;`
`11`	`11`	`import org.bouncycastle.jsse.BCSSLParameters;`
	`12`	`+import org.bouncycastle.tls.ReflectionUtil;`
`12`	`13`
`13`	`14`	`abstract class SSLEngineUtil`
`14`	`15`	`{`
Original file line number	Diff line number	Diff line change
`@@ -10,6 +10,7 @@`
`10`	`10`	`import org.bouncycastle.jsse.BCSNIServerName;`
`11`	`11`	`import org.bouncycastle.jsse.BCSSLParameters;`
`12`	`12`	`import org.bouncycastle.jsse.java.security.BCAlgorithmConstraints;`
	`13`	`+import org.bouncycastle.tls.ReflectionUtil;`
`13`	`14`
`14`	`15`	`abstract class SSLParametersUtil`
`15`	`16`	`{`