Misc. refactoring in tls

peterdettman · peterdettman · commit b13684aa6652 · 2025-08-25T19:43:41.000+07:00
diff --git a/tls/src/main/java/org/bouncycastle/jsse/provider/ProvTlsServer.java b/tls/src/main/java/org/bouncycastle/jsse/provider/ProvTlsServer.java
@@ -340,12 +340,10 @@ protected boolean selectCipherSuite(int cipherSuite) throws IOException
             }
         }
 
-        boolean result = super.selectCipherSuite(cipherSuite);
-        if (result)
-        {
-            this.credentials = cipherSuiteCredentials;
-        }
-        return result;
+        this.selectedCipherSuite = cipherSuite;
+        this.credentials = cipherSuiteCredentials;
+
+        return true;
     }
 
     @Override
diff --git a/tls/src/main/java/org/bouncycastle/tls/DTLSServerProtocol.java b/tls/src/main/java/org/bouncycastle/tls/DTLSServerProtocol.java
@@ -188,27 +188,27 @@ protected DTLSTransport serverHandshake(ServerHandshakeState state, DTLSRequest
 
         state.keyExchange = TlsUtils.initKeyExchangeServer(serverContext, server);
 
-        state.serverCredentials = null;
+        TlsCredentials serverCredentials = null;
 
         if (!KeyExchangeAlgorithm.isAnonymous(securityParameters.getKeyExchangeAlgorithm()))
         {
-            state.serverCredentials = TlsUtils.establishServerCredentials(server);
+            serverCredentials = TlsUtils.establishServerCredentials(server);
         }
 
         // Server certificate
         {
             Certificate serverCertificate = null;
 
             ByteArrayOutputStream endPointHash = new ByteArrayOutputStream();
-            if (state.serverCredentials == null)
+            if (serverCredentials == null)
             {
                 state.keyExchange.skipServerCredentials();
             }
             else
             {
-                state.keyExchange.processServerCredentials(state.serverCredentials);
+                state.keyExchange.processServerCredentials(serverCredentials);
 
-                serverCertificate = state.serverCredentials.getCertificate();
+                serverCertificate = serverCredentials.getCertificate();
 
                 sendCertificateMessage(serverContext, handshake, serverCertificate, endPointHash);
             }
@@ -237,7 +237,7 @@ protected DTLSTransport serverHandshake(ServerHandshakeState state, DTLSRequest
             handshake.sendMessage(HandshakeType.server_key_exchange, serverKeyExchange);
         }
 
-        if (state.serverCredentials != null)
+        if (serverCredentials != null)
         {
             state.certificateRequest = server.getCertificateRequest();
 
@@ -1026,7 +1026,6 @@ protected static class ServerHandshakeState
         Hashtable serverExtensions = null;
         boolean expectSessionTicket = false;
         TlsKeyExchange keyExchange = null;
-        TlsCredentials serverCredentials = null;
         CertificateRequest certificateRequest = null;
         TlsHeartbeat heartbeat = null;
         short heartbeatPolicy = HeartbeatMode.peer_not_allowed_to_send;
diff --git a/tls/src/main/java/org/bouncycastle/tls/TlsServerProtocol.java b/tls/src/main/java/org/bouncycastle/tls/TlsServerProtocol.java
@@ -1593,7 +1593,7 @@ protected void send13ServerHelloCoda(ServerHello serverHello, boolean afterHello
                     this.connection_state = CS_SERVER_CERTIFICATE_REQUEST;
                 }
             }
-    
+
             TlsCredentialedSigner serverCredentials = TlsUtils.establish13ServerCredentials(tlsServer);
             if (null == serverCredentials)
             {
diff --git a/tls/src/main/java/org/bouncycastle/tls/crypto/impl/TlsAEADCipher.java b/tls/src/main/java/org/bouncycastle/tls/crypto/impl/TlsAEADCipher.java
@@ -436,8 +436,8 @@ private void rekeyCipher(SecurityParameters securityParameters, TlsAEADCipherImp
     private void setup13Cipher(TlsAEADCipherImpl cipher, byte[] nonce, TlsSecret secret, int cryptoHashAlgorithm)
         throws IOException
     {
-        byte[] key = TlsCryptoUtils.hkdfExpandLabel(secret, cryptoHashAlgorithm, "key", TlsUtils.EMPTY_BYTES, keySize).extract();
-        byte[] iv = TlsCryptoUtils.hkdfExpandLabel(secret, cryptoHashAlgorithm, "iv", TlsUtils.EMPTY_BYTES, fixed_iv_length).extract();
+        byte[] key = hkdfExpandLabel(secret, cryptoHashAlgorithm, "key", keySize).extract();
+        byte[] iv = hkdfExpandLabel(secret, cryptoHashAlgorithm, "iv", fixed_iv_length).extract();
 
         cipher.setKey(key, 0, keySize);
         System.arraycopy(iv, 0, nonce, 0, fixed_iv_length);
@@ -458,4 +458,10 @@ private static int getNonceMode(boolean isTLSv13, int aeadType) throws IOExcepti
             throw new TlsFatalAlert(AlertDescription.internal_error);
         }
     }
+
+    private static TlsSecret hkdfExpandLabel(TlsSecret secret, int cryptoHashAlgorithm, String label, int length)
+        throws IOException
+    {
+        return TlsCryptoUtils.hkdfExpandLabel(secret, cryptoHashAlgorithm, label, TlsUtils.EMPTY_BYTES, length);
+    }
 }

Original file line number	Diff line number	Diff line change
`@@ -340,12 +340,10 @@ protected boolean selectCipherSuite(int cipherSuite) throws IOException`
`340`	`340`	`}`
`341`	`341`	`}`
`342`	`342`
`343`		`- boolean result = super.selectCipherSuite(cipherSuite);`
`344`		`- if (result)`
`345`		`- {`
`346`		`- this.credentials = cipherSuiteCredentials;`
`347`		`- }`
`348`		`- return result;`
	`343`	`+ this.selectedCipherSuite = cipherSuite;`
	`344`	`+ this.credentials = cipherSuiteCredentials;`
	`345`	`+`
	`346`	`+ return true;`
`349`	`347`	`}`
`350`	`348`
`351`	`349`	`@Override`
Original file line number	Diff line number	Diff line change
`@@ -188,27 +188,27 @@ protected DTLSTransport serverHandshake(ServerHandshakeState state, DTLSRequest`
`188`	`188`
`189`	`189`	`state.keyExchange = TlsUtils.initKeyExchangeServer(serverContext, server);`
`190`	`190`
`191`		`- state.serverCredentials = null;`
	`191`	`+ TlsCredentials serverCredentials = null;`
`192`	`192`
`193`	`193`	`if (!KeyExchangeAlgorithm.isAnonymous(securityParameters.getKeyExchangeAlgorithm()))`
`194`	`194`	`{`
`195`		`- state.serverCredentials = TlsUtils.establishServerCredentials(server);`
	`195`	`+ serverCredentials = TlsUtils.establishServerCredentials(server);`
`196`	`196`	`}`
`197`	`197`
`198`	`198`	`// Server certificate`
`199`	`199`	`{`
`200`	`200`	`Certificate serverCertificate = null;`
`201`	`201`
`202`	`202`	`ByteArrayOutputStream endPointHash = new ByteArrayOutputStream();`
`203`		`- if (state.serverCredentials == null)`
	`203`	`+ if (serverCredentials == null)`
`204`	`204`	`{`
`205`	`205`	`state.keyExchange.skipServerCredentials();`
`206`	`206`	`}`
`207`	`207`	`else`
`208`	`208`	`{`
`209`		`- state.keyExchange.processServerCredentials(state.serverCredentials);`
	`209`	`+ state.keyExchange.processServerCredentials(serverCredentials);`
`210`	`210`
`211`		`- serverCertificate = state.serverCredentials.getCertificate();`
	`211`	`+ serverCertificate = serverCredentials.getCertificate();`
`212`	`212`
`213`	`213`	`sendCertificateMessage(serverContext, handshake, serverCertificate, endPointHash);`
`214`	`214`	`}`
`@@ -237,7 +237,7 @@ protected DTLSTransport serverHandshake(ServerHandshakeState state, DTLSRequest`
`237`	`237`	`handshake.sendMessage(HandshakeType.server_key_exchange, serverKeyExchange);`
`238`	`238`	`}`
`239`	`239`
`240`		`- if (state.serverCredentials != null)`
	`240`	`+ if (serverCredentials != null)`
`241`	`241`	`{`
`242`	`242`	`state.certificateRequest = server.getCertificateRequest();`
`243`	`243`
`@@ -1026,7 +1026,6 @@ protected static class ServerHandshakeState`
`1026`	`1026`	`Hashtable serverExtensions = null;`
`1027`	`1027`	`boolean expectSessionTicket = false;`
`1028`	`1028`	`TlsKeyExchange keyExchange = null;`
`1029`		`- TlsCredentials serverCredentials = null;`
`1030`	`1029`	`CertificateRequest certificateRequest = null;`
`1031`	`1030`	`TlsHeartbeat heartbeat = null;`
`1032`	`1031`	`short heartbeatPolicy = HeartbeatMode.peer_not_allowed_to_send;`
Original file line number	Diff line number	Diff line change
`@@ -1593,7 +1593,7 @@ protected void send13ServerHelloCoda(ServerHello serverHello, boolean afterHello`
`1593`	`1593`	`this.connection_state = CS_SERVER_CERTIFICATE_REQUEST;`
`1594`	`1594`	`}`
`1595`	`1595`	`}`
`1596`		`-`
	`1596`	`+`
`1597`	`1597`	`TlsCredentialedSigner serverCredentials = TlsUtils.establish13ServerCredentials(tlsServer);`
`1598`	`1598`	`if (null == serverCredentials)`
`1599`	`1599`	`{`
Original file line number	Diff line number	Diff line change
`@@ -436,8 +436,8 @@ private void rekeyCipher(SecurityParameters securityParameters, TlsAEADCipherImp`
`436`	`436`	`private void setup13Cipher(TlsAEADCipherImpl cipher, byte[] nonce, TlsSecret secret, int cryptoHashAlgorithm)`
`437`	`437`	`throws IOException`
`438`	`438`	`{`
`439`		`- byte[] key = TlsCryptoUtils.hkdfExpandLabel(secret, cryptoHashAlgorithm, "key", TlsUtils.EMPTY_BYTES, keySize).extract();`
`440`		`- byte[] iv = TlsCryptoUtils.hkdfExpandLabel(secret, cryptoHashAlgorithm, "iv", TlsUtils.EMPTY_BYTES, fixed_iv_length).extract();`
	`439`	`+ byte[] key = hkdfExpandLabel(secret, cryptoHashAlgorithm, "key", keySize).extract();`
	`440`	`+ byte[] iv = hkdfExpandLabel(secret, cryptoHashAlgorithm, "iv", fixed_iv_length).extract();`
`441`	`441`
`442`	`442`	`cipher.setKey(key, 0, keySize);`
`443`	`443`	`System.arraycopy(iv, 0, nonce, 0, fixed_iv_length);`
`@@ -458,4 +458,10 @@ private static int getNonceMode(boolean isTLSv13, int aeadType) throws IOExcepti`
`458`	`458`	`throw new TlsFatalAlert(AlertDescription.internal_error);`
`459`	`459`	`}`
`460`	`460`	`}`
	`461`	`+`
	`462`	`+ private static TlsSecret hkdfExpandLabel(TlsSecret secret, int cryptoHashAlgorithm, String label, int length)`
	`463`	`+ throws IOException`
	`464`	`+ {`
	`465`	`+ return TlsCryptoUtils.hkdfExpandLabel(secret, cryptoHashAlgorithm, label, TlsUtils.EMPTY_BYTES, length);`
	`466`	`+ }`
`461`	`467`	`}`