1 /* 2 * Copyright (c) 1996, 2016, Oracle and/or its affiliates. All rights reserved. 3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. 4 * 5 * This code is free software; you can redistribute it and/or modify it 6 * under the terms of the GNU General Public License version 2 only, as 7 * published by the Free Software Foundation. Oracle designates this 8 * particular file as subject to the "Classpath" exception as provided 9 * by Oracle in the LICENSE file that accompanied this code. 10 * 11 * This code is distributed in the hope that it will be useful, but WITHOUT 12 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or 13 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License 14 * version 2 for more details (a copy is included in the LICENSE file that 15 * accompanied this code). 16 * 17 * You should have received a copy of the GNU General Public License version 18 * 2 along with this work; if not, write to the Free Software Foundation, 19 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. 20 * 21 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA 22 * or visit www.oracle.com if you need additional information or have any 23 * questions. 24 */ 25 26 package sun.security.ssl; 27 28 /** 29 * DTLS record 30 */ 31 interface DTLSRecord extends Record { 32 33 static final int headerSize = 13; // DTLS record header 34 35 static final int handshakeHeaderSize = 12; // DTLS handshake header 36 37 /* 38 * The size of the header plus the max IV length 39 */ 40 static final int headerPlusMaxIVSize = 41 headerSize // header 42 + maxIVLength; // iv 43 44 /* 45 * The maximum size that may be increased when translating plaintext to 46 * ciphertext fragment. 47 */ 48 static final int maxPlaintextPlusSize = 49 headerSize // header 50 + maxIVLength // iv 51 + maxMacSize // MAC or AEAD tag 52 + maxPadding; // block cipher padding 53 54 /* 55 * the maximum record size 56 */ 57 static final int maxRecordSize = 58 headerPlusMaxIVSize // header + iv 59 + maxDataSize // data 60 + maxPadding // padding 61 + maxMacSize; // MAC or AEAD tag 62 63 /* 64 * For CBC protection in SSL3/TLS1, we break some plaintext into two 65 * packets. Max application data size for the second packet. 66 */ 67 static final int maxDataSizeMinusOneByteRecord = 68 maxDataSize // max data size 69 - ( // max one byte record size 70 headerPlusMaxIVSize // header + iv 71 + 1 // one byte data 72 + maxPadding // padding 73 + maxMacSize // MAC 74 ); 75 76 /* 77 * Maximum record size for alert and change cipher spec records. 78 * They only contain 2 and 1 bytes of data, respectively. 79 * Allocate a smaller array. 80 */ 81 static final int maxAlertRecordSize = 82 headerPlusMaxIVSize // header + iv 83 + 2 // alert 84 + maxPadding // padding 85 + maxMacSize; // MAC 86 87 /* 88 * Minimum record size of Certificate handshake message. 89 * Client sends a certificate message containing no certificates if no 90 * suitable certificate is available. That is, the certificate_list 91 * structure has a length of zero. 92 * 93 * struct { 94 * ASN.1Cert certificate_list<0..2^24-1>; 95 * } Certificate; 96 */ 97 static final int minCertPlaintextSize = 98 headerSize // record header 99 + handshakeHeaderSize // handshake header 100 + 3; // cert list length 101 }