1 /* 2 * Copyright (c) 2015, 2019, Oracle and/or its affiliates. All rights reserved. 3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. 4 * 5 * This code is free software; you can redistribute it and/or modify it 6 * under the terms of the GNU General Public License version 2 only, as 7 * published by the Free Software Foundation. 8 * 9 * This code is distributed in the hope that it will be useful, but WITHOUT 10 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or 11 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License 12 * version 2 for more details (a copy is included in the LICENSE file that 13 * accompanied this code). 14 * 15 * You should have received a copy of the GNU General Public License version 16 * 2 along with this work; if not, write to the Free Software Foundation, 17 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. 18 * 19 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA 20 * or visit www.oracle.com if you need additional information or have any 21 * questions. 22 */ 23 24 // SunJSSE does not support dynamic system properties, no way to re-use 25 // system properties in samevm/agentvm mode. 26 27 /* 28 * @test 29 * @bug 8043758 30 * @summary Datagram Transport Layer Security (DTLS) 31 * @modules java.base/sun.security.util 32 * @library /test/lib 33 * @build DTLSOverDatagram 34 * @run main/othervm -Djdk.tls.client.enableStatusRequestExtension=false 35 * NoMacInitialClientHello 36 */ 37 38 import java.net.DatagramPacket; 39 import java.net.SocketAddress; 40 41 /** 42 * Test that a server is able to discard invalid initial ClientHello silently. 43 */ 44 public class NoMacInitialClientHello extends DTLSOverDatagram { 45 boolean needInvalidRecords = true; 46 47 public static void main(String[] args) throws Exception { 48 System.setProperty("jdk.tls.useExtendedMasterSecret", "false"); 49 NoMacInitialClientHello testCase = new NoMacInitialClientHello(); 50 testCase.runTest(testCase); 51 } 52 53 @Override 54 DatagramPacket createHandshakePacket(byte[] ba, SocketAddress socketAddr) { 55 if (needInvalidRecords && (ba.length >= 60) && 56 (ba[0] == (byte)0x16) && (ba[13] == (byte)0x01)) { // ClientHello 57 58 needInvalidRecords = false; 59 System.out.println("invalidate ClientHello message"); 60 if (ba[ba.length - 1] == (byte)0xFF) { 61 ba[ba.length - 1] = (byte)0xFE; 62 } else { 63 ba[ba.length - 1] = (byte)0xFF; 64 } 65 } 66 67 return super.createHandshakePacket(ba, socketAddr); 68 } 69 }