8229728: Implement negotiation parameters

Reviewed-by: jnimeh, ahgross, rhalade
2025-08-28 15:24:43 +02:00 · 2019-09-10 17:13:48 -07:00 · 2019-09-10 17:13:48 -07:00 · 10b010d0f5
commit 10b010d0f5
parent 6cb8dfa9e3
1 changed files with 9 additions and 0 deletions
--- a/src/java.base/share/classes/sun/security/ssl/ClientHello.java
+++ b/src/java.base/share/classes/sun/security/ssl/ClientHello.java
@ -1140,6 +1140,15 @@ final class ClientHello {
            ServerHandshakeContext shc = (ServerHandshakeContext)context;
            ClientHelloMessage clientHello = (ClientHelloMessage)message;

+            // [RFC 8446] TLS 1.3 forbids renegotiation. If a server has
+            // negotiated TLS 1.3 and receives a ClientHello at any other
+            // time, it MUST terminate the connection with an
+            // "unexpected_message" alert.
+            if (shc.conContext.isNegotiated) {
+                throw shc.conContext.fatal(Alert.UNEXPECTED_MESSAGE,
+                        "Received unexpected renegotiation handshake message");
+            }
+
            // The client may send a dummy change_cipher_spec record
            // immediately after the first ClientHello.
            shc.conContext.consumers.putIfAbsent(