Return an ExtendSSLSession whenever possible to allow more strict checking when using OpenSSL (netty#8281)

Motivation:

When an ExtendedSSLSession is used its possible to do more strict checking of the keys during handshake. We should do this whenever possible.

Modification:

- Return an ExtendedSSLSession when using client-mode and Java7+
- Add unit test
- Simplify unit tests

Result:

More consistent behaviour.

Author: normanmaurer

handler/src/main/java/io/netty/handler/ssl/ExtendedOpenSslSession.java

@@ -0,0 +1,179 @@
+/*
+ * Copyright 2018 The Netty Project
+ *
+ * The Netty Project licenses this file to you under the Apache License,
+ * version 2.0 (the "License"); you may not use this file except in compliance
+ * with the License. You may obtain a copy of the License at:
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+ * License for the specific language governing permissions and limitations
+ * under the License.
+ */
+package io.netty.handler.ssl;
+
+import io.netty.util.internal.EmptyArrays;
+
+import javax.net.ssl.ExtendedSSLSession;
+import javax.net.ssl.SSLException;
+import javax.net.ssl.SSLPeerUnverifiedException;
+import javax.net.ssl.SSLSessionContext;
+import javax.security.cert.X509Certificate;
+import java.security.Principal;
+import java.security.cert.Certificate;
+import java.util.List;
+
+/**
+ * Delegates all operations to a wrapped {@link OpenSslSession} except the methods defined by {@link ExtendedSSLSession}
+ * itself.
+ */
+abstract class ExtendedOpenSslSession extends ExtendedSSLSession implements OpenSslSession {
+
+    // TODO: use OpenSSL API to actually fetch the real data but for now just do what Conscrypt does:
+    // https://github.com/google/conscrypt/blob/1.2.0/common/
+    // src/main/java/org/conscrypt/Java7ExtendedSSLSession.java#L32
+    private static final String[] LOCAL_SUPPORTED_SIGNATURE_ALGORITHMS = {
+            "SHA512withRSA", "SHA512withECDSA", "SHA384withRSA", "SHA384withECDSA", "SHA256withRSA",
+            "SHA256withECDSA", "SHA224withRSA", "SHA224withECDSA", "SHA1withRSA", "SHA1withECDSA",
+    };
+
+    private final OpenSslSession wrapped;
+
+    ExtendedOpenSslSession(OpenSslSession wrapped) {
+        assert !(wrapped instanceof ExtendedSSLSession);
+        this.wrapped = wrapped;
+    }
+
+    // Use rawtypes an unchecked override to be able to also work on java7.
+    @SuppressWarnings({ "unchecked", "rawtypes" })
+    public abstract List getRequestedServerNames();
+
+    @Override
+    public void handshakeFinished() throws SSLException {
+        wrapped.handshakeFinished();
+    }
+
+    @Override
+    public void tryExpandApplicationBufferSize(int packetLengthDataOnly) {
+        wrapped.tryExpandApplicationBufferSize(packetLengthDataOnly);
+    }
+
+    @Override
+    public String[] getLocalSupportedSignatureAlgorithms() {
+        return LOCAL_SUPPORTED_SIGNATURE_ALGORITHMS.clone();
+    }
+
+    @Override
+    public String[] getPeerSupportedSignatureAlgorithms() {
+        // Always return empty for now.
+        return EmptyArrays.EMPTY_STRINGS;
+    }
+
+    @Override
+    public byte[] getId() {
+        return wrapped.getId();
+    }
+
+    @Override
+    public SSLSessionContext getSessionContext() {
+        return wrapped.getSessionContext();
+    }
+
+    @Override
+    public long getCreationTime() {
+        return wrapped.getCreationTime();
+    }
+
+    @Override
+    public long getLastAccessedTime() {
+        return wrapped.getLastAccessedTime();
+    }
+
+    @Override
+    public void invalidate() {
+        wrapped.invalidate();
+    }
+
+    @Override
+    public boolean isValid() {
+        return wrapped.isValid();
+    }
+
+    @Override
+    public void putValue(String s, Object o) {
+        wrapped.putValue(s, o);
+    }
+
+    @Override
+    public Object getValue(String s) {
+        return wrapped.getValue(s);
+    }
+
+    @Override
+    public void removeValue(String s) {
+        wrapped.removeValue(s);
+    }
+
+    @Override
+    public String[] getValueNames() {
+        return wrapped.getValueNames();
+    }
+
+    @Override
+    public Certificate[] getPeerCertificates() throws SSLPeerUnverifiedException {
+        return wrapped.getPeerCertificates();
+    }
+
+    @Override
+    public Certificate[] getLocalCertificates() {
+        return wrapped.getLocalCertificates();
+    }
+
+    @Override
+    public X509Certificate[] getPeerCertificateChain() throws SSLPeerUnverifiedException {
+        return wrapped.getPeerCertificateChain();
+    }
+
+    @Override
+    public Principal getPeerPrincipal() throws SSLPeerUnverifiedException {
+        return wrapped.getPeerPrincipal();
+    }
+
+    @Override
+    public Principal getLocalPrincipal() {
+        return wrapped.getLocalPrincipal();
+    }
+
+    @Override
+    public String getCipherSuite() {
+        return wrapped.getCipherSuite();
+    }
+
+    @Override
+    public String getProtocol() {
+        return wrapped.getProtocol();
+    }
+
+    @Override
+    public String getPeerHost() {
+        return wrapped.getPeerHost();
+    }
+
+    @Override
+    public int getPeerPort() {
+        return wrapped.getPeerPort();
+    }
+
+    @Override
+    public int getPacketBufferSize() {
+        return wrapped.getPacketBufferSize();
+    }
+
+    @Override
+    public int getApplicationBufferSize() {
+        return wrapped.getApplicationBufferSize();
+    }
+}

handler/src/main/java/io/netty/handler/ssl/Java8SslUtils.java

@@ -48,11 +48,18 @@ static List<String> getSniHostNames(SSLParameters sslParameters) {
     }
 
     static void setSniHostNames(SSLParameters sslParameters, List<String> names) {
+        sslParameters.setServerNames(getSniHostNames(names));
+    }
+
+    static List getSniHostNames(List<String> names) {
+        if (names == null || names.isEmpty()) {
+            return Collections.emptyList();
+        }
         List<SNIServerName> sniServerNames = new ArrayList<SNIServerName>(names.size());
         for (String name: names) {
             sniServerNames.add(new SNIHostName(name));
         }
-        sslParameters.setServerNames(sniServerNames);
+        return sniServerNames;
     }
 
     static boolean getUseCipherSuitesOrder(SSLParameters sslParameters) {

handler/src/main/java/io/netty/handler/ssl/OpenSslSession.java

@@ -0,0 +1,36 @@
+/*
+ * Copyright 2018 The Netty Project
+ *
+ * The Netty Project licenses this file to you under the Apache License,
+ * version 2.0 (the "License"); you may not use this file except in compliance
+ * with the License. You may obtain a copy of the License at:
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+ * License for the specific language governing permissions and limitations
+ * under the License.
+ */
+package io.netty.handler.ssl;
+
+import javax.net.ssl.SSLException;
+import javax.net.ssl.SSLSession;
+
+interface OpenSslSession extends SSLSession {
+
+    /**
+     * Finish the handshake and so init everything in the {@link OpenSslSession} that should be accessible by
+     * the user.
+     */
+    void handshakeFinished() throws SSLException;
+
+    /**
+     * Expand (or increase) the value returned by {@link #getApplicationBufferSize()} if necessary.
+     * <p>
+     * This is only called in a synchronized block, so no need to use atomic operations.
+     * @param packetLengthDataOnly The packet size which exceeds the current {@link #getApplicationBufferSize()}.
+     */
+    void tryExpandApplicationBufferSize(int packetLengthDataOnly);
+}

handler/src/main/java/io/netty/handler/ssl/ReferenceCountedOpenSslEngine.java

@@ -244,8 +244,17 @@ protected void deallocate() {
         OpenSsl.ensureAvailability();
         this.alloc = checkNotNull(alloc, "alloc");
         apn = (OpenSslApplicationProtocolNegotiator) context.applicationProtocolNegotiator();
-        session = new OpenSslSession(context.sessionContext());
         clientMode = context.isClient();
+        if (PlatformDependent.javaVersion() >= 7 && context.isClient()) {
+            session = new ExtendedOpenSslSession(new DefaultOpenSslSession(context.sessionContext())) {
+                @Override
+                public List getRequestedServerNames() {
+                    return Java8SslUtils.getSniHostNames(sniHostNames);
+                }
+            };
+        } else {
+            session = new DefaultOpenSslSession(context.sessionContext());
+        }
         engineMap = context.engineMap;
         localCerts = context.keyCertChain;
         keyMaterialManager = context.keyMaterialManager();
@@ -1839,7 +1848,7 @@ private static long bufferAddress(ByteBuffer b) {
         return Buffer.address(b);
     }
 
-    private final class OpenSslSession implements SSLSession {
+    private final class DefaultOpenSslSession implements OpenSslSession  {
         private final OpenSslSessionContext sessionContext;
 
         // These are guarded by synchronized(OpenSslEngine.this) as handshakeFinished() may be triggered by any
@@ -1855,10 +1864,14 @@ private final class OpenSslSession implements SSLSession {
         // lazy init for memory reasons
         private Map<String, Object> values;
 
-        OpenSslSession(OpenSslSessionContext sessionContext) {
+        DefaultOpenSslSession(OpenSslSessionContext sessionContext) {
             this.sessionContext = sessionContext;
         }
 
+        private SSLSessionBindingEvent newSSLSessionBindingEvent(String name) {
+            return new SSLSessionBindingEvent(session, name);
+        }
+
         @Override
         public byte[] getId() {
             synchronized (ReferenceCountedOpenSslEngine.this) {
@@ -1925,7 +1938,8 @@ public void putValue(String name, Object value) {
             }
             Object old = values.put(name, value);
             if (value instanceof SSLSessionBindingListener) {
-                ((SSLSessionBindingListener) value).valueBound(new SSLSessionBindingEvent(this, name));
+                // Use newSSLSessionBindingEvent so we alway use the wrapper if needed.
+                ((SSLSessionBindingListener) value).valueBound(newSSLSessionBindingEvent(name));
             }
             notifyUnbound(old, name);
         }
@@ -1965,15 +1979,17 @@ public String[] getValueNames() {
 
         private void notifyUnbound(Object value, String name) {
             if (value instanceof SSLSessionBindingListener) {
-                ((SSLSessionBindingListener) value).valueUnbound(new SSLSessionBindingEvent(this, name));
+                // Use newSSLSessionBindingEvent so we alway use the wrapper if needed.
+                ((SSLSessionBindingListener) value).valueUnbound(newSSLSessionBindingEvent(name));
             }
         }
 
         /**
          * Finish the handshake and so init everything in the {@link OpenSslSession} that should be accessible by
          * the user.
          */
-        void handshakeFinished() throws SSLException {
+        @Override
+        public void handshakeFinished() throws SSLException {
             synchronized (ReferenceCountedOpenSslEngine.this) {
                 if (!isDestroyed()) {
                     id = SSL.getSessionId(ssl);
@@ -2191,13 +2207,8 @@ public int getApplicationBufferSize() {
             return applicationBufferSize;
         }
 
-        /**
-         * Expand (or increase) the value returned by {@link #getApplicationBufferSize()} if necessary.
-         * <p>
-         * This is only called in a synchronized block, so no need to use atomic operations.
-         * @param packetLengthDataOnly The packet size which exceeds the current {@link #getApplicationBufferSize()}.
-         */
-        void tryExpandApplicationBufferSize(int packetLengthDataOnly) {
+        @Override
+        public void tryExpandApplicationBufferSize(int packetLengthDataOnly) {
             if (packetLengthDataOnly > MAX_PLAINTEXT_LENGTH && applicationBufferSize != MAX_RECORD_SIZE) {
                 applicationBufferSize = MAX_RECORD_SIZE;
             }