Fixes #5204 - SNI does not work with PKIX.

Updates after review.

Signed-off-by: Simone Bordet <simone.bordet@gmail.com>

jetty-util/src/main/java/org/eclipse/jetty/util/ssl/SniX509ExtendedKeyManager.java

@@ -28,6 +28,7 @@ import java.util.Collections;
 import java.util.LinkedHashMap;
 import java.util.Map;
 import java.util.Objects;
+import java.util.function.UnaryOperator;
 import java.util.stream.Collectors;
 import javax.net.ssl.SNIMatcher;
 import javax.net.ssl.SSLEngine;
@@ -51,6 +52,7 @@ public class SniX509ExtendedKeyManager extends X509ExtendedKeyManager
 
     private final X509ExtendedKeyManager _delegate;
     private final SslContextFactory.Server _sslContextFactory;
+    private UnaryOperator<String> _aliasMapper = UnaryOperator.identity();
 
     /**
      * @deprecated not supported, you must have a {@link SslContextFactory.Server} for this to work.
@@ -67,6 +69,38 @@ public class SniX509ExtendedKeyManager extends X509ExtendedKeyManager
         _sslContextFactory = Objects.requireNonNull(sslContextFactory, "SslContextFactory.Server must be provided");
     }
 
+    /**
+     * @return the function that transforms the alias
+     * @see #setAliasMapper(UnaryOperator)
+     */
+    public UnaryOperator<String> getAliasMapper()
+    {
+        return _aliasMapper;
+    }
+
+    /**
+     * <p>Sets a function that transforms the alias into a possibly different alias,
+     * invoked when the SNI logic must choose the alias to pick the right certificate.</p>
+     * <p>This function is required when using the
+     * {@link SslContextFactory.Server#setKeyManagerFactoryAlgorithm(String) PKIX KeyManagerFactory algorithm}
+     * which suffers from bug https://bugs.openjdk.java.net/browse/JDK-8246262,
+     * where aliases are returned by the OpenJDK implementation to the application
+     * in the form {@code N.0.alias} where {@code N} is an always increasing number.
+     * Such mangled aliases won't match the aliases in the keystore, so that for
+     * example SNI matching will always fail.</p>
+     * <p>Other implementations such as BouncyCastle have been reported to mangle
+     * the alias in a different way, namely {@code 0.alias.N}.</p>
+     * <p>This function allows to "unmangle" the alias from the implementation
+     * specific mangling back to just {@code alias} so that SNI matching will work
+     * again.</p>
+     *
+     * @param aliasMapper the function that transforms the alias
+     */
+    public void setAliasMapper(UnaryOperator<String> aliasMapper)
+    {
+        _aliasMapper = Objects.requireNonNull(aliasMapper);
+    }
+
     @Override
     public String chooseClientAlias(String[] keyType, Principal[] issuers, Socket socket)
     {
@@ -82,14 +116,14 @@ public class SniX509ExtendedKeyManager extends X509ExtendedKeyManager
     protected String chooseServerAlias(String keyType, Principal[] issuers, Collection<SNIMatcher> matchers, SSLSession session)
     {
         // Look for the aliases that are suitable for the keyType and issuers.
-        String[] aliases = _delegate.getServerAliases(keyType, issuers);
-        if (aliases == null || aliases.length == 0)
+        String[] mangledAliases = _delegate.getServerAliases(keyType, issuers);
+        if (mangledAliases == null || mangledAliases.length == 0)
             return null;
 
         // Apply the alias mapping, keeping the alias order.
         Map<String, String> aliasMap = new LinkedHashMap<>();
-        Arrays.stream(aliases)
-            .forEach(alias -> aliasMap.put(_sslContextFactory.getAliasMapper().apply(alias), alias));
+        Arrays.stream(mangledAliases)
+            .forEach(alias -> aliasMap.put(getAliasMapper().apply(alias), alias));
 
         // Find our SNIMatcher.  There should only be one and it always matches (always returns true
         // from AliasSNIMatcher.matches), but it will capture the SNI Host if one was presented.
@@ -115,8 +149,9 @@ public class SniX509ExtendedKeyManager extends X509ExtendedKeyManager
             String alias = sniSelector.sniSelect(keyType, issuers, session, host, certificates);
 
             // Check the selected alias.
-            if (alias != null && alias != SniSelector.DELEGATE)
-            {
+            if (alias == null || alias == SniSelector.DELEGATE)
+                return alias;
+
             // Make sure we got back an alias from the acceptable aliases.
             X509 x509 = _sslContextFactory.getX509(alias);
             if (!aliasMap.containsKey(alias) || x509 == null)
@@ -131,12 +166,11 @@ public class SniX509ExtendedKeyManager extends X509ExtendedKeyManager
 
             // Convert the selected alias back to the original
             // value before the alias mapping performed above.
-                alias = aliasMap.get(alias);
+            String mangledAlias = aliasMap.get(alias);
 
             if (LOG.isDebugEnabled())
-                    LOG.debug("Matched SNI {} with alias {}, certificate {} from aliases {}", host, alias, x509, aliasMap.keySet());
-            }
-            return alias;
+                LOG.debug("Matched SNI {} with alias {}, certificate {} from aliases {}", host, mangledAlias, x509, aliasMap.keySet());
+            return mangledAlias;
         }
         catch (Throwable x)
         {

jetty-util/src/main/java/org/eclipse/jetty/util/ssl/SslContextFactory.java

@@ -54,7 +54,6 @@ import java.util.Map;
 import java.util.Objects;
 import java.util.Set;
 import java.util.function.Consumer;
-import java.util.function.UnaryOperator;
 import java.util.regex.Matcher;
 import java.util.regex.Pattern;
 import javax.net.ssl.CertPathTrustManagerParameters;
@@ -2207,7 +2206,6 @@ public class SslContextFactory extends AbstractLifeCycle implements Dumpable
     {
         private boolean _sniRequired;
         private SniX509ExtendedKeyManager.SniSelector _sniSelector;
-        private UnaryOperator<String> _aliasMapper = UnaryOperator.identity();
 
         public Server()
         {
@@ -2318,38 +2316,6 @@ public class SslContextFactory extends AbstractLifeCycle implements Dumpable
         {
             return new SniX509ExtendedKeyManager(keyManager, this);
         }
-
-        /**
-         * @return the function that transforms the alias
-         * @see #setAliasMapper(UnaryOperator)
-         */
-        public UnaryOperator<String> getAliasMapper()
-        {
-            return _aliasMapper;
-        }
-
-        /**
-         * <p>Sets a function that transforms the alias into a possibly different alias,
-         * invoked when the SNI logic must choose the alias to pick the right certificate.</p>
-         * <p>This function is required when using the
-         * {@link #setKeyManagerFactoryAlgorithm(String) PKIX KeyManagerFactory algorithm}
-         * which suffers from bug https://bugs.openjdk.java.net/browse/JDK-8246262,
-         * where aliases are returned by the OpenJDK implementation to the application
-         * in the form {@code N.0.alias} where {@code N} is an always increasing number.
-         * Such mangled aliases won't match the aliases in the keystore, so that for
-         * example SNI matching will always fail.</p>
-         * <p>Other implementations such as BouncyCastle have been reported to mangle
-         * the alias in a different way, namely {@code 0.alias.N}.</p>
-         * <p>This function allows to "unmangle" the alias from the implementation
-         * specific mangling back to just {@code alias} so that SNI matching will work
-         * again.</p>
-         *
-         * @param aliasMapper the function that transforms the alias
-         */
-        public void setAliasMapper(UnaryOperator<String> aliasMapper)
-        {
-            _aliasMapper = Objects.requireNonNull(aliasMapper);
-        }
     }
 
     /**

jetty-util/src/test/java/org/eclipse/jetty/util/ssl/SslContextFactoryTest.java

@@ -39,6 +39,7 @@ import javax.net.ssl.SSLEngine;
 import javax.net.ssl.SSLParameters;
 import javax.net.ssl.SSLServerSocket;
 import javax.net.ssl.SSLSocket;
+import javax.net.ssl.X509ExtendedKeyManager;
 
 import org.eclipse.jetty.util.IO;
 import org.eclipse.jetty.util.component.AbstractLifeCycle;
@@ -381,13 +382,13 @@ public class SslContextFactoryTest
     @Test
     public void testSNIWithPKIX() throws Exception
     {
-        SslContextFactory.Server serverTLS = new SslContextFactory.Server();
-        // This test requires a SNI keystore so that the X509ExtendedKeyManager is wrapped.
-        serverTLS.setKeyStoreResource(Resource.newSystemResource("keystore_sni.p12"));
-        serverTLS.setKeyStorePassword("storepwd");
-        serverTLS.setKeyManagerPassword("keypwd");
-        serverTLS.setKeyManagerFactoryAlgorithm("PKIX");
-        serverTLS.setAliasMapper(alias ->
+        SslContextFactory.Server serverTLS = new SslContextFactory.Server()
+        {
+            @Override
+            protected X509ExtendedKeyManager newSniX509ExtendedKeyManager(X509ExtendedKeyManager keyManager)
+            {
+                SniX509ExtendedKeyManager result = new SniX509ExtendedKeyManager(keyManager, this);
+                result.setAliasMapper(alias ->
                 {
                     // Workaround for https://bugs.openjdk.java.net/browse/JDK-8246262.
                     Matcher matcher = Pattern.compile(".*\\..*\\.(.*)").matcher(alias);
@@ -395,6 +396,14 @@ public class SslContextFactoryTest
                         return matcher.group(1);
                     return alias;
                 });
+                return result;
+            }
+        };
+        // This test requires a SNI keystore so that the X509ExtendedKeyManager is wrapped.
+        serverTLS.setKeyStoreResource(Resource.newSystemResource("keystore_sni.p12"));
+        serverTLS.setKeyStorePassword("storepwd");
+        serverTLS.setKeyManagerPassword("keypwd");
+        serverTLS.setKeyManagerFactoryAlgorithm("PKIX");
         // Don't pick a default certificate if SNI does not match.
         serverTLS.setSniRequired(true);
         serverTLS.start();