8303809: Dispose context in SPNEGO NegotiatorImpl

Alexey Bakhtin · Alexey Bakhtin · commit 10f16746254c · 2023-03-14T16:41:09.000Z
Reviewed-by: dfuchs, weijun
diff --git a/src/java.base/share/classes/sun/net/www/protocol/http/AuthenticationInfo.java b/src/java.base/share/classes/sun/net/www/protocol/http/AuthenticationInfo.java
@@ -519,4 +519,13 @@ private synchronized void writeObject(java.io.ObjectOutputStream s)
         s2 = new String (pw.getPassword());
         s.defaultWriteObject ();
     }
+
+    /**
+     * Releases any system or cryptographic resources.
+     * It is up to implementors to override disposeContext()
+     * to take necessary action.
+     */
+    public void disposeContext() {
+        // do nothing
+    }
 }
diff --git a/src/java.base/share/classes/sun/net/www/protocol/http/HttpURLConnection.java b/src/java.base/share/classes/sun/net/www/protocol/http/HttpURLConnection.java
@@ -2009,6 +2009,12 @@ private InputStream getInputStream0() throws IOException {
             if (serverAuthKey != null) {
                 AuthenticationInfo.endAuthRequest(serverAuthKey);
             }
+            if (proxyAuthentication != null) {
+                proxyAuthentication.disposeContext();
+            }
+            if (serverAuthentication != null) {
+                serverAuthentication.disposeContext();
+            }
         }
     }
 
@@ -2252,6 +2258,9 @@ private void doTunneling0() throws IOException {
             if (proxyAuthKey != null) {
                 AuthenticationInfo.endAuthRequest(proxyAuthKey);
             }
+            if (proxyAuthentication != null) {
+                proxyAuthentication.disposeContext();
+            }
         }
 
         // restore original request headers
@@ -2502,6 +2511,7 @@ public InetAddress run()
             }
             if (ret != null) {
                 if (!ret.setHeaders(this, p, raw)) {
+                    ret.disposeContext();
                     ret = null;
                 }
             }
@@ -2674,6 +2684,7 @@ private AuthenticationInfo getServerAuthentication(AuthenticationHeader authhdr)
 
             if (ret != null ) {
                 if (!ret.setHeaders(this, p, raw)) {
+                    ret.disposeContext();
                     ret = null;
                 }
             }
@@ -2700,6 +2711,7 @@ private void checkResponseCredentials (boolean inClose) throws IOException {
                     DigestAuthentication da = (DigestAuthentication)
                         currentProxyCredentials;
                     da.checkResponse (raw, method, getRequestURI());
+                    currentProxyCredentials.disposeContext();
                     currentProxyCredentials = null;
                 }
             }
@@ -2710,6 +2722,7 @@ private void checkResponseCredentials (boolean inClose) throws IOException {
                     DigestAuthentication da = (DigestAuthentication)
                         currentServerCredentials;
                     da.checkResponse (raw, method, url);
+                    currentServerCredentials.disposeContext();
                     currentServerCredentials = null;
                 }
             }
diff --git a/src/java.base/share/classes/sun/net/www/protocol/http/NegotiateAuthentication.java b/src/java.base/share/classes/sun/net/www/protocol/http/NegotiateAuthentication.java
@@ -242,6 +242,22 @@ private byte[] nextToken(byte[] token) throws IOException {
         return negotiator.nextToken(token);
     }
 
+    /**
+     * Releases any system resources and cryptographic information stored in
+     * the context object and invalidates the context.
+     */
+    @Override
+    public void disposeContext() {
+        if (negotiator != null) {
+            try {
+                negotiator.disposeContext();
+            } catch (IOException ioEx) {
+                //do not rethrow IOException
+            }
+            negotiator = null;
+        }
+    }
+
     // MS will send a final WWW-Authenticate even if the status is already
     // 200 OK. The token can be fed into initSecContext() again to determine
     // if the server can be trusted. This is not the same concept as Digest's
diff --git a/src/java.base/share/classes/sun/net/www/protocol/http/Negotiator.java b/src/java.base/share/classes/sun/net/www/protocol/http/Negotiator.java
@@ -82,5 +82,7 @@ private static void finest(Exception e) {
             logger.finest("NegotiateAuthentication: " + e);
         }
     }
+
+    public void disposeContext() throws IOException { };
 }
 
diff --git a/src/java.security.jgss/share/classes/sun/net/www/protocol/http/spnego/NegotiatorImpl.java b/src/java.security.jgss/share/classes/sun/net/www/protocol/http/spnego/NegotiatorImpl.java
@@ -127,6 +127,11 @@ public NegotiatorImpl(HttpCallerInfo hci) throws IOException {
                         "fallback to other scheme if allowed. Reason:");
                 e.printStackTrace();
             }
+            try {
+                disposeContext();
+            } catch (Exception ex) {
+                //dispose context silently
+            }
             throw new IOException("Negotiate support not initiated", e);
         }
     }
@@ -149,6 +154,9 @@ public byte[] firstToken() {
     @Override
     public byte[] nextToken(byte[] token) throws IOException {
         try {
+            if (context == null) {
+                throw new IOException("Negotiate support cannot continue. Context is invalidated");
+            }
             return context.initSecContext(token, 0, token.length);
         } catch (GSSException e) {
             if (DEBUG) {
@@ -158,4 +166,26 @@ public byte[] nextToken(byte[] token) throws IOException {
             throw new IOException("Negotiate support cannot continue", e);
         }
     }
+
+    /**
+     * Releases any system resources and cryptographic information stored in
+     * the context object and invalidates the context.
+     *
+     * @throws IOException containing a reason of failure in the cause
+     */
+    @Override
+    public void disposeContext() throws IOException {
+        try {
+            if (context != null) {
+                context.dispose();
+            }
+        } catch (GSSException e) {
+            if (DEBUG) {
+                System.out.println("Cannot release resources. Reason:");
+                e.printStackTrace();
+            }
+            throw new IOException("Cannot release resources", e);
+        };
+        context = null;
+    }
 }

Original file line number	Diff line number	Diff line change
`@@ -519,4 +519,13 @@ private synchronized void writeObject(java.io.ObjectOutputStream s)`
`519`	`519`	`s2 = new String (pw.getPassword());`
`520`	`520`	`s.defaultWriteObject ();`
`521`	`521`	`}`
	`522`	`+`
	`523`	`+ /**`
	`524`	`+ * Releases any system or cryptographic resources.`
	`525`	`+ * It is up to implementors to override disposeContext()`
	`526`	`+ * to take necessary action.`
	`527`	`+ */`
	`528`	`+ public void disposeContext() {`
	`529`	`+ // do nothing`
	`530`	`+ }`
`522`	`531`	`}`
Original file line number	Diff line number	Diff line change
`@@ -2009,6 +2009,12 @@ private InputStream getInputStream0() throws IOException {`
`2009`	`2009`	`if (serverAuthKey != null) {`
`2010`	`2010`	`AuthenticationInfo.endAuthRequest(serverAuthKey);`
`2011`	`2011`	`}`
	`2012`	`+ if (proxyAuthentication != null) {`
	`2013`	`+ proxyAuthentication.disposeContext();`
	`2014`	`+ }`
	`2015`	`+ if (serverAuthentication != null) {`
	`2016`	`+ serverAuthentication.disposeContext();`
	`2017`	`+ }`
`2012`	`2018`	`}`
`2013`	`2019`	`}`
`2014`	`2020`
`@@ -2252,6 +2258,9 @@ private void doTunneling0() throws IOException {`
`2252`	`2258`	`if (proxyAuthKey != null) {`
`2253`	`2259`	`AuthenticationInfo.endAuthRequest(proxyAuthKey);`
`2254`	`2260`	`}`
	`2261`	`+ if (proxyAuthentication != null) {`
	`2262`	`+ proxyAuthentication.disposeContext();`
	`2263`	`+ }`
`2255`	`2264`	`}`
`2256`	`2265`
`2257`	`2266`	`// restore original request headers`
`@@ -2502,6 +2511,7 @@ public InetAddress run()`
`2502`	`2511`	`}`
`2503`	`2512`	`if (ret != null) {`
`2504`	`2513`	`if (!ret.setHeaders(this, p, raw)) {`
	`2514`	`+ ret.disposeContext();`
`2505`	`2515`	`ret = null;`
`2506`	`2516`	`}`
`2507`	`2517`	`}`
`@@ -2674,6 +2684,7 @@ private AuthenticationInfo getServerAuthentication(AuthenticationHeader authhdr)`
`2674`	`2684`
`2675`	`2685`	`if (ret != null ) {`
`2676`	`2686`	`if (!ret.setHeaders(this, p, raw)) {`
	`2687`	`+ ret.disposeContext();`
`2677`	`2688`	`ret = null;`
`2678`	`2689`	`}`
`2679`	`2690`	`}`
`@@ -2700,6 +2711,7 @@ private void checkResponseCredentials (boolean inClose) throws IOException {`
`2700`	`2711`	`DigestAuthentication da = (DigestAuthentication)`
`2701`	`2712`	`currentProxyCredentials;`
`2702`	`2713`	`da.checkResponse (raw, method, getRequestURI());`
	`2714`	`+ currentProxyCredentials.disposeContext();`
`2703`	`2715`	`currentProxyCredentials = null;`
`2704`	`2716`	`}`
`2705`	`2717`	`}`
`@@ -2710,6 +2722,7 @@ private void checkResponseCredentials (boolean inClose) throws IOException {`
`2710`	`2722`	`DigestAuthentication da = (DigestAuthentication)`
`2711`	`2723`	`currentServerCredentials;`
`2712`	`2724`	`da.checkResponse (raw, method, url);`
	`2725`	`+ currentServerCredentials.disposeContext();`
`2713`	`2726`	`currentServerCredentials = null;`
`2714`	`2727`	`}`
`2715`	`2728`	`}`
Original file line number	Diff line number	Diff line change
`@@ -82,5 +82,7 @@ private static void finest(Exception e) {`
`82`	`82`	`logger.finest("NegotiateAuthentication: " + e);`
`83`	`83`	`}`
`84`	`84`	`}`
	`85`	`+`
	`86`	`+ public void disposeContext() throws IOException { };`
`85`	`87`	`}`
`86`	`88`