NPE in SupportedGroupsExtension

Thomas Lußnig openjdk at suche.org
Sun Sep 9 21:44:31 UTC 2018 

Hi,

i found another bug with firefox nigthly "64.0a1 (2018-09-08) (64-bit)" 
and "OpenJDK Runtime Environment 18.9 (build 11+28)".
It is not possible to establish an connection. The exception i receive 
is "pre_shared_key key extension is offered without a 
psk_key_exchange_modes extension".
If there is an PSK without an matching extension this should not kill 
the connection i think. Nearly all other server accept this.

Gruß Thomas Lußnig

javax.net.ssl.SSLHandshakeException: pre_shared_key key extension is 
offered without a psk_key_exchange_modes extension

     at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:128)
     at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:117)
     at 
java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:308)
     at 
java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:264)
     at 
java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:255)
     at 
java.base/sun.security.ssl.PskKeyExchangeModesExtension$PskKeyExchangeModesOnTradeAbsence.absent(PskKeyExchangeModesExtension.java:327)
     at 
java.base/sun.security.ssl.SSLExtension.absentOnTrade(SSLExtension.java:572)
     at 
java.base/sun.security.ssl.SSLExtensions.consumeOnTrade(SSLExtensions.java:180)
     at 
java.base/sun.security.ssl.ServerHello$T13ServerHelloProducer.produce(ServerHello.java:522)
     at 
java.base/sun.security.ssl.SSLHandshake.produce(SSLHandshake.java:436)
     at 
java.base/sun.security.ssl.ClientHello$T13ClientHelloConsumer.goServerHello(ClientHello.java:1189)
     at 
java.base/sun.security.ssl.ClientHello$T13ClientHelloConsumer.consume(ClientHello.java:1125)
     at 
java.base/sun.security.ssl.ClientHello$ClientHelloConsumer.onClientHello(ClientHello.java:831)
     at 
java.base/sun.security.ssl.ClientHello$ClientHelloConsumer.consume(ClientHello.java:792)
     at 
java.base/sun.security.ssl.SSLHandshake.consume(SSLHandshake.java:392)
     at 
java.base/sun.security.ssl.HandshakeContext.dispatch(HandshakeContext.java:444)
     at 
java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask$DelegatedAction.run(SSLEngineImpl.java:1065)
     at 
java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask$DelegatedAction.run(SSLEngineImpl.java:1052)
     at java.base/java.security.AccessController.doPrivileged(Native Method)
     at 
java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask.run(SSLEngineImpl.java:999)

More information about the security-dev mailing list