-
Bug
-
Resolution: Fixed
-
P4
-
19
-
b22
-
generic
-
generic
-
Verified
A fuzzed client hello request causes a CCE being thrown:
Exception in thread "main" java.lang.ClassCastException: class sun.security.ssl.ServerHandshakeContext cannot be cast to class sun.security.ssl.ClientHandshakeContext (sun.security.ssl.ServerHandshakeContext and sun.security.ssl.ClientHandshakeContext are in module java.base of loader 'bootstrap')
at java.base/sun.security.ssl.HelloRequest$HelloRequestConsumer.consume(HelloRequest.java:174)
at java.base/sun.security.ssl.SSLHandshake.consume(SSLHandshake.java:396)
at java.base/sun.security.ssl.HandshakeContext.dispatch(HandshakeContext.java:480)
at java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask$DelegatedAction.run(SSLEngineImpl.java:1273)
at java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask$DelegatedAction.run(SSLEngineImpl.java:1260)
at java.base/java.security.AccessController.doPrivileged(AccessController.java:712)
at java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask.run(SSLEngineImpl.java:1205)
at SSLEngineServerReadFile.runDelegatedTasks(SSLEngineServerReadFile.java:123)
at SSLEngineServerReadFile.runDemo(SSLEngineServerReadFile.java:94)
at SSLEngineServerReadFile.main(SSLEngineServerReadFile.java:46)
Exception in thread "main" java.lang.ClassCastException: class sun.security.ssl.ServerHandshakeContext cannot be cast to class sun.security.ssl.ClientHandshakeContext (sun.security.ssl.ServerHandshakeContext and sun.security.ssl.ClientHandshakeContext are in module java.base of loader 'bootstrap')
at java.base/sun.security.ssl.HelloRequest$HelloRequestConsumer.consume(HelloRequest.java:174)
at java.base/sun.security.ssl.SSLHandshake.consume(SSLHandshake.java:396)
at java.base/sun.security.ssl.HandshakeContext.dispatch(HandshakeContext.java:480)
at java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask$DelegatedAction.run(SSLEngineImpl.java:1273)
at java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask$DelegatedAction.run(SSLEngineImpl.java:1260)
at java.base/java.security.AccessController.doPrivileged(AccessController.java:712)
at java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask.run(SSLEngineImpl.java:1205)
at SSLEngineServerReadFile.runDelegatedTasks(SSLEngineServerReadFile.java:123)
at SSLEngineServerReadFile.runDemo(SSLEngineServerReadFile.java:94)
at SSLEngineServerReadFile.main(SSLEngineServerReadFile.java:46)