JDK-8310106 : sun.security.ssl.SSLHandshake.getHandshakeProducer() incorrectly checks handshakeConsumers
  • Type: Bug
  • Component: security-libs
  • Sub-Component: javax.net.ssl
  • Affected Version: openjdk8u272,11,17,21,22
  • Priority: P4
  • Status: Resolved
  • Resolution: Fixed
  • Submitted: 2023-06-15
  • Updated: 2023-12-11
  • Resolved: 2023-06-16
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 11 JDK 17 JDK 21 JDK 22
11.0.23Fixed 17.0.11Fixed 21.0.1Fixed 22 b03Fixed
Related Reports
Relates :  
JDK-8196584 - TLS 1.3 Implementation
Description
The sun.security.ssl.SSLHandshake enum has a method called getHandshakeProducer(ConnectionContext) which is expected to return a HandshakeProducer. The SSLHandshake has an array which keeps tracks of such producers. The implementation of this getHandshakeProducer() has this line:

if (handshakeConsumers.length == 0) {
      return null;
}

This appears to be a typo and instead should have been checking the length of handshakeProducers instead of handshakeConsumers. The rest of this method implementation correctly uses and works only on the handshakeProducers.
Comments
Fix request [11u] I backport this for parity with 11.0.23-oracle. Clean except for Copyright. SAP nightly testing passed.
11-12-2023
A pull request was submitted for review. URL: https://git.openjdk.org/jdk11u-dev/pull/2344 Date: 2023-12-08 02:56:31 +0000
08-12-2023
A pull request was submitted for review. URL: https://git.openjdk.org/jdk17u-dev/pull/2023 Date: 2023-12-06 12:10:37 +0000
06-12-2023
Fix request [17u] A simple and useful fix. Change in security component, but simple and obvious, thus low risk. Clean except for Copyright SAP nighlty testing passed.
06-12-2023
Fix Request (21u) Fixes a minor bug in original TLS 3.0 implementation. Applies cleanly. Tests pass.
11-08-2023
A pull request was submitted for review. URL: https://git.openjdk.org/jdk21u/pull/55 Date: 2023-08-11 13:49:44 +0000
11-08-2023
Introduced in original TLS 1.3 implementation: JDK-8196584.
19-06-2023
Changeset: db133dbc Author: Jaikiran Pai <jpai@openjdk.org> Date: 2023-06-16 05:38:10 +0000 URL: https://git.openjdk.org/jdk/commit/db133dbc02a7f38104fdbca967c59f758c6f4336
16-06-2023
A pull request was submitted for review. URL: https://git.openjdk.org/jdk/pull/14483 Date: 2023-06-15 06:02:13 +0000
15-06-2023