IBM Support

PI50399: NullPointerException thrown at com.ibm.ws.transport.iiop.securit y in Liberty profile

Fixes are available

8.5.5.9: WebSphere Application Server V8.5.5 Fix Pack 9
8.5.5.10: WebSphere Application Server V8.5.5 Fix Pack 10
8.5.5.11: WebSphere Application Server V8.5.5 Fix Pack 11
8.5.5.12: WebSphere Application Server V8.5.5 Fix Pack 12
8.5.5.13: WebSphere Application Server V8.5.5 Fix Pack 13
8.5.5.14: WebSphere Application Server V8.5.5 Fix Pack 14
8.5.5.15: WebSphere Application Server V8.5.5 Fix Pack 15
8.5.5.17: WebSphere Application Server V8.5.5 Fix Pack 17
8.5.5.20: WebSphere Application Server V8.5.5.20
8.5.5.18: WebSphere Application Server V8.5.5 Fix Pack 18
8.5.5.19: WebSphere Application Server V8.5.5 Fix Pack 19
8.5.5.16: WebSphere Application Server V8.5.5 Fix Pack 16
8.5.5.21: WebSphere Application Server V8.5.5.21

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • The first time Customer's application receives an MQ message
via JMS., two FFDC logs are reported in the
com.ibm.ws.transport.iiop.security package.

These are:

Exception = java.lang.NullPointerException
Source = com.ibm.ws.transport.iiop.security.util.Util
probeid = 480
Stack Dump = java.lang.NullPointerException
at org.omg.Security.OpaqueHelper.write(OpaqueHelper.java:56)
at
org.omg.Security.OpaqueHelper.insert(OpaqueHelper.java:19)
at
com.ibm.ws.transport.iiop.security.util.Util.encodeLTPAToken
(Uti
l.java:463)

.

and

Exception = java.lang.NullPointerException
Source =
com.ibm.ws.transport.iiop.security.ClientSecurityInterceptor
probeid = 173
Stack Dump = java.lang.NullPointerException
at org.omg.CSI.GSSTokenHelper.write(GSSTokenHelper.java:58)
at
org.omg.CSI.EstablishContextHelper.write(EstablishContextHel
per.
java:98)
at
org.omg.CSI.SASContextBodyHelper.write(SASContextBodyHelper.
java
:129)
at
org.omg.CSI.SASContextBodyHelper.insert(SASContextBodyHelper
.jav
a:19)
at
com.ibm.ws.transport.iiop.security.config.css.CSSCompoundSec
Mech
Config.generateServiceContext(CSSCompoundSecMechConfig.java:
208)
at
com.ibm.ws.transport.iiop.security.ClientSecurityInterceptor
.sen
d_request(ClientSecurityInterceptor.java:154)
at
org.apache.yoko.orb.PortableInterceptor.ClientRequestInfo_im
pl._
OB_request(ClientRequestInfo_impl.java:373)
.
.
.

Local fix

  • no workaround

Problem summary

  • ****************************************************************
* USERS AFFECTED:  All users of IBM WebSphere Application      *
*                  Server Liberty Profile - Security           *
****************************************************************
* PROBLEM DESCRIPTION: NullPointerException thrown at          *
*                      com.ibm.ws.transport.iiop.security      *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
A java.lang.NullPointerException is issued for a remote bean
request using CSIv2 when the unauthenticated subject is being
used.  The exception is shown in the FFDC file as follows,

Exception = java.lang.NullPointerException
Source = com.ibm.ws.transport.iiop.security.util.Util
probeid = 480
Stack Dump = java.lang.NullPointerException
at org.omg.Security.OpaqueHelper.write(OpaqueHelper.java:56)
at org.omg.Security.OpaqueHelper.insert(OpaqueHelper.java:19)
at
com.ibm.ws.transport.iiop.security.util.Util.encodeLTPAToken(Uti
l.java:463)

Problem conclusion

  • The code was modified to prevent a
java.lang.NullPointerException from being issued when an
unauthenticated subject is being used for a remote bean
request.

The fix for this APAR is currently targeted for inclusion in fix
pack 8.5.5.9.  Please refer to the Recommended Updates page for
delivery information:
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980

Temporary fix

  • 



Comments


    

  • 



APAR Information




    

  • APAR number
    PI50399
    • 

  • Reported component name
    WEBSPHERE APP S
    • 

  • Reported component ID
    5724J0800
    • 

  • Reported release
    850
    • 

  • Status
    CLOSED  PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    NoSpecatt / Xsystem
    • 

  • Submitted date
    2015-10-13
    • 

  • Closed date
    2015-12-08
    • 

  • Last modified date
    2015-12-08
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    • 



Fix information


    

  • Fixed component name
    LIBERTY PROFILE
    • 

  • Fixed component ID
    5724J0814
    • 



Applicable component levels


    

  • R850  PSY
       UP
    • 








      
              
                            

              

              [{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"850","Line of Business":{"code":"LOB45","label":"Automation"}}]
              

                          

          
 
        

      

    

      

        

          

            
Document Information


            

            


                        

            Modified date:
            

            28 April 2022
            

            
                      

        


        

        


      

    

  



    

  

  
    
            

          
Page Feedback