APAR status
Closed as program error.
Error description
Error Message: When no credential is found, a null credential is returned and causes NPE. The null value should be checked to avoid NPE, and a meaningfull exception should be thrown. . Stack Trace: org.ietf.jgss.GSSException, major code: 11, minor code: 0 major string: General failure, unspecified at GSSAPI level minor string: Credential initialization error: java.lang.NullPointerException at com.ibm.security.jgss.i18n.I18NException.throwGSSException(I18NE xception.java:5) at com.ibm.security.jgss.mech.krb5.y.a(y.java:508) at com.ibm.security.jgss.mech.krb5.y.<init>(y.java:377) at com.ibm.security.jgss.mech.krb5.Krb5MechFactory.getCredentialEle ment(Krb5MechFactory.java:63) at com.ibm.security.jgss.GSSManagerImpl.createMechCredential(GSSMan agerImpl.java:51) at com.ibm.security.jgss.GSSCredentialImpl.add(GSSCredentialImpl.ja va:41) at com.ibm.security.jgss.GSSCredentialImpl.<init>(GSSCredentialImpl .java:118) at com.ibm.security.jgss.GSSManagerImpl.createCredential(GSSManager Impl.java:39) .
Local fix
Problem summary
Need null pointer check to avoid NPE.
Problem conclusion
Added null pointer check, and a meaningful exception is thrown instead of NPE. The corresponding Austin defect is 117097. The corresponding RTC Problem Report is 103647. Platform affected: All platforms. JVMs affected: 6.0, 6.26, 7.0, 7.27, and 8.0. Jars affected: ibmjgssprovider.jar. The fix will be available in 160_SR16_FP30, 626_SR8_FP30, 170_SR9_FP30, 727_SR3_FP30, 180_SR2_FP10. Build level is 20151119. . This APAR will be fixed in the following Java Releases: 6 R1 SR8 FP20 (6.1.8.20) 7 R1 SR3 FP30 (7.1.3.30) 7 SR9 FP30 (7.0.9.30) 6 SR16 FP20 (6.0.16.20) 8 SR2 FP10 (8.0.2.10) . Contact your IBM Product's Service Team for these Service Refreshes and Fix Packs. For those running stand-alone, information about the available Service Refreshes and Fix Packs can be found at: https://www.ibm.com/developerworks/java/jdk/
Temporary fix
Comments
APAR Information
APAR number
IV79094
Reported component name
SECURITY
Reported component ID
620700125
Reported release
260
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2015-11-19
Closed date
2015-12-01
Last modified date
2015-12-01
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
SECURITY
Fixed component ID
620700125
Applicable component levels
R260 PSY
UP
R600 PSY
UP
R270 PSY
UP
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSNVBF","label":"Runtimes for Java Technology"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"260","Edition":"","Line of Business":{"code":"LOB36","label":"IBM Automation"}}]
Document Information
Modified date:
07 December 2020