IBM Support

PI24968: AFTER THE FIX FOR PI22286 IS APPLIED A NULLPOINTEREXCEPTION IN AUTHENTICATIONFILTER WILL OCCUR ON THE SERVER IF FIPS ENABLED

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • After the fix for PI22286 is applied a NullPointerException will
    occur on the server if the client has enabled the FIPS optional
    feature.  The NullPointerException on the server will look
    something like:
    ERROR   ] SRVE0315E: An execption occurred:
    com.ibm.ws.webcontainer.webapp.WebAppErrorReport:
    java.lang.NullPointerException
     at
    com.worklight.core.auth.impl.AuthenticationFilter.setChallengeRe
    sponseStatus(AuthenticationFilter.java:473)
     at
    com.worklight.core.auth.impl.AuthenticationFilter.sendChallenges
    (AuthenticationFilter.java:459)
     at
    com.worklight.core.auth.impl.AuthenticationFilter.doFilter(Authe
    nticationFilter.java:244)
     at
    com.ibm.ws.webcontainer.filter.FilterInstanceWrapper.doFilter(Fi
    lterInstanceWrapper.java:194)
     at [internal classes]
    Caused by: java.lang.NullPointerException
     ... 6 more
    
    The client will receive an HTTP response with a status code of
    500.
    

Local fix

Problem summary

  • ****************************************************************
    * USERS AFFECTED:                                              *
    * Application users running apps that enable the FIPS 140-2    *
    * Optional Feature for iOS or Android environments and where   *
    * the APAR PI22286 has been applied to the Worklight server.   *
    ****************************************************************
    * PROBLEM DESCRIPTION:                                         *
    * If the FIPS 140-2 Optional Feature is enabled in an          *
    * application with an iOS or Android environment, and the APAR *
    * PI22286 has been applied to the Worklight server, the server *
    * will encounter a NullPointerException (NPE) when processing  *
    * any request from that application.  That request could be    *
    * sent via HTTP or HTTPS; the NPE will occur in both cases.    *
    * The NPE should be logged in the server logs or console       *
    * (depending on the server) and will be similar to the         *
    * following:                                                   *
    * [ERROR   ] SRVE0315E: An execption occurred:                 *
    * com.ibm.ws.webcontainer.webapp.WebAppErrorReport:            *
    * java.lang.NullPointerException                               *
    *  at                                                          *
    * com.worklight.core.auth.impl.AuthenticationFilter.setChallen *
    * geResponseStatus(AuthenticationFilter.java:473)              *
    *  at                                                          *
    * com.worklight.core.auth.impl.AuthenticationFilter.sendChalle *
    * nges(AuthenticationFilter.java:459)                          *
    *  at                                                          *
    * com.worklight.core.auth.impl.AuthenticationFilter.doFilter(A *
    * uthenticationFilter.java:244)                                *
    *  at                                                          *
    * com.ibm.ws.webcontainer.filter.FilterInstanceWrapper.doFilte *
    * r(FilterInstanceWrapper.java:194)                            *
    *  at [internal classes]                                       *
    * Caused by: java.lang.NullPointerException                    *
    *  ... 6 more                                                  *
    *                                                              *
    * The client will receive an HTTP response with a status code  *
    * of 500.                                                      *
    ****************************************************************
    * RECOMMENDATION:                                              *
    * -                                                            *
    ****************************************************************
    

Problem conclusion

  • The WorklightServer was modified to check for the existence of
    the "user-agent" HTTP header before attempting to retrieve the
    value.
    

Temporary fix

Comments

APAR Information

  • APAR number

    PI24968

  • Reported component name

    WORKLIGHT CONSU

  • Reported component ID

    5725I4301

  • Reported release

    610

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2014-09-02

  • Closed date

    2014-09-09

  • Last modified date

    2014-09-09

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    WORKLIGHT CONSU

  • Fixed component ID

    5725I4301

Applicable component levels

  • R610 PSY

       UP

  • R620 PSY

       UP

[{"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSZH4A","label":"IBM Worklight"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Line of Business":{"code":"LOB45","label":"Automation"}}]

Document Information

Modified date:
15 October 2021