Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-12623

Possible NPE in LdapSecurityRealm.closeContext

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Critical
    • 7.1.0.CR1
    • 7.1.0.ER3
    • Security
    • None

    Description

      There is missing null check in LdapSecurityRealm.closeContext [1] which can result to NPE.

      [1] https://github.com/wildfly-security/wildfly-elytron/blob/001e69270ddb6d277938bd65db75c455a69c7f03/src/main/java/org/wildfly/security/auth/realm/ldap/LdapSecurityRealm.java#L221

      ERROR [io.undertow.request] (default task-58) UT005023: Exception handling request to /LdapPerformance/protected/SimpleSecuredServlet: java.lang.NullPointerException
  at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm.closeContext(LdapSecurityRealm.java:221)
  at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm.access$500(LdapSecurityRealm.java:102)
  at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity.getAttributes(LdapSecurityRealm.java:543)
  at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity.getAuthorizationIdentity(LdapSecurityRealm.java:501)

      Attachments

        Issue Links

          is cloned by

          Bug - A problem that impairs or prevents the functions of the product. ELY-1321 Possible NPE in LdapSecurityRealm.closeContext

          • Critical - To be worked on immediately following BLOCKER issues.
          • Resolved
          is incorporated by

          Component Upgrade - A task tracking an update to a bundled component or revision of component upstream of the project. JBEAP-12390 Upgrade WildFly Elytron to 1.1.0.CR5

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Verified

          Activity

            People

              jkalina@redhat.com Jan Kalina (Inactive)
              olukas Ondrej Lukas (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: