Details
-
Bug
-
Resolution: Done
-
Critical
-
7.1.0.DR13
Description
Coverity found possible dereference of null. In this code defaultPolicy is checked for null (so probably could be null) and in next step defaultPolicy.equals() is called.
PolicyParser.java
boolean providerFound = defaultPolicy == null; while (reader.hasNext() && reader.nextTag() != END_ELEMENT) { verifyNamespace(reader); String localName = reader.getLocalName(); switch (localName) { // Permission Mapper case JACC_POLICY: providerFound = defaultPolicy.equals(parseJaccPolicy(addPolicy, reader, operations)) || providerFound; break; case CUSTOM_POLICY: providerFound = defaultPolicy.equals(parseCustomPolicy(addPolicy, reader, operations)) || providerFound; break; default: throw unexpectedElement(reader); } }
Attachments
Issue Links
- is cloned by
-
WFCORE-2517 Coverity, Dereference after null check (Elytron subsystem)
- Resolved
- is incorporated by
-
JBEAP-10119 (7.1.0) Upgrade to WildFly Core to 3.0.0.Beta16
- Verified