Uploaded image for project: 'WildFly Elytron'
  1. WildFly Elytron
  2. ELY-575

NPE in AbstractMechanismAuthenticationFactory

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Major
    • None
    • None
    • Authentication Mechanisms, SASL
    • None

    Description

      The SaslAuthenticationFactory sublcass of AbstractMechanismAuthenticationFactory is using org.wildfly.security.sasl.util.SaslMechanismInformation#getSupportedServerCredentialTypes() to determine what credentials are available. But, that method returns null if nothing is known about that mechanism name. AbstractMechanismAuthenticationFactory doesn't check for null in the returned collection, and so NPE results which is uncaught and can cause hangs and other problems.

      Attachments

        Activity

          People

            dlloyd@redhat.com David Lloyd
            dlloyd@redhat.com David Lloyd
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: