VOOZH about

URL: https://www.ibm.com/support/pages/apar/IJ05754

⇱ IJ05754: CERTPATH PKIXPARAMETERS CLASS CAUSES NULLPOINTEREXCEPTION

IJ05754: CERTPATH PKIXPARAMETERS CLASS CAUSES NULLPOINTEREXCEPTION

APAR status

  • Closed as program error.

Error description

  • Error Message: N/A
.
Stack Trace: The com.ibm.security.validator.Validator.validate
method experiences the following exception:
java.lang.NullPointerException:
at
com.ibm.security.cert.PKIXExtendedParameters.setRevocationEnable
d(PKIXExtendedParameters.java:139)
at
java.security.cert.PKIXParameters.initialize(PKIXParameters.java
:193)
at
java.security.cert.PKIXParameters.<init>(PKIXParameters.java:143
)
at
java.security.cert.PKIXBuilderParameters.<init>(PKIXBuilderParam
eters.java:99)
at
com.ibm.security.cert.PKIXExtendedParameters.<init>(PKIXExtended
Parameters.java:55)
at
com.ibm.security.validator.PKIXValidator.engineValidate(PKIXVali
dator.java:214)
at
com.ibm.security.validator.Validator.validate(Validator.java:257
)
at
com.ibm.security.validator.Validator.validate(Validator.java:233
)
.

Local fix



Problem summary


    

  • The PKIXParameters class is a super class of
PKIXExtendedParameters. When PKIXValidator,engineValidate()
invokes the PKIXExtendedParameters constructor, that constructor
first calls the constructor of its superclass.
When the PKIXParameters constructor executes, it attempts to set
a default "revocation enabled = true"
boolean within the PKIXExtendedParameters object. However, the
PKIXBuilderParameters object within the
PKIXExtendedParameters object, which contains the "revocation
enabled" boolean to be set, has not yet been initialized.
Therefore, a NullPointerException occurs.



Problem conclusion


    

  • The most current copy of the PKIXParameters class no longer
attempts to set a default "revocation enabled = true"
boolean value. PKIXParameters.java has been replaced with the
more current copy.
The associated CMVC defects are 117842 and 117846.
The associated RTC PMRs are 137836 and 137841
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
The associated APAR is IJ05678.
The affected jar is ibmcertpathfw.jar.
The build level of ibmcertpathfw.jar is 20180416.
This fix has been delivered for:
70sr10fp25, 727sr4fp25, and 80sr5fp15.
.
This APAR will be fixed in the following Java Releases:
 8 SR5 FP15 (8.0.5.15)
 7 SR10 FP25 (7.0.10.25)
 7 R1 SR4 FP25 (7.1.4.25)
.
Contact your IBM Product's Service Team for these Service
Refreshes and Fix Packs.
For those running stand-alone, information about the available
Service Refreshes and Fix Packs can be found at:
 https://www.ibm.com/developerworks/java/jdk/



Temporary fix


    



Comments


    



APAR Information




    

  • APAR number
    IJ05754
    • 

  • Reported component name
    SECURITY
    • 

  • Reported component ID
    620700125
    • 

  • Reported release
    270
    • 

  • Status
    CLOSED PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    NoSpecatt / Xsystem
    • 

  • Submitted date
    2018-04-16
    • 

  • Closed date
    2018-04-17
    • 

  • Last modified date
    2018-04-17
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    • 




    

  • Fixed component name
    SECURITY
    • 

  • Fixed component ID
    620700125
    • 



Applicable component levels







 
 
 
 

 [{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSNVBF","label":"Runtimes for Java Technology"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"270","Edition":"","Line of Business":{"code":"LOB36","label":"IBM Automation"}}]
 

 

 
 
 

 

 

 

 

 

 
Document Information


 

 

 Modified date:
 

 07 December 2020