Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-9359

Radius request without USER_NAME field causes NPE in OpenAM's Radius server.

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 13.0.0
    • Fix Version/s: 14.0.0
    • Component/s: RADIUS
    • Target Version/s:
    • Rank:
      1|hzrr4v:
    • Support Ticket IDs:

      Description

      If an ACCESS_REQUEST arrives at the server without a USER_NAME field such as the following packet obtained from the debug/Radius log file, it results in a NullPointerException with the stack trace shown below.

      Packet from SApilot-10.255.128.130:
      ACCESS_REQUEST [55]

      • USER_PASSWORD : *******
      • NAS_PORT : 202469376
      • CALLER_STATION_ID : 216.49.186.130
      • CALLING_STATION_ID : 10.57.31.237
      • NAS_PORT_TYPE : 5
      • UNKNOWN TYPE : bytes [ 42 0e 31 30 2e 35 37 2e 33 31 2e 32 33 37 ] chars (B.10.57.31.237)
      • NAS_IP_ADDRESS : /10.255.128.130
      • VENDOR_SPECIFIC : 9, A[ip:source-ip=10.57.31.237
      • VENDOR_SPECIFIC : 3076, �^RSVC_INTERNAL_SMS
      • VENDOR_SPECIFIC : 3076, �F@@@^B

      Resulting stack trace from debug/Radius log file:

      ERROR: Exception occured while handling radius request for RADIUS client 'SApilot-10.255.128.130'. Rejecting access.
      java.lang.NullPointerException
      at org.forgerock.openam.radius.server.spi.handlers.OpenAMAuthHandler.startAuthProcess(OpenAMAuthHandler.java:726)
      at org.forgerock.openam.radius.server.spi.handlers.OpenAMAuthHandler.handle(OpenAMAuthHandler.java:257)
      at org.forgerock.openam.radius.server.RadiusRequestHandler.run(RadiusRequestHandler.java:158)
      at org.forgerock.openam.audit.context.AuditRequestContextPropagatingRunnable.run(AuditRequestContextPropagatingRunnable.java:42)
      at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
      at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
      at java.lang.Thread.run(Thread.java:744)

        Attachments

          Activity

            People

            Assignee:
            markrboyd Mark Boyd [X] (Inactive)
            Reporter:
            markrboyd Mark Boyd [X] (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: