NullPointerException may occur for HTTPs requests to WebContainer #27900
Labels
in:Web Components
release bug
This bug is present in a released version of Open Liberty
release:24004
team:Sirius
Projects
Milestone
Describe the bug
If secured request (i.e https:// ) is accepted into the WebContainer but has an exception before the WebContainer can determine a target application to handle this request, the java.lang.NullPointerException can occur.
Same scenario does not have NPE using the un-secure (i.e http) request.
Steps to Reproduce
Send HTTPS with a bad encoded URI to an existing application (i.e context root). For example:
https://host:secure_port/%5%20C..
Expected behavior
No NullPointerException in either the response, message; no FFDC
Diagnostic information:
need to enable SSL (<feature>transportSecurity-1.0</feature> , <keyStore/>, <ssl/> )
$WLP_OUTPUT_DIR/messages.log
Additional context
None
The text was updated successfully, but these errors were encountered: