Error: JNI Exception: SamlValidator getAttributeMV in Policy Server
search cancel

Error: JNI Exception: SamlValidator getAttributeMV in Policy Server

book

Article ID: 263008

calendar_today

Updated On:

Products

SITEMINDER CA Single Sign On Federation (SiteMinder)

Issue/Introduction

 

When running a Policy Server as Service Provider, when handling a Federated response, the Policy Server shows a java null exception when handling the assertion attributes:

[02/27/2023][14:18:14.892][14:18:14][2481573][139853756868352][SmAuthSamlJNI.cpp:532][][][][][][][][][][][][][][][][][][][][][][LogMessage:ERROR:[sm-FedServer-00520] Error caught JNI Exception: SamlValidator (Pass 1): Caught unknown exception or error: java.lang.NullPointerException - Stacktrace: java.lang.NullPointerException
          at com.netegrity.SAML2.util.SAML2Utils.getAttributeMV(Unknown Source)
          at com.netegrity.SAML2.util.SAML2Utils.retrieveAttributeData(Unknown Source)
          at com.netegrity.ps.auth.saml.Saml2Validator.smAuthenticate(Unknown Source)
          at com.netegrity.ps.auth.saml.SamlValidator.smAuthenticate(Unknown Source)
.]

Environment

 

Policy Server 12.8SP7 on Linux or Windows

 

Cause

 

The SAML Validator faces problems in handling the Attributes data:

FWSTrace.log:

[03/15/2023][11:11:08][2217247][140373173344000][2dbdb7c9-fdab9328-5ded5840-c39acaa5-e0db88df-7a][FWSBase.java][authenticateUser][result code from AgentAPI login call: 2]
[03/15/2023][11:11:08][2217247][140373173344000][2dbdb7c9-fdab9328-5ded5840-c39acaa5-e0db88df-7a][FWSBase.java][authenticateUser][Login failure [CHECKPOINT = SSO_LOGINFAILURE_RSP]]
[03/15/2023][11:11:08][2217247][140373173344000][2dbdb7c9-fdab9328-5ded5840-c39acaa5-e0db88df-7a][FWSBase.java][processFailedAuthentication][SAML Assertion based user authentication failed.]
[03/15/2023][11:11:08][2217247][140373173344000][2dbdb7c9-fdab9328-5ded5840-c39acaa5-e0db88df-7a][AssertionConsumer.java][redirectLoginFailure][Ending SAML2 AssertionConsumer Service request processing with HTTP error 500]
[03/15/2023][11:11:08][2217247][140373173344000][2dbdb7c9-fdab9328-5ded5840-c39acaa5-e0db88df-7a][AssertionConsumer.java][redirectLoginFailure][Transaction with ID: 2dbdb7c9-fdab9328-5ded5840-c39acaa5-e0db88df-7a failed. Reason: ACS_FAILED_PROCESS_FAILURE]
[03/15/2023][11:11:08][2217247][140373173344000][2dbdb7c9-fdab9328-5ded5840-c39acaa5-e0db88df-7a][ErrorRedirectionHandler.java][redirectToErrorPage][Sending HTTP Error 500 ]

smtracedefault.log:

[03/15/2023][12:11:08.197][12:11:08][2166004][139933750634240][Saml2Validator.java][smAuthenticate][2dbdb7c9-fdab9328-5ded5840-c39acaa5-e0db88df-7a][][][][][][][][][][][][][][][][][][][][Found good assertion, ID: _6de26923-af8a-43d8-b9bf-2286ba154d67][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][]
[03/15/2023][12:11:08.197][12:11:08][2166004][139933750634240][Saml2Validator.java][smAuthenticate][2dbdb7c9-fdab9328-5ded5840-c39acaa5-e0db88df-7a][][][][][][][][][][][][][][][][][][][][Plugin is configured? false][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][]
[03/15/2023][12:11:08.197][12:11:08][2166004][139933750634240][Saml2Validator.java][smAuthenticate][2dbdb7c9-fdab9328-5ded5840-c39acaa5-e0db88df-7a][][][][][][][][][][][][][][][][][][][][Obtaining attributes from Assertion][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][]

[03/15/2023][12:11:08.197][12:11:08][2166004][139933750634240][SamlValidator.java][smAuthenticate][2dbdb7c9-fdab9328-5ded5840-c39acaa5-e0db88df-7a][][][][][][][][][][][][][][][][][][][][SamlValidator (Pass 1)Caught unknown exception or error: java.lang.NullPointerException - Stacktrace: java.lang.NullPointerException
    at com.netegrity.SAML2.util.SAML2Utils.getAttributeMV(Unknown Source)
    at com.netegrity.SAML2.util.SAML2Utils.retrieveAttributeData(Unknown Source)
    at com.netegrity.ps.auth.saml.Saml2Validator.smAuthenticate(Unknown Source)
    at com.netegrity.ps.auth.saml.SamlValidator.smAuthenticate(Unknown Source)
][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][]

[03/15/2023][12:11:08.197][12:11:08][2166004][139933750634240][SmAuthSamlJNI.cpp:512][SmAuthenticate][2dbdb7c9-fdab9328-5ded5840-c39acaa5-e0db88df-7a][][][][][][][][][][][][][][][][][][][][JNI call to SamlValidator.smAuthenticate completed][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][]
[03/15/2023][12:11:08.198][12:11:08][2166004][139933750634240][SmAuthSamlJNI.cpp:532][][][][][][][][][][][][][][][][][][][][][][LogMessage:ERROR:[sm-FedServer-00520] Error caught JNI Exception: SamlValidator (Pass 1): Caught unknown exception or error: java.lang.NullPointerException - Stacktrace: java.lang.NullPointerException
    at com.netegrity.SAML2.util.SAML2Utils.getAttributeMV(Unknown Source)
    at com.netegrity.SAML2.util.SAML2Utils.retrieveAttributeData(Unknown Source)
    at com.netegrity.ps.auth.saml.Saml2Validator.smAuthenticate(Unknown Source)
    at com.netegrity.ps.auth.saml.SamlValidator.smAuthenticate(Unknown Source)
.][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][]

[03/15/2023][12:11:08.198][12:11:08][2166004][139933750634240][Sm_Auth_Message.cpp:2076][CSm_Auth_Message::AuthenticateUser][2dbdb7c9-fdab9328-5ded5840-c39acaa5-e0db88df-7a][samlidp:myFed][/][][][samlidp:myFed][samlidp:myFed][myUserDir][][][][][][][][][][][][][Evaluating OnAuthAttempt policy...][][][][][][5][0][samlidp:myFederation][][][][][][][][][06-000146f2-01ef-1b36-9046-05210a640000][][][][][][][][][][][][][][][][][][][][][]
[03/15/2023][12:11:08.199][12:11:08][2166004][139933750634240][Sm_Auth_Message.cpp:5200][CSm_Auth_Message::SendReply][s257/r7][samlidp:myFed][][][][samlidp:myFed][samlidp:myFed][myUserDir][][][][][][][][][][][][][** Status: Authentication Attempt Failed. ][][][][][][][][samlidp:myFederation][][][][][][][][][06-000146f2-01ef-1b36-9046-05210a640000][][][][][][][][][][][][][][][][][][][][][]

Resolution

 

Upgrade Policy Server 12.8SP8 when available to benefit from the fix DE560680.