000013123 - 'java.lang.NullPointerException' error when starting RKM Server

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000013123
Applies ToRSA Key Manager Server 2.5
Redhat Linux Advanced Server 4.0
nCipher libraries version 1.01404
Issue"java.lang.NullPointerException" error when starting RKM Server
java.lang.NullPointerException
 at com.ncipher.provider.BlockCipher.engineDoFinal(BlockCipher.java:662)
 at javax.crypto.Cipher.doFinal(DashoA13*..)
 at edge.javax.crypto.DefaultCipher.doFinal(DefaultCipher.java:80)
 at com.rsa.keymanager.core.crypto.encrypt.DefaultCoreEncryptionEngine.run(DefaultCoreEncryptionEngine.java:78)
 at com.rsa.keymanager.core.crypto.encrypt.DefaultCoreEncryptionEngine.getEncryptedData(DefaultCoreEncryptionEngine.java:38)
 at com.rsa.keymanager.core.crypto.encrypt.DefaultCoreEncryptionEngine.encrypt(DefaultCoreEncryptionEngine.java:30)
 at com.rsa.keymanager.core.crypto.encrypt.DefaultEncryptionEngine.encrypt(DefaultEncryptionEngine.java:12)
 at com.rsa.keymanager.core.crypto.encoded.DefaultEncodingEngine.encrypt(DefaultEncodingEngine.java:24)
 at com.rsa.keymanager.core.secure.core.DefaultSecObjCreator.encode(DefaultSecObjCreator.java:68)
 at com.rsa.keymanager.core.secure.core.DefaultSecObjCreator.encryptedData(DefaultSecObjCreator.java:58)
 at com.rsa.keymanager.core.secure.core.DefaultSecObjCreator.persist(DefaultSecObjCreator.java:30)
 at com.rsa.keymanager.core.secure.core.DefaultSecObjPersister.persist(DefaultSecObjPersister.java:62)
...
key-manager.log shows the following message on server startup:

04 Mar 2011 19:12:00,322  WARN [STANDBY] ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)' - Client : Internal, The HSM provider in the CLASSPATH is version
1.01404 but the KM Server requires1.008
 of the HSM. Please install the required version
 of the Jar files in the CLASSPATH and run this application again.
ResolutionThis problem can be resolved by using the nCipher libraries 1.008, which were tested and qualified with RKM Server 2.5.x.

Download version 1.008 nCipher libraries from https://sftp.rsa.com/human.aspx?Username=support&password=Password1&arg01=566749342&arg12=downloaddirect&transaction=signon&quiet=true and copy them in the proper location as mentioned in the install guide.
If the problem does not resolve after copying the nCipher libraries 1.008 in proper location, look for newer version of nCipher libraries (kmcsp.jar, nfjava.jar, kmjava.jar, and jutils.jar) in other paths on the system which might be picked up by the application server, and remove those redundant/newer version of nCipher libraries.
NotesIn one instance, the presence of nCipherKM.jar under a JRE folder (e.g., /opt/java/jre/lib/ext) has caused the above problem.  Removing nCipherKM.jar from the JRE folder resolved the problem.
 KMSRV-918
Legacy Article IDa48398

Attachments

    Outcomes