December 2017 - jboss-jira - Jboss List Archives

[JBoss JIRA] (WFCORE-3458) External CS, PKCS11 can't be configured with externalPath

by Ilia Vassilev (JIRA)

[ https://issues.jboss.org/browse/WFCORE-3458?page=com.atlassian.jira.plugi... ] Ilia Vassilev edited comment on WFCORE-3458 at 12/21/17 4:43 PM: ----------------------------------------------------------------- In Elytron subsystem, remove the requirement: "if location is not set in CLI, default credential-store name is used as location" When location is not set for most common filebased keystore types (JKS, JCEKS and PKCS12), Elytron will throw exception. was (Author: ivassile): In Elytron subsystem, remove the requirement: "if location is not set in CLI, default credential-store name is used as location" > External CS, PKCS11 can't be configured with externalPath > ---------------------------------------------------------- > > Key: WFCORE-3458 > URL: https://issues.jboss.org/browse/WFCORE-3458 > Project: WildFly Core > Issue Type: Bug > Components: Security > Affects Versions: 4.0.0.Alpha4 > Reporter: Ilia Vassilev > Assignee: Ilia Vassilev > Priority: Critical > > To specify external secret file location externalPath is intended. However in case of PKCS11 it can't be achieved. > {code} > 10:53:03,403 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-1) MSC000001: Failed to start service org.wildfly.security.credential-store.fips-credential-store: org.jboss.msc.service.StartException in service org.wildfly.security.credential-store.fips-credential-store: WFLYELY00004: Unable to start the service. > at org.wildfly.extension.elytron.CredentialStoreService.start(CredentialStoreService.java:134) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:2032) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1955) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) > at java.lang.Thread.run(Thread.java:745) > Caused by: org.wildfly.security.credential.store.CredentialStoreException: ELY09514: Unable to initialize credential store > at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.setupExternalStorage(KeyStoreCredentialStore.java:954) > at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.load(KeyStoreCredentialStore.java:828) > at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.initialize(KeyStoreCredentialStore.java:214) > at org.wildfly.security.credential.store.CredentialStore.initialize(CredentialStore.java:159) > at org.wildfly.extension.elytron.CredentialStoreService.start(CredentialStoreService.java:126) > ... 5 more > Caused by: java.nio.file.NoSuchFileException: /home/mchoma/workspace/git-repositories/tests-security/fips/fips-credential-store > at sun.nio.fs.UnixException.translateToIOException(UnixException.java:86) > at sun.nio.fs.UnixException.rethrowAsIOException(UnixException.java:102) > at sun.nio.fs.UnixException.rethrowAsIOException(UnixException.java:107) > at sun.nio.fs.UnixFileSystemProvider.newByteChannel(UnixFileSystemProvider.java:214) > at java.nio.file.Files.newByteChannel(Files.java:361) > at java.nio.file.Files.newByteChannel(Files.java:407) > at java.nio.file.spi.FileSystemProvider.newInputStream(FileSystemProvider.java:384) > at java.nio.file.Files.newInputStream(Files.java:152) > at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.setupExternalStorage(KeyStoreCredentialStore.java:943) > ... 9 more > 10:53:03,409 ERROR [org.jboss.as.controller.management-operation] (management-handler-thread - 4) WFLYCTL0013: Operation ("add") failed - address: ([ > ("subsystem" => "elytron"), > ("credential-store" => "fips-credential-store") > ]) - failure description: {"WFLYCTL0080: Failed services" => {"org.wildfly.security.credential-store.fips-credential-store" => "WFLYELY00004: Unable to start the service. > Caused by: org.wildfly.security.credential.store.CredentialStoreException: ELY09514: Unable to initialize credential store > Caused by: java.nio.file.NoSuchFileException: /home/mchoma/workspace/git-repositories/tests-security/fips/fips-credential-store"}} > {code} > Problem seems to be in method > {code:java|title=KeyStoreCredentialStore.java} > private void setupExternalStorage(final String keyContainingKeyStoreType, final Path keyContainingKeyStoreLocation) throws CredentialStoreException { > KeyStore keyContainingKeyStore = getKeyStoreInstance(keyContainingKeyStoreType); > keyStore = getKeyStoreInstance("JCEKS"); > externalStorage = new ExternalStorage(); > try { > final char[] storePassword = getStorePassword(protectionParameter); > if (keyContainingKeyStoreLocation != null) { > try (InputStream is = Files.newInputStream(keyContainingKeyStoreLocation)) { > keyContainingKeyStore.load(is, storePassword); > } > } else { > // keystore without file (e.g. PKCS11) > synchronized (EmptyProvider.getInstance()) { > keyContainingKeyStore.load(null, storePassword); > } > } > externalStorage.init(cryptographicAlgorithm, encryptionKeyAlias, keyContainingKeyStore, storePassword, keyStore); > } catch(IOException | GeneralSecurityException e) { > throw log.cannotInitializeCredentialStore(e); > } > } > {code} > Although location is not specified in CLI command keyContainingKeyStoreLocation is not null. Because once location is not specified it becomes name of CS, in this case fips-credential-store (This default is in elytron subsystem). -- This message was sent by Atlassian JIRA (v7.5.0#75005)

8 years

1
0
0 / 0

[JBoss JIRA] (WFCORE-3479) Deploying an empty deployment and adding content later fails in a composite

by Kabir Khan (JIRA)

Kabir Khan created WFCORE-3479: ---------------------------------- Summary: Deploying an empty deployment and adding content later fails in a composite Key: WFCORE-3479 URL: https://issues.jboss.org/browse/WFCORE-3479 Project: WildFly Core Issue Type: Bug Components: Domain Management Affects Versions: 3.0.10.Final Reporter: Kabir Khan Assignee: Brian Stansberry -- This message was sent by Atlassian JIRA (v7.5.0#75005)

8 years

1
0
0 / 0

[JBoss JIRA] (WFLY-9632) Prep for tightened visibility on some AttributeDefinition and AbstractAttributeDefinitionBuilder fields

by Brian Stansberry (JIRA)

[ https://issues.jboss.org/browse/WFLY-9632?page=com.atlassian.jira.plugin.... ] Brian Stansberry updated WFLY-9632: ----------------------------------- Summary: Prep for tightened visibility on some AttributeDefinition and AbstractAttributeDefinitionBuilder fields (was: Tighten visibility on some AttributeDefinition and AbstractAttributeDefinitionBuilder fields) > Prep for tightened visibility on some AttributeDefinition and AbstractAttributeDefinitionBuilder fields > ------------------------------------------------------------------------------------------------------- > > Key: WFLY-9632 > URL: https://issues.jboss.org/browse/WFLY-9632 > Project: WildFly > Issue Type: Task > Components: Domain Management > Reporter: Brian Stansberry > Assignee: Brian Stansberry > Priority: Minor > > AttributeDefinition and AbstractAttributeDefinitionBuilder in the controller module have some fields that are protected. This will make it problematic to evolve the management code in the future. Remove all direct use of these, switching to getters instead. -- This message was sent by Atlassian JIRA (v7.5.0#75005)

8 years

1
0
0 / 0

[JBoss JIRA] (WFCORE-3478) Tighten visibility on some AttributeDefinition and AbstractAttributeDefinitionBuilder fields

by Brian Stansberry (JIRA)

[ https://issues.jboss.org/browse/WFCORE-3478?page=com.atlassian.jira.plugi... ] Brian Stansberry updated WFCORE-3478: ------------------------------------- Description: AttributeDefinition and AbstractAttributeDefinitionBuilder in the controller module have some fields that are protected. This will make it problematic to evolve the management code in the future. Remove all direct use of these, switching to getters instead. (was: AttributeDefinition and some subclasses in the controller module have some fields that are not private. This will make it problematic to evolve the management code in the future. Deprecate any that are protected, with a note to use the getter, and make package protected ones private.) > Tighten visibility on some AttributeDefinition and AbstractAttributeDefinitionBuilder fields > -------------------------------------------------------------------------------------------- > > Key: WFCORE-3478 > URL: https://issues.jboss.org/browse/WFCORE-3478 > Project: WildFly Core > Issue Type: Task > Components: Domain Management > Reporter: Brian Stansberry > Assignee: Brian Stansberry > Priority: Minor > > AttributeDefinition and AbstractAttributeDefinitionBuilder in the controller module have some fields that are protected. This will make it problematic to evolve the management code in the future. Remove all direct use of these, switching to getters instead. -- This message was sent by Atlassian JIRA (v7.5.0#75005)

8 years

1
0
0 / 0

[JBoss JIRA] (WFCORE-3478) Tighten visibility on some AttributeDefinition and AbstractAttributeDefinitionBuilder fields

by Brian Stansberry (JIRA)

[ https://issues.jboss.org/browse/WFCORE-3478?page=com.atlassian.jira.plugi... ] Brian Stansberry updated WFCORE-3478: ------------------------------------- Git Pull Request: (was: https://github.com/wildfly/wildfly-core/pull/3006) > Tighten visibility on some AttributeDefinition and AbstractAttributeDefinitionBuilder fields > -------------------------------------------------------------------------------------------- > > Key: WFCORE-3478 > URL: https://issues.jboss.org/browse/WFCORE-3478 > Project: WildFly Core > Issue Type: Task > Components: Domain Management > Reporter: Brian Stansberry > Assignee: Brian Stansberry > Priority: Minor > > AttributeDefinition and AbstractAttributeDefinitionBuilder in the controller module have some fields that are protected. This will make it problematic to evolve the management code in the future. Remove all direct use of these, switching to getters instead. -- This message was sent by Atlassian JIRA (v7.5.0#75005)

8 years

1
0
0 / 0

[JBoss JIRA] (WFLY-9632) Tighten visibility on some AttributeDefinition and AbstractAttributeDefinitionBuilder fields

by Brian Stansberry (JIRA)

[ https://issues.jboss.org/browse/WFLY-9632?page=com.atlassian.jira.plugin.... ] Brian Stansberry moved WFCORE-3478 to WFLY-9632: ------------------------------------------------ Project: WildFly (was: WildFly Core) Key: WFLY-9632 (was: WFCORE-3478) Component/s: Domain Management (was: Domain Management) > Tighten visibility on some AttributeDefinition and AbstractAttributeDefinitionBuilder fields > -------------------------------------------------------------------------------------------- > > Key: WFLY-9632 > URL: https://issues.jboss.org/browse/WFLY-9632 > Project: WildFly > Issue Type: Task > Components: Domain Management > Reporter: Brian Stansberry > Assignee: Brian Stansberry > Priority: Minor > > AttributeDefinition and AbstractAttributeDefinitionBuilder in the controller module have some fields that are protected. This will make it problematic to evolve the management code in the future. Remove all direct use of these, switching to getters instead. -- This message was sent by Atlassian JIRA (v7.5.0#75005)

8 years

1
0
0 / 0

[JBoss JIRA] (WFCORE-3478) Tighten visibility on some AttributeDefinition and AbstractAttributeDefinitionBuilder fields

by Brian Stansberry (JIRA)

[ https://issues.jboss.org/browse/WFCORE-3478?page=com.atlassian.jira.plugi... ] Brian Stansberry updated WFCORE-3478: ------------------------------------- Summary: Tighten visibility on some AttributeDefinition and AbstractAttributeDefinitionBuilder fields (was: Tighten visibility on some AttributeDefinition fields) > Tighten visibility on some AttributeDefinition and AbstractAttributeDefinitionBuilder fields > -------------------------------------------------------------------------------------------- > > Key: WFCORE-3478 > URL: https://issues.jboss.org/browse/WFCORE-3478 > Project: WildFly Core > Issue Type: Task > Components: Domain Management > Reporter: Brian Stansberry > Assignee: Brian Stansberry > Priority: Minor > > AttributeDefinition and some subclasses in the controller module have some fields that are not private. This will make it problematic to evolve the management code in the future. Deprecate any that are protected, with a note to use the getter, and make package protected ones private. -- This message was sent by Atlassian JIRA (v7.5.0#75005)

8 years

1
0
0 / 0

[JBoss JIRA] (WFCORE-3478) Tighten visibility on some AttributeDefinition fields

by Brian Stansberry (JIRA)

Brian Stansberry created WFCORE-3478: ---------------------------------------- Summary: Tighten visibility on some AttributeDefinition fields Key: WFCORE-3478 URL: https://issues.jboss.org/browse/WFCORE-3478 Project: WildFly Core Issue Type: Task Components: Domain Management Reporter: Brian Stansberry Assignee: Brian Stansberry Priority: Minor AttributeDefinition and some subclasses in the controller module have some fields that are not private. This will make it problematic to evolve the management code in the future. Deprecate any that are protected, with a note to use the getter, and make package protected ones private. -- This message was sent by Atlassian JIRA (v7.5.0#75005)

8 years

1
0
0 / 0

[JBoss JIRA] (JGRP-2243) Provide a protocol to inject arbitrary view on nodes

by andrea tarocchi (JIRA)

andrea tarocchi created JGRP-2243: ------------------------------------- Summary: Provide a protocol to inject arbitrary view on nodes Key: JGRP-2243 URL: https://issues.jboss.org/browse/JGRP-2243 Project: JGroups Issue Type: Enhancement Reporter: andrea tarocchi Assignee: Bela Ban -- This message was sent by Atlassian JIRA (v7.5.0#75005)

8 years

1
0
0 / 0

[JBoss JIRA] (WFLY-9610) Start of a BatchJob is called, but BatchJob is seems no started. Absent entries in DB tables step_execution, job_execution

by Serg Pol (JIRA)

[ https://issues.jboss.org/browse/WFLY-9610?page=com.atlassian.jira.plugin.... ] Serg Pol commented on WFLY-9610: -------------------------------- Thank You very much. (y) Marry Christmas and Happy New Year! p.s. i had impression in this case that the number of batch jobs that run in the same time was less as configured max number(10) > Start of a BatchJob is called, but BatchJob is seems no started. Absent entries in DB tables step_execution, job_execution > -------------------------------------------------------------------------------------------------------------------------- > > Key: WFLY-9610 > URL: https://issues.jboss.org/browse/WFLY-9610 > Project: WildFly > Issue Type: Bug > Components: Batch > Affects Versions: 9.0.1.Final > Environment: Cluster, standalone-full-ha > Reporter: Serg Pol > Assignee: Cheng Fang > > Start of a BatchJob is called and record/entry is absent sometimes in DB table "step_execution" as well as Endtime and Exitstatus in the table job_execution (there is just info about start of BatchJob). > There are no any error nessages. > BatchJob is not started in this case according Log. > Any idea? Thanks -- This message was sent by Atlassian JIRA (v7.5.0#75005)

8 years

1
0
0 / 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira December 2017