]
Darran Lofthouse updated WFCORE-4223:
-------------------------------------
Fix Version/s: 8.0.0.Beta2
IllegalArgumentException when add a server-ssl-sni-context with no
host-context-map
-----------------------------------------------------------------------------------
Key: WFCORE-4223
URL:
https://issues.jboss.org/browse/WFCORE-4223
Project: WildFly Core
Issue Type: Bug
Components: Security
Reporter: Claudio Miranda
Assignee: Martin Mazanek
Priority: Minor
Fix For: 8.0.0.Beta2
"add" operation for /subsystem=elytron/server-ssl-sni-context doesn't
require "host-context-map" attribute, however add a server-ssl-sni-context
without this attribute results in an IllegalArgumentException. Set the
"host-context-map" and the "add" operation works.
{code}
[standalone@localhost:9990 /]
/subsystem=elytron/server-ssl-sni-context=sn3:add(default-ssl-context=wssl_ctx)
{
"outcome" => "failed",
"failure-description" => "WFLYCTL0158: Operation handler failed:
java.lang.IllegalArgumentException",
"rolled-back" => true,
"response-headers" => {"process-state" =>
"reload-required"}
}
{code}
{code}
11:29:09,803 ERROR [org.jboss.as.controller.management-operation]
(management-handler-thread - 3) WFLYCTL0013: Operation ("add") failed - address:
([
("subsystem" => "elytron"),
("server-ssl-sni-context" => "sn3")
]): java.lang.IllegalArgumentException
at org.jboss.dmr.ModelValue.getKeys(ModelValue.java:139)
at org.jboss.dmr.ModelNode.keys(ModelNode.java:1580)
at
org.wildfly.extension.elytron.SSLDefinitions$7.getValueSupplier(SSLDefinitions.java:1046)
at
org.wildfly.extension.elytron.TrivialAddHandler.performRuntime(TrivialAddHandler.java:68)
at
org.jboss.as.controller.AbstractAddStepHandler$1.execute(AbstractAddStepHandler.java:159)
at
org.jboss.as.controller.AbstractOperationContext.executeStep(AbstractOperationContext.java:999)
at
org.jboss.as.controller.AbstractOperationContext.processStages(AbstractOperationContext.java:743)
at
org.jboss.as.controller.AbstractOperationContext.executeOperation(AbstractOperationContext.java:467)
at
org.jboss.as.controller.OperationContextImpl.executeOperation(OperationContextImpl.java:1411)
at
org.jboss.as.controller.ModelControllerImpl.internalExecute(ModelControllerImpl.java:423)
at
org.jboss.as.controller.ModelControllerImpl.lambda$execute$1(ModelControllerImpl.java:243)
at
org.wildfly.security.auth.server.SecurityIdentity.runAs(SecurityIdentity.java:289)
at
org.wildfly.security.auth.server.SecurityIdentity.runAs(SecurityIdentity.java:255)
at
org.jboss.as.controller.ModelControllerImpl.execute(ModelControllerImpl.java:243)
at
org.jboss.as.controller.remote.ModelControllerClientOperationHandler$ExecuteRequestHandler.doExecute(ModelControllerClientOperationHandler.java:240)
at
org.jboss.as.controller.remote.ModelControllerClientOperationHandler$ExecuteRequestHandler.access$400(ModelControllerClientOperationHandler.java:138)
at
org.jboss.as.controller.remote.ModelControllerClientOperationHandler$ExecuteRequestHandler$1$1.run(ModelControllerClientOperationHandler.java:162)
at
org.jboss.as.controller.remote.ModelControllerClientOperationHandler$ExecuteRequestHandler$1$1.run(ModelControllerClientOperationHandler.java:158)
at
org.wildfly.security.auth.server.SecurityIdentity.runAs(SecurityIdentity.java:313)
at
org.wildfly.security.auth.server.SecurityIdentity.runAs(SecurityIdentity.java:270)
at org.jboss.as.controller.AccessAuditContext.doAs(AccessAuditContext.java:254)
{code}
{code}
/subsystem=elytron/server-ssl-sni-context=sn1:read-operation-description(name=add)
{
"outcome" => "success",
"result" => {
"operation-name" => "add",
"description" => "Adds a SNI context",
"request-properties" => {
"default-ssl-context" => {
"type" => STRING,
"description" => "The context to use if no SNI
information is present, or if it does not match any mappings",
"expressions-allowed" => false,
"required" => true,
"nillable" => false,
"capability-reference" =>
"org.wildfly.security.ssl-context",
"min-length" => 1L,
"max-length" => 2147483647L
},
"host-context-map" => {
"type" => OBJECT,
"description" => "A mapping between a server name and
an SSContext",
"expressions-allowed" => false,
"required" => false,
"nillable" => true,
"capability-reference" =>
"org.wildfly.security.ssl-context",
"value-type" => STRING
}
},
"reply-properties" => {},
"read-only" => false,
"restart-required" => "resource-services",
"runtime-only" => false
},
"response-headers" => {"process-state" =>
"reload-required"}
}
{code}