December 2015 - jboss-jira - Jboss List Archives

by David Lloyd (JIRA)

[ https://issues.jboss.org/browse/ELY-85?page=com.atlassian.jira.plugin.sys... ] David Lloyd commented on ELY-85: -------------------------------- It might be necessary to create or reuse an existing JNI GSS bridge for various GSSAPI implementations in order to support this, if the JDK code does not provide this functionality. > Support GSS-Proxy > ----------------- > > Key: ELY-85 > URL: https://issues.jboss.org/browse/ELY-85 > Project: WildFly Elytron > Issue Type: Feature Request > Components: SASL > Reporter: Darran Lofthouse > Assignee: Darran Lofthouse > Fix For: 1.1.0.CR1 > > > GSS Proxy is something we should consider being able to support when running on an OS that supports it: - > https://fedorahosted.org/gss-proxy/ > The big first step will be to identify what is required to achieve this, is this something that can be solved with a custom login module or does this also impact on the Java supplied GSSAPI implementation. -- This message was sent by Atlassian JIRA (v6.4.11#64026)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (ELY-66) SASL Proxy

by David Lloyd (JIRA)

[ https://issues.jboss.org/browse/ELY-66?page=com.atlassian.jira.plugin.sys... ] David Lloyd resolved ELY-66. ---------------------------- Resolution: Rejected This does not appear to be a viable mechanism for remote security domain authentication: * It interferes with channel binding * There is no way to acquire an identity as a result of proxied authentication * Things like SASL server name do not align > SASL Proxy > ---------- > > Key: ELY-66 > URL: https://issues.jboss.org/browse/ELY-66 > Project: WildFly Elytron > Issue Type: Task > Reporter: Darran Lofthouse > Assignee: David Lloyd > Fix For: 1.1.0.CR1 > > -- This message was sent by Atlassian JIRA (v6.4.11#64026)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (ELY-385) ELY01077: Invalid alias "TLS_RSA_WITH_DES_CBC_SHA"

by David Lloyd (JIRA)

[ https://issues.jboss.org/browse/ELY-385?page=com.atlassian.jira.plugin.sy... ] David Lloyd commented on ELY-385: --------------------------------- Once ELY-389 is merged it should become very clear what is happening here. > ELY01077: Invalid alias "TLS_RSA_WITH_DES_CBC_SHA" > -------------------------------------------------- > > Key: ELY-385 > URL: https://issues.jboss.org/browse/ELY-385 > Project: WildFly Elytron > Issue Type: Bug > Components: SSL > Affects Versions: 1.0.2.Final > Reporter: Martin Choma > Assignee: Darran Lofthouse > Priority: Optional > > 05:48:13 [33m05:48:13,801 WARN [org.wildfly.security] (MSC service thread 1-2) ELY01077: Invalid alias "TLS_RSA_WITH_DES_CBC_SHA" for missing mechanism database entry "TLS_RSA_FIPS_WITH_DES_CBC_SHA" -- This message was sent by Atlassian JIRA (v6.4.11#64026)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (ELY-384) Unable to create HTTPS connection using *ECDH_RSA* cipher suites / kECDHr cipher string

by David Lloyd (JIRA)

[ https://issues.jboss.org/browse/ELY-384?page=com.atlassian.jira.plugin.sy... ] David Lloyd commented on ELY-384: --------------------------------- Once ELY-389 is merged it should become very clear what is happening here. > Unable to create HTTPS connection using *ECDH_RSA* cipher suites / kECDHr cipher string > --------------------------------------------------------------------------------------- > > Key: ELY-384 > URL: https://issues.jboss.org/browse/ELY-384 > Project: WildFly Elytron > Issue Type: Bug > Components: SSL > Affects Versions: 1.0.2.Final > Environment: Oracle Java > Reporter: Martin Choma > Assignee: Darran Lofthouse > Priority: Critical > Attachments: client_debug_eap6.log, client_debug_eap7.log, server-cert-key-ec.jks, server_debug_eap6.log, server_debug_eap7.log > > > User using these cipher suites / cipher name in EAP6 won't be able to use it in EAP7. > Setting as critical as these cipher suites, are considered for strong and widely used in my opinion. > In server log, error "no cipher suites in common" can be seen using -Djavax.net.debug=all. > Note, that analogous configuration in EAP6 works fine. > Issue can be seen on Oracle Java only, as on OpenJDK / IBM these suites are not provided by method getDefaultCipherSuites(). > Also is it possible to log "no cipher suites in common" and similar tls handshake errors without -Djavax.net.debug for better troubleshooting? -- This message was sent by Atlassian JIRA (v6.4.11#64026)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-1066) Parametr -Djboss.domain.log.dir does not have effect on HP-UX when directory does not exist

by ehsavoie Hugonnet (JIRA)

[ https://issues.jboss.org/browse/WFCORE-1066?page=com.atlassian.jira.plugi... ] ehsavoie Hugonnet reassigned WFCORE-1066: ----------------------------------------- Assignee: ehsavoie Hugonnet (was: Tomaz Cerar) > Parametr -Djboss.domain.log.dir does not have effect on HP-UX when directory does not exist > ------------------------------------------------------------------------------------------- > > Key: WFCORE-1066 > URL: https://issues.jboss.org/browse/WFCORE-1066 > Project: WildFly Core > Issue Type: Bug > Components: Scripts > Affects Versions: 2.0.0.CR7 > Reporter: Ondřej Chaloupka > Assignee: ehsavoie Hugonnet > Priority: Minor > > If you run container in domain mode with explicitly specified log directory (by parameter {{jboss.domain.log.dir}}) then such settings does not take any effect if directory does not exist before server startup. This issue can be seen only on HP-UX (hpux jdk). -- This message was sent by Atlassian JIRA (v6.4.11#64026)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (WFLY-5716) Wrong handling of request context for remote EJB calls

by Martin Kouba (JIRA)

[ https://issues.jboss.org/browse/WFLY-5716?page=com.atlassian.jira.plugin.... ] Martin Kouba updated WFLY-5716: ------------------------------- Fix Version/s: 10.0.0.CR5 > Wrong handling of request context for remote EJB calls > ------------------------------------------------------ > > Key: WFLY-5716 > URL: https://issues.jboss.org/browse/WFLY-5716 > Project: WildFly > Issue Type: Bug > Components: CDI / Weld, EJB > Affects Versions: 9.0.0.Final, 10.0.0.CR4 > Reporter: Ste Gr > Assignee: Martin Kouba > Fix For: 10.0.0.CR5 > > Attachments: wfly5716.zip > > > Two applications deployed to Wildfly. The first one provides a singleton remote ejb which uses request scoped beans (in this case a RESOURCE_LOCAL entity manager manged by a CDI producer/disposer, but +all+ request scoped beans are affected). The second application uses that EJB to get some data only accessible by the first application. > A request is made to the second app from a browser. The app will get the remote EJB and invokes two methods on it. The first method produces the entity manager, accesses the database and returns the result. The entity manager will be disposed again. The second method won't produce a new entity manager but tries to re-use the one from the previous invokation. This fails as the entity manager was disposed. > If the same use-case is made using the first app everythings works as desired. But it doesn't look right (or the request context is joined because it is the same application). It produces the the entity manager on the first invocation and closes it as soon as the whole request made from the browser is completed. Thats why the second invokation has a valid entity manager to work with. > I don't know the spec but: > - either the first EJB invokation from second app to first app is not allowed to dispose the request context (all the request scoped beans) > - or each invokation must get its own request context (entity manager must be produced and disposed again). > I've made a [stackoverflow thread|http://stackoverflow.com/q/33826720/1741604] which shows some code examples. > (JBoss AS 7.1.3.Final is also affected but it is not available in 'affected version/s') -- This message was sent by Atlassian JIRA (v6.4.11#64026)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (WFLY-5814) Upgrade Weld to 2.3.2.Final

by Martin Kouba (JIRA)

Martin Kouba created WFLY-5814: ---------------------------------- Summary: Upgrade Weld to 2.3.2.Final Key: WFLY-5814 URL: https://issues.jboss.org/browse/WFLY-5814 Project: WildFly Issue Type: Component Upgrade Components: CDI / Weld Reporter: Martin Kouba Assignee: Martin Kouba Fix For: 10.0.0.CR5 -- This message was sent by Atlassian JIRA (v6.4.11#64026)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (WFLY-5813) Quick redeploy vulnerable to CacheRegistry entry loss

by Paul Ferraro (JIRA)

Paul Ferraro created WFLY-5813: ---------------------------------- Summary: Quick redeploy vulnerable to CacheRegistry entry loss Key: WFLY-5813 URL: https://issues.jboss.org/browse/WFLY-5813 Project: WildFly Issue Type: Bug Components: Clustering Affects Versions: 10.0.0.CR4 Reporter: Paul Ferraro Assignee: Paul Ferraro On deploy, CacheRegistry adds its local entry to the cache, and on undeploy removes it entry. However, we use a topology change listener to remove entries for crashed members (since these nodes will not have removed their local entry). However, since the listener is triggered asynchronously, it is possible that the topology change fired in response to an undeploy execute *after* the redeployed CacheRegistry starts - which would cause erroneous removal of the local entry that was added. This manifests itself as an intermittent failure of the RegistryTestCase as seen in this PR: https://github.com/wildfly/wildfly/pull/8465 Not surprisingly, this issue only surfaces in the windoze runs, which, according to [~ctomc], execute faster than the linux runs. -- This message was sent by Atlassian JIRA (v6.4.11#64026)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-1196) Read resource of deployment with faulty datasource fails

by Tomaz Cerar (JIRA)

[ https://issues.jboss.org/browse/WFCORE-1196?page=com.atlassian.jira.plugi... ] Tomaz Cerar moved WFLY-5807 to WFCORE-1196: ------------------------------------------- Project: WildFly Core (was: WildFly) Key: WFCORE-1196 (was: WFLY-5807) Component/s: Domain Management (was: Domain Management) Affects Version/s: 2.0.4.Final (was: 10.0.0.CR4) > Read resource of deployment with faulty datasource fails > -------------------------------------------------------- > > Key: WFCORE-1196 > URL: https://issues.jboss.org/browse/WFCORE-1196 > Project: WildFly Core > Issue Type: Bug > Components: Domain Management > Affects Versions: 2.0.4.Final > Reporter: Harald Pehl > Assignee: Tomaz Cerar > > For the setup see HAL-1006. Reading the deployments of a server which contains a deployment with a faulty datasource, yields an undefined result: > {code} > /host=master/server=server-one:read-children-resources(child-type=deployment,recursive=true,include-runtime=true) > { > "outcome" => "success", > "result" => undefined, > "failure-description" => undefined > } > {code} -- This message was sent by Atlassian JIRA (v6.4.11#64026)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (WFLY-5807) Read resource of deployment with faulty datasource fails

by Tomaz Cerar (JIRA)

[ https://issues.jboss.org/browse/WFLY-5807?page=com.atlassian.jira.plugin.... ] Tomaz Cerar reassigned WFLY-5807: --------------------------------- Assignee: Tomaz Cerar (was: Brian Stansberry) > Read resource of deployment with faulty datasource fails > -------------------------------------------------------- > > Key: WFLY-5807 > URL: https://issues.jboss.org/browse/WFLY-5807 > Project: WildFly > Issue Type: Bug > Components: Domain Management > Affects Versions: 10.0.0.CR4 > Reporter: Harald Pehl > Assignee: Tomaz Cerar > > For the setup see HAL-1006. Reading the deployments of a server which contains a deployment with a faulty datasource, yields an undefined result: > {code} > /host=master/server=server-one:read-children-resources(child-type=deployment,recursive=true,include-runtime=true) > { > "outcome" => "success", > "result" => undefined, > "failure-description" => undefined > } > {code} -- This message was sent by Atlassian JIRA (v6.4.11#64026)

8 years, 11 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira December 2015