October 2016 - jboss-jira - Jboss List Archives

[JBoss JIRA] (WFLY-7325) LDAP referrals following - SSLSocketFactory not set

by Jan Kalina (JIRA)

[ https://issues.jboss.org/browse/WFLY-7325?page=com.atlassian.jira.plugin.... ] Jan Kalina moved ELY-670 to WFLY-7325: -------------------------------------- Project: WildFly (was: WildFly Elytron) Key: WFLY-7325 (was: ELY-670) Component/s: Security (was: SSL) > LDAP referrals following - SSLSocketFactory not set > --------------------------------------------------- > > Key: WFLY-7325 > URL: https://issues.jboss.org/browse/WFLY-7325 > Project: WildFly > Issue Type: Bug > Components: Security > Reporter: Jan Kalina > Assignee: Jan Kalina > > When the referral-mode="follow" is used, NamingEnumeration.hasMore create new LdapReferralContext and socket, which is not covered by DelegatingDirContext yet. > {code:text} > java.lang.RuntimeException: ELY01084: Error while consuming results from search. SearchDn [dc=users,dc=elytron,dc=wildfly,dc=org], Filter [(|(objectclass=referral)(uid={0}))], Filter Args [[refUser]]. > Caused by: javax.naming.PartialResultException [Root exception is javax.naming.CommunicationException: localhost:11391 [Root exception is java.lang.IllegalStateException: ELY04025: DirContext tries to connect without SSLSocketFactory thread local setting]] > at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMoreImpl(AbstractLdapNamingEnumeration.java:237) > at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMore(AbstractLdapNamingEnumeration.java:189) > at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity$LdapSearch$1.tryAdvance(LdapSecurityRealm.java:938) > ... 39 more > Caused by: javax.naming.CommunicationException: localhost:11391 [Root exception is java.lang.IllegalStateException: ELY04025: DirContext tries to connect without SSLSocketFactory thread local setting] > at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:95) > at com.sun.jndi.ldap.LdapReferralException.getReferralContext(LdapReferralException.java:150) > at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMoreReferrals(AbstractLdapNamingEnumeration.java:325) > at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMoreImpl(AbstractLdapNamingEnumeration.java:227) > ... 41 more > Caused by: java.lang.IllegalStateException: ELY04025: DirContext tries to connect without SSLSocketFactory thread local setting > at org.wildfly.security.auth.realm.ldap.ThreadLocalSSLSocketFactory.getDefault(ThreadLocalSSLSocketFactory.java:46) > at sun.reflect.GeneratedMethodAccessor4.invoke(Unknown Source) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:498) > at com.sun.jndi.ldap.Connection.createSocket(Connection.java:284) > at com.sun.jndi.ldap.Connection.<init>(Connection.java:203) > at com.sun.jndi.ldap.LdapClient.<init>(LdapClient.java:137) > at com.sun.jndi.ldap.LdapClient.getInstance(LdapClient.java:1614) > at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2746) > at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:319) > at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:192) > at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:151) > at com.sun.jndi.url.ldap.ldapURLContextFactory.getObjectInstance(ldapURLContextFactory.java:52) > at javax.naming.spi.NamingManager.getURLObject(NamingManager.java:601) > at javax.naming.spi.NamingManager.processURL(NamingManager.java:381) > at javax.naming.spi.NamingManager.processURLAddrs(NamingManager.java:361) > at javax.naming.spi.NamingManager.getObjectInstance(NamingManager.java:333) > at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:114) > ... 44 more > {code} -- This message was sent by Atlassian JIRA (v6.4.11#64026)

9 years, 6 months

1
0
0 / 0

[JBoss JIRA] (ELY-670) LDAP referrals following - SSLSocketFactory not set

by Jan Kalina (JIRA)

Jan Kalina created ELY-670: ------------------------------ Summary: LDAP referrals following - SSLSocketFactory not set Key: ELY-670 URL: https://issues.jboss.org/browse/ELY-670 Project: WildFly Elytron Issue Type: Bug Components: SSL Reporter: Jan Kalina Assignee: Jan Kalina When the referral-mode="follow" is used, NamingEnumeration.hasMore create new LdapReferralContext and socket, which is not covered by DelegatingDirContext yet. {code:text} java.lang.RuntimeException: ELY01084: Error while consuming results from search. SearchDn [dc=users,dc=elytron,dc=wildfly,dc=org], Filter [(|(objectclass=referral)(uid={0}))], Filter Args [[refUser]]. Caused by: javax.naming.PartialResultException [Root exception is javax.naming.CommunicationException: localhost:11391 [Root exception is java.lang.IllegalStateException: ELY04025: DirContext tries to connect without SSLSocketFactory thread local setting]] at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMoreImpl(AbstractLdapNamingEnumeration.java:237) at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMore(AbstractLdapNamingEnumeration.java:189) at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity$LdapSearch$1.tryAdvance(LdapSecurityRealm.java:938) ... 39 more Caused by: javax.naming.CommunicationException: localhost:11391 [Root exception is java.lang.IllegalStateException: ELY04025: DirContext tries to connect without SSLSocketFactory thread local setting] at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:95) at com.sun.jndi.ldap.LdapReferralException.getReferralContext(LdapReferralException.java:150) at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMoreReferrals(AbstractLdapNamingEnumeration.java:325) at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMoreImpl(AbstractLdapNamingEnumeration.java:227) ... 41 more Caused by: java.lang.IllegalStateException: ELY04025: DirContext tries to connect without SSLSocketFactory thread local setting at org.wildfly.security.auth.realm.ldap.ThreadLocalSSLSocketFactory.getDefault(ThreadLocalSSLSocketFactory.java:46) at sun.reflect.GeneratedMethodAccessor4.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:498) at com.sun.jndi.ldap.Connection.createSocket(Connection.java:284) at com.sun.jndi.ldap.Connection.<init>(Connection.java:203) at com.sun.jndi.ldap.LdapClient.<init>(LdapClient.java:137) at com.sun.jndi.ldap.LdapClient.getInstance(LdapClient.java:1614) at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2746) at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:319) at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:192) at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:151) at com.sun.jndi.url.ldap.ldapURLContextFactory.getObjectInstance(ldapURLContextFactory.java:52) at javax.naming.spi.NamingManager.getURLObject(NamingManager.java:601) at javax.naming.spi.NamingManager.processURL(NamingManager.java:381) at javax.naming.spi.NamingManager.processURLAddrs(NamingManager.java:361) at javax.naming.spi.NamingManager.getObjectInstance(NamingManager.java:333) at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:114) ... 44 more {code} -- This message was sent by Atlassian JIRA (v6.4.11#64026)

9 years, 6 months

1
0
0 / 0

[JBoss JIRA] (ELY-669) LDAP referrals following - SSLSocketFactory not set

by Jan Kalina (JIRA)

Jan Kalina created ELY-669: ------------------------------ Summary: LDAP referrals following - SSLSocketFactory not set Key: ELY-669 URL: https://issues.jboss.org/browse/ELY-669 Project: WildFly Elytron Issue Type: Bug Components: SSL Reporter: Jan Kalina Assignee: Jan Kalina When the referral-mode="follow" is used, NamingEnumeration.hasMore create new LdapReferralContext and socket, which is not covered by DelegatingDirContext yet. {code:text} java.lang.RuntimeException: ELY01084: Error while consuming results from search. SearchDn [dc=users,dc=elytron,dc=wildfly,dc=org], Filter [(|(objectclass=referral)(uid={0}))], Filter Args [[refUser]]. Caused by: javax.naming.PartialResultException [Root exception is javax.naming.CommunicationException: localhost:11391 [Root exception is java.lang.IllegalStateException: ELY04025: DirContext tries to connect without SSLSocketFactory thread local setting]] at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMoreImpl(AbstractLdapNamingEnumeration.java:237) at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMore(AbstractLdapNamingEnumeration.java:189) at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity$LdapSearch$1.tryAdvance(LdapSecurityRealm.java:938) ... 39 more Caused by: javax.naming.CommunicationException: localhost:11391 [Root exception is java.lang.IllegalStateException: ELY04025: DirContext tries to connect without SSLSocketFactory thread local setting] at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:95) at com.sun.jndi.ldap.LdapReferralException.getReferralContext(LdapReferralException.java:150) at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMoreReferrals(AbstractLdapNamingEnumeration.java:325) at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMoreImpl(AbstractLdapNamingEnumeration.java:227) ... 41 more Caused by: java.lang.IllegalStateException: ELY04025: DirContext tries to connect without SSLSocketFactory thread local setting at org.wildfly.security.auth.realm.ldap.ThreadLocalSSLSocketFactory.getDefault(ThreadLocalSSLSocketFactory.java:46) at sun.reflect.GeneratedMethodAccessor4.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:498) at com.sun.jndi.ldap.Connection.createSocket(Connection.java:284) at com.sun.jndi.ldap.Connection.<init>(Connection.java:203) at com.sun.jndi.ldap.LdapClient.<init>(LdapClient.java:137) at com.sun.jndi.ldap.LdapClient.getInstance(LdapClient.java:1614) at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2746) at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:319) at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:192) at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:151) at com.sun.jndi.url.ldap.ldapURLContextFactory.getObjectInstance(ldapURLContextFactory.java:52) at javax.naming.spi.NamingManager.getURLObject(NamingManager.java:601) at javax.naming.spi.NamingManager.processURL(NamingManager.java:381) at javax.naming.spi.NamingManager.processURLAddrs(NamingManager.java:361) at javax.naming.spi.NamingManager.getObjectInstance(NamingManager.java:333) at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:114) ... 44 more {code} -- This message was sent by Atlassian JIRA (v6.4.11#64026)

9 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7322) LDAP referrals does not work in Elytron ldap-realm

by Jan Kalina (JIRA)

[ https://issues.jboss.org/browse/WFLY-7322?page=com.atlassian.jira.plugin.... ] Jan Kalina commented on WFLY-7322: ---------------------------------- Problem in FOLLOW mode: NamingEnumeration.hasMore create new LdapReferralContext and socket, which is not covered by DelegatingDirContext yet. {code:text} java.lang.RuntimeException: ELY01084: Error while consuming results from search. SearchDn [dc=users,dc=elytron,dc=wildfly,dc=org], Filter [(|(objectclass=referral)(uid={0}))], Filter Args [[refUser]]. Caused by: javax.naming.PartialResultException [Root exception is javax.naming.CommunicationException: localhost:11391 [Root exception is java.lang.IllegalStateException: ELY04025: DirContext tries to connect without SSLSocketFactory thread local setting]] at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMoreImpl(AbstractLdapNamingEnumeration.java:237) at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMore(AbstractLdapNamingEnumeration.java:189) at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity$LdapSearch$1.tryAdvance(LdapSecurityRealm.java:938) ... 39 more Caused by: javax.naming.CommunicationException: localhost:11391 [Root exception is java.lang.IllegalStateException: ELY04025: DirContext tries to connect without SSLSocketFactory thread local setting] at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:95) at com.sun.jndi.ldap.LdapReferralException.getReferralContext(LdapReferralException.java:150) at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMoreReferrals(AbstractLdapNamingEnumeration.java:325) at com.sun.jndi.ldap.AbstractLdapNamingEnumeration.hasMoreImpl(AbstractLdapNamingEnumeration.java:227) ... 41 more Caused by: java.lang.IllegalStateException: ELY04025: DirContext tries to connect without SSLSocketFactory thread local setting at org.wildfly.security.auth.realm.ldap.ThreadLocalSSLSocketFactory.getDefault(ThreadLocalSSLSocketFactory.java:46) at sun.reflect.GeneratedMethodAccessor4.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:498) at com.sun.jndi.ldap.Connection.createSocket(Connection.java:284) at com.sun.jndi.ldap.Connection.<init>(Connection.java:203) at com.sun.jndi.ldap.LdapClient.<init>(LdapClient.java:137) at com.sun.jndi.ldap.LdapClient.getInstance(LdapClient.java:1614) at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2746) at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:319) at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:192) at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:151) at com.sun.jndi.url.ldap.ldapURLContextFactory.getObjectInstance(ldapURLContextFactory.java:52) at javax.naming.spi.NamingManager.getURLObject(NamingManager.java:601) at javax.naming.spi.NamingManager.processURL(NamingManager.java:381) at javax.naming.spi.NamingManager.processURLAddrs(NamingManager.java:361) at javax.naming.spi.NamingManager.getObjectInstance(NamingManager.java:333) at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:114) ... 44 more {code} > LDAP referrals does not work in Elytron ldap-realm > -------------------------------------------------- > > Key: WFLY-7322 > URL: https://issues.jboss.org/browse/WFLY-7322 > Project: WildFly > Issue Type: Bug > Components: Security > Affects Versions: 11.0.0.Alpha1 > Reporter: Ondrej Lukas > Assignee: Jan Kalina > Priority: Blocker > > LDAP referrals cannot be used in Elytron {{ldap-realm}}. Ldap Realm is currently not prepared to work with referrals at all: > * {{ldap-realm}} does not include any options which enable working with LDAP referrals (PicketBox use {{baseFilter}} option which can be configured to return also referral object) > * implementation of {{org.wildfly.security.auth.realm.ldap.LdapSecurityRealm}} does not include any logic which handles referrals > Referrals are important feature of LDAP. It has to be covered by Elytron => requested blocker flag. -- This message was sent by Atlassian JIRA (v6.4.11#64026)

9 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7324) Add EAP 7.0.0 transformers tests for infinispan subsystem

by Radoslav Husar (JIRA)

Radoslav Husar created WFLY-7324: ------------------------------------ Summary: Add EAP 7.0.0 transformers tests for infinispan subsystem Key: WFLY-7324 URL: https://issues.jboss.org/browse/WFLY-7324 Project: WildFly Issue Type: Task Components: Clustering Affects Versions: 10.1.0.Final Reporter: Radoslav Husar Assignee: Radoslav Husar Needs to be added before any elytron integration work. -- This message was sent by Atlassian JIRA (v6.4.11#64026)

9 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7318) Add EAP 7.0.0 transformers tests for mod_cluster subsystem

by Radoslav Husar (JIRA)

[ https://issues.jboss.org/browse/WFLY-7318?page=com.atlassian.jira.plugin.... ] Radoslav Husar updated WFLY-7318: --------------------------------- Affects Version/s: (was: 10.0.0.Final) > Add EAP 7.0.0 transformers tests for mod_cluster subsystem > ---------------------------------------------------------- > > Key: WFLY-7318 > URL: https://issues.jboss.org/browse/WFLY-7318 > Project: WildFly > Issue Type: Task > Components: mod_cluster > Affects Versions: 10.1.0.Final > Reporter: Radoslav Husar > Assignee: Radoslav Husar > > Needs to be added before any elytron integration work. -- This message was sent by Atlassian JIRA (v6.4.11#64026)

9 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7323) Add EAP 7.0.0 transformers tests for jgroups subsystem

by Radoslav Husar (JIRA)

[ https://issues.jboss.org/browse/WFLY-7323?page=com.atlassian.jira.plugin.... ] Radoslav Husar updated WFLY-7323: --------------------------------- Issue Type: Task (was: Bug) > Add EAP 7.0.0 transformers tests for jgroups subsystem > ------------------------------------------------------ > > Key: WFLY-7323 > URL: https://issues.jboss.org/browse/WFLY-7323 > Project: WildFly > Issue Type: Task > Components: Clustering > Affects Versions: 10.1.0.Final > Reporter: Radoslav Husar > Assignee: Radoslav Husar > > Needs to be added before any elytron integration work. -- This message was sent by Atlassian JIRA (v6.4.11#64026)

9 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-1869) When unregistering a resource in the MMR, if the address targets an alias then we should just 'ignore' the unregistering of hte submodel

by ehsavoie Hugonnet (JIRA)

[ https://issues.jboss.org/browse/WFCORE-1869?page=com.atlassian.jira.plugi... ] ehsavoie Hugonnet updated WFCORE-1869: -------------------------------------- Summary: When unregistering a resource in the MMR, if the address targets an alias then we should just 'ignore' the unregistering of hte submodel (was: When unregistering a ressource in the MMR, if the address targets an alias then we should just 'ignore' the unregistering of hte submodel) > When unregistering a resource in the MMR, if the address targets an alias then we should just 'ignore' the unregistering of hte submodel > ---------------------------------------------------------------------------------------------------------------------------------------- > > Key: WFCORE-1869 > URL: https://issues.jboss.org/browse/WFCORE-1869 > Project: WildFly Core > Issue Type: Bug > Components: Domain Management > Affects Versions: 3.0.0.Alpha9 > Reporter: ehsavoie Hugonnet > Assignee: ehsavoie Hugonnet > > When unregistering the submodel of a resource, if it targets an alias with children the operation will fail like this: > java.lang.IllegalArgumentException: WFLYCTL0277: An alias is already registered at location '/subsystem=infinispan/cache-container=*/distributed-cache=*/file-store=FILE_STORE': java.lang.IllegalArgumentException: WFLYCTL0277: An alias is already registered at location '/subsystem=infinispan/cache-container=*/distributed-cache=*/file-store=FILE_STORE' > at org.jboss.as.controller.registry.AliasResourceRegistration.alreadyRegistered(AliasResourceRegistration.java:291) > at org.jboss.as.controller.registry.AliasResourceRegistration.unregisterSubModel(AliasResourceRegistration.java:123) > at org.jboss.as.controller.registry.ConcreteResourceRegistration.unregisterSubModel(ConcreteResourceRegistration.java:261) > at org.jboss.as.controller.registry.ConcreteResourceRegistration.unregisterSubModel(ConcreteResourceRegistration.java:261) > at org.jboss.as.controller.registry.ConcreteResourceRegistration.unregisterSubModel(ConcreteResourceRegistration.java:261) > at org.jboss.as.controller.registry.ConcreteResourceRegistration.unregisterSubModel(ConcreteResourceRegistration.java:261) > at org.jboss.as.controller.extension.ExtensionRegistry.removeExtension(ExtensionRegistry.java:341) > We should ignore the removal of the children of an alias resource registration. -- This message was sent by Atlassian JIRA (v6.4.11#64026)

9 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7323) Add EAP 7.0.0 transformers tests for jgroups subsystem

by Radoslav Husar (JIRA)

Radoslav Husar created WFLY-7323: ------------------------------------ Summary: Add EAP 7.0.0 transformers tests for jgroups subsystem Key: WFLY-7323 URL: https://issues.jboss.org/browse/WFLY-7323 Project: WildFly Issue Type: Bug Components: Clustering Affects Versions: 10.1.0.Final Reporter: Radoslav Husar Assignee: Radoslav Husar -- This message was sent by Atlassian JIRA (v6.4.11#64026)

9 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7323) Add EAP 7.0.0 transformers tests for jgroups subsystem

by Radoslav Husar (JIRA)

[ https://issues.jboss.org/browse/WFLY-7323?page=com.atlassian.jira.plugin.... ] Radoslav Husar updated WFLY-7323: --------------------------------- Description: Needs to be added before any elytron integration work. > Add EAP 7.0.0 transformers tests for jgroups subsystem > ------------------------------------------------------ > > Key: WFLY-7323 > URL: https://issues.jboss.org/browse/WFLY-7323 > Project: WildFly > Issue Type: Bug > Components: Clustering > Affects Versions: 10.1.0.Final > Reporter: Radoslav Husar > Assignee: Radoslav Husar > > Needs to be added before any elytron integration work. -- This message was sent by Atlassian JIRA (v6.4.11#64026)

9 years, 6 months

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira October 2016