December 2016 - jboss-jira - Jboss List Archives

[JBoss JIRA] (ELY-817) Property expansion in wildfly-client.xml

by David Lloyd (JIRA)

David Lloyd created ELY-817: ------------------------------- Summary: Property expansion in wildfly-client.xml Key: ELY-817 URL: https://issues.jboss.org/browse/ELY-817 Project: WildFly Elytron Issue Type: Task Components: XML Reporter: David Lloyd We need to be able to support property expansion in the configuration file. This may be something that should be supported by the client configuration library as there are multiple consumers. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

7 years, 6 months

1
0
0 / 0

[JBoss JIRA] (DROOLS-1377) Remove no longer used ReteOO implementation

by Mario Fusco (JIRA)

Mario Fusco created DROOLS-1377: ----------------------------------- Summary: Remove no longer used ReteOO implementation Key: DROOLS-1377 URL: https://issues.jboss.org/browse/DROOLS-1377 Project: Drools Issue Type: Enhancement Components: core engine Reporter: Mario Fusco Assignee: Mario Fusco -- This message was sent by Atlassian JIRA (v7.2.3#72005)

7 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFLY-4211) MBean implementation lifecycle methods in MSC threads

by RH Bugzilla Integration (JIRA)

[ https://issues.jboss.org/browse/WFLY-4211?page=com.atlassian.jira.plugin.... ] RH Bugzilla Integration commented on WFLY-4211: ----------------------------------------------- Peter Palaga <ppalaga(a)redhat.com> changed the Status of [bug 1401637|https://bugzilla.redhat.com/show_bug.cgi?id=1401637] from NEW to ASSIGNED > MBean implementation lifecycle methods in MSC threads > ----------------------------------------------------- > > Key: WFLY-4211 > URL: https://issues.jboss.org/browse/WFLY-4211 > Project: WildFly > Issue Type: Bug > Components: JMX > Affects Versions: 9.0.0.Alpha1 > Reporter: Eduardo Martins > Assignee: Eduardo Martins > Fix For: 9.0.0.Beta1 > > > MBean lifecycle methods should not be invoked from MSC threads, the implementation of these may block the thread, for instance due to a JNDI bind. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

7 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2089) Infinite wildfly boot on StartException in service start

by Brian Stansberry (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2089?page=com.atlassian.jira.plugi... ] Brian Stansberry updated WFCORE-2089: ------------------------------------- Priority: Blocker (was: Major) > Infinite wildfly boot on StartException in service start > -------------------------------------------------------- > > Key: WFCORE-2089 > URL: https://issues.jboss.org/browse/WFCORE-2089 > Project: WildFly Core > Issue Type: Bug > Components: Domain Management > Reporter: Jan Kalina > Priority: Blocker > > Following exception (and probably similar too) will cause wildfly frozing during start. Visible especially during integration tests (which will never ends), but reproducible directly too (see steps). > {code:java} > 15:59:37,252 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-4) MSC000001: Failed to start service org.wildfly.security.security-realm.ManagementRealm: org.jboss.msc.service.StartException in service org.wildfly.security.security-realm.ManagementRealm: WFLYELY00025: Referenced property file is invalid: ELY01006: No realm name found in password property file > at org.wildfly.extension.elytron.PropertiesRealmDefinition$1$1.get(PropertiesRealmDefinition.java:185) > at org.wildfly.extension.elytron.PropertiesRealmDefinition$1$1.get(PropertiesRealmDefinition.java:164) > at org.wildfly.extension.elytron.TrivialService.start(TrivialService.java:53) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:1963) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1896) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) > at java.lang.Thread.run(Thread.java:745) > {code} > *Update:* This problem with infinite boot will occure everytime the start() method of some service throws StartException(). Not an Elytron problem. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

7 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7744) Support for masked passwords in client XML config

by David Lloyd (JIRA)

David Lloyd created WFLY-7744: --------------------------------- Summary: Support for masked passwords in client XML config Key: WFLY-7744 URL: https://issues.jboss.org/browse/WFLY-7744 Project: WildFly Issue Type: Task Reporter: David Lloyd Priority: Critical We need a way to support masked passwords in the auth configuration file, either as: * A dedicated masked-password-type XML type * Adding necessary fields to hashed-password-type * Adding a modular crypt format Needs to be supported anywhere passwords are allowed. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

7 years, 6 months

1
0
0 / 0

[JBoss JIRA] (ELY-816) Support for masked passwords in client XML config

by David Lloyd (JIRA)

[ https://issues.jboss.org/browse/ELY-816?page=com.atlassian.jira.plugin.sy... ] David Lloyd moved WFLY-7744 to ELY-816: --------------------------------------- Project: WildFly Elytron (was: WildFly) Key: ELY-816 (was: WFLY-7744) > Support for masked passwords in client XML config > ------------------------------------------------- > > Key: ELY-816 > URL: https://issues.jboss.org/browse/ELY-816 > Project: WildFly Elytron > Issue Type: Task > Reporter: David Lloyd > Priority: Critical > > We need a way to support masked passwords in the auth configuration file, either as: > * A dedicated masked-password-type XML type > * Adding necessary fields to hashed-password-type > * Adding a modular crypt format > Needs to be supported anywhere passwords are allowed. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

7 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2089) Infinite wildfly boot on StartException in service start

by Brian Stansberry (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2089?page=com.atlassian.jira.plugi... ] Brian Stansberry commented on WFCORE-2089: ------------------------------------------ Please attach a thread dump. > Infinite wildfly boot on StartException in service start > -------------------------------------------------------- > > Key: WFCORE-2089 > URL: https://issues.jboss.org/browse/WFCORE-2089 > Project: WildFly Core > Issue Type: Bug > Components: Domain Management > Reporter: Jan Kalina > > Following exception (and probably similar too) will cause wildfly frozing during start. Visible especially during integration tests (which will never ends), but reproducible directly too (see steps). > {code:java} > 15:59:37,252 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-4) MSC000001: Failed to start service org.wildfly.security.security-realm.ManagementRealm: org.jboss.msc.service.StartException in service org.wildfly.security.security-realm.ManagementRealm: WFLYELY00025: Referenced property file is invalid: ELY01006: No realm name found in password property file > at org.wildfly.extension.elytron.PropertiesRealmDefinition$1$1.get(PropertiesRealmDefinition.java:185) > at org.wildfly.extension.elytron.PropertiesRealmDefinition$1$1.get(PropertiesRealmDefinition.java:164) > at org.wildfly.extension.elytron.TrivialService.start(TrivialService.java:53) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:1963) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1896) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) > at java.lang.Thread.run(Thread.java:745) > {code} > *Update:* This problem with infinite boot will occure everytime the start() method of some service throws StartException(). Not an Elytron problem. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

7 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7491) joiner attribute of concatenating-principal-decoder (Elytron subsystem) is marked as nillable but can not be

by Jan Kalina (JIRA)

[ https://issues.jboss.org/browse/WFLY-7491?page=com.atlassian.jira.plugin.... ] Jan Kalina reopened WFLY-7491: ------------------------------ > joiner attribute of concatenating-principal-decoder (Elytron subsystem) is marked as nillable but can not be > ------------------------------------------------------------------------------------------------------------ > > Key: WFLY-7491 > URL: https://issues.jboss.org/browse/WFLY-7491 > Project: WildFly > Issue Type: Bug > Components: Security > Reporter: Ondrej Kotek > Assignee: Jan Kalina > Labels: user_experience > Fix For: 11.0.0.Alpha1 > > > *Issue description:* > After having undefined the {{joiner}} attribute of {{concatenating-principal-decoder}} in Elytron subsystem, the server does not start. The {{joiner}} attribute is declared as {{"nillable" => true}} in CLI, but can not be -- see _Steps to Reproce_ that results in > {noformat} > 14:50:29,357 ERROR [org.jboss.as.controller] (Controller Boot Thread) > OPVDX001: Validation error in standalone-elytron.xml =========================== > 346: <permission class-name="org.wildfly.security.auth.permission.LoginPermission"/> > 347: </constant-permission-mapper> > 348: <concatenating-principal-decoder name="concatPrincDecoder"> > ^^^^ 'concatenating-principal-decoder' is missing one or more required attributes > All of the following are required: joiner > 349: <principal-decoder name="constPrincDecoder"/> > 350: <principal-decoder name="constPrincDecoder"/> > 351: </concatenating-principal-decoder> > The underlying error message was: > > ParseError at [row,col]:[348,17] > > Message: WFLYCTL0133: Missing required attribute(s): joiner > ================================================================================ > 14:50:29,357 ERROR [org.jboss.as.server] (Controller Boot Thread) WFLYSRV0055: Caught exception during boot: org.jboss.as.controller.persistence.ConfigurationPersistenceException: WFLYCTL0085: Failed to parse configuration > at org.jboss.as.controller.persistence.XmlConfigurationPersister.load(XmlConfigurationPersister.java:143) > at org.jboss.as.server.ServerService.boot(ServerService.java:355) > at org.jboss.as.controller.AbstractControllerService$1.run(AbstractControllerService.java:302) > at java.lang.Thread.run(Thread.java:745) > 14:50:29,358 FATAL [org.jboss.as.server] (Controller Boot Thread) WFLYSRV0056: Server boot has failed in an unrecoverable manner; exiting. See previous messages for details. > {noformat} > The {{joiner}} attribute has {{use="required"}} in _wildfly-elytron_1_0.xsd_. > *Suggestions for improvement:* > In case it makes sense to have no joiner, the joiner should not be required. (There could be reasonable cases.) Otherwise, the CLI {{joiner}} attribute should be declared as {{"nillable" => false}}. > The XSD {{joiner}} attribute should have defined {{default="."}}. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

7 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFLY-7704) JVM segfault: mod_cluster subsystem cannot handle wildfly-openssl integration

by Radoslav Husar (JIRA)

[ https://issues.jboss.org/browse/WFLY-7704?page=com.atlassian.jira.plugin.... ] Radoslav Husar updated WFLY-7704: --------------------------------- Component/s: (was: mod_cluster) > JVM segfault: mod_cluster subsystem cannot handle wildfly-openssl integration > ----------------------------------------------------------------------------- > > Key: WFLY-7704 > URL: https://issues.jboss.org/browse/WFLY-7704 > Project: WildFly > Issue Type: Bug > Affects Versions: 10.1.0.Final > Reporter: Michal Karm Babacek > Assignee: Stuart Douglas > Priority: Critical > > h3. Preface > mod_cluster subsystem doesn't use Security Realms, unfortunately, so one must replicate SSL configuration both in security realms and in mod_cluster subsystem. > Apparently, there is a confusion about setting protocol and cipher suite in integration between mod_cluster subsystem and wildfly-openssl: > {noformat} > at org.wildfly.openssl.OpenSSLEngine.setEnabledProtocols(OpenSSLEngine.java:754) > at org.wildfly.openssl.OpenSSLSocket.setEnabledCipherSuites(OpenSSLSocket.java:204) > at org.jboss.modcluster.mcmp.impl.JSSESocketFactory.initSocket(JSSESocketFactory.java:384) > at org.jboss.modcluster.mcmp.impl.JSSESocketFactory.createSocket(JSSESocketFactory.java:124) > {noformat} > h3. Configuration > {code} > <security-realm name="JBossTestServer"> > <server-identities> > <ssl protocol="openssl.TLS"> > <engine enabled-cipher-suites="TLS_RSA_WITH_AES_128_GCM_SHA256"/> > <keystore provider="JKS" path="/opt/noe-tests/resources/ssl/proper/server-cert-key.jks" keystore-password="tomcat" alias="javaserver"/> > </ssl> > </server-identities> > <authentication> > <truststore path="/opt/noe-tests/resources/ssl/proper/ca-cert.jks" keystore-password="tomcat"/> > </authentication> > </security-realm> > <subsystem xmlns="urn:jboss:domain:modcluster:2.0"> > <mod-cluster-config advertise-socket="modcluster" connector="https"> > <dynamic-load-provider> > <load-metric type="cpu"/> > </dynamic-load-provider> > <ssl key-alias="javaclient" password="tomcat" certificate-key-file="/opt/noe-tests/resources/ssl/proper/client-cert-key.jks" cipher-suite="TLS_RSA_WITH_AES_128_GCM_SHA256" protocol="openssl.TLS" ca-certificate-file="/opt/noe-tests/resources/ssl/proper/ca-cert.jks"/> > </mod-cluster-config> > </subsystem> > [org.wildfly.openssl.SSL] OpenSSL Version OpenSSL 1.0.2h-fips 3 May 2016 > {code} > h3. JVM segfault > Java Stackstrace on MCMP handler registration: [OpenSSLEngine.java:L754|https://github.com/wildfly/wildfly-openssl/blob/1...] > {noformat} > 12:01:02,249 ERROR [org.jboss.mod_cluster.undertow] (UndertowEventHandlerAdapter - 1) Unsupported protocol TLS_RSA_WITH_AES_128_GCM_SHA256: java.lang.IllegalArgumentException: Unsupported protocol TLS_RSA_WITH_AES_128_GCM_SHA256 > at org.wildfly.openssl.OpenSSLEngine.setEnabledProtocols(OpenSSLEngine.java:754) > at org.wildfly.openssl.OpenSSLSocket.setEnabledCipherSuites(OpenSSLSocket.java:204) > at org.jboss.modcluster.mcmp.impl.JSSESocketFactory.initSocket(JSSESocketFactory.java:384) > at org.jboss.modcluster.mcmp.impl.JSSESocketFactory.createSocket(JSSESocketFactory.java:124) > at org.jboss.modcluster.mcmp.impl.DefaultMCMPHandler$Proxy.getConnection(DefaultMCMPHandler.java:850) > at org.jboss.modcluster.mcmp.impl.DefaultMCMPHandler$Proxy.getConnectionWriter(DefaultMCMPHandler.java:886) > at org.jboss.modcluster.mcmp.impl.DefaultMCMPHandler.sendRequest(DefaultMCMPHandler.java:514) > at org.jboss.modcluster.mcmp.impl.DefaultMCMPHandler.sendRequest(DefaultMCMPHandler.java:605) > at org.jboss.modcluster.mcmp.impl.DefaultMCMPHandler.status(DefaultMCMPHandler.java:387) > at org.jboss.modcluster.mcmp.impl.DefaultMCMPHandler.status(DefaultMCMPHandler.java:365) > at org.jboss.modcluster.ModClusterService.status(ModClusterService.java:454) > at org.wildfly.mod_cluster.undertow.UndertowEventHandlerAdapter.run(UndertowEventHandlerAdapter.java:179) > at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511) > at java.util.concurrent.FutureTask.runAndReset(FutureTask.java:308) > at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.access$301(ScheduledThreadPoolExecutor.java:180) > at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.run(ScheduledThreadPoolExecutor.java:294) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) > at java.lang.Thread.run(Thread.java:745) > at org.jboss.threads.JBossThread.run(JBossThread.java:320) > {noformat}causes JVM segfault: {noformat}# > # A fatal error has been detected by the Java Runtime Environment: > # > # SIGSEGV (0xb) at pc=0x00007fd40e7798c5, pid=29489, tid=0x00007fd44f7f7700 > #{noformat} > Java and Native stacktrace: for a call from Java [byte\[\] getSessionId0(long ssl)|https://github.com/wildfly/wildfly-openssl/blob/1.0.0.Alpha4/java/sr...] to C [getting session from underlying OpenSSL integration fails|https://github.com/wildfly/wildfly-openssl/blob/1.0.0.Alpha4/libwfs...: [0x00007fd44f6f7000,0x00007fd44f7f8000], sp=0x00007fd44f7f6358, free space=1020k > Native frames: (J=compiled Java code, j=interpreted, Vv=VM code, C=native code) > C [libssl.so+0x478c5] SSL_SESSION_get_id+0x5 > C [libwfssl.so+0x4a0b] Java_org_wildfly_openssl_SSLImpl_getSessionId0+0x6b > j org.wildfly.openssl.SSLImpl.getSessionId0(J)[B+0 > j org.wildfly.openssl.SSLImpl.getSessionId(J)[B+1 > j org.wildfly.openssl.OpenSSLEngine.shutdown()V+42 > j org.wildfly.openssl.OpenSSLEngine.finalize()V+5 > J 1218 C1 java.lang.ref.Finalizer.runFinalizer(Lsun/misc/JavaLangAccess;)V (62 bytes) @ 0x00007fd4593dbf84 [0x00007fd4593dba00+0x584] > J 1217 C1 java.lang.ref.Finalizer.access$100(Ljava/lang/ref/Finalizer;Lsun/misc/JavaLangAccess;)V (6 bytes) @ 0x00007fd4593db69c [0x00007fd4593db640+0x5c] > j java.lang.ref.Finalizer$FinalizerThread.run()V+45 > v ~StubRoutines::call_stub > V [libjvm.so+0x657fbb] > V [libjvm.so+0x6593b7] > V [libjvm.so+0x659877] > V [libjvm.so+0x6a9371] > V [libjvm.so+0x9de335] > V [libjvm.so+0x9de590] > V [libjvm.so+0x8a18b2] > C [libpthread.so.0+0x7aa1] > Java frames: (J=compiled Java code, j=interpreted, Vv=VM code) > j org.wildfly.openssl.SSLImpl.getSessionId0(J)[B+0 > j org.wildfly.openssl.SSLImpl.getSessionId(J)[B+1 > j org.wildfly.openssl.OpenSSLEngine.shutdown()V+42 > j org.wildfly.openssl.OpenSSLEngine.finalize()V+5 > J 1218 C1 java.lang.ref.Finalizer.runFinalizer(Lsun/misc/JavaLangAccess;)V (62 bytes) @ 0x00007fd4593dbf84 [0x00007fd4593dba00+0x584] > J 1217 C1 java.lang.ref.Finalizer.access$100(Ljava/lang/ref/Finalizer;Lsun/misc/JavaLangAccess;)V (6 bytes) @ 0x00007fd4593db69c [0x00007fd4593db640+0x5c] > j java.lang.ref.Finalizer$FinalizerThread.run()V+45 > v ~StubRoutines::call_stub{noformat} > h3. OpenSSL 1.0.2h > This is the declaration of the called [SSL_SESSION_get_id|https://github.com/openssl/openssl/blob/OpenSSL_1_0_2h...] and this is the definition in [ssl_sess.c|https://github.com/openssl/openssl/blob/OpenSSL_1_0_2h/ssl/ssl...] > h3. Conclusion > IMHO it wouldn't do any harm to check whether {{session}} ain't NULL before passing it on down to OpenSSL, but it is only the aftermath, not the original cause I suppose. It might be worth checking whether the bug is actually not simply in the mod_cluster java part, in calling {{org.wildfly.openssl.OpenSSLEngine}} with confused protocols/cipher suites. > Cheers > -K- -- This message was sent by Atlassian JIRA (v7.2.3#72005)

7 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2089) Infinite wildfly boot on StartException in service start

by Jan Kalina (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2089?page=com.atlassian.jira.plugi... ] Jan Kalina moved WFLY-7743 to WFCORE-2089: ------------------------------------------ Project: WildFly Core (was: WildFly) Key: WFCORE-2089 (was: WFLY-7743) Component/s: Domain Management (was: Security) Affects Version/s: (was: 10.1.0.Final) > Infinite wildfly boot on StartException in service start > -------------------------------------------------------- > > Key: WFCORE-2089 > URL: https://issues.jboss.org/browse/WFCORE-2089 > Project: WildFly Core > Issue Type: Bug > Components: Domain Management > Reporter: Jan Kalina > > Following exception (and probably similar too) will cause wildfly frozing during start. Visible especially during integration tests (which will never ends), but reproducible directly too (see steps). > {code:java} > 15:59:37,252 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-4) MSC000001: Failed to start service org.wildfly.security.security-realm.ManagementRealm: org.jboss.msc.service.StartException in service org.wildfly.security.security-realm.ManagementRealm: WFLYELY00025: Referenced property file is invalid: ELY01006: No realm name found in password property file > at org.wildfly.extension.elytron.PropertiesRealmDefinition$1$1.get(PropertiesRealmDefinition.java:185) > at org.wildfly.extension.elytron.PropertiesRealmDefinition$1$1.get(PropertiesRealmDefinition.java:164) > at org.wildfly.extension.elytron.TrivialService.start(TrivialService.java:53) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:1963) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1896) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) > at java.lang.Thread.run(Thread.java:745) > {code} > *Update:* This problem with infinite boot will occure everytime the start() method of some service throws StartException(). Not an Elytron problem. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

7 years, 6 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira December 2016