[JBoss JIRA] (WFLY-6470) LdapUrlInSearchBaseTestCase fails with security manager
by Jan Tymel (JIRA)
Jan Tymel created WFLY-6470:
-------------------------------
Summary: LdapUrlInSearchBaseTestCase fails with security manager
Key: WFLY-6470
URL: https://issues.jboss.org/browse/WFLY-6470
Project: WildFly
Issue Type: Bug
Components: Test Suite
Reporter: Jan Tymel
Assignee: Jan Tymel
*org.jboss.as.test.integration.naming.ldap.LdapUrlInSearchBaseTestCase#testDir*
*org.jboss.as.test.integration.naming.ldap.LdapUrlInSearchBaseTestCase#testLdap*
{{./integration-tests.sh -DtestLogToFile=false -Dts.noSmoke -Dts.basic -Dtest=org.jboss.as.test.integration.naming.ldap.LdapUrlInSearchBaseTestCase -Dsecurity.manager}}
Fail with:
{code}
Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.net.SocketPermission" "127.0.0.1:10389" "connect,resolve")" in code source "(vfs:/content/ldap-test.war/WEB-INF/classes <no signer certificates>)" of "null")
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:273)
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
at java.lang.SecurityManager.checkConnect(SecurityManager.java:1051)
at org.wildfly.security.manager.WildFlySecurityManager.checkConnect(WildFlySecurityManager.java:407)
at java.net.Socket.connect(Socket.java:584)
at java.net.Socket.connect(Socket.java:538)
at java.net.Socket.<init>(Socket.java:434)
at java.net.Socket.<init>(Socket.java:211)
at com.sun.jndi.ldap.Connection.createSocket(Connection.java:363)
at com.sun.jndi.ldap.Connection.<init>(Connection.java:203)
... 50 more
{code}
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
10 years, 1 month
[JBoss JIRA] (WFLY-6469) Some tests from "org.jboss.as.test.integration.security.xacml.*" fail with security manager
by Jan Tymel (JIRA)
Jan Tymel created WFLY-6469:
-------------------------------
Summary: Some tests from "org.jboss.as.test.integration.security.xacml.*" fail with security manager
Key: WFLY-6469
URL: https://issues.jboss.org/browse/WFLY-6469
Project: WildFly
Issue Type: Bug
Components: Test Suite
Reporter: Jan Tymel
Assignee: Jan Tymel
*org.jboss.as.test.integration.security.xacml.EjbXACMLAuthorizationModuleTestCase#testAuthenticationCache*
*org.jboss.as.test.integration.security.xacml.EjbXACMLAuthorizationModuleTestCase#testAuthz*
*org.jboss.as.test.integration.security.xacml.EjbXACMLAuthorizationModuleTestCase#testNotAuthn*
*org.jboss.as.test.integration.security.xacml.EjbXACMLAuthorizationModuleTestCase#testNotAuthz*
{{./integration-tests.sh -DtestLogToFile=false -Dts.noSmoke -Dts.basic -Dtest=org.jboss.as.test.integration.security.xacml.EjbXACMLAuthorizationModuleTestCase -Dsecurity.manager}}
Fail with:
{code}
Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.io.FilePermission" "/home/jtymel/test/jboss-eap-7.0.0.ER7/dist/target/jboss-eap-7.0/modules/system/layers/base/com/sun/xml/bind/main/jaxb-runtime-2.2.11.redhat-4.jar" "read")" in code source "(vfs:/content/test-custom-xacml.jar <no signer certificates>)" of "null")
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:273)
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
at java.lang.SecurityManager.checkRead(SecurityManager.java:888)
at org.wildfly.security.manager.WildFlySecurityManager.checkRead(WildFlySecurityManager.java:377)
at java.util.zip.ZipFile.<init>(ZipFile.java:210)
at java.util.zip.ZipFile.<init>(ZipFile.java:149)
at java.util.jar.JarFile.<init>(JarFile.java:166)
at java.util.jar.JarFile.<init>(JarFile.java:103)
at sun.net.www.protocol.jar.URLJarFile.<init>(URLJarFile.java:93)
at sun.net.www.protocol.jar.URLJarFile.getJarFile(URLJarFile.java:69)
at sun.net.www.protocol.jar.JarFileFactory.get(JarFileFactory.java:84)
at sun.net.www.protocol.jar.JarURLConnection.connect(JarURLConnection.java:122)
at sun.net.www.protocol.jar.JarURLConnection.getInputStream(JarURLConnection.java:150)
at java.net.URL.openStream(URL.java:1045)
at javax.xml.bind.ContextFinder.find(ContextFinder.java:292)
at javax.xml.bind.JAXBContext.newInstance(JAXBContext.java:412)
at javax.xml.bind.JAXBContext.newInstance(JAXBContext.java:375)
at org.jboss.security.xacml.core.JBossPDP.<clinit>(JBossPDP.java:126)
... 202 more
{code}
*org.jboss.as.test.integration.security.xacml.JBossPDPInteroperabilityTestCase#testInteropTestWithObjects*
*org.jboss.as.test.integration.security.xacml.JBossPDPInteroperabilityTestCase#testInteropTestWithXMLRequests*
*org.jboss.as.test.integration.security.xacml.JBossPDPInteroperabilityTestCase#testPoliciesLoadedFromDir*
{{./integration-tests.sh -DtestLogToFile=false -Dts.noSmoke -Dts.basic -Dtest=org.jboss.as.test.integration.security.xacml.JBossPDPInteroperabilityTestCase -Dsecurity.manager}}
Fail with:
{code}
Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.io.FilePermission" "/home/jtymel/test/jboss-eap-7.0.0.ER7/dist/target/jboss-eap-7.0/modules/system/layers/base/com/sun/xml/bind/main/jaxb-runtime-2.2.11.redhat-4.jar" "read")" in code source "(vfs:/content/pdp-service-bean.jar <no signer certificates>)" of "null")
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:273)
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
at java.lang.SecurityManager.checkRead(SecurityManager.java:888)
at org.wildfly.security.manager.WildFlySecurityManager.checkRead(WildFlySecurityManager.java:377)
at java.util.zip.ZipFile.<init>(ZipFile.java:210)
at java.util.zip.ZipFile.<init>(ZipFile.java:149)
at java.util.jar.JarFile.<init>(JarFile.java:166)
at java.util.jar.JarFile.<init>(JarFile.java:103)
at sun.net.www.protocol.jar.URLJarFile.<init>(URLJarFile.java:93)
at sun.net.www.protocol.jar.URLJarFile.getJarFile(URLJarFile.java:69)
at sun.net.www.protocol.jar.JarFileFactory.get(JarFileFactory.java:84)
at sun.net.www.protocol.jar.JarURLConnection.connect(JarURLConnection.java:122)
at sun.net.www.protocol.jar.JarURLConnection.getInputStream(JarURLConnection.java:150)
at java.net.URL.openStream(URL.java:1045)
at javax.xml.bind.ContextFinder.find(ContextFinder.java:292)
at javax.xml.bind.JAXBContext.newInstance(JAXBContext.java:412)
at javax.xml.bind.JAXBContext.newInstance(JAXBContext.java:375)
at org.jboss.security.xacml.core.JBossPDP.<clinit>(JBossPDP.java:126)
... 152 more
{code}
*org.jboss.as.test.integration.security.xacml.JBossPDPServletInitializationTestCase#testPdpServlet*
{{./integration-tests.sh -DtestLogToFile=false -Dts.noSmoke -Dts.basic -Dtest=org.jboss.as.test.integration.security.xacml.JBossPDPServletInitializationTestCase#testPdpServlet -Dsecurity.manager}}
Fails with:
{code}
Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.io.FilePermission" "/home/jtymel/test/jboss-eap-7.0.0.ER7/dist/target/jboss-eap-7.0/modules/system/layers/base/com/sun/xml/bind/main/jaxb-runtime-2.2.11.redhat-4.jar" "read")" in code source "(vfs:/content/pdp-service-bean.war/WEB-INF/classes <no signer certificates>)" of "null")
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:273)
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
at java.lang.SecurityManager.checkRead(SecurityManager.java:888)
at org.wildfly.security.manager.WildFlySecurityManager.checkRead(WildFlySecurityManager.java:377)
at java.util.zip.ZipFile.<init>(ZipFile.java:210)
at java.util.zip.ZipFile.<init>(ZipFile.java:149)
at java.util.jar.JarFile.<init>(JarFile.java:166)
at java.util.jar.JarFile.<init>(JarFile.java:103)
at sun.net.www.protocol.jar.URLJarFile.<init>(URLJarFile.java:93)
at sun.net.www.protocol.jar.URLJarFile.getJarFile(URLJarFile.java:69)
at sun.net.www.protocol.jar.JarFileFactory.get(JarFileFactory.java:84)
at sun.net.www.protocol.jar.JarURLConnection.connect(JarURLConnection.java:122)
at sun.net.www.protocol.jar.JarURLConnection.getInputStream(JarURLConnection.java:150)
at java.net.URL.openStream(URL.java:1045)
at javax.xml.bind.ContextFinder.find(ContextFinder.java:292)
at javax.xml.bind.JAXBContext.newInstance(JAXBContext.java:412)
at javax.xml.bind.JAXBContext.newInstance(JAXBContext.java:375)
at org.jboss.security.xacml.core.JBossPDP.<clinit>(JBossPDP.java:126)
... 34 more
{code}
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
10 years, 1 month
[JBoss JIRA] (WFLY-6468) Some tests from "org.jboss.as.test.integration.security.vault.*" fail with security manager
by Jan Tymel (JIRA)
[ https://issues.jboss.org/browse/WFLY-6468?page=com.atlassian.jira.plugin.... ]
Jan Tymel reassigned WFLY-6468:
-------------------------------
Assignee: Jan Tymel
> Some tests from "org.jboss.as.test.integration.security.vault.*" fail with security manager
> -------------------------------------------------------------------------------------------
>
> Key: WFLY-6468
> URL: https://issues.jboss.org/browse/WFLY-6468
> Project: WildFly
> Issue Type: Bug
> Components: Test Suite
> Reporter: Jan Tymel
> Assignee: Jan Tymel
>
> *org.jboss.as.test.integration.security.vault.ExternalPasswordCommandsTestCase#testCmdPassword*
> *org.jboss.as.test.integration.security.vault.ExternalPasswordCommandsTestCase#testExtPassword*
> {{./integration-tests.sh -DtestLogToFile=false -Dts.noSmoke -Dts.basic -Dtest=org.jboss.as.test.integration.security.vault.ExternalPasswordCommandsTestCase -Dsecurity.manager}}
> Fail with:
> {code}
> [io.undertow.request] (default task-1) UT005023: Exception handling request to /vault//check: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.lang.RuntimePermission" "org.jboss.security.vault.SecurityVaultFactory.get")" in code source "(vfs:/content/vault.war/WEB-INF/classes <no signer certificates>)" of "null")
> at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:273)
> at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
> at org.jboss.security.vault.SecurityVaultFactory.get(SecurityVaultFactory.java:58)
> at org.jboss.security.vault.SecurityVaultFactory.get(SecurityVaultFactory.java:44)
> at org.jboss.security.vault.SecurityVaultUtil.getValue(SecurityVaultUtil.java:92)
> at org.jboss.as.test.integration.security.vault.CheckVaultedPassServlet.doGet(CheckVaultedPassServlet.java:59)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:687)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)
> at io.undertow.servlet.handlers.ServletHandler.handleRequest(ServletHandler.java:85)
> at io.undertow.servlet.handlers.security.ServletSecurityRoleHandler.handleRequest(ServletSecurityRoleHandler.java:62)
> at io.undertow.servlet.handlers.ServletDispatchingHandler.handleRequest(ServletDispatchingHandler.java:36)
> at org.wildfly.extension.undertow.security.SecurityContextAssociationHandler.handleRequest(SecurityContextAssociationHandler.java:78)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at io.undertow.servlet.handlers.security.SSLInformationAssociationHandler.handleRequest(SSLInformationAssociationHandler.java:131)
> at io.undertow.servlet.handlers.security.ServletAuthenticationCallHandler.handleRequest(ServletAuthenticationCallHandler.java:57)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at io.undertow.security.handlers.AbstractConfidentialityHandler.handleRequest(AbstractConfidentialityHandler.java:46)
> at io.undertow.servlet.handlers.security.ServletConfidentialityConstraintHandler.handleRequest(ServletConfidentialityConstraintHandler.java:64)
> at io.undertow.security.handlers.AuthenticationMechanismsHandler.handleRequest(AuthenticationMechanismsHandler.java:60)
> at io.undertow.servlet.handlers.security.CachedAuthenticatedSessionHandler.handleRequest(CachedAuthenticatedSessionHandler.java:77)
> at io.undertow.security.handlers.NotificationReceiverHandler.handleRequest(NotificationReceiverHandler.java:50)
> at io.undertow.security.handlers.AbstractSecurityContextAssociationHandler.handleRequest(AbstractSecurityContextAssociationHandler.java:43)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at org.wildfly.extension.undertow.security.jacc.JACCContextIdHandler.handleRequest(JACCContextIdHandler.java:61)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
> at io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:285)
> at io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:264)
> at io.undertow.servlet.handlers.ServletInitialHandler.access$000(ServletInitialHandler.java:81)
> at io.undertow.servlet.handlers.ServletInitialHandler$1$1.run(ServletInitialHandler.java:181)
> at java.security.AccessController.doPrivileged(Native Method)
> at io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:178)
> at io.undertow.server.Connectors.executeRootHandler(Connectors.java:202)
> at io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:792)
> at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
> at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
> at java.lang.Thread.run(Thread.java:745)
> {code}
> *org.jboss.as.test.integration.security.vault.VaultDatasourceTestCase#testAccessThroughVaultDatasource*
> *org.jboss.as.test.integration.security.vault.VaultDatasourceTestCase#testRejectWrongPasswordThroughVaultDatasource*
> {{./integration-tests.sh -DtestLogToFile=false -Dts.noSmoke -Dts.basic -Dtest=org.jboss.as.test.integration.security.vault.VaultDatasourceTestCase -Dsecurity.manager}}
> Fail with:
> {code}
> Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.lang.RuntimePermission" "getProtectionDomain")" in code source "(vfs:/content/test.war/WEB-INF/classes <no signer certificates>)" of "null")
> at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:273)
> at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
> at java.lang.Class.getProtectionDomain(Class.java:2299)
> at org.jboss.as.test.integration.security.vault.VaultDatasourceTestCase.<clinit>(VaultDatasourceTestCase.java:204)
> ... 62 more
> {code}
> *org.jboss.as.test.integration.security.vault.VaultSystemPropertiesTestCase#testVaultedSystemProperty*
> {{./integration-tests.sh -DtestLogToFile=false -Dts.noSmoke -Dts.basic -Dtest=org.jboss.as.test.integration.security.vault.VaultSystemPropertiesTestCase#testVaultedSystemProperty -Dsecurity.manager}}
> Fails with:
> {code}
> SEVERE [org.jboss.arquillian.protocol.jmx.JMXTestRunner] (pool-3-thread-1) Failed: org.jboss.as.test.integration.security.vault.VaultSystemPropertiesTestCase.testVaultedSystemProperty: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.util.PropertyPermission" "vault.testing.property" "read")" in code source "(vfs:/content/vault.war/WEB-INF/classes <no signer certificates>)" of "null")
> at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:273)
> at org.wildfly.security.manager.WildFlySecurityManager.checkPropertyAccess(WildFlySecurityManager.java:496)
> at java.lang.System.getProperty(System.java:717)
> at org.jboss.as.test.integration.security.vault.VaultSystemPropertiesTestCase.testVaultedSystemProperty(VaultSystemPropertiesTestCase.java:62)
> (...)
> {code}
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
10 years, 1 month
[JBoss JIRA] (WFLY-6467) Some tests from "org.jboss.as.test.integration.security.loginmodules.*" fail with security manager
by Jan Tymel (JIRA)
[ https://issues.jboss.org/browse/WFLY-6467?page=com.atlassian.jira.plugin.... ]
Jan Tymel reassigned WFLY-6467:
-------------------------------
Assignee: Jan Tymel
> Some tests from "org.jboss.as.test.integration.security.loginmodules.*" fail with security manager
> --------------------------------------------------------------------------------------------------
>
> Key: WFLY-6467
> URL: https://issues.jboss.org/browse/WFLY-6467
> Project: WildFly
> Issue Type: Bug
> Components: Test Suite
> Reporter: Jan Tymel
> Assignee: Jan Tymel
>
> *org.jboss.as.test.integration.security.loginmodules.CustomLoginModuleTestCase#testSuccessfulAuth*
> *org.jboss.as.test.integration.security.loginmodules.CustomLoginModuleTestCase#testUnsuccessfulAuth*
> {{./integration-tests.sh -DtestLogToFile=false -Dts.noSmoke -Dts.basic -Dtest=org.jboss.as.test.integration.security.loginmodules.CustomLoginModuleTestCase -Dsecurity.manager}}
> Fail with:
> {code}
> java.lang.AssertionError: expected:<302> but was:<200>
> at org.junit.Assert.fail(Assert.java:88)
> at org.junit.Assert.failNotEquals(Assert.java:834)
> at org.junit.Assert.assertEquals(Assert.java:645)
> at org.junit.Assert.assertEquals(Assert.java:631)
> at org.jboss.as.test.integration.security.loginmodules.CustomLoginModuleTestCase.makeCall(CustomLoginModuleTestCase.java:202)
> at org.jboss.as.test.integration.security.loginmodules.CustomLoginModuleTestCase.testSuccessfulAuth(CustomLoginModuleTestCase.java:153)
> {code}
> *org.jboss.as.test.integration.security.loginmodules.RunAsLoginModuleTestCase#testCleartextPassword1*
> {{./integration-tests.sh -DtestLogToFile=false -Dts.noSmoke -Dts.basic -Dtest=org.jboss.as.test.integration.security.loginmodules.RunAsLoginModuleTestCase#testCleartextPassword1 -Dsecurity.manager}}
> Fails with:
> {code}
> java.lang.AssertionError: An unexpected response: <html><head><title>Error</title></head><body>Unauthorized</body></html>
> at org.junit.Assert.fail(Assert.java:88)
> at org.junit.Assert.assertTrue(Assert.java:41)
> at org.jboss.as.test.integration.security.loginmodules.RunAsLoginModuleTestCase.testCleartextPassword1(RunAsLoginModuleTestCase.java:172)
> {code}
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
10 years, 1 month
[JBoss JIRA] (WFLY-6468) Some tests from "org.jboss.as.test.integration.security.vault.*" fail with security manager
by Jan Tymel (JIRA)
Jan Tymel created WFLY-6468:
-------------------------------
Summary: Some tests from "org.jboss.as.test.integration.security.vault.*" fail with security manager
Key: WFLY-6468
URL: https://issues.jboss.org/browse/WFLY-6468
Project: WildFly
Issue Type: Bug
Components: Test Suite
Reporter: Jan Tymel
*org.jboss.as.test.integration.security.vault.ExternalPasswordCommandsTestCase#testCmdPassword*
*org.jboss.as.test.integration.security.vault.ExternalPasswordCommandsTestCase#testExtPassword*
{{./integration-tests.sh -DtestLogToFile=false -Dts.noSmoke -Dts.basic -Dtest=org.jboss.as.test.integration.security.vault.ExternalPasswordCommandsTestCase -Dsecurity.manager}}
Fail with:
{code}
[io.undertow.request] (default task-1) UT005023: Exception handling request to /vault//check: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.lang.RuntimePermission" "org.jboss.security.vault.SecurityVaultFactory.get")" in code source "(vfs:/content/vault.war/WEB-INF/classes <no signer certificates>)" of "null")
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:273)
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
at org.jboss.security.vault.SecurityVaultFactory.get(SecurityVaultFactory.java:58)
at org.jboss.security.vault.SecurityVaultFactory.get(SecurityVaultFactory.java:44)
at org.jboss.security.vault.SecurityVaultUtil.getValue(SecurityVaultUtil.java:92)
at org.jboss.as.test.integration.security.vault.CheckVaultedPassServlet.doGet(CheckVaultedPassServlet.java:59)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:687)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)
at io.undertow.servlet.handlers.ServletHandler.handleRequest(ServletHandler.java:85)
at io.undertow.servlet.handlers.security.ServletSecurityRoleHandler.handleRequest(ServletSecurityRoleHandler.java:62)
at io.undertow.servlet.handlers.ServletDispatchingHandler.handleRequest(ServletDispatchingHandler.java:36)
at org.wildfly.extension.undertow.security.SecurityContextAssociationHandler.handleRequest(SecurityContextAssociationHandler.java:78)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at io.undertow.servlet.handlers.security.SSLInformationAssociationHandler.handleRequest(SSLInformationAssociationHandler.java:131)
at io.undertow.servlet.handlers.security.ServletAuthenticationCallHandler.handleRequest(ServletAuthenticationCallHandler.java:57)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at io.undertow.security.handlers.AbstractConfidentialityHandler.handleRequest(AbstractConfidentialityHandler.java:46)
at io.undertow.servlet.handlers.security.ServletConfidentialityConstraintHandler.handleRequest(ServletConfidentialityConstraintHandler.java:64)
at io.undertow.security.handlers.AuthenticationMechanismsHandler.handleRequest(AuthenticationMechanismsHandler.java:60)
at io.undertow.servlet.handlers.security.CachedAuthenticatedSessionHandler.handleRequest(CachedAuthenticatedSessionHandler.java:77)
at io.undertow.security.handlers.NotificationReceiverHandler.handleRequest(NotificationReceiverHandler.java:50)
at io.undertow.security.handlers.AbstractSecurityContextAssociationHandler.handleRequest(AbstractSecurityContextAssociationHandler.java:43)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at org.wildfly.extension.undertow.security.jacc.JACCContextIdHandler.handleRequest(JACCContextIdHandler.java:61)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
at io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:285)
at io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:264)
at io.undertow.servlet.handlers.ServletInitialHandler.access$000(ServletInitialHandler.java:81)
at io.undertow.servlet.handlers.ServletInitialHandler$1$1.run(ServletInitialHandler.java:181)
at java.security.AccessController.doPrivileged(Native Method)
at io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:178)
at io.undertow.server.Connectors.executeRootHandler(Connectors.java:202)
at io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:792)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
at java.lang.Thread.run(Thread.java:745)
{code}
*org.jboss.as.test.integration.security.vault.VaultDatasourceTestCase#testAccessThroughVaultDatasource*
*org.jboss.as.test.integration.security.vault.VaultDatasourceTestCase#testRejectWrongPasswordThroughVaultDatasource*
{{./integration-tests.sh -DtestLogToFile=false -Dts.noSmoke -Dts.basic -Dtest=org.jboss.as.test.integration.security.vault.VaultDatasourceTestCase -Dsecurity.manager}}
Fail with:
{code}
Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.lang.RuntimePermission" "getProtectionDomain")" in code source "(vfs:/content/test.war/WEB-INF/classes <no signer certificates>)" of "null")
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:273)
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
at java.lang.Class.getProtectionDomain(Class.java:2299)
at org.jboss.as.test.integration.security.vault.VaultDatasourceTestCase.<clinit>(VaultDatasourceTestCase.java:204)
... 62 more
{code}
*org.jboss.as.test.integration.security.vault.VaultSystemPropertiesTestCase#testVaultedSystemProperty*
{{./integration-tests.sh -DtestLogToFile=false -Dts.noSmoke -Dts.basic -Dtest=org.jboss.as.test.integration.security.vault.VaultSystemPropertiesTestCase#testVaultedSystemProperty -Dsecurity.manager}}
Fails with:
{code}
SEVERE [org.jboss.arquillian.protocol.jmx.JMXTestRunner] (pool-3-thread-1) Failed: org.jboss.as.test.integration.security.vault.VaultSystemPropertiesTestCase.testVaultedSystemProperty: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.util.PropertyPermission" "vault.testing.property" "read")" in code source "(vfs:/content/vault.war/WEB-INF/classes <no signer certificates>)" of "null")
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:273)
at org.wildfly.security.manager.WildFlySecurityManager.checkPropertyAccess(WildFlySecurityManager.java:496)
at java.lang.System.getProperty(System.java:717)
at org.jboss.as.test.integration.security.vault.VaultSystemPropertiesTestCase.testVaultedSystemProperty(VaultSystemPropertiesTestCase.java:62)
(...)
{code}
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
10 years, 1 month
[JBoss JIRA] (WFLY-6467) Some tests from "org.jboss.as.test.integration.security.loginmodules.*" fail with security manager
by Jan Tymel (JIRA)
Jan Tymel created WFLY-6467:
-------------------------------
Summary: Some tests from "org.jboss.as.test.integration.security.loginmodules.*" fail with security manager
Key: WFLY-6467
URL: https://issues.jboss.org/browse/WFLY-6467
Project: WildFly
Issue Type: Bug
Components: Test Suite
Reporter: Jan Tymel
*org.jboss.as.test.integration.security.loginmodules.CustomLoginModuleTestCase#testSuccessfulAuth*
*org.jboss.as.test.integration.security.loginmodules.CustomLoginModuleTestCase#testUnsuccessfulAuth*
{{./integration-tests.sh -DtestLogToFile=false -Dts.noSmoke -Dts.basic -Dtest=org.jboss.as.test.integration.security.loginmodules.CustomLoginModuleTestCase -Dsecurity.manager}}
Fail with:
{code}
java.lang.AssertionError: expected:<302> but was:<200>
at org.junit.Assert.fail(Assert.java:88)
at org.junit.Assert.failNotEquals(Assert.java:834)
at org.junit.Assert.assertEquals(Assert.java:645)
at org.junit.Assert.assertEquals(Assert.java:631)
at org.jboss.as.test.integration.security.loginmodules.CustomLoginModuleTestCase.makeCall(CustomLoginModuleTestCase.java:202)
at org.jboss.as.test.integration.security.loginmodules.CustomLoginModuleTestCase.testSuccessfulAuth(CustomLoginModuleTestCase.java:153)
{code}
*org.jboss.as.test.integration.security.loginmodules.RunAsLoginModuleTestCase#testCleartextPassword1*
{{./integration-tests.sh -DtestLogToFile=false -Dts.noSmoke -Dts.basic -Dtest=org.jboss.as.test.integration.security.loginmodules.RunAsLoginModuleTestCase#testCleartextPassword1 -Dsecurity.manager}}
Fails with:
{code}
java.lang.AssertionError: An unexpected response: <html><head><title>Error</title></head><body>Unauthorized</body></html>
at org.junit.Assert.fail(Assert.java:88)
at org.junit.Assert.assertTrue(Assert.java:41)
at org.jboss.as.test.integration.security.loginmodules.RunAsLoginModuleTestCase.testCleartextPassword1(RunAsLoginModuleTestCase.java:172)
{code}
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
10 years, 1 month
[JBoss JIRA] (WFLY-6466) It should be possible to provide a 'per-cpu' value when configuring the task-max-threads attribute of a worker
by Juan AMAT (JIRA)
Juan AMAT created WFLY-6466:
-------------------------------
Summary: It should be possible to provide a 'per-cpu' value when configuring the task-max-threads attribute of a worker
Key: WFLY-6466
URL: https://issues.jboss.org/browse/WFLY-6466
Project: WildFly
Issue Type: Enhancement
Components: IO
Affects Versions: 10.0.0.Final
Reporter: Juan AMAT
Assignee: Jason Greene
We have an application running under JBoss EAP 6.4 and we are in the process to make it also run under Wildfly.
While doing performance testing we noticed that the number of threads that can process the incoming http requests was way lower in Wildfly.
Indeed we were using the 'default' worker and by default the max threads is set to 16 times the cpu count. In Jboss EAP the default configuration is 512 times the cpu count.
We were hitting this max and we did increase it. But then we had to provide an absolute value (and we would need to provide different values per type of servers).
It will be nicer to be able to configure instead a per-cpu value.
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
10 years, 1 month