[JBoss JIRA] (WFLY-8459) @TransactionAttribute should not be inherited per EJB 3.2 spec
by Stuart Douglas (JIRA)
[ https://issues.jboss.org/browse/WFLY-8459?page=com.atlassian.jira.plugin.... ]
Stuart Douglas moved JBEAP-9965 to WFLY-8459:
---------------------------------------------
Project: WildFly (was: JBoss Enterprise Application Platform)
Key: WFLY-8459 (was: JBEAP-9965)
Workflow: GIT Pull Request workflow (was: CDW with loose statuses v1)
Component/s: EJB
(was: EJB)
Affects Version/s: (was: 7.0.4.GA)
> @TransactionAttribute should not be inherited per EJB 3.2 spec
> ---------------------------------------------------------------
>
> Key: WFLY-8459
> URL: https://issues.jboss.org/browse/WFLY-8459
> Project: WildFly
> Issue Type: Bug
> Components: EJB
> Environment: JBoss EA P7.0.x
> Reporter: Stuart Douglas
> Assignee: Stuart Douglas
>
> It appears that JBoss EAP behaves as the *@TransactionAttribute* attribute was inherited.
> For example if I have a bean A that
> {noformat}
> @Stateless
> @TransactionAttribute(TransactionAttributeType.REQUIRES_NEW)
> public class ABean extends Base{
>
> public void foo(){ . . .}
> }
> {noformat}
> and a supper class
> {noformat}
> @TransactionAttribute(TransactionAttributeType.SUPPORTS)
> public class Base {
>
> @TransactionAttribute(TransactionAttributeType.NEVER)
> public void foo(){ . . }
> public void bar(){ . . .}
> }
> {noformat}
> and if I call each method
> {noformat}
> beanA.bar();
> beanA.foo();
> {noformat}
> I would expect to see *bar()* without an active transaction and *foo()* with an active transaction
> but what I see is that both method have no active transaction. This seems like spec violation since the *@TransactionAttribute* are not supposed to be inherited.
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
9 years, 1 month
[JBoss JIRA] (WFCORE-2533) DeploymentRolloutFailureTestCase fails with security manager in WF core
by James Perkins (JIRA)
[ https://issues.jboss.org/browse/WFCORE-2533?page=com.atlassian.jira.plugi... ]
James Perkins reassigned WFCORE-2533:
-------------------------------------
Assignee: James Perkins
> DeploymentRolloutFailureTestCase fails with security manager in WF core
> -----------------------------------------------------------------------
>
> Key: WFCORE-2533
> URL: https://issues.jboss.org/browse/WFCORE-2533
> Project: WildFly Core
> Issue Type: Bug
> Components: Domain Management, Test Suite
> Reporter: Jan Tymel
> Assignee: James Perkins
>
> *org.jboss.as.test.integration.domain.suites.DeploymentRolloutFailureTestCase#test*
> {{cd testsuite/domain/}}
> {{mvn test -Dtest=DeploymentRolloutFailureTestCase -Dsecurity.manager -DtestLogToFile=false}}
> {code}
> [Server:main-three] 13:08:06,210 INFO [org.jboss.as.server.deployment] (MSC service thread 1-4) WFLYSRV0027: Starting deployment of "broken.jar" (runtime-name: "broken.jar")
> [Server:main-three] 13:08:06,318 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-4) MSC000001: Failed to start service test.deployment.broken: org.jboss.msc.service.StartException in service test.deployment.broken: Failed to start service
> [Server:main-three] at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1978) [jboss-msc-1.2.7.SP1-redhat-1.jar:1.2.7.SP1-redhat-1]
> [Server:main-three] at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1153) [rt.jar:1.8.0]
> [Server:main-three] at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) [rt.jar:1.8.0]
> [Server:main-three] at java.lang.Thread.run(Thread.java:785) [vm.jar:1.8.0]
> [Server:main-three] Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.util.PropertyPermission" "test.deployment.broken.fail" "read")" in code source "(vfs:/content/broken.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.broken.jar" from Service Module Loader")
> [Server:main-three] at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:278) [wildfly-elytron-1.1.0.Beta27-redhat-1.jar:1.1.0.Beta27-redhat-1]
> [Server:main-three] at org.wildfly.security.manager.WildFlySecurityManager.checkPropertyAccess(WildFlySecurityManager.java:469) [wildfly-elytron-1.1.0.Beta27-redhat-1.jar:1.1.0.Beta27-redhat-1]
> [Server:main-three] at java.lang.System.getProperty(System.java:443) [vm.jar:1.8.0]
> [Server:main-three] at java.lang.System.getProperty(System.java:427) [vm.jar:1.8.0]
> [Server:main-three] at java.lang.Boolean.getBoolean(Boolean.java:265) [rt.jar:1.8.0]
> [Server:main-three] at org.jboss.as.test.integration.domain.deployment.broken.ServiceActivatorDeployment.start(ServiceActivatorDeployment.java:54)
> [Server:main-three] at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:2032) [jboss-msc-1.2.7.SP1-redhat-1.jar:1.2.7.SP1-redhat-1]
> [Server:main-three] at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1955) [jboss-msc-1.2.7.SP1-redhat-1.jar:1.2.7.SP1-redhat-1]
> [Server:main-three] ... 3 more
> {code}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
9 years, 1 month
[JBoss JIRA] (WFCORE-2536) JmxSensitiveTestCase fails with security manager in WF core
by James Perkins (JIRA)
[ https://issues.jboss.org/browse/WFCORE-2536?page=com.atlassian.jira.plugi... ]
James Perkins commented on WFCORE-2536:
---------------------------------------
I didn't look into it, but {{JmxSensitiveTestCase}} seems to require some test before it to execute otherwise it fails. I did not dig into why, but if anyone feels this is an issue please feel free to file a new JIRA.
> JmxSensitiveTestCase fails with security manager in WF core
> -----------------------------------------------------------
>
> Key: WFCORE-2536
> URL: https://issues.jboss.org/browse/WFCORE-2536
> Project: WildFly Core
> Issue Type: Bug
> Components: Test Suite
> Reporter: Jan Tymel
> Assignee: James Perkins
> Fix For: 3.0.0.Beta11
>
>
> *org.jboss.as.test.integration.mgmt.access.JmxSensitiveTestCase*
> {{cd testsuite/rbac/}}
> {{mvn test -Dtest=JmxSensitiveTestCase -Dsecurity.manager -DtestLogToFile=false}}
> {code}
> 13:42:13,573 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-3) MSC000001: Failed to start service test.deployment.jmx: org.jboss.msc.service.StartException in service test.deployment.jmx: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("javax.management.MBeanPermission" "org.wildfly.test.jmx.Dynamic#-[jboss.test:service=testdeployments]" "registerMBean")" in code source "(vfs:/content/test-jmx-deployment.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.test-jmx-deployment.jar" from Service Module Loader")
> at org.wildfly.test.jmx.ServiceActivatorDeployment.start(ServiceActivatorDeployment.java:111)
> at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:2032)
> at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1955)
> at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1153)
> at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
> at java.lang.Thread.run(Thread.java:785)
> Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("javax.management.MBeanPermission" "org.wildfly.test.jmx.Dynamic#-[jboss.test:service=testdeployments]" "registerMBean")" in code source "(vfs:/content/test-jmx-deployment.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.test-jmx-deployment.jar" from Service Module Loader")
> at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:278)
> at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
> at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.checkMBeanPermission(DefaultMBeanServerInterceptor.java:1842)
> at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.registerMBean(DefaultMBeanServerInterceptor.java:333)
> at com.sun.jmx.mbeanserver.JmxMBeanServer.registerMBean(JmxMBeanServer.java:534)
> at org.jboss.as.jmx.PluggableMBeanServerImpl$TcclMBeanServer.registerMBean(PluggableMBeanServerImpl.java:1536)
> at org.jboss.as.jmx.PluggableMBeanServerImpl.registerMBean(PluggableMBeanServerImpl.java:878)
> at org.wildfly.test.jmx.ServiceActivatorDeployment.registerMBean(ServiceActivatorDeployment.java:139)
> at org.wildfly.test.jmx.ServiceActivatorDeployment.start(ServiceActivatorDeployment.java:99)
> ... 5 more
> {code}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
9 years, 1 month
[JBoss JIRA] (WFCORE-2536) JmxSensitiveTestCase fails with security manager in WF core
by James Perkins (JIRA)
[ https://issues.jboss.org/browse/WFCORE-2536?page=com.atlassian.jira.plugi... ]
James Perkins reopened WFCORE-2536:
-----------------------------------
Assignee: James Perkins (was: ehsavoie Hugonnet)
Reopening as this still seems to have a failure with the security manager enabled
{code}
Failed tests:
{"outcome" => "failed","failure-description" => {"WFLYCTL0080: Failed services" => {"test.deployment.jmx" => "org.jboss.msc.service.StartException in service test.deployment.jmx: java.security.AccessControlException: WFSM000001: Permission check failed (permission \"(\"javax.management.MBeanPermission\" \"org.wildfly.test.jmx.Dynamic#-[jboss.test:service=testdeployments]\" \"registerMBean\")\" in code source \"(vfs:/content/test-jmx-deployment.jar <no signer certificates>)\" of \"ModuleClassLoader for Module \"deployment.test-jmx-deployment.jar\" from Service Module Loader\")
Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission \"(\"javax.management.MBeanPermission\" \"org.wildfly.test.jmx.Dynamic#-[jboss.test:service=testdeployments]\" \"registerMBean\")\" in code source \"(vfs:/content/test-jmx-deployment.jar <no signer certificates>)\" of \"ModuleClassLoader for Module \"deployment.test-jmx-deployment.jar\" from Service Module Loader\")"},"WFLYCTL0412: Required services that are not installed:" => ["test.deployment.jmx"]},"rolled-back" => true}
{code}
> JmxSensitiveTestCase fails with security manager in WF core
> -----------------------------------------------------------
>
> Key: WFCORE-2536
> URL: https://issues.jboss.org/browse/WFCORE-2536
> Project: WildFly Core
> Issue Type: Bug
> Components: Test Suite
> Reporter: Jan Tymel
> Assignee: James Perkins
> Fix For: 3.0.0.Beta11
>
>
> *org.jboss.as.test.integration.mgmt.access.JmxSensitiveTestCase*
> {{cd testsuite/rbac/}}
> {{mvn test -Dtest=JmxSensitiveTestCase -Dsecurity.manager -DtestLogToFile=false}}
> {code}
> 13:42:13,573 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-3) MSC000001: Failed to start service test.deployment.jmx: org.jboss.msc.service.StartException in service test.deployment.jmx: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("javax.management.MBeanPermission" "org.wildfly.test.jmx.Dynamic#-[jboss.test:service=testdeployments]" "registerMBean")" in code source "(vfs:/content/test-jmx-deployment.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.test-jmx-deployment.jar" from Service Module Loader")
> at org.wildfly.test.jmx.ServiceActivatorDeployment.start(ServiceActivatorDeployment.java:111)
> at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:2032)
> at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1955)
> at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1153)
> at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
> at java.lang.Thread.run(Thread.java:785)
> Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("javax.management.MBeanPermission" "org.wildfly.test.jmx.Dynamic#-[jboss.test:service=testdeployments]" "registerMBean")" in code source "(vfs:/content/test-jmx-deployment.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.test-jmx-deployment.jar" from Service Module Loader")
> at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:278)
> at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
> at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.checkMBeanPermission(DefaultMBeanServerInterceptor.java:1842)
> at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.registerMBean(DefaultMBeanServerInterceptor.java:333)
> at com.sun.jmx.mbeanserver.JmxMBeanServer.registerMBean(JmxMBeanServer.java:534)
> at org.jboss.as.jmx.PluggableMBeanServerImpl$TcclMBeanServer.registerMBean(PluggableMBeanServerImpl.java:1536)
> at org.jboss.as.jmx.PluggableMBeanServerImpl.registerMBean(PluggableMBeanServerImpl.java:878)
> at org.wildfly.test.jmx.ServiceActivatorDeployment.registerMBean(ServiceActivatorDeployment.java:139)
> at org.wildfly.test.jmx.ServiceActivatorDeployment.start(ServiceActivatorDeployment.java:99)
> ... 5 more
> {code}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
9 years, 1 month
[JBoss JIRA] (WFCORE-2451) CS tool, invalid content of --type parameter leads to NPE
by Ilia Vassilev (JIRA)
[ https://issues.jboss.org/browse/WFCORE-2451?page=com.atlassian.jira.plugi... ]
Ilia Vassilev reassigned WFCORE-2451:
-------------------------------------
Assignee: Ilia Vassilev (was: Darran Lofthouse)
> CS tool, invalid content of --type parameter leads to NPE
> ---------------------------------------------------------
>
> Key: WFCORE-2451
> URL: https://issues.jboss.org/browse/WFCORE-2451
> Project: WildFly Core
> Issue Type: Bug
> Components: Security
> Reporter: Martin Choma
> Assignee: Ilia Vassilev
> Priority: Critical
>
> If I fill --type option with some invalid value (other then KeyStoreCredentialStore) I get NPE. For example with -t DoesNotExists I get
> {code}
> [mchoma@localhost bin]$ java -jar wildfly-elytron-tool.jar credential-store --add myalias --secret supersecretpassword --location="/tmp/test.store" --uri "cr-store://test?modifiable=true;create=true;keyStoreType=JCEKS" --password mycspassword --salt 12345678 --iteration 230 --summary -t DoesNotExists
> Exception in thread "main" java.lang.NullPointerException
> at java.util.regex.Matcher.getTextLength(Matcher.java:1283)
> at java.util.regex.Matcher.reset(Matcher.java:309)
> at java.util.regex.Matcher.<init>(Matcher.java:229)
> at java.util.regex.Pattern.matcher(Pattern.java:1093)
> at java.util.Formatter.parse(Formatter.java:2547)
> at java.util.Formatter.format(Formatter.java:2501)
> at java.io.PrintStream.format(PrintStream.java:970)
> at java.io.PrintStream.printf(PrintStream.java:871)
> at org.wildfly.security.tool.ElytronTool.main(ElytronTool.java:58)
> {code}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
9 years, 1 month
[JBoss JIRA] (WFCORE-2537) ModelControllerMBeanTestCase fails with security manager in WF core
by James Perkins (JIRA)
[ https://issues.jboss.org/browse/WFCORE-2537?page=com.atlassian.jira.plugi... ]
James Perkins reopened WFCORE-2537:
-----------------------------------
Assignee: James Perkins (was: ehsavoie Hugonnet)
Reopening as this one still seems to be failing.
{code}
mvn clean test -Dtest=ModelControllerMBeanTestCase -Dsecurity.manager
...
-------------------------------------------------------
T E S T S
-------------------------------------------------------
Running org.jboss.as.test.integration.jmx.ModelControllerMBeanTestCase
Tests run: 3, Failures: 0, Errors: 1, Skipped: 0, Time elapsed: 2.397 sec <<< FAILURE! - in org.jboss.as.test.integration.jmx.ModelControllerMBeanTestCase
testDeploymentViaJmx(org.jboss.as.test.integration.jmx.ModelControllerMBeanTestCase) Time elapsed: 0.311 sec <<< ERROR!
javax.management.ReflectionException: {
"WFLYCTL0080: Failed services" => {"test.deployment.jmx" => "org.jboss.msc.service.StartException in service test.deployment.jmx: java.security.AccessControlException: WFSM000001: Permission check failed (permission \"(\"javax.management.MBeanPermission\" \"org.wildfly.test.jmx.Dynamic#-[jboss.test:service=test-jmx.jar]\" \"registerMBean\")\" in code source \"(vfs:/content/test-jmx.jar <no signer certificates>)\" of \"ModuleClassLoader for Module \"deployment.test-jmx.jar\" from Service Module Loader\")
Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission \"(\"javax.management.MBeanPermission\" \"org.wildfly.test.jmx.Dynamic#-[jboss.test:service=test-jmx.jar]\" \"registerMBean\")\" in code source \"(vfs:/content/test-jmx.jar <no signer certificates>)\" of \"ModuleClassLoader for Module \"deployment.test-jmx.jar\" from Service Module Loader\")"},
"WFLYCTL0412: Required services that are not installed:" => ["test.deployment.jmx"]
}
at org.jboss.as.jmx.model.ModelControllerMBeanHelper.invoke(ModelControllerMBeanHelper.java:513)
at org.jboss.as.jmx.model.ModelControllerMBeanHelper.invoke(ModelControllerMBeanHelper.java:459)
at org.jboss.as.jmx.model.ModelControllerMBeanServerPlugin.invoke(ModelControllerMBeanServerPlugin.java:180)
at org.jboss.as.jmx.PluggableMBeanServerImpl.invoke(PluggableMBeanServerImpl.java:731)
at org.jboss.as.jmx.BlockingNotificationMBeanServer.invoke(BlockingNotificationMBeanServer.java:168)
at org.jboss.as.jmx.AuthorizingMBeanServer.invoke(AuthorizingMBeanServer.java:258)
at org.jboss.remotingjmx.protocol.v2.ServerProxy$InvokeHandler.handle(ServerProxy.java:950)
at org.jboss.remotingjmx.protocol.v2.ServerCommon$MessageReciever$1$1.run(ServerCommon.java:153)
at org.jboss.as.jmx.ServerInterceptorFactory$Interceptor$1.run(ServerInterceptorFactory.java:71)
at org.jboss.as.jmx.ServerInterceptorFactory$Interceptor$1.run(ServerInterceptorFactory.java:66)
at org.wildfly.security.auth.server.SecurityIdentity.runAs(SecurityIdentity.java:287)
at org.wildfly.security.auth.server.SecurityIdentity.runAs(SecurityIdentity.java:244)
at org.jboss.as.controller.AccessAuditContext.doAs(AccessAuditContext.java:254)
at org.jboss.as.controller.AccessAuditContext.doAs(AccessAuditContext.java:225)
at org.jboss.as.jmx.ServerInterceptorFactory$Interceptor.handleEvent(ServerInterceptorFactory.java:66)
at org.jboss.remotingjmx.protocol.v2.ServerCommon$MessageReciever$1.run(ServerCommon.java:149)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
at java.lang.Thread.run(Thread.java:745)
Results :
Tests in error:
ModelControllerMBeanTestCase.testDeploymentViaJmx » Reflection {
"WFLYCTL0...
Tests run: 3, Failures: 0, Errors: 1, Skipped: 0
{code}
> ModelControllerMBeanTestCase fails with security manager in WF core
> -------------------------------------------------------------------
>
> Key: WFCORE-2537
> URL: https://issues.jboss.org/browse/WFCORE-2537
> Project: WildFly Core
> Issue Type: Bug
> Components: Test Suite
> Reporter: Jan Tymel
> Assignee: James Perkins
> Fix For: 3.0.0.Beta11
>
>
> *org.jboss.as.test.integration.jmx.ModelControllerMBeanTestCase#testDeploymentViaJmx*
> {{cd testsuite/standalone/}}
> {{mvn test -Dtest=ModelControllerMBeanTestCase -Dsecurity.manager -DtestLogToFile=false}}
> {code}
> 13:53:17,762 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-3) MSC000001: Failed to start service test.deployment.jmx: org.jboss.msc.service.StartException in service test.deployment.jmx: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("javax.management.MBeanPermission" "org.wildfly.test.jmx.Dynamic#-[jboss.test:service=test-jmx.jar]" "registerMBean")" in code source "(vfs:/content/test-jmx.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.test-jmx.jar" from Service Module Loader")
> at org.wildfly.test.jmx.ServiceActivatorDeployment.start(ServiceActivatorDeployment.java:111)
> at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:2032)
> at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1955)
> at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1153)
> at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
> at java.lang.Thread.run(Thread.java:785)
> Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("javax.management.MBeanPermission" "org.wildfly.test.jmx.Dynamic#-[jboss.test:service=test-jmx.jar]" "registerMBean")" in code source "(vfs:/content/test-jmx.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.test-jmx.jar" from Service Module Loader")
> at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:278)
> at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
> at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.checkMBeanPermission(DefaultMBeanServerInterceptor.java:1842)
> at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.registerMBean(DefaultMBeanServerInterceptor.java:333)
> at com.sun.jmx.mbeanserver.JmxMBeanServer.registerMBean(JmxMBeanServer.java:534)
> at org.jboss.as.jmx.PluggableMBeanServerImpl$TcclMBeanServer.registerMBean(PluggableMBeanServerImpl.java:1536)
> at org.jboss.as.jmx.PluggableMBeanServerImpl.registerMBean(PluggableMBeanServerImpl.java:878)
> at org.wildfly.test.jmx.ServiceActivatorDeployment.registerMBean(ServiceActivatorDeployment.java:139)
> at org.wildfly.test.jmx.ServiceActivatorDeployment.start(ServiceActivatorDeployment.java:99)
> ... 5 more
> {code}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
9 years, 1 month
[JBoss JIRA] (WFCORE-2593) DeploymentReflectionIndex requires additional permissions even if it is guarded by ServerPermission("createDeploymentReflectionIndex")
by Ivo Studensky (JIRA)
Ivo Studensky created WFCORE-2593:
-------------------------------------
Summary: DeploymentReflectionIndex requires additional permissions even if it is guarded by ServerPermission("createDeploymentReflectionIndex")
Key: WFCORE-2593
URL: https://issues.jboss.org/browse/WFCORE-2593
Project: WildFly Core
Issue Type: Bug
Components: Server
Affects Versions: 3.0.0.Beta11
Reporter: Ivo Studensky
Assignee: Ivo Studensky
When running with Security Manager enabled, {{DeploymentReflectionIndex}} requires additional permissions (see below) even if its creation is guarded by {{ServerPermission("createDeploymentReflectionIndex")}}.
Required additional permissions:
{noformat}
new RuntimePermission("accessDeclaredMembers")
new ReflectPermission("suppressAccessChecks"))
{noformat}
It is actually the constructor of {{ClassReflectionIndex}} invoked from {{DeploymentReflectionIndex#getClassIndex()}} method which requires these permissions.
This issue was catched by {{org.jboss.as.test.integration.pojo.test.BeanFactoryTestCase}}, see the stacktrace:
{noformat}
20:24:38,511 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-3) MSC000001: Failed to start service jboss.pojo.D.CREATE: org.jboss.msc.service.StartException in service jboss.pojo.D.CREATE: java.lang.reflect.InvocationTargetException
at org.jboss.as.pojo.service.LifecyclePojoPhase.startInternal(LifecyclePojoPhase.java:51)
at org.jboss.as.pojo.service.AbstractPojoPhase.start(AbstractPojoPhase.java:75)
at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:2032)
at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1955)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
at java.lang.Thread.run(Thread.java:745)
Caused by: java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at org.jboss.as.pojo.service.MethodJoinpoint.dispatch(MethodJoinpoint.java:41)
at org.jboss.as.pojo.service.BeanUtils.dispatchLifecycleJoinpoint(BeanUtils.java:155)
at org.jboss.as.pojo.service.LifecyclePojoPhase.dispatchJoinpoint(LifecyclePojoPhase.java:43)
at org.jboss.as.pojo.service.LifecyclePojoPhase.startInternal(LifecyclePojoPhase.java:49)
... 6 more
Caused by: java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at org.jboss.as.test.integration.pojo.support.D.create(D.java:36)
... 14 more
Caused by: java.lang.RuntimeException: WFLYSRV0177: Error getting reflective information for class org.jboss.as.test.integration.pojo.support.B with ClassLoader ModuleClassLoader for Module "deployment.bean-factory.jar" from Service Module Loader
at org.jboss.as.server.deployment.reflect.DeploymentReflectionIndex.getClassIndex(DeploymentReflectionIndex.java:70)
at org.jboss.as.pojo.service.DefaultBeanInfo.lookup(DefaultBeanInfo.java:78)
at org.jboss.as.pojo.service.DefaultBeanInfo.getConstructor(DefaultBeanInfo.java:86)
at org.jboss.as.pojo.service.BeanUtils.instantiateBean(BeanUtils.java:98)
at org.jboss.as.pojo.descriptor.BaseBeanFactory.create(BaseBeanFactory.java:62)
... 19 more
Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.lang.RuntimePermission" "accessDeclaredMembers")" in code source "(vfs:/content/bean-factory.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.bean-factory.jar" from Service Module Loader")
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:278)
at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
at java.lang.Class.checkMemberAccess(Class.java:2348)
at java.lang.Class.getDeclaredFields(Class.java:1915)
at org.jboss.as.server.deployment.reflect.ClassReflectionIndex.<init>(ClassReflectionIndex.java:72)
at org.jboss.as.server.deployment.reflect.DeploymentReflectionIndex.getClassIndex(DeploymentReflectionIndex.java:66)
... 23 more
{noformat}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
9 years, 1 month
[JBoss JIRA] (WFCORE-2309) username-load attribute of legacy LDAP Realm stop to work
by Darran Lofthouse (JIRA)
[ https://issues.jboss.org/browse/WFCORE-2309?page=com.atlassian.jira.plugi... ]
Darran Lofthouse updated WFCORE-2309:
-------------------------------------
Fix Version/s: 3.0.0.Beta12
> username-load attribute of legacy LDAP Realm stop to work
> ---------------------------------------------------------
>
> Key: WFCORE-2309
> URL: https://issues.jboss.org/browse/WFCORE-2309
> Project: WildFly Core
> Issue Type: Bug
> Components: Security
> Reporter: Ondrej Lukas
> Assignee: Darran Lofthouse
> Priority: Blocker
> Fix For: 3.0.0.Beta12
>
>
> {{username-load}} attribute of legacy LDAP Realm stop to work. This attribute is used for assigning username from some LDAP entry attribute. In current behavior it seems that it tries to search user in LDAP through value obtained from entry 'username-load' attribute. See JBEAP-8969 for more details.
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
9 years, 1 month