April 2017 - jboss-jira - Jboss List Archives

[JBoss JIRA] (WFLY-6191) ExpressionSubstitutionInContainerTestCase fails due to AccessControlException with security manager enabled

by ehsavoie Hugonnet (JIRA)

[ https://issues.jboss.org/browse/WFLY-6191?page=com.atlassian.jira.plugin.... ] ehsavoie Hugonnet commented on WFLY-6191: ----------------------------------------- Yes it is in the fix I have currently for all missing permissions in testsuite/integration/basic. I agree about those tests that mix management operations with deployments. > ExpressionSubstitutionInContainerTestCase fails due to AccessControlException with security manager enabled > ----------------------------------------------------------------------------------------------------------- > > Key: WFLY-6191 > URL: https://issues.jboss.org/browse/WFLY-6191 > Project: WildFly > Issue Type: Bug > Components: Test Suite > Reporter: Hynek Švábek > Assignee: Ivo Studensky > > *org.jboss.as.test.integration.management.api.expression.ExpressionSubstitutionInContainerTestCase* > {{./integration-tests.sh -fae -Dmaven.test.failure.ignore=true -DfailIfNoTests=false -Dsecurity.manager -Dts.basic -Dts.noSmoke -Dtest=org.jboss.as.test.integration.management.api.expression.ExpressionSubstitutionInContainerTestCase}} > {code} > Failed to start service jboss.deployment.unit."expression-substitution-test.jar".INSTALL: org.jboss.msc.service.StartException in service jboss.deployment.unit."expression-substitution-test.jar".INSTALL: WFLYSRV0153: Failed to process phase INSTALL of deployment "expression-substitution-test.jar" > at org.jboss.as.server.deployment.DeploymentUnitPhaseService.start(DeploymentUnitPhaseService.java:154) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:1948) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1881) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) > at java.lang.Thread.run(Thread.java:745) > Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.lang.RuntimePermission" "getClassLoader")" in code source "(vfs:/content/expression-substitution-test.jar <no signer certificates>)" of "null") > at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:273) > at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175) > at java.lang.ClassLoader.checkClassLoaderPermission(ClassLoader.java:1525) > at java.lang.Class.getClassLoader(Class.java:683) > at org.jboss.msc.service.ServiceControllerImpl.invokeListener(ServiceControllerImpl.java:1529) > at org.jboss.msc.service.ServiceControllerImpl.access$2800(ServiceControllerImpl.java:51) > at org.jboss.msc.service.ServiceControllerImpl$ListenerTask.run(ServiceControllerImpl.java:2099) > at org.jboss.msc.service.ServiceControllerImpl.commitInstallation(ServiceControllerImpl.java:265) > at org.jboss.msc.service.ServiceContainerImpl.install(ServiceContainerImpl.java:771) > at org.jboss.msc.service.ServiceTargetImpl.install(ServiceTargetImpl.java:223) > at org.jboss.msc.service.ServiceControllerImpl$ChildServiceTarget.install(ServiceControllerImpl.java:2401) > at org.jboss.msc.service.ServiceTargetImpl.install(ServiceTargetImpl.java:223) > at org.jboss.msc.service.ServiceControllerImpl$ChildServiceTarget.install(ServiceControllerImpl.java:2401) > at org.jboss.msc.service.ServiceBuilderImpl.install(ServiceBuilderImpl.java:317) > at org.jboss.as.test.integration.management.api.expression.ExpressionTestManagementService.activate(ExpressionTestManagementService.java:69) > at org.jboss.as.server.deployment.service.ServiceActivatorProcessor.deploy(ServiceActivatorProcessor.java:74) > at org.jboss.as.server.deployment.DeploymentUnitPhaseService.start(DeploymentUnitPhaseService.java:147) > ... 5 more > {code} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-6191) ExpressionSubstitutionInContainerTestCase fails due to AccessControlException with security manager enabled

by Brian Stansberry (JIRA)

[ https://issues.jboss.org/browse/WFLY-6191?page=com.atlassian.jira.plugin.... ] Brian Stansberry commented on WFLY-6191: ---------------------------------------- Sorry, I misspoke. I was thinking of the 'controller' module, which is not supported for use in an app, but this test uses controller-client, which is jboss.api=public. I still think it's a strange test and would like to see it go away, but I don't have a strong argument for that. > ExpressionSubstitutionInContainerTestCase fails due to AccessControlException with security manager enabled > ----------------------------------------------------------------------------------------------------------- > > Key: WFLY-6191 > URL: https://issues.jboss.org/browse/WFLY-6191 > Project: WildFly > Issue Type: Bug > Components: Test Suite > Reporter: Hynek Švábek > Assignee: Ivo Studensky > > *org.jboss.as.test.integration.management.api.expression.ExpressionSubstitutionInContainerTestCase* > {{./integration-tests.sh -fae -Dmaven.test.failure.ignore=true -DfailIfNoTests=false -Dsecurity.manager -Dts.basic -Dts.noSmoke -Dtest=org.jboss.as.test.integration.management.api.expression.ExpressionSubstitutionInContainerTestCase}} > {code} > Failed to start service jboss.deployment.unit."expression-substitution-test.jar".INSTALL: org.jboss.msc.service.StartException in service jboss.deployment.unit."expression-substitution-test.jar".INSTALL: WFLYSRV0153: Failed to process phase INSTALL of deployment "expression-substitution-test.jar" > at org.jboss.as.server.deployment.DeploymentUnitPhaseService.start(DeploymentUnitPhaseService.java:154) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:1948) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1881) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) > at java.lang.Thread.run(Thread.java:745) > Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.lang.RuntimePermission" "getClassLoader")" in code source "(vfs:/content/expression-substitution-test.jar <no signer certificates>)" of "null") > at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:273) > at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175) > at java.lang.ClassLoader.checkClassLoaderPermission(ClassLoader.java:1525) > at java.lang.Class.getClassLoader(Class.java:683) > at org.jboss.msc.service.ServiceControllerImpl.invokeListener(ServiceControllerImpl.java:1529) > at org.jboss.msc.service.ServiceControllerImpl.access$2800(ServiceControllerImpl.java:51) > at org.jboss.msc.service.ServiceControllerImpl$ListenerTask.run(ServiceControllerImpl.java:2099) > at org.jboss.msc.service.ServiceControllerImpl.commitInstallation(ServiceControllerImpl.java:265) > at org.jboss.msc.service.ServiceContainerImpl.install(ServiceContainerImpl.java:771) > at org.jboss.msc.service.ServiceTargetImpl.install(ServiceTargetImpl.java:223) > at org.jboss.msc.service.ServiceControllerImpl$ChildServiceTarget.install(ServiceControllerImpl.java:2401) > at org.jboss.msc.service.ServiceTargetImpl.install(ServiceTargetImpl.java:223) > at org.jboss.msc.service.ServiceControllerImpl$ChildServiceTarget.install(ServiceControllerImpl.java:2401) > at org.jboss.msc.service.ServiceBuilderImpl.install(ServiceBuilderImpl.java:317) > at org.jboss.as.test.integration.management.api.expression.ExpressionTestManagementService.activate(ExpressionTestManagementService.java:69) > at org.jboss.as.server.deployment.service.ServiceActivatorProcessor.deploy(ServiceActivatorProcessor.java:74) > at org.jboss.as.server.deployment.DeploymentUnitPhaseService.start(DeploymentUnitPhaseService.java:147) > ... 5 more > {code} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (LOGMGR-151) SyslogHandler should allow to set custom SSLSocketFactory

by James Perkins (JIRA)

[ https://issues.jboss.org/browse/LOGMGR-151?page=com.atlassian.jira.plugin... ] James Perkins commented on LOGMGR-151: -------------------------------------- As a temporary workaround you could extend the {{org.jboss.logmanager.handlers.TcpOutputStream}} and pass it a {{javax.net.SocketFactory}}. There is a protected constructor that accepts one. Keep in mind that the core management audit logging handles reconnecting on it's own. If you extend the {{TcpOutputStream}} and pass in a {{SocketFactory}} then the handler itself will attempt to reconnect on failed writes. > SyslogHandler should allow to set custom SSLSocketFactory > --------------------------------------------------------- > > Key: LOGMGR-151 > URL: https://issues.jboss.org/browse/LOGMGR-151 > Project: JBoss Log Manager > Issue Type: Enhancement > Affects Versions: 2.0.5.Final > Reporter: Jan Kalina > > As part of Wildfly Elytron integration would be useful to allow to put custom *SSLSocketFactory* into *SyslogHandler*. > It would allow to use *ssl-context* defined in elytron (with custom configuration of CAs, truststore, keystore) for syslog over TLS. > (SyslogHandler is used for syslog audit logging in Elytron too - and currently no way to put elytron ssl-context into) -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-8557) CDI injection in entity listeners failing in WAR contained in EAR

by Scott Marlow (JIRA)

[ https://issues.jboss.org/browse/WFLY-8557?page=com.atlassian.jira.plugin.... ] Scott Marlow commented on WFLY-8557: ------------------------------------ Stuart suggested that we need to register the org.jboss.as.jpa.beanmanager.BeanManagerAfterDeploymentValidation (AfterDeploymentValidation) sooner, excellent suggestion, as that seems to help. With an ear, We first call PersistenceBeginInstallProcessor (which doesn't currently register BeanManagerAfterDeploymentValidation) , Then WeldDeploymentProcessor is called for EAR, without JPA cdi entity listener extension registered. With a change to register the BeanManagerAfterDeploymentValidation earlier, during PersistenceBeginInstallProcessor, we are now registering the CDI extension before WeldDeploymentProcessor runs. Thanks [~swd847] and [~mkouba] for the help! > CDI injection in entity listeners failing in WAR contained in EAR > ----------------------------------------------------------------- > > Key: WFLY-8557 > URL: https://issues.jboss.org/browse/WFLY-8557 > Project: WildFly > Issue Type: Bug > Components: CDI / Weld, JPA / Hibernate > Affects Versions: 11.0.0.Alpha1 > Reporter: Scott Marlow > Assignee: Scott Marlow > > From [https://issues.jboss.org/browse/WFLY-2387?focusedCommentId=13391617&page=...] > {quote} > I just tried this out in wildfly 11.0.0.Alpha1 and it works fine, when our application is deployed directly as WAR archive. But as soon as I add that same WAR to an EAR file and deploy that, we get the following exception: > {{java.lang.RuntimeException: org.hibernate.HibernateException: CDI not initialized as expected > at org.hibernate.jpa.event.internal.jpa.ListenerCallback.performCallback(ListenerCallback.java:48) > at org.hibernate.jpa.event.internal.jpa.CallbackRegistryImpl.callback(CallbackRegistryImpl.java:94) > at org.hibernate.jpa.event.internal.jpa.CallbackRegistryImpl.preCreate(CallbackRegistryImpl.java:54) > at org.hibernate.jpa.event.internal.core.JpaPersistEventListener.saveWithGeneratedId(JpaPersistEventListener.java:66) > at org.hibernate.event.internal.DefaultPersistEventListener.entityIsTransient(DefaultPersistEventListener.java:189) > at org.hibernate.event.internal.DefaultPersistEventListener.onPersist(DefaultPersistEventListener.java:132) > at org.hibernate.event.internal.DefaultPersistEventListener.onPersist(DefaultPersistEventListener.java:58) > at org.hibernate.internal.SessionImpl.firePersist(SessionImpl.java:778) > at org.hibernate.internal.SessionImpl.persist(SessionImpl.java:751) > at org.hibernate.internal.SessionImpl.persist(SessionImpl.java:756) > at org.hibernate.jpa.spi.AbstractEntityManagerImpl.persist(AbstractEntityManagerImpl.java:1146) > at org.jboss.as.jpa.container.AbstractEntityManager.persist(AbstractEntityManager.java:580) > at com.hp.murcs.dao.AbstractDAO.save(AbstractDAO.java:41) > at com.hp.murcs.rest.resource.v2.ClientResource.setClientConfiguration(ClientResource.java:143) > at com.hp.murcs.rest.resource.v2.ClientResource$Proxy$_$$_WeldSubclass.setClientConfiguration$$super(Unknown Source) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:498) > at org.jboss.weld.interceptor.proxy.TerminalAroundInvokeInvocationContext.proceedInternal(TerminalAroundInvokeInvocationContext.java:49) > at org.jboss.weld.interceptor.proxy.AroundInvokeInvocationContext.proceed(AroundInvokeInvocationContext.java:77) > at com.arjuna.ats.jta.cdi.transactional.TransactionalInterceptorBase.invokeInCallerTx(TransactionalInterceptorBase.java:129) > at com.arjuna.ats.jta.cdi.transactional.TransactionalInterceptorRequired.doIntercept(TransactionalInterceptorRequired.java:55) > at com.arjuna.ats.jta.cdi.transactional.TransactionalInterceptorBase.intercept(TransactionalInterceptorBase.java:76) > at com.arjuna.ats.jta.cdi.transactional.TransactionalInterceptorRequired.intercept(TransactionalInterceptorRequired.java:47) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:498) > at org.jboss.weld.interceptor.reader.SimpleInterceptorInvocation$SimpleMethodInvocation.invoke(SimpleInterceptorInvocation.java:73) > at org.jboss.weld.interceptor.proxy.NonTerminalAroundInvokeInvocationContext.proceedInternal(NonTerminalAroundInvokeInvocationContext.java:64) > at org.jboss.weld.interceptor.proxy.AroundInvokeInvocationContext.proceed(AroundInvokeInvocationContext.java:77) > at com.hp.murcs.utils.interceptor.TxInterceptor.handleTransaction(TxInterceptor.java:36) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:498) > at org.jboss.weld.interceptor.reader.SimpleInterceptorInvocation$SimpleMethodInvocation.invoke(SimpleInterceptorInvocation.java:73) > at org.jboss.weld.interceptor.proxy.NonTerminalAroundInvokeInvocationContext.proceedInternal(NonTerminalAroundInvokeInvocationContext.java:64) > at org.jboss.weld.interceptor.proxy.AroundInvokeInvocationContext.proceed(AroundInvokeInvocationContext.java:77) > at com.hp.murcs.utils.interceptor.TxInterceptor.handleTransaction(TxInterceptor.java:36) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:498) > at org.jboss.weld.interceptor.reader.SimpleInterceptorInvocation$SimpleMethodInvocation.invoke(SimpleInterceptorInvocation.java:73) > at org.jboss.weld.interceptor.proxy.InterceptorMethodHandler.executeAroundInvoke(InterceptorMethodHandler.java:84) > at org.jboss.weld.interceptor.proxy.InterceptorMethodHandler.executeInterception(InterceptorMethodHandler.java:72) > at org.jboss.weld.interceptor.proxy.InterceptorMethodHandler.invoke(InterceptorMethodHandler.java:56) > at org.jboss.weld.bean.proxy.CombinedInterceptorAndDecoratorStackMethodHandler.invoke(CombinedInterceptorAndDecoratorStackMethodHandler.java:79) > at org.jboss.weld.bean.proxy.CombinedInterceptorAndDecoratorStackMethodHandler.invoke(CombinedInterceptorAndDecoratorStackMethodHandler.java:68) > at com.hp.murcs.rest.resource.v2.ClientResource$Proxy$_$$_WeldSubclass.setClientConfiguration(Unknown Source) > at com.hp.murcs.DefaultAdminClientImporter.importDefaultAdminClient(DefaultAdminClientImporter.java:34) > at com.hp.murcs.DefaultAdminClientImporter$Proxy$_$$_WeldSubclass.importDefaultAdminClient$$super(Unknown Source) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:498) > at org.jboss.weld.interceptor.proxy.TerminalAroundInvokeInvocationContext.proceedInternal(TerminalAroundInvokeInvocationContext.java:49) > at org.jboss.weld.interceptor.proxy.AroundInvokeInvocationContext.proceed(AroundInvokeInvocationContext.java:77) > at com.arjuna.ats.jta.cdi.transactional.TransactionalInterceptorBase.invokeInOurTx(TransactionalInterceptorBase.java:117) > at com.arjuna.ats.jta.cdi.transactional.TransactionalInterceptorRequired.doIntercept(TransactionalInterceptorRequired.java:53) > at com.arjuna.ats.jta.cdi.transactional.TransactionalInterceptorBase.intercept(TransactionalInterceptorBase.java:76) > at com.arjuna.ats.jta.cdi.transactional.TransactionalInterceptorRequired.intercept(TransactionalInterceptorRequired.java:47) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:498) > at org.jboss.weld.interceptor.reader.SimpleInterceptorInvocation$SimpleMethodInvocation.invoke(SimpleInterceptorInvocation.java:73) > at org.jboss.weld.interceptor.proxy.NonTerminalAroundInvokeInvocationContext.proceedInternal(NonTerminalAroundInvokeInvocationContext.java:64) > at org.jboss.weld.interceptor.proxy.AroundInvokeInvocationContext.proceed(AroundInvokeInvocationContext.java:77) > at com.hp.murcs.utils.interceptor.TxInterceptor.handleTransaction(TxInterceptor.java:36) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:498) > at org.jboss.weld.interceptor.reader.SimpleInterceptorInvocation$SimpleMethodInvocation.invoke(SimpleInterceptorInvocation.java:73) > at org.jboss.weld.interceptor.proxy.NonTerminalAroundInvokeInvocationContext.proceedInternal(NonTerminalAroundInvokeInvocationContext.java:64) > at org.jboss.weld.interceptor.proxy.AroundInvokeInvocationContext.proceed(AroundInvokeInvocationContext.java:77) > at com.hp.murcs.utils.interceptor.TxInterceptor.handleTransaction(TxInterceptor.java:36) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:498) > at org.jboss.weld.interceptor.reader.SimpleInterceptorInvocation$SimpleMethodInvocation.invoke(SimpleInterceptorInvocation.java:73) > at org.jboss.weld.interceptor.proxy.InterceptorMethodHandler.executeAroundInvoke(InterceptorMethodHandler.java:84) > at org.jboss.weld.interceptor.proxy.InterceptorMethodHandler.executeInterception(InterceptorMethodHandler.java:72) > at org.jboss.weld.interceptor.proxy.InterceptorMethodHandler.invoke(InterceptorMethodHandler.java:56) > at org.jboss.weld.bean.proxy.CombinedInterceptorAndDecoratorStackMethodHandler.invoke(CombinedInterceptorAndDecoratorStackMethodHandler.java:79) > at org.jboss.weld.bean.proxy.CombinedInterceptorAndDecoratorStackMethodHandler.invoke(CombinedInterceptorAndDecoratorStackMethodHandler.java:68) > at com.hp.murcs.DefaultAdminClientImporter$Proxy$_$$_WeldSubclass.importDefaultAdminClient(Unknown Source) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:498) > at org.jboss.weld.injection.StaticMethodInjectionPoint.invoke(StaticMethodInjectionPoint.java:88) > at org.jboss.weld.injection.StaticMethodInjectionPoint.invoke(StaticMethodInjectionPoint.java:78) > at org.jboss.weld.injection.MethodInvocationStrategy$SimpleMethodInvocationStrategy.invoke(MethodInvocationStrategy.java:129) > at org.jboss.weld.event.ObserverMethodImpl.sendEvent(ObserverMethodImpl.java:299) > at org.jboss.weld.event.ObserverMethodImpl.sendEvent(ObserverMethodImpl.java:277) > at org.jboss.weld.event.ObserverMethodImpl.notify(ObserverMethodImpl.java:255) > at org.jboss.weld.event.ObserverNotifier.notifySyncObservers(ObserverNotifier.java:269) > at org.jboss.weld.event.ObserverNotifier.notify(ObserverNotifier.java:258) > at org.jboss.weld.event.ObserverNotifier.fireEvent(ObserverNotifier.java:154) > at org.jboss.weld.bootstrap.BeanDeploymentModule.fireEvent(BeanDeploymentModule.java:94) > at org.jboss.weld.servlet.HttpContextLifecycle.fireEventForApplicationScope(HttpContextLifecycle.java:156) > at org.jboss.weld.servlet.HttpContextLifecycle.contextInitialized(HttpContextLifecycle.java:143) > at org.jboss.weld.servlet.WeldInitialListener.contextInitialized(WeldInitialListener.java:105) > at io.undertow.servlet.core.ApplicationListeners.contextInitialized(ApplicationListeners.java:187) > at io.undertow.servlet.core.DeploymentManagerImpl$1.call(DeploymentManagerImpl.java:205) > at io.undertow.servlet.core.DeploymentManagerImpl$1.call(DeploymentManagerImpl.java:174) > at io.undertow.servlet.core.ServletRequestContextThreadSetupAction$1.call(ServletRequestContextThreadSetupAction.java:42) > at io.undertow.servlet.core.ContextClassLoaderSetupAction$1.call(ContextClassLoaderSetupAction.java:43) > at org.wildfly.extension.undertow.security.SecurityContextThreadSetupAction.lambda$create$36(SecurityContextThreadSetupAction.java:105) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$40(UndertowDeploymentInfoService.java:1706) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$40(UndertowDeploymentInfoService.java:1706) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$40(UndertowDeploymentInfoService.java:1706) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$40(UndertowDeploymentInfoService.java:1706) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$40(UndertowDeploymentInfoService.java:1706) > at io.undertow.servlet.core.DeploymentManagerImpl.deploy(DeploymentManagerImpl.java:239) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentService.startContext(UndertowDeploymentService.java:99) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentService$1.run(UndertowDeploymentService.java:81) > at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511) > at java.util.concurrent.FutureTask.run(FutureTask.java:266) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) > at java.lang.Thread.run(Thread.java:745) > at org.jboss.threads.JBossThread.run(JBossThread.java:320) > Caused by: org.hibernate.HibernateException: CDI not initialized as expected > at org.hibernate.jpa.event.internal.jpa.ListenerFactoryBeanManagerExtendedImpl$ListenerImpl.getListener(ListenerFactoryBeanManagerExtendedImpl.java:114) > at org.hibernate.jpa.event.internal.jpa.ListenerCallback.performCallback(ListenerCallback.java:35) > ... 127 more}} > {quote} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-6191) ExpressionSubstitutionInContainerTestCase fails due to AccessControlException with security manager enabled

by Brian Stansberry (JIRA)

[ https://issues.jboss.org/browse/WFLY-6191?page=com.atlassian.jira.plugin.... ] Brian Stansberry commented on WFLY-6191: ---------------------------------------- [~istudens] if you haven't already, talk to [~ehugonnet] about this as he is dealing with these remoting permission issues that arise from running a management client in a deployment. This particular test I'm having a hard time seeing why it exists at all. TBH, I'd really like it removed. We don't support access to a ModelControllerClient from an EJB and that is what this test is testing. > ExpressionSubstitutionInContainerTestCase fails due to AccessControlException with security manager enabled > ----------------------------------------------------------------------------------------------------------- > > Key: WFLY-6191 > URL: https://issues.jboss.org/browse/WFLY-6191 > Project: WildFly > Issue Type: Bug > Components: Test Suite > Reporter: Hynek Švábek > Assignee: Ivo Studensky > > *org.jboss.as.test.integration.management.api.expression.ExpressionSubstitutionInContainerTestCase* > {{./integration-tests.sh -fae -Dmaven.test.failure.ignore=true -DfailIfNoTests=false -Dsecurity.manager -Dts.basic -Dts.noSmoke -Dtest=org.jboss.as.test.integration.management.api.expression.ExpressionSubstitutionInContainerTestCase}} > {code} > Failed to start service jboss.deployment.unit."expression-substitution-test.jar".INSTALL: org.jboss.msc.service.StartException in service jboss.deployment.unit."expression-substitution-test.jar".INSTALL: WFLYSRV0153: Failed to process phase INSTALL of deployment "expression-substitution-test.jar" > at org.jboss.as.server.deployment.DeploymentUnitPhaseService.start(DeploymentUnitPhaseService.java:154) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:1948) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1881) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) > at java.lang.Thread.run(Thread.java:745) > Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.lang.RuntimePermission" "getClassLoader")" in code source "(vfs:/content/expression-substitution-test.jar <no signer certificates>)" of "null") > at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:273) > at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175) > at java.lang.ClassLoader.checkClassLoaderPermission(ClassLoader.java:1525) > at java.lang.Class.getClassLoader(Class.java:683) > at org.jboss.msc.service.ServiceControllerImpl.invokeListener(ServiceControllerImpl.java:1529) > at org.jboss.msc.service.ServiceControllerImpl.access$2800(ServiceControllerImpl.java:51) > at org.jboss.msc.service.ServiceControllerImpl$ListenerTask.run(ServiceControllerImpl.java:2099) > at org.jboss.msc.service.ServiceControllerImpl.commitInstallation(ServiceControllerImpl.java:265) > at org.jboss.msc.service.ServiceContainerImpl.install(ServiceContainerImpl.java:771) > at org.jboss.msc.service.ServiceTargetImpl.install(ServiceTargetImpl.java:223) > at org.jboss.msc.service.ServiceControllerImpl$ChildServiceTarget.install(ServiceControllerImpl.java:2401) > at org.jboss.msc.service.ServiceTargetImpl.install(ServiceTargetImpl.java:223) > at org.jboss.msc.service.ServiceControllerImpl$ChildServiceTarget.install(ServiceControllerImpl.java:2401) > at org.jboss.msc.service.ServiceBuilderImpl.install(ServiceBuilderImpl.java:317) > at org.jboss.as.test.integration.management.api.expression.ExpressionTestManagementService.activate(ExpressionTestManagementService.java:69) > at org.jboss.as.server.deployment.service.ServiceActivatorProcessor.deploy(ServiceActivatorProcessor.java:74) > at org.jboss.as.server.deployment.DeploymentUnitPhaseService.start(DeploymentUnitPhaseService.java:147) > ... 5 more > {code} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2669) Deprecate setValidator method in builders for ListAttributeDefinition and MapAttributeDefinition

by Brian Stansberry (JIRA)

[ https://issues.jboss.org/browse/WFCORE-2669?page=com.atlassian.jira.plugi... ] Brian Stansberry updated WFCORE-2669: ------------------------------------- Description: Let's discuss before doing anything on this. For lists and maps, the builder call to setValidator is really a call to setElementValidator, with a call to set[List|Map]Validator being necessary if some special validation of the overall list/map is desired. We should deprecate setValidator to help emphasize to people that really setElementValidator is what is happening. was: For lists and maps, the builder call to setValidator is really a call to setElementValidator, with a call to set[List|Map]Validator being necessary if some special validation of the overall list/map is desired. We should deprecate setValidator to help emphasize to people that really setElementValidator is what is happening. > Deprecate setValidator method in builders for ListAttributeDefinition and MapAttributeDefinition > ------------------------------------------------------------------------------------------------ > > Key: WFCORE-2669 > URL: https://issues.jboss.org/browse/WFCORE-2669 > Project: WildFly Core > Issue Type: Enhancement > Components: Domain Management > Reporter: Brian Stansberry > Priority: Minor > Fix For: 4.0.0.Beta1 > > > Let's discuss before doing anything on this. > For lists and maps, the builder call to setValidator is really a call to setElementValidator, with a call to set[List|Map]Validator being necessary if some special validation of the overall list/map is desired. > We should deprecate setValidator to help emphasize to people that really setElementValidator is what is happening. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-2669) Deprecate setValidator method in builders for ListAttributeDefinition and MapAttributeDefinition

by Brian Stansberry (JIRA)

Brian Stansberry created WFCORE-2669: ---------------------------------------- Summary: Deprecate setValidator method in builders for ListAttributeDefinition and MapAttributeDefinition Key: WFCORE-2669 URL: https://issues.jboss.org/browse/WFCORE-2669 Project: WildFly Core Issue Type: Enhancement Components: Domain Management Reporter: Brian Stansberry Priority: Minor Fix For: 4.0.0.Beta1 For lists and maps, the builder call to setValidator is really a call to setElementValidator, with a call to set[List|Map]Validator being necessary if some special validation of the overall list/map is desired. We should deprecate setValidator to help emphasize to people that really setElementValidator is what is happening. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-8563) Boolean attributes CLI autocomplete does not offer true option

by Brian Stansberry (JIRA)

[ https://issues.jboss.org/browse/WFLY-8563?page=com.atlassian.jira.plugin.... ] Brian Stansberry commented on WFLY-8563: ---------------------------------------- This should be in WFCORE. > Boolean attributes CLI autocomplete does not offer true option > -------------------------------------------------------------- > > Key: WFLY-8563 > URL: https://issues.jboss.org/browse/WFLY-8563 > Project: WildFly > Issue Type: Bug > Components: CLI > Reporter: Martin Choma > Assignee: Jean-Francois Denise > Priority: Minor > > Having {{debug}} attribute defined as > {code} > "debug" => { > "type" => BOOLEAN, > "description" => "Should the JAAS step of obtaining the credential have debug logging enabled.", > "expressions-allowed" => true, > "required" => false, > "nillable" => true, > "default" => false, > "access-type" => "read-write", > "storage" => "configuration", > "restart-required" => "resource-services" > } > {code} > CLI autocomplete offers just false option > {code} > [standalone@localhost:9990 /] /subsystem=elytron/kerberos-security-factory=a:add(debug<TAB> > ) , =false > {code} > I would expect also true option provided > {code} > [standalone@localhost:9990 /] /subsystem=elytron/kerberos-security-factory=a:add(debug<TAB> > ) , =false =true > {code} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (ELY-1011) Failed validation in regex-validating-principal-transformer causes NPE for Elytron audit logging

by Jan Kalina (JIRA)

[ https://issues.jboss.org/browse/ELY-1011?page=com.atlassian.jira.plugin.s... ] Jan Kalina reassigned ELY-1011: ------------------------------- Assignee: Jan Kalina (was: Darran Lofthouse) > Failed validation in regex-validating-principal-transformer causes NPE for Elytron audit logging > ------------------------------------------------------------------------------------------------ > > Key: ELY-1011 > URL: https://issues.jboss.org/browse/ELY-1011 > Project: WildFly Elytron > Issue Type: Bug > Reporter: Ondrej Lukas > Assignee: Jan Kalina > Priority: Critical > > In case when validation in Elytron regex-validating-principal-transformer fails then following NPE occurs in server log: > {code} > ERROR [org.wildfly.security] (default task-2) ELY01094: An event handler threw an exception: java.lang.NullPointerException: Value in JsonObjects name/value pair cannot be null > at org.glassfish.json.JsonObjectBuilderImpl.validateValue(JsonObjectBuilderImpl.java:164) > at org.glassfish.json.JsonObjectBuilderImpl.add(JsonObjectBuilderImpl.java:74) > at org.wildfly.security.audit.JsonSecurityEventFormatter.handleAuthenticationFailedEvent(JsonSecurityEventFormatter.java:99) > at org.wildfly.security.audit.JsonSecurityEventFormatter.handleAuthenticationFailedEvent(JsonSecurityEventFormatter.java:93) > at org.wildfly.security.audit.JsonSecurityEventFormatter.handleAuthenticationFailedEvent(JsonSecurityEventFormatter.java:43) > at org.wildfly.security.auth.server.event.SecurityAuthenticationFailedEvent.accept(SecurityAuthenticationFailedEvent.java:49) > at org.wildfly.extension.elytron.AuditResourceDefinitions$1.lambda$null$1(AuditResourceDefinitions.java:156) > at org.wildfly.security.audit.AuditLogger.accept(AuditLogger.java:56) > at org.wildfly.security.audit.AuditLogger.accept(AuditLogger.java:35) > at org.wildfly.security.auth.server.SecurityDomain.handleSecurityEvent(SecurityDomain.java:680) > at org.wildfly.security.auth.server.SecurityDomain.safeHandleSecurityEvent(SecurityDomain.java:687) > at org.wildfly.security.auth.server.ServerAuthenticationContext$NameAssignedState.fail(ServerAuthenticationContext.java:1793) > at org.wildfly.security.auth.server.ServerAuthenticationContext.fail(ServerAuthenticationContext.java:433) > at org.wildfly.security.auth.server.ServerAuthenticationContext$1.handleOne(ServerAuthenticationContext.java:865) > at org.wildfly.security.auth.server.ServerAuthenticationContext$1.handle(ServerAuthenticationContext.java:728) > at org.wildfly.security.http.util.SecurityIdentityServerMechanismFactory$SecurityIdentityCallbackHandler.handle(SecurityIdentityServerMechanismFactory.java:113) > at org.wildfly.security.http.impl.UsernamePasswordAuthenticationMechanism.fail(UsernamePasswordAuthenticationMechanism.java:107) > at org.wildfly.security.http.impl.BasicAuthenticationMechanism.evaluateRequest(BasicAuthenticationMechanism.java:170) > at org.wildfly.security.http.util.SetMechanismInformationMechanismFactory$1.evaluateRequest(SetMechanismInformationMechanismFactory.java:115) > at org.wildfly.security.http.util.SecurityIdentityServerMechanismFactory$1.evaluateRequest(SecurityIdentityServerMechanismFactory.java:77) > at org.wildfly.security.http.HttpAuthenticator$AuthenticationExchange.authenticate(HttpAuthenticator.java:110) > at org.wildfly.security.http.HttpAuthenticator$AuthenticationExchange.access$100(HttpAuthenticator.java:94) > at org.wildfly.security.http.HttpAuthenticator.authenticate(HttpAuthenticator.java:78) > at org.wildfly.elytron.web.undertow.server.SecurityContextImpl.authenticate(SecurityContextImpl.java:97) > at io.undertow.servlet.handlers.security.ServletAuthenticationCallHandler.handleRequest(ServletAuthenticationCallHandler.java:55) > at io.undertow.server.handlers.DisableCacheHandler.handleRequest(DisableCacheHandler.java:33) > at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43) > at io.undertow.security.handlers.AuthenticationConstraintHandler.handleRequest(AuthenticationConstraintHandler.java:53) > at io.undertow.security.handlers.AbstractConfidentialityHandler.handleRequest(AbstractConfidentialityHandler.java:46) > at io.undertow.servlet.handlers.security.ServletConfidentialityConstraintHandler.handleRequest(ServletConfidentialityConstraintHandler.java:64) > at io.undertow.servlet.handlers.security.ServletSecurityConstraintHandler.handleRequest(ServletSecurityConstraintHandler.java:59) > at io.undertow.security.handlers.AbstractSecurityContextAssociationHandler.handleRequest(AbstractSecurityContextAssociationHandler.java:43) > at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43) > at org.wildfly.extension.undertow.security.jacc.JACCContextIdHandler.handleRequest(JACCContextIdHandler.java:61) > at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43) > at org.wildfly.extension.undertow.deployment.GlobalRequestControllerHandler.handleRequest(GlobalRequestControllerHandler.java:46) > at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43) > at io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:292) > at io.undertow.servlet.handlers.ServletInitialHandler.access$100(ServletInitialHandler.java:81) > at io.undertow.servlet.handlers.ServletInitialHandler$2.call(ServletInitialHandler.java:138) > at io.undertow.servlet.handlers.ServletInitialHandler$2.call(ServletInitialHandler.java:135) > at io.undertow.servlet.core.ServletRequestContextThreadSetupAction$1.call(ServletRequestContextThreadSetupAction.java:48) > at io.undertow.servlet.core.ContextClassLoaderSetupAction$1.call(ContextClassLoaderSetupAction.java:43) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1704) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1704) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1704) > at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1704) > at io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:272) > at io.undertow.servlet.handlers.ServletInitialHandler.access$000(ServletInitialHandler.java:81) > at io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:104) > at io.undertow.server.Connectors.executeRootHandler(Connectors.java:211) > at io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:809) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) > at java.lang.Thread.run(Thread.java:745) > {code} > It happens only in case when Elytron audit log is enabled. It happens in case when match attribute is set to true and principal name does not match given pattern as well as in case when match attribute is set to false and principal name matches given pattern. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

[JBoss JIRA] (WFLY-8568) Elytron outflow-security-domains doesn't work for Servlet-to-EJB calls

by Josef Cacek (JIRA)

Josef Cacek created WFLY-8568: --------------------------------- Summary: Elytron outflow-security-domains doesn't work for Servlet-to-EJB calls Key: WFLY-8568 URL: https://issues.jboss.org/browse/WFLY-8568 Project: WildFly Issue Type: Bug Components: Web (Undertow), EJB, Security Reporter: Josef Cacek Assignee: Stuart Douglas Priority: Blocker Security context propagation with using Elytron {{outflow-security-domains}} attribute in security domain doesn't work for Servlet-to-EJB calls. This could also be a test configuration issue, but as there is not yet documentation covering this area, I can't guess what could be wrong in the scenario. 1. I have 2 similar web applications with servlets and EJBs: * the `secured-webapp` is mapped to `web-tests` security domain * the `second` application is mapped to `second-domain` security domain 2. Undertow and EJB subsystems maps the application domains `web-tests` and `second-domain` to Elytron domains with the same name. 3. trust between the domains is defined in following way: {code} /subsystem=elytron/security-domain=second-domain:write-attribute(name=outflow-security-domains,value=[web-tests]) /subsystem=elytron/security-domain=second-domain:write-attribute(name=trusted-security-domains, value=[web-tests]) /subsystem=elytron/security-domain=web-tests:write-attribute(name=trusted-security-domains, value=[second-domain]) {code} 4. the test itself calls servlet from the `second` web application and it calls protected EJB from the `secured-webapp`. The EJB call fails with EJBAccessException {noformat} 14:30:04,631 ERROR [org.jboss.as.ejb3.invocation] (default task-3) WFLYEJB0034: EJB Invocation failed on component HelloBean for method public abstract java.lang.String org.jboss.test.ejb.Hello.sayHello(): javax.ejb.EJBAccessException: WFLYEJB0364: Invocation on method: public abstract java.lang.String org.jboss.test.ejb.Hello.sayHello() of bean: HelloBean is not allowed {noformat} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

9 years, 2 months

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira April 2017