July 2017 - jboss-jira - Jboss List Archives

[JBoss JIRA] (ELY-1295) KeyStoreCredentialStoreTest fails on IBM JDK

by Peter Palaga (JIRA)

Peter Palaga created ELY-1295: --------------------------------- Summary: KeyStoreCredentialStoreTest fails on IBM JDK Key: ELY-1295 URL: https://issues.jboss.org/browse/ELY-1295 Project: WildFly Elytron Issue Type: Bug Reporter: Peter Palaga Assignee: Darran Lofthouse {code} JAVA_HOME=path/to/ibm/java8 $JAVA_HOME/bin/java -version java version "1.8.0" Java(TM) SE Runtime Environment (build pxa6480sr3fp12-20160919_01(SR3 FP12)) IBM J9 VM (build 2.8, JRE 1.8.0 Linux amd64-64 Compressed References 20160915_318796 (JIT enabled, AOT enabled) J9VM - R28_Java8_SR3_20160915_0912_B318796 JIT - tr.r14.java.green_20160818_122998 GC - R28_Java8_SR3_20160915_0912_B318796_CMPRSS J9CL - 20160915_318796) JCL - 20160914_01 based on Oracle jdk8u101-b13 mvn clean test -Dtest=KeyStoreCredentialStoreTest {code} Expected: KeyStoreCredentialStoreTest should pass Actual: First, the "hack to make JCE believe that it has verified the signature of the WildFlyElytronProvider JAR" [1] throws {code} java.lang.ClassNotFoundException: javax.crypto.JceSecurity at java.lang.Class.forNameImpl(Native Method) at java.lang.Class.forName(Class.java:278) at org.wildfly.security.credential.store.impl.KeyStoreCredentialStoreTest.installWildFlyElytronProvider(KeyStoreCredentialStoreTest.java:89) ... {code} because {{javax.crypto.JceSecurity}} does not exist in IBM JRE. It looks like the hack is actually not necessary anymore, because {{KeyStoreCredentialStoreTest}} is passing also without the hack on both Oracle JDK and OpenJDK. But once the hack is removed, on IBM JDK, {{shouldSupportKeyStoreFormat}} passes with format=JCEKS but fails with format=PKCS12 throwing the following exeception: {code} org.wildfly.security.credential.store.CredentialStoreException: ELY09504: Cannot acquire a credential from the credential store at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.retrieve(KeyStoreCredentialStore.java:464) at org.wildfly.security.credential.store.impl.KeyStoreCredentialStoreTest.shouldSupportKeyStoreFormat(KeyStoreCredentialStoreTest.java:137) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at java.lang.reflect.Method.invoke(Method.java:508) at org.apache.maven.surefire.junit4.JUnit4Provider.execute(JUnit4Provider.java:367) at org.apache.maven.surefire.junit4.JUnit4Provider.executeWithRerun(JUnit4Provider.java:274) at org.apache.maven.surefire.junit4.JUnit4Provider.executeTestSet(JUnit4Provider.java:238) at org.apache.maven.surefire.junit4.JUnit4Provider.invoke(JUnit4Provider.java:161) at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) Caused by: java.security.UnrecoverableKeyException: Get Key failed: 1.2.840.113549.1.7.1 SecretKeyFactory not available at java.security.KeyStore.getEntry(KeyStore.java:1532) at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.retrieve(KeyStoreCredentialStore.java:462) ... 10 more Caused by: java.security.NoSuchAlgorithmException: 1.2.840.113549.1.7.1 SecretKeyFactory not available ... 12 more {code} [1] https://github.com/wildfly-security/wildfly-elytron/pull/661/commits/7296... -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 9 months

1
0
0 / 0

[JBoss JIRA] (ELY-1280) GSSAPI only identities credential if we actually have one.

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-1280?page=com.atlassian.jira.plugin.s... ] Darran Lofthouse updated ELY-1280: ---------------------------------- Summary: GSSAPI only identities credential if we actually have one. (was: Regression against ER1, Elytron kerberos for remoting does not work with IBM java) > GSSAPI only identities credential if we actually have one. > ---------------------------------------------------------- > > Key: ELY-1280 > URL: https://issues.jboss.org/browse/ELY-1280 > Project: WildFly Elytron > Issue Type: Bug > Reporter: Martin Choma > Assignee: Darran Lofthouse > Priority: Blocker > > In ER2 kerberos authentication in remoting does not work with IBM java. I see same error in 2 scenarios: > * Elytron kerberos authentication for management interface - CLI > * Elytron kerberos authenticaiton for EJB > This issue (reproducer/description)is based on CLI case. As it seems to me it is caused by same error. > {code} > 13:15:25,038 INFO [org.jboss.eapqe.krbldap.utils.CustomCLIExecutor] (main) Command:[/home/mchoma/workspace/git-repositories/tests-ldap-kerberos-eap7/eap71/../tests/target/dist/jboss-eap/bin/jboss-cli.sh, -Djboss.cli.config=/home/mchoma/workspace/git-repositories/tests-ldap-kerberos-eap7/eap71/../tests/target/dist/jboss-eap/bin/jboss-cli.xml, -c, --controller=remote+http://localhost.localdomain:9990, --timeout=60000, -Djavax.security.auth.useSubjectCredsOnly=false, -Djava.security.krb5.conf=/home/mchoma/workspace/git-repositories/tests-ldap-kerberos-eap7/eap71/target/krb/krb5-4030706113084817464.conf, -Dsun.security.krb5.debug=true, -Dcom.ibm.security.jgss.debug=all, -Dcom.ibm.security.krb5.Krb5Debug=all, -Djavax.net.ssl.trustStore=/home/mchoma/workspace/git-repositories/tests-ldap-kerberos-eap7/eap71/target/KerberosCLITestCase/localhost.keystore, :whoami] > 13:15:26,352 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Initialized connection from /127.0.0.1:41690 to /127.0.0.1:9990 with options {org.jboss.remoting3.RemotingOptions.SASL_PROTOCOL=>remote} > 13:15:26,352 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Accepted connection from /127.0.0.1:41690 to localhost.localdomain/127.0.0.1:9990 > 13:15:26,353 TRACE [org.jboss.remoting.remote] (management I/O-1) Setting read listener to org.jboss.remoting3.remote.ServerConnectionOpenListener$Initial@6a1d77d9 > 13:15:26,353 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Sent 28 bytes > 13:15:26,353 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Flushed channel > 13:15:26,375 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) No buffers in queue for message header > 13:15:26,375 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Allocated fresh buffers > 13:15:26,375 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Received 56 bytes > 13:15:26,375 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Received message java.nio.HeapByteBuffer[pos=0 lim=52 cap=8192] > 13:15:26,375 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Received java.nio.HeapByteBuffer[pos=0 lim=52 cap=8192] > 13:15:26,376 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Server received capabilities request > 13:15:26,376 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Server received capability: version 1 > 13:15:26,376 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Server received capability: remote endpoint name "cli-client" > 13:15:26,376 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Server received capability: message close protocol supported > 13:15:26,376 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Server received capability: remote version is "5.0.0.CR4-redhat-1" > 13:15:26,376 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Server received capability: remote channels in is "40" > 13:15:26,376 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Server received capability: remote channels out is "40" > 13:15:26,376 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Server received capability: authentication service > 13:15:26,376 TRACE [org.jboss.remoting.remote.server] (management I/O-1) No EXTERNAL mechanism due to lack of SSL > 13:15:26,380 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Added mechanism GSSAPI > 13:15:26,381 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Added mechanism PLAIN > 13:15:26,381 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Sent 81 bytes > 13:15:26,381 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Flushed channel > 13:15:27,194 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) No buffers in queue for message header > 13:15:27,194 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Allocated fresh buffers > 13:15:27,194 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Received 583 bytes > 13:15:27,194 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Received message java.nio.HeapByteBuffer[pos=0 lim=579 cap=8192] > 13:15:27,194 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Received java.nio.HeapByteBuffer[pos=0 lim=579 cap=8192] > 13:15:27,194 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Server received authentication request > 13:15:27,194 TRACE [org.wildfly.security] (management I/O-1) Handling MechanismInformationCallback type='SASL' name='GSSAPI' host-name='localhost.localdomain' protocol='remote' > 13:15:27,194 TRACE [org.wildfly.security] (management I/O-1) Handling MechanismInformationCallback type='SASL' name='GSSAPI' host-name='localhost.localdomain' protocol='remote' > 13:15:27,197 TRACE [org.wildfly.security.sasl.gssapi.server] (management I/O-1) configuredMaxReceiveBuffer=16777215 > 13:15:27,197 TRACE [org.wildfly.security.sasl.gssapi.server] (management I/O-1) relaxComplianceChecks=false > 13:15:27,197 TRACE [org.wildfly.security.sasl.gssapi.server] (management I/O-1) QOP={AUTH} > 13:15:27,197 TRACE [org.wildfly.security.sasl.gssapi.server] (management I/O-1) Obtaining GSSCredential for the service from callback handler... > 13:15:27,197 TRACE [org.wildfly.security] (management I/O-1) No valid cached credential, obtaining new one... > 13:15:27,198 TRACE [org.wildfly.security] (management I/O-1) Logging in using LoginContext and subject [Subject: > ] > 13:15:27,218 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 JAAS config: debug=true > 13:15:27,218 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 JAAS config: principal=remote/localhost.localdomain(a)JBOSS.ORG > 13:15:27,218 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 JAAS config: credsType=accept only > 13:15:27,218 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 config: useDefaultCcache=false (default) > 13:15:27,219 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 config: useCcache=null > 13:15:27,219 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 config: useDefaultKeytab=false > 13:15:27,220 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 config: useKeytab=/home/mchoma/workspace/git-repositories/tests-ldap-kerberos-eap7/eap71/target/krb/krb.4304838673032362747.keytab > 13:15:27,224 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 JAAS config: forwardable=false (default) > 13:15:27,224 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 JAAS config: renewable=false (default) > 13:15:27,224 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 JAAS config: proxiable=false (default) > 13:15:27,224 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 JAAS config: tryFirstPass=false (default) > 13:15:27,224 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 JAAS config: useFirstPass=false (default) > 13:15:27,224 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 JAAS config: moduleBanner=false (default) > 13:15:27,225 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 JAAS config: interactive login? no > 13:15:27,225 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 Try keytab for principal=remote/localhost.localdomain(a)JBOSS.ORG > 13:15:27,327 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 No Kerberos creds in keytab for principal remote/localhost.localdomain(a)JBOSS.ORG > 13:15:27,327 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 Login successful > 13:15:27,327 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 kprincipal : remote/localhost.localdomain(a)JBOSS.ORG > 13:15:27,327 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 remote/localhost.localdomain(a)JBOSS.ORG added to Subject > 13:15:27,327 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 KeyTab added to Subject > 13:15:27,328 INFO [stdout] (management I/O-1) [JGSS_DBG_CRED] management I/O-1 No keys to add to Subject for remote/localhost.localdomain(a)JBOSS.ORG > 13:15:27,328 TRACE [org.wildfly.security] (management I/O-1) Logging in using LoginContext and subject [Subject: > Principal: remote/localhost.localdomain(a)JBOSS.ORG > Private Credential: /home/mchoma/workspace/git-repositories/tests-ldap-kerberos-eap7/eap71/target/krb/krb.4304838673032362747.keytab for remote/localhost.localdomain(a)JBOSS.ORG > ] succeed > 13:15:27,329 TRACE [org.wildfly.security] (management I/O-1) Creating GSSName for Principal 'remote/localhost.localdomain(a)JBOSS.ORG' > 13:15:27,337 TRACE [org.wildfly.security] (management I/O-1) Obtained GSSCredentialCredential [org.wildfly.security.credential.GSSKerberosCredential@b7cba9ed] > 13:15:27,337 TRACE [org.wildfly.security] (management I/O-1) Handling ServerCredentialCallback: successfully obtained credential type type=class org.wildfly.security.credential.GSSKerberosCredential, algorithm=null, params=null > 13:15:27,339 TRACE [org.wildfly.security] (management I/O-1) Created SaslServer for mechanism GSSAPI and protocol remote > 13:15:27,339 TRACE [org.wildfly.security] (management I/O-1) Created SaslServer [org.wildfly.security.sasl.util.SecurityIdentitySaslServerFactory$1@7e6923d] for mechanism [GSSAPI] > 13:15:27,339 TRACE [org.jboss.remoting.endpoint] (management I/O-1) Allocated tick to 9 of endpoint "localhost:MANAGEMENT" <43fd3bb3> (opened org.jboss.remoting3.EndpointImpl$TrackingExecutor@48dbe42) > 13:15:27,599 TRACE [org.wildfly.security.sasl.gssapi.server] (management task-6) Negotiated mechanism 1.2.840.113554.1.2.2 > 13:15:27,599 TRACE [org.wildfly.security.sasl.gssapi.server] (management task-6) No response so triggering next state immediately. > 13:15:27,599 TRACE [org.wildfly.security.sasl.gssapi.server] (management task-6) Not offering a security layer so zero length. > 13:15:27,601 TRACE [org.wildfly.security.sasl.gssapi.server] (management task-6) Transitioning to receive chosen security layer from client > 13:15:27,601 TRACE [org.jboss.remoting.remote.server] (management task-6) Server sending authentication challenge > 13:15:27,601 TRACE [org.jboss.remoting.remote] (management task-6) Setting read listener to org.jboss.remoting3.remote.ServerConnectionOpenListener$Authentication@aa1379f > 13:15:27,601 TRACE [org.jboss.remoting.endpoint] (management task-6) Resource closed count 00000008 of endpoint "localhost:MANAGEMENT" <43fd3bb3> (closed org.jboss.remoting3.EndpointImpl$TrackingExecutor@48dbe42) > 13:15:27,601 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Sent 37 bytes > 13:15:27,601 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Flushed channel > 13:15:27,608 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) No buffers in queue for message header > 13:15:27,608 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Allocated fresh buffers > 13:15:27,608 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Received 37 bytes > 13:15:27,608 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Received message java.nio.HeapByteBuffer[pos=0 lim=33 cap=8192] > 13:15:27,608 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Received java.nio.HeapByteBuffer[pos=0 lim=33 cap=8192] > 13:15:27,608 TRACE [org.jboss.remoting.remote.server] (management I/O-1) Server received authentication response > 13:15:27,608 TRACE [org.jboss.remoting.endpoint] (management I/O-1) Allocated tick to 9 of endpoint "localhost:MANAGEMENT" <43fd3bb3> (opened org.jboss.remoting3.EndpointImpl$TrackingExecutor@48dbe42) > 13:15:27,609 TRACE [org.wildfly.security.sasl.gssapi.server] (management task-7) Client selected security layer AUTH, with maxBuffer of 0 > 13:15:27,610 TRACE [org.wildfly.security.sasl.gssapi.server] (management task-7) Authentication ID=jdukec4c36a8b-173f-41e7-af5b-7492f91a404c(a)JBOSS.ORG, Authorization ID=jdukec4c36a8b-173f-41e7-af5b-7492f91a404c(a)JBOSS.ORG > 13:15:27,610 TRACE [org.wildfly.security] (management task-7) Principal assigning: [jdukec4c36a8b-173f-41e7-af5b-7492f91a404c(a)JBOSS.ORG], pre-realm rewritten: [jdukec4c36a8b-173f-41e7-af5b-7492f91a404c], realm name: [fileSystemRealm], post-realm rewritten: [jdukec4c36a8b-173f-41e7-af5b-7492f91a404c], realm rewritten: [jdukec4c36a8b-173f-41e7-af5b-7492f91a404c] > 13:15:27,611 TRACE [org.wildfly.security] (management task-7) Role mapping: principal [jdukec4c36a8b-173f-41e7-af5b-7492f91a404c] -> decoded roles [] -> realm mapped roles [] -> domain mapped roles [] > 13:15:27,611 TRACE [org.wildfly.security] (management task-7) Authorizing principal jdukec4c36a8b-173f-41e7-af5b-7492f91a404c. > 13:15:27,611 TRACE [org.wildfly.security] (management task-7) Authorizing against the following attributes: [] => [] > 13:15:27,611 TRACE [org.wildfly.security] (management task-7) Permission mapping: identity [jdukec4c36a8b-173f-41e7-af5b-7492f91a404c] with roles [] implies ("org.wildfly.security.auth.permission.LoginPermission" "") = true > 13:15:27,611 TRACE [org.wildfly.security] (management task-7) Authorization succeed > 13:15:27,611 TRACE [org.wildfly.security] (management task-7) RunAs authorization succeed - the same identity > 13:15:27,611 TRACE [org.wildfly.security] (management task-7) Handling AuthorizeCallback: authenticationID = jdukec4c36a8b-173f-41e7-af5b-7492f91a404c(a)JBOSS.ORG authorizationID = jdukec4c36a8b-173f-41e7-af5b-7492f91a404c(a)JBOSS.ORG authorized = true > 13:15:27,613 TRACE [org.jboss.remoting.remote.server] (management task-7) Server sending authentication rejected: java.lang.IllegalArgumentException: Parameter 'gssCredential' may not be null > at org.wildfly.common.Assert.checkNotNullParamChecked(Assert.java:70) > at org.wildfly.common.Assert.checkNotNullParam(Assert.java:48) > at org.wildfly.security.credential.GSSKerberosCredential.<init>(GSSKerberosCredential.java:53) > at org.wildfly.security.credential.GSSKerberosCredential.<init>(GSSKerberosCredential.java:43) > at org.wildfly.security.sasl.gssapi.GssapiServer.evaluateMessage(GssapiServer.java:284) > at org.wildfly.security.sasl.util.AbstractSaslParticipant.evaluateMessage(AbstractSaslParticipant.java:180) > at org.wildfly.security.sasl.gssapi.GssapiServer.evaluateResponse(GssapiServer.java:122) > at org.wildfly.security.sasl.util.AuthenticationCompleteCallbackSaslServerFactory$1.evaluateResponse(AuthenticationCompleteCallbackSaslServerFactory.java:58) > at org.wildfly.security.sasl.util.AuthenticationTimeoutSaslServerFactory$DelegatingTimeoutSaslServer.evaluateResponse(AuthenticationTimeoutSaslServerFactory.java:106) > at org.wildfly.security.sasl.util.SecurityIdentitySaslServerFactory$1.evaluateResponse(SecurityIdentitySaslServerFactory.java:57) > at org.xnio.sasl.SaslUtils.evaluateResponse(SaslUtils.java:245) > at org.xnio.sasl.SaslUtils.evaluateResponse(SaslUtils.java:217) > at org.jboss.remoting3.remote.ServerConnectionOpenListener$AuthStepRunnable.run(ServerConnectionOpenListener.java:468) > at org.jboss.remoting3.EndpointImpl$TrackingExecutor.lambda$execute$0(EndpointImpl.java:898) > at org.jboss.remoting3.EndpointImpl$TrackingExecutor$$Lambda$905.00000000201F9C40.run(Unknown Source) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1153) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) > at java.lang.Thread.run(Thread.java:785) > 13:15:27,614 TRACE [org.wildfly.security.sasl.gssapi.server] (management task-7) dispose > 13:15:27,614 TRACE [org.wildfly.security] (management task-7) Handling AuthenticationCompleteCallback: fail > 13:15:27,614 TRACE [org.jboss.remoting.remote] (management task-7) Setting read listener to org.jboss.remoting3.remote.ServerConnectionOpenListener$Initial@18fce815 > 13:15:27,614 TRACE [org.jboss.remoting.endpoint] (management task-7) Resource closed count 00000008 of endpoint "localhost:MANAGEMENT" <43fd3bb3> (closed org.jboss.remoting3.EndpointImpl$TrackingExecutor@48dbe42) > 13:15:27,614 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Sent 5 bytes > 13:15:27,614 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Flushed channel > 13:15:27,615 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) No buffers in queue for message header > 13:15:27,615 TRACE [org.jboss.remoting.remote.connection] (management I/O-1) Alloca > {code} > Test pass just fine on Oracle/OpenJDK JDK > In stacktrace there is involved code introduced by https://github.com/wildfly-security/wildfly-elytron/commit/faf1aff340c3a2... . -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 9 months

1
0
0 / 0

[JBoss JIRA] (ELY-1293) System.currentTimeMillis() cannot be mocked on IBM JDK

by Peter Palaga (JIRA)

[ https://issues.jboss.org/browse/ELY-1293?page=com.atlassian.jira.plugin.s... ] Peter Palaga commented on ELY-1293: ----------------------------------- The solution in https://github.com/wildfly-security/wildfly-elytron/pull/917/commits/6750... is based on adding an explicit clock to the classes under test. Having that we can provide a custom clock implementation during the test while otherwise we will let it use a standard {{Clock.systemUTC()}}. I find this approach clean and reliable. Clearly, this approach can be used only in situations where the code querying the current time is under our control. This is the case in {{FileAuditEndpoint}} and the fix linked above is able to solve the problem for {{PeriodicRotatingFileAuditEndpointTest}} and {{SizeRotatingFileAuditEndpointTest}}. I'd like to hear others' thoughts, before I investigate if this approach can be used to fix also {{GssapiCompatibilitySuiteChild}}. > System.currentTimeMillis() cannot be mocked on IBM JDK > ------------------------------------------------------ > > Key: ELY-1293 > URL: https://issues.jboss.org/browse/ELY-1293 > Project: WildFly Elytron > Issue Type: Bug > Reporter: Peter Palaga > Assignee: Peter Palaga > > {{System.currentTimeMillis()}} is native in IBM JDK and at the same time, IBM JDK does not support java.lang.instrument API for native methods. Therefore, {{System.currentTimeMillis()}} cannot be mocked on IBM JDK using jmockit. > {code} > JAVA_HOME=path/to/ibm/java8 > $JAVA_HOME/bin/java -version > java version "1.8.0" > Java(TM) SE Runtime Environment (build pxa6480sr3fp12-20160919_01(SR3 FP12)) > IBM J9 VM (build 2.8, JRE 1.8.0 Linux amd64-64 Compressed References 20160915_318796 (JIT enabled, AOT enabled) > J9VM - R28_Java8_SR3_20160915_0912_B318796 > JIT - tr.r14.java.green_20160818_122998 > GC - R28_Java8_SR3_20160915_0912_B318796_CMPRSS > J9CL - 20160915_318796) > JCL - 20160914_01 based on Oracle jdk8u101-b13 > mvn clean test > {code} > Expected: the tests mocking {{System.currentTimeMillis()}} should pass > Actual: the tests mocking {{System.currentTimeMillis()}} throw the following exception or similar: > {code} > java.lang.UnsupportedOperationException: class redefinition failed: attempted to change method modifiers > at org.wildfly.security.audit.PeriodicRotatingFileAuditEndpointTest$1.<init>(PeriodicRotatingFileAuditEndpointTest.java:212) > at org.wildfly.security.audit.PeriodicRotatingFileAuditEndpointTest.mockTime(PeriodicRotatingFileAuditEndpointTest.java:212) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at java.lang.reflect.Method.invoke(Method.java:508) > at org.apache.maven.surefire.junit4.JUnit4Provider.execute(JUnit4Provider.java:367) > at org.apache.maven.surefire.junit4.JUnit4Provider.executeWithRerun(JUnit4Provider.java:274) > at org.apache.maven.surefire.junit4.JUnit4Provider.executeTestSet(JUnit4Provider.java:238) > at org.apache.maven.surefire.junit4.JUnit4Provider.invoke(JUnit4Provider.java:161) > at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) > at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) > at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) > {code} > This is the case with > * PeriodicRotatingFileAuditEndpointTest > * SizeRotatingFileAuditEndpointTest > * GssapiCompatibilitySuiteChild -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 9 months

1
0
0 / 0

[JBoss JIRA] (WFLY-9113) Fix TransactionRemoteHTTPService.stop

by Jeff Mesnil (JIRA)

[ https://issues.jboss.org/browse/WFLY-9113?page=com.atlassian.jira.plugin.... ] Jeff Mesnil moved JBEAP-12245 to WFLY-9113: ------------------------------------------- Project: WildFly (was: JBoss Enterprise Application Platform) Key: WFLY-9113 (was: JBEAP-12245) Workflow: GIT Pull Request workflow (was: CDW with loose statuses v1) Component/s: Transactions (was: Transactions) Affects Version/s: 11.0.0.Alpha1 (was: 7.1.0.ER2) > Fix TransactionRemoteHTTPService.stop > ------------------------------------- > > Key: WFLY-9113 > URL: https://issues.jboss.org/browse/WFLY-9113 > Project: WildFly > Issue Type: Bug > Components: Transactions > Affects Versions: 11.0.0.Alpha1 > Reporter: Jeff Mesnil > Assignee: Jeff Mesnil > Priority: Minor > > When TransactionRemoteHTTPService is stopped, it removes the /ejb prefix path instead of /txn -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 9 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-3079) Unable to use PKCS11 keystore from provider defined specified in Elytron provider-loader resource

by Jan Kalina (JIRA)

[ https://issues.jboss.org/browse/WFCORE-3079?page=com.atlassian.jira.plugi... ] Jan Kalina moved JBEAP-12243 to WFCORE-3079: -------------------------------------------- Project: WildFly Core (was: JBoss Enterprise Application Platform) Key: WFCORE-3079 (was: JBEAP-12243) Workflow: GIT Pull Request workflow (was: CDW with loose statuses v1) Component/s: Security (was: Security) Affects Version/s: 3.0.0.Beta28 (was: 7.1.0.ER2) > Unable to use PKCS11 keystore from provider defined specified in Elytron provider-loader resource > ------------------------------------------------------------------------------------------------- > > Key: WFCORE-3079 > URL: https://issues.jboss.org/browse/WFCORE-3079 > Project: WildFly Core > Issue Type: Bug > Components: Security > Affects Versions: 3.0.0.Beta28 > Reporter: Jan Kalina > Assignee: Jan Kalina > Priority: Blocker > > I'm not able to use PKCS11 keystore type if the security provider is defined in Elytron's provider-loader resource. > {code} > /subsystem=elytron/provider-loader=opensc:add(class-names=["sun.security.pkcs11.SunPKCS11"], configuration={name=OpenSC, library=/usr/lib/x86_64-linux-gnu/opensc-pkcs11.so, slotListIndex=1}) > {"outcome" => "success"} > /subsystem=elytron/key-store=pkcs11ks:add(credential-reference={clear-text=123456}, type=PKCS11, providers=opensc) > { > "outcome" => "failed", > "failure-description" => {"WFLYCTL0080: Failed services" => {"org.wildfly.security.key-store.pkcs11ks" => "WFLYELY00004: Unable to start the service. > Caused by: org.jboss.msc.service.StartException in anonymous service: WFLYELY00012: No suitable provider found for type 'PKCS11'"}}, > "rolled-back" => true > } > {code} > The server log contains: > {noformat} > 10:54:17,503 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-3) MSC000001: Failed to start service org.wildfly.security.key-store.pkcs11ks: org.jboss.msc.service.StartException in service org.wildfly.security.key-store.pkcs11ks: WFLYELY00004: Unable to start the service. > at org.wildfly.extension.elytron.KeyStoreService.start(KeyStoreService.java:146) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:2032) > at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1955) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) > at java.lang.Thread.run(Thread.java:748) > Caused by: org.jboss.msc.service.StartException in anonymous service: WFLYELY00012: No suitable provider found for type 'PKCS11' > at org.wildfly.extension.elytron.KeyStoreService.resolveProvider(KeyStoreService.java:154) > at org.wildfly.extension.elytron.KeyStoreService.start(KeyStoreService.java:109) > ... 5 more > 10:54:17,508 ERROR [org.jboss.as.controller.management-operation] (management-handler-thread - 3) WFLYCTL0013: Operation ("add") failed - address: ([ > ("subsystem" => "elytron"), > ("key-store" => "pkcs11ks") > ]) - failure description: {"WFLYCTL0080: Failed services" => {"org.wildfly.security.key-store.pkcs11ks" => "WFLYELY00004: Unable to start the service. > Caused by: org.jboss.msc.service.StartException in anonymous service: WFLYELY00012: No suitable provider found for type 'PKCS11'"}} > {noformat} -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 9 months

1
0
0 / 0

[JBoss JIRA] (ELY-1294) Wildfly Elytron Tool, Credential-store command, --salt option is validated only when --summary is used too.

by Hynek Švábek (JIRA)

[ https://issues.jboss.org/browse/ELY-1294?page=com.atlassian.jira.plugin.s... ] Hynek Švábek updated ELY-1294: ------------------------------ Description: Credential-store command \-\-salt option is validated only when is \-\-summary is used too. It is caused by generation MASKed password for summary output[1]. It is at least strange and confusing to user: without \-\-summary is passed, with \-\-summary is failed (entry is stored in storage successfully). *How to reproduce* {code} [hsvabek@dhcp-10-40-5-17 bin]$ ./elytron-tool.sh credential-store --add secret_alias --password pass123 --create -x secret_password -l store005.jceks -s 1234567890 -i 230 --summary --debug Alias "secret_alias" has been successfully stored Exception encountered executing the command: java.security.InvalidAlgorithmParameterException: Salt must be 8 bytes long at com.sun.crypto.provider.PBES1Core.init(PBES1Core.java:234) at com.sun.crypto.provider.PBES1Core.init(PBES1Core.java:331) at com.sun.crypto.provider.PBEWithMD5AndDESCipher.engineInit(PBEWithMD5AndDESCipher.java:228) at javax.crypto.Cipher.implInit(Cipher.java:810) at javax.crypto.Cipher.chooseProvider(Cipher.java:864) at javax.crypto.Cipher.init(Cipher.java:1539) at javax.crypto.Cipher.init(Cipher.java:1470) at org.wildfly.security.util.PasswordBasedEncryptionUtil$Builder.createAndInitCipher(PasswordBasedEncryptionUtil.java:506) at org.wildfly.security.util.PasswordBasedEncryptionUtil$Builder.build(PasswordBasedEncryptionUtil.java:589) at org.wildfly.security.tool.MaskCommand.computeMasked(MaskCommand.java:117) at org.wildfly.security.tool.CredentialStoreCommand.execute(CredentialStoreCommand.java:287) at org.wildfly.security.tool.ElytronTool.main(ElytronTool.java:81) {code} [1] https://github.com/wildfly-security/wildfly-elytron-tool/blob/1.0.0.CR2/s... was: Credential-store command \-\-salt option is validated only when is \-\-summary is used too. It is caused by generation MASKed password for summary output[1]. It is at least strange and confusing to user: without \-\-summary is passed, with \-\-summary is failed. *How to reproduce* {code} [hsvabek@dhcp-10-40-5-17 bin]$ ./elytron-tool.sh credential-store --add secret_alias --password pass123 --create -x secret_password -l store005.jceks -s 1234567890 -i 230 --summary --debug Alias "secret_alias" has been successfully stored Exception encountered executing the command: java.security.InvalidAlgorithmParameterException: Salt must be 8 bytes long at com.sun.crypto.provider.PBES1Core.init(PBES1Core.java:234) at com.sun.crypto.provider.PBES1Core.init(PBES1Core.java:331) at com.sun.crypto.provider.PBEWithMD5AndDESCipher.engineInit(PBEWithMD5AndDESCipher.java:228) at javax.crypto.Cipher.implInit(Cipher.java:810) at javax.crypto.Cipher.chooseProvider(Cipher.java:864) at javax.crypto.Cipher.init(Cipher.java:1539) at javax.crypto.Cipher.init(Cipher.java:1470) at org.wildfly.security.util.PasswordBasedEncryptionUtil$Builder.createAndInitCipher(PasswordBasedEncryptionUtil.java:506) at org.wildfly.security.util.PasswordBasedEncryptionUtil$Builder.build(PasswordBasedEncryptionUtil.java:589) at org.wildfly.security.tool.MaskCommand.computeMasked(MaskCommand.java:117) at org.wildfly.security.tool.CredentialStoreCommand.execute(CredentialStoreCommand.java:287) at org.wildfly.security.tool.ElytronTool.main(ElytronTool.java:81) {code} [1] https://github.com/wildfly-security/wildfly-elytron-tool/blob/1.0.0.CR2/s... > Wildfly Elytron Tool, Credential-store command, --salt option is validated only when --summary is used too. > ----------------------------------------------------------------------------------------------------------- > > Key: ELY-1294 > URL: https://issues.jboss.org/browse/ELY-1294 > Project: WildFly Elytron > Issue Type: Bug > Components: Credential Store > Reporter: Hynek Švábek > Assignee: Darran Lofthouse > > Credential-store command \-\-salt option is validated only when is \-\-summary is used too. > It is caused by generation MASKed password for summary output[1]. > It is at least strange and confusing to user: without \-\-summary is passed, with \-\-summary is failed (entry is stored in storage successfully). > *How to reproduce* > {code} > [hsvabek@dhcp-10-40-5-17 bin]$ ./elytron-tool.sh credential-store --add secret_alias --password pass123 --create -x secret_password -l store005.jceks -s 1234567890 -i 230 --summary --debug > Alias "secret_alias" has been successfully stored > Exception encountered executing the command: > java.security.InvalidAlgorithmParameterException: Salt must be 8 bytes long > at com.sun.crypto.provider.PBES1Core.init(PBES1Core.java:234) > at com.sun.crypto.provider.PBES1Core.init(PBES1Core.java:331) > at com.sun.crypto.provider.PBEWithMD5AndDESCipher.engineInit(PBEWithMD5AndDESCipher.java:228) > at javax.crypto.Cipher.implInit(Cipher.java:810) > at javax.crypto.Cipher.chooseProvider(Cipher.java:864) > at javax.crypto.Cipher.init(Cipher.java:1539) > at javax.crypto.Cipher.init(Cipher.java:1470) > at org.wildfly.security.util.PasswordBasedEncryptionUtil$Builder.createAndInitCipher(PasswordBasedEncryptionUtil.java:506) > at org.wildfly.security.util.PasswordBasedEncryptionUtil$Builder.build(PasswordBasedEncryptionUtil.java:589) > at org.wildfly.security.tool.MaskCommand.computeMasked(MaskCommand.java:117) > at org.wildfly.security.tool.CredentialStoreCommand.execute(CredentialStoreCommand.java:287) > at org.wildfly.security.tool.ElytronTool.main(ElytronTool.java:81) > {code} > [1] https://github.com/wildfly-security/wildfly-elytron-tool/blob/1.0.0.CR2/s... -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 9 months

1
0
0 / 0

[JBoss JIRA] (ELY-1294) Wildfly Elytron Tool, Credential-store command, --salt option is validated only when --summary is used too.

by Hynek Švábek (JIRA)

[ https://issues.jboss.org/browse/ELY-1294?page=com.atlassian.jira.plugin.s... ] Hynek Švábek updated ELY-1294: ------------------------------ Component/s: Credential Store > Wildfly Elytron Tool, Credential-store command, --salt option is validated only when --summary is used too. > ----------------------------------------------------------------------------------------------------------- > > Key: ELY-1294 > URL: https://issues.jboss.org/browse/ELY-1294 > Project: WildFly Elytron > Issue Type: Bug > Components: Credential Store > Reporter: Hynek Švábek > Assignee: Darran Lofthouse > > Credential-store command \-\-salt option is validated only when is \-\-summary is used too. > It is caused by generation MASKed password for summary output[1]. > It is at least strange and confusing to user: without \-\-summary is passed, with \-\-summary is failed. > *How to reproduce* > {code} > [hsvabek@dhcp-10-40-5-17 bin]$ ./elytron-tool.sh credential-store --add secret_alias --password pass123 --create -x secret_password -l store005.jceks -s 1234567890 -i 230 --summary --debug > Alias "secret_alias" has been successfully stored > Exception encountered executing the command: > java.security.InvalidAlgorithmParameterException: Salt must be 8 bytes long > at com.sun.crypto.provider.PBES1Core.init(PBES1Core.java:234) > at com.sun.crypto.provider.PBES1Core.init(PBES1Core.java:331) > at com.sun.crypto.provider.PBEWithMD5AndDESCipher.engineInit(PBEWithMD5AndDESCipher.java:228) > at javax.crypto.Cipher.implInit(Cipher.java:810) > at javax.crypto.Cipher.chooseProvider(Cipher.java:864) > at javax.crypto.Cipher.init(Cipher.java:1539) > at javax.crypto.Cipher.init(Cipher.java:1470) > at org.wildfly.security.util.PasswordBasedEncryptionUtil$Builder.createAndInitCipher(PasswordBasedEncryptionUtil.java:506) > at org.wildfly.security.util.PasswordBasedEncryptionUtil$Builder.build(PasswordBasedEncryptionUtil.java:589) > at org.wildfly.security.tool.MaskCommand.computeMasked(MaskCommand.java:117) > at org.wildfly.security.tool.CredentialStoreCommand.execute(CredentialStoreCommand.java:287) > at org.wildfly.security.tool.ElytronTool.main(ElytronTool.java:81) > {code} > [1] https://github.com/wildfly-security/wildfly-elytron-tool/blob/1.0.0.CR2/s... -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 9 months

1
0
0 / 0

[JBoss JIRA] (ELY-1294) Wildfly Elytron Tool, Credential-store command, --salt option is validated only when --summary is used too.

by Hynek Švábek (JIRA)

Hynek Švábek created ELY-1294: --------------------------------- Summary: Wildfly Elytron Tool, Credential-store command, --salt option is validated only when --summary is used too. Key: ELY-1294 URL: https://issues.jboss.org/browse/ELY-1294 Project: WildFly Elytron Issue Type: Bug Reporter: Hynek Švábek Assignee: Darran Lofthouse Credential-store command \-\-salt option is validated only when is \-\-summary is used too. It is caused by generation MASKed password for summary output[1]. It is at least strange and confusing to user: without \-\-summary is passed, with \-\-summary is failed. *How to reproduce* {code} [hsvabek@dhcp-10-40-5-17 bin]$ ./elytron-tool.sh credential-store --add secret_alias --password pass123 --create -x secret_password -l store005.jceks -s 1234567890 -i 230 --summary --debug Alias "secret_alias" has been successfully stored Exception encountered executing the command: java.security.InvalidAlgorithmParameterException: Salt must be 8 bytes long at com.sun.crypto.provider.PBES1Core.init(PBES1Core.java:234) at com.sun.crypto.provider.PBES1Core.init(PBES1Core.java:331) at com.sun.crypto.provider.PBEWithMD5AndDESCipher.engineInit(PBEWithMD5AndDESCipher.java:228) at javax.crypto.Cipher.implInit(Cipher.java:810) at javax.crypto.Cipher.chooseProvider(Cipher.java:864) at javax.crypto.Cipher.init(Cipher.java:1539) at javax.crypto.Cipher.init(Cipher.java:1470) at org.wildfly.security.util.PasswordBasedEncryptionUtil$Builder.createAndInitCipher(PasswordBasedEncryptionUtil.java:506) at org.wildfly.security.util.PasswordBasedEncryptionUtil$Builder.build(PasswordBasedEncryptionUtil.java:589) at org.wildfly.security.tool.MaskCommand.computeMasked(MaskCommand.java:117) at org.wildfly.security.tool.CredentialStoreCommand.execute(CredentialStoreCommand.java:287) at org.wildfly.security.tool.ElytronTool.main(ElytronTool.java:81) {code} [1] https://github.com/wildfly-security/wildfly-elytron-tool/blob/1.0.0.CR2/s... -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 9 months

1
0
0 / 0

[JBoss JIRA] (ELY-1293) System.currentTimeMillis() cannot be mocked on IBM JDK

by Peter Palaga (JIRA)

[ https://issues.jboss.org/browse/ELY-1293?page=com.atlassian.jira.plugin.s... ] Peter Palaga reassigned ELY-1293: --------------------------------- Assignee: Peter Palaga (was: Darran Lofthouse) > System.currentTimeMillis() cannot be mocked on IBM JDK > ------------------------------------------------------ > > Key: ELY-1293 > URL: https://issues.jboss.org/browse/ELY-1293 > Project: WildFly Elytron > Issue Type: Bug > Reporter: Peter Palaga > Assignee: Peter Palaga > > {{System.currentTimeMillis()}} is native in IBM JDK and at the same time, IBM JDK does not support java.lang.instrument API for native methods. Therefore, {{System.currentTimeMillis()}} cannot be mocked on IBM JDK using jmockit. > {code} > JAVA_HOME=path/to/ibm/java8 > $JAVA_HOME/bin/java -version > java version "1.8.0" > Java(TM) SE Runtime Environment (build pxa6480sr3fp12-20160919_01(SR3 FP12)) > IBM J9 VM (build 2.8, JRE 1.8.0 Linux amd64-64 Compressed References 20160915_318796 (JIT enabled, AOT enabled) > J9VM - R28_Java8_SR3_20160915_0912_B318796 > JIT - tr.r14.java.green_20160818_122998 > GC - R28_Java8_SR3_20160915_0912_B318796_CMPRSS > J9CL - 20160915_318796) > JCL - 20160914_01 based on Oracle jdk8u101-b13 > mvn clean test > {code} > Expected: the tests mocking {{System.currentTimeMillis()}} should pass > Actual: the tests mocking {{System.currentTimeMillis()}} throw the following exception or similar: > {code} > java.lang.UnsupportedOperationException: class redefinition failed: attempted to change method modifiers > at org.wildfly.security.audit.PeriodicRotatingFileAuditEndpointTest$1.<init>(PeriodicRotatingFileAuditEndpointTest.java:212) > at org.wildfly.security.audit.PeriodicRotatingFileAuditEndpointTest.mockTime(PeriodicRotatingFileAuditEndpointTest.java:212) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at java.lang.reflect.Method.invoke(Method.java:508) > at org.apache.maven.surefire.junit4.JUnit4Provider.execute(JUnit4Provider.java:367) > at org.apache.maven.surefire.junit4.JUnit4Provider.executeWithRerun(JUnit4Provider.java:274) > at org.apache.maven.surefire.junit4.JUnit4Provider.executeTestSet(JUnit4Provider.java:238) > at org.apache.maven.surefire.junit4.JUnit4Provider.invoke(JUnit4Provider.java:161) > at org.apache.maven.surefire.booter.ForkedBooter.invokeProviderInSameClassLoader(ForkedBooter.java:290) > at org.apache.maven.surefire.booter.ForkedBooter.runSuitesInProcess(ForkedBooter.java:242) > at org.apache.maven.surefire.booter.ForkedBooter.main(ForkedBooter.java:121) > {code} > This is the case with > * PeriodicRotatingFileAuditEndpointTest > * SizeRotatingFileAuditEndpointTest > * GssapiCompatibilitySuiteChild -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 9 months

1
0
0 / 0

[JBoss JIRA] (WFLY-9112) Fix naming rebind resource-description

by Jeff Mesnil (JIRA)

Jeff Mesnil created WFLY-9112: --------------------------------- Summary: Fix naming rebind resource-description Key: WFLY-9112 URL: https://issues.jboss.org/browse/WFLY-9112 Project: WildFly Issue Type: Bug Components: Naming Affects Versions: 11.0.0.Alpha1 Reporter: Jeff Mesnil Assignee: Jeff Mesnil Priority: Minor The naming :rebind operation describes the "external-context" value as allowed for its binding-type attribute but the code will fail if that's the case. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 9 months

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira July 2017