July 2017 - jboss-jira - Jboss List Archives

[JBoss JIRA] (WFCORE-3055) SimpleAttributeDefinitionBuilder.setAllowedValues() doesn't validate the model, leading to incorrect values

by Ingo Weiss (JIRA)

[ https://issues.jboss.org/browse/WFCORE-3055?page=com.atlassian.jira.plugi... ] Ingo Weiss updated WFCORE-3055: ------------------------------- Description: When creating a new subsystem attribute and using {{.setAllowedValues()}} as in the below example: {code:java} public static final SimpleAttributeDefinition CACHE_TYPE = new SimpleAttributeDefinitionBuilder(Constants.CACHE_TYPE, ModelType.STRING, true) .setAllowExpression(true) .setAllowedValues("default", "infinispan") .build(); {code} The model is not validating, leading to invalid values on the model. was: When creating a new subsystem attribute and using {{.setAllowedValues()}} as in the below example: {code:java} public static final SimpleAttributeDefinition CACHE_TYPE = new SimpleAttributeDefinitionBuilder(Constants.CACHE_TYPE, ModelType.STRING, true) .setAllowExpression(true) .setAllowedValues("default", "infinispan") .build(); {code} The model is not validating, leading to non-allowed values on the model. > SimpleAttributeDefinitionBuilder.setAllowedValues() doesn't validate the model, leading to incorrect values > ----------------------------------------------------------------------------------------------------------- > > Key: WFCORE-3055 > URL: https://issues.jboss.org/browse/WFCORE-3055 > Project: WildFly Core > Issue Type: Bug > Components: Domain Management > Affects Versions: 3.0.0.Beta28 > Reporter: Ingo Weiss > Assignee: Brian Stansberry > > When creating a new subsystem attribute and using {{.setAllowedValues()}} as in the below example: > {code:java} > public static final SimpleAttributeDefinition CACHE_TYPE = new SimpleAttributeDefinitionBuilder(Constants.CACHE_TYPE, ModelType.STRING, true) > .setAllowExpression(true) > .setAllowedValues("default", "infinispan") > .build(); > {code} > The model is not validating, leading to invalid values on the model. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (WFCORE-3055) SimpleAttributeDefinitionBuilder.setAllowedValues() doesn't validate the model, leading to incorrect values

by Ingo Weiss (JIRA)

Ingo Weiss created WFCORE-3055: ---------------------------------- Summary: SimpleAttributeDefinitionBuilder.setAllowedValues() doesn't validate the model, leading to incorrect values Key: WFCORE-3055 URL: https://issues.jboss.org/browse/WFCORE-3055 Project: WildFly Core Issue Type: Bug Components: Domain Management Affects Versions: 3.0.0.Beta28 Reporter: Ingo Weiss Assignee: Brian Stansberry When creating a new subsystem attribute and using {{.setAllowedValues()}} as in the below example: {code:java} public static final SimpleAttributeDefinition CACHE_TYPE = new SimpleAttributeDefinitionBuilder(Constants.CACHE_TYPE, ModelType.STRING, true) .setAllowExpression(true) .setAllowedValues("default", "infinispan") .build(); {code} The model is not validating, leading to non-allowed values on the model. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (WFLY-9067) Clean JASPIC Implementation with WildFly Elytron

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/WFLY-9067?page=com.atlassian.jira.plugin.... ] Darran Lofthouse updated WFLY-9067: ----------------------------------- Description: This may be broken down into smaller steps but initially this is the parent tracking task of the feature. h3. Analysis Document: - https://developer.jboss.org/docs/DOC-56012 was:This may be broken down into smaller steps but initially this is the parent tracking task of the feature. > Clean JASPIC Implementation with WildFly Elytron > ------------------------------------------------ > > Key: WFLY-9067 > URL: https://issues.jboss.org/browse/WFLY-9067 > Project: WildFly > Issue Type: Feature Request > Components: Security > Reporter: Darran Lofthouse > Assignee: Darran Lofthouse > Fix For: 12.0.0.Alpha1 > > > This may be broken down into smaller steps but initially this is the parent tracking task of the feature. > h3. Analysis Document: - > https://developer.jboss.org/docs/DOC-56012 -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (WFLY-9067) Clean JASPIC Implementation with WildFly Elytron

by Darran Lofthouse (JIRA)

Darran Lofthouse created WFLY-9067: -------------------------------------- Summary: Clean JASPIC Implementation with WildFly Elytron Key: WFLY-9067 URL: https://issues.jboss.org/browse/WFLY-9067 Project: WildFly Issue Type: Feature Request Components: Security Reporter: Darran Lofthouse Assignee: Darran Lofthouse Fix For: 12.0.0.Alpha1 This may be broken down into smaller steps but initially this is the parent tracking task of the feature. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (WFLY-9048) MDB20TopicTestCase fails with security manager

by Ondrej Kotek (JIRA)

[ https://issues.jboss.org/browse/WFLY-9048?page=com.atlassian.jira.plugin.... ] Ondrej Kotek updated WFLY-9048: ------------------------------- Description: MDB20TopicTestCase fails with security manager: {noformat} java.io.IOException: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("org.jboss.remoting3.security.RemotingPermission" "createEndpoint")" in code source "(vfs:/content/MDB20TopicTestCase.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.MDB20TopicTestCase.jar" from Service Module Loader") at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeForResult(AbstractModelControllerClient.java:149) at org.jboss.as.controller.client.impl.AbstractModelControllerClient.execute(AbstractModelControllerClient.java:75) at org.jboss.as.test.integration.ejb.mdb.ejb2x.MDB20TopicTestCase.getNumberOfAllSubscriptions(MDB20TopicTestCase.java:171) ... {noformat} There are missing permissions {{RemotingPermission("createEndpoint")}}, {{RemotingPermission("connect")}}, and possibly others, and missing dependency on {{org.jboss.remoting3}}. After adding the permissions and dependency, there is another missing permission: {noformat} ERROR [org.xnio.listener] (XNIO-1 I/O-1) XNIO001007: A channel event listener threw an exception: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.io.FilePermission" "/home/okotek/git/wildfly/dist/target/wildfly-11.0.0.Beta1-SNAPSHOT/modules/system/layers/base/org/wildfly/security/elytron-private/main/wildfly-elytron-1.1.0.CR2.jar" "read")" in code source "(vfs:/content/MDB20TopicTestCase.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.MDB20TopicTestCase.jar" from Service Module Loader") at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:278) at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175) at java.lang.SecurityManager.checkRead(SecurityManager.java:888) at org.wildfly.security.manager.WildFlySecurityManager.checkRead(WildFlySecurityManager.java:350) at sun.net.www.protocol.jar.JarFileFactory.getCachedJarFile(JarFileFactory.java:137) at sun.net.www.protocol.jar.JarFileFactory.get(JarFileFactory.java:81) at sun.net.www.protocol.jar.JarURLConnection.connect(JarURLConnection.java:122) at sun.net.www.protocol.jar.JarURLConnection.getInputStream(JarURLConnection.java:150) at java.net.URL.openStream(URL.java:1045) at java.util.ServiceLoader.parse(ServiceLoader.java:304) at java.util.ServiceLoader.access$200(ServiceLoader.java:185) at java.util.ServiceLoader$LazyIterator.hasNextService(ServiceLoader.java:357) at java.util.ServiceLoader$LazyIterator.access$600(ServiceLoader.java:323) at java.util.ServiceLoader$LazyIterator$1.run(ServiceLoader.java:396) at java.util.ServiceLoader$LazyIterator$1.run(ServiceLoader.java:395) at java.security.AccessController.doPrivileged(Native Method) at java.util.ServiceLoader$LazyIterator.hasNext(ServiceLoader.java:398) at java.util.ServiceLoader$1.hasNext(ServiceLoader.java:474) at org.wildfly.security.util.ServiceLoaderSupplier.get(ServiceLoaderSupplier.java:55) at org.wildfly.security.util.ServiceLoaderSupplier.get(ServiceLoaderSupplier.java:35) at org.wildfly.security.util.ProviderUtil$1.get(ProviderUtil.java:139) at org.wildfly.security.util.ProviderUtil$1.get(ProviderUtil.java:127) at org.wildfly.security.sasl.util.SecurityProviderSaslClientFactory.createSaslClient(SecurityProviderSaslClientFactory.java:84) at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) at org.wildfly.security.sasl.util.ProtocolSaslClientFactory.createSaslClient(ProtocolSaslClientFactory.java:50) at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) at org.wildfly.security.sasl.util.ServerNameSaslClientFactory.createSaslClient(ServerNameSaslClientFactory.java:50) at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) at org.wildfly.security.sasl.util.PropertiesSaslClientFactory.createSaslClient(PropertiesSaslClientFactory.java:54) at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) at org.wildfly.security.sasl.util.ServerNameSaslClientFactory.createSaslClient(ServerNameSaslClientFactory.java:50) at org.wildfly.security.sasl.util.FilterMechanismSaslClientFactory.createSaslClient(FilterMechanismSaslClientFactory.java:102) at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) at org.wildfly.security.sasl.util.LocalPrincipalSaslClientFactory.createSaslClient(LocalPrincipalSaslClientFactory.java:74) at org.wildfly.security.sasl.util.PrivilegedSaslClientFactory.lambda$createSaslClient$0(PrivilegedSaslClientFactory.java:64) at java.security.AccessController.doPrivileged(Native Method) at org.wildfly.security.sasl.util.PrivilegedSaslClientFactory.createSaslClient(PrivilegedSaslClientFactory.java:64) at org.wildfly.security.auth.client.AuthenticationConfiguration.createSaslClient(AuthenticationConfiguration.java:1239) at org.wildfly.security.auth.client.AuthenticationContextConfigurationClient.createSaslClient(AuthenticationContextConfigurationClient.java:347) at org.jboss.remoting3.remote.ClientConnectionOpenListener$Capabilities.handleEvent(ClientConnectionOpenListener.java:418) at org.jboss.remoting3.remote.ClientConnectionOpenListener$Capabilities.handleEvent(ClientConnectionOpenListener.java:242) at org.xnio.ChannelListeners.invokeChannelListener(ChannelListeners.java:92) at org.xnio.conduits.ReadReadyHandler$ChannelListenerHandler.readReady(ReadReadyHandler.java:66) at org.xnio.nio.NioSocketConduit.handleReady(NioSocketConduit.java:89) at org.xnio.nio.WorkerThread.run(WorkerThread.java:571) {noformat} which seems to be related to REM3-258. was: MDB20TopicTestCase fails with security manager: {noformat} java.io.IOException: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("org.jboss.remoting3.security.RemotingPermission" "createEndpoint")" in code source "(vfs:/content/MDB20TopicTestCase.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.MDB20TopicTestCase.jar" from Service Module Loader") at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeForResult(AbstractModelControllerClient.java:149) at org.jboss.as.controller.client.impl.AbstractModelControllerClient.execute(AbstractModelControllerClient.java:75) at org.jboss.as.test.integration.ejb.mdb.ejb2x.MDB20TopicTestCase.getNumberOfAllSubscriptions(MDB20TopicTestCase.java:171) ... {noformat} There are missing permissions {{RemotingPermission("createEndpoint")}}, {{RemotingPermission("connect")}}, and possibly others, and missing dependency on {{org.jboss.remoting3}}. > MDB20TopicTestCase fails with security manager > ---------------------------------------------- > > Key: WFLY-9048 > URL: https://issues.jboss.org/browse/WFLY-9048 > Project: WildFly > Issue Type: Bug > Components: Test Suite > Affects Versions: 11.0.0.Beta1 > Reporter: Ondrej Kotek > Assignee: Yeray Borges > Labels: security-manager > > MDB20TopicTestCase fails with security manager: > {noformat} > java.io.IOException: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("org.jboss.remoting3.security.RemotingPermission" "createEndpoint")" in code source "(vfs:/content/MDB20TopicTestCase.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.MDB20TopicTestCase.jar" from Service Module Loader") > at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeForResult(AbstractModelControllerClient.java:149) > at org.jboss.as.controller.client.impl.AbstractModelControllerClient.execute(AbstractModelControllerClient.java:75) > at org.jboss.as.test.integration.ejb.mdb.ejb2x.MDB20TopicTestCase.getNumberOfAllSubscriptions(MDB20TopicTestCase.java:171) > ... > {noformat} > There are missing permissions {{RemotingPermission("createEndpoint")}}, {{RemotingPermission("connect")}}, and possibly others, and missing dependency on {{org.jboss.remoting3}}. After adding the permissions and dependency, there is another missing permission: > {noformat} > ERROR [org.xnio.listener] (XNIO-1 I/O-1) XNIO001007: A channel event listener threw an exception: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.io.FilePermission" "/home/okotek/git/wildfly/dist/target/wildfly-11.0.0.Beta1-SNAPSHOT/modules/system/layers/base/org/wildfly/security/elytron-private/main/wildfly-elytron-1.1.0.CR2.jar" "read")" in code source "(vfs:/content/MDB20TopicTestCase.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.MDB20TopicTestCase.jar" from Service Module Loader") > at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:278) > at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175) > at java.lang.SecurityManager.checkRead(SecurityManager.java:888) > at org.wildfly.security.manager.WildFlySecurityManager.checkRead(WildFlySecurityManager.java:350) > at sun.net.www.protocol.jar.JarFileFactory.getCachedJarFile(JarFileFactory.java:137) > at sun.net.www.protocol.jar.JarFileFactory.get(JarFileFactory.java:81) > at sun.net.www.protocol.jar.JarURLConnection.connect(JarURLConnection.java:122) > at sun.net.www.protocol.jar.JarURLConnection.getInputStream(JarURLConnection.java:150) > at java.net.URL.openStream(URL.java:1045) > at java.util.ServiceLoader.parse(ServiceLoader.java:304) > at java.util.ServiceLoader.access$200(ServiceLoader.java:185) > at java.util.ServiceLoader$LazyIterator.hasNextService(ServiceLoader.java:357) > at java.util.ServiceLoader$LazyIterator.access$600(ServiceLoader.java:323) > at java.util.ServiceLoader$LazyIterator$1.run(ServiceLoader.java:396) > at java.util.ServiceLoader$LazyIterator$1.run(ServiceLoader.java:395) > at java.security.AccessController.doPrivileged(Native Method) > at java.util.ServiceLoader$LazyIterator.hasNext(ServiceLoader.java:398) > at java.util.ServiceLoader$1.hasNext(ServiceLoader.java:474) > at org.wildfly.security.util.ServiceLoaderSupplier.get(ServiceLoaderSupplier.java:55) > at org.wildfly.security.util.ServiceLoaderSupplier.get(ServiceLoaderSupplier.java:35) > at org.wildfly.security.util.ProviderUtil$1.get(ProviderUtil.java:139) > at org.wildfly.security.util.ProviderUtil$1.get(ProviderUtil.java:127) > at org.wildfly.security.sasl.util.SecurityProviderSaslClientFactory.createSaslClient(SecurityProviderSaslClientFactory.java:84) > at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) > at org.wildfly.security.sasl.util.ProtocolSaslClientFactory.createSaslClient(ProtocolSaslClientFactory.java:50) > at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) > at org.wildfly.security.sasl.util.ServerNameSaslClientFactory.createSaslClient(ServerNameSaslClientFactory.java:50) > at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) > at org.wildfly.security.sasl.util.PropertiesSaslClientFactory.createSaslClient(PropertiesSaslClientFactory.java:54) > at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) > at org.wildfly.security.sasl.util.ServerNameSaslClientFactory.createSaslClient(ServerNameSaslClientFactory.java:50) > at org.wildfly.security.sasl.util.FilterMechanismSaslClientFactory.createSaslClient(FilterMechanismSaslClientFactory.java:102) > at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) > at org.wildfly.security.sasl.util.LocalPrincipalSaslClientFactory.createSaslClient(LocalPrincipalSaslClientFactory.java:74) > at org.wildfly.security.sasl.util.PrivilegedSaslClientFactory.lambda$createSaslClient$0(PrivilegedSaslClientFactory.java:64) > at java.security.AccessController.doPrivileged(Native Method) > at org.wildfly.security.sasl.util.PrivilegedSaslClientFactory.createSaslClient(PrivilegedSaslClientFactory.java:64) > at org.wildfly.security.auth.client.AuthenticationConfiguration.createSaslClient(AuthenticationConfiguration.java:1239) > at org.wildfly.security.auth.client.AuthenticationContextConfigurationClient.createSaslClient(AuthenticationContextConfigurationClient.java:347) > at org.jboss.remoting3.remote.ClientConnectionOpenListener$Capabilities.handleEvent(ClientConnectionOpenListener.java:418) > at org.jboss.remoting3.remote.ClientConnectionOpenListener$Capabilities.handleEvent(ClientConnectionOpenListener.java:242) > at org.xnio.ChannelListeners.invokeChannelListener(ChannelListeners.java:92) > at org.xnio.conduits.ReadReadyHandler$ChannelListenerHandler.readReady(ReadReadyHandler.java:66) > at org.xnio.nio.NioSocketConduit.handleReady(NioSocketConduit.java:89) > at org.xnio.nio.WorkerThread.run(WorkerThread.java:571) > {noformat} > which seems to be related to REM3-258. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (DROOLS-1655) Memory leak for session object reference even after disposing it

by Shailesh T (JIRA)

Shailesh T created DROOLS-1655: ---------------------------------- Summary: Memory leak for session object reference even after disposing it Key: DROOLS-1655 URL: https://issues.jboss.org/browse/DROOLS-1655 Project: Drools Issue Type: Feature Request Affects Versions: 6.5.0.Final Reporter: Shailesh T Assignee: Edson Tirelli Priority: Critical Even after closing session, the objects into it are not getting released. This is critical problem when ruls are run on long running server with intermittent use. With huge number of inserted objects it leaks a considerable memory. Steps to reproduce: 1) Create a stateful session. 2) Insert huge number of objects into the session. 3) Fire rules. 4) Close session with dispose() call provided. 5) Run GC process. 5) If memory is measured and heap dump is taken it shows that the objects being inserted are still not garbage collected. Observations: When walked through heap dump it GC root path looks like this - value: myPackage.MyObject #1 <- object - class: org.drools.core.common.DefaultFactHandle, value: myPackage.MyObject #1 <- value - class: org.drools.core.util.ObjectHashMap$ObjectEntry, value: org.drools.core.common.DefaultFactHandle #29323 <- [49547] - class: org.drools.core.util.Entry[], value: org.drools.core.util.ObjectHashMap$ObjectEntry #103210 <- table - class: org.drools.core.util.ObjectHashMap, value: org.drools.core.util.Entry[] #8 <- equalityMap - class: org.drools.core.common.ClassAwareObjectStore, value: org.drools.core.util.ObjectHashMap #7 <- objectStore - class: org.drools.core.common.NamedEntryPoint, value: org.drools.core.common.ClassAwareObjectStore #1 <- defaultEntryPoint - class: org.drools.core.impl.StatefulKnowledgeSessionImpl, value: org.drools.core.common.NamedEntryPoint #1 <- value - class: java.util.concurrent.ConcurrentHashMap$HashEntry, value: org.drools.core.impl.StatefulKnowledgeSessionImpl #1 <- [1] - class: java.util.concurrent.ConcurrentHashMap$HashEntry[], value: java.util.concurrent.ConcurrentHashMap$HashEntry #20801 <- table - class: java.util.concurrent.ConcurrentHashMap$Segment, value: java.util.concurrent.ConcurrentHashMap$HashEntry[] #465 <- [14] - class: java.util.concurrent.ConcurrentHashMap$Segment[], value: java.util.concurrent.ConcurrentHashMap$Segment #469 <- segments - class: java.util.concurrent.ConcurrentHashMap, value: java.util.concurrent.ConcurrentHashMap$Segment[] #78 <- kSessions - class: org.drools.compiler.kie.builder.impl.KieContainerImpl, value: java.util.concurrent.ConcurrentHashMap #78 <- compiledRB - class: myPackage.RBInfo, value: org.drools.compiler.kie.builder.impl.KieContainerImpl #1 On further investigations it was found that when new session is create, KieContainerImpl class keeps its reference into 'kSessions' Map. But when session is closed this reference is not released(though such reference is released from KnowledgeBaseImpl). -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (WFLY-9066) URLBindingTestCase fails with security manager

by Ondrej Kotek (JIRA)

[ https://issues.jboss.org/browse/WFLY-9066?page=com.atlassian.jira.plugin.... ] Ondrej Kotek moved JBEAP-12025 to WFLY-9066: -------------------------------------------- Project: WildFly (was: JBoss Enterprise Application Platform) Key: WFLY-9066 (was: JBEAP-12025) Workflow: GIT Pull Request workflow (was: CDW with loose statuses v1) Component/s: Test Suite (was: Test Suite) Affects Version/s: 11.0.0.Beta1 (was: 7.1.0.ER2) > URLBindingTestCase fails with security manager > ---------------------------------------------- > > Key: WFLY-9066 > URL: https://issues.jboss.org/browse/WFLY-9066 > Project: WildFly > Issue Type: Bug > Components: Test Suite > Affects Versions: 11.0.0.Beta1 > Reporter: Ondrej Kotek > Labels: security-manager > > {{URLBindingTestCase}} fails with security manager because of missing permissions ({{RemotingPermission("createEndpoint")}} and {{RemotingPermission("connect")}}) and dependency {{org.jboss.remoting}}. After adding the permissions and dependency, there is another missing permission: > {noformat} > ERROR [org.xnio.listener] (XNIO-1 I/O-1) XNIO001007: A channel event listener threw an exception: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.io.FilePermission" "/home/okotek/git/wildfly/dist/target/wildfly-11.0.0.Beta1-SNAPSHOT/modules/system/layers/base/org/wildfly/security/elytron-private/main/wildfly-elytron-1.1.0.CR2.jar" "read")" in code source "(vfs:/content/URLBindingTestCaseBean.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.URLBindingTestCaseBean.jar" from Service Module Loader") > at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:278) > at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175) > at java.lang.SecurityManager.checkRead(SecurityManager.java:888) > at org.wildfly.security.manager.WildFlySecurityManager.checkRead(WildFlySecurityManager.java:350) > at sun.net.www.protocol.jar.JarFileFactory.getCachedJarFile(JarFileFactory.java:137) > at sun.net.www.protocol.jar.JarFileFactory.get(JarFileFactory.java:81) > at sun.net.www.protocol.jar.JarURLConnection.connect(JarURLConnection.java:122) > at sun.net.www.protocol.jar.JarURLConnection.getInputStream(JarURLConnection.java:150) > at java.net.URL.openStream(URL.java:1045) > at java.util.ServiceLoader.parse(ServiceLoader.java:304) > at java.util.ServiceLoader.access$200(ServiceLoader.java:185) > at java.util.ServiceLoader$LazyIterator.hasNextService(ServiceLoader.java:357) > at java.util.ServiceLoader$LazyIterator.access$600(ServiceLoader.java:323) > at java.util.ServiceLoader$LazyIterator$1.run(ServiceLoader.java:396) > at java.util.ServiceLoader$LazyIterator$1.run(ServiceLoader.java:395) > at java.security.AccessController.doPrivileged(Native Method) > at java.util.ServiceLoader$LazyIterator.hasNext(ServiceLoader.java:398) > at java.util.ServiceLoader$1.hasNext(ServiceLoader.java:474) > at org.wildfly.security.util.ServiceLoaderSupplier.get(ServiceLoaderSupplier.java:55) > at org.wildfly.security.util.ServiceLoaderSupplier.get(ServiceLoaderSupplier.java:35) > at org.wildfly.security.util.ProviderUtil$1.get(ProviderUtil.java:139) > at org.wildfly.security.util.ProviderUtil$1.get(ProviderUtil.java:127) > at org.wildfly.security.sasl.util.SecurityProviderSaslClientFactory.createSaslClient(SecurityProviderSaslClientFactory.java:84) > at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) > at org.wildfly.security.sasl.util.ProtocolSaslClientFactory.createSaslClient(ProtocolSaslClientFactory.java:50) > at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) > at org.wildfly.security.sasl.util.ServerNameSaslClientFactory.createSaslClient(ServerNameSaslClientFactory.java:50) > at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) > at org.wildfly.security.sasl.util.PropertiesSaslClientFactory.createSaslClient(PropertiesSaslClientFactory.java:54) > at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) > at org.wildfly.security.sasl.util.ServerNameSaslClientFactory.createSaslClient(ServerNameSaslClientFactory.java:50) > at org.wildfly.security.sasl.util.FilterMechanismSaslClientFactory.createSaslClient(FilterMechanismSaslClientFactory.java:102) > at org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:66) > at org.wildfly.security.sasl.util.LocalPrincipalSaslClientFactory.createSaslClient(LocalPrincipalSaslClientFactory.java:74) > at org.wildfly.security.sasl.util.PrivilegedSaslClientFactory.lambda$createSaslClient$0(PrivilegedSaslClientFactory.java:64) > at java.security.AccessController.doPrivileged(Native Method) > at org.wildfly.security.sasl.util.PrivilegedSaslClientFactory.createSaslClient(PrivilegedSaslClientFactory.java:64) > at org.wildfly.security.auth.client.AuthenticationConfiguration.createSaslClient(AuthenticationConfiguration.java:1239) > at org.wildfly.security.auth.client.AuthenticationContextConfigurationClient.createSaslClient(AuthenticationContextConfigurationClient.java:347) > at org.jboss.remoting3.remote.ClientConnectionOpenListener$Capabilities.handleEvent(ClientConnectionOpenListener.java:418) > at org.jboss.remoting3.remote.ClientConnectionOpenListener$Capabilities.handleEvent(ClientConnectionOpenListener.java:242) > at org.xnio.ChannelListeners.invokeChannelListener(ChannelListeners.java:92) > at org.xnio.conduits.ReadReadyHandler$ChannelListenerHandler.readReady(ReadReadyHandler.java:66) > at org.xnio.nio.NioSocketConduit.handleReady(NioSocketConduit.java:89) > at org.xnio.nio.WorkerThread.run(WorkerThread.java:571) > {noformat} > which seems to be related to REM3-258. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (JBJCA-1352) IBM MQ deadlock on shutdown

by Doug Grove (JIRA)

Doug Grove created JBJCA-1352: --------------------------------- Summary: IBM MQ deadlock on shutdown Key: JBJCA-1352 URL: https://issues.jboss.org/browse/JBJCA-1352 Project: IronJacamar Issue Type: Bug Components: AS Affects Versions: WildFly/IronJacamar 1.4.2.Final Environment: JBoss EAP 7.0.4 Reporter: Doug Grove Sporadically, on shut down, IBM MQ and JBoss will deadlock. This does not occur on EAP 6. The Deadlocking threads are [1] ~~~ ServerService Thread Pool -- 63" #183 prio=5 os_prio=0 tid=0x00000000021ef800 nid=0x50e2 waiting for monitor entry [0x00007fef8451a000] java.lang.Thread.State: BLOCKED (on object monitor) at com.ibm.mq.connector.outbound.ConnectionEventHandler.removeListener(ConnectionEventHandler.java:93) - waiting to lock <0x000000009be01318> (a com.ibm.mq.connector.outbound.ConnectionEventHandler) at com.ibm.mq.connector.outbound.ManagedConnectionImpl.removeConnectionEventListener(ManagedConnectionImpl.java:434) at org.jboss.jca.core.connectionmanager.pool.mcp.SemaphoreConcurrentLinkedDequeManagedConnectionPool.doDestroy(SemaphoreConcurrentLinkedDequeManagedConnectionPool.java:1376) at org.jboss.jca.core.connectionmanager.pool.mcp.SemaphoreConcurrentLinkedDequeManagedConnectionPool.flush(SemaphoreConcurrentLinkedDequeManagedConnectionPool.java:882) at org.jboss.jca.core.connectionmanager.pool.mcp.SemaphoreConcurrentLinkedDequeManagedConnectionPool.shutdown(SemaphoreConcurrentLinkedDequeManagedConnectionPool.java:1065) at org.jboss.jca.core.connectionmanager.pool.AbstractPool.shutdown(AbstractPool.java:930) - locked < 0x000000008d09b340> (a org.jboss.jca.core.connectionmanager.pool.strategy.OnePool) at org.jboss.jca.core.connectionmanager.AbstractConnectionManager.shutdown(AbstractConnectionManager.java:285) - locked < 0x000000008d09b2e0> (a org.jboss.jca.core.connectionmanager.notx.NoTxConnectionManagerImpl) at org.jboss.as.connector.services.resourceadapters.deployment.AbstractResourceAdapterDeploymentService.unregisterAll(AbstractResourceAdapterDeploymentService.java:192) at org.jboss.as.connector.services.resourceadapters.deployment.AbstractResourceAdapterDeploymentService$3.run(AbstractResourceAdapterDeploymentService.java:346) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) at java.lang.Thread.run(Thread.java:745) at org.jboss.threads.JBossThread.run(JBossThread.java:320) ~~~ [2] ~~~ "DefaultMessageListenerContainer-2" #162 prio=5 os_prio=0 tid=0x0000000001d7a800 nid=0x46bf waiting for monitor entry [0x00007fef70a7d000] java.lang.Thread.State: BLOCKED (on object monitor) at org.jboss.jca.core.connectionmanager.AbstractConnectionManager.shutdown(AbstractConnectionManager.java:281) - waiting to lock <0x000000008d09b2e0> (a org.jboss.jca.core.connectionmanager.notx.NoTxConnectionManagerImpl) at org.jboss.jca.core.connectionmanager.AbstractConnectionManager.returnManagedConnection(AbstractConnectionManager.java:724) at org.jboss.jca.core.connectionmanager.listener.NoTxConnectionListener.connectionClosed(NoTxConnectionListener.java:93) at com.ibm.mq.connector.outbound.ConnectionEventHandler.fireEvent(ConnectionEventHandler.java:135) - locked < 0x000000009be01318> (a com.ibm.mq.connector.outbound.ConnectionEventHandler) at com.ibm.mq.connector.outbound.ManagedConnectionImpl.fireConnectionClosed(ManagedConnectionImpl.java:784) at com.ibm.mq.connector.outbound.ConnectionWrapper.close(ConnectionWrapper.java:337) at org.springframework.jms.connection.ConnectionFactoryUtils.releaseConnection(ConnectionFactoryUtils.java:80) at org.springframework.jms.listener.AbstractPollingMessageListenerContainer.doReceiveAndExecute(AbstractPollingMessageListenerContainer.java:358) at org.springframework.jms.listener.AbstractPollingMessageListenerContainer.receiveAndExecute(AbstractPollingMessageListenerContainer.java:255) at org.springframework.jms.listener.DefaultMessageListenerContainer$AsyncMessageListenerInvoker.invokeListener(DefaultMessageListenerContainer.java:1166) at org.springframework.jms.listener.DefaultMessageListenerContainer$AsyncMessageListenerInvoker.executeOngoingLoop(DefaultMessageListenerContainer.java:1158) at org.springframework.jms.listener.DefaultMessageListenerContainer$AsyncMessageListenerInvoker.run(DefaultMessageListenerContainer.java:1055) at java.lang.Thread.run(Thread.java:745) -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (WFLY-9065) DatasourcePoolAttributesTestCase fails with security manager

by Ondrej Kotek (JIRA)

[ https://issues.jboss.org/browse/WFLY-9065?page=com.atlassian.jira.plugin.... ] Ondrej Kotek moved JBEAP-12020 to WFLY-9065: -------------------------------------------- Project: WildFly (was: JBoss Enterprise Application Platform) Key: WFLY-9065 (was: JBEAP-12020) Workflow: GIT Pull Request workflow (was: CDW with loose statuses v1) Component/s: JCA Test Suite (was: JCA) (was: Test Suite) Affects Version/s: 11.0.0.Beta1 (was: 7.1.0.ER2) > DatasourcePoolAttributesTestCase fails with security manager > ------------------------------------------------------------ > > Key: WFLY-9065 > URL: https://issues.jboss.org/browse/WFLY-9065 > Project: WildFly > Issue Type: Bug > Components: JCA, Test Suite > Affects Versions: 11.0.0.Beta1 > Reporter: Ondrej Kotek > Priority: Critical > Labels: security-manager > > {{DatasourcePoolAttributesTestCase}} fails with security manager: > {noformat} > INFO [org.jboss.arquillian.testenricher.cdi.container.BeanManagerProducer] (pool-3-thread-1) BeanManager not found. > SEVERE [org.jboss.arquillian.protocol.jmx.JMXTestRunner] (pool-3-thread-1) Failed: org.jboss.as.test.integration.jca.poolattributes.DatasourcePoolAttributesTestCase.testModifyNonReloadAttributes: java.lang.NullPointerException > at org.jboss.as.test.integration.jca.JcaTestsUtil.extractConnectionManager(JcaTestsUtil.java:129) > at org.jboss.as.test.integration.jca.JcaTestsUtil.exctractPoolConfiguration(JcaTestsUtil.java:91) > at org.jboss.as.test.integration.jca.poolattributes.DatasourcePoolAttributesTestCase.testModifyNonReloadAttributes(DatasourcePoolAttributesTestCase.java:136) > ... > {noformat} > It is not obvious why does it fail or which permissions are missing. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 11 months

1
0
0 / 0

[JBoss JIRA] (WFLY-9064) HibernateNativeAPINaturalIdTestCase fails with security manager

by Ondrej Kotek (JIRA)

[ https://issues.jboss.org/browse/WFLY-9064?page=com.atlassian.jira.plugin.... ] Ondrej Kotek moved JBEAP-12018 to WFLY-9064: -------------------------------------------- Project: WildFly (was: JBoss Enterprise Application Platform) Key: WFLY-9064 (was: JBEAP-12018) Workflow: GIT Pull Request workflow (was: CDW with loose statuses v1) Component/s: JPA / Hibernate Test Suite (was: Hibernate) (was: Test Suite) Affects Version/s: 11.0.0.Beta1 (was: 7.1.0.ER2) > HibernateNativeAPINaturalIdTestCase fails with security manager > --------------------------------------------------------------- > > Key: WFLY-9064 > URL: https://issues.jboss.org/browse/WFLY-9064 > Project: WildFly > Issue Type: Bug > Components: JPA / Hibernate, Test Suite > Affects Versions: 11.0.0.Beta1 > Reporter: Ondrej Kotek > Assignee: Gail Badner > Priority: Critical > Labels: security-manager > > {{HibernateNativeAPINaturalIdTestCase}} fails with security manager because of missing permission {{"("java.lang.RuntimePermission" "createClassLoader")"}}: > {noformat} > javax.ejb.EJBException: java.lang.RuntimeException: Could not setup config > at org.jboss.as.ejb3.tx.BMTInterceptor.handleException(BMTInterceptor.java:83) > at org.jboss.as.ejb3.tx.StatefulBMTInterceptor.handleInvocation(StatefulBMTInterceptor.java:96) > ... > Caused by: java.lang.RuntimeException: Could not setup config > at org.jboss.as.test.integration.hibernate.naturalid.SFSBHibernateSFNaturalId.setupConfig(SFSBHibernateSFNaturalId.java:69) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > ... > Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.lang.RuntimePermission" "createClassLoader")" in code source "(vfs:/content/hibernate4naturalid_test.ear/beans.jar <no signer certificates>)" of "ModuleClassLoader for Module "deployment.hibernate4naturalid_test.ear.beans.jar" from Service Module Loader") > at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:278) > at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175) > at java.lang.SecurityManager.checkCreateClassLoader(SecurityManager.java:611) > at org.wildfly.security.manager.WildFlySecurityManager.checkCreateClassLoader(WildFlySecurityManager.java:308) > ... > {noformat} > After adding the permission, there is another missing permission {{"("java.io.FilePermission" "/home/okotek/git/wildfly/dist/target/wildfly-11.0.0.Beta1-SNAPSHOT/modules/system/layers/base/org/hibernate/main/hibernate-envers-5.1.8.Final.jar" "read")"}}. A privileged section is missing probably. -- This message was sent by Atlassian JIRA (v7.2.3#72005)

8 years, 11 months

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira July 2017