October 2018 - jboss-jira - Jboss List Archives

[JBoss JIRA] (WFLY-10188) Setting Undertow default server needs validation of provided server to avoid broken Wildfly configuration

by Jan Stourac (JIRA)

[ https://issues.jboss.org/browse/WFLY-10188?page=com.atlassian.jira.plugin... ] Jan Stourac updated WFLY-10188: ------------------------------- Affects Version/s: 13.0.0.Final 14.0.1.Final > Setting Undertow default server needs validation of provided server to avoid broken Wildfly configuration > --------------------------------------------------------------------------------------------------------- > > Key: WFLY-10188 > URL: https://issues.jboss.org/browse/WFLY-10188 > Project: WildFly > Issue Type: Bug > Components: Web (Undertow) > Affects Versions: 14.0.1.Final, 12.0.0.Final, 13.0.0.Final > Reporter: Pavel Jelinek > Assignee: Stuart Douglas > Priority: Critical > > Undertow server needs default-host to be set to be able to be used as Undertow subsystem default-server otherwise Wildfly would not start due to: > {code} > ERROR [org.jboss.as.controller] (Controller Boot Thread) WFLYCTL0362: Capabilities required by resource '/subsystem=undertow' are not available: > org.wildfly.undertow.host.test-server.default-host; Possible registration points for this capability: > /subsystem=undertow/server=*/host=* > {code} > This is dangerous as after calling a {{reload}} operation, the server simply fails and crashes. One can accidentaly kill the server with this and \!manual\! fix is necessary to the configuration to be able to start server again. > I think that there should be some check that configuration of the newly created server is complete and valid before it is set as a default server. -- This message was sent by Atlassian JIRA (v7.5.0#75005)

5 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFLY-11096) Stale session data on failover

by tommaso borgato (JIRA)

tommaso borgato created WFLY-11096: -------------------------------------- Summary: Stale session data on failover Key: WFLY-11096 URL: https://issues.jboss.org/browse/WFLY-11096 Project: WildFly Issue Type: Bug Components: Clustering Affects Versions: 14.0.1.Final, 15.0.0.Alpha1 Reporter: tommaso borgato Assignee: Paul Ferraro Priority: Minor Occured on client. Affected scenarios: eap-7x-failover-ejb-ejbservlet-shutdown-dist-async eap-7x-failover-http-granular-shutdown-repl-sync eap-7x-failover-http-session-jvmkill-dist-sync eap-7x-failover-http-session-jvmkill-repl-sync eap-7x-failover-http-session-shutdown-repl-sync-haproxy eap-7x-failover-http-session-undeploy-dist-sync Client log stacktrace: {code} 2016/09/21 17:28:51:294 EDT [WARN ][Runner - 134] HOST dev220.mw.lab.eng.bos.redhat.com:rootProcess:c - Error sampling data: <org.jboss.smartfrog.loaddriver.RequestProcessingException: Stale session data received. Expected 42, received 41, Runner: 134> org.jboss.smartfrog.loaddriver.RequestProcessingException: Stale session data received. Expected 42, received 41, Runner: 134 at org.jboss.smartfrog.loaddriver.http.AbstractSerialNumberValidatorFactoryImpl$SerialNumberValidator.processRequest(AbstractSerialNumberValidatorFactoryImpl.java:133) at org.jboss.smartfrog.loaddriver.CompoundRequestProcessorFactoryImpl$CompoundRequestProcessor.processRequest(CompoundRequestProcessorFactoryImpl.java:52) at org.jboss.smartfrog.loaddriver.Runner.run(Runner.java:103) at java.lang.Thread.run(Thread.java:745) {code} Link to client log: http://jenkins.mw.lab.eng.bos.redhat.com/hudson/job/eap-7x-failover-http-... -- This message was sent by Atlassian JIRA (v7.5.0#75005)

5 years, 6 months

1
0
0 / 0

[JBoss JIRA] (ELY-816) Support for masked passwords in client XML config

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-816?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse reassigned ELY-816: ------------------------------------ Assignee: (was: Jan Kalina) > Support for masked passwords in client XML config > ------------------------------------------------- > > Key: ELY-816 > URL: https://issues.jboss.org/browse/ELY-816 > Project: WildFly Elytron > Issue Type: Task > Reporter: David Lloyd > Priority: Critical > Fix For: 1.7.0.CR3 > > > We need a way to support masked passwords in the auth configuration file, either as: > * A dedicated masked-password-type XML type > * Adding necessary fields to hashed-password-type > * Adding a modular crypt format > Needs to be supported anywhere passwords are allowed. -- This message was sent by Atlassian JIRA (v7.5.0#75005)

5 years, 6 months

1
0
0 / 0

[JBoss JIRA] (ELY-867) Masked password support cryptography usage

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-867?page=com.atlassian.jira.plugin.sy... ] Darran Lofthouse reassigned ELY-867: ------------------------------------ Assignee: (was: Jan Kalina) > Masked password support cryptography usage > ------------------------------------------ > > Key: ELY-867 > URL: https://issues.jboss.org/browse/ELY-867 > Project: WildFly Elytron > Issue Type: Bug > Components: Passwords > Reporter: Zoran Regvart > > I encountered couple of issues with cryptography used for password masking: > * implementation of masked passwords drops initialization vector (IV) randomly generated by the {{javax.crypto.Cipher}} which makes unmasking (decryption) impossible. > * the implementation is using the same algorithm for key derivation and encryption, which is not possible as there is no encryption support in {{javax.crypto.Cipher}} for PKDBF2 family of algorithms, they are supported only in {{javax.crypto.SecretKeyFactory}} -- This message was sent by Atlassian JIRA (v7.5.0#75005)

5 years, 6 months

1
0
0 / 0

[JBoss JIRA] (ELY-1291) Coverity static analysis: Non-Serializable SecurityIdentity is contained in Serializable ElytronAccount

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-1291?page=com.atlassian.jira.plugin.s... ] Darran Lofthouse reassigned ELY-1291: ------------------------------------- Assignee: (was: Jan Kalina) > Coverity static analysis: Non-Serializable SecurityIdentity is contained in Serializable ElytronAccount > ------------------------------------------------------------------------------------------------------- > > Key: ELY-1291 > URL: https://issues.jboss.org/browse/ELY-1291 > Project: WildFly Elytron > Issue Type: Bug > Reporter: Martin Choma > > Coverity static analysis found Serializable ElytronAccount contains non-Serializable SecurityIdentity. > https://scan7.coverity.com/reports.htm#v23632/p12664/fileInstanceId=86223... > Please resolve this inconsistent situation. > By dev feedback SecurityIdentity can't be made Serializable. Rework to remove SecurityIdentity from ElytronAccount was suggested. > {code:title=hipchat.log} > [3:23 PM] Martin Choma: Shouldn't be SecurityIdentity Serializable? - because of HttpSession replication? > [3:23 PM] Darran Lofthouse: No it can't be > [3:24 PM] Darran Lofthouse: it is backed by implementation as well as state > [3:25 PM] David M. Lloyd: right it would essentially be a security hole to be able to deserialize an identity > [3:26 PM] David M. Lloyd: among other problems > [3:26 PM] Darran Lofthouse: on the far side we restore the identity instead of deserializing it > [3:31 PM] Martin Choma: I got it. Thing is static analyzer is complaining elytron-web ElytronAccount (Serializable class) is referencing SecurityIdentity, but probably problem is ElytronAccount does not have to be mark as Serializable, right? > [3:34 PM] Darran Lofthouse: @MartinChoma we may be able to re-work that and remove the reference to SI > {code} -- This message was sent by Atlassian JIRA (v7.5.0#75005)

5 years, 6 months

1
0
0 / 0

[JBoss JIRA] (ELY-1571) Increment WildFly Elytron schema version

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-1571?page=com.atlassian.jira.plugin.s... ] Darran Lofthouse reassigned ELY-1571: ------------------------------------- Assignee: (was: Jan Kalina) > Increment WildFly Elytron schema version > ---------------------------------------- > > Key: ELY-1571 > URL: https://issues.jboss.org/browse/ELY-1571 > Project: WildFly Elytron > Issue Type: Task > Components: Authentication Client > Affects Versions: 1.3.0.Final > Reporter: Jan Kalina > > As schema {{urn:elytron:client:1.1}} is already released so cannot be modified, new schema needs to be added to add new elements, like masked-password. -- This message was sent by Atlassian JIRA (v7.5.0#75005)

5 years, 6 months

1
0
0 / 0

[JBoss JIRA] (WFLY-11095) Wildfly 14.0.0 regression: EL returns empty string on constant

by Arthur Borsboom (JIRA)

Arthur Borsboom created WFLY-11095: -------------------------------------- Summary: Wildfly 14.0.0 regression: EL returns empty string on constant Key: WFLY-11095 URL: https://issues.jboss.org/browse/WFLY-11095 Project: WildFly Issue Type: Bug Affects Versions: 14.0.0.Final Environment: Linux Reporter: Arthur Borsboom Assignee: Jason Greene This does work in Wildfly 13, but not in Wildfly 14: <%@ page import="com.example.YourConstants" %> ${YourConstants.FOO} -- This message was sent by Atlassian JIRA (v7.5.0#75005)

5 years, 6 months

1
0
0 / 0

[JBoss JIRA] (ELY-1617) Support SSL Certificate revocation using OCSP

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-1617?page=com.atlassian.jira.plugin.s... ] Darran Lofthouse reassigned ELY-1617: ------------------------------------- Assignee: (was: Jan Kalina) > Support SSL Certificate revocation using OCSP > --------------------------------------------- > > Key: ELY-1617 > URL: https://issues.jboss.org/browse/ELY-1617 > Project: WildFly Elytron > Issue Type: Task > Components: SSL > Affects Versions: 1.4.0.Final > Reporter: Jan Kalina > Priority: Critical > > - Provide undertow's client certificate revocation capability when undertow is used as a load balancer using OCSP. > (CRL capability is provided in the earlier release as part of Elytron SSL Consolidation effort that this JIRA is cloned from) -- This message was sent by Atlassian JIRA (v7.5.0#75005)

5 years, 6 months

1
0
0 / 0

[JBoss JIRA] (ELY-1620) Support of ASN1 enumerated into ASN1Decoder

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-1620?page=com.atlassian.jira.plugin.s... ] Darran Lofthouse reassigned ELY-1620: ------------------------------------- Assignee: (was: Jan Kalina) > Support of ASN1 enumerated into ASN1Decoder > ------------------------------------------- > > Key: ELY-1620 > URL: https://issues.jboss.org/browse/ELY-1620 > Project: WildFly Elytron > Issue Type: Task > Components: X.500 > Reporter: Jan Kalina > Priority: Critical > -- This message was sent by Atlassian JIRA (v7.5.0#75005)

5 years, 6 months

1
0
0 / 0

[JBoss JIRA] (ELY-1662) Increment WildFly Elytron schema version for client to 1.3

by Darran Lofthouse (JIRA)

[ https://issues.jboss.org/browse/ELY-1662?page=com.atlassian.jira.plugin.s... ] Darran Lofthouse reassigned ELY-1662: ------------------------------------- Assignee: (was: Jan Kalina) > Increment WildFly Elytron schema version for client to 1.3 > ---------------------------------------------------------- > > Key: ELY-1662 > URL: https://issues.jboss.org/browse/ELY-1662 > Project: WildFly Elytron > Issue Type: Task > Components: XML > Reporter: Jan Kalina > -- This message was sent by Atlassian JIRA (v7.5.0#75005)

5 years, 6 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira October 2018