[JBoss JIRA] (WFLY-13046) ConcurrentModificationException authenticating JWT under load.
by Darran Lofthouse (Jira)
Darran Lofthouse created WFLY-13046:
---------------------------------------
Summary: ConcurrentModificationException authenticating JWT under load.
Key: WFLY-13046
URL: https://issues.redhat.com/browse/WFLY-13046
Project: WildFly
Issue Type: Bug
Components: MP JWT, Security
Reporter: Darran Lofthouse
Assignee: Darran Lofthouse
Fix For: 19.0.0.Beta2
I don't believe this is specifically related to JWT, however load testing to obtain some performance statistics has led to this ConcurrentModificationException.
As the Roles is HashMap backed by the time this stage is reached no modifications should be possible.
{noformat}
15:53:51,047 ERROR [io.undertow.request] (default task-302) UT005023: Exception handling request to /microprofile-jwt/rest/Sample/helloworld: java.util.ConcurrentModificationException
at java.util.HashMap$KeySpliterator.forEachRemaining(HashMap.java:1553)
at java.util.stream.AbstractPipeline.copyInto(AbstractPipeline.java:481)
at java.util.stream.AbstractPipeline.wrapAndCopyInto(AbstractPipeline.java:471)
at java.util.stream.ReduceOps$ReduceOp.evaluateSequential(ReduceOps.java:708)
at java.util.stream.AbstractPipeline.evaluate(AbstractPipeline.java:234)
at java.util.stream.ReferencePipeline.collect(ReferencePipeline.java:499)
at org.wildfly.elytron.web.undertow.server.ElytronAccount.<init>(ElytronAccount.java:46)
at org.wildfly.elytron.web.undertow.server.ElytronAccount.<init>(ElytronAccount.java:50)
at org.wildfly.elytron.web.undertow.server.SecurityContextImpl.authenticationComplete(SecurityContextImpl.java:140)
at org.wildfly.elytron.web.undertow.server.servlet.ServletSecurityContextImpl.authenticate(ServletSecurityContextImpl.java:208)
at org.wildfly.elytron.web.undertow.server.servlet.ServletSecurityContextImpl.authenticate(ServletSecurityContextImpl.java:99)
at io.undertow.servlet.handlers.security.ServletAuthenticationCallHandler.handleRequest(ServletAuthenticationCallHandler.java:55)
{noformat}
--
This message was sent by Atlassian Jira
(v7.13.8#713008)
6 years, 3 months
[JBoss JIRA] (DROOLS-4995) Error popups when collection editor dialog is open
by Anna Dupliak (Jira)
Anna Dupliak created DROOLS-4995:
------------------------------------
Summary: Error popups when collection editor dialog is open
Key: DROOLS-4995
URL: https://issues.redhat.com/browse/DROOLS-4995
Project: Drools
Issue Type: Bug
Components: Test Scenarios Editor
Affects Versions: 7.32.0.Final
Reporter: Anna Dupliak
Assignee: Yeser Amer
Attachments: overlapError.webm
The error popup overlaps with collection dialog editor wlile navigating to the filing cell and releasing focus again (without clicking)
See the video
--
This message was sent by Atlassian Jira
(v7.13.8#713008)
6 years, 3 months
[JBoss JIRA] (WFLY-13045) EAT compatibility with OpenJ9
by Panagiotis Sotiropoulos (Jira)
Panagiotis Sotiropoulos created WFLY-13045:
----------------------------------------------
Summary: EAT compatibility with OpenJ9
Key: WFLY-13045
URL: https://issues.redhat.com/browse/WFLY-13045
Project: WildFly
Issue Type: Task
Components: Test Suite
Reporter: Panagiotis Sotiropoulos
Assignee: Panagiotis Sotiropoulos
Verify EAT compatibility with OpenJ9
--
This message was sent by Atlassian Jira
(v7.13.8#713008)
6 years, 3 months
[JBoss JIRA] (WFCORE-4822) Upgrade Management API Version to 12.0
by Yeray Borges (Jira)
[ https://issues.redhat.com/browse/WFCORE-4822?page=com.atlassian.jira.plug... ]
Yeray Borges edited comment on WFCORE-4822 at 1/31/20 9:00 AM:
---------------------------------------------------------------
I haven't checked, but my very vague idea is when we cancel a Job, CI could kick it off automatically again, and then if we are not faster enough pushing up the new commit, the new Job picks up the old one.
was (Author: yersan):
I haven't checked, but my very vague idea is when we cancel a Job, CI could kick it off automatically again, and then if we are not faster enough pushing up the new commit, the new Job picks up the latest commit.
> Upgrade Management API Version to 12.0
> --------------------------------------
>
> Key: WFCORE-4822
> URL: https://issues.redhat.com/browse/WFCORE-4822
> Project: WildFly Core
> Issue Type: Bug
> Components: Management
> Reporter: Jeff Mesnil
> Assignee: Yeray Borges
> Priority: Blocker
> Fix For: 11.0.0.Beta8
>
>
> We need to fix the version state before WildFly 19 is released.
> * The KernelAPIVersion must be bumped to 12.0
> * We also need to release wildly-config-12.0.xsd with the proper host-exclude for
> * WildFlY18, Version.10
> * EAP73, Version.10
> (and add those to KnownRelease too)
--
This message was sent by Atlassian Jira
(v7.13.8#713008)
6 years, 3 months
[JBoss JIRA] (WFCORE-4822) Upgrade Management API Version to 12.0
by Yeray Borges (Jira)
[ https://issues.redhat.com/browse/WFCORE-4822?page=com.atlassian.jira.plug... ]
Yeray Borges commented on WFCORE-4822:
--------------------------------------
I haven't checked, but my very vague idea is when we cancel a Job, CI could kick it off automatically again, and then if we are not faster enough pushing up the new commit, the new Job picks up the latest commit.
> Upgrade Management API Version to 12.0
> --------------------------------------
>
> Key: WFCORE-4822
> URL: https://issues.redhat.com/browse/WFCORE-4822
> Project: WildFly Core
> Issue Type: Bug
> Components: Management
> Reporter: Jeff Mesnil
> Assignee: Yeray Borges
> Priority: Blocker
> Fix For: 11.0.0.Beta8
>
>
> We need to fix the version state before WildFly 19 is released.
> * The KernelAPIVersion must be bumped to 12.0
> * We also need to release wildly-config-12.0.xsd with the proper host-exclude for
> * WildFlY18, Version.10
> * EAP73, Version.10
> (and add those to KnownRelease too)
--
This message was sent by Atlassian Jira
(v7.13.8#713008)
6 years, 3 months
[JBoss JIRA] (WFCORE-4822) Upgrade Management API Version to 12.0
by Darran Lofthouse (Jira)
[ https://issues.redhat.com/browse/WFCORE-4822?page=com.atlassian.jira.plug... ]
Darran Lofthouse commented on WFCORE-4822:
------------------------------------------
So it looks like the job may have kicked off again before the merge branch was updated. I wonder if we would be better for CI to handle the actual merge.
> Upgrade Management API Version to 12.0
> --------------------------------------
>
> Key: WFCORE-4822
> URL: https://issues.redhat.com/browse/WFCORE-4822
> Project: WildFly Core
> Issue Type: Bug
> Components: Management
> Reporter: Jeff Mesnil
> Assignee: Yeray Borges
> Priority: Blocker
> Fix For: 11.0.0.Beta8
>
>
> We need to fix the version state before WildFly 19 is released.
> * The KernelAPIVersion must be bumped to 12.0
> * We also need to release wildly-config-12.0.xsd with the proper host-exclude for
> * WildFlY18, Version.10
> * EAP73, Version.10
> (and add those to KnownRelease too)
--
This message was sent by Atlassian Jira
(v7.13.8#713008)
6 years, 3 months
[JBoss JIRA] (WFLY-13044) WFLYSEC0012 Error in web.xml with similar Patterns
by Darran Lofthouse (Jira)
[ https://issues.redhat.com/browse/WFLY-13044?page=com.atlassian.jira.plugi... ]
Darran Lofthouse commented on WFLY-13044:
-----------------------------------------
[~flavia.rainone] Let me know if you would like me to take a look at this one, I suspect it is another case of a change moving to the Jakarta EE API.
> WFLYSEC0012 Error in web.xml with similar Patterns
> --------------------------------------------------
>
> Key: WFLY-13044
> URL: https://issues.redhat.com/browse/WFLY-13044
> Project: WildFly
> Issue Type: Bug
> Components: Web (Undertow)
> Affects Versions: 18.0.0.Final, 18.0.1.Final, 19.0.0.Beta1
> Reporter: Franco Gimenez
> Assignee: Flavia Rainone
> Priority: Major
> Attachments: app.zip, image-2020-01-31-10-28-27-872.png, server.log.zip, web.xml.zip
>
>
> There are a problem while two constraints are limiting the access to the same resource with extensión patterns and exact pattern.
> In our web.xml we have two constraints. One limiting the access to all resources and other allowing access to certain files.
> This is the web.xml to test the error:
> !image-2020-01-31-10-28-27-872.png|thumbnail!
> The problem happens when the "*\**.htm" is evaluated inside of the jboss-jacc-api_1.5 lib. It tries to match "/index.html" against "*\**.htm" pattern, when the *"implies"* function returns false, it throws the exception.
> The log is:
> {code:java}
> 2020-01-30 18:44:38,293 INFO [org.wildfly.extension.undertow] (ServerService Thread Pool -- 77) WFLYUT0021: Registered web context: '/issue-reproducer-1.0.0.Final-SNAPSHOT' for server 'default-server'
> 2020-01-30 18:44:38,302 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-2) MSC000001: Failed to start service jboss.deployment.unit."issue-reproducer-1.0.0.Final-SNAPSHOT.war".jboss.security.jacc: org.jboss.msc.service.StartException in service jboss.deployment.unit."issue-reproducer-1.0.0.Final-SNAPSHOT.war".jboss.security.jacc: WFLYSEC0012: Unable to start the JaccService service
> at org.jboss.as.security.service.JaccService.start(JaccService.java:107)
> at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:1739)
> at org.jboss.msc.service.ServiceControllerImpl$StartTask.execute(ServiceControllerImpl.java:1701)
> at org.jboss.msc.service.ServiceControllerImpl$ControllerTask.run(ServiceControllerImpl.java:1559)
> at org.jboss.threads.ContextClassLoaderSavingRunnable.run(ContextClassLoaderSavingRunnable.java:35)
> at org.jboss.threads.EnhancedQueueExecutor.safeRun(EnhancedQueueExecutor.java:1982)
> at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.doRunTask(EnhancedQueueExecutor.java:1486)
> at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.run(EnhancedQueueExecutor.java:1377)
> at java.lang.Thread.run(Thread.java:745)
> Caused by: java.lang.IllegalArgumentException: Invalid exact pattern in URLPatternList
> at javax.security.jacc.URLPatternSpec.setURLPatternArray(URLPatternSpec.java:314)
> at javax.security.jacc.URLPatternSpec.<init>(URLPatternSpec.java:79)
> at javax.security.jacc.WebResourcePermission.<init>(WebResourcePermission.java:160)
> at org.wildfly.extension.undertow.security.jacc.WarJACCService.createPermissions(WarJACCService.java:287)
> at org.wildfly.extension.undertow.security.jacc.WarJACCService.createPermissions(WarJACCService.java:64)
> at org.jboss.as.security.service.JaccService.start(JaccService.java:86)
> ... 8 more
> {code}
> I add a test project and the complete log in my environment.
> With Wildfly 17 there are not error.
--
This message was sent by Atlassian Jira
(v7.13.8#713008)
6 years, 3 months
[JBoss JIRA] (WFLY-13044) WFLYSEC0012 Error in web.xml with similar Patterns
by Franco Gimenez (Jira)
[ https://issues.redhat.com/browse/WFLY-13044?page=com.atlassian.jira.plugi... ]
Franco Gimenez updated WFLY-13044:
----------------------------------
Description:
There are a problem while two constraints are limiting the access to the same resource with extensión patterns and exact pattern.
In our web.xml we have two constraints. One limiting the access to all resources and other allowing access to certain files.
This is the web.xml to test the error:
!image-2020-01-31-10-28-27-872.png|thumbnail!
The problem happens when the "*\**.htm" is evaluated inside of the jboss-jacc-api_1.5 lib. It tries to match "/index.html" against "*\**.htm" pattern, when the *"implies"* function returns false, it throws the exception.
The log is:
{code:java}
2020-01-30 18:44:38,293 INFO [org.wildfly.extension.undertow] (ServerService Thread Pool -- 77) WFLYUT0021: Registered web context: '/issue-reproducer-1.0.0.Final-SNAPSHOT' for server 'default-server'
2020-01-30 18:44:38,302 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-2) MSC000001: Failed to start service jboss.deployment.unit."issue-reproducer-1.0.0.Final-SNAPSHOT.war".jboss.security.jacc: org.jboss.msc.service.StartException in service jboss.deployment.unit."issue-reproducer-1.0.0.Final-SNAPSHOT.war".jboss.security.jacc: WFLYSEC0012: Unable to start the JaccService service
at org.jboss.as.security.service.JaccService.start(JaccService.java:107)
at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:1739)
at org.jboss.msc.service.ServiceControllerImpl$StartTask.execute(ServiceControllerImpl.java:1701)
at org.jboss.msc.service.ServiceControllerImpl$ControllerTask.run(ServiceControllerImpl.java:1559)
at org.jboss.threads.ContextClassLoaderSavingRunnable.run(ContextClassLoaderSavingRunnable.java:35)
at org.jboss.threads.EnhancedQueueExecutor.safeRun(EnhancedQueueExecutor.java:1982)
at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.doRunTask(EnhancedQueueExecutor.java:1486)
at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.run(EnhancedQueueExecutor.java:1377)
at java.lang.Thread.run(Thread.java:745)
Caused by: java.lang.IllegalArgumentException: Invalid exact pattern in URLPatternList
at javax.security.jacc.URLPatternSpec.setURLPatternArray(URLPatternSpec.java:314)
at javax.security.jacc.URLPatternSpec.<init>(URLPatternSpec.java:79)
at javax.security.jacc.WebResourcePermission.<init>(WebResourcePermission.java:160)
at org.wildfly.extension.undertow.security.jacc.WarJACCService.createPermissions(WarJACCService.java:287)
at org.wildfly.extension.undertow.security.jacc.WarJACCService.createPermissions(WarJACCService.java:64)
at org.jboss.as.security.service.JaccService.start(JaccService.java:86)
... 8 more
{code}
I add a test project and the complete log in my environment.
With Wildfly 17 there are not error.
was:
There are a problem while two constraints are limiting the access to the same resource with extensión patterns and exact pattern.
In our web.xml we have two constraints. One limiting the access to all resources and other allowing access to certain files.
This is the web.xml to test the error:
!image-2020-01-31-10-28-27-872.png|thumbnail!
The problem happens when the "*\**.htm" is evaluated inside of the jboss-jacc-api_1.5 lib. It tries to match "/index.html" against "*\**.htm" pattern, when the *"implies"* function returns false, it throws the exception.
The log is:
{code:java}
2020-01-30 18:44:38,293 INFO [org.wildfly.extension.undertow] (ServerService Thread Pool -- 77) WFLYUT0021: Registered web context: '/issue-reproducer-1.0.0.Final-SNAPSHOT' for server 'default-server'
2020-01-30 18:44:38,302 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-2) MSC000001: Failed to start service jboss.deployment.unit."issue-reproducer-1.0.0.Final-SNAPSHOT.war".jboss.security.jacc: org.jboss.msc.service.StartException in service jboss.deployment.unit."issue-reproducer-1.0.0.Final-SNAPSHOT.war".jboss.security.jacc: WFLYSEC0012: Unable to start the JaccService service
at org.jboss.as.security.service.JaccService.start(JaccService.java:107)
at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:1739)
at org.jboss.msc.service.ServiceControllerImpl$StartTask.execute(ServiceControllerImpl.java:1701)
at org.jboss.msc.service.ServiceControllerImpl$ControllerTask.run(ServiceControllerImpl.java:1559)
at org.jboss.threads.ContextClassLoaderSavingRunnable.run(ContextClassLoaderSavingRunnable.java:35)
at org.jboss.threads.EnhancedQueueExecutor.safeRun(EnhancedQueueExecutor.java:1982)
at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.doRunTask(EnhancedQueueExecutor.java:1486)
at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.run(EnhancedQueueExecutor.java:1377)
at java.lang.Thread.run(Thread.java:745)
Caused by: java.lang.IllegalArgumentException: Invalid exact pattern in URLPatternList
at javax.security.jacc.URLPatternSpec.setURLPatternArray(URLPatternSpec.java:314)
at javax.security.jacc.URLPatternSpec.<init>(URLPatternSpec.java:79)
at javax.security.jacc.WebResourcePermission.<init>(WebResourcePermission.java:160)
at org.wildfly.extension.undertow.security.jacc.WarJACCService.createPermissions(WarJACCService.java:287)
at org.wildfly.extension.undertow.security.jacc.WarJACCService.createPermissions(WarJACCService.java:64)
at org.jboss.as.security.service.JaccService.start(JaccService.java:86)
... 8 more
{code}
I add a test proyect and the complete log in my environment.
With Wildfly 17 there are not error.
> WFLYSEC0012 Error in web.xml with similar Patterns
> --------------------------------------------------
>
> Key: WFLY-13044
> URL: https://issues.redhat.com/browse/WFLY-13044
> Project: WildFly
> Issue Type: Bug
> Components: Web (Undertow)
> Affects Versions: 18.0.0.Final, 18.0.1.Final, 19.0.0.Beta1
> Reporter: Franco Gimenez
> Assignee: Flavia Rainone
> Priority: Major
> Attachments: app.zip, image-2020-01-31-10-28-27-872.png, server.log.zip, web.xml.zip
>
>
> There are a problem while two constraints are limiting the access to the same resource with extensión patterns and exact pattern.
> In our web.xml we have two constraints. One limiting the access to all resources and other allowing access to certain files.
> This is the web.xml to test the error:
> !image-2020-01-31-10-28-27-872.png|thumbnail!
> The problem happens when the "*\**.htm" is evaluated inside of the jboss-jacc-api_1.5 lib. It tries to match "/index.html" against "*\**.htm" pattern, when the *"implies"* function returns false, it throws the exception.
> The log is:
> {code:java}
> 2020-01-30 18:44:38,293 INFO [org.wildfly.extension.undertow] (ServerService Thread Pool -- 77) WFLYUT0021: Registered web context: '/issue-reproducer-1.0.0.Final-SNAPSHOT' for server 'default-server'
> 2020-01-30 18:44:38,302 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-2) MSC000001: Failed to start service jboss.deployment.unit."issue-reproducer-1.0.0.Final-SNAPSHOT.war".jboss.security.jacc: org.jboss.msc.service.StartException in service jboss.deployment.unit."issue-reproducer-1.0.0.Final-SNAPSHOT.war".jboss.security.jacc: WFLYSEC0012: Unable to start the JaccService service
> at org.jboss.as.security.service.JaccService.start(JaccService.java:107)
> at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:1739)
> at org.jboss.msc.service.ServiceControllerImpl$StartTask.execute(ServiceControllerImpl.java:1701)
> at org.jboss.msc.service.ServiceControllerImpl$ControllerTask.run(ServiceControllerImpl.java:1559)
> at org.jboss.threads.ContextClassLoaderSavingRunnable.run(ContextClassLoaderSavingRunnable.java:35)
> at org.jboss.threads.EnhancedQueueExecutor.safeRun(EnhancedQueueExecutor.java:1982)
> at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.doRunTask(EnhancedQueueExecutor.java:1486)
> at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.run(EnhancedQueueExecutor.java:1377)
> at java.lang.Thread.run(Thread.java:745)
> Caused by: java.lang.IllegalArgumentException: Invalid exact pattern in URLPatternList
> at javax.security.jacc.URLPatternSpec.setURLPatternArray(URLPatternSpec.java:314)
> at javax.security.jacc.URLPatternSpec.<init>(URLPatternSpec.java:79)
> at javax.security.jacc.WebResourcePermission.<init>(WebResourcePermission.java:160)
> at org.wildfly.extension.undertow.security.jacc.WarJACCService.createPermissions(WarJACCService.java:287)
> at org.wildfly.extension.undertow.security.jacc.WarJACCService.createPermissions(WarJACCService.java:64)
> at org.jboss.as.security.service.JaccService.start(JaccService.java:86)
> ... 8 more
> {code}
> I add a test project and the complete log in my environment.
> With Wildfly 17 there are not error.
--
This message was sent by Atlassian Jira
(v7.13.8#713008)
6 years, 3 months