March 2020 - jboss-jira - Jboss List Archives

[JBoss JIRA] (JGRP-2461) Clustering can fail when re-adding an existing node using TCP_NIO2

by Robert Mitchell (Jira)

Robert Mitchell created JGRP-2461: ------------------------------------- Summary: Clustering can fail when re-adding an existing node using TCP_NIO2 Key: JGRP-2461 URL: https://issues.redhat.com/browse/JGRP-2461 Project: JGroups Issue Type: Bug Affects Versions: 4.1.8 Reporter: Robert Mitchell Assignee: Bela Ban When a node leaves a cluster and then later attempts to re-enter, a race condition can occur where the clustering fails to occur. Here is the sequence of events that seems to allow this to occur: # The rejoining node must have a "higher" IP address than the current cluster coordinator. # On the rejoin attempt, the coordinator sends a message to the rejoining node before the rejoining node sends to the coordinator using its prior address. I have seen this happen for two reasons: ## UNICAST3 is resending messages (which often happens with the final LEAVE_RSP from the prior cluster membership because it apparently does not get acked before the connection closes) ## TCPPING is sending a ping request to the cached prior address. # The connection gets established. It will then be used by the rejoining node whenever communicating with the cluster coordinator. # However, the cluster coordinator has this as the connection for the prior address. So the following happens whenever it wants to send a message to the rejoining node: ## It will attempt to create a new connection. ## The rejoining node will reject the connection as a redundant connection with its current connection taking precedence since it is coming from the same logical address as the "bad" connection. Since the messages needed to find and join the cluster or merge the two clusters are all unicast messages, the rejoining node will never get them and not be able to join until something happens that causes the initial connection to get closed. -- This message was sent by Atlassian Jira (v7.13.8#713008)

6 years, 3 months

1
0
0 / 0

[JBoss JIRA] (DROOLS-5169) [DMN Editor] Datatype drag and drop, drops unintentionally

by Anna Dupliak (Jira)

[ https://issues.redhat.com/browse/DROOLS-5169?page=com.atlassian.jira.plug... ] Anna Dupliak updated DROOLS-5169: --------------------------------- Description: If user creates a nested fields and drag it to another field, then it drops unexpectedly even if user do not release the mouse button. Reproduced on FF 72.0.2 and Chrome Version 80.0.3987.87 was:If user creates a nested fields and drag it to another field, then it drops unexpectedly even if user do not release the mouse button. > [DMN Editor] Datatype drag and drop, drops unintentionally > ------------------------------------------------------------ > > Key: DROOLS-5169 > URL: https://issues.redhat.com/browse/DROOLS-5169 > Project: Drools > Issue Type: Bug > Components: DMN Editor > Affects Versions: 7.35.0.Final > Reporter: Anna Dupliak > Assignee: Michael Anstis > Priority: Major > Labels: drools-tools > Attachments: selfReleasingList.webm > > > If user creates a nested fields and drag it to another field, then it drops unexpectedly even if user do not release the mouse button. > Reproduced on FF 72.0.2 and Chrome Version 80.0.3987.87 -- This message was sent by Atlassian Jira (v7.13.8#713008)

6 years, 3 months

1
0
0 / 0

[JBoss JIRA] (DROOLS-5169) [DMN Editor] Datatype drag and drop, drops unintentionally

by Anna Dupliak (Jira)

Anna Dupliak created DROOLS-5169: ------------------------------------ Summary: [DMN Editor] Datatype drag and drop, drops unintentionally Key: DROOLS-5169 URL: https://issues.redhat.com/browse/DROOLS-5169 Project: Drools Issue Type: Bug Components: DMN Editor Affects Versions: 7.35.0.Final Reporter: Anna Dupliak Assignee: Michael Anstis Attachments: selfReleasingList.webm If user creates a nested fields and drag it to another field, then it drops unexpectedly even if user do not release the mouse button. -- This message was sent by Atlassian Jira (v7.13.8#713008)

6 years, 3 months

1
0
0 / 0

[JBoss JIRA] (ELY-1851) Elytron ldaps realm fails if a referral is returned inside a search

by Darran Lofthouse (Jira)

[ https://issues.redhat.com/browse/ELY-1851?page=com.atlassian.jira.plugin.... ] Darran Lofthouse updated ELY-1851: ---------------------------------- Fix Version/s: 1.6.7.CR1 (was: 1.6.6.Final) > Elytron ldaps realm fails if a referral is returned inside a search > ------------------------------------------------------------------- > > Key: ELY-1851 > URL: https://issues.redhat.com/browse/ELY-1851 > Project: WildFly Elytron > Issue Type: Bug > Affects Versions: 1.6.3.Final > Reporter: Chao Wang > Assignee: Chao Wang > Priority: Major > Fix For: 1.6.7.CR1 > > > Elytron LdapRealm fails to follow a referral when ldaps is used (the {{ThreadLocalSSLSocketFactory}} is not set). > With a configuration similar to this one ({{memberOf}} is used to locate groups): > {code:xml} > <ldap-realm name="ldap-realm" dir-context="ldap-dir-context" direct-verification="true"> > <identity-mapping rdn-identifier="sAMAccountName" use-recursive-search="true" search-base-dn="DC=redhat,DC=com"> > <attribute-mapping> > <attribute reference="memberOf" from="cn" to="Roles" role-recursion="3"/> > </attribute-mapping> > </identity-mapping> > </ldap-realm> > ... > <dir-context name="ldap-dir-context" url="ldaps://ldap.redhat.com:636" principal="cn=Administrator,cn=Users,DC=redhat,DC=com" referral-mode="FOLLOW" ssl-context="ldaps-context"> > <credential-reference store="credstore" alias="ldap_password"/> > </dir-context> > {code} > If we have a group (or user) which contains a {{memberOf}} of another ldap, something like the following: > {noformat} > dn: CN=group-with-external-members,OU=Groups,DC=redhat,DC=com > ... > memberOf: CN=group-in-another-domain,OU=Groups,DC=lab,DC=redhat,DC=com > {noformat} > The following exception is thrown when a referral is returned for a group that is inside another ldapserver of the forest: > {noformat} > TRACE [org.jboss.remoting.remote.server] (management task-1) Server sending authentication rejected: java.lang.RuntimeException: ELY01079: ldap-realm realm failed to obtain attributes for entry [CN=group-with-external-members,OU=Groups,DC=redhat,DC=com] > at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity.extractFilteredAttributesFromSearch(LdapSecurityRealm.java:808) > at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity.lambda$null$4(LdapSecurityRealm.java:768) > at java.util.stream.ForEachOps$ForEachOp$OfRef.accept(ForEachOps.java:184) > at java.util.stream.ReferencePipeline$3$1.accept(ReferencePipeline.java:193) > at java.util.ArrayList$ArrayListSpliterator.forEachRemaining(ArrayList.java:1382) > at java.util.stream.AbstractPipeline.copyInto(AbstractPipeline.java:481) > at java.util.stream.AbstractPipeline.wrapAndCopyInto(AbstractPipeline.java:471) > at java.util.stream.ForEachOps$ForEachOp.evaluateSequential(ForEachOps.java:151) > at java.util.stream.ForEachOps$ForEachOp$OfRef.evaluateSequential(ForEachOps.java:174) > at java.util.stream.AbstractPipeline.evaluate(AbstractPipeline.java:234) > at java.util.stream.ReferencePipeline.forEach(ReferencePipeline.java:418) > at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity.forEachAttributeValue(LdapSecurityRealm.java:841) > at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity.lambda$extractFilteredAttributes$6(LdapSecurityRealm.java:766) > at java.util.stream.Collectors.lambda$toMap$58(Collectors.java:1321) > at java.util.stream.ReduceOps$3ReducingSink.accept(ReduceOps.java:169) > at java.util.stream.ReferencePipeline$2$1.accept(ReferencePipeline.java:175) > at java.util.ArrayList$ArrayListSpliterator.forEachRemaining(ArrayList.java:1382) > at java.util.stream.AbstractPipeline.copyInto(AbstractPipeline.java:481) > at java.util.stream.AbstractPipeline.wrapAndCopyInto(AbstractPipeline.java:471) > at java.util.stream.ReduceOps$ReduceOp.evaluateSequential(ReduceOps.java:708) > at java.util.stream.AbstractPipeline.evaluate(AbstractPipeline.java:234) > at java.util.stream.ReferencePipeline.collect(ReferencePipeline.java:499) > at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity.extractAttributes(LdapSecurityRealm.java:828) > at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity.extractFilteredAttributes(LdapSecurityRealm.java:754) > at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity.getAttributes(LdapSecurityRealm.java:516) > at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity.getAuthorizationIdentity(LdapSecurityRealm.java:497) > at org.wildfly.security.auth.server.ServerAuthenticationContext$NameAssignedState.doAuthorization(ServerAuthenticationContext.java:1923) > at org.wildfly.security.auth.server.ServerAuthenticationContext$NameAssignedState.authorize(ServerAuthenticationContext.java:1952) > at org.wildfly.security.auth.server.ServerAuthenticationContext.authorize(ServerAuthenticationContext.java:509) > at org.wildfly.security.auth.server.ServerAuthenticationContext.authorize(ServerAuthenticationContext.java:489) > at org.wildfly.security.auth.server.ServerAuthenticationContext$1.handleOne(ServerAuthenticationContext.java:872) > at org.wildfly.security.auth.server.ServerAuthenticationContext$1.handle(ServerAuthenticationContext.java:839) > at org.wildfly.security.sasl.util.SSLQueryCallbackHandler.handle(SSLQueryCallbackHandler.java:60) > at org.wildfly.security.sasl.util.TrustManagerSaslServerFactory.lambda$createSaslServer$0(TrustManagerSaslServerFactory.java:96) > at org.wildfly.security.sasl.plain.PlainSaslServer.evaluateResponse(PlainSaslServer.java:146) > at org.wildfly.security.sasl.util.AuthenticationCompleteCallbackSaslServerFactory$1.evaluateResponse(AuthenticationCompleteCallbackSaslServerFactory.java:58) > at org.wildfly.security.sasl.util.AuthenticationTimeoutSaslServerFactory$DelegatingTimeoutSaslServer.evaluateResponse(AuthenticationTimeoutSaslServerFactory.java:106) > at org.wildfly.security.sasl.util.SecurityIdentitySaslServerFactory$1.evaluateResponse(SecurityIdentitySaslServerFactory.java:59) > at org.xnio.sasl.SaslUtils.evaluateResponse(SaslUtils.java:245) > at org.xnio.sasl.SaslUtils.evaluateResponse(SaslUtils.java:217) > at org.jboss.remoting3.remote.ServerConnectionOpenListener$AuthStepRunnable.run(ServerConnectionOpenListener.java:486) > at org.jboss.remoting3.EndpointImpl$TrackingExecutor.lambda$execute$0(EndpointImpl.java:942) > at org.jboss.threads.ContextClassLoaderSavingRunnable.run(ContextClassLoaderSavingRunnable.java:35) > at org.jboss.threads.EnhancedQueueExecutor.safeRun(EnhancedQueueExecutor.java:1985) > at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.doRunTask(EnhancedQueueExecutor.java:1487) > at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.run(EnhancedQueueExecutor.java:1378) > at java.lang.Thread.run(Thread.java:748) > Caused by: org.wildfly.security.auth.server.RealmUnavailableException: ELY01108: ldap-realm realm identity search failed > at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapSearch.search(LdapSecurityRealm.java:1141) > at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapRealmIdentity.extractFilteredAttributesFromSearch(LdapSecurityRealm.java:797) > ... 46 more > Caused by: javax.naming.CommunicationException: ldap.lab.redhat.com:636 [Root exception is java.lang.IllegalStateException: ELY04025: DirContext tries to connect without ThreadLocalSSLSocketFactory thread local setting] > at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:96) > at com.sun.jndi.ldap.LdapReferralException.getReferralContext(LdapReferralException.java:151) > at com.sun.jndi.ldap.LdapCtx.searchAux(LdapCtx.java:1861) > at com.sun.jndi.ldap.LdapCtx.c_search(LdapCtx.java:1769) > at com.sun.jndi.ldap.LdapCtx.c_search(LdapCtx.java:1786) > at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_search(ComponentDirContext.java:418) > at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:396) > at javax.naming.directory.InitialDirContext.search(InitialDirContext.java:297) > at javax.naming.directory.InitialDirContext.search(InitialDirContext.java:297) > at org.wildfly.security.auth.realm.ldap.DelegatingLdapContext.search(DelegatingLdapContext.java:335) > at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapSearch.searchWithPagination(LdapSecurityRealm.java:1161) > at org.wildfly.security.auth.realm.ldap.LdapSecurityRealm$LdapSearch.search(LdapSecurityRealm.java:1038) > ... 47 more > Caused by: java.lang.IllegalStateException: ELY04025: DirContext tries to connect without ThreadLocalSSLSocketFactory thread local setting > at org.wildfly.security.auth.realm.ldap.ThreadLocalSSLSocketFactory.getDefault(ThreadLocalSSLSocketFactory.java:46) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:498) > at com.sun.jndi.ldap.Connection.createSocket(Connection.java:296) > at com.sun.jndi.ldap.Connection.<init>(Connection.java:215) > at com.sun.jndi.ldap.LdapClient.<init>(LdapClient.java:137) > at com.sun.jndi.ldap.LdapClient.getInstance(LdapClient.java:1609) > at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2749) > at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:319) > at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:192) > at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:151) > at com.sun.jndi.url.ldap.ldapURLContextFactory.getObjectInstance(ldapURLContextFactory.java:52) > at org.jboss.as.naming.context.ObjectFactoryBuilder$ReferenceUrlContextFactoryWrapper.getObjectInstance(ObjectFactoryBuilder.java:293) > at javax.naming.spi.NamingManager.getObjectInstance(NamingManager.java:300) > at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:119) > ... 58 more > {noformat} > The reason seems to be that the {{ThreadLocalSSLSocketFactory}} is not set when doing a search, so, if a referral is returned the new search created inside the current one has no access to the {{SSLSocketFactory}} in the thread local. -- This message was sent by Atlassian Jira (v7.13.8#713008)

6 years, 3 months

1
0
0 / 0

[JBoss JIRA] (ELY-1942) Release WildFly Elytron 1.6.6.Final

by Darran Lofthouse (Jira)

[ https://issues.redhat.com/browse/ELY-1942?page=com.atlassian.jira.plugin.... ] Darran Lofthouse resolved ELY-1942. ----------------------------------- Resolution: Done > Release WildFly Elytron 1.6.6.Final > ----------------------------------- > > Key: ELY-1942 > URL: https://issues.redhat.com/browse/ELY-1942 > Project: WildFly Elytron > Issue Type: Release > Reporter: Darran Lofthouse > Assignee: Darran Lofthouse > Priority: Major > Fix For: 1.6.6.CR1 > > -- This message was sent by Atlassian Jira (v7.13.8#713008)

6 years, 3 months

1
0
0 / 0

[JBoss JIRA] (WFLY-13246) Upgrade cryptacular to 1.2.4

by James Perkins (Jira)

James Perkins created WFLY-13246: ------------------------------------ Summary: Upgrade cryptacular to 1.2.4 Key: WFLY-13246 URL: https://issues.redhat.com/browse/WFLY-13246 Project: WildFly Issue Type: Component Upgrade Components: Web Services Reporter: Brian Stansberry Assignee: Jim Ma Fix For: 19.0.1.Final, 20.0.0.Beta1 Resolves https://nvd.nist.gov/vuln/detail/CVE-2020-7226 -- This message was sent by Atlassian Jira (v7.13.8#713008)

6 years, 3 months

1
0
0 / 0

[JBoss JIRA] (WFLY-13245) Upgrade snakeyaml to 1.26

by James Perkins (Jira)

James Perkins created WFLY-13245: ------------------------------------ Summary: Upgrade snakeyaml to 1.26 Key: WFLY-13245 URL: https://issues.redhat.com/browse/WFLY-13245 Project: WildFly Issue Type: Component Upgrade Components: MP OpenAPI, REST Reporter: Brian Stansberry Assignee: Brian Stansberry Fix For: 19.0.1.Final, 20.0.0.Beta1 Resolve https://nvd.nist.gov/vuln/detail/CVE-2017-18640 -- This message was sent by Atlassian Jira (v7.13.8#713008)

6 years, 3 months

1
0
0 / 0

[JBoss JIRA] (WFLY-13244) MicroProfile open-tracing should explicitly depends on microprofile-config

by Emmanuel Hugonnet (Jira)

Emmanuel Hugonnet created WFLY-13244: ---------------------------------------- Summary: MicroProfile open-tracing should explicitly depends on microprofile-config Key: WFLY-13244 URL: https://issues.redhat.com/browse/WFLY-13244 Project: WildFly Issue Type: Bug Components: MP OpenTracing Affects Versions: 19.0.0.Final Reporter: Emmanuel Hugonnet Assignee: Emmanuel Hugonnet https://issues.redhat.com/browse/WFLY-13210 shows that the current model doesn't explicitly state that dependency. -- This message was sent by Atlassian Jira (v7.13.8#713008)

6 years, 3 months

1
0
0 / 0

[JBoss JIRA] (LOGMGR-263) Logger Lookup is much slower as with JDK 8

by Mike Millson (Jira)

[ https://issues.redhat.com/browse/LOGMGR-263?page=com.atlassian.jira.plugi... ] Mike Millson updated LOGMGR-263: -------------------------------- Attachment: logger-demo.war > Logger Lookup is much slower as with JDK 8 > ------------------------------------------ > > Key: LOGMGR-263 > URL: https://issues.redhat.com/browse/LOGMGR-263 > Project: JBoss Log Manager > Issue Type: Bug > Environment: WildFly 17, OpenJDK 11 > Reporter: Andreas Liebscher > Priority: Major > Attachments: ClassInEar.java, LogContextCacher.java, getlogger-stack.txt, grafik1570016303722 (1).png, grafik1570016303722.png, grafik1570016791285.png, logger-demo.war, responsetimes.png > > > During upgrading a Java EE application from WildFly 13 with JDK 8 to WildFly 17 with JDK 11 we had a serious performance issue. We identified the usage of the logging framework SLF4J with the pattern `Logger log = LoggerFactory.getLogger(XXX.class)` was the reason when a lot of calls to `getLogger` occur in parallel. As workaround we added `static` to some code hotspots to get back the performance we were used to. Also WildFly 13 with JDK 8 got a performance improvement with the added `static` keyword. > Please check the VisualVM output as prove of JDKSpecific got slower: -- This message was sent by Atlassian Jira (v7.13.8#713008)

6 years, 3 months

1
0
0 / 0

[JBoss JIRA] (ELY-1942) Release WildFly Elytron 1.6.6.Final

by Darran Lofthouse (Jira)

Darran Lofthouse created ELY-1942: ------------------------------------- Summary: Release WildFly Elytron 1.6.6.Final Key: ELY-1942 URL: https://issues.redhat.com/browse/ELY-1942 Project: WildFly Elytron Issue Type: Release Reporter: Darran Lofthouse Assignee: Darran Lofthouse Fix For: 1.6.6.CR1 -- This message was sent by Atlassian Jira (v7.13.8#713008)

6 years, 3 months

1
0
0 / 0

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira March 2020