January 2021 - jboss-jira - Jboss List Archives

[Red Hat JIRA] (WFCORE-5201) Update commons-io to 2.8.0

by Boris Unckel (Jira)

[ https://issues.redhat.com/browse/WFCORE-5201?page=com.atlassian.jira.plug... ] Boris Unckel closed WFCORE-5201. -------------------------------- Stay at commons-io 2.5 > Update commons-io to 2.8.0 > -------------------------- > > Key: WFCORE-5201 > URL: https://issues.redhat.com/browse/WFCORE-5201 > Project: WildFly Core > Issue Type: Component Upgrade > Components: Modules > Affects Versions: 14.0.0.Beta2 > Reporter: Boris Unckel > Assignee: Richard Opalka > Priority: Major > > Update to [commons-io 2.8.0|https://mvnrepository.com/artifact/commons-io/commons-io/2.8.0] > [Release Notes|https://commons.apache.org/proper/commons-io/changes-report.html#a2...] -- This message was sent by Atlassian Jira (v8.13.1#813001)

4 years, 3 months

1
0
0 / 0

[Red Hat JIRA] (ELY-1915) stronger credential store

by Darran Lofthouse (Jira)

[ https://issues.redhat.com/browse/ELY-1915?page=com.atlassian.jira.plugin.... ] Darran Lofthouse commented on ELY-1915: --------------------------------------- One thing worth noting is that the type of the KeyStore used to back the credential store can be specified, this does mean PKCS#12 is also an option which has become the standard KeyStore type in Java. I would still like to consider how alternate file formats could be used but this may be a suitable alternative for many. > stronger credential store > ------------------------- > > Key: ELY-1915 > URL: https://issues.redhat.com/browse/ELY-1915 > Project: WildFly Elytron > Issue Type: Feature Request > Components: Credential Store > Affects Versions: 1.6.1.Final > Reporter: Hisanobu Okuda > Priority: Major > > JCEKS which is used for credential store uses 3DES. Need more stronger credential store based on a stronger cryptography like AES256 or more. -- This message was sent by Atlassian Jira (v8.13.1#813001)

4 years, 3 months

1
0
0 / 0

[Red Hat JIRA] (ELY-2062) Unexpected order of security-manager permission checks on Eclipse OpenJ9 VM AdoptOpenJDK 11

by Darran Lofthouse (Jira)

[ https://issues.redhat.com/browse/ELY-2062?page=com.atlassian.jira.plugin.... ] Darran Lofthouse reassigned ELY-2062: ------------------------------------- Assignee: (was: Darran Lofthouse) > Unexpected order of security-manager permission checks on Eclipse OpenJ9 VM AdoptOpenJDK 11 > ------------------------------------------------------------------------------------------- > > Key: ELY-2062 > URL: https://issues.redhat.com/browse/ELY-2062 > Project: WildFly Elytron > Issue Type: Bug > Affects Versions: 1.14.1.Final > Reporter: Marek Kopecky > Priority: Major > > [AlternateSecurityManagerTest|https://github.com/wildfly-security/wildfly-...] fails on Eclipse OpenJ9 VM AdoptOpenJDK 11 because of unexpected order of security-manager permission checks. > Stacktrace: > {noformat} > testDoPrivilegedWithParameter_WithContext(org.wildfly.security.manager.AlternateSecurityManagerTest) Time elapsed: 0.05 sec <<< FAILURE! > java.lang.AssertionError: Matching CodeSource Location expected:<file:/home/mkopecky/playground/elytron/1.x/manager/base/target/test-classes/> but was:<file:/home/mkopecky/playground/elytron/1.x/manager/base/target/classes/> > at org.wildfly.security.manager.AlternateSecurityManagerTest.testDoPrivilegedWithParameter_WithContext(AlternateSecurityManagerTest.java:314) > testDoChecked_WithContext(org.wildfly.security.manager.AlternateSecurityManagerTest) Time elapsed: 0 sec <<< FAILURE! > java.lang.AssertionError: Matching CodeSource Location expected:<file:/home/mkopecky/playground/elytron/1.x/manager/base/target/classes/> but was:<file:/home/mkopecky/.m2/repository/junit/junit/4.13.1/junit-4.13.1.jar> > at org.wildfly.security.manager.AlternateSecurityManagerTest.testDoChecked_WithContext(AlternateSecurityManagerTest.java:268) > testDoUnchecked_WithContext(org.wildfly.security.manager.AlternateSecurityManagerTest) Time elapsed: 0.001 sec <<< FAILURE! > java.lang.AssertionError: Matching CodeSource Location expected:<file:/home/mkopecky/.m2/repository/junit/junit/4.13.1/junit-4.13.1.jar> but was:<file:/home/mkopecky/playground/elytron/1.x/manager/base/target/classes/> > at org.wildfly.security.manager.AlternateSecurityManagerTest.testDoUnchecked_WithContext(AlternateSecurityManagerTest.java:210) > testDoUnchecked(org.wildfly.security.manager.AlternateSecurityManagerTest) Time elapsed: 0.001 sec <<< FAILURE! > java.lang.AssertionError: Matching CodeSource Location expected:<file:/home/mkopecky/playground/elytron/1.x/manager/base/target/test-classes/> but was:<file:/home/mkopecky/playground/elytron/1.x/manager/base/target/classes/> > at org.wildfly.security.manager.AlternateSecurityManagerTest.testDoUnchecked(AlternateSecurityManagerTest.java:187) > testDoPrivilegedWithParameter(org.wildfly.security.manager.AlternateSecurityManagerTest) Time elapsed: 0.001 sec <<< FAILURE! > java.lang.AssertionError: Matching CodeSource Location expected:<file:/home/mkopecky/playground/elytron/1.x/manager/base/target/test-classes/> but was:<file:/home/mkopecky/playground/elytron/1.x/manager/base/target/classes/> > at org.wildfly.security.manager.AlternateSecurityManagerTest.testDoPrivilegedWithParameter(AlternateSecurityManagerTest.java:291) > testGetPropertyPrivileged(org.wildfly.security.manager.AlternateSecurityManagerTest) Time elapsed: 0.001 sec <<< FAILURE! > java.lang.AssertionError: Our CodeSource expected:<file:/home/mkopecky/playground/elytron/1.x/manager/base/target/test-classes/> but was:<file:/home/mkopecky/.m2/repository/org/wildfly/security/wildfly-elytron-security-manager-action/1.14.1.CR1-SNAPSHOT/wildfly-elytron-security-manager-action-1.14.1.CR1-SNAPSHOT.jar> > at org.wildfly.security.manager.AlternateSecurityManagerTest.testGetPropertyPrivileged(AlternateSecurityManagerTest.java:161) > {noformat} -- This message was sent by Atlassian Jira (v8.13.1#813001)

4 years, 3 months

1
0
0 / 0

[Red Hat JIRA] (WFLY-14381) Ensure Infinispan specific marshallers use valid protobuf encoding

by Paul Ferraro (Jira)

Paul Ferraro created WFLY-14381: ----------------------------------- Summary: Ensure Infinispan specific marshallers use valid protobuf encoding Key: WFLY-14381 URL: https://issues.redhat.com/browse/WFLY-14381 Project: WildFly Issue Type: Bug Components: Clustering Affects Versions: 22.0.0.Final Reporter: Paul Ferraro Assignee: Paul Ferraro The ByteBufferImpl marshaller does not use valid protobuf encoding. -- This message was sent by Atlassian Jira (v8.13.1#813001)

4 years, 3 months

1
0
0 / 0

[Red Hat JIRA] (ELY-1626) Programmatic web authentication (HttpServletRequest.login()) does not trigger sso

by Darran Lofthouse (Jira)

[ https://issues.redhat.com/browse/ELY-1626?page=com.atlassian.jira.plugin.... ] Darran Lofthouse updated ELY-1626: ---------------------------------- Fix Version/s: 1.15.0.CR1 > Programmatic web authentication (HttpServletRequest.login()) does not trigger sso > --------------------------------------------------------------------------------- > > Key: ELY-1626 > URL: https://issues.redhat.com/browse/ELY-1626 > Project: WildFly Elytron > Issue Type: Bug > Reporter: Ilia Vassilev > Assignee: Darran Lofthouse > Priority: Critical > Fix For: 1.15.0.CR1 > > Attachments: login-test.war.zip, login-test_eclipse.zip, standalone-full-ha.xml > > > Programmatic web authentication (HttpServletRequest.login()) does not trigger sso (JSESSIONIDSSO does not get created) when using elytron/undertow. > This worked fine in EAP 6 (eap 5 too but it was a bit different as > HttpServletRequest.login() wasn't available at that time). -- This message was sent by Atlassian Jira (v8.13.1#813001)

4 years, 3 months

1
0
0 / 0

[Red Hat JIRA] (ELY-2077) Due to mechanism wrapping calls to dispose() are not making it to the underlying mechamims,

by Darran Lofthouse (Jira)

Darran Lofthouse created ELY-2077: ------------------------------------- Summary: Due to mechanism wrapping calls to dispose() are not making it to the underlying mechamims, Key: ELY-2077 URL: https://issues.redhat.com/browse/ELY-2077 Project: WildFly Elytron Issue Type: Bug Components: HTTP Reporter: Darran Lofthouse Assignee: Darran Lofthouse Fix For: 1.15.0.CR1 Mechanisms may rely on dispose() being called to perform clean up so if this is dropped the clean up may not be possible. -- This message was sent by Atlassian Jira (v8.13.1#813001)

4 years, 3 months

1
0
0 / 0

[Red Hat JIRA] (WFLY-14380) Cant configure Let's Encrypt simple steps

by erick leal (Jira)

erick leal created WFLY-14380: --------------------------------- Summary: Cant configure Let's Encrypt simple steps Key: WFLY-14380 URL: https://issues.redhat.com/browse/WFLY-14380 Project: WildFly Issue Type: Bug Affects Versions: 22.0.0.Final Reporter: erick leal Assignee: Brian Stansberry Attachments: Capturar.PNG I'm tyring to configure Let's Encrypt in my server, and I followed instructions that said to simple type security enable-ssl-http-server --interactive --lets-encrypt But I believe because I'm in Windows I ran into the issue described in the picture below !Capturar.PNG! -- This message was sent by Atlassian Jira (v8.13.1#813001)

4 years, 3 months

1
0
0 / 0

[Red Hat JIRA] (WFCORE-5185) Update ProviderDefinition to use optimised service loading API

by Ilia Vassilev (Jira)

[ https://issues.redhat.com/browse/WFCORE-5185?page=com.atlassian.jira.plug... ] Ilia Vassilev reassigned WFCORE-5185: ------------------------------------- Assignee: Ilia Vassilev > Update ProviderDefinition to use optimised service loading API > -------------------------------------------------------------- > > Key: WFCORE-5185 > URL: https://issues.redhat.com/browse/WFCORE-5185 > Project: WildFly Core > Issue Type: Bug > Components: Security > Reporter: Darran Lofthouse > Assignee: Ilia Vassilev > Priority: Major > Fix For: 14.0.1.Final > > > A new API is being added to JBoss Modules to optimise how loaded services can be filtered, this will allow us to filter out the JDK provided security providers before they are instantiated. > Presently we can filter after instantiation which is wasted overhead during boot, including contributing the GC overhead. > Once this issue is available we can switch over: > https://issues.redhat.com/browse/MODULES-402 -- This message was sent by Atlassian Jira (v8.13.1#813001)

4 years, 3 months

1
0
0 / 0

[Red Hat JIRA] (WFLY-14379) Widespread test failures on Fedora 33 with Fedora distribution of OpenJDK 11

by Sonia Zaldana (Jira)

[ https://issues.redhat.com/browse/WFLY-14379?page=com.atlassian.jira.plugi... ] Sonia Zaldana updated WFLY-14379: --------------------------------- Description: Multiple test failures observed in: * KeystoreRealmTestCase * AutomaticSelfSignedCertificateNotGeneratedTestCase They are resolved by updating tests to use SHA256withRSA instead of SHA1withRSA. was: Multiple test failures observed in: * KeystoreRealmTestCase * AutomaticSelfSignedCertificateNotGeneratedTestCase > Widespread test failures on Fedora 33 with Fedora distribution of OpenJDK 11 > ---------------------------------------------------------------------------- > > Key: WFLY-14379 > URL: https://issues.redhat.com/browse/WFLY-14379 > Project: WildFly > Issue Type: Bug > Components: Security, Test Suite > Reporter: Sonia Zaldana > Assignee: Sonia Zaldana > Priority: Major > > Multiple test failures observed in: > * KeystoreRealmTestCase > * AutomaticSelfSignedCertificateNotGeneratedTestCase > > They are resolved by updating tests to use SHA256withRSA instead of SHA1withRSA. -- This message was sent by Atlassian Jira (v8.13.1#813001)

4 years, 3 months

1
0
0 / 0

[Red Hat JIRA] (WFLY-14379) Widespread test failures on Fedora 33 with Fedora distribution of OpenJDK 11

by Sonia Zaldana (Jira)

[ https://issues.redhat.com/browse/WFLY-14379?page=com.atlassian.jira.plugi... ] Sonia Zaldana updated WFLY-14379: --------------------------------- Git Pull Request: https://github.com/wildfly/wildfly/pull/13938 > Widespread test failures on Fedora 33 with Fedora distribution of OpenJDK 11 > ---------------------------------------------------------------------------- > > Key: WFLY-14379 > URL: https://issues.redhat.com/browse/WFLY-14379 > Project: WildFly > Issue Type: Bug > Components: Security, Test Suite > Reporter: Sonia Zaldana > Assignee: Sonia Zaldana > Priority: Major > > Multiple test failures observed in: > * KeystoreRealmTestCase > * AutomaticSelfSignedCertificateNotGeneratedTestCase -- This message was sent by Atlassian Jira (v8.13.1#813001)

4 years, 3 months

1
0
0 / 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

jboss-jira January 2021