[JBoss JIRA] (WFCORE-4965) Error loading a PKCS12 keystore inside a security-realm when using a credential-reference

Monday, 11 May 2020

     [
https://issues.redhat.com/browse/WFCORE-4965?page=com.atlassian.jira.plug...
]

Ricardo Martin Camarero moved JBEAP-19448 to WFCORE-4965:
---------------------------------------------------------

              Project: WildFly Core  (was: JBoss Enterprise Application Platform)
                  Key: WFCORE-4965  (was: JBEAP-19448)
             Workflow: GIT Pull Request workflow   (was: CDW with loose statuses v1)
          Component/s: Security
                           (was: Security)
    Affects Version/s: 11.1.0.Final
                           (was: 7.3.0.GA)

...
 Error loading a PKCS12 keystore inside a security-realm when using a
credential-reference

-----------------------------------------------------------------------------------------

                 Key: WFCORE-4965
                 URL: https://issues.redhat.com/browse/WFCORE-4965
             Project: WildFly Core
          Issue Type: Bug
          Components: Security
    Affects Versions: 11.1.0.Final
            Reporter: Ricardo Martin Camarero
            Assignee: Ricardo Martin Camarero
            Priority: Major

 When using a security-realm configured with SSL like this:
 {code:xml}
 <security-realm name="CertificateRealm">
     <server-identities>
         <ssl>
             <keystore provider="PKCS12"
path="${jboss.server.config.dir}/keystore.p12" alias="jboss">
                 <keystore-password-credential-reference store="sample-store"
alias="p12-password"/>
             </keystore>
          </ssl>
     </server-identities>
 </security-realm>
 {code}
 The EAP startup fails with the following exception:
 {noformat}
 org.wildfly.core.management.security.realm.CertificateRealm.key-manager: Failed to start
service
 	at
org.jboss.msc.service.ServiceControllerImpl$StartTask.execute(ServiceControllerImpl.java:1731)
 	at
org.jboss.msc.service.ServiceControllerImpl$ControllerTask.run(ServiceControllerImpl.java:1559)
 	at
org.jboss.threads.ContextClassLoaderSavingRunnable.run(ContextClassLoaderSavingRunnable.java:35)
 	at org.jboss.threads.EnhancedQueueExecutor.safeRun(EnhancedQueueExecutor.java:1982)
 	at
org.jboss.threads.EnhancedQueueExecutor$ThreadBody.doRunTask(EnhancedQueueExecutor.java:1486)
 	at
org.jboss.threads.EnhancedQueueExecutor$ThreadBody.run(EnhancedQueueExecutor.java:1363)
 	at java.lang.Thread.run(Thread.java:748)
 Caused by: java.lang.NullPointerException: invalid null input
 	at java.security.KeyStore$PrivateKeyEntry.<init>(KeyStore.java:524)
 	at sun.security.pkcs12.PKCS12KeyStore.engineGetEntry(PKCS12KeyStore.java:1311)
 	at sun.security.provider.KeyStoreDelegator.engineGetEntry(KeyStoreDelegator.java:172)
 	at
sun.security.provider.JavaKeyStore$DualFormatJKS.engineGetEntry(JavaKeyStore.java:70)
 	at java.security.KeyStore.getEntry(KeyStore.java:1521)
 	at org.jboss.as.domain.management.security.FileKeystore.load(FileKeystore.java:134)
 	at
org.jboss.as.domain.management.security.FileKeyManagerService.loadKeyStore(FileKeyManagerService.java:175)
 	at
org.jboss.as.domain.management.security.AbstractKeyManagerService.createKeyManagers(AbstractKeyManagerService.java:128)
 	at
org.jboss.as.domain.management.security.AbstractKeyManagerService.start(AbstractKeyManagerService.java:93)
 	at
org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:1739)
 	at
org.jboss.msc.service.ServiceControllerImpl$StartTask.execute(ServiceControllerImpl.java:1701)
 	... 6 more
 {noformat} 

--
This message was sent by Atlassian Jira
(v7.13.8#713008)

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006