4:24 p.m.
[
https://issues.jboss.org/browse/WFCORE-2992?page=com.atlassian.jira.plugi...
]
Matthew Casperson commented on WFCORE-2992:
-------------------------------------------
This is the slave host.xml file. It was never configured to use the HTTPS 19993 port at
all.
I'm not sure why configuring HTTPS on the admin console made any difference, but after
enabling it I can replicate the failed restart right away.
{code:xml}
<?xml version='1.0' encoding='UTF-8'?>
<host name="wildfly-slave-S-1-5-21-937368224-141896396-2868807245"
xmlns="urn:jboss:domain:5.0">
<extensions>
<extension module="org.jboss.as.jmx"/>
<extension module="org.wildfly.extension.core-management"/>
<extension module="org.wildfly.extension.elytron"/>
</extensions>
<vault>
<vault-option name="KEYSTORE_URL"
value="C:\wildfly_slave\wildfly-11.0.0.Alpha1/vault.keystore"/>
<vault-option name="KEYSTORE_PASSWORD"
value="MASK-3Df3uyvBoWIUyDzYqtHJqA"/>
<vault-option name="KEYSTORE_ALIAS" value="vault"/>
<vault-option name="SALT" value="abcdefgh"/>
<vault-option name="ITERATION_COUNT" value="50"/>
<vault-option name="ENC_FILE_DIR"
value="C:\wildfly_slave\wildfly-11.0.0.Alpha1/vault/"/>
</vault>
<management>
<security-realms>
<security-realm name="ManagementRealm">
<server-identities>
<secret
value="${VAULT::MyVault::wildfly_slave_password::1}"/>
</server-identities>
<authentication>
<local default-user="$local"
skip-group-loading="true"/>
<properties path="mgmt-users.properties"
relative-to="jboss.domain.config.dir"/>
</authentication>
<authorization map-groups-to-roles="false">
<properties path="mgmt-groups.properties"
relative-to="jboss.domain.config.dir"/>
</authorization>
</security-realm>
<security-realm name="ApplicationRealm">
<server-identities>
<ssl>
<keystore path="application.keystore"
relative-to="jboss.domain.config.dir" keystore-password="password"
alias="server" key-password="password"
generate-self-signed-certificate-host="localhost"/>
</ssl>
</server-identities>
<authentication>
<local default-user="$local" allowed-users="*"
skip-group-loading="true"/>
<properties path="application-users.properties"
relative-to="jboss.domain.config.dir"/>
</authentication>
<authorization>
<properties path="application-roles.properties"
relative-to="jboss.domain.config.dir"/>
</authorization>
</security-realm>
<security-realm name="octopus-ssl-realm">
<server-identities>
<ssl>
<keystore path="C:\keystore.jks"
keystore-password="Password01" alias="octopus"/>
</ssl>
</server-identities>
</security-realm>
</security-realms>
<audit-log>
<formatters>
<json-formatter name="json-formatter"/>
</formatters>
<handlers>
<file-handler name="host-file"
formatter="json-formatter" path="audit-log.log"
relative-to="jboss.domain.data.dir"/>
<file-handler name="server-file"
formatter="json-formatter" path="audit-log.log"
relative-to="jboss.server.data.dir"/>
</handlers>
<logger log-boot="true" log-read-only="false"
enabled="false">
<handlers>
<handler name="host-file"/>
</handlers>
</logger>
<server-logger log-boot="true" log-read-only="false"
enabled="false">
<handlers>
<handler name="server-file"/>
</handlers>
</server-logger>
</audit-log>
<management-interfaces>
<native-interface security-realm="ManagementRealm">
<socket interface="management"
port="${jboss.management.native.port:29999}"/>
</native-interface>
</management-interfaces>
</management>
<domain-controller>
<remote security-realm="ManagementRealm"
username="slave">
<discovery-options>
<static-discovery name="primary"
protocol="${jboss.domain.master.protocol:remote}"
host="${jboss.domain.master.address:10.1.1.1}"
port="${jboss.domain.master.port:19999}"/>
</discovery-options>
</remote>
</domain-controller>
<interfaces>
<interface name="management">
<inet-address value="10.1.1.1"/>
</interface>
<interface name="public">
<inet-address value="10.1.1.1"/>
</interface>
</interfaces>
<jvms>
<jvm name="default">
<heap size="64m" max-size="256m"/>
<jvm-options>
<option value="-server"/>
<option value="-XX:MetaspaceSize=96m"/>
<option value="-XX:MaxMetaspaceSize=256m"/>
</jvm-options>
</jvm>
</jvms>
<servers>
<server name="server-one" group="main-server-group">
<socket-bindings port-offset="2000"/>
</server>
<server name="server-two" group="other-server-group">
<socket-bindings port-offset="150"/>
</server>
</servers>
<profile>
<subsystem xmlns="urn:jboss:domain:core-management:1.0"/>
<subsystem xmlns="urn:jboss:domain:jmx:1.3">
<expose-resolved-model/>
<expose-expression-model/>
<remoting-connector/>
</subsystem>
<subsystem xmlns="urn:wildfly:elytron:1.0"
final-providers="combined-providers">
<providers>
<aggregate-providers name="combined-providers">
<providers name="elytron"/>
<providers name="openssl"/>
</aggregate-providers>
<provider-loader name="elytron"
module="org.wildfly.security.elytron"/>
<provider-loader name="openssl"
module="org.wildfly.openssl"/>
</providers>
<audit-logging>
<file-audit-log name="local-audit" path="audit.log"
relative-to="jboss.domain.log.dir" format="JSON"/>
</audit-logging>
<security-domains>
<security-domain name="ManagementDomain"
default-realm="ManagementRealm"
permission-mapper="default-permission-mapper"
security-event-listener="local-audit">
<realm name="ManagementRealm"
role-decoder="groups-to-roles"/>
<realm name="local"
role-mapper="super-user-mapper"/>
</security-domain>
</security-domains>
<security-realms>
<identity-realm name="local"
identity="$local"/>
<properties-realm name="ManagementRealm">
<users-properties path="mgmt-users.properties"
relative-to="jboss.domain.config.dir"
digest-realm-name="ManagementRealm"/>
<groups-properties path="mgmt-groups.properties"
relative-to="jboss.domain.config.dir"/>
</properties-realm>
</security-realms>
<mappers>
<constant-permission-mapper
name="default-permission-mapper">
<permission
class-name="org.wildfly.security.auth.permission.LoginPermission"/>
</constant-permission-mapper>
<constant-realm-mapper name="local"
realm-name="local"/>
<simple-role-decoder name="groups-to-roles"
attribute="groups"/>
<constant-role-mapper name="super-user-mapper">
<role name="SuperUser"/>
</constant-role-mapper>
</mappers>
<http>
<http-authentication-factory
name="management-http-authentication"
http-server-mechanism-factory="global"
security-domain="ManagementDomain">
<mechanism-configuration>
<mechanism mechanism-name="BASIC">
<mechanism-realm realm-name="Management
Realm"/>
</mechanism>
</mechanism-configuration>
</http-authentication-factory>
<provider-http-server-mechanism-factory name="global"/>
</http>
<sasl>
<sasl-authentication-factory
name="management-sasl-authentication" sasl-server-factory="configured"
security-domain="ManagementDomain">
<mechanism-configuration>
<mechanism mechanism-name="JBOSS-LOCAL-USER"
realm-mapper="local"/>
<mechanism mechanism-name="DIGEST-MD5">
<mechanism-realm
realm-name="ManagementRealm"/>
</mechanism>
</mechanism-configuration>
</sasl-authentication-factory>
<configurable-sasl-server-factory name="configured"
sasl-server-factory="elytron">
<properties>
<property name="wildfly.sasl.local-user.default-user"
value="$local"/>
</properties>
<filters>
<filter>
<pattern-filter value="JBOSS-LOCAL-USER"/>
</filter>
<filter>
<pattern-filter value="DIGEST-MD5"/>
</filter>
</filters>
</configurable-sasl-server-factory>
<mechanism-provider-filtering-sasl-server-factory
name="elytron" sasl-server-factory="global">
<filters>
<filter provider-name="WildFlyElytron"/>
</filters>
</mechanism-provider-filtering-sasl-server-factory>
<provider-sasl-server-factory name="global"/>
</sasl>
</subsystem>
</profile>
</host>
{code}
Can't restart domain master host with slave attached
----------------------------------------------------
Key: WFCORE-2992
URL: https://issues.jboss.org/browse/WFCORE-2992
Project: WildFly Core
Issue Type: Bug
Components: Domain Management
Affects Versions: 3.0.0.Beta11
Reporter: Matthew Casperson
Assignee: Brian Stansberry
Attachments: wildflydclogs.zip
With a domain controller (whose management interface is configured with HTTPS) started on
a host called master and no slaves attached, I can restart the host master with the
command
*./jboss-cli.ps1 --controller=remote+https://localhost:9993 -c
--command="/host=master:shutdown(restart=true)"*
over and over with no issues.
Once a domain slave is attached, I often will not be able to restart the host master with
the same command. It will shutdown, but not restart. The host master does seem to
occasionally restart as expected, but not always.
The output from the domain controller is this:
{code:java}
Registered remote slave host "desktop-p010d77", JBoss WildFly Full
11.0.0.Alpha1 (WildFly 3.0.0.Beta11)
[Host Controller] 14:14:19,294 INFO [org.jboss.as.host.controller]
(management-handler-thread - 1) WFLYHC0180: Shutting
down in response to management operation 'shutdown'
14:14:19,300 INFO [org.jboss.as.process] (Thread-15) WFLYPC0017: Shutting down process
controller
14:14:19,301 INFO [org.jboss.as.process.Host Controller.status] (Thread-15) WFLYPC0019:
Stopping process 'Host Controll
er'
[Host Controller] 14:14:19,317 INFO [org.jboss.as.host.controller] (Host Controller
Service Threads - 40) WFLYHC0024: S
topping server server-one
[Host Controller] 14:14:19,320 INFO [org.jboss.as.host.controller] (Host Controller
Service Threads - 40) WFLYHC0024: S
topping server server-two
14:14:19,320 INFO [org.jboss.as.process.Server:server-one.status]
(ProcessController-threads - 4) WFLYPC0019: Stopping
process 'Server:server-one'
14:14:19,321 INFO [org.jboss.as.process.Server:server-two.status]
(ProcessController-threads - 4) WFLYPC0019: Stopping
process 'Server:server-two'
[Server:server-one] 14:14:19,322 INFO [org.jboss.as.server] (main) WFLYSRV0240:
ProcessController has signalled to shut
down; shutting down
[Server:server-two] 14:14:19,324 INFO [org.jboss.as.server] (main) WFLYSRV0240:
ProcessController has signalled to shut
down; shutting down
[Server:server-one] 14:14:19,343 INFO [org.jboss.as.connector.subsystems.datasources]
(MSC service thread 1-6) WFLYJCA0
010: Unbound data source [java:jboss/datasources/ExampleDS]
[Server:server-one] 14:14:19,351 INFO [org.wildfly.extension.messaging-activemq] (MSC
service thread 1-5) WFLYMSGAMQ000
6: Unbound messaging object to jndi name java:jboss/DefaultJMSConnectionFactory
[Server:server-one] 14:14:19,354 INFO [org.wildfly.extension.undertow] (MSC service
thread 1-8) WFLYUT0019: Host defaul
t-host stopping
[Server:server-one] 14:14:19,357 INFO [org.jboss.as.connector.deployment] (MSC service
thread 1-1) WFLYJCA0011: Unbound
JCA ConnectionFactory [java:/JmsXA]
[Server:server-two] 14:14:19,362 INFO [org.jboss.as.connector.subsystems.datasources]
(MSC service thread 1-1) WFLYJCA0
010: Unbound data source [java:jboss/datasources/ExampleDS]
[Server:server-one] 14:14:19,358 INFO [org.wildfly.extension.undertow] (MSC service
thread 1-1) WFLYUT0008: Undertow HT
TPS listener https suspending
[Server:server-one] 14:14:19,360 INFO [org.wildfly.extension.undertow] (MSC service
thread 1-1) WFLYUT0007: Undertow HT
TPS listener https stopped, was bound to 127.0.0.1:8443
[Server:server-two] 14:14:19,367 INFO [org.wildfly.extension.messaging-activemq] (MSC
service thread 1-3) WFLYMSGAMQ000
6: Unbound messaging object to jndi name java:jboss/DefaultJMSConnectionFactory
[Server:server-one] 14:14:19,364 INFO [org.wildfly.extension.messaging-activemq]
(ServerService Thread Pool -- 67) WFLY
MSGAMQ0006: Unbound messaging object to jndi name
java:jboss/exported/jms/RemoteConnectionFactory
[Server:server-two] 14:14:19,370 INFO [org.jboss.as.connector.deployment] (MSC service
thread 1-8) WFLYJCA0011: Unbound
JCA ConnectionFactory [java:/JmsXA]
[Server:server-two] 14:14:19,371 INFO [org.wildfly.extension.undertow] (MSC service
thread 1-7) WFLYUT0008: Undertow HT
TPS listener https suspending
[Server:server-two] 14:14:19,372 INFO [org.wildfly.extension.undertow] (MSC service
thread 1-7) WFLYUT0007: Undertow HT
TPS listener https stopped, was bound to 127.0.0.1:8593
[Server:server-two] 14:14:19,374 INFO [org.wildfly.extension.messaging-activemq]
(ServerService Thread Pool -- 35) WFLY
MSGAMQ0006: Unbound messaging object to jndi name java:/ConnectionFactory
[Server:server-one] 14:14:19,392 INFO [org.jboss.as.connector.deployers.jdbc] (MSC
service thread 1-7) WFLYJCA0019: Sto
pped Driver service with driver-name = h2
[Server:server-two] 14:14:19,407 INFO [org.wildfly.extension.undertow] (MSC service
thread 1-4) WFLYUT0019: Host defaul
t-host stopping
[Server:server-two] 14:14:19,414 INFO [org.jboss.as.connector.deployers.jdbc] (MSC
service thread 1-3) WFLYJCA0019: Sto
pped Driver service with driver-name = h2
[Server:server-one] 14:14:19,426 INFO [org.apache.activemq.artemis.ra] (ServerService
Thread Pool -- 74) AMQ151003: res
ource adaptor stopped
[Server:server-two] 14:14:19,437 INFO [org.apache.activemq.artemis.ra] (ServerService
Thread Pool -- 73) AMQ151003: res
ource adaptor stopped
[Server:server-one] 14:14:19,475 INFO [org.apache.activemq.artemis.core.server]
(ServerService Thread Pool -- 74) AMQ22
1002: Apache ActiveMQ Artemis Message Broker version 1.5.3.jbossorg-003
[3d9fbbfb-5620-11e7-9672-9cb6d0de7033] stopped,
uptime 3 minutes
[Server:server-one] 14:14:19,475 INFO [org.wildfly.extension.undertow] (MSC service
thread 1-3) WFLYUT0008: Undertow HT
TP listener default suspending
[Server:server-one] 14:14:19,476 INFO [org.wildfly.extension.undertow] (MSC service
thread 1-3) WFLYUT0007: Undertow HT
TP listener default stopped, was bound to 127.0.0.1:8080
[Server:server-one] 14:14:19,478 INFO [org.wildfly.extension.undertow] (MSC service
thread 1-3) WFLYUT0004: Undertow 1.
4.11.Final stopping
[Host Controller] 14:14:19,488 INFO [org.jboss.as.host.controller] (management task-3)
WFLYHC0027: Unregistering server
server-one
[Server:server-two] 14:14:19,491 INFO [org.apache.activemq.artemis.core.server]
(ServerService Thread Pool -- 73) AMQ22
1002: Apache ActiveMQ Artemis Message Broker version 1.5.3.jbossorg-003
[3da40166-5620-11e7-9b85-9cb6d0de7033] stopped,
uptime 3 minutes
[Server:server-two] 14:14:19,493 INFO [org.wildfly.extension.undertow] (MSC service
thread 1-2) WFLYUT0008: Undertow HT
TP listener default suspending
[Server:server-two] 14:14:19,495 INFO [org.wildfly.extension.undertow] (MSC service
thread 1-2) WFLYUT0007: Undertow HT
TP listener default stopped, was bound to 127.0.0.1:8230
[Server:server-two] 14:14:19,498 INFO [org.wildfly.extension.undertow] (MSC service
thread 1-5) WFLYUT0004: Undertow 1.
4.11.Final stopping
[Host Controller] 14:14:19,507 INFO [org.jboss.as.host.controller] (management task-5)
WFLYHC0027: Unregistering server
server-two
[Server:server-one] 14:14:19,510 INFO [org.jboss.as] (MSC service thread 1-4)
WFLYSRV0050: WildFly Full 11.0.0.Alpha1 (
WildFly Core 3.0.0.Beta11) stopped in 174ms
[Server:server-two] 14:14:19,518 INFO [org.jboss.as] (MSC service thread 1-2)
WFLYSRV0050: WildFly Full 11.0.0.Alpha1 (
WildFly Core 3.0.0.Beta11) stopped in 159ms
14:14:19,883 INFO [org.jboss.as.process.Server:server-one.status] (reaper for
Server:server-one) WFLYPC0011: Process 'S
erver:server-one' finished with an exit status of 0
[Host Controller] 14:14:19,884 INFO [org.jboss.as.host.controller]
(ProcessControllerConnection-thread - 2) WFLYHC0027:
Unregistering server server-one
14:14:19,903 INFO [org.jboss.as.process.Server:server-two.status] (reaper for
Server:server-two) WFLYPC0011: Process 'S
erver:server-two' finished with an exit status of 0
[Host Controller] 14:14:19,904 INFO [org.jboss.as.host.controller]
(ProcessControllerConnection-thread - 2) WFLYHC0027:
Unregistering server server-two
[Host Controller] 14:14:19,906 WARN [org.jboss.as.domain.controller] (MSC service thread
1-1) WFLYHC0030: Connection to
remote host "desktop-p010d77" closed unexpectedly
{code}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
3287
days inactive
3287
days old
0 comments
1 participants
participants (1)
-
Matthew Casperson (JIRA)