Ilia Vassilev created ELY-2080: ---------------------------------- Summary: (7.3.z) key-store-masked-password needs the elytron provider to be manually registered Key: ELY-2080 URL: https://issues.redhat.com/browse/ELY-2080 Project: WildFly Elytron Issue Type: Bug Components: Authentication Client Affects Versions: 1.14.0.Final Reporter: Ilia Vassilev Assignee: Ricardo Martin Camarero Fix For: 1.15.0.CR1 When you use a {{wildfly-config.xml}} that uses the {{key-store-masked-password}} the wildfly provider needs to be manually registered. This [PasswordFactory.getInstance call|https://github.com/wildfly-security/wildfly-elytron/blob/1.14.0.Fina...] does not pass the providers as in the rest of the calls and tehrefore default providers in the JVM are used. The other problem is that the corresponding test [ElytronXmlParserTest|https://github.com/wildfly-security/wildfly-elytron/...] adds the provider so the error is hidden inside the tests. Just removing that line from the test you see the exception: {noformat} org.wildfly.client.config.ConfigXMLParseException: ELY01133: Failed to create credential at file:/home/rmartinc/wildfly-elytron/auth/client/target/test-classes/org/wildfly/security/auth/client/test-wildfly-config-v1_4.xml:38:245 at org.wildfly.security.auth.client.ElytronXmlParser.lambda$parseKeyStoreType$54(ElytronXmlParser.java:1977) at org.wildfly.security.auth.client.ElytronXmlParser$AbstractLoadingKeyStoreFactory.get(ElytronXmlParser.java:3640) at org.wildfly.security.auth.client.ElytronXmlParser$AbstractLoadingKeyStoreFactory.get(ElytronXmlParser.java:3624) at org.wildfly.security.auth.client.ElytronXmlParser.parseAuthenticationClientType(ElytronXmlParser.java:385) at org.wildfly.security.auth.client.ElytronXmlParser.parseAuthenticationClientConfiguration(ElytronXmlParser.java:261) at org.wildfly.security.auth.client.ElytronXmlParser.parseAuthenticationClientConfiguration(ElytronXmlParser.java:225) at org.wildfly.security.auth.client.ElytronXmlParserTest.testKeyStoreClearPassword(ElytronXmlParserTest.java:117) Caused by: java.security.NoSuchAlgorithmException: ELY08028: Invalid algorithm "masked-HMAC-SHA1-AES-128" at org.wildfly.security.password.PasswordFactory.getInstance(PasswordFactory.java:122) at org.wildfly.security.password.PasswordFactory.getInstance(PasswordFactory.java:76) at org.wildfly.security.auth.client.ElytronXmlParser.lambda$parseKeyStoreType$54(ElytronXmlParser.java:1973) ... 6 more {noformat} -- This message was sent by Atlassian Jira (v8.13.1#813001)