[JBoss JIRA] (ELY-1284) AuthenticationContextConfigurationClient.createSaslClient() fails when running with a security manager
8:24 a.m.
[
https://issues.jboss.org/browse/ELY-1284?page=com.atlassian.jira.plugin.s...
]
Yeray Borges updated ELY-1284:
------------------------------
Git Pull Request: https://github.com/jboss-remoting/jboss-remoting/pull/94,
https://github.com/wildfly-security/wildfly-elytron/pull/909 (was:
https://github.com/jboss-remoting/jboss-remoting/pull/94)
AuthenticationContextConfigurationClient.createSaslClient() fails
when running with a security manager
------------------------------------------------------------------------------------------------------
Key: ELY-1284
URL: https://issues.jboss.org/browse/ELY-1284
Project: WildFly Elytron
Issue Type: Bug
Reporter: Ingo Weiss
Assignee: Yeray Borges
Priority: Critical
Labels: security-manager
Exception when running on WildFly:
{noformat}
13:28:04,646 ERROR [org.xnio.listener] (Remoting "management-client" I/O-1)
XNIO001007: A channel event listener threw an exception:
java.security.AccessControlException: WFSM000001: Permission check failed (permission
"("java.io.FilePermission"
"/Users/iweiss/Development/wildfly/dist/target/wildfly-11.0.0.Alpha1-SNAPSHOT/modules/system/layers/base/org/wildfly/security/elytron/main/wildfly-elytron-1.1.0.Beta19-SNAPSHOT.jar"
"read")" in code source "(vfs:/content/RebindTestCase.jar <no
signer certificates>)" of "ModuleClassLoader for Module
"deployment.RebindTestCase.jar:main" from Service Module Loader")
at
org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:278)
at
org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
at java.lang.SecurityManager.checkRead(SecurityManager.java:888)
at
org.wildfly.security.manager.WildFlySecurityManager.checkRead(WildFlySecurityManager.java:350)
at
sun.net.www.protocol.jar.JarFileFactory.getCachedJarFile(JarFileFactory.java:137)
at sun.net.www.protocol.jar.JarFileFactory.get(JarFileFactory.java:81)
at sun.net.www.protocol.jar.JarURLConnection.connect(JarURLConnection.java:122)
at
sun.net.www.protocol.jar.JarURLConnection.getInputStream(JarURLConnection.java:150)
at java.net.URL.openStream(URL.java:1045)
at java.util.ServiceLoader.parse(ServiceLoader.java:304)
at java.util.ServiceLoader.access$200(ServiceLoader.java:185)
at java.util.ServiceLoader$LazyIterator.hasNextService(ServiceLoader.java:357)
at java.util.ServiceLoader$LazyIterator.access$600(ServiceLoader.java:323)
at java.util.ServiceLoader$LazyIterator$1.run(ServiceLoader.java:396)
at java.util.ServiceLoader$LazyIterator$1.run(ServiceLoader.java:395)
at java.security.AccessController.doPrivileged(Native Method)
at java.util.ServiceLoader$LazyIterator.hasNext(ServiceLoader.java:398)
at java.util.ServiceLoader$1.hasNext(ServiceLoader.java:474)
at
org.wildfly.security.util.ServiceLoaderSupplier.get(ServiceLoaderSupplier.java:54)
at
org.wildfly.security.util.ServiceLoaderSupplier.get(ServiceLoaderSupplier.java:35)
at
org.wildfly.security.auth.client.ElytronXmlParser$DeferredSupplier.get(ElytronXmlParser.java:2267)
at
org.wildfly.security.sasl.util.SecurityProviderSaslClientFactory.createSaslClient(SecurityProviderSaslClientFactory.java:89)
at
org.wildfly.security.sasl.util.PrivilegedSaslClientFactory.createSaslClient(PrivilegedSaslClientFactory.java:55)
at
org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:64)
at
org.wildfly.security.sasl.util.ProtocolSaslClientFactory.createSaslClient(ProtocolSaslClientFactory.java:48)
at
org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:64)
at
org.wildfly.security.sasl.util.ServerNameSaslClientFactory.createSaslClient(ServerNameSaslClientFactory.java:48)
at
org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:64)
at
org.wildfly.security.sasl.util.PropertiesSaslClientFactory.createSaslClient(PropertiesSaslClientFactory.java:52)
at
org.wildfly.security.sasl.util.AbstractDelegatingSaslClientFactory.createSaslClient(AbstractDelegatingSaslClientFactory.java:64)
at
org.wildfly.security.sasl.util.ServerNameSaslClientFactory.createSaslClient(ServerNameSaslClientFactory.java:48)
at
org.wildfly.security.sasl.util.FilterMechanismSaslClientFactory.createSaslClient(FilterMechanismSaslClientFactory.java:101)
at
org.wildfly.security.auth.client.AuthenticationConfiguration.createSaslClient(AuthenticationConfiguration.java:878)
at
org.wildfly.security.auth.client.AuthenticationContextConfigurationClient.createSaslClient(AuthenticationContextConfigurationClient.java:296)
at
org.jboss.remoting3.remote.ClientConnectionOpenListener$Capabilities.handleEvent(ClientConnectionOpenListener.java:404)
at
org.jboss.remoting3.remote.ClientConnectionOpenListener$Capabilities.handleEvent(ClientConnectionOpenListener.java:239)
at org.xnio.ChannelListeners.invokeChannelListener(ChannelListeners.java:92)
at
org.xnio.conduits.ReadReadyHandler$ChannelListenerHandler.readReady(ReadReadyHandler.java:66)
at org.xnio.nio.NioSocketConduit.handleReady(NioSocketConduit.java:89)
at org.xnio.nio.WorkerThread.run(WorkerThread.java:567)
{noformat}
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
3265
days inactive
3265
days old
0 comments
1 participants
participants (1)
-
Yeray Borges (JIRA)