[jboss-jira] [JBoss JIRA] (WFLY-3429) Classloader leak in JBossCachedAuthenticationManager
Josef Cacek (JIRA)
issues at jboss.org
Mon Jun 2 09:13:16 EDT 2014
Josef Cacek created WFLY-3429:
---------------------------------
Summary: Classloader leak in JBossCachedAuthenticationManager
Key: WFLY-3429
URL: https://issues.jboss.org/browse/WFLY-3429
Project: WildFly
Issue Type: Bug
Security Level: Public (Everyone can see)
Components: Security
Affects Versions: 8.1.0.Final
Reporter: Josef Cacek
Assignee: Darran Lofthouse
Priority: Critical
When using a security domain with {{cache-type="default"}}, then the ModuleClassLoader instances related to deployments leak through JBossCachedAuthenticationManager.
The problematic piece of code is the domainCache member variable which in the DomainInfo value holds a LoginContext instance. This LoginContext has member contextClassLoader which causes the leak. (It points to the ModuleClassLoader of the deployment).
One option to solve this issue could be to remove the cache entries which are related to the undeployed application.
--
This message was sent by Atlassian JIRA
(v6.2.3#6260)
More information about the jboss-jira
mailing list