[jboss-jira] [JBoss JIRA] (WFCORE-3003) Elytron subsystem fails to boot if SecurityProvider cannot be loaded.

Ingo Weiss (JIRA) issues at jboss.org
Tue Jul 4 05:52:01 EDT 2017 

    [ https://issues.jboss.org/browse/WFCORE-3003?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13430780#comment-13430780 ] 

Ingo Weiss commented on WFCORE-3003:
------------------------------------

On b175 and latest master I'm seeing a different stacktrace running {{mvn test -Dsecurity.manager}} on testsuite/.
{noformat}
WARNING: An illegal reflective access operation has occurred
WARNING: Illegal reflective access by org.wildfly.security.manager.GetAccessibleDeclaredFieldAction (jar:file:/Users/iweiss/Development/wildfly-core/testsuite/standalone/target/wildfly-core/modules/system/layers/base/org/wildfly/security/elytron-private/main/wildfly-elytron-1.1.0.CR2.jar!/) to field java.security.AccessControlContext.context
WARNING: Please consider reporting this to the maintainers of org.wildfly.security.manager.GetAccessibleDeclaredFieldAction
WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations
WARNING: All illegal access operations will be denied in a future release
10:34:04,067 INFO  [org.jboss.modules] (main) JBoss Modules version 1.6.0.CR1
Exception in thread "main" java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.security.SecurityPermission" "insertProvider")" in code source "(jrt:/java.xml.crypto <no signer certificates>)" of "jdk.internal.loader.ClassLoaders$PlatformClassLoader at 73035e27")
	at org.wildfly.security.elytron-private//org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:278)
	at org.wildfly.security.elytron-private//org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
	at java.base/java.lang.SecurityManager.checkSecurityAccess(SecurityManager.java:1792)
	at org.wildfly.security.elytron-private//org.wildfly.security.manager.WildFlySecurityManager.checkSecurityAccess(WildFlySecurityManager.java:571)
	at java.base/java.security.Security.checkInsertProvider(Security.java:827)
	at java.base/java.security.Security.insertProviderAt(Security.java:361)
	at java.base/java.security.Security.addProvider(Security.java:405)
	at org.jboss.modules.Main.lambda$main$0(Main.java:503)
	at java.base/java.security.AccessController.doPrivileged(Native Method)
	at org.jboss.modules.Main.main(Main.java:502)
	Suppressed: java.security.AccessControlException: WFSM000001: Permission check failed (permission "("java.security.SecurityPermission" "insertProvider.XMLDSig")" in code source "(jrt:/java.xml.crypto <no signer certificates>)" of "jdk.internal.loader.ClassLoaders$PlatformClassLoader at 73035e27")
		at org.wildfly.security.elytron-private//org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:278)
		at org.wildfly.security.elytron-private//org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
		at java.base/java.lang.SecurityManager.checkSecurityAccess(SecurityManager.java:1792)
		at org.wildfly.security.elytron-private//org.wildfly.security.manager.WildFlySecurityManager.checkSecurityAccess(WildFlySecurityManager.java:571)
		at java.base/java.security.Security.checkInsertProvider(Security.java:830)
		... 5 more
{noformat}

> Elytron subsystem fails to boot if SecurityProvider cannot be loaded.
> ---------------------------------------------------------------------
>
>                 Key: WFCORE-3003
>                 URL: https://issues.jboss.org/browse/WFCORE-3003
>             Project: WildFly Core
>          Issue Type: Bug
>          Components: Security
>            Reporter: Tomaz Cerar
>            Assignee: Darran Lofthouse
>
> Trying to run secmgr testsuite under JDK9 results in
> {noformat}
> Caused by: java.util.ServiceConfigurationError: java.security.Provider: Provider com.sun.deploy.security.MozillaJSSProvider could not be instantiated
> 	at java.base/java.util.ServiceLoader.fail(ServiceLoader.java:581)
> 	at java.base/java.util.ServiceLoader.access$100(ServiceLoader.java:390)
> 	at java.base/java.util.ServiceLoader$ProviderImpl.newInstance(ServiceLoader.java:799)
> 	at java.base/java.util.ServiceLoader$ProviderImpl.get(ServiceLoader.java:721)
> 	at java.base/java.util.ServiceLoader$3.next(ServiceLoader.java:1389)
> 	at java.base/java.lang.Iterable.forEach(Iterable.java:74)
> 	at org.wildfly.extension.elytron//org.wildfly.extension.elytron.ProviderDefinitions$1$1.get(ProviderDefinitions.java:201)
> 	at org.wildfly.extension.elytron//org.wildfly.extension.elytron.ProviderDefinitions$1$1.get(ProviderDefinitions.java:158)
> 	at org.wildfly.extension.elytron//org.wildfly.extension.elytron.TrivialService.start(TrivialService.java:53)
> 	at org.jboss.msc//org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:2032)
> 	at org.jboss.msc//org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1955)
> {noformat}
> and server doesn't start.



--
This message was sent by Atlassian JIRA
(v7.2.3#72005)

More information about the jboss-jira mailing list