[jboss-jira] [JBoss JIRA] (WFCORE-4253) SNICombinedWithALPNTestCase fails with security manager on Java 11

Ondrej Kotek (Jira) issues at jboss.org
Thu Dec 13 02:58:00 EST 2018 

     [ https://issues.jboss.org/browse/WFCORE-4253?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Ondrej Kotek updated WFCORE-4253:
---------------------------------
    Priority: Major  (was: Critical)


> SNICombinedWithALPNTestCase fails with security manager on Java 11
> ------------------------------------------------------------------
>
>                 Key: WFCORE-4253
>                 URL: https://issues.jboss.org/browse/WFCORE-4253
>             Project: WildFly Core
>          Issue Type: Bug
>          Components: Test Suite
>    Affects Versions: 8.0.0.Beta1
>         Environment: Java 11
>            Reporter: Ondrej Kotek
>            Assignee: Darran Lofthouse
>            Priority: Major
>
> {{org.jboss.as.test.integration.security.ssl.sni.SNICombinedWithALPNTestCase}} fails with security manager on Java 11 due to missing permissions:
> {noformat}
> [ERROR] Failure when constructing test  Time elapsed: 0.029 s  <<< FAILURE!
> java.lang.AssertionError: 
> Failed to deploy test.jar: 10 assets: {"WFLYCTL0080: Failed services" => {"jboss.undertow-test-server" => "Failed to start service
>     Caused by: java.lang.ExceptionInInitializerError
>     Caused by: java.security.AccessControlException: WFSM000001: Permission check failed (permission \"(\"java.io.FilePermission\" \"/home/okotek/test/asts-core-intermit/testsuite/standalone/target/wildfly-core/modules/system/layers/base/io/undertow/core/main/undertow-core-2.0.15.Final.jar\" \"read\")\" in code source \"(vfs:/content/test.jar <no signer certificates>)\" of \"ModuleClassLoader for Module \"deployment.test.jar\" from Service Module Loader\")"}}
> 	at org.junit.Assert.fail(Assert.java:88)
> 	at org.jboss.as.test.integration.security.ssl.sni.SNICombinedWithALPNTestCase.deploy(SNICombinedWithALPNTestCase.java:414)
> 	at org.jboss.as.test.integration.security.ssl.sni.SNICombinedWithALPNTestCase$Setup.setup(SNICombinedWithALPNTestCase.java:188)
> 	at org.wildfly.core.testrunner.WildflyTestRunner.runSetupTasks(WildflyTestRunner.java:121)
> 	at org.wildfly.core.testrunner.WildflyTestRunner.run(WildflyTestRunner.java:107)
> 	at org.junit.runners.Suite.runChild(Suite.java:128)
> ...
> {noformat}
> A customer should not be asked to add such permission for reading a module file, it brings bad UX and it could bring security flaws.



--
This message was sent by Atlassian Jira
(v7.12.1#712002)

More information about the jboss-jira mailing list