[jboss-jira] [JBoss JIRA] (WFCORE-4223) IllegalArgumentException when add a server-ssl-sni-context with no host-context-map

Tue Nov 13 08:31:00 EST 2018

Claudio Miranda created WFCORE-4223:
---------------------------------------

             Summary: IllegalArgumentException when add a server-ssl-sni-context with no host-context-map
                 Key: WFCORE-4223
                 URL: https://issues.jboss.org/browse/WFCORE-4223
             Project: WildFly Core
          Issue Type: Bug
          Components: Security
            Reporter: Claudio Miranda
            Assignee: Darran Lofthouse

"add" operation for /subsystem=elytron/server-ssl-sni-context  doesn't require "host-context-map" attribute, however add a server-ssl-sni-context without this attribute results in an IllegalArgumentException. Set the "host-context-map" and the "add" operation works.

{code}
[standalone at localhost:9990 /] /subsystem=elytron/server-ssl-sni-context=sn3:add(default-ssl-context=wssl_ctx)
{
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0158: Operation handler failed: java.lang.IllegalArgumentException",
    "rolled-back" => true,
    "response-headers" => {"process-state" => "reload-required"}
}
{code}

{code}
11:29:09,803 ERROR [org.jboss.as.controller.management-operation] (management-handler-thread - 3) WFLYCTL0013: Operation ("add") failed - address: ([
    ("subsystem" => "elytron"),
    ("server-ssl-sni-context" => "sn3")
]): java.lang.IllegalArgumentException
        at org.jboss.dmr.ModelValue.getKeys(ModelValue.java:139)
        at org.jboss.dmr.ModelNode.keys(ModelNode.java:1580)
        at org.wildfly.extension.elytron.SSLDefinitions$7.getValueSupplier(SSLDefinitions.java:1046)
        at org.wildfly.extension.elytron.TrivialAddHandler.performRuntime(TrivialAddHandler.java:68)
        at org.jboss.as.controller.AbstractAddStepHandler$1.execute(AbstractAddStepHandler.java:159)
        at org.jboss.as.controller.AbstractOperationContext.executeStep(AbstractOperationContext.java:999)
        at org.jboss.as.controller.AbstractOperationContext.processStages(AbstractOperationContext.java:743)
        at org.jboss.as.controller.AbstractOperationContext.executeOperation(AbstractOperationContext.java:467)
        at org.jboss.as.controller.OperationContextImpl.executeOperation(OperationContextImpl.java:1411)
        at org.jboss.as.controller.ModelControllerImpl.internalExecute(ModelControllerImpl.java:423)
        at org.jboss.as.controller.ModelControllerImpl.lambda$execute$1(ModelControllerImpl.java:243)
        at org.wildfly.security.auth.server.SecurityIdentity.runAs(SecurityIdentity.java:289)
        at org.wildfly.security.auth.server.SecurityIdentity.runAs(SecurityIdentity.java:255)
        at org.jboss.as.controller.ModelControllerImpl.execute(ModelControllerImpl.java:243)
        at org.jboss.as.controller.remote.ModelControllerClientOperationHandler$ExecuteRequestHandler.doExecute(ModelControllerClientOperationHandler.java:240)
        at org.jboss.as.controller.remote.ModelControllerClientOperationHandler$ExecuteRequestHandler.access$400(ModelControllerClientOperationHandler.java:138)
        at org.jboss.as.controller.remote.ModelControllerClientOperationHandler$ExecuteRequestHandler$1$1.run(ModelControllerClientOperationHandler.java:162)
        at org.jboss.as.controller.remote.ModelControllerClientOperationHandler$ExecuteRequestHandler$1$1.run(ModelControllerClientOperationHandler.java:158)
        at org.wildfly.security.auth.server.SecurityIdentity.runAs(SecurityIdentity.java:313)
        at org.wildfly.security.auth.server.SecurityIdentity.runAs(SecurityIdentity.java:270)
        at org.jboss.as.controller.AccessAuditContext.doAs(AccessAuditContext.java:254)
{code}

{code}
/subsystem=elytron/server-ssl-sni-context=sn1:read-operation-description(name=add)
{
    "outcome" => "success",
    "result" => {
        "operation-name" => "add",
        "description" => "Adds a SNI context",
        "request-properties" => {
            "default-ssl-context" => {
                "type" => STRING,
                "description" => "The context to use if no SNI information is present, or if it does not match any mappings",
                "expressions-allowed" => false,
                "required" => true,
                "nillable" => false,
                "capability-reference" => "org.wildfly.security.ssl-context",
                "min-length" => 1L,
                "max-length" => 2147483647L
            },
            "host-context-map" => {
                "type" => OBJECT,
                "description" => "A mapping between a server name and an SSContext",
                "expressions-allowed" => false,
                "required" => false,
                "nillable" => true,
                "capability-reference" => "org.wildfly.security.ssl-context",
                "value-type" => STRING
            }
        },
        "reply-properties" => {},
        "read-only" => false,
        "restart-required" => "resource-services",
        "runtime-only" => false
    },
    "response-headers" => {"process-state" => "reload-required"}
}
{code}

--
This message was sent by Atlassian Jira
(v7.12.1#712002)