[jboss-jira] [JBoss JIRA] (WFLY-13046) ConcurrentModificationException authenticating JWT under load.

Darran Lofthouse (Jira) issues at jboss.org
Fri Jan 31 11:00:51 EST 2020 

Darran Lofthouse created WFLY-13046:
---------------------------------------

             Summary: ConcurrentModificationException authenticating JWT under load.
                 Key: WFLY-13046
                 URL: https://issues.redhat.com/browse/WFLY-13046
             Project: WildFly
          Issue Type: Bug
          Components: MP JWT, Security
            Reporter: Darran Lofthouse
            Assignee: Darran Lofthouse
             Fix For: 19.0.0.Beta2


I don't believe this is specifically related to JWT, however load testing to obtain some performance statistics has led to this ConcurrentModificationException.

As the Roles is HashMap backed by the time this stage is reached no modifications should be possible.

{noformat}
15:53:51,047 ERROR [io.undertow.request] (default task-302) UT005023: Exception handling request to /microprofile-jwt/rest/Sample/helloworld: java.util.ConcurrentModificationException
	at java.util.HashMap$KeySpliterator.forEachRemaining(HashMap.java:1553)
	at java.util.stream.AbstractPipeline.copyInto(AbstractPipeline.java:481)
	at java.util.stream.AbstractPipeline.wrapAndCopyInto(AbstractPipeline.java:471)
	at java.util.stream.ReduceOps$ReduceOp.evaluateSequential(ReduceOps.java:708)
	at java.util.stream.AbstractPipeline.evaluate(AbstractPipeline.java:234)
	at java.util.stream.ReferencePipeline.collect(ReferencePipeline.java:499)
	at org.wildfly.elytron.web.undertow.server.ElytronAccount.<init>(ElytronAccount.java:46)
	at org.wildfly.elytron.web.undertow.server.ElytronAccount.<init>(ElytronAccount.java:50)
	at org.wildfly.elytron.web.undertow.server.SecurityContextImpl.authenticationComplete(SecurityContextImpl.java:140)
	at org.wildfly.elytron.web.undertow.server.servlet.ServletSecurityContextImpl.authenticate(ServletSecurityContextImpl.java:208)
	at org.wildfly.elytron.web.undertow.server.servlet.ServletSecurityContextImpl.authenticate(ServletSecurityContextImpl.java:99)
	at io.undertow.servlet.handlers.security.ServletAuthenticationCallHandler.handleRequest(ServletAuthenticationCallHandler.java:55)
{noformat}



--
This message was sent by Atlassian Jira
(v7.13.8#713008)

More information about the jboss-jira mailing list