[jboss-jira] [JBoss JIRA] (WFCORE-4965) Error loading a PKCS12 keystore inside a security-realm when using a credential-reference
Ricardo Martin Camarero (Jira)
issues at jboss.org
Mon May 11 02:58:00 EDT 2020
[ https://issues.redhat.com/browse/WFCORE-4965?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Ricardo Martin Camarero moved JBEAP-19448 to WFCORE-4965:
---------------------------------------------------------
Project: WildFly Core (was: JBoss Enterprise Application Platform)
Key: WFCORE-4965 (was: JBEAP-19448)
Workflow: GIT Pull Request workflow (was: CDW with loose statuses v1)
Component/s: Security
(was: Security)
Affects Version/s: 11.1.0.Final
(was: 7.3.0.GA)
> Error loading a PKCS12 keystore inside a security-realm when using a credential-reference
> -----------------------------------------------------------------------------------------
>
> Key: WFCORE-4965
> URL: https://issues.redhat.com/browse/WFCORE-4965
> Project: WildFly Core
> Issue Type: Bug
> Components: Security
> Affects Versions: 11.1.0.Final
> Reporter: Ricardo Martin Camarero
> Assignee: Ricardo Martin Camarero
> Priority: Major
>
> When using a security-realm configured with SSL like this:
> {code:xml}
> <security-realm name="CertificateRealm">
> <server-identities>
> <ssl>
> <keystore provider="PKCS12" path="${jboss.server.config.dir}/keystore.p12" alias="jboss">
> <keystore-password-credential-reference store="sample-store" alias="p12-password"/>
> </keystore>
> </ssl>
> </server-identities>
> </security-realm>
> {code}
> The EAP startup fails with the following exception:
> {noformat}
> org.wildfly.core.management.security.realm.CertificateRealm.key-manager: Failed to start service
> at org.jboss.msc.service.ServiceControllerImpl$StartTask.execute(ServiceControllerImpl.java:1731)
> at org.jboss.msc.service.ServiceControllerImpl$ControllerTask.run(ServiceControllerImpl.java:1559)
> at org.jboss.threads.ContextClassLoaderSavingRunnable.run(ContextClassLoaderSavingRunnable.java:35)
> at org.jboss.threads.EnhancedQueueExecutor.safeRun(EnhancedQueueExecutor.java:1982)
> at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.doRunTask(EnhancedQueueExecutor.java:1486)
> at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.run(EnhancedQueueExecutor.java:1363)
> at java.lang.Thread.run(Thread.java:748)
> Caused by: java.lang.NullPointerException: invalid null input
> at java.security.KeyStore$PrivateKeyEntry.<init>(KeyStore.java:524)
> at sun.security.pkcs12.PKCS12KeyStore.engineGetEntry(PKCS12KeyStore.java:1311)
> at sun.security.provider.KeyStoreDelegator.engineGetEntry(KeyStoreDelegator.java:172)
> at sun.security.provider.JavaKeyStore$DualFormatJKS.engineGetEntry(JavaKeyStore.java:70)
> at java.security.KeyStore.getEntry(KeyStore.java:1521)
> at org.jboss.as.domain.management.security.FileKeystore.load(FileKeystore.java:134)
> at org.jboss.as.domain.management.security.FileKeyManagerService.loadKeyStore(FileKeyManagerService.java:175)
> at org.jboss.as.domain.management.security.AbstractKeyManagerService.createKeyManagers(AbstractKeyManagerService.java:128)
> at org.jboss.as.domain.management.security.AbstractKeyManagerService.start(AbstractKeyManagerService.java:93)
> at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:1739)
> at org.jboss.msc.service.ServiceControllerImpl$StartTask.execute(ServiceControllerImpl.java:1701)
> ... 6 more
> {noformat}
--
This message was sent by Atlassian Jira
(v7.13.8#713008)
More information about the jboss-jira
mailing list