Uploaded image for project: 'WildFly Elytron'
  1. WildFly Elytron
  2. ELY-1308

Alias from dependent credential store is not avalaible on server start

    Details

    • Steps to Reproduce:
      Hide
      git clone git@gitlab.mw.lab.eng.bos.redhat.com:jbossqe-eap/tests-security.git
      cd tests-security/fips
      
      ./build-fips.sh clean test   -Dversion.jboss.bom=7.1.0.GA -Dversion.wildfly.core=3.0.0.Beta28-redhat-1 -Dmaven.repo.local=/home/mchoma/workspace/eap-versions/7.1.0.ER2/jboss-eap-7.1.0.GA-maven-repository/maven-repository   -Djboss.dist.zip=/home/mchoma/workspace/eap-versions/7.1.0.ER2/jboss-eap-7.1.0.ER2.2.zip   -Dfips.java.home=/usr/java/jdk1.8.0_66_fips_mode/jre -fae -Dmaven.test.failure.ignore=true -Dtest=ExternalCsTestCase -DtestLogToFile=false
      

      To prepare maven.repo.local

      wget http://download-ipv4.eng.brq.redhat.com/devel/candidates/JBEAP/JBEAP-7.1.0-ER2.2/jboss-eap-7.1.0.ER2.2-testsuite-local-repository.zip
      
      unzip jboss-eap-7.1.0.ER2.2-maven-repository.zip
      unzip jboss-eap-7.1.0.ER2.2-testsuite-local-repository.zip
      
      cp -r -v eap-local-maven-repository jboss-eap-7.1.0.GA-maven-repository/maven-repository/
      
      Show
      git clone git@gitlab.mw.lab.eng.bos.redhat.com:jbossqe-eap/tests-security.git cd tests-security/fips ./build-fips.sh clean test -Dversion.jboss.bom=7.1.0.GA -Dversion.wildfly.core=3.0.0.Beta28-redhat-1 -Dmaven.repo.local=/home/mchoma/workspace/eap-versions/7.1.0.ER2/jboss-eap-7.1.0.GA-maven-repository/maven-repository -Djboss.dist.zip=/home/mchoma/workspace/eap-versions/7.1.0.ER2/jboss-eap-7.1.0.ER2.2.zip -Dfips.java.home=/usr/java/jdk1.8.0_66_fips_mode/jre -fae -Dmaven.test.failure.ignore= true -Dtest=ExternalCsTestCase -DtestLogToFile= false To prepare maven.repo.local wget http: //download-ipv4.eng.brq.redhat.com/devel/candidates/JBEAP/JBEAP-7.1.0-ER2.2/jboss-eap-7.1.0.ER2.2-testsuite-local-repository.zip unzip jboss-eap-7.1.0.ER2.2-maven-repository.zip unzip jboss-eap-7.1.0.ER2.2-testsuite-local-repository.zip cp -r -v eap-local-maven-repository jboss-eap-7.1.0.GA-maven-repository/maven-repository/

      Description

      BouncyCastle external CredentialStore fail to store secret:

      KeyStoreCredentialStore: flushing failed: java.lang.NullPointerException
      	at org.bouncycastle.jcajce.provider.BaseCipher.engineGetParameters(Unknown Source)
      	at javax.crypto.Cipher.checkCryptoPerm(Cipher.java:1020)
      	at javax.crypto.Cipher.init(Cipher.java:1245)
      	at javax.crypto.Cipher.init(Cipher.java:1186)
      	at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore$ExternalStorage.saveSecretKey(KeyStoreCredentialStore.java:1299)
      	at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore$ExternalStorage.store(KeyStoreCredentialStore.java:1283)
      	at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.flush(KeyStoreCredentialStore.java:779)
      	at org.wildfly.security.credential.store.CredentialStore.flush(CredentialStore.java:364)
      	at org.wildfly.extension.elytron.CredentialStoreResourceDefinition.storeSecret(CredentialStoreResourceDefinition.java:517)
      

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  honza889 Jan Kalina
                  Reporter:
                  honza889 Jan Kalina
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  1 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: