Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 7.1.0.ER1
Affects Version/s: 7.1.0.DR18, 7.1.0.DR19
Component/s: Clustering
Labels:
None

Target Release:

7.1.0.GA
Workaround Description:

Hide

use .../protocol=AUTH/token=cipher:add() instead

Show
use .../protocol=AUTH/token=cipher:add() instead
Git Pull Request:
https://github.com/jbossas/jboss-eap7/pull/1927
Steps to Reproduce:
Hide

keytool -genkeypair -alias alias -keypass password -storepass password -storetype jks -keystore key3.keystore -keyalg RSA

/subsystem=jgroups/stack=udp/protocol=AUTH:add(add-index=8,properties={auth_class=org.jgroups.auth.X509Token,keystore_type=JKS,keystore_path="/tmp/key3.keystore",keystore_password=password,cert_alias=alias,cert_password=password,auth_value=shared-password,cipher_type=RSA}) reload
Show
keytool -genkeypair -alias alias -keypass password -storepass password -storetype jks -keystore key3.keystore -keyalg RSA /subsystem=jgroups/stack=udp/protocol=AUTH:add(add-index=8,properties={auth_class=org.jgroups.auth.X509Token,keystore_type=JKS,keystore_path="/tmp/key3.keystore",keystore_password=password,cert_alias=alias,cert_password=password,auth_value=shared-password,cipher_type=RSA}) reload

SFDC Cases Counter:
SFDC Cases Links:

Description

This is related to the discussion that rhn-support-lakagwu started on ~~JBEAP-10285~~. I reproduced the NPE he was getting, went through the stacktrace, and I think it's a bug.

08:53:37,361 ERROR [org.jboss.msc.service.fail] (ServerService Thread Pool -- 67) MSC000001: Failed to start service org.wildfly.clustering.jgroups.channel.ee: org.jboss.msc.service.StartException in service org.wildfly.clustering.jgroups.channel.ee: java.lang.NullPointerException
	at org.jboss.as.clustering.jgroups.subsystem.ChannelBuilder.start(ChannelBuilder.java:104)
	at org.wildfly.clustering.service.AsynchronousServiceBuilder.lambda$start$0(AsynchronousServiceBuilder.java:99)
	at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
	at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
	at java.lang.Thread.run(Thread.java:748)
	at org.jboss.threads.JBossThread.run(JBossThread.java:320)
Caused by: java.lang.NullPointerException
	at org.jboss.modules.ConcurrentClassLoader.getResourceAsStream(ConcurrentClassLoader.java:366)
	at org.jgroups.auth.X509Token.setCertificate(X509Token.java:180)
	at org.jgroups.protocols.AUTH.init(AUTH.java:101)
	at org.jgroups.stack.ProtocolStack.initProtocolStack(ProtocolStack.java:861)
	at org.jgroups.stack.ProtocolStack.init(ProtocolStack.java:831)
	at org.jboss.as.clustering.jgroups.JChannelFactory.createChannel(JChannelFactory.java:108)
	at org.jboss.as.clustering.jgroups.subsystem.ChannelBuilder.start(ChannelBuilder.java:102)
	... 5 more

It looks like the only reason ConcurrentClassLoader would throw an NPE instead of returning null in getResourceAsStream is that the name (in this case keystore_path) is null. That means the keystore_path is not propagated from EAP configuration to JGroups when the protocol stack is being created.

The getResourceAsStream is still expected to fail, as the keystore is not on the classpath, but it should be found after that via the FileInputStream check that JGroups does.

Attachments

Issue Links

is cloned by

WFLY-8880 Auth token properties are not applied to legacy AUTH configuration

Closed

Activity

People

Assignee:: Paul Ferraro

Reporter:: Richard Janik

Tester:: Richard Janik

QA Contact:: Richard Janik

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2017/06/02 5:35 AM

Updated:: 2017/06/12 8:48 AM

Resolved:: 2017/06/04 6:18 AM