Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: Blocker
Fix Version/s: 11.0.0.Beta1
Affects Version/s: 11.0.0.Alpha1
Component/s: Clustering
Labels:
- eap7.1-rfe-failure

Git Pull Request:
https://github.com/wildfly/wildfly/pull/9988

Description

I found that currently, when configuring ASYM_ENCRYPT in legacy way, an elytron key-store reference is always automatically created. That should not happen as people who want to use the legacy security may want to remove the Elytron subsystem entirely. JGroups boot would fail in that case.

/subsystem=jgroups/stack=udp2/protocol=ASYM_ENCRYPT:add()
/subsystem=jgroups/stack=udp2/protocol=ASYM_ENCRYPT/property=encrypt_entire_message:add(value=true)
/subsystem=jgroups/stack=udp2/protocol=ASYM_ENCRYPT/property=sym_keylength:add(value=512)
/subsystem=jgroups/stack=udp2/protocol=ASYM_ENCRYPT/property=sym_algorithm:add(value=AES/ECB/PKCS5Padding)
/subsystem=jgroups/stack=udp2/protocol=ASYM_ENCRYPT/property=asym_keylength:add(value=512)
/subsystem=jgroups/stack=udp2/protocol=ASYM_ENCRYPT/property=asym_algorithm:add(value=RSA)

Here, I removed the elytron subsystem and used configuration from ~~JBEAP-8405~~.

12:56:22,202 ERROR [org.jboss.as.controller.management-operation] (ServerService Thread Pool -- 18) WFLYCTL0013: Operation ("add") failed - address: ([
    ("subsystem" => "jgroups"),
    ("stack" => "tcp"),
    ("protocol" => "ASYM_ENCRYPT")
]) - failure description: "WFLYCLJG0026: No add operation registered at /subsystem=elytron/key-store=jgroups-tcp"

Attachments

Issue Links

clones

JBEAP-10423 ASYM_ENCRYPT legacy configuration should not attempt to create elytron reference

Verified

Activity

People

Assignee:: Paul Ferraro

Reporter:: Paul Ferraro

Tester:: Richard Janik

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2017/04/28 4:55 PM

Updated:: 2017/12/06 11:48 AM

Resolved:: 2017/05/01 3:30 PM