Uploaded image for project: 'Application Server 7'
  1. Application Server 7
  2. AS7-2724

SecurityExceptions when starting server with signed jars

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • 7.1.0.Beta1
    • None
    • Class Loading
    • None
    • Hide

      0. Create your own key if you don't have one
      keytool -genkey -alias my-test-key
      This will create a new key called "my-test-key" in the default keystore location ~/.keystore
      1. Build AS 7
      2. Sign all jars in jboss dist directory with your new key ( find . -name "*.jar" -exec jarsigner -storepass <yourpassword> '{}' my-test-key \; )
      3. Start the server in standalone or domain mode to see the signature errors on the console.

      Show
      0. Create your own key if you don't have one keytool -genkey -alias my-test-key This will create a new key called "my-test-key" in the default keystore location ~/.keystore 1. Build AS 7 2. Sign all jars in jboss dist directory with your new key ( find . -name "*.jar" -exec jarsigner -storepass <yourpassword> '{}' my-test-key \; ) 3. Start the server in standalone or domain mode to see the signature errors on the console.

      There seems to be a problem when loading signed modules which causes the classloader to think that the same packages are loaded with two different signatures. The issue seems to be sporadic and will not always throw the exception for the same classes. I verified that there was only a single jar containing the specified packages for several instances of the error.

              pgier@redhat.com Paul Gier (Inactive)
              pgier@redhat.com Paul Gier (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: