Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 10.1.5.Final
Affects Version/s: 10.1.4.Final
Component/s: Core
Labels:
- testsuite_stability

Sprint:
DataGrid Sprint #41
Git Pull Request:
https://github.com/infinispan/infinispan/pull/8055

Description

IteratorHandler.start() tries to add a listener on the cache manager, which fails when the cache manager has security enabled:

java.lang.SecurityException: ISPN000287: Unauthorized access: subject 'null' lacks 'LISTEN' permission
	at org.infinispan.security.impl.AuthorizationHelper.checkPermission(AuthorizationHelper.java:100)
	at org.infinispan.security.impl.AuthorizationHelper.checkPermission(AuthorizationHelper.java:66)
	at org.infinispan.manager.DefaultCacheManager.addListenerAsync(DefaultCacheManager.java:846)
	at org.infinispan.notifications.Listenable.addListener(Listenable.java:27)
	at org.infinispan.stream.impl.IteratorHandler.start(IteratorHandler.java:82)
	at org.infinispan.stream.impl.CorePackageImpl$1.start(CorePackageImpl.java:33)
	at org.infinispan.stream.impl.CorePackageImpl$1.start(CorePackageImpl.java:27)
	at org.infinispan.factories.impl.BasicComponentRegistryImpl.invokeStart(BasicComponentRegistryImpl.java:587)
	at org.infinispan.factories.impl.BasicComponentRegistryImpl.doStartWrapper(BasicComponentRegistryImpl.java:578)
	at org.infinispan.factories.impl.BasicComponentRegistryImpl.startWrapper(BasicComponentRegistryImpl.java:547)
	at org.infinispan.factories.impl.BasicComponentRegistryImpl.access$700(BasicComponentRegistryImpl.java:30)
	at org.infinispan.factories.impl.BasicComponentRegistryImpl$ComponentWrapper.running(BasicComponentRegistryImpl.java:770)
	at org.infinispan.factories.impl.BasicComponentRegistryImpl.startDependencies(BasicComponentRegistryImpl.java:605)
	at org.infinispan.factories.impl.BasicComponentRegistryImpl.doStartWrapper(BasicComponentRegistryImpl.java:569)
	at org.infinispan.factories.impl.BasicComponentRegistryImpl.startWrapper(BasicComponentRegistryImpl.java:547)
	at org.infinispan.factories.impl.BasicComponentRegistryImpl.access$700(BasicComponentRegistryImpl.java:30)
	at org.infinispan.factories.impl.BasicComponentRegistryImpl$ComponentWrapper.running(BasicComponentRegistryImpl.java:770)
	at org.infinispan.factories.AbstractComponentRegistry.internalStart(AbstractComponentRegistry.java:341)
	at org.infinispan.factories.AbstractComponentRegistry.start(AbstractComponentRegistry.java:237)
	at org.infinispan.factories.ComponentRegistry.start(ComponentRegistry.java:209)
	at org.infinispan.cache.impl.CacheImpl.start(CacheImpl.java:1088)
	at org.infinispan.cache.impl.AbstractDelegatingCache.start(AbstractDelegatingCache.java:513)
	at org.infinispan.cache.impl.AbstractDelegatingCache.start(AbstractDelegatingCache.java:513)
	at org.infinispan.cache.impl.AbstractDelegatingCache.start(AbstractDelegatingCache.java:513)
	at org.infinispan.manager.DefaultCacheManager.wireAndStartCache(DefaultCacheManager.java:693)
	at org.infinispan.manager.DefaultCacheManager.createCache(DefaultCacheManager.java:632)
	at org.infinispan.manager.DefaultCacheManager.access$000(DefaultCacheManager.java:137)
	at org.infinispan.manager.DefaultCacheManager$1.run(DefaultCacheManager.java:554)

SecureRemoteCacheAdminTest is failing on branch 10.1.x because of this, after ~~ISPN-11435~~ made DefaultCacheManager start all the caches automatically. The test uses Security.doPrivileged() to start the cache manager, but internally InfinispanDirectoryProvider.start() uses startCaches(), which spawns a new thread for each cache that needs to be started, without any privileges.

Attachments

Issue Links

relates to

ISPN-11435 The server sometimes doesn't start all the caches

Closed

Activity

People

Assignee:: Dan Berindei (Inactive)

Reporter:: Dan Berindei (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 2020/03/13 8:55 AM

Updated:: 2020/03/16 5:29 AM

Resolved:: 2020/03/16 4:25 AM