Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Blocker
Fix Version/s: 7.1.0.DR18
Affects Version/s: 7.1.0.DR16
Component/s: Security
Labels:

CDW devel_ack:
CDW docs_ack:
CDW pm_ack:
CDW qa_ack:
CDW release:
Target Release:

7.1.0.GA
Git Pull Request:
https://github.com/wildfly-security/wildfly-elytron/pull/784
Steps to Reproduce:
Hide

Create secret key

keytool -keystore NONE -storetype PKCS11 -storepass pass123+ -genseckey -alias mykey -keyalg AES -keysize 128 keytool -keystore NONE -storetype PKCS11 -list -storepass pass123+

Create credential store

/subsystem=elytron/credential-store=test:add(uri="cr-store://test?modifiable=true;keyStoreType=PKCS11;external=true;location=secretdatafile;create=true;keyAlias=mykey",relative-to=jboss.server.data.dir,credential-reference={clear-text="pass123+"})

Create secret value

/subsystem=elytron/credential-store=test/alias=secretKey:add(secret-value=password) reload
Show
Create secret key keytool -keystore NONE -storetype PKCS11 -storepass pass123+ -genseckey -alias mykey -keyalg AES -keysize 128 keytool -keystore NONE -storetype PKCS11 -list -storepass pass123+ Create credential store /subsystem=elytron/credential-store=test:add(uri= "cr-store: //test?modifiable= true ;keyStoreType=PKCS11;external= true ;location=secretdatafile;create= true ;keyAlias=mykey" ,relative-to=jboss.server.data.dir,credential-reference={clear-text= "pass123+" }) Create secret value /subsystem=elytron/credential-store=test/alias=secretKey:add(secret-value=password) reload

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

11:24:46,986 ERROR [org.jboss.msc.service.fail] (MSC service thread 1-3) MSC000001: Failed to start service org.wildfly.security.credential-store.test: org.jboss.msc.service.StartException in service org.wildfly.security.credential-store.test: WFLYELY00004: Unable to start the service.
	at org.wildfly.extension.elytron.CredentialStoreService.start(CredentialStoreService.java:119)
	at org.jboss.msc.service.ServiceControllerImpl$StartTask.startService(ServiceControllerImpl.java:2032)
	at org.jboss.msc.service.ServiceControllerImpl$StartTask.run(ServiceControllerImpl.java:1955)
	at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
	at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
	at java.lang.Thread.run(Thread.java:745)
Caused by: org.wildfly.security.credential.store.CredentialStoreException: ELY09526: Unable to initialize credential store
	at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.load(KeyStoreCredentialStore.java:799)
	at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.initialize(KeyStoreCredentialStore.java:183)
	at org.wildfly.security.credential.store.CredentialStore.initialize(CredentialStore.java:119)
	at org.wildfly.extension.elytron.CredentialStoreService.start(CredentialStoreService.java:117)
	... 5 more
Caused by: java.io.IOException: ELY09533: Internal encryption problem while reading "/home/mchoma/workspace/eap-versions/7.1.0.DR16/jboss-eap-7.1/standalone/data/test"
	at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.load(KeyStoreCredentialStore.java:800)
	... 8 more
Caused by: javax.crypto.BadPaddingException
	at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore$ExternalStorage.pkcs7UnPad(KeyStoreCredentialStore.java:1245)
	at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore$ExternalStorage.loadSecretKey(KeyStoreCredentialStore.java:1165)
	at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore$ExternalStorage.load(KeyStoreCredentialStore.java:1148)
	at org.wildfly.security.credential.store.impl.KeyStoreCredentialStore.load(KeyStoreCredentialStore.java:793)
	... 8 more

Found now because EAP7-277 was moved into Verification TODO (feature was delivered) in DR16

incorporates

ELY-1101 Elytron FIPS CS, javax.crypto.BadPaddingException

Resolved

is incorporated by

JBEAP-10618 Upgrade WildFly Elytron to 1.1.0.Beta39

Closed

Assignee:: Peter Skopek

Reporter:: Martin Choma

Need Info From:: Peter Skopek

Tester:: Martin Choma

QA Contact:: Martin Choma

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2017/04/20 6:23 AM

Updated:: 2024/09/02 3:50 PM

Resolved:: 2017/05/06 4:37 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates