Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-22738

(7.4.z) Upgrade jbossws-cxf from 5.4.2.Final to 5.4.4.Final(Fix UsernameTokenElytronTestCase on SE 17)


      Tag: https://github.com/jbossws/jbossws-cxf/releases/tag/jbossws-cxf-5.4.4.Final
      Diff: https://github.com/jbossws/jbossws-cxf/compare/jbossws-cxf-5.4.2.Final...jbossws-cxf-5.4.4.Final
      Hash: 4228c5802f690a09d7d9d16577523e79e24b41bb

      One of our nightly CI jobs tests WildFly Preview by building it with SE 8 (the standard) and running the testsuite with SE 15. See https://ci.wildfly.org/viewType.html?buildTypeId=WF_Ee9LinuxJdk15 and the discussion of it at https://wildfly.zulipchat.com/#narrow/stream/174184-wildfly-developers/topic/Testing.20with.20more.20recent.20JDKs. A couple tests fail on that job because JBoss WS is trying to load java.security.acl.Group, which isn't present with SE 14 or later. See JBWS-4133.

      This JIRA is basically a WFLY tracker for a test failure that a JBWS-4133 fix will resolve.

      The failing tests are in UsernameTokenElytronTestCase. The particular failure mode is only visible if WFLY-14758 is fixed; otherwise the tests fail due to WFLY-14758. But with a fix in place for that they still fail with this relevant logging:

      java.lang.NoClassDefFoundError: java/security/acl/Group
      	at org.jboss.ws.cxf.jbossws-cxf-server@5.4.3.Final//org.jboss.wsf.stack.cxf.security.authentication.SubjectCreatingPolicyInterceptor.getPrincipal(SubjectCreatingPolicyInterceptor.java:152)
      	at org.jboss.ws.cxf.jbossws-cxf-server@5.4.3.Final//org.jboss.wsf.stack.cxf.security.authentication.SubjectCreatingPolicyInterceptor.handleMessage(SubjectCreatingPolicyInterceptor.java:106)
      	at org.apache.cxf@3.3.10//org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:308)
      	at org.apache.cxf@3.3.10//org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiationObserver.java:121)
      	at org.apache.cxf.impl//org.apache.cxf.transport.http.AbstractHTTPDestination.invoke(AbstractHTTPDestination.java:265)
      	at org.jboss.ws.cxf.jbossws-cxf-server@5.4.3.Final//org.jboss.wsf.stack.cxf.RequestHandlerImpl.handleHttpRequest(RequestHandlerImpl.java:110)

      The purpose of that CI job is to help drive progress toward SE 17 support for WildFly. i'm using WildFly Preview because it does not use legacy security, and we know legacy security won't work with SE 14 or later. It uses SE 15 partly because that version was available on the CI server and partly because it's useful to see what fails with 15 before moving on to 16 and 17 which may bring their own issues that mask the problems that come with SE 15.

            bstansbe@redhat.com Brian Stansberry
            ehugonne1@redhat.com Emmanuel Hugonnet
            0 Vote for this issue
            6 Start watching this issue