Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-2421

CS tool generated different MASKED password then vault.sh

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • 3.0.0.Beta12
    • None
    • Security
    • None

      CS tool generated different MASKED password then vault.sh

      When I run oldf vault.sh

      ./vault.sh --keystore key.store --keystore-password secret_password --alias Vault --vault-block vaultBlock --attribute passDB --sec-attr secretvalue --enc-dir ./vault --iteration 230 --salt 12345678 -t
      

      I can see this MASK-1GhfMaq4jSY0.kFFU3QG4T

      Whole output:

      <vault>
        <vault-option name="KEYSTORE_URL" value="key.store"/>
        <vault-option name="KEYSTORE_PASSWORD" value="MASK-1GhfMaq4jSY0.kFFU3QG4T"/>
        <vault-option name="KEYSTORE_ALIAS" value="Vault"/>
        <vault-option name="SALT" value="12345678"/>
        <vault-option name="ITERATION_COUNT" value="230"/>
        <vault-option name="ENC_FILE_DIR" value="./vault/"/>
      </vault><management>
      

      In the other hand when I run new CS tool with params:

      java -jar wildfly-elytron-tool.jar credential-store --add myalias --secret secretpassword --location="test.store1" --uri "cr-store://test.store?modifiable=true;create=true;keyStoreType=JCEKS" --password secret_password --summary --salt 12345678 --iteration 230 --create
      

      I get MASK-KAwLfD1BN8WFhZptWsa17G

      Whole output:

      Alias "myalias" has been successfully stored
      Credential store command summary:
      --------------------------------------
      /subsystem=elytron/credential-store=test:add(uri="cr-store://test.store?modifiable=true;create=true;keyStoreType=JCEKS",relative-to=jboss.server.data.dir,credential-reference={clear-text="MASK-KAwLfD1BN8WFhZptWsa17G==;12345678;230"})
      

      I set these values for both:
      password to mask secret_password
      iteration 12345678
      salt 230

            pskopek@redhat.com Peter Skopek
            hsvabek_jira Hynek Švábek (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: