Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-8582

Legacy encrypt protocol support is missing a requirement on elytron subsystem

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Minor
    • 11.0.0.Beta1
    • 11.0.0.Alpha1
    • Clustering
    • None
    • Hide

      In domain mode configure following protocols in the jgroups subsystem without the elytron subsystem being configured (or simply port an EAP 7.0.x config with the referenced protocols)
      <encrypt-protocol type="ASYM_ENCRYPT"..> ...
      <protocol type="AUTH"> ...

      Show
      In domain mode configure following protocols in the jgroups subsystem without the elytron subsystem being configured (or simply port an EAP 7.0.x config with the referenced protocols) <encrypt-protocol type="ASYM_ENCRYPT"..> ... <protocol type="AUTH"> ...

    Description

      Can the error message be improved to recognise that not only is there no operation registered at the address, but there is no subsystem registered with that name.

      Example: If ASYM_ENCRYPT is configured, without the elytron subsystem being present, there is a runtime error which doesn't make it obvious how to address the problem.
      Customers porting EAP 7.0.x domain config to EAP 7.1.0 with fix for CVE-2016-2141 will see this

      Runtime Error:
      [Host Controller] 16:21:35,148 ERROR [org.jboss.as.controller.management-operation] (Controller Boot Thread) WFLYCTL0013: Operation ("add") failed - address: ([
      [Host Controller] ("profile" => "full-ha"),
      [Host Controller] ("subsystem" => "jgroups"),
      [Host Controller] ("stack" => "tcpping"),
      [Host Controller] ("protocol" => "ASYM_ENCRYPT")
      [Host Controller] ]) - failure description: "WFLYCLJG0026: No add operation registered at /profile=full-ha/subsystem=elytron/key-store=jgroups-tcpping"
      [Host Controller] 16:21:35,164 FATAL [org.jboss.as.host.controller] (Controller Boot Thread) WFLYHC0034: Host Controller boot has failed in an unrecoverable manner; exiting. See previous messages for details.
      [Host Controller] 16:21:35,170 FATAL [org.jboss.as.host.controller] (Controller Boot Thread) WFLYHC0178: Aborting with exit code 99

      Attachments

        Issue Links

          clones

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-10010 [GSS](7.1.0) Improve error message when subsystem is missing

          • Minor - To be worked after urgent, high, and medium priorities are resolved. This term is chosen when the severity of the issue is low, or the complexity or effort to correct it may be higher, relatively speaking. For low priority issues, known workarounds exist or are not needed due to the trivial effort needed to address the issue.
          • Closed

          Activity

            People

              pferraro@redhat.com Paul Ferraro
              pferraro@redhat.com Paul Ferraro
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: