Loading...

Type: Bug
Resolution: Unresolved
Priority: Blocker
Component/s: Security
Labels:
None

Steps to Reproduce:
Hide

/subsystem=elytron/filesystem-realm=fs:add(path=fs) /subsystem=elytron/caching-realm=cr:add(realm=fs) /subsystem=elytron/caching-realm=cr:clear-cache { "outcome" => "failed", "failure-description" => "WFLYCTL0158: Operation handler failed: java.lang.ClassCastException: Cannot cast jdk.proxy2.$Proxy11 to org.wildfly.security.auth.realm.CachingSecurityRealm", "rolled-back" => true }
Show
/subsystem=elytron/filesystem-realm=fs:add(path=fs) /subsystem=elytron/caching-realm=cr:add(realm=fs) /subsystem=elytron/caching-realm=cr:clear-cache { "outcome" => "failed", "failure-description" => "WFLYCTL0158: Operation handler failed: java.lang.ClassCastException: Cannot cast jdk.proxy2.$Proxy11 to org.wildfly.security.auth.realm.CachingSecurityRealm", "rolled-back" => true }

Implementation of ~~WFCORE-7192~~ brings a regression in the caching-realm management resource. The operation clear-cache fails with the following error in log:

ERROR [org.jboss.as.controller.management-operation] (management-handler-thread - 2) WFLYCTL0013: Operation ("clear-cache") failed - address: ([
    ("subsystem" => "elytron"),
    ("caching-realm" => "cr")
]) - Stage: (RUNTIME): java.lang.ClassCastException: Cannot cast jdk.proxy2.$Proxy11 to org.wildfly.security.auth.realm.CachingSecurityRealm
	at java.base/java.lang.Class.cast(Class.java:4069)
	at org.wildfly.extension.elytron@31.0.0.Beta4-SNAPSHOT//org.wildfly.extension.elytron.CachingRealmDefinition$ClearCacheHandler.executeRuntimeStep(CachingRealmDefinition.java:188)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.AbstractRuntimeOnlyHandler$1.execute(AbstractRuntimeOnlyHandler.java:42)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.AbstractOperationContext.executeStep(AbstractOperationContext.java:1060)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.AbstractOperationContext.processStages(AbstractOperationContext.java:781)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.AbstractOperationContext.executeOperation(AbstractOperationContext.java:469)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.OperationContextImpl.executeOperation(OperationContextImpl.java:1439)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.ModelControllerImpl.internalExecute(ModelControllerImpl.java:436)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.ModelControllerImpl.lambda$executeForResponse$0(ModelControllerImpl.java:246)
	at org.wildfly.security.elytron-base@2.8.0.CR1-SNAPSHOT//org.wildfly.security.auth.server.SecurityIdentity.runAs(SecurityIdentity.java:304)
	at org.wildfly.security.elytron-base@2.8.0.CR1-SNAPSHOT//org.wildfly.security.auth.server.SecurityIdentity.runAs(SecurityIdentity.java:270)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.ModelControllerImpl.executeForResponse(ModelControllerImpl.java:246)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.ModelControllerImpl.executeOperation(ModelControllerImpl.java:240)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.ModelControllerImpl.execute(ModelControllerImpl.java:223)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.remote.ModelControllerClientOperationHandler$ExecuteRequestHandler.doExecute(ModelControllerClientOperationHandler.java:228)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.remote.ModelControllerClientOperationHandler$ExecuteRequestHandler$1$1.run(ModelControllerClientOperationHandler.java:150)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.remote.ModelControllerClientOperationHandler$ExecuteRequestHandler$1$1.run(ModelControllerClientOperationHandler.java:146)
	at org.wildfly.security.elytron-base@2.8.0.CR1-SNAPSHOT//org.wildfly.security.auth.server.SecurityIdentity.runAs(SecurityIdentity.java:328)
	at org.wildfly.security.elytron-base@2.8.0.CR1-SNAPSHOT//org.wildfly.security.auth.server.SecurityIdentity.runAs(SecurityIdentity.java:285)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.AccessAuditContext.doAs(AccessAuditContext.java:237)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.AccessAuditContext.doAs(AccessAuditContext.java:208)
	at org.jboss.as.controller@31.0.0.Beta4-SNAPSHOT//org.jboss.as.controller.remote.ModelControllerClientOperationHandler$ExecuteRequestHandler$1.execute(ModelControllerClientOperationHandler.java:146)
	at org.jboss.as.protocol@31.0.0.Beta4-SNAPSHOT//org.jboss.as.protocol.mgmt.ManagementRequestContextImpl$1.doExecute(ManagementRequestContextImpl.java:59)
	at org.jboss.as.protocol@31.0.0.Beta4-SNAPSHOT//org.jboss.as.protocol.mgmt.ManagementRequestContextImpl$AsyncTaskRunner.run(ManagementRequestContextImpl.java:149)
	at org.jboss.threads@3.9.2//org.jboss.threads.ContextHandler$1.runWith(ContextHandler.java:18)
	at org.jboss.threads@3.9.2//org.jboss.threads.EnhancedQueueExecutor$Task.doRunWith(EnhancedQueueExecutor.java:2651)
	at org.jboss.threads@3.9.2//org.jboss.threads.EnhancedQueueExecutor$Task.run(EnhancedQueueExecutor.java:2630)
	at org.jboss.threads@3.9.2//org.jboss.threads.EnhancedQueueExecutor.runThreadBody(EnhancedQueueExecutor.java:1622)
	at org.jboss.threads@3.9.2//org.jboss.threads.EnhancedQueueExecutor$ThreadBody.run(EnhancedQueueExecutor.java:1589)
	at java.base/java.lang.Thread.run(Thread.java:1583)
	at org.jboss.threads@3.9.2//org.jboss.threads.JBossThread.run(JBossThread.java:501)

is triggering

WFLY-21444 We are missing a test for the Caching Security Realm

Resolved

relates to

WFCORE-7192 CVE-2025-23368 WildFly Elytron Brute Force Authentication Attack

Resolved

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates