Release Notes - WildFly - Version 32.0.0.Final - HTML format

Sub-task

  • [WFLY-18604] - Reevalute test exclusions in the integration/clustering module
  • [WFLY-18681] - Reevalute test exclusions in the testsuite/domain module
  • [WFLY-18874] - Replace service value captor abstractions from wildfly-clustering-common with variants from wildfly-subsystem
  • [WFLY-18895] - Pass Standalone Mail TCK tests on Java 21
  • [WFLY-18988] - Remove illegal uses of Operation.hasOptionalCapability(String, null, null) in Undertow subsystem
  • [WFLY-18990] - Remove illegal uses of Operation.hasOptionalCapability(String, null, null) in JSF subsystem
  • [WFLY-18991] - Remove illegal uses of Operation.hasOptionalCapability(String, null, null) in EJB subsystem
  • [WFLY-18992] - Remove illegal uses of Operation.hasOptionalCapability(String, null, null) in EE subsystem
  • [WFLY-18993] - Remove illegal uses of Operation.hasOptionalCapability(String, null, null) from JCA subsystem
  • [WFLY-18994] - Remove illegal uses of Operation.hasOptionalCapability(String, null, null) from JGroups subsystem
  • [WFLY-18995] - Remove illegal uses of Operation.hasOptionalCapability(String, null, null) from Infinispan subsystem
  • [WFLY-18996] - Remove illegal uses of Operation.hasOptionalCapability(String, null, null) in batch-jberet subsystem
  • [WFLY-19006] - Remove Stage.RUNTIME uses of capability 'org.wildfly.legacy-security' in connector subsystem
  • [WFLY-19007] - Remove Stage.RUNTIME uses of capability 'org.wildfly.legacy-security' in ejb3 subsystem
  • [WFLY-19008] - Remove Stage.RUNTIME uses of capability 'org.wildfly.legacy-security' in ee subsystem
  • [WFLY-19009] - Remove Stage.RUNTIME uses of capability 'org.wildfly.legacy-security' in undertow subsystem
  • [WFLY-19012] - Remove Stage.RUNTIME uses of capability 'org.wildfly.legacy-security' in webservices subsystem
  • [WFLY-19051] - Remove Stage.RUNTIME uses of capability 'org.wildfly.legacy-security' in messaging subsystem

Feature Request

  • [WFLY-13762] - [Community] SSLContext to support delegation to alternate instances based on peer information.
  • [WFLY-16532] - [Preview] elytron-oidc-client: add ability to configure additional scope for authentication request
  • [WFLY-18163] - Make it possible to use JaasSecurityRealm via a custom-realm resource
  • [WFLY-18185] - Documentation for possibility of the caching realm to authenticate users with underlying realm when credential verification with cached credential fails
  • [WFLY-19021] - [Community] WildFly provisioning to support WildFly stability
  • [WFLY-19062] - [Preview] Integrate the mvc-krazo subsystem into the wildfly feature pack
  • [WFLY-19116] - [Experimental] Provide a cool boot message
  • [WFLY-19130] - [Community] Publish Wildfly channel and manifest during project build

Bug

  • [WFLY-11244] - RemoteStatefulEJBConcurrentFailoverTestCase fails intermittently again (more frequent after Infinispan 9.4.0 upgrade)
  • [WFLY-13957] - ManagedExecutorServiceMetricsTestCase.testActiveRequests fails intermittently
  • [WFLY-15426] - ReliableServiceTestCase fails after migration from Apache JAXP implementations to JDK provided JAXP implementations
  • [WFLY-16584] - Servlet's default character encoding setting is not working.
  • [WFLY-17893] - Jacorb subsystem migrate operation does not include a migration warn if the 'client' or 'identity' security were used
  • [WFLY-18080] - Regular failures of FaultToleranceMicrometerIntegrationTestCase
  • [WFLY-18664] - i18n of exception messages in transactions
  • [WFLY-18700] - java.lang.OutOfMemoryError: Direct buffer memory
  • [WFLY-18765] - Missing Locale parameter while calling toUpperCase and toLowerCase methods
  • [WFLY-18776] - Incorrect link in the documentation pointing to Keycloak documentation
  • [WFLY-18821] - Wildfly 30: form with enctype="multipart/form-data" does not support large input data (16425 bytes)
  • [WFLY-18913] - Restore the ignored service-name attribute in the opentelemetry subsystem
  • [WFLY-18921] - Undertow subsystem tests use invalid configuration
  • [WFLY-18952] - Migrate operations for MP OpenTracing and MP Metrics are failing
  • [WFLY-18957] - MicroProfile LRA is missing in the Getting Started Guide's MicroProfile spec table
  • [WFLY-18959] - Mail Quickstart maven dependencies have wrong scope
  • [WFLY-18969] - Give the Apache Lucene module access to jdk.unsupported
  • [WFLY-18972] - JDR not collecting server manifest.yaml
  • [WFLY-18983] - Galleon layers documentation doesn't cover 'metrics' and 'health'
  • [WFLY-18984] - The jaxrs-server layer should not result in MicroProfile REST Client or Config provisioning
  • [WFLY-18987] - Remove illegal uses of Operation.hasOptionalCapability(String, null, null)
  • [WFLY-19010] - SSL Client context not loaded with AMQP Connector used in bootable jar
  • [WFLY-19016] - org.infinispan module does not export required package org.infinispan.util.function
  • [WFLY-19019] - Exception that happened during deployment is being hidden
  • [WFLY-19020] - JakartaEE application client: module "org.hibernate" is not added to classpath
  • [WFLY-19023] - Reactive messaging modules depend on javax api alias modules
  • [WFLY-19036] - Duplicate declaration of org.apache.kerby:kerb-server-api-all dependency
  • [WFLY-19040] - Regression due to SSLHandshakeException affecting HotRod client when connecting to remote Infinispan
  • [WFLY-19044] - Welcome page points to old user forum
  • [WFLY-19071] - Fixing Apache Artemis 2.32 upgrade dependencies
  • [WFLY-19072] - Fixing AddressSettings default values
  • [WFLY-19083] - Missing goal verify in the MicroprofileHealt QS in integration testing profile
  • [WFLY-19087] - External messaging resources can't be updated
  • [WFLY-19089] - Exception javax/management/openmbean/CompositeData using AMQP-client in Wildfly built-in Artemis ActiveMQ server
  • [WFLY-19098] - galleon: custom provisioning creates unsecured http-invoker (CVE-2023-4503)
  • [WFLY-19100] - Datasource subsystem fails to parse 5.0 and 6.0 configurations
  • [WFLY-19110] - Connector: restore application security configuration
  • [WFLY-19115] - Platform Mail TCK tests fail on Java 21
  • [WFLY-19132] - MSC000004: Failure during stop of service jboss.undertow.filter.load-balancer.service: NPE
  • [WFLY-19133] - Using Undertow mod_cluster filter with legacy security realms should throw an OperationFailedException
  • [WFLY-19140] - Clustering testsuite failures when using -Dts.bootable.preview
  • [WFLY-19145] - The wildfly-glow-arquillian-plugin config doesn't account for WildFly Preview
  • [WFLY-19150] - Incorrect dropping of 'server.jvm.args' meant to be passed to Arquillian
  • [WFLY-19151] - Several metrics are not loaded correctly from their MBean
  • [WFLY-19167] - war containing JDBC drivers deploys an extra driver
  • [WFLY-19170] - The wildfly-preview feature pack doesn't run at preview stability OOTB
  • [WFLY-19183] - Bootable jar testing fails with WildFly Preview in the testsuite/integration/microprofile module
  • [WFLY-19187] - Fix missed JMX bean name
  • [WFLY-19189] - Invalid Glow verbosity config in microprofile-tck
  • [WFLY-19201] - Fix the maven warn about duplicate plugin declaration
  • [WFLY-19209] - The jaxrs subsystem should not assume that simply have the org.wildfly.microprofile.config means the microprofile-rest-client layer is present
  • [WFLY-19219] - ManagementOnlyModeTestCase is broken because Manual model OIDC tests
  • [WFLY-19220] - WildFly needs to pass the "old" Faces 4.0 TCK tests in jakarta-faces-tck-4.0.3.zip
  • [WFLY-19222] - The internal.channel.profile is broken
  • [WFLY-19231] - Upgrade mvc-krazo to 1.0.0.Final
  • [WFLY-19249] - Strange bolding in Admin Guide 'Managed Domain Configuration Files'
  • [WFLY-19250] - Duplicate Admin Guide 'Default Native Interface Security' sections
  • [WFLY-19262] - hibernate.type.json_format_mapper error
  • [WFLY-19270] - Shared CI to build and test WildFly issue with Windows and JDK11

Task

  • [WFLY-15178] - Rework ParseAndMarshalModelsTestCase
  • [WFLY-17740] - Add missing @Fallback test in MicroProfile Fault Tolerance quickstart
  • [WFLY-17784] - Add a test case that makes use of a virtual-security-domain with MP-JWT
  • [WFLY-18174] - Change the default jakarta.faces.FACELETS_BUFFER_SIZE size to -1
  • [WFLY-18218] - Add contributing and other community documents to widfly-bom-builder-plugin
  • [WFLY-18297] - Reevalute test exclusions in the WildFly Preview maven profiles
  • [WFLY-18559] - Fix or remove org.jboss.as.test.smoke.jsf.JSFTestCase
  • [WFLY-18748] - Document how to optimize cloud clustering configuration created by our tooling to be scalable
  • [WFLY-18786] - Add tests for SetRequestInformationCallbackMechanismFactory
  • [WFLY-18932] - Update the WildFly vs WildFly Preview document for current differences
  • [WFLY-18937] - Add git log data to the shared-wildfly-build.yml output
  • [WFLY-18942] - Fix automated testing of Micrometer QS under OpenShift
  • [WFLY-18943] - Fix automated testing of OpenTelemetry QS under OpenShift
  • [WFLY-18964] - Upgrade to Galleon 6 Beta2, upgrade all provisioning tooling
  • [WFLY-18966] - Upgrade licenses plugin, update licenses
  • [WFLY-18967] - Require SE 17+ to build, 17 to deploy, but SE 11 source/target/release level
  • [WFLY-18975] - Remove stray System.out in SessionExpirationScheduler
  • [WFLY-18985] - Update WildFly docs to include reload operation required to valid key-store attributes update on Filesystem Security Realm
  • [WFLY-18997] - Remove Stage.RUNTIME uses of capability 'org.wildfly.legacy-security'
  • [WFLY-19025] - Update LayersTestCase(s) to reflect WFCORE-6456
  • [WFLY-19026] - Update LayerTestBase assertions
  • [WFLY-19030] - Update HostExcludesTestCase configuration to work with WF32
  • [WFLY-19049] - Use testcontainers to start Mail server for running mail tests
  • [WFLY-19061] - Add comments to wildfly-feature-pack-build.xml files explaining the package-schemas element
  • [WFLY-19064] - Update the EE 11 preview to use current EE 11 releases
  • [WFLY-19065] - Make the ee subsystem dependency on the JBoss fork of Jakarta EL optional
  • [WFLY-19070] - Remove the unsupported compensations API
  • [WFLY-19078] - [Preview] Update the elytron-oidc-client subsystem parser to enumerate schema versions
  • [WFLY-19093] - Jakarta Mail no longer needs to find implementations on the Thread Context Class Loader
  • [WFLY-19101] - Add test checking for X-Content-Type-Options header in management console
  • [WFLY-19114] - Resolve WildFly-specific EE 10 TCK 10 failures on Java 21
  • [WFLY-19127] - shared-wildfly-build-and-test workflow file should allow for a branch/tag
  • [WFLY-19131] - Clustering TS: disable color output logging from nodes
  • [WFLY-19141] - Use SE 17 as the base JDK in GitHub Actions
  • [WFLY-19142] - Update the OIDC tests to use the 24.0.1 version of quay.io/keycloak/keycloak
  • [WFLY-19161] - Add documentation for configuration file aliases (WFCORE-4868)
  • [WFLY-19163] - Create testsuite/preview/manualmode
  • [WFLY-19165] - Update SpnegoMechTestCase to use org.wildfly.security.mechanism.gssapi.GSSCredentialSecurityFactory
  • [WFLY-19177] - Update elytron-oidc-client subsystem transformer to add a transformer from model version 2 to model version 3
  • [WFLY-19186] - Add CODEOWNERS to quickstart
  • [WFLY-19195] - Integrate EE 11 branch into main
  • [WFLY-19197] - Update ExpressionsTestCase for elytron-oidc-client to use the stability associated with the currently tested schema
  • [WFLY-19202] - Don't run layers tests against WFP on SE < 17
  • [WFLY-19207] - Add the KeycloakConfiguration test class inside testsuite/integration/manualmode to the allowlist for gitleaks
  • [WFLY-19224] - Suppress CVE-2023-1973 from being reported against Undertow
  • [WFLY-19225] - CVE-2023-6236: Add tests for multi-tenancy to ensure that a valid token from one tenant cannot be used to access another tenant
  • [WFLY-19226] - CVE-2024-1233: Add documentation for the new wildfly.elytron.jwt.allowed.jku.values.<realm-name> system property
  • [WFLY-19232] - Update ElytronOidcSubsystemSchema to only add the Scope attribute to Preview:2.0 schema version or later
  • [WFLY-19236] - [SCA Suppressions] Update CPE exclusion now org.wildfly.galleon-pluginstransformer has become org/wildfly/deployment/transformer/transformer
  • [WFLY-19237] - [SCA Suppressions] Add a suppression for CVE-2024-23080
  • [WFLY-19265] - Ensure OidcWithMultiTenancyTest runs successfully with the security manager enabled and gets skipped if Docker isn't available

Component Upgrade

  • [WFLY-18520] - Upgrade CXF to 4.0.4(resolve CVE-2024-28752)
  • [WFLY-18716] - Upgrade Mojarra to 4.0.6
  • [WFLY-18946] - Upgrade Infinispan to 14.0.22.Final
  • [WFLY-18958] - Upgrade JGroups to 5.2.20.Final
  • [WFLY-18970] - Upgrade ASM to 9.6
  • [WFLY-18971] - Upgrade ByteBuddy to 1.14.11
  • [WFLY-18977] - Upgrade jgroups-kubernetes to 2.0.2.Final
  • [WFLY-18978] - Update JBeret to 2.2.1.Final
  • [WFLY-18980] - Upgrade SmallRye Config to 3.5.2
  • [WFLY-18981] - Upgrade SmallRye Reactive Messaging to 4.16.0
  • [WFLY-18982] - Upgrade Apache Artemis to 2.32.0
  • [WFLY-18989] - Upgrade to Hibernate 6.4.4.Final release
  • [WFLY-19001] - Upgrade joda-time from 2.12.5 to 2.12.6
  • [WFLY-19003] - Upgrade Netty to 4.1.106
  • [WFLY-19005] - Upgrade to SmallRye Mutiny 2.5.6
  • [WFLY-19014] - Upgrade jboss-ejb-client to 5.0.6.Final
  • [WFLY-19022] - Upgrade testcontainers to 1.19.5
  • [WFLY-19028] - Upgrade openjdk-orb to 10.1.0.Final
  • [WFLY-19031] - Upgrade RESTEasy from 6.2.7.Final to 6.2.8.Final
  • [WFLY-19032] - Upgrade Snappy Java to 1.1.10.5 (CVEs CVE-2023-34453, CVE-2023-34454, CVE-2023-34455, CVE-2023-43642)
  • [WFLY-19034] - Upgrade nimbus-jose-jwt to 9.37.3 [CVE-2023-52428]
  • [WFLY-19035] - Upgrade wildfly-http-client to 2.0.7.Final
  • [WFLY-19037] - Upgrade WildFly Core to 24.0.0.Beta1
  • [WFLY-19041] - Upgrade HAL to 3.7.0.Final
  • [WFLY-19045] - Upgrade Infinispan to 14.0.24.Final
  • [WFLY-19046] - Upgrade JGroups to 5.2.22.Final
  • [WFLY-19052] - Upgrade SmallRye Config from 3.5.2 to 3.5.4
  • [WFLY-19053] - Update VertX Kafka client from 4.4.6 to 4.4.8
  • [WFLY-19054] - Update Vert.x from from 4.5.1 to 4.5.3
  • [WFLY-19055] - Update SmallRye Reactive Messaging from 4.16.0 to 4.16.2
  • [WFLY-19056] - Upgrade Narayana to 7.0.1.Final
  • [WFLY-19059] - Update resteasy-spring to 3.1.2.Final
  • [WFLY-19076] - Upgrade WildFly Core to 24.0.0.Beta2
  • [WFLY-19079] - Upgrade Infinispan to 14.0.26.Final
  • [WFLY-19084] - Upgrade smallrye-open-api to 3.10.0
  • [WFLY-19088] - Upgrade Apache James Mime4j to 0.8.10 for CVE-2024-21742
  • [WFLY-19090] - Upgrade Jakarta Activation from 2.1.2 to 2.1.3
  • [WFLY-19091] - Upgrade Angus Activation from 2.0.1 to 2.0.2
  • [WFLY-19092] - Upgrade Jakarta Mail from 2.1.2 to 2.1.3
  • [WFLY-19094] - Upgrade Angus Mail to from 2.0.2 to 2.0.3
  • [WFLY-19095] - Update Micrometer to 1.12.4
  • [WFLY-19096] - Upgrade to SmallRye Mutiny 2.5.7
  • [WFLY-19097] - Upgrade Netty to 4.1.107
  • [WFLY-19104] - Upgrade to WildFly Galleon Plugins 7.0.0.Beta4
  • [WFLY-19105] - Upgrade to Hibernate Search 7.1
  • [WFLY-19106] - Upgrade to Lucene 9.9
  • [WFLY-19107] - Upgrade to Elasticsearch client 8.12
  • [WFLY-19108] - Upgrade org.bitbucket.b_c:jose4j from 0.9.4 to 0.9.6
  • [WFLY-19109] - Upgrade com.fasterxml.jackson from 2.15.3 to 2.15.4
  • [WFLY-19118] - Upgrade SmallRye Config from 3.4.3 to 3.6.1
  • [WFLY-19119] - Upgrade SmallRye Reactive Messaging to 4.18.0 and Kafka Client to 3.7.0
  • [WFLY-19123] - Upgrade wildfly-transaction-client to 3.0.5.Final
  • [WFLY-19129] - Upgrade JGroups to 5.2.23.Final
  • [WFLY-19135] - Bump version.org.testcontainers from 1.19.6 to 1.19.7
  • [WFLY-19137] - Use deployment-transformer-feature-pack transformer
  • [WFLY-19146] - Upgrade Jakarta XML Bind API to 4.0.2
  • [WFLY-19159] - Upgrade to SmallRye Reactive Messaging 4.19.0
  • [WFLY-19168] - Upgrade WildFly Core to 24.0.0.Beta3
  • [WFLY-19169] - Upgrade the WildFly Maven Plugin to 5.0.0.Beta4
  • [WFLY-19173] - Upgrade Infinispan to 14.0.27.Final
  • [WFLY-19174] - Upgrade jbossws-cxf to 7.1.0.Final
  • [WFLY-19181] - Upgrade to Galleon 6.0.0.Beta5 and Galleon Plugins 7.0.0.Beta6
  • [WFLY-19193] - Bump version.io.netty from 4.1.107.Final to 4.1.108.Final fixes CVE-2024-29025
  • [WFLY-19199] - Bump org.owasp:dependency-check-maven from 9.0.9 to 9.0.10
  • [WFLY-19200] - Upgrade to Galleon 6.0.0.Beta6 and Galleon Plugins 7.0.0.Beta7
  • [WFLY-19211] - Upgrade ironjacamar to 3.0.9.Final
  • [WFLY-19230] - Update Mojarra to 4.0.7
  • [WFLY-19240] - Upgrade WildFly Preview to Jakarta Annotation 3.0.0
  • [WFLY-19241] - Upgrade WildFly Preview to Jakarta Interceptor 2.2.0
  • [WFLY-19242] - Upgrade the wildfly-maven-plugin from 5.0.0.Beta4 to 5.0.0.Final
  • [WFLY-19243] - Upgrade the galleon-maven-plugin from 6.0.0.Beta6 to 6.0.0.Final
  • [WFLY-19244] - Upgrade wildfly-glow from 1.0.0.Beta13 to 1.0.0.Final
  • [WFLY-19245] - Upgrade WildFly Galleons plugins from 7.0.0.Beta7 to 7.0.0.Final
  • [WFLY-19246] - Upgrade the wildfly-jar-maven-plugin from 11.0.0.Beta1 to 11.0.0.Final
  • [WFLY-19256] - Update Jakarta CDI to 4.1.0 in WildFly Preview
  • [WFLY-19258] - Upgrade testsuite/integration/legacy to Netty 4.0.19.Final
  • [WFLY-19259] - Update Jakarta EL to 6.0.0 in WildFly Preview
  • [WFLY-19272] - Upgrade WildFly Core to 24.0.0.Final

Enhancement

  • [WFLY-18073] - Integrate OWASP dependency check plugin into WildFly build
  • [WFLY-18462] - Remove contacts-jquerymobile Quickstart
  • [WFLY-18464] - ejb-multi-server Quickstart Common Enhancements CY2023Q3
  • [WFLY-18475] - helloworld-mutual-ssl-secured Quickstart Common Enhancements CY2023Q3
  • [WFLY-18476] - helloworld-mutual-ssl Quickstart Common Enhancements CY2023Q3
  • [WFLY-18503] - security-domain-to-domain Quickstart Common Enhancements CY2023Q3
  • [WFLY-18515] - Remove outdated wsat-simple Quickstart
  • [WFLY-18516] - Remove outdaded wsba-coordinator-completion-simple Quickstart
  • [WFLY-18517] - Remove outdated wsba-participant-completion-simple Quickstart
  • [WFLY-18955] - micrometer Galleon layer should contain rules to be discovered
  • [WFLY-18956] - Add sha1 to Quickstart's dist module
  • [WFLY-19000] - Add note to Quickstarts READMEs about Bootable Jar usage on OpenShift
  • [WFLY-19015] - Micrometer and Opentelemetry Quickstarts should use the MicroProfile BOM instead of non-user expansion BOM
  • [WFLY-19029] - Hibernate ORM 6.4+ should export services to consumer classpath
  • [WFLY-19073] - $JBOSS_HOME/docs/schema/jboss-app_* contain wrong links inside the documentation elements
  • [WFLY-19077] - Add maven central to archetype poms that declared JBoss Nexus as a repository
  • [WFLY-19178] - Rationalize order of 'Subsystem configurations' content in the Admin Guide
  • [WFLY-19179] - Move the 'Management API Reference' to the last spot in the Admin Guide
  • [WFLY-19184] - Make use of jakarta.annotation.ManagedBean optional

Edit/Copy Release Notes

The text area below allows the project release notes to be edited and copied to another document.