Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[WFCORE-3305][WFCORE-3425] Add more runtime operations to the Elytron key-store resource for advanced KeyStore manipulation #2949

Merged
merged 2 commits into from Feb 12, 2018
Merged

[WFCORE-3305][WFCORE-3425] Add more runtime operations to the Elytron key-store resource for advanced KeyStore manipulation #2949

merged 2 commits into from Feb 12, 2018

Conversation

fjuma
Copy link
Contributor

@fjuma fjuma commented Nov 20, 2017
edited

This PR adds more runtime-only management operations to the Elytron subsystem key-store resource for advanced KeyStore manipulation. The new operations are as follows:

  • generate-key-pair: This will generate a key pair and wrap the resulting public key in a self-signed X.509 certificate. The generated private key and self-signed certificate will be added to the KeyStore.

  • generate-certificate-signing-request: This will generate a PKCS Subsystem test framework tweaks #10 certificate signing request using a PrivateKeyEntry from the KeyStore. The generated certificate signing request will be output to a file.

  • import-certificate: This will import a certificate or certificate chain from a file into an entry in the KeyStore.

  • export-certificate: This will export a certificate from an entry in the KeyStore to a file.

  • change-alias: This will move an existing KeyStore entry to a new alias.

After executing the generate-key-pair, import-certificate, or change-alias operations, executing the store operation will persist the resulting changes to the file that backs the KeyStore.

This PR also adds a commit to fix WFCORE-3425. This ensures that for a file-backed key-store, if the file doesn’t exist and wasn’t flagged as required, then the file will get created properly when executing the store operation.

https://issues.jboss.org/browse/WFCORE-3305
https://issues.jboss.org/browse/WFCORE-3425

Documentation PR: wildfly/wildfly#10830

@wildfly-ci
Copy link

Full integration - Windows Build 4601 outcome was FAILURE using a merge of 0f9dd63
Summary: Tests failed: 1 (1 new), passed: 4175, ignored: 99 Build time: 02:12:37

Failed tests

org.jboss.as.test.integration.domain.mixed.eap700.DomainHostExcludes700TestCase.test003PostBootUpdates: MgmtOperationException{operation={
    "operation" => "add",
    "address" => [("extension" => "org.jboss.as.messaging")]
}, result={
    "outcome" => "failed",
    "failure-description" => {"host-failure-descriptions" => {"slave" => "java.io.EOFException: Management operation failed.
MgmtOperationException{operation={
    "operation" => "add",
    "address" => [("extension" => "org.jboss.as.messaging")]
}, result={
    "outcome" => "failed",
    "failure-description" => {"host-failure-descriptions" => {"slave" => "java.io.EOFException:null"}},
    "rolled-back" => true,
    "result" => {}
}}
	at org.jboss.as.test.integration.domain.management.util.DomainTestUtils.executeForResult(DomainTestUtils.java:160)
	at org.jboss.as.test.integration.domain.mixed.DomainHostExcludesTest.addExtensions(DomainHostExcludesTest.java:196)
	at org.jboss.as.test.integration.domain.mixed.DomainHostExcludesTest.test003PostBootUpdates(DomainHostExcludesTest.java:284)
------- Stdout: -------
[Host Controller] 21:17:12,986 WARN  [org.jboss.as.protocol.connection] (management task-8) WFLYPRT0018: No such request (31) associated with channel Channel ID 9858fb5a (outbound) of Remoting connection 00315af1 to /0:0:0:0:0:0:0:1:9999
[Host Controller] 21:17:12,986 WARN  [org.jboss.as.protocol.connection] (management task-7) WFLYPRT0018: No such request (31) associated with channel Channel ID 1858fb5a (inbound) of Remoting connection 005c75ce to 0:0:0:0:0:0:0:1/0:0:0:0:0:0:0:1:59881 of endpoint "master:MANAGEMENT" <139708c>
[Host Controller] 21:17:13,043 W[Host Controller] 21:17:13,043 WARN  [org.jboss.as.protocol.connection] (management task-10) WFLARN  [org.jboss.as.protocol.connection] (management task-8) WFLYPRT0018: No such request (32) associated with channel Channel ID 1858fb5a (inbound) of Remoting connection 005c75ce to 0:0:0:0:0:0:0:1/0:0:0:0:0:0:0:1:59881 of endpoint "master:MANAGEMENT" <13YPRT0018: No such request (32) associated with channel Channel ID 9858fb5a (outbound) of Remoting connection 00315af1 to /0:0:0:0:0:0:0:1:9999
9708c>
[Host Controller] 21:17:13,201 WARN  [org.jboss.as.protocol.connection] (management task-2) WFLYPRT0018: No such request (33) associated with channel Channel ID 9858fb5a (outbound) of Remoting connection 00315af1 to /0:0:0:0:0:0:0:1:9999
[Host Controller] 21:17:13,210 WARN  [org.jboss.as.protocol.connection] (management task-1) WFLYPRT0018: No such request (33) associated with channel Channel ID 1858fb5a (inbound) of Remoting connection 005c75ce to 0:0:0:0:0:0:0:1/0:0:0:0:0:0:0:1:59881 of endpoint "master:MANAGEMENT" <139708c>
[Host Controller] 21:17:13,334 WARN  [org.jboss.as.protocol.connection] (management task-5) WFLYPRT0018: No such request (34) associated with channel Channel ID 9858fb5a (outbound) of Remoting connection 00315af1 to /0:0:0:0:0:0:0:1:9999
[Host Controller] 21:17:13,335 WARN  [org.jboss.as.protocol.connection] (management task-4) WFLYPRT0018: No such request (34) associated with channel Channel ID 1858fb5a (inbound) of Remoting connection 005c75ce to 0:0:0:0:0:0:0:1/0:0:0:0:0:0:0:1:59881 of endpoint "master:MANAGEMENT" <139708c>
[Host Controller] 21:17:13,382 WARN  [org.wildfly.iiop.openjdk] (management-handler-thread - 2) WFLYIIOP0111: SSL has not been configured but ssl-port property has been specified - the connection will use clear-text protocol
[Host Controller] 21:17:13,407 WARN  [org.jboss.as.protocol.connection] (management task-7) WFLYPRT0018: No such request (35) associated with channel Channel ID 9858fb5a (outbound) of Remoting connection 00315af1 to /0:0:0:0:0:0:0:1:9999
[Host Controller] 21:17:13,409 WARN  [org.jboss.as.protocol.connection] (management task-5) WFLYPRT0018: No such request (35) associated with channel Channel ID 1858fb5a (inbound) of Remoting connection 005c75ce to 0:0:0:0:0:0:0:1/0:0:0:0:0:0:0:1:59881 of endpoint "master:MANAGEMENT" <139708c>
[Host Controller] 21:17:13,536 WARN  [org.jboss.as.protocol.connection] (management task-1) WFLYPRT0018: No such request (36) associated with channel Channel ID 9858fb5a (outbound) of Remoting connection 00315af1 to /0:0:0:0:0:0:0:1:9999
[Host Controller] 21:17:13,657 WARN  [org.wildfly.iiop.openjdk] (management-handler-thread - 3) WFLYIIOP0111: SSL has not been configured but ssl-port property has been specified - the connection will use clear-text protocol
[Host Controller] 21:17:13,661 INFO  [org.jboss.as.controller.management-deprecated] (management-handler-thread - 3) WFLYCTL0028: Attribute 'socket-binding' in the resource at address '/profile=clone/subsystem=jgroups/stack=udp/protocol=FD_SOCK' is deprecated, and may be removed in future version. See the attribute description in the output of the read-resource-description operation to learn more about the deprecation.
[Host Controller] 21:17:13,664 INFO  [org.jboss.as.controller.management-deprecated] (management-handler-thread - 3) WFLYCTL0028: Attribute 'socket-binding' in the resource at address '/profile=clone/subsystem=jgroups/stack=tcp/protocol=FD_SOCK' is deprecated, and may be removed in future version. See the attribute description in the output of the read-resource-description operation to learn more about the deprecation.
[Host Controller] 21:17:13,691 WARN  [org.jboss.as.protocol.connection] (management task-8) WFLYPRT0018: No such request (36) associated with channel Channel ID 1858fb5a (inbound) of Remoting connection 005c75ce to 0:0:0:0:0:0:0:1/0:0:0:0:0:0:0:1:59881 of endpoint "master:MANAGEMENT" <139708c>
[Host Controller] 21:17:13,720 WARN  [org.jboss.as.protocol.connection] (management task-10) WFLYPRT0018: No such request (37) associated with channel Channel ID 1858fb5a (inbound) of Remoting connection 005c75ce to 0:0:0:0:0:0:0:1/0:0:0:0:0:0:0:1:59881 of endpoint "master:MANAGEMENT" <139708c>
[Host Controller] 21:17:13,719 WARN  [org.jboss.as.protocol.connection] (management task-2) WFLYPRT0018: No such request (37) associated with channel Channel ID 9858fb5a (outbound) of Remoting connection 00315af1 to /0:0:0:0:0:0:0:1:9999
[Host Controller] 21:17:13,802 WARN  [org.jboss.as.protocol.connection] (management task-5) WFLYPRT0018: No such request (38) associated with channel Channel ID 9858fb5a (outbound) of Remoting connection 00315af1 to /0:0:0:0:0:0:0:1:9999
[Host Controller] 21:17:13,808 WARN  [org.jboss.as.protocol.connection] (management task-1) WFLYPRT0018: No such request (38) associated with channel Channel ID 1858fb5a (inbound) of Remoting connection 005c75ce to 0:0:0:0:0:0:0:1/0:0:0:0:0:0:0:1:59881 of endpoint "master:MANAGEMENT" <139708c>
[Host Controller] 21:17:13,850 INFO  [org.jboss.as.controller.management-deprecated] (management-handler-thread - 2) WFLYCTL0028: Attribute 'socket-binding' in the resource at address '/profile=clone/subsystem=jgroups/stack=udp/protocol=FD_SOCK' is deprecated, and may be removed in future version. See the attribute description in the output of the read-resource-description operation to learn more about the deprecation.
[Host Controller] 21:17:13,854 INFO  [org.jboss.as.controller.management-deprecated] (management-handler-thread - 2) WFLYCTL0028: Attribute 'socket-binding' in the resource at address '/profile=clone/subsystem=jgroups/stack=tcp/protocol=FD_SOCK' is deprecated, and may be removed in future version. See the attribute description in the output of the read-resource-description operation to learn more about the deprecation.
[Host Controller] 21:17:13,877 WARN  [org.jboss.as.protocol.connection] (management task-7) WFLYPRT0018: No such request (39) associated with channel Channel ID 9858fb5a (outbound) of Remoting connection 00315af1 to /0:0:0:0:0:0:0:1:9999
[Host Controller] 21:17:13,878 WARN  [org.jboss.as.protocol.connection] (management task-4) WFLYPRT0018: No such request (39) associated with channel Channel ID 1858fb5a (inbound) of Remoting connection 005c75ce to 0:0:0:0:0:0:0:1/0:0:0:0:0:0:0:1:59881 of endpoint "master:MANAGEMENT" <139708c>
[Host Controller] 21:17:13,968 WARN  [org.jboss.as.protocol.connection] (management task-1) WFLYPRT0018: No such request (40) associated with channel Channel ID 9858fb5a (outbound) of Remoting connection 00315af1 to /0:0:0:0:0:0:0:1:9999
[Host Controller] 21:17:13,968 WARN  [org.jboss.as.protocol.connection] (management task-5) WFLYPRT0018: No such request (40) associated with channel Channel ID 1858fb5a (inbound) of Remoting connection 005c75ce to 0:0:0:0:0:0:0:1/0:0:0:0:0:0:0:1:59881 of endpoint "master:MANAGEMENT" <139708c>
[Host Controller] 21:17:14,075 ERROR [org.jboss.as.controller.management-operation] (management-handler-thread - 3) WFLYCTL0190: Step handler org.jboss.as.controller.extension.ExtensionAddHandler@1f76e09 for operation add at address [("extension" => "org.jboss.as.messaging")] failed handling operation rollback -- java.lang.NullPointerException: java.lang.NullPointerException
[Host Controller] 	at org.jboss.as.controller.extension.ExtensionRegistry.hasSubsystemsRegistered(ExtensionRegistry.java:352)
[Host Controller] 	at org.jboss.as.controller.extension.ExtensionRegistry.removeExtension(ExtensionRegistry.java:322)
[Host Controller] 	at org.jboss.as.controller.extension.ExtensionAddHandler$1.handleRollback(ExtensionAddHandler.java:97)
[Host Controller] 	at org.jboss.as.controller.AbstractOperationContext$RollbackDelegatingResultHandler.handleResult(AbstractOperationContext.java:1528)
[Host Controller] 	at org.jboss.as.controller.AbstractOperationContext$Step.invokeResultHandler(AbstractOperationContext.java:1500)

@fjuma
Copy link
Contributor Author

fjuma commented Nov 29, 2017

Added a few more tests for the import-certificate operation as discussed with Martin Choma.

@fjuma fjuma force-pushed the WFCORE-3305 branch 2 times, most recently from a412a42 to 6b3b7a8 Compare January 2, 2018 19:18
@fjuma
Copy link
Contributor Author

fjuma commented Jan 3, 2018

retest this please

@wildfly wildfly deleted a comment from wildfly-ci Jan 24, 2018
@wildfly wildfly deleted a comment from wildfly-ci Jan 24, 2018
@wildfly wildfly deleted a comment from wildfly-ci Jan 24, 2018
@wildfly wildfly deleted a comment from wildfly-ci Jan 24, 2018
bstansberry
bstansberry reviewed Jan 24, 2018
View reviewed changes
elytron/src/main/java/org/wildfly/extension/elytron/AdvancedModifiableKeyStoreDecorator.java Outdated
certChain[0] = certAndKey.getSelfSignedCertificate();
keyStore.setKeyEntry(alias, privateKey, keyPassword, certChain);
} catch (KeyStoreException | IllegalArgumentException | DateTimeException e) {
throw new OperationFailedException(e);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do all of these indicate user errors? If any don't, throw a runtime exception.

bstansberry
bstansberry reviewed Jan 24, 2018
View reviewed changes
elytron/src/main/java/org/wildfly/extension/elytron/AdvancedModifiableKeyStoreDecorator.java Outdated
if (e instanceof OperationFailedException) {
throw (OperationFailedException) e;
} else {
throw new OperationFailedException(e);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Don't throw OFE unless it's a user mistake. If not use a runtime exception.

bstansberry
bstansberry reviewed Jan 24, 2018
View reviewed changes
elytron/src/main/java/org/wildfly/extension/elytron/AdvancedModifiableKeyStoreDecorator.java Outdated
if (e instanceof OperationFailedException) {
throw (OperationFailedException) e;
} else {
throw new OperationFailedException(e);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same thing.

bstansberry
bstansberry reviewed Jan 24, 2018
View reviewed changes
elytron/src/main/java/org/wildfly/extension/elytron/AdvancedModifiableKeyStoreDecorator.java Outdated
if (e instanceof OperationFailedException) {
throw (OperationFailedException) e;
} else {
throw new OperationFailedException(e);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

One more time. :)

bstansberry
bstansberry reviewed Jan 24, 2018
View reviewed changes
elytron/src/main/java/org/wildfly/extension/elytron/AdvancedModifiableKeyStoreDecorator.java Outdated
if (e instanceof OperationFailedException) {
throw (OperationFailedException) e;
} else {
throw new OperationFailedException(e);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

etc

bstansberry
bstansberry reviewed Jan 24, 2018
View reviewed changes
elytron/src/main/java/org/wildfly/extension/elytron/AdvancedModifiableKeyStoreDecorator.java Outdated
try {
return keyStoreService.resolveKeyPassword(credentialSourceSupplier);
} catch (Exception e) {
throw new OperationFailedException(e);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

etc

@bstansberry
Copy link
Contributor

This should get an approval by someone more familiar with elytron and with the requirements. It also needs to be out of the analysis phase so we know those requirements are set. :) Seems ok to me other than my notes about exception handling.

If there's additional external testing of this going on, please comment noting that and comment when that's done.

@fjuma
Copy link
Contributor Author

fjuma commented Jan 24, 2018

I've updated the exception handling.

The two test failures currently occurring on Windows (KeyStoresTestCase.testExportCertificatePem and KeyStoresTestCase.testGenerateCertificateSigningRequest) should be fixed once Core has been upgraded to Elytron 1.2.0.Beta12.

@fjuma fjuma mentioned this pull request Jan 25, 2018
Merged
@fjuma
Copy link
Contributor Author

fjuma commented Jan 25, 2018

Just a note that Martin Choma has moved this issue out of the analysis phase now so the requirements are set.

@bstansberry
Copy link
Contributor

retest this please

1 similar comment
@fjuma
Copy link
Contributor Author

fjuma commented Feb 5, 2018

retest this please

@jfdenise jfdenise mentioned this pull request Feb 5, 2018
Merged
@wildfly-ci
Copy link

Core - Full Integration Build 6593 outcome was FAILURE using a merge of 29f83bd
Summary: Execution timeout (new); tests failed: 1 (1 new), passed: 4106, ignored: 142 Build time: 02:01:54

Failed tests

org.jboss.as.test.clustering.cluster.ejb.remote.RemoteStatefulEJBConcurrentFailoverTestCase.test: java.util.concurrent.ExecutionException: javax.ejb.EJBException: org.infinispan.remoting.RemoteException: ISPN000217: Received exception from node-1, see cause for remote stack trace
	at java.util.concurrent.FutureTask.report(FutureTask.java:122)
	at java.util.concurrent.FutureTask.get(FutureTask.java:192)
	at org.jboss.as.test.clustering.cluster.ejb.remote.RemoteStatefulEJBConcurrentFailoverTestCase.test(RemoteStatefulEJBConcurrentFailoverTestCase.java:111)
	at org.jboss.as.test.clustering.cluster.ejb.remote.RemoteStatefulEJBConcurrentFailoverTestCase.test(RemoteStatefulEJBConcurrentFailoverTestCase.java:87)
Caused by: javax.ejb.EJBException: org.infinispan.remoting.RemoteException: ISPN000217: Received exception from node-1, see cause for remote stack trace
	at org.jboss.as.ejb3.remote.AssociationImpl.lambda$receiveInvocationRequest$0(AssociationImpl.java:219)
	at org.jboss.threads.EnhancedQueueExecutor.safeRun(EnhancedQueueExecutor.java:1979)
	at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.doRunTask(EnhancedQueueExecutor.java:1481)
	at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.run(EnhancedQueueExecutor.java:1348)
	at java.lang.Thread.run(Thread.java:748)
	Suppressed: javax.ejb.NoSuchEJBException: No such EJB: /remote-stateful-ejb-concurrent-failover-test/SlowStatefulIncrementorBean @ remote+http://[0:0:0:0:0:0:0:1]:8080
		at org.jboss.ejb.protocol.remote.EJBClientChannel$MethodInvocation.handleResponse(EJBClientChannel.java:1070)
		at org.jboss.ejb.protocol.remote.EJBClientChannel$MethodInvocation.handleResponse(EJBClientChannel.java:997)
		at org.jboss.remoting3.util.InvocationTracker.signalResponse(InvocationTracker.java:167)
		at org.jboss.ejb.protocol.remote.EJBClientChannel.processMessage(EJBClientChannel.java:186)
		at org.jboss.ejb.protocol.remote.EJBClientChannel.access$100(EJBClientChannel.java:112)
		at org.jboss.ejb.protocol.remote.EJBClientChannel$1$1.handleMessage(EJBClientChannel.java:675)
		at org.jboss.remoting3.remote.RemoteConnectionChannel.lambda$handleMessageData$3(RemoteConnectionChannel.java:430)
		at org.jboss.remoting3.EndpointImpl$TrackingExecutor.lambda$execute$0(EndpointImpl.java:926)
		at org.jboss.threads.EnhancedQueueExecutor.safeRun(EnhancedQueueExecutor.java:1979)
		at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.doRunTask(EnhancedQueueExecutor.java:1481)
		at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.run(EnhancedQueueExecutor.java:1374)
		... 1 more
------- Stdout: -------
10:52:12,135 INFO  [org.jboss.threads] (main) JBoss Threads version 2.3.0.Final
10:52:12,291 WARNING [org.jboss.as.arquillian.container.managed.ManagedDeployableContainer] (main) Bundles path is deprecated and no longer used.
10:52:12,297 INFO  [org.jboss.as.arquillian.container.managed.ManagedDeployableContainer] (main) Starting container with: [/usr/java/latest/bin/java, -D[Standalone], -Dorg.jboss.ejb.client.wildfly-testsuite-hack=true, -Xmx512m, -XX:MetaspaceSize=128m, -Djboss.dist=/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/../../../build/target/wildfly-12.0.0.Alpha1-SNAPSHOT, -Dmaven.repo.local=/store/repository, -Djava.net.preferIPv4Stack=false, -Djava.net.preferIPv6Addresses=true, -server, -Dts.timeout.factor=100, -Djbossas.ts.submodule.dir=/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering, -Djbossas.ts.integ.dir=/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/.., -Djbossas.ts.dir=/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/../.., -Djbossas.project.dir=/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/../../.., -Djava.io.tmpdir=/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/target, -Djboss.inst=/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/target/wildfly-1, -Djboss.bind.address=::1, -Djboss.bind.address.management=::1, -Djboss.bind.address.private=::1, -Djboss.default.multicast.address=ff13::1, -Djboss.node.name=node-1, -ea, -Djboss.home.dir=/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/target/wildfly-1, -Dorg.jboss.boot.log.file=/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/target/wildfly-1/standalone/log/server.log, -Dlogging.configuration=file:/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/target/wildfly-1/standalone/configuration/logging.properties, -jar, /store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/target/wildfly-1/jboss-modules.jar, -mp, /store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/target/wildfly-1/modules:/store/work/tc-work/29472398f1ae6497/full/build/target/wildfly-12.0.0.Alpha1-SNAPSHOT/modules:/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/target/modules, org.jboss.as.standalone, -Djboss.home.dir=/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/target/wildfly-1, -Djboss.server.base.dir=/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/target/wildfly-1/standalone, -Djboss.server.log.dir=/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/target/wildfly-1/standalone/log, -Djboss.server.config.dir=/store/work/tc-work/29472398f1ae6497/full/testsuite/integration/clustering/target/wildfly-1/standalone/configuration, -Dts.wildfly.version=12.0.0.Alpha1-SNAPSHOT, -c=standalone-full-ha.xml]
10:52:12,372 INFO  [org.jboss.remoting] (main) JBoss Remoting version 5.0.5.Final
10:52:12,489 INFO  [org.xnio] (main) XNIO version 3.6.0.Final
10:52:12,507 INFO  [org.xnio.nio] (main) XNIO NIO Implementation Version 3.6.0.Final
10:52:12,833 INFO  [org.wildfly.security] (main) ELY00001: WildFly Elytron version 1.2.0.Beta12
 [0m10:52:13,411 INFO  [org.jboss.modules] (main) JBoss Modules version 1.7.0.Beta3
 [0m [0m10:52:14,068 INFO  [org.jboss.msc] (main) JBoss MSC version 1.3.0.Final
 [0m [0m10:52:14,087 INFO  [org.jboss.threads] (main) JBoss Threads version 2.3.0.Final
 [0m [0m10:52:14,341 INFO  [org.jboss.as] (MSC service thread 1-2) WFLYSRV0049: WildFly Core 4.0.0.Beta1-SNAPSHOT "Kenny" starting
 [0m [0m10:52:16,896 INFO  [org.jboss.as.controller.management-deprecated] (Controller Boot Thread) WFLYCTL0028: Attribute 'security-realm' in the resource at address '/core-service=management/management-interface=http-interface' is deprecated, and may be removed in a future version. See the attribute description in the output of the read-resource-description operation to learn more about the deprecation.
 [0m [0m10:52:16,960 INFO  [org.jboss.as.controller.management-deprecated] (ServerService Thread Pool -- 3) WFLYCTL0028: Attribute 'security-realm' in the resource at address '/subsystem=undertow/server=default-server/https-listener=https' is deprecated, and may be removed in a future version. See the attribute description in the output of the read-resource-description operation to learn more about the deprecation.
 [0m [0m10:52:16,963 INFO  [org.wildfly.security] (ServerService Thread Pool -- 25) ELY00001: WildFly Elytron version 1.2.0.Beta12
 [0m [0m10:52:17,328 INFO  [org.jboss.as.server] (Controller Boot Thread) WFLYSRV0039: Creating http management service using socket-binding (management-http)
 [0m [0m10:52:17,359 INFO  [org.xnio] (MSC service thread 1-5) XNIO version 3.6.0.Final
 [0m [0m10:52:17,368 INFO  [org.xnio.nio] (MSC service thread 1-5) XNIO NIO Implementation Version 3.6.0.Final
 [0m [0m10:52:17,426 INFO  [org.jboss.as.clustering.infinispan] (ServerService Thread Pool -- 48) WFLYCLINF0001: Activating Infinispan subsystem.
 [0m [0m10:52:17,461 INFO  [org.jboss.as.clustering.jgroups] (ServerService Thread Pool -- 53) WFLYCLJG0001: Activating JGroups subsystem. JGroups version 3.6.14
 [0m [33m10:52:17,476 WARN  [org.jboss.as.txn] (ServerService Thread Pool -- 70) WFLYTX0013: The node-identifier attribute on the /subsystem=transactions is set to the default value. This is a danger for environments running multiple servers. Please make sure the attribute value is unique.
 [0m [0m10:52:17,486 INFO  [org.jboss.as.security] (ServerService Thread Pool -- 68) WFLYSEC0002: Activating Security Subsystem
 [0m [0m10:52:17,457 INFO  [org.jboss.as.jaxrs] (ServerService Thread Pool -- 50) WFLYRS0016: RESTEasy version 3.0.24.Final
 [0m [0m10:52:17,499 INFO  [org.jboss.remoting] (MSC service thread 1-2) JBoss Remoting version 5.0.5.Final
 [0m [0m10:52:17,502 INFO  [org.jboss.as.security] (MSC service thread 1-8) WFLYSEC0001: Current PicketBox version=5.0.2.Final
 [0m [0m10:52:17,518 INFO  [org.jboss.as.connector] (MSC service thread 1-7) WFLYJCA0009: Starting JCA Subsystem (WildFly/IronJacamar 1.4.6.Final)
 [0m [0m10:52:17,565 INFO  [org.jboss.as.webservices] (ServerService Thread Pool -- 72) WFLYWS0002: Activating WebServices Extension

@fjuma fjuma mentioned this pull request Feb 8, 2018
Merged
@bstansberry bstansberry added the Feature This PR adds a new feature to WildFly label Feb 9, 2018
@bstansberry
Copy link
Contributor

@fjuma What's the status here? Monday is about it for getting this into WF 12 and no one from the security team has reviewed this and there's no word on whether QE's ok with it. This also blocks #3055.

@fjuma
Copy link
Contributor Author

fjuma commented Feb 12, 2018

@mchoma Please add a comment here on the test status.

@darranl Please review.

Thanks.

@mchoma
Copy link
Contributor

mchoma commented Feb 12, 2018

I have marked EAP7-650 as Test Development done. There are no blockers on this. I am OK with getting this into WF12.

darranl
darranl reviewed Feb 12, 2018
View reviewed changes
elytron/src/main/java/org/wildfly/extension/elytron/KeyStoreService.java
@@ -271,6 +266,21 @@ boolean isModified() {
return trackingKeyStore.isModified();
}

char[] resolveKeyPassword(final ExceptionSupplier<CredentialSource, Exception> keyPasswordCredentialSourceSupplier) throws Exception {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not related to this PR but we also want at some point to look at KeyStore password re-use for the KeyManager resource as well.

@darranl
Copy link
Contributor

darranl commented Feb 12, 2018

Do we have any information about the new binary files so if anyone is debugging or needs to recreate them they know what they need?

@fjuma
[WFCORE-3305] Add more runtime operations to the Elytron key-store re…
7fc2e14 
…source for advanced KeyStore manipulation

The new operations are as follows:
* generate-key-pair
* generate-certificate-signing-request
* import-certificate
* export-certificate
* change-alias
@fjuma
[WFCORE-3425] Ensure the file that backs a KeyStore gets created if i…
1b4ef35 
…t doesn't exist and wasn't flagged as required when attempting to store the KeyStore to the file
@fjuma
Copy link
Contributor Author

fjuma commented Feb 12, 2018

@darranl I've added a readme file with information about the new binary files.

@darranl
Copy link
Contributor

darranl commented Feb 12, 2018

Thanks @fjuma looks good.

@wildfly-ci
Copy link

Core - Full Integration Build 6675 outcome was FAILURE using a merge of 1b4ef35
Summary: Execution timeout; tests failed: 12 (12 new), passed: 4011, ignored: 141 Build time: 02:00:42

Failed tests

org.jboss.as.test.integration.management.deploy.runtime.StatefulEJBRuntimeNameTestCase: java.lang.AssertionError: Failed to deploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
java.lang.AssertionError: 
Failed to deploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
	at org.jboss.as.test.integration.management.deploy.runtime.StatefulEJBRuntimeNameTestCase.setup(StatefulEJBRuntimeNameTestCase.java:67)
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
java.lang.AssertionError: 
Failed to undeploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
	at org.jboss.as.test.integration.management.deploy.runtime.StatefulEJBRuntimeNameTestCase.tearDown(StatefulEJBRuntimeNameTestCase.java:77)


org.jboss.as.test.integration.management.api.expression.ExpressionSubstitutionInContainerTestCase: 	at org.jboss.as.arquillian.container.ArchiveDeployer.createException(ArchiveDeployer.java:214)
	at org.jboss.as.arquillian.container.ArchiveDeployer.deployInternal(ArchiveDeployer.java:179)
	at org.jboss.as.arquillian.container.ArchiveDeployer.deployInternal(ArchiveDeployer.java:162)
	at org.jboss.as.arquillian.container.ArchiveDeployer.deploy(ArchiveDeployer.java:91)
	at org.jboss.as.arquillian.container.CommonDeployableContainer.deploy(CommonDeployableContainer.java:244)
	Suppressed: java.net.ConnectException: Connection refused
		at sun.nio.ch.SocketChannelImpl.checkConnect(Native Method)
		at sun.nio.ch.SocketChannelImpl.finishConnect(SocketChannelImpl.java:717)
		at org.xnio.nio.WorkerThread$ConnectHandle.handleReady(WorkerThread.java:327)
		at org.xnio.nio.WorkerThread.run(WorkerThread.java:591)
		at ...asynchronous invocation...(Unknown Source)
		at org.jboss.remoting3.EndpointImpl.connect(EndpointImpl.java:570)
		at org.jboss.remoting3.EndpointImpl.connect(EndpointImpl.java:532)
		at org.jboss.remoting3.EndpointImpl.connect(EndpointImpl.java:520)
		at org.jboss.as.protocol.ProtocolConnectionUtils.connect(ProtocolConnectionUtils.java:204)
		at org.jboss.as.protocol.ProtocolConnectionUtils.connectSync(ProtocolConnectionUtils.java:120)
		at org.jboss.as.protocol.ProtocolConnectionManager$EstablishingConnection.connect(ProtocolConnectionManager.java:259)
		at org.jboss.as.protocol.ProtocolConnectionManager.connect(ProtocolConnectionManager.java:70)
		at org.jboss.as.protocol.mgmt.ManagementClientChannelStrategy$Establishing.getChannel(ManagementClientChannelStrategy.java:167)
		at org.jboss.as.controller.client.impl.RemotingModelControllerClient.getOrCreateChannel(RemotingModelControllerClient.java:146)
		at org.jboss.as.controller.client.impl.RemotingModelControllerClient$1.getChannel(RemotingModelControllerClient.java:60)
		at org.jboss.as.protocol.mgmt.ManagementChannelHandler.executeRequest(ManagementChannelHandler.java:135)
		at org.jboss.as.protocol.mgmt.ManagementChannelHandler.executeRequest(ManagementChannelHandler.java:110)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeRequest(AbstractModelControllerClient.java:263)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.execute(AbstractModelControllerClient.java:168)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeForResult(AbstractModelControllerClient.java:147)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.execute(AbstractModelControllerClient.java:80)
		at org.jboss.as.controller.client.helpers.DelegatingModelControllerClient.execute(DelegatingModelControllerClient.java:68)
		at org.wildfly.plugin.core.DefaultDeploymentManager.execute(DefaultDeploymentManager.java:394)
		at org.wildfly.plugin.core.DefaultDeploymentManager.deploy(DefaultDeploymentManager.java:67)
		at org.jboss.as.arquillian.container.ArchiveDeployer.deployInternal(ArchiveDeployer.java:177)
		... 93 more
	Suppressed: java.net.ConnectException: WFLYPRT0053: Could not connect to remote+http://[::1]:9990. The connection failed
		at org.jboss.as.protocol.ProtocolConnectionUtils.connectSync(ProtocolConnectionUtils.java:128)
		at org.jboss.as.protocol.ProtocolConnectionManager$EstablishingConnection.connect(ProtocolConnectionManager.java:259)
		at org.jboss.as.protocol.ProtocolConnectionManager.connect(ProtocolConnectionManager.java:70)
		at org.jboss.as.protocol.mgmt.ManagementClientChannelStrategy$Establishing.getChannel(ManagementClientChannelStrategy.java:167)
		at org.jboss.as.controller.client.impl.RemotingModelControllerClient.getOrCreateChannel(RemotingModelControllerClient.java:146)
		at org.jboss.as.controller.client.impl.RemotingModelControllerClient$1.getChannel(RemotingModelControllerClient.java:60)
		at org.jboss.as.protocol.mgmt.ManagementChannelHandler.executeRequest(ManagementChannelHandler.java:135)
		at org.jboss.as.protocol.mgmt.ManagementChannelHandler.executeRequest(ManagementChannelHandler.java:110)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeRequest(AbstractModelControllerClient.java:263)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.execute(AbstractModelControllerClient.java:168)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeForResult(AbstractModelControllerClient.java:147)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.execute(AbstractModelControllerClient.java:80)
		at org.jboss.as.controller.client.helpers.DelegatingModelControllerClient.execute(DelegatingModelControllerClient.java:68)
		at org.wildfly.plugin.core.DefaultDeploymentManager.execute(DefaultDeploymentManager.java:394)
		at org.wildfly.plugin.core.DefaultDeploymentManager.deploy(DefaultDeploymentManager.java:67)
		at org.jboss.as.arquillian.container.ArchiveDeployer.deployInternal(ArchiveDeployer.java:177)
		... 93 more
	[CIRCULAR REFERENCE:java.net.ConnectException: Connection refused]


org.jboss.as.test.integration.management.deploy.runtime.ServletRuntimeNameTestCase: java.lang.AssertionError: Failed to deploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
java.lang.AssertionError: 
Failed to deploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
	at org.jboss.as.test.integration.management.deploy.runtime.ServletRuntimeNameTestCase.setup(ServletRuntimeNameTestCase.java:101)
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
java.lang.AssertionError: 
Failed to undeploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
	at org.jboss.as.test.integration.management.deploy.runtime.ServletRuntimeNameTestCase.tearDown(ServletRuntimeNameTestCase.java:111)


org.jboss.as.test.integration.management.deploy.runtime.StatefulEJBRemoteHomeRuntimeNameTestCase: java.lang.AssertionError: Failed to deploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
java.lang.AssertionError: 
Failed to deploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
	at org.jboss.as.test.integration.management.deploy.runtime.StatefulEJBRemoteHomeRuntimeNameTestCase.setup(StatefulEJBRemoteHomeRuntimeNameTestCase.java:85)
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
java.lang.AssertionError: 
Failed to undeploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
	at org.jboss.as.test.integration.management.deploy.runtime.StatefulEJBRemoteHomeRuntimeNameTestCase.tearDown(StatefulEJBRemoteHomeRuntimeNameTestCase.java:97)


org.jboss.as.test.integration.management.deploy.runtime.StatelessEJBRemoteHomeRuntimeNameTestCase: java.lang.AssertionError: Failed to deploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
java.lang.AssertionError: 
Failed to deploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
	at org.jboss.as.test.integration.management.deploy.runtime.StatelessEJBRemoteHomeRuntimeNameTestCase.setup(StatelessEJBRemoteHomeRuntimeNameTestCase.java:85)
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
java.lang.AssertionError: 
Failed to undeploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
	at org.jboss.as.test.integration.management.deploy.runtime.StatelessEJBRemoteHomeRuntimeNameTestCase.tearDown(StatelessEJBRemoteHomeRuntimeNameTestCase.java:96)


org.jboss.as.test.integration.management.api.web.VirtualServerTestCase: 	at org.jboss.as.arquillian.container.ArchiveDeployer.createException(ArchiveDeployer.java:214)
	at org.jboss.as.arquillian.container.ArchiveDeployer.deployInternal(ArchiveDeployer.java:179)
	at org.jboss.as.arquillian.container.ArchiveDeployer.deployInternal(ArchiveDeployer.java:162)
	at org.jboss.as.arquillian.container.ArchiveDeployer.deploy(ArchiveDeployer.java:91)
	at org.jboss.as.arquillian.container.CommonDeployableContainer.deploy(CommonDeployableContainer.java:244)
	Suppressed: java.net.ConnectException: Connection refused
		at sun.nio.ch.SocketChannelImpl.checkConnect(Native Method)
		at sun.nio.ch.SocketChannelImpl.finishConnect(SocketChannelImpl.java:717)
		at org.xnio.nio.WorkerThread$ConnectHandle.handleReady(WorkerThread.java:327)
		at org.xnio.nio.WorkerThread.run(WorkerThread.java:591)
		at ...asynchronous invocation...(Unknown Source)
		at org.jboss.remoting3.EndpointImpl.connect(EndpointImpl.java:570)
		at org.jboss.remoting3.EndpointImpl.connect(EndpointImpl.java:532)
		at org.jboss.remoting3.EndpointImpl.connect(EndpointImpl.java:520)
		at org.jboss.as.protocol.ProtocolConnectionUtils.connect(ProtocolConnectionUtils.java:204)
		at org.jboss.as.protocol.ProtocolConnectionUtils.connectSync(ProtocolConnectionUtils.java:120)
		at org.jboss.as.protocol.ProtocolConnectionManager$EstablishingConnection.connect(ProtocolConnectionManager.java:259)
		at org.jboss.as.protocol.ProtocolConnectionManager.connect(ProtocolConnectionManager.java:70)
		at org.jboss.as.protocol.mgmt.ManagementClientChannelStrategy$Establishing.getChannel(ManagementClientChannelStrategy.java:167)
		at org.jboss.as.controller.client.impl.RemotingModelControllerClient.getOrCreateChannel(RemotingModelControllerClient.java:146)
		at org.jboss.as.controller.client.impl.RemotingModelControllerClient$1.getChannel(RemotingModelControllerClient.java:60)
		at org.jboss.as.protocol.mgmt.ManagementChannelHandler.executeRequest(ManagementChannelHandler.java:135)
		at org.jboss.as.protocol.mgmt.ManagementChannelHandler.executeRequest(ManagementChannelHandler.java:110)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeRequest(AbstractModelControllerClient.java:263)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.execute(AbstractModelControllerClient.java:168)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeForResult(AbstractModelControllerClient.java:147)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.execute(AbstractModelControllerClient.java:80)
		at org.jboss.as.controller.client.helpers.DelegatingModelControllerClient.execute(DelegatingModelControllerClient.java:68)
		at org.wildfly.plugin.core.DefaultDeploymentManager.execute(DefaultDeploymentManager.java:394)
		at org.wildfly.plugin.core.DefaultDeploymentManager.deploy(DefaultDeploymentManager.java:67)
		at org.jboss.as.arquillian.container.ArchiveDeployer.deployInternal(ArchiveDeployer.java:177)
		... 93 more
	Suppressed: java.net.ConnectException: WFLYPRT0053: Could not connect to remote+http://[::1]:9990. The connection failed
		at org.jboss.as.protocol.ProtocolConnectionUtils.connectSync(ProtocolConnectionUtils.java:128)
		at org.jboss.as.protocol.ProtocolConnectionManager$EstablishingConnection.connect(ProtocolConnectionManager.java:259)
		at org.jboss.as.protocol.ProtocolConnectionManager.connect(ProtocolConnectionManager.java:70)
		at org.jboss.as.protocol.mgmt.ManagementClientChannelStrategy$Establishing.getChannel(ManagementClientChannelStrategy.java:167)
		at org.jboss.as.controller.client.impl.RemotingModelControllerClient.getOrCreateChannel(RemotingModelControllerClient.java:146)
		at org.jboss.as.controller.client.impl.RemotingModelControllerClient$1.getChannel(RemotingModelControllerClient.java:60)
		at org.jboss.as.protocol.mgmt.ManagementChannelHandler.executeRequest(ManagementChannelHandler.java:135)
		at org.jboss.as.protocol.mgmt.ManagementChannelHandler.executeRequest(ManagementChannelHandler.java:110)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeRequest(AbstractModelControllerClient.java:263)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.execute(AbstractModelControllerClient.java:168)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeForResult(AbstractModelControllerClient.java:147)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.execute(AbstractModelControllerClient.java:80)
		at org.jboss.as.controller.client.helpers.DelegatingModelControllerClient.execute(DelegatingModelControllerClient.java:68)
		at org.wildfly.plugin.core.DefaultDeploymentManager.execute(DefaultDeploymentManager.java:394)
		at org.wildfly.plugin.core.DefaultDeploymentManager.deploy(DefaultDeploymentManager.java:67)
		at org.jboss.as.arquillian.container.ArchiveDeployer.deployInternal(ArchiveDeployer.java:177)
		... 93 more
	[CIRCULAR REFERENCE:java.net.ConnectException: Connection refused]


org.jboss.as.test.integration.management.deploy.runtime.StatelessEJBRuntimeNameTestCase: java.lang.AssertionError: Failed to deploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
java.lang.AssertionError: 
Failed to deploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
	at org.jboss.as.test.integration.management.deploy.runtime.StatelessEJBRuntimeNameTestCase.setup(StatelessEJBRuntimeNameTestCase.java:67)
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
java.lang.AssertionError: 
Failed to undeploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
	at org.jboss.as.test.integration.management.deploy.runtime.StatelessEJBRuntimeNameTestCase.tearDown(StatelessEJBRuntimeNameTestCase.java:77)


org.jboss.as.test.integration.management.deploy.runtime.JaxrsRuntimeNameTestCase: 	at org.jboss.as.arquillian.container.ArchiveDeployer.deployInternal(ArchiveDeployer.java:184)
	at org.jboss.as.arquillian.container.ArchiveDeployer.deployInternal(ArchiveDeployer.java:162)
	at org.jboss.as.arquillian.container.ArchiveDeployer.deploy(ArchiveDeployer.java:91)
	at org.jboss.as.arquillian.container.CommonDeployableContainer.deploy(CommonDeployableContainer.java:244)
------- Stdout: -------
09:38:56,571 WARN  [org.jboss.as.arquillian.container.ArchiveDeployer] (main) Failed to undeploy hello-rs.war: WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available


org.jboss.as.test.integration.management.api.web.ListenerTestCase: 	at org.jboss.as.arquillian.container.ArchiveDeployer.createException(ArchiveDeployer.java:214)
	at org.jboss.as.arquillian.container.ArchiveDeployer.deployInternal(ArchiveDeployer.java:179)
	at org.jboss.as.arquillian.container.ArchiveDeployer.deployInternal(ArchiveDeployer.java:162)
	at org.jboss.as.arquillian.container.ArchiveDeployer.deploy(ArchiveDeployer.java:91)
	at org.jboss.as.arquillian.container.CommonDeployableContainer.deploy(CommonDeployableContainer.java:244)
	Suppressed: java.net.ConnectException: WFLYPRT0053: Could not connect to remote+http://[::1]:9990. The connection failed
		at org.jboss.as.protocol.ProtocolConnectionUtils.connectSync(ProtocolConnectionUtils.java:128)
		at org.jboss.as.protocol.ProtocolConnectionManager$EstablishingConnection.connect(ProtocolConnectionManager.java:259)
		at org.jboss.as.protocol.ProtocolConnectionManager.connect(ProtocolConnectionManager.java:70)
		at org.jboss.as.protocol.mgmt.ManagementClientChannelStrategy$Establishing.getChannel(ManagementClientChannelStrategy.java:167)
		at org.jboss.as.controller.client.impl.RemotingModelControllerClient.getOrCreateChannel(RemotingModelControllerClient.java:146)
		at org.jboss.as.controller.client.impl.RemotingModelControllerClient$1.getChannel(RemotingModelControllerClient.java:60)
		at org.jboss.as.protocol.mgmt.ManagementChannelHandler.executeRequest(ManagementChannelHandler.java:135)
		at org.jboss.as.protocol.mgmt.ManagementChannelHandler.executeRequest(ManagementChannelHandler.java:110)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeRequest(AbstractModelControllerClient.java:263)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.execute(AbstractModelControllerClient.java:168)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeForResult(AbstractModelControllerClient.java:147)
		at org.jboss.as.controller.client.impl.AbstractModelControllerClient.execute(AbstractModelControllerClient.java:80)
		at org.jboss.as.controller.client.helpers.DelegatingModelControllerClient.execute(DelegatingModelControllerClient.java:68)
		at org.wildfly.plugin.core.DefaultDeploymentManager.execute(DefaultDeploymentManager.java:394)
		at org.wildfly.plugin.core.DefaultDeploymentManager.deploy(DefaultDeploymentManager.java:67)
		at org.jboss.as.arquillian.container.ArchiveDeployer.deployInternal(ArchiveDeployer.java:177)
		... 93 more
	Caused by: java.net.ConnectException: Connection refused
		at sun.nio.ch.SocketChannelImpl.checkConnect(Native Method)
		at sun.nio.ch.SocketChannelImpl.finishConnect(SocketChannelImpl.java:717)
		at org.xnio.nio.WorkerThread$ConnectHandle.handleReady(WorkerThread.java:327)
		at org.xnio.nio.WorkerThread.run(WorkerThread.java:591)
		at ...asynchronous invocation...(Unknown Source)
		at org.jboss.remoting3.EndpointImpl.connect(EndpointImpl.java:570)
		at org.jboss.remoting3.EndpointImpl.connect(EndpointImpl.java:532)
		at org.jboss.remoting3.EndpointImpl.connect(EndpointImpl.java:520)
		at org.jboss.as.protocol.ProtocolConnectionUtils.connect(ProtocolConnectionUtils.java:204)
		at org.jboss.as.protocol.ProtocolConnectionUtils.connectSync(ProtocolConnectionUtils.java:120)
		... 108 more
	[CIRCULAR REFERENCE:java.net.ConnectException: Connection refused]
	[CIRCULAR REFERENCE:java.net.ConnectException: Connection refused]
------- Stdout: -------
 [0m09:38:56,375 INFO  [org.jboss.as.ejb3] (MSC service thread 1-1) WFLYEJB0482: Strict pool mdb-strict-max-pool is using a max instance size of 16 (per class), which is derived from the number of CPUs on this host.
 [0m09:38:56,388 INFO  [org.jboss.as.test.integration.security.common.AbstractBaseSecurityRealmsServerSetupTask] (main) Adding security realm ssl-realm
 [0m09:38:56,386 INFO  [org.jboss.as.clustering.infinispan] (ServerService Thread Pool -- 42) WFLYCLINF0001: Activating Infinispan subsystem.
 [0m09:38:56,390 ERROR [org.jboss.as.arquillian.container.ServerSetupObserver] (main) Setup failed during setup. Offending class 'org.jboss.as.test.integration.management.api.web.ListenerTestCase$SecurityRealmsSetup@1de300e': java.io.IOException: java.net.ConnectException: WFLYPRT0053: Could not connect to remote+http://[::1]:9990. The connection failed
	at org.jboss.as.controller.client.impl.AbstractModelControllerClient.executeForResult(AbstractModelControllerClient.java:149)
	at org.jboss.as.controller.client.impl.AbstractModelControllerClient.execute(AbstractModelControllerClient.java:80)
	at org.jboss.as.controller.client.helpers.DelegatingModelControllerClient.execute(DelegatingModelControllerClient.java:68)
	at org.jboss.as.test.integration.security.common.CoreUtils.applyUpdate(CoreUtils.java:187)
	at org.jboss.as.test.integration.security.common.CoreUtils.applyUpdates(CoreUtils.java:182)
	at org.jboss.as.test.integration.security.common.AbstractBaseSecurityRealmsServerSetupTask.setup(AbstractBaseSecurityRealmsServerSetupTask.java:214)
	at org.jboss.as.test.integration.security.common.AbstractBaseSecurityRealmsServerSetupTask.setup(AbstractBaseSecurityRealmsServerSetupTask.java:105)
	at org.jboss.as.test.integration.security.common.AbstractSecurityRealmsServerSetupTask.setup(AbstractSecurityRealmsServerSetupTask.java:45)
	at org.jboss.as.arquillian.container.ServerSetupObserver$ServerSetupTaskHolder.setup(ServerSetupObserver.java:185)


org.jboss.as.test.integration.management.deploy.runtime.TimerEJBRuntimeNameTestCase: java.lang.AssertionError: Failed to deploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
java.lang.AssertionError: 
Failed to deploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
	at org.jboss.as.test.integration.management.deploy.runtime.TimerEJBRuntimeNameTestCase.setup(TimerEJBRuntimeNameTestCase.java:80)
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
java.lang.AssertionError: 
Failed to undeploy: {
    "outcome" => "failed",
    "failure-description" => "WFLYCTL0379: System boot is in process; execution of remote management operations is not currently available"
}
	at org.jboss.as.test.integration.management.deploy.runtime.TimerEJBRuntimeNameTestCase.tearDown(TimerEJBRuntimeNameTestCase.java:90)


org.jboss.as.test.integration.management.console.WebConsoleRedirectionTestCase.testRedirectionInAdminMode: 	at org.jboss.as.test.integration.management.util.ServerReload.executeReload(ServerReload.java:139)
	at org.jboss.as.test.integration.management.util.ServerReload.executeReload(ServerReload.java:133)
	at org.jboss.as.test.integration.management.util.ServerReload.executeReloadAndWaitForCompletion(ServerReload.java:114)
	at org.jboss.as.test.integration.management.util.ServerReload.executeReloadAndWaitForCompletion(ServerReload.java:75)
	at org.jboss.as.test.integration.management.console.WebConsoleRedirectionTestCase.testRedirectionInAdminMode(WebConsoleRedirectionTestCase.java:52)



##### there are 2 more failed tests, see build details

@bstansberry
Copy link
Contributor

retest this please

@bstansberry bstansberry merged commit 7e5735e into wildfly:master Feb 12, 2018
@bstansberry
Copy link
Contributor

@fjuma I resolved the two WFCORE's mentioned in the title but I'll leave any EAP7 etc manipulation to you. :)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bstansberry bstansberry bstansberry left review comments

@darranl darranl darranl approved these changes

Assignees
No one assigned
Labels
Feature This PR adds a new feature to WildFly security
Projects
None yet
Milestone
No milestone
5 participants
@fjuma @wildfly-ci @bstansberry @mchoma @darranl