Got com.sun.xml.wss.XWSSecurityException when ran some WSS security tests on AIX

[glassfishrobot]

build: V3.1.1 build 4 OS: AIX

Please note that this test only failed on AIX and it passed on all other OS/platforms.

Steps to reproduce the bug: 1.Checkout SQE workspace: cvs co appserver-sqe/bootstrap.xml (CVSROOT=:pserver:cvsguest@sunsw.us.oracle.com:/m/jws) cd appserver-sqe ant -f bootstrap.xml co-security 2. install GF V3.1.1, start domain domain1 3. Set env. variables S1AS_HOME (example: /export/sonia/v3/glassfishv3/glassfish SPS_HOME (example: /export/sonia/appserver-sqe) ANT_HOME JAVA_HOME 4. cd appserver-sqe/pe/security/wss/annotations/servletws, run "ant all", test failed with the following error: [exec] </S:Envelope>==== Received Message End ==== [exec] [exec] May 11, 2011 2:19:20 AM com.sun.xml.wss.impl.SecurityRecipient processMessagePolicy [exec] SEVERE: WSS0253: Message does not conform to configured policy: No Security Header found in message [exec] com.sun.xml.wss.XWSSecurityException: Message does not conform to configured policy [ TimestampPolicy(S) SignaturePolicy(P) ]: No Security Header found [exec] at com.sun.xml.wss.impl.SecurityRecipient.processMessagePolicy(SecurityRecipient.java:818) [exec] at com.sun.xml.wss.impl.SecurityRecipient.validateMessage(SecurityRecipient.java:261) [exec] at com.sun.xml.wss.provider.ClientSecurityAuthModule.validateResponse(ClientSecurityAuthModule.java:156) [exec] at com.sun.enterprise.security.jmac.config.GFServerConfigProvider$GFClientAuthContext.validateResponse(GFServerConfigProvider.java:1279) [exec] at com.sun.enterprise.security.webservices.ClientSecurityPipe.processSecureRequest(ClientSecurityPipe.java:211) [exec] at com.sun.enterprise.security.webservices.ClientSecurityPipe.process(ClientSecurityPipe.java:184) [exec] at com.sun.xml.ws.api.pipe.helper.PipeAdapter.processRequest(PipeAdapter.java:119) [exec] at com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:641) [exec] at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:600) [exec] at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:585) [exec] at com.sun.xml.ws.api.pipe.Fiber.runSync(Fiber.java:482) [exec] at com.sun.xml.ws.client.Stub.process(Stub.java:323) [exec] at com.sun.xml.ws.client.sei.SEIStub.doProcess(SEIStub.java:161) [exec] at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:113) [exec] at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:93) [exec] at com.sun.xml.ws.client.sei.SEIStub.invoke(SEIStub.java:144) [exec] at $Proxy49.getFedTax(Unknown Source) [exec] at com.sun.appserv.sqe.security.wss.annotations.client.TaxCalClient.callTaxService(TaxCalClient.java:85) [exec] at com.sun.appserv.sqe.security.wss.annotations.client.TaxCalClient.main(TaxCalClient.java:64) [exec] javax.xml.ws.WebServiceException: Cannot validate response for

{http://sun.com/appserv/sqe/security/taxws}

TaxPort [exec] at com.sun.enterprise.security.webservices.ClientSecurityPipe.processSecureRequest(ClientSecurityPipe.java:215) [exec] at com.sun.enterprise.security.webservices.ClientSecurityPipe.process(ClientSecurityPipe.java:184) [exec] at com.sun.xml.ws.api.pipe.helper.PipeAdapter.processRequest(PipeAdapter.java:119) [exec] at com.sun.xml.ws.api.pipe.Fiber.__doRun(Fiber.java:641) [exec] at com.sun.xml.ws.api.pipe.Fiber._doRun(Fiber.java:600) [exec] at com.sun.xml.ws.api.pipe.Fiber.doRun(Fiber.java:585) [exec] at com.sun.xml.ws.api.pipe.Fiber.runSync(Fiber.java:482) [exec] at com.sun.xml.ws.client.Stub.process(Stub.java:323) [exec] at com.sun.xml.ws.client.sei.SEIStub.doProcess(SEIStub.java:161) [exec] at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:113) [exec] at com.sun.xml.ws.client.sei.SyncMethodHandler.invoke(SyncMethodHandler.java:93) [exec] at com.sun.xml.ws.client.sei.SEIStub.invoke(SEIStub.java:144) [exec] at $Proxy49.getFedTax(Unknown Source) [exec] at com.sun.appserv.sqe.security.wss.annotations.client.TaxCalClient.callTaxService(TaxCalClient.java:85) [exec] at com.sun.appserv.sqe.security.wss.annotations.client.TaxCalClient.main(TaxCalClient.java:64) [exec] Caused by: com.sun.enterprise.security.jauth.AuthException: Message does not conform to configured policy [ TimestampPolicy(S) SignaturePolicy(P) ]: No Security Header found [exec] at com.sun.xml.wss.provider.ClientSecurityAuthModule.validateResponse(ClientSecurityAuthModule.java:161) [exec] at com.sun.enterprise.security.jmac.config.GFServerConfigProvider$GFClientAuthContext.validateResponse(GFServerConfigProvider.java:1279) [exec] at com.sun.enterprise.security.webservices.ClientSecurityPipe.processSecureRequest(ClientSecurityPipe.java:211) [exec] ... 14 more [exec] TaxCal client failed [exec] Generating report at /export/hudson/workspace/alex-aix3.1.1gf/appserver-sqe/test_results.xml [exec] [exec] [exec] ----------------------------------------- [exec] - sec-wss-annotate-servletwsendpoint-getFedTax: FAIL - [exec] ----------------------------------------- [exec] Total PASS: 0 [exec] Total FAIL: 1 [exec] Total DNR: 0 [exec] ----------------------------------

Environment

AIX, IBM jdk1.6.0

Affected Versions

[3.1.1]

[glassfishrobot]

• Issue Imported From: https://github.com/javaee/glassfish/issues/16619
• Original Issue Raised By:@glassfishrobot
• Original Issue Assigned To: @yaminikb

[glassfishrobot]

@glassfishrobot Commented @vbkumarjayanti said: Can you attach the sever.log for the failure.

[glassfishrobot]

@glassfishrobot Commented sonialiu said: attached server.log

[glassfishrobot]

@glassfishrobot Commented @vbkumarjayanti said: Made a change in Metro which when integrated into 3.1.1 might fix the issue.

[glassfishrobot]

@glassfishrobot Commented scatari said: Pre-approving for 3.1.1 as this is a test blocker.

[glassfishrobot]

@glassfishrobot Commented scatari said: Updated Metro integrated into 3.1.1 for B07.

[glassfishrobot]

@glassfishrobot Commented sonialiu said: I saw some new WSS failures(25+ more) which I did not see in b06, and the exceptions in the client side seems similar as I reported in the bug. To reproduce the new failures: 1. cd appserver-sqe/pe/security/wss/enforcepolicy 2. run "ant all" The following error displayed:

[exec] Jun 10, 2011 2:17:34 PM com.sun.xml.wss.impl.SecurityRecipient processMessagePolicy [exec] SEVERE: WSS0253: Message does not conform to configured policy: No Security Header found in message [exec] com.sun.xml.wss.XWSSecurityException: Message does not conform to configured policy [ TimestampPolicy(S) SignaturePolicy(P) ]: No Security Header found [exec] at com.sun.xml.wss.impl.SecurityRecipient.processMessagePolicy(SecurityRecipient.java:818) [exec] at com.sun.xml.wss.impl.SecurityRecipient.validateMessage(SecurityRecipient.java:261) [exec] at com.sun.xml.wss.provider.ClientSecurityAuthModule.validateResponse(ClientSecurityAuthModule.java:156) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) [exec] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) [exec] at java.lang.reflect.Method.invoke(Method.java:611) [exec] at com.sun.enterprise.security.jauth.AuthContext.invokePriv(AuthContext.java:143) [exec] at com.sun.enterprise.security.jauth.AuthContext$1.run(AuthContext.java:93) [exec] at java.security.AccessController.doPrivileged(AccessController.java:251) [exec] at com.sun.enterprise.security.jauth.AuthContext.invoke(AuthContext.java:90) [exec] at com.sun.enterprise.security.jauth.ConfigFile$ConfigClient.validateResponse(ConfigFile.java:619) [exec] at com.sun.enterprise.security.webservices.WebServiceSecurity.validateResponse(WebServiceSecurity.java:281) [exec] at com.sun.enterprise.security.webservices.WebServiceSecurity.validateResponse(WebServiceSecurity.java:263) [exec] at com.sun.enterprise.security.webservices.MessageLayerClientHandler.handleResponse(MessageLayerClientHandler.java:167) [exec] at com.sun.xml.rpc.client.HandlerChainImpl.handleResponse(HandlerChainImpl.java:131) [exec] at com.sun.xml.rpc.client.StreamingSender._callResponseHandlers(StreamingSender.java:810) [exec] at com.sun.xml.rpc.client.StreamingSender._preHandlingHook(StreamingSender.java:732) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxIF_Stub._preHandlingHook(TaxIF_Stub.java:436) [exec] at com.sun.xml.rpc.client.StreamingSender._send(StreamingSender.java:124) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxIF_Stub.getStateTax(TaxIF_Stub.java:277) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.testStateTax(TaxCalClient.java:114) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.main(TaxCalClient.java:52) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) [exec] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) [exec] at java.lang.reflect.Method.invoke(Method.java:611) [exec] at org.glassfish.appclient.client.acc.AppClientContainer.launch(AppClientContainer.java:438) [exec] at org.glassfish.appclient.client.AppClientFacade.launch(AppClientFacade.java:182) [exec] at org.glassfish.appclient.client.AppClientGroupFacade.main(AppClientGroupFacade.java:65) [exec] Jun 10, 2011 2:17:34 PM com.sun.enterprise.security.webservices.WebServiceSecurity validateResponse [exec] SEVERE: Container-auth: wss: Error validating response [exec] Throwable occurred: com.sun.enterprise.security.jauth.AuthException: Message does not conform to configured policy [ TimestampPolicy(S) SignaturePolicy(P) ]: No Security Header found [exec] at com.sun.xml.wss.provider.ClientSecurityAuthModule.validateResponse(ClientSecurityAuthModule.java:161) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) [exec] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) [exec] at java.lang.reflect.Method.invoke(Method.java:611) [exec] at com.sun.enterprise.security.jauth.AuthContext.invokePriv(AuthContext.java:143) [exec] at com.sun.enterprise.security.jauth.AuthContext$1.run(AuthContext.java:93) [exec] at java.security.AccessController.doPrivileged(AccessController.java:251) [exec] at com.sun.enterprise.security.jauth.AuthContext.invoke(AuthContext.java:90) [exec] at com.sun.enterprise.security.jauth.ConfigFile$ConfigClient.validateResponse(ConfigFile.java:619) [exec] at com.sun.enterprise.security.webservices.WebServiceSecurity.validateResponse(WebServiceSecurity.java:281) [exec] at com.sun.enterprise.security.webservices.WebServiceSecurity.validateResponse(WebServiceSecurity.java:263) [exec] at com.sun.enterprise.security.webservices.MessageLayerClientHandler.handleResponse(MessageLayerClientHandler.java:167) [exec] at com.sun.xml.rpc.client.HandlerChainImpl.handleResponse(HandlerChainImpl.java:131) [exec] at com.sun.xml.rpc.client.StreamingSender._callResponseHandlers(StreamingSender.java:810) [exec] at com.sun.xml.rpc.client.StreamingSender._preHandlingHook(StreamingSender.java:732) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxIF_Stub._preHandlingHook(TaxIF_Stub.java:436) [exec] at com.sun.xml.rpc.client.StreamingSender._send(StreamingSender.java:124) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxIF_Stub.getStateTax(TaxIF_Stub.java:277) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.testStateTax(TaxCalClient.java:114) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.main(TaxCalClient.java:52) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) [exec] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) [exec] at java.lang.reflect.Method.invoke(Method.java:611) [exec] at org.glassfish.appclient.client.acc.AppClientContainer.launch(AppClientContainer.java:438) [exec] at org.glassfish.appclient.client.AppClientFacade.launch(AppClientFacade.java:182) [exec] at org.glassfish.appclient.client.AppClientGroupFacade.main(AppClientGroupFacade.java:65) [exec] Jun 10, 2011 2:17:34 PM com.sun.enterprise.security.webservices.MessageLayerClientHandler handleResponse [exec] WARNING: SEC2005: Container-auth: wss: Error validating response [exec] Throwable occurred: com.sun.enterprise.security.jauth.AuthException: Message does not conform to configured policy [ TimestampPolicy(S) SignaturePolicy(P) ]: No Security Header found [exec] at com.sun.xml.wss.provider.ClientSecurityAuthModule.validateResponse(ClientSecurityAuthModule.java:161) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) [exec] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) [exec] at java.lang.reflect.Method.invoke(Method.java:611) [exec] at com.sun.enterprise.security.jauth.AuthContext.invokePriv(AuthContext.java:143) [exec] at com.sun.enterprise.security.jauth.AuthContext$1.run(AuthContext.java:93) [exec] at java.security.AccessController.doPrivileged(AccessController.java:251) [exec] at com.sun.enterprise.security.jauth.AuthContext.invoke(AuthContext.java:90) [exec] at com.sun.enterprise.security.jauth.ConfigFile$ConfigClient.validateResponse(ConfigFile.java:619) [exec] at com.sun.enterprise.security.webservices.WebServiceSecurity.validateResponse(WebServiceSecurity.java:281) [exec] at com.sun.enterprise.security.webservices.WebServiceSecurity.validateResponse(WebServiceSecurity.java:263) [exec] at com.sun.enterprise.security.webservices.MessageLayerClientHandler.handleResponse(MessageLayerClientHandler.java:167) [exec] at com.sun.xml.rpc.client.HandlerChainImpl.handleResponse(HandlerChainImpl.java:131) [exec] at com.sun.xml.rpc.client.StreamingSender._callResponseHandlers(StreamingSender.java:810) [exec] at com.sun.xml.rpc.client.StreamingSender._preHandlingHook(StreamingSender.java:732) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxIF_Stub._preHandlingHook(TaxIF_Stub.java:436) [exec] at com.sun.xml.rpc.client.StreamingSender._send(StreamingSender.java:124) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxIF_Stub.getStateTax(TaxIF_Stub.java:277) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.testStateTax(TaxCalClient.java:114) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.main(TaxCalClient.java:52) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) [exec] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) [exec] at java.lang.reflect.Method.invoke(Method.java:611) [exec] at org.glassfish.appclient.client.acc.AppClientContainer.launch(AppClientContainer.java:438) [exec] at org.glassfish.appclient.client.AppClientFacade.launch(AppClientFacade.java:182) [exec] at org.glassfish.appclient.client.AppClientGroupFacade.main(AppClientGroupFacade.java:65) [exec] java.rmi.RemoteException: response handler error: ; nested exception is: [exec] javax.xml.rpc.JAXRPCException: com.sun.enterprise.security.jauth.AuthException: Message does not conform to configured policy [ TimestampPolicy(S) SignaturePolicy(P) ]: No Security Header found [exec] at com.sun.xml.rpc.client.StreamingSender._callResponseHandlers(StreamingSender.java:812) [exec] at com.sun.xml.rpc.client.StreamingSender._preHandlingHook(StreamingSender.java:732) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxIF_Stub._preHandlingHook(TaxIF_Stub.java:436) [exec] at com.sun.xml.rpc.client.StreamingSender._send(StreamingSender.java:124) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxIF_Stub.getStateTax(TaxIF_Stub.java:277) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.testStateTax(TaxCalClient.java:114) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.main(TaxCalClient.java:52) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) [exec] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) [exec] at java.lang.reflect.Method.invoke(Method.java:611) [exec] at org.glassfish.appclient.client.acc.AppClientContainer.launch(AppClientContainer.java:438) [exec] at org.glassfish.appclient.client.AppClientFacade.launch(AppClientFacade.java:182) [exec] at org.glassfish.appclient.client.AppClientGroupFacade.main(AppClientGroupFacade.java:65) [exec] Caused by: javax.xml.rpc.JAXRPCException: com.sun.enterprise.security.jauth.AuthException: Message does not conform to configured policy [ TimestampPolicy(S) SignaturePolicy(P) ]: No Security Header found [exec] at com.sun.enterprise.security.webservices.MessageLayerClientHandler.handleResponse(MessageLayerClientHandler.java:172) [exec] at com.sun.xml.rpc.client.HandlerChainImpl.handleResponse(HandlerChainImpl.java:131) [exec] at com.sun.xml.rpc.client.StreamingSender._callResponseHandlers(StreamingSender.java:810) [exec] ... 13 more [exec] Unknown exception during getStateTax() [exec] Jun 10, 2011 2:17:35 PM com.sun.xml.wss.impl.filter.DumpFilter process [exec] INFO: ==== Sending Message Start ====

---

In the server.log I saw the following exceptions:

---

[#|2011-06-10T14:17:34.545-0700|SEVERE|glassfish3.1|javax.enterprise.system.core.security.com.sun.enterprise.security.webservices|_ThreadID=9;_ThreadName=Thread-6;|SEC2003: Container-auth: wss: Error securing response com.sun.enterprise.security.jauth.AuthException: java.lang.NullPointerException at com.sun.xml.wss.provider.ServerSecurityAuthModule.secureResponse(ServerSecurityAuthModule.java:156) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) at java.lang.reflect.Method.invoke(Method.java:611) at com.sun.enterprise.security.jauth.AuthContext.invokePriv(AuthContext.java:143) at com.sun.enterprise.security.jauth.AuthContext$1.run(AuthContext.java:93) at java.security.AccessController.doPrivileged(AccessController.java:251) at com.sun.enterprise.security.jauth.AuthContext.invoke(AuthContext.java:90) at com.sun.enterprise.security.jauth.ConfigFile$ConfigServer.secureResponse(ConfigFile.java:660) at com.sun.enterprise.security.webservices.WebServiceSecurity.secureResponse(WebServiceSecurity.java:198) at com.sun.enterprise.security.webservices.WebServiceSecurity.secureResponse(WebServiceSecurity.java:175) at com.sun.enterprise.security.webservices.ServletSystemHandlerDelegate.processResponse(ServletSystemHandlerDelegate.java:247) at org.glassfish.webservices.monitoring.JAXRPCEndpointImpl.processResponse(JAXRPCEndpointImpl.java:151) at com.sun.xml.rpc.server.http.JAXRPCServletDelegate.doPost(JAXRPCServletDelegate.java:468) at org.glassfish.webservices.JAXRPCServlet.doPost(JAXRPCServlet.java:114) at javax.servlet.http.HttpServlet.service(HttpServlet.java:754) at javax.servlet.http.HttpServlet.service(HttpServlet.java:847) at org.apache.catalina.core.StandardWrapper.service(StandardWrapper.java:1539) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:281) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175) at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:655) at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:595) at com.sun.enterprise.web.WebPipeline.invoke(WebPipeline.java:98) at com.sun.enterprise.web.PESessionLockingStandardPipeline.invoke(PESessionLockingStandardPipeline.java:91) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:162) at org.apache.catalina.connector.CoyoteAdapter.doService(CoyoteAdapter.java:330) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:231) at com.sun.enterprise.v3.services.impl.ContainerMapper.service(ContainerMapper.java:232) at com.sun.grizzly.http.ProcessorTask.invokeAdapter(ProcessorTask.java:822) at com.sun.grizzly.http.ProcessorTask.doProcess(ProcessorTask.java:719) at com.sun.grizzly.http.ProcessorTask.process(ProcessorTask.java:1013) at com.sun.grizzly.http.DefaultProtocolFilter.execute(DefaultProtocolFilter.java:225) at com.sun.grizzly.DefaultProtocolChain.executeProtocolFilter(DefaultProtocolChain.java:137) at com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:104) at com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:90) at com.sun.grizzly.http.HttpProtocolChain.execute(HttpProtocolChain.java:79) at com.sun.grizzly.ProtocolChainContextTask.doCall(ProtocolChainContextTask.java:54) at com.sun.grizzly.SelectionKeyContextTask.call(SelectionKeyContextTask.java:59) at com.sun.grizzly.ContextTask.run(ContextTask.java:71) at com.sun.grizzly.util.AbstractThreadPool$Worker.doWork(AbstractThreadPool.java:532) at com.sun.grizzly.util.AbstractThreadPool$Worker.run(AbstractThreadPool.java:513) at java.lang.Thread.run(Thread.java:736)

| #] Caused by: com.sun.enterprise.security.jauth.AuthException: java.lang.NullPointerException at com.sun.xml.wss.provider.ServerSecurityAuthModule.secureResponse(ServerSecurityAuthModule.java:156) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) at java.lang.reflect.Method.invoke(Method.java:611) at com.sun.enterprise.security.jauth.AuthContext.invokePriv(AuthContext.java:143) at com.sun.enterprise.security.jauth.AuthContext$1.run(AuthContext.java:93) at java.security.AccessController.doPrivileged(AccessController.java:251) at com.sun.enterprise.security.jauth.AuthContext.invoke(AuthContext.java:90) at com.sun.enterprise.security.jauth.ConfigFile$ConfigServer.secureResponse(ConfigFile.java:660) at com.sun.enterprise.security.webservices.WebServiceSecurity.secureResponse(WebServiceSecurity.java:198) at com.sun.enterprise.security.webservices.WebServiceSecurity.secureResponse(WebServiceSecurity.java:175) at com.sun.enterprise.security.webservices.ServletSystemHandlerDelegate.processResponse(ServletSystemHandlerDelegate.java:247) |

Here is the list of wss test cases failed in b07. appserver-sqe/pe/security/wss/annotations/ejbws appserver-sqe/pe/security/wss/annotations/servletws appserver-sqe/pe/security/wss/enforcepolicy/servletws appserver-sqe/pe/security/wss/dynencryptkey/servletws appserver-sqe/pe/security/wss/ejbws appserver-sqe/pe/security/wss/ejbclient appserver-sqe/pe/security/wss/annotations/ejbws appserver-sqe/pe/security/wss/annotations/servletws appserver-sqe/pe/security/wss/mesgmethod/ejbws appserver-sqe/pe/security/wss/mesgmethod/servletws appserver-sqe/pe/security/wss/mesgoperation/servletws appserver-sqe/pe/security/wss/mesgoperation/ejbws appserver-sqe/pe/security/wss/encrypt/servletws appserver-sqe/pe/security/wss/encrypt/ejbws appserver-sqe/pe/security/wss/clienthandler/ejbws appserver-sqe/pe/security/wss/clientmesgoperation/ejbws appserver-sqe/pe/security/wss/clientmesgoperation/servletws appserver-sqe/pe/security/wss/transpo/ejbws appserver-sqe/pe/security/wss/transpo/servletws appserver-sqe/pe/security/wss/runasubject/servletws appserver-sqe/pe/security/auditmodule/apps/ejbws appserver-sqe/pe/security/auditmodule/apps/servletws

– The exceptions in client side and server.log are attached.

[glassfishrobot]

@glassfishrobot Commented sonialiu said: server.log and client log for b07

[glassfishrobot]

@glassfishrobot Commented @vbkumarjayanti said: Why fix this issue in 3.1.1? It is a QE failure that occurs only on AIX

Which is the targeted build of 3.1.1 for this fix? TBD

Do regression tests exist for this issue? YES

Which tests should QA (re)run to verify the fix did not destabilize GlassFish? The GF Security WebService QE tests.

[glassfishrobot]

@glassfishrobot Commented sherryshen said: 3 runs on b10 are posted for comparing security failure on RunID 55, 56, 57. http://agni-1.us.oracle.com/JSPWiki/Wiki.jsp?page=GF311SQETest For webservices security failures: --b07 has more failures than b04. --b10 has less failures than b07 I looked into one failure as a reference to look at the test client output. html report gives machine name for hudson execution, and test case location. To look at server.log, please login the machine as a hudson user.

--The core result page gives the link of summary report

--summary report gives the link to module report

--module html report gives test case info http://agni-1.us.oracle.com/asqe-logs/export1/3.1.1/Results/build10/core/aix_security/html/test_results_security.html Sec::wss_servletws-runas-principal-mls-signatureID 1 fail, 1 pass /export/hudson/workspace/sherry-aix-311-security/appserver-sqe/pe/security/wss/runasubject/servletws/. Sec::wss_servletws-runas-principal-mls-signatureID pass Sec::wss_servletws-runas-principal-mls-usernametokenID fail

--The client output privide more info http://agni-1.us.oracle.com/asqe-logs/export1/3.1.1/Results/build10/core/aix_security/output/security.wss.output

runclient-ssl-pe: [echo] Test is running on Platform Edition! [exec] Jul 3, 2011 1:37:36 PM org.glassfish.appclient.client.acc.AppclientCommandArguments warnAboutPasswordUsage [exec] WARNING: ACC013: The -password option is deprecated and will likely be removed in a future release. Please use -passwordfile or let the app client container prompt for the username and/or password if they are needed to access a remote resource. [exec] Jul 3, 2011 1:37:39 PM com.sun.enterprise.deployment.node.SaxParserHandler error [exec] SEVERE: DPL8015: Invalid Deployment Descriptors in Deployment descriptor file META-INF/application-client.xml in archive [wss-taxcal-clientClient.jar]. [exec] Line 13 Column 26 – cvc-complex-type.2.4.b: The content of element 'port-component-ref' is not complete. One of '

{"http://java.sun.com/xml/ns/javaee":service-endpoint-interface}

' is expected. [exec] Jul 3, 2011 1:37:40 PM com.sun.enterprise.deployment.node.SaxParserHandler error [exec] SEVERE: DPL8015: Invalid Deployment Descriptors in Deployment descriptor file META-INF/application-client.xml in archive [wss-taxcal-clientClient.jar]. [exec] Line 14 Column 26 – cvc-complex-type.2.4.b: The content of element 'port-component-ref' is not complete. One of '

{"http://java.sun.com/xml/ns/javaee":service-endpoint-interface}

' is expected. [exec] Jul 3, 2011 1:37:40 PM com.sun.enterprise.deployment.ServiceReferenceDescriptor addRuntimePortInfo [exec] WARNING: Runtime port info SEI null is not declared in standard service-ref deployment descriptors (under port-component-ref), is this intended ? [exec] WS HOME appserver-sqe [exec] Jul 3, 2011 1:37:41 PM com.sun.enterprise.deployment.node.SaxParserHandler error [exec] SEVERE: DPL8015: Invalid Deployment Descriptors in Deployment descriptor file META-INF/application-client.xml in archive [wss-taxcal-clientClient.jar]. [exec] Line 13 Column 26 – cvc-complex-type.2.4.b: The content of element 'port-component-ref' is not complete. One of '

{"http://java.sun.com/xml/ns/javaee":service-endpoint-interface}

' is expected. [exec] Jul 3, 2011 1:37:41 PM com.sun.enterprise.deployment.node.SaxParserHandler error [exec] SEVERE: DPL8015: Invalid Deployment Descriptors in Deployment descriptor file META-INF/application-client.xml in archive [wss-taxcal-clientClient.jar]. [exec] Line 14 Column 26 – cvc-complex-type.2.4.b: The content of element 'port-component-ref' is not complete. One of '

{"http://java.sun.com/xml/ns/javaee":service-endpoint-interface}

' is expected. [exec] Jul 3, 2011 1:37:41 PM com.sun.enterprise.deployment.ServiceReferenceDescriptor addRuntimePortInfo [exec] WARNING: Runtime port info SEI null is not declared in standard service-ref deployment descriptors (under port-component-ref), is this intended ? [exec] 0.CN=localhost, OU=GlassFish, O=Oracle Corporation, L=Santa Clara, ST=California, C=US [exec] Jul 3, 2011 1:37:45 PM com.sun.xml.wss.impl.filter.DumpFilter process [exec] INFO: ==== Sending Message Start ==== [exec] <?xml version="1.0" encoding="UTF-8"?> [exec] [exec] [exec] [exec] 2011-07-03T20:37:43Z</wsu:Created> [exec] 2011-07-03T20:42:43Z</wsu:Expires> [exec] </wsu:Timestamp> [exec] MIICcTCCAdqgAwIBAgIETg6YPzANBgkqhkiG9w0BAQQFADB9MQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTEUMBIGA1UEBxMLU2FudGEgQ2xhcmExGzAZBgNVBAoTEk9yYWNsZSBDb3Jwb3JhdGlvbjESMBAGA1UECxMJR2xhc3NGaXNoMRIwEAYDVQQDEwlsb 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</wsse:BinarySecurityToken> [exec] [exec] [exec] [exec] [exec] </ds:CanonicalizationMethod> [exec] [exec] [exec] [exec] aPoqufNjuErl0oonWa9RfrFa0qo=</ds:DigestValue> [exec] </ds:Reference> [exec] [exec] [exec] 3K5jSLAEv0iIX6yhWqWdWU8ZW+U=</ds:DigestValue> [exec] </ds:Reference> [exec] </ds:SignedInfo> [exec] kGfwr0TBYbd6uZEYCppdt66iU2N1xNFzQdjt45Aze5OZigX7Itusu4Ad6Ni6DxKIsHr3L0JxS9E/ [exec] r+9JmNvMiMFe8ibzWG8sn7WelzSKKT/M/utxYCgW8fZ768BYgRe18fbY3vmnzD+46eWUqVqY3USY [exec] 1uiXaOlGsZo0ZXDfw2I=</ds:SignatureValue> [exec] [exec] [exec] [exec] </wsse:SecurityTokenReference> [exec] </ds:KeyInfo> [exec] </ds:Signature> [exec] </wsse:Security> [exec] </env:Header> [exec] [exec] [exec] </env:Body> [exec] </env:Envelope>==== Sending Message End ==== [exec] [exec] Jul 3, 2011 1:37:50 PM com.sun.xml.wss.impl.filter.DumpFilter process [exec] INFO: ==== Received Message Start ==== [exec] <?xml version="1.0" encoding="UTF-8"?> [exec] [exec] [exec] [exec] 2011-07-03T20:37:48Z</wsu:Created> [exec] 2011-07-03T20:42:48Z</wsu:Expires> [exec] </wsu:Timestamp> [exec] MIICcTCCAdqgAwIBAgIETg6YPzANBgkqhkiG9w0BAQQFADB9MQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTEUMBIGA1UEBxMLU2FudGEgQ2xhcmExGzAZBgNVBAoTEk9yYWNsZSBDb3Jwb3JhdGlvbjESMBAGA1UECxMJR2xhc3NGaXNoMRIwEAYDVQQDEwls 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</wsse:BinarySecurityToken> [exec] [exec] [exec] [exec] [exec] </ds:CanonicalizationMethod> [exec] [exec] [exec] [exec] 2HQZtBsNSV4PBh8/h6ZqX0w//C0=</ds:DigestValue> [exec] </ds:Reference> [exec] [exec] [exec] kc0z/ZcNhkYX++ys1XZbI/HUFdo=</ds:DigestValue> [exec] </ds:Reference> [exec] </ds:SignedInfo> [exec] GTwxOYTnZY/T9sQB3i14O1E1p7PYEP3x0GYDaGFvprIgswv5fjqmjs//OqxMCunzN52gboet8tSR [exec] 9r6eT3zsX8ZjOmDH2Nl/1VEWPhF3nRY6JngwRu6LM8PYiVWdlYgOlLcABMui9VYbLgwOdzP0n3r2 [exec] ztLodWT2m02NZX0MvA4=</ds:SignatureValue> [exec] [exec] [exec] [exec] </wsse:SecurityTokenReference> [exec] </ds:KeyInfo> [exec] </ds:Signature> [exec] </wsse:Security> [exec] </env:Header> [exec] [exec] [exec] CN=localhost, OU=GlassFish, O=Oracle Corporation, L=Santa Clara, ST=California, C=US [exec] </ns0:getRunAsPrincipalNameSignatureResponse> [exec] </env:Body> [exec] </env:Envelope>==== Received Message End ==== [exec] [exec] Got:CN=localhost, OU=GlassFish, O=Oracle Corporation, L=Santa Clara, ST=California, C=US;Expected:CN=localhost, OU=GlassFish, O=Oracle Corporation, L=Santa Clara, ST=California, C=US [exec] Jul 3, 2011 1:37:52 PM com.sun.xml.wss.impl.filter.DumpFilter process [exec] INFO: ==== Sending Message Start ==== [exec] <?xml version="1.0" encoding="UTF-8"?> [exec] [exec] [exec] MIICcTCCAdqgAwIBAgIETg6YPzANBgkqhkiG9w0BAQQFADB9MQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTEUMBIGA1UEBxMLU2FudGEgQ2xhcmExGzAZBgNVBAoTEk9yYWNsZSBDb3Jwb3JhdGlvbjESMBAGA1UECxMJR2xhc3NGaXNoMRIwEAYDVQQDEwlsb 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</wsse:BinarySecurityToken> [exec] [exec] [exec] [exec] [exec] [exec] </wsse:SecurityTokenReference> [exec] </ds:KeyInfo> [exec] [exec] d8Ga6jzVttFEnrZMNCBIUsYauwmdEBBS/RNIlyDMtGCySSvOUxPUCJju8g18D1bHyl7muuTbQJTt [exec] pugaj0WSRsogA+WM1mATFBDSHuealO0P5ZxEP/1DdhbXHeErVrXtF6gGdrj7TAxo7JHG6h59K+O4 [exec] rVdbs1pSYd/onfpgqKA=</xenc:CipherValue> [exec] </xenc:CipherData> [exec] </xenc:EncryptedKey> [exec] [exec] [exec] </xenc:ReferenceList> [exec] [exec] [exec] [exec] [exec] [exec] [exec] </wsse:SecurityTokenReference> [exec] </ds:KeyInfo> [exec] [exec] Q1/dXuJh7GdNU1yzng83YPGS7WdJCPwGyzp5z0eIrvFeR5SZA18ddYNdlssc8OiNn2NJw+coOOji [exec] QFRZ6xe7K8qGI4LHs1G5Afuq8t5S6R7CWzvgcR7u85UYEVK7/FmEadjT6i5y0iJn3YYkvqe0cAsh [exec] XhyJ0lIqycHvhEqy6TEhfB18pr9rZcCCWMvoHXi1Y2ymnVfp+kSUSLV8nCUiZ+HIomxN/B1MOXnr [exec] u48+jVwT3nt1eGZ2SMzBbKf+BElw5OMR+YF6gvbXgfgUK2Dy+9/Hb5FsXn41iaLSHCQ5muo1UcdJ [exec] zZmeXe6ZizcTjJlx9tzrtBbe336ObYW2k9oHvPlsr2D/GPH6+DVGGOOwNd/J3DzduHze6+c4stJS [exec] QAky7wR8NOWmDQEY2seWB1IPzIxmA3mMWCF6hPVWOSbjW7PAWOCeiTwg6JBAgI1V1h2kM5rMLrrv [exec] It1NGf3QnzpsjQ4IEQP09j6CObVN96KwmH0aUPl2YSpjNOMCv2UZJCV4ryraUIXrce/k2kqFlP05 [exec] 4jGYDHdN0kpNguN/4bEi4qhfXMHoOuJ1A0pMYDBqx8wiFuQAYr7V/B7EVBYJYTIH668I7Q+5P5ZX [exec] qYqDN31mGQoE7hLtaw0hzs4DrOP2gKS4HzFSQWhQzdFEl7EJ+GURBgPuClsOVpKkKpOUgR+ojU3D [exec] GCnNKqy20VTNTLtlmGQ2MmTkAMKezL8JkyIQxikpVD33fuzf3Rroi+NVbUIItSzalK39aDeQqjAB [exec] srZLBa4ZrTmDucpXDbdUJjaqvfkHj5NNgcS7iGVWr+6lQeBmUfEpY7JtsYuKNKyWkyatGo2w</xenc:CipherValue> [exec] </xenc:CipherData> [exec] </xenc:EncryptedData> [exec] </wsse:UsernameToken> [exec] </wsse:Security> [exec] </env:Header> [exec] [exec] [exec] </env:Body> [exec] </env:Envelope>==== Sending Message End ==== [exec] [exec] Jul 3, 2011 1:37:57 PM com.sun.xml.wss.impl.filter.DumpFilter process [exec] INFO: ==== Received Message Start ==== [exec] <?xml version="1.0" encoding="UTF-8"?> [exec] [exec] [exec] env:Server [exec] JAXRPCSERVLET28: Missing port information [exec] </env:Fault> [exec] </env:Body> [exec] </env:Envelope>==== Received Message End ==== [exec] [exec] Jul 3, 2011 1:37:57 PM com.sun.xml.wss.impl.SecurityRecipient processMessagePolicy [exec] SEVERE: WSS0253: Message does not conform to configured policy: No Security Header found in message [exec] com.sun.xml.wss.XWSSecurityException: Message does not conform to configured policy [ TimestampPolicy(S) SignaturePolicy(P) ]: No Security Header found [exec] at com.sun.xml.wss.impl.SecurityRecipient.processMessagePolicy(SecurityRecipient.java:818) [exec] at com.sun.xml.wss.impl.SecurityRecipient.validateMessage(SecurityRecipient.java:261) [exec] at com.sun.xml.wss.provider.ClientSecurityAuthModule.validateResponse(ClientSecurityAuthModule.java:156) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) [exec] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) [exec] at java.lang.reflect.Method.invoke(Method.java:611) [exec] at com.sun.enterprise.security.jauth.AuthContext.invokePriv(AuthContext.java:143) [exec] at com.sun.enterprise.security.jauth.AuthContext$1.run(AuthContext.java:93) [exec] at java.security.AccessController.doPrivileged(AccessController.java:251) [exec] at com.sun.enterprise.security.jauth.AuthContext.invoke(AuthContext.java:90) [exec] at com.sun.enterprise.security.jauth.ConfigFile$ConfigClient.validateResponse(ConfigFile.java:619) [exec] at com.sun.enterprise.security.webservices.WebServiceSecurity.validateResponse(WebServiceSecurity.java:281) [exec] at com.sun.enterprise.security.webservices.WebServiceSecurity.validateResponse(WebServiceSecurity.java:263) [exec] at com.sun.enterprise.security.webservices.MessageLayerClientHandler.handleResponse(MessageLayerClientHandler.java:167) [exec] at com.sun.xml.rpc.client.HandlerChainImpl.handleResponse(HandlerChainImpl.java:131) [exec] at com.sun.xml.rpc.client.StreamingSender._callResponseHandlers(StreamingSender.java:810) [exec] at com.sun.xml.rpc.client.StreamingSender._preHandlingHook(StreamingSender.java:732) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.StateTaxIF_Stub._preHandlingHook(StateTaxIF_Stub.java:298) [exec] at com.sun.xml.rpc.client.StreamingSender._send(StreamingSender.java:124) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.StateTaxIF_Stub.getRunAsPrincipalNameUsername(StateTaxIF_Stub.java:69) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.testRunAsPrincipalNameUsername(TaxCalClient.java:101) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.main(TaxCalClient.java:63) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) [exec] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) [exec] at java.lang.reflect.Method.invoke(Method.java:611) [exec] at org.glassfish.appclient.client.acc.AppClientContainer.launch(AppClientContainer.java:438) [exec] at org.glassfish.appclient.client.AppClientFacade.launch(AppClientFacade.java:182) [exec] at org.glassfish.appclient.client.AppClientGroupFacade.main(AppClientGroupFacade.java:65) [exec] Jul 3, 2011 1:37:57 PM com.sun.enterprise.security.webservices.WebServiceSecurity validateResponse [exec] SEVERE: Container-auth: wss: Error validating response [exec] Throwable occurred: com.sun.enterprise.security.jauth.AuthException: Message does not conform to configured policy [ TimestampPolicy(S) SignaturePolicy(P) ]: No Security Header found [exec] at com.sun.xml.wss.provider.ClientSecurityAuthModule.validateResponse(ClientSecurityAuthModule.java:161) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) [exec] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) [exec] at java.lang.reflect.Method.invoke(Method.java:611) [exec] at com.sun.enterprise.security.jauth.AuthContext.invokePriv(AuthContext.java:143) [exec] at com.sun.enterprise.security.jauth.AuthContext$1.run(AuthContext.java:93) [exec] at java.security.AccessController.doPrivileged(AccessController.java:251) [exec] at com.sun.enterprise.security.jauth.AuthContext.invoke(AuthContext.java:90) [exec] at com.sun.enterprise.security.jauth.ConfigFile$ConfigClient.validateResponse(ConfigFile.java:619) [exec] at com.sun.enterprise.security.webservices.WebServiceSecurity.validateResponse(WebServiceSecurity.java:281) [exec] at com.sun.enterprise.security.webservices.WebServiceSecurity.validateResponse(WebServiceSecurity.java:263) [exec] at com.sun.enterprise.security.webservices.MessageLayerClientHandler.handleResponse(MessageLayerClientHandler.java:167) [exec] at com.sun.xml.rpc.client.HandlerChainImpl.handleResponse(HandlerChainImpl.java:131) [exec] at com.sun.xml.rpc.client.StreamingSender._callResponseHandlers(StreamingSender.java:810) [exec] at com.sun.xml.rpc.client.StreamingSender._preHandlingHook(StreamingSender.java:732) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.StateTaxIF_Stub._preHandlingHook(StateTaxIF_Stub.java:298) [exec] at com.sun.xml.rpc.client.StreamingSender._send(StreamingSender.java:124) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.StateTaxIF_Stub.getRunAsPrincipalNameUsername(StateTaxIF_Stub.java:69) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.testRunAsPrincipalNameUsername(TaxCalClient.java:101) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.main(TaxCalClient.java:63) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) [exec] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) [exec] at java.lang.reflect.Method.invoke(Method.java:611) [exec] at org.glassfish.appclient.client.acc.AppClientContainer.launch(AppClientContainer.java:438) [exec] at org.glassfish.appclient.client.AppClientFacade.launch(AppClientFacade.java:182) [exec] at org.glassfish.appclient.client.AppClientGroupFacade.main(AppClientGroupFacade.java:65) [exec] Jul 3, 2011 1:37:57 PM com.sun.enterprise.security.webservices.MessageLayerClientHandler handleResponse [exec] WARNING: SEC2005: Container-auth: wss: Error validating response [exec] Throwable occurred: com.sun.enterprise.security.jauth.AuthException: Message does not conform to configured policy [ TimestampPolicy(S) SignaturePolicy(P) ]: No Security Header found [exec] at com.sun.xml.wss.provider.ClientSecurityAuthModule.validateResponse(ClientSecurityAuthModule.java:161) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) [exec] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) [exec] at java.lang.reflect.Method.invoke(Method.java:611) [exec] at com.sun.enterprise.security.jauth.AuthContext.invokePriv(AuthContext.java:143) [exec] at com.sun.enterprise.security.jauth.AuthContext$1.run(AuthContext.java:93) [exec] at java.security.AccessController.doPrivileged(AccessController.java:251) [exec] at com.sun.enterprise.security.jauth.AuthContext.invoke(AuthContext.java:90) [exec] at com.sun.enterprise.security.jauth.ConfigFile$ConfigClient.validateResponse(ConfigFile.java:619) [exec] at com.sun.enterprise.security.webservices.WebServiceSecurity.validateResponse(WebServiceSecurity.java:281) [exec] at com.sun.enterprise.security.webservices.WebServiceSecurity.validateResponse(WebServiceSecurity.java:263) [exec] at com.sun.enterprise.security.webservices.MessageLayerClientHandler.handleResponse(MessageLayerClientHandler.java:167) [exec] at com.sun.xml.rpc.client.HandlerChainImpl.handleResponse(HandlerChainImpl.java:131) [exec] at com.sun.xml.rpc.client.StreamingSender._callResponseHandlers(StreamingSender.java:810) [exec] at com.sun.xml.rpc.client.StreamingSender._preHandlingHook(StreamingSender.java:732) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.StateTaxIF_Stub._preHandlingHook(StateTaxIF_Stub.java:298) [exec] at com.sun.xml.rpc.client.StreamingSender._send(StreamingSender.java:124) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.StateTaxIF_Stub.getRunAsPrincipalNameUsername(StateTaxIF_Stub.java:69) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.testRunAsPrincipalNameUsername(TaxCalClient.java:101) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.main(TaxCalClient.java:63) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) [exec] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) [exec] at java.lang.reflect.Method.invoke(Method.java:611) [exec] at org.glassfish.appclient.client.acc.AppClientContainer.launch(AppClientContainer.java:438) [exec] at org.glassfish.appclient.client.AppClientFacade.launch(AppClientFacade.java:182) [exec] at org.glassfish.appclient.client.AppClientGroupFacade.main(AppClientGroupFacade.java:65) [exec] java.rmi.RemoteException: response handler error: ; nested exception is: [exec] javax.xml.rpc.JAXRPCException: com.sun.enterprise.security.jauth.AuthException: Message does not conform to configured policy [ TimestampPolicy(S) SignaturePolicy(P) ]: No Security Header found [exec] at com.sun.xml.rpc.client.StreamingSender._callResponseHandlers(StreamingSender.java:812) [exec] at com.sun.xml.rpc.client.StreamingSender._preHandlingHook(StreamingSender.java:732) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.StateTaxIF_Stub._preHandlingHook(StateTaxIF_Stub.java:298) [exec] at com.sun.xml.rpc.client.StreamingSender._send(StreamingSender.java:124) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.StateTaxIF_Stub.getRunAsPrincipalNameUsername(StateTaxIF_Stub.java:69) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.testRunAsPrincipalNameUsername(TaxCalClient.java:101) [exec] at com.sun.appserv.sqe.security.wss.servletws.taxcal.client.TaxCalClient.main(TaxCalClient.java:63) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [exec] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60) [exec] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37) [exec] at java.lang.reflect.Method.invoke(Method.java:611) [exec] at org.glassfish.appclient.client.acc.AppClientContainer.launch(AppClientContainer.java:438) [exec] Checking runas principal for username failed with unknown exception [exec] at org.glassfish.appclient.client.AppClientFacade.launch(AppClientFacade.java:182) [exec] at org.glassfish.appclient.client.AppClientGroupFacade.main(AppClientGroupFacade.java:65) [exec] Caused by: javax.xml.rpc.JAXRPCException: com.sun.enterprise.security.jauth.AuthException: Message does not conform to configured policy [ TimestampPolicy(S) SignaturePolicy(P) ]: No Security Header found [exec] at com.sun.enterprise.security.webservices.MessageLayerClientHandler.handleResponse(MessageLayerClientHandler.java:172) [exec] at com.sun.xml.rpc.client.HandlerChainImpl.handleResponse(HandlerChainImpl.java:131) [exec] at com.sun.xml.rpc.client.StreamingSender._callResponseHandlers(StreamingSender.java:810) [exec] ... 13 more [exec] Generating report at /export/hudson/workspace/sherry-aix-311-security/appserver-sqe/test_results.xml [exec] [exec] [exec] ----------------------------------------- [exec] - Sec::wss_servletws-runas-principal-mls-signature: PASS - [exec] - Sec::wss_servletws-runas-principal-mls-usernametoken: FAIL - [exec] ----------------------------------------- [exec] Total PASS: 1 [exec] Total FAIL: 1 [exec] Total DNR: 0 [exec] -----------------------------------------

[glassfishrobot]

@glassfishrobot Commented @vbkumarjayanti said: With latest AIX b10 the error seems to be only in the DUMPING of the messages enabled by the debug property of the SAM.

An AIX specific error is occuring when doing a JAXP Transform.

So the testcase should pass if debug property in the SAM configuration is removed.

Here is the error on the server.log. I have asked the ClassLoader experts on what the problem could be.

---

[#|2011-07-03T14:30:55.536-0700|WARNING|glassfish3.1.1|javax.enterprise.system.cor e.classloading.com.sun.enterprise.loader|_ThreadID=12;_ThreadName=Thread-9;|Input stream has been finalized or forced closed without being explicitly closed; stream instantiation reported in following stack trace java.lang.Throwable at com.sun.enterprise.loader.ASURLClassLoader$SentinelInputStream.(A SURLClassLoader.java:1230) at com.sun.enterprise.loader.ASURLClassLoader.getResourceAsStream(ASURLCla ssLoader.java:878) at org.glassfish.web.loader.WebappClassLoader.getResourceAsStream(WebappCl assLoader.java:1252) at com.ibm.xtq.xslt.drivers.SecuritySupport$6.run(Unknown Source) at java.security.AccessController.doPrivileged(AccessController.java:202) at com.ibm.xtq.xslt.drivers.SecuritySupport.getResourceAsStream(Unknown So urce) at com.ibm.xtq.xslt.drivers.XylemRuntimePreCompiler.getResource(Unknown So urce) at com.ibm.xtq.xslt.drivers.XylemRuntimePreCompiler.getPrecompiledRuntime( Unknown Source) at com.ibm.xtq.xslt.drivers.XSLTCompiler.compileRuntime10(Unknown Source) at com.ibm.xtq.xslt.drivers.XSLTCompiler.compileRuntime(Unknown Source) at com.ibm.xtq.xslt.drivers.XSLTCompiler.compile(Unknown Source) at com.ibm.xtq.xslt.jaxp.compiler.TransformerFactoryImpl.createTemplates(U nknown Source) at com.ibm.xtq.xslt.jaxp.AbstractTransformerFactory.newTemplates(Unknown S ource) at com.sun.xml.wss.impl.filter.TeeFilter.init(TeeFilter.java:164)

This issue should no longer be a release stopper for AIX.

[glassfishrobot]

@glassfishrobot Commented @vbkumarjayanti said: Adding comments from ClassLoader experts :

Tim Quinn Wrote :

Sahoo is correct; a stream has been opened but never closed by the code which opened it.

From a quick look at the stack trace, the stream is opened (as a side effect of classLoader.getResourceAsStream) from com.ibm.xtq.xslt.drivers.XylemRuntimePreCompiler, so presumably any fix would need to be there.

• Tim

On Jul 7, 2011, at 5:45 AM, Sahoo wrote:

Hi Kumar,

That indicates that some of the streams referring to resources returned by this class loader were still open, but there is no reference to those streams in code so finalizer is getting called. It further means there is some bad code somewhere which is not calling InputStream.close(). If this can be isolated, then one has to instrument the code to detect the bad code and fix it. btrace can be excellent option to debug such issues. Copying Tim for any additional input he may have, as he has dealt with such issues in the past and IIRC has introduced this error detection logic in ASURLClassLoader.

HTH, Sahoo

On Thursday 07 July 2011 12:58 PM, Kumar Jayanti wrote: Hi Shaoo, Siva,

There is a problem happening on AIX with Metro Security SQE runs. Just wanted to know if you have any idea/hints on what is wrong.

---

[#|2011-07-03T14:30:55.536-0700|WARNING|glassfish3.1.1|javax.enterprise.system.cor e.classloading.com.sun.enterprise.loader|_ThreadID=12;_ThreadName=Thread-9;|Input stream has been finalized or forced closed without being explicitly closed; stream instantiation reported in following stack trace java.lang.Throwable at com.sun.enterprise.loader.ASURLClassLoader$SentinelInputStream.(A SURLClassLoader.java:1230) at com.sun.enterprise.loader.ASURLClassLoader.getResourceAsStream(ASURLCla ssLoader.java:878) at org.glassfish.web.loader.WebappClassLoader.getResourceAsStream(WebappCl assLoader.java:1252) at com.ibm.xtq.xslt.drivers.SecuritySupport$6.run(Unknown Source) at java.security.AccessController.doPrivileged(AccessController.java:202) at com.ibm.xtq.xslt.drivers.SecuritySupport.getResourceAsStream(Unknown So urce) at com.ibm.xtq.xslt.drivers.XylemRuntimePreCompiler.getResource(Unknown So urce) at com.ibm.xtq.xslt.drivers.XylemRuntimePreCompiler.getPrecompiledRuntime( Unknown Source) at com.ibm.xtq.xslt.drivers.XSLTCompiler.compileRuntime10(Unknown Source) at com.ibm.xtq.xslt.drivers.XSLTCompiler.compileRuntime(Unknown Source) at com.ibm.xtq.xslt.drivers.XSLTCompiler.compile(Unknown Source) at com.ibm.xtq.xslt.jaxp.compiler.TransformerFactoryImpl.createTemplates(U nknown Source) at com.ibm.xtq.xslt.jaxp.AbstractTransformerFactory.newTemplates(Unknown S ource) at com.sun.xml.wss.impl.filter.TeeFilter.init(TeeFilter.java:164)

regards, kumar

[glassfishrobot]

@glassfishrobot Commented @vbkumarjayanti said: Dowgrading the bug since it is only an exception during debug. I am also trying to remove some dependence on Apache Xerces which might help remove this exception (need to verify still). The change will require a new Metro Integration

[glassfishrobot]

@glassfishrobot Commented ap2257 said: Are there plans to integrate this fix and a new Metro version in Glassfish (final GF 3.1.1) build? Need to know to plan the testing appropriately.

[glassfishrobot]

@glassfishrobot Commented @vbkumarjayanti said: Martin G had a discussion with Sathyan and it seems we are not going to integrate now.

[glassfishrobot]

@glassfishrobot Commented tmueller said: Bulk update to change fix version to "not determined" for all issues still open but with a fix version for a released version.

[glassfishrobot]

@glassfishrobot Commented File: all.log.b07 Attached By: sonialiu

[glassfishrobot]

@glassfishrobot Commented File: server.log Attached By: sonialiu

[glassfishrobot]

@glassfishrobot Commented File: server.log Attached By: sonialiu

[glassfishrobot]

@glassfishrobot Commented Was assigned to jefftancill

[glassfishrobot]

@glassfishrobot Commented This issue was imported from java.net JIRA GLASSFISH-16619

[glassfishrobot]

@glassfishrobot Commented Reported by sonialiu

[github-actions[bot]]

This issue has been marked as inactive and old and will be closed in 7 days if there is no further activity. If you want the issue to remain open please add a comment