1189141 – Clean-up tests which use Kerberos in the EAP testsuite

Bug 1189141 - Clean-up tests which use Kerberos in the EAP testsuite

Summary: Clean-up tests which use Kerberos in the EAP testsuite

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	JBoss Enterprise Application Platform 6
Classification:	JBoss
Component:	Testsuite
Sub Component:
Version:	6.4.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	high
Target Milestone:	ER3
Target Release:	EAP 6.4.0
Assignee:	jboss-set
QA Contact:	Petr Kremensky
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1033128 1105051 1143931
TreeView+	depends on / blocked

Reported:	2015-02-04 14:44 UTC by Josef Cacek
Modified:	2019-08-19 12:45 UTC (History)
CC List:	5 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2019-08-19 12:45:05 UTC
Type:	Bug
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Priority	Status	Summary	Last Updated
Red Hat Bugzilla	1173530	unspecified	CLOSED	Add test coverage for Kerberos authentication to Management CLI	2021-02-22 00:41:40 UTC
Red Hat Bugzilla	1174156	unspecified	CLOSED	EAP 6.4.0 Beta RN - Kerberos authentication for Management CLI does not work with IBM JDK - known issue	2021-02-22 00:41:40 UTC
Red Hat Bugzilla	1179710	unspecified	CLOSED	Kerberos authentication for EJB Client does not work with OracleJDK 1.6	2021-02-22 00:41:40 UTC
Red Hat Bugzilla	1185917	unspecified	CLOSED	GSSAPI in IBM JDK 7 strips square brackets from IPv6 SPNs	2021-02-22 00:41:40 UTC
Red Hat Bugzilla	1186129	unspecified	CLOSED	KDC IPv6 addresses are not supported in krb5.conf in IBM JDK 6	2021-02-22 00:41:40 UTC
Red Hat Bugzilla	1186132	unspecified	CLOSED	KDC IPv6 addresses are not supported in krb5.conf in OpenJDK 6	2021-02-22 00:41:40 UTC
Red Hat Bugzilla	1188632	high	CLOSED	IBM JDK: Wrong IPv6 address type used in TGS-REQ during kerberos authentication	2021-02-22 00:41:40 UTC
Red Hat Issue Tracker	WFLY-4313	Major	Resolved	Clean-up tests which use Kerberos in the WildFly testsuite	2017-06-28 06:26:03 UTC

Internal Links: 1173530 1174156 1179710 1185917 1186129 1186132 1188632

Description Josef Cacek 2015-02-04 14:44:15 UTC

Several issues related to Kerberos tests in EAP testsuite were reported.

Clean-up is needed to keep the testsuite runs stable. 

The proved-to-be-buggy environment configurations (Java vendor, version, IP stack) should be skipped during testing.

Comment 2 Marek Kopecky 2015-02-10 07:23:17 UTC

Kerberos errors occur occasionally across all platforms:
javax.security.auth.login.LoginException: Checksum failed

Examples of logs:
RHEL5 && Oracle JDK 1.6
https://jenkins.mw.lab.eng.bos.redhat.com/hudson/job/eap-6x-as-testsuite-rhel/51/RELEASE=6.4.0,jdk=java16_default,label_exp=eap-sustaining%20&&%20RHEL5%20&&%20x86/testReport/

Solaris10 && Oracle JDK 1.7
https://jenkins.mw.lab.eng.bos.redhat.com/hudson/job/eap-6x-as-testsuite-solaris/41/RELEASE=6.4.0,jdk=java17_default,label_exp=eap-sustaining%20&&%20solaris10%20&&%20x86/testReport/

Comment 4 Josef Cacek 2015-02-13 20:20:37 UTC

The problem seems to be related to test execution order (therefor it fails intermittently) and also related to used encryption mechanism.

Some test running before the failing Kerberos tests screws up the environment, because if single test (or group e.g. -Dtest=*LoginModuleTestCase) is executed the issue doesn't appear.

I personally suspect Bouncy Castle library, but it may be some other magic place too.

I will submit patch which reverts encryption mechanisms used in krb5.conf to "des-cbc-md5,des3-cbc-sha1-kd". It helps in my local tests.

Comment 6 Petr Kremensky 2015-03-04 11:36:34 UTC

Verified on EAP 6.4.0.ER3

Note You need to log in before you can comment on or make changes to this bug.