Bug 1755237 - [downstream clone - 4.2.16] RHV Manager cannot start on EAP 7.2.4
Summary: [downstream clone - 4.2.16] RHV Manager cannot start on EAP 7.2.4
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Virtualization Manager
Classification: Red Hat
Component: ovirt-engine
Version: 4.3.0
Hardware: Unspecified
OS: Unspecified
urgent
urgent
Target Milestone: ovirt-4.2.16
: ---
Assignee: Martin Perina
QA Contact: Petr Matyáš
URL:
Whiteboard:
Depends On: 1754901
Blocks:
TreeView+ depends on / blocked
 
Reported: 2019-09-25 06:59 UTC by RHV bug bot
Modified: 2021-08-30 12:25 UTC (History)
5 users (show)

Fixed In Version:
Doc Type: No Doc Update
Doc Text:
Clone Of: 1754901
Environment:
Last Closed: 2019-10-01 17:40:08 UTC
oVirt Team: Infra
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker JBEAP-17619 0 Blocker Closed RHV won't start on EAP 7.2.4 2020-05-28 17:58:44 UTC
Red Hat Issue Tracker RHV-43231 0 None None None 2021-08-30 12:25:03 UTC
Red Hat Knowledge Base (Solution) 3452511 0 None None None 2019-09-27 14:18:02 UTC
Red Hat Product Errata RHBA-2019:2952 0 None None None 2019-10-01 17:40:09 UTC
oVirt gerrit 103520 0 'None' MERGED core: Fill jackson deserialization whitelist 2021-01-12 04:13:23 UTC
oVirt gerrit 103521 0 'None' MERGED core: Fill jackson deserialization whitelist 2021-01-12 04:13:23 UTC
oVirt gerrit 103524 0 'None' MERGED core: Fill jackson deserialization whitelist 2021-01-12 04:13:22 UTC
oVirt gerrit 103535 0 'None' MERGED core: Fill jackson deserialization whitelist 2021-01-12 04:13:20 UTC

Description RHV bug bot 2019-09-25 06:59:49 UTC 
+++ This bug is a downstream clone. The original bug is: +++
+++   bug 1754901 +++
======================================================================

+++ This bug is a downstream clone. The original bug is: +++
+++   bug 1754490 +++
======================================================================

As a part of EAP 7.2.4 there was upgrade of jackson library which disables deserializations of common classes and following exception is thrown:

org.codehaus.jackson.map.JsonMappingException: Illegal type (java.util.ArrayList) to deserialize: prevented for security reasons

This is similar issue which was raised in RHV 3.6 when EAP 6.4.20 was released. This issue was mitigated on RHV side (BZ1580319 and BZ1577407), but AFAIR it was decided that this is only mitigation for EAP 6.4.z and in EAP 7 will be used the fix which will not break backward compatibility.

(Originally by Martin Perina)

(Originally by rhv-bugzilla-bot)
Comment 1 RHV bug bot 2019-09-25 06:59:52 UTC 
Created attachment 1618181 [details]
Logs with full exception

(Originally by Martin Perina)

(Originally by rhv-bugzilla-bot)
Comment 6 Petr Matyáš 2019-09-27 12:42:31 UTC 
Updating all the setup packages and running engine-setup fixes the issue with jboss.
Comment 8 errata-xmlrpc 2019-10-01 17:40:08 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2019:2952
Note You need to log in before you can comment on or make changes to this bug.