Upgrade from jgroups-3.6.13 to 4.0.0.jar in keycloak 3.4.3-final.zip throws error

priyanka · May 10, 2020, 8:15pm

We’ve been using keycloak 3.4.3-final zip in our product for long and recently got to know that jgroups-3.6.13.final.jar has vulnerability so I wanted to upgrade jgroups from 3.6.13 to 4.0.0 jar without upgrading keycloak.
I tried by changing in build.gradle and only updating the vulnerable jgroup jar but I’m getting this error:

    01:34:34,051 ERROR [org.jboss.msc.service.fail] (ServerService Thread Pool -- 57) MSC000001: Failed to start service jboss.undertow.deployment.default-server.default-host./auth: org.jboss.msc.service.StartException in service jboss.undertow.deployment.default-server.default-host./auth: java.lang.RuntimeException: RESTEASY003325: Failed to construct public org.keycloak.services.resources.KeycloakApplication(javax.servlet.ServletContext,org.jboss.resteasy.core.Dispatcher)

    at org.wildfly.extension.undertow.deployment.UndertowDeploymentService$1.run(UndertowDeploymentService.java:84)

    at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511)

    at java.util.concurrent.FutureTask.run(FutureTask.java:266)

    at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)

    at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)

    at java.lang.Thread.run(Thread.java:748)

    at org.jboss.threads.JBossThread.run(JBossThread.java:320)

    Caused by: java.lang.RuntimeException: RESTEASY003325: Failed to construct public org.keycloak.services.resources.KeycloakApplication(javax.servlet.ServletContext,org.jboss.resteasy.core.Dispatcher)

    at org.jboss.resteasy.core.ConstructorInjectorImpl.construct(ConstructorInjectorImpl.java:162)

    at org.jboss.resteasy.spi.ResteasyProviderFactory.createProviderInstance(ResteasyProviderFactory.java:2298)

    at org.jboss.resteasy.spi.ResteasyDeployment.createApplication(ResteasyDeployment.java:340)

    at org.jboss.resteasy.spi.ResteasyDeployment.start(ResteasyDeployment.java:253)

    at org.jboss.resteasy.plugins.server.servlet.ServletContainerDispatcher.init(ServletContainerDispatcher.java:120)

    at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.init(HttpServletDispatcher.java:36)

    at io.undertow.servlet.core.LifecyleInterceptorInvocation.proceed(LifecyleInterceptorInvocation.java:117)

    at org.wildfly.extension.undertow.security.RunAsLifecycleInterceptor.init(RunAsLifecycleInterceptor.java:78)

    at io.undertow.servlet.core.LifecyleInterceptorInvocation.proceed(LifecyleInterceptorInvocation.java:103)

    at io.undertow.servlet.core.ManagedServlet$DefaultInstanceStrategy.start(ManagedServlet.java:250)

    at io.undertow.servlet.core.ManagedServlet.createServlet(ManagedServlet.java:133)

    at io.undertow.servlet.core.DeploymentManagerImpl$2.call(DeploymentManagerImpl.java:565)

    at io.undertow.servlet.core.DeploymentManagerImpl$2.call(DeploymentManagerImpl.java:536)

    at io.undertow.servlet.core.ServletRequestContextThreadSetupAction$1.call(ServletRequestContextThreadSetupAction.java:42)

    at io.undertow.servlet.core.ContextClassLoaderSetupAction$1.call(ContextClassLoaderSetupAction.java:43)

    at org.wildfly.extension.undertow.security.SecurityContextThreadSetupAction.lambda$create$0(SecurityContextThreadSetupAction.java:105)

    at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1508)

    at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1508)

    at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1508)

    at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1508)

    at io.undertow.servlet.core.DeploymentManagerImpl.start(DeploymentManagerImpl.java:578)

    at org.wildfly.extension.undertow.deployment.UndertowDeploymentService.startContext(UndertowDeploymentService.java:100)

    at org.wildfly.extension.undertow.deployment.UndertowDeploymentService$1.run(UndertowDeploymentService.java:81)

    ... 6 more

    Caused by: java.util.ServiceConfigurationError: org.keycloak.connections.infinispan.InfinispanConnectionProviderFactory: Provider org.keycloak.connections.infinispan.DefaultInfinispanConnectionProviderFactory could not be instantiated

    at java.util.ServiceLoader.fail(ServiceLoader.java:232)

    at java.util.ServiceLoader.access$100(ServiceLoader.java:185)

    at java.util.ServiceLoader$LazyIterator.nextService(ServiceLoader.java:384)

    at java.util.ServiceLoader$LazyIterator.next(ServiceLoader.java:404)

    at java.util.ServiceLoader$1.next(ServiceLoader.java:480)

    at org.keycloak.provider.DefaultProviderLoader.load(DefaultProviderLoader.java:47)

    at org.keycloak.provider.ProviderManager.load(ProviderManager.java:93)

    at org.keycloak.provider.ProviderManager.load(ProviderManager.java:121)

    at org.keycloak.services.DefaultKeycloakSessionFactory.loadFactories(DefaultKeycloakSessionFactory.java:194)

    at org.keycloak.services.DefaultKeycloakSessionFactory.init(DefaultKeycloakSessionFactory.java:77)

    at org.keycloak.services.resources.KeycloakApplication.createSessionFactory(KeycloakApplication.java:327)

    at org.keycloak.services.resources.KeycloakApplication.<init>(KeycloakApplication.java:117)

    at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)

    at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)

    at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)

    at java.lang.reflect.Constructor.newInstance(Constructor.java:423)

    at org.jboss.resteasy.core.ConstructorInjectorImpl.construct(ConstructorInjectorImpl.java:150)

    ... 28 more

    Caused by: java.lang.NoClassDefFoundError: org/jgroups/Channel

    at java.lang.Class.getDeclaredConstructors0(Native Method)

    at java.lang.Class.privateGetDeclaredConstructors(Class.java:2671)

    at java.lang.Class.getConstructor0(Class.java:3075)

    at java.lang.Class.newInstance(Class.java:412)

    at java.util.ServiceLoader$LazyIterator.nextService(ServiceLoader.java:380)

    ... 42 more

    Caused by: java.lang.ClassNotFoundException: org.jgroups.Channel from [Module "org.keycloak.keycloak-model-infinispan" from local module loader @3ab39c39 (finder: local module finder @2eee9593 (roots: /Applications/CA/Devtest10.6_7thMay/IdentityAccessManager/modules,/Applications/CA/Devtest10.6_7thMay/IdentityAccessManager/modules/system/layers/keycloak,/Applications/CA/Devtest10.6_7thMay/IdentityAccessManager/modules/system/layers/base))]

    at org.jboss.modules.ModuleClassLoader.findClass(ModuleClassLoader.java:198)

    at org.jboss.modules.ConcurrentClassLoader.performLoadClassUnchecked(ConcurrentClassLoader.java:412)

    at org.jboss.modules.ConcurrentClassLoader.performLoadClass(ConcurrentClassLoader.java:400)

    at org.jboss.modules.ConcurrentClassLoader.loadClass(ConcurrentClassLoader.java:116)

    ... 47 more

Please suggest if there is any solution to achieve this.

Thanks
Priyanka

Topic		Replies	Views
Keycloak Version 3.4 => 4.8 upgrade errors related to KUBE_PING while using JDBC_PING	0	195	April 16, 2021
Java's errors when run standalone.sh on Suse	2	2381	January 9, 2020
Upgrade fails (11.0.3 to 15.1.0) : Address already in use Configuring the server	1	559	December 21, 2021
Keycloak quickstart app-profile-saml-jee-jsp fails	1	1719	January 30, 2020
Keycloak-operator v16.0.0 fails on launch	0	1352	December 23, 2021

Upgrade from jgroups-3.6.13 to 4.0.0.jar in keycloak 3.4.3-final.zip throws error

Related Topics