[NEXUS-24995] WARN log messages when using Red Hat credentials for registry.redhat.io docker proxy - Sonatype JIRA

XML

Word

Printable

Details

Type: Bug
Status: New
Priority: Major
Resolution: Unresolved
Affects Version/s: 3.26.0
Fix Version/s: None
Component/s: Docker, Logging
Labels:
- lhf
- supportant

Story Points:
2
Notability:
3

Description

With a docker proxy to https://registry.redhat.io where credentials have been provided that are from Red Hat, something about the password makes Nexus print three WARN messages in the log:

2020-08-21 09:54:07,942+0200 WARN  [qtp304997904-1997]  u0043092 org.sonatype.nexus.security.PasswordHelper - Value appears to be already decrypted
java.lang.IllegalArgumentException: null
	at org.sonatype.nexus.security.PasswordHelper.decrypt(PasswordHelper.java:100)
	at org.sonatype.nexus.security.PasswordHelper.tryDecrypt(PasswordHelper.java:136)
	at org.sonatype.nexus.internal.httpclient.AuthenticationConfigurationDeserializer.deserialize(AuthenticationConfigurationDeserializer.java:61)
	at org.sonatype.nexus.internal.httpclient.AuthenticationConfigurationDeserializer.deserialize(AuthenticationConfigurationDeserializer.java:1)
	at com.fasterxml.jackson.databind.deser.impl.FieldProperty.deserializeAndSet(FieldProperty.java:138)
	at com.fasterxml.jackson.databind.deser.BeanDeserializer.vanillaDeserialize(BeanDeserializer.java:293)
	at com.fasterxml.jackson.databind.deser.BeanDeserializer.deserialize(BeanDeserializer.java:156)
	at com.fasterxml.jackson.databind.ObjectMapper._convert(ObjectMapper.java:4197)
	at com.fasterxml.jackson.databind.ObjectMapper.convertValue(ObjectMapper.java:4133)
	at org.sonatype.nexus.repository.config.internal.ConfigurationFacetImpl.convert(ConfigurationFacetImpl.java:75)
	at org.sonatype.nexus.repository.config.internal.ConfigurationFacetImpl.readSection(ConfigurationFacetImpl.java:84)
	at org.sonatype.nexus.repository.config.internal.ConfigurationFacetImpl.validateSection(ConfigurationFacetImpl.java:121)
	at org.sonatype.nexus.repository.httpclient.internal.HttpClientFacetImpl.doValidate(HttpClientFacetImpl.java:131)
...
...

It seems this WARN message is for trying to encrypt a password which is already encrypted. It should not be logged as a warning with long exception stack trace logged.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Mahendra Surani

Last Updated By:: Dawid Sawa

Team:: NXRM - Mad Max

Votes:: 1 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 08/21/20 08:48 AM

Updated:: 11/02/21 03:01 PM

Date of First Response:: 21/Aug/20 9:33 AM