Build failed in Jenkins: ZooKeeper-trunk-owasp #376

Mon, 27 May 2019 02:37:30 -0700 

See 
<https://builds.apache.org/job/ZooKeeper-trunk-owasp/376/display/redirect?page=changes>

Changes:

[nkalmar] ZOOKEEPER-3392: Add admin command to display last snapshot information

------------------------------------------
[...truncated 21.01 KB...]
    [javac] Compiling 316 source files to 
<https://builds.apache.org/job/ZooKeeper-trunk-owasp/ws/build/classes>
    [javac] warning: [options] bootstrap class path not set in conjunction with 
-source 8
    [javac] 
<https://builds.apache.org/job/ZooKeeper-trunk-owasp/ws/zookeeper-server/src/main/java/org/apache/zookeeper/server/ClientCnxnLimitException.java>:26:
 warning: [serial] serializable class ClientCnxnLimitException has no 
definition of serialVersionUID
    [javac] public class ClientCnxnLimitException extends Exception {
    [javac]        ^
    [javac] 
<https://builds.apache.org/job/ZooKeeper-trunk-owasp/ws/zookeeper-server/src/main/java/org/apache/zookeeper/server/LogFormatter.java>:44:
 warning: [dep-ann] deprecated item is not annotated with @Deprecated
    [javac] public class LogFormatter {
    [javac]        ^
    [javac] 
<https://builds.apache.org/job/ZooKeeper-trunk-owasp/ws/zookeeper-server/src/main/java/org/apache/zookeeper/server/NIOServerCnxn.java>:247:
 warning: [cast] redundant cast to ByteBuffer
    [javac]                     b = (ByteBuffer) b.slice().limit(
    [javac]                         ^
    [javac] 
<https://builds.apache.org/job/ZooKeeper-trunk-owasp/ws/zookeeper-server/src/main/java/org/apache/zookeeper/server/persistence/FilePadding.java>:78:
 warning: [cast] redundant cast to ByteBuffer
    [javac]             fileChannel.write((ByteBuffer) fill.position(0), 
newFileSize - fill.remaining());
    [javac]                               ^
    [javac] 5 warnings

compile-test:
    [mkdir] Created dir: 
<https://builds.apache.org/job/ZooKeeper-trunk-owasp/ws/build/test/classes>
    [javac] Compiling 289 source files to 
<https://builds.apache.org/job/ZooKeeper-trunk-owasp/ws/build/test/classes>
    [javac] warning: [options] bootstrap class path not set in conjunction with 
-source 8
    [javac] 1 warning
    [javac] Compiling 11 source files to 
<https://builds.apache.org/job/ZooKeeper-trunk-owasp/ws/build/test/classes>
    [javac] warning: [options] bootstrap class path not set in conjunction with 
-source 8
    [javac] Note: Some input files use or override a deprecated API.
    [javac] Note: Recompile with -Xlint:deprecation for details.
    [javac] 1 warning
    [javac] Compiling 2 source files to 
<https://builds.apache.org/job/ZooKeeper-trunk-owasp/ws/build/test/classes>
    [javac] warning: [options] bootstrap class path not set in conjunction with 
-source 8
    [javac] Note: 
<https://builds.apache.org/job/ZooKeeper-trunk-owasp/ws/zookeeper-it/src/test/bench/org/apache/zookeeper/server/watch/WatchBench.java>
 uses or overrides a deprecated API.
    [javac] Note: Recompile with -Xlint:deprecation for details.
    [javac] 1 warning

init:

ivy-download:

ivy-taskdef:

ivy-init:

ivy-retrieve-owasp:
[ivy:retrieve] :: loading settings :: file = 
<https://builds.apache.org/job/ZooKeeper-trunk-owasp/ws/ivysettings.xml>
[ivy:retrieve] :: resolving dependencies :: 
org.apache.zookeeper#zookeeper;3.6.0-SNAPSHOT
[ivy:retrieve]  confs: [owasp]
[ivy:retrieve]  found org.owasp#dependency-check-ant;4.0.2 in maven2
[ivy:retrieve]  found org.owasp#dependency-check-core;4.0.2 in maven2
[ivy:retrieve]  found com.vdurmont#semver4j;2.2.0 in maven2
[ivy:retrieve]  found joda-time#joda-time;1.6 in maven2
[ivy:retrieve]  found org.slf4j#slf4j-api;1.7.25 in maven2
[ivy:retrieve]  found org.owasp#dependency-check-utils;4.0.2 in maven2
[ivy:retrieve]  found commons-io#commons-io;2.6 in maven2
[ivy:retrieve]  found org.apache.commons#commons-lang3;3.4 in maven2
[ivy:retrieve]  found com.google.code.gson#gson;2.8.5 in maven2
[ivy:retrieve]  found commons-collections#commons-collections;3.2.2 in maven2
[ivy:retrieve]  found org.apache.commons#commons-compress;1.18 in maven2
[ivy:retrieve]  found org.apache.commons#commons-text;1.3 in maven2
[ivy:retrieve]  found org.apache.lucene#lucene-core;7.6.0 in maven2
[ivy:retrieve]  found org.apache.lucene#lucene-analyzers-common;7.6.0 in maven2
[ivy:retrieve]  found org.apache.lucene#lucene-queryparser;7.6.0 in maven2
[ivy:retrieve]  found org.apache.lucene#lucene-queries;7.6.0 in maven2
[ivy:retrieve]  found org.apache.lucene#lucene-sandbox;7.6.0 in maven2
[ivy:retrieve]  found org.apache.velocity#velocity;1.7 in maven2
[ivy:retrieve]  found commons-lang#commons-lang;2.4 in maven2
[ivy:retrieve]  found org.glassfish#javax.json;1.0.4 in maven2
[ivy:retrieve]  found org.jsoup#jsoup;1.11.3 in maven2
[ivy:retrieve]  found com.sun.mail#mailapi;1.6.3 in maven2
[ivy:retrieve]  found com.google.guava#guava;27.0.1-jre in maven2
[ivy:retrieve]  found com.google.guava#failureaccess;1.0.1 in maven2
[ivy:retrieve]  found 
com.google.guava#listenablefuture;9999.0-empty-to-avoid-conflict-with-guava in 
maven2
[ivy:retrieve]  found com.google.code.findbugs#jsr305;3.0.2 in maven2
[ivy:retrieve]  found org.checkerframework#checker-qual;2.5.2 in maven2
[ivy:retrieve]  found com.google.errorprone#error_prone_annotations;2.2.0 in 
maven2
[ivy:retrieve]  found com.google.j2objc#j2objc-annotations;1.1 in maven2
[ivy:retrieve]  found org.codehaus.mojo#animal-sniffer-annotations;1.17 in 
maven2
[ivy:retrieve]  found com.h3xstream.retirejs#retirejs-core;3.0.1 in maven2
[ivy:retrieve]  found org.json#json;20140107 in maven2
[ivy:retrieve]  found com.esotericsoftware#minlog;1.3 in maven2
[ivy:retrieve]  found com.github.spullara.mustache.java#compiler;0.8.17 in 
maven2
[ivy:retrieve]  found com.h2database#h2;1.4.196 in maven2
[ivy:retrieve] :: resolution report :: resolve 1241ms :: artifacts dl 338ms
        ---------------------------------------------------------------------
        |                  |            modules            ||   artifacts   |
        |       conf       | number| search|dwnlded|evicted|| number|dwnlded|
        ---------------------------------------------------------------------
        |       owasp      |   35  |   0   |   0   |   0   ||   35  |   0   |
        ---------------------------------------------------------------------
[ivy:retrieve] :: retrieving :: org.apache.zookeeper#zookeeper
[ivy:retrieve]  confs: [owasp]
[ivy:retrieve]  35 artifacts copied, 0 already retrieved (15405kB/1554ms)

owasp-taskdef:

ivy-retrieve:
[ivy:retrieve] :: resolving dependencies :: 
org.apache.zookeeper#zookeeper;3.6.0-SNAPSHOT
[ivy:retrieve]  confs: [default]
[ivy:retrieve]  found jline#jline;2.11 in maven2
[ivy:retrieve]  found org.eclipse.jetty#jetty-server;9.4.15.v20190215 in maven2
[ivy:retrieve]  found javax.servlet#javax.servlet-api;3.1.0 in maven2
[ivy:retrieve]  found org.eclipse.jetty#jetty-http;9.4.15.v20190215 in maven2
[ivy:retrieve]  found org.eclipse.jetty#jetty-util;9.4.15.v20190215 in maven2
[ivy:retrieve]  found org.eclipse.jetty#jetty-io;9.4.15.v20190215 in maven2
[ivy:retrieve]  found org.eclipse.jetty#jetty-servlet;9.4.15.v20190215 in maven2
[ivy:retrieve]  found org.eclipse.jetty#jetty-security;9.4.15.v20190215 in 
maven2
[ivy:retrieve]  found com.fasterxml.jackson.core#jackson-databind;2.9.8 in 
maven2
[ivy:retrieve]  found com.fasterxml.jackson.core#jackson-annotations;2.9.0 in 
maven2
[ivy:retrieve]  found com.fasterxml.jackson.core#jackson-core;2.9.8 in maven2
[ivy:retrieve]  found org.slf4j#slf4j-api;1.7.25 in maven2
[ivy:retrieve]  found org.slf4j#slf4j-log4j12;1.7.25 in maven2
[ivy:retrieve]  found commons-cli#commons-cli;1.2 in maven2
[ivy:retrieve]  found com.github.spotbugs#spotbugs-annotations;3.1.9 in maven2
[ivy:retrieve]  found com.google.code.findbugs#jsr305;3.0.2 in maven2
[ivy:retrieve]  found log4j#log4j;1.2.17 in maven2
[ivy:retrieve]  found org.apache.yetus#audience-annotations;0.5.0 in maven2
[ivy:retrieve]  found io.netty#netty-all;4.1.29.Final in maven2
[ivy:retrieve]  found com.googlecode.json-simple#json-simple;1.1.1 in maven2
[ivy:retrieve]  found commons-lang#commons-lang;2.6 in maven2
[ivy:retrieve]  found org.xerial.snappy#snappy-java;1.1.7 in maven2
[ivy:retrieve]  found io.dropwizard.metrics#metrics-core;3.2.5 in maven2
[ivy:retrieve] :: resolution report :: resolve 230ms :: artifacts dl 14ms
        ---------------------------------------------------------------------
        |                  |            modules            ||   artifacts   |
        |       conf       | number| search|dwnlded|evicted|| number|dwnlded|
        ---------------------------------------------------------------------
        |      default     |   23  |   0   |   0   |   0   ||   23  |   0   |
        ---------------------------------------------------------------------
[ivy:retrieve] :: retrieving :: org.apache.zookeeper#zookeeper
[ivy:retrieve]  confs: [default]
[ivy:retrieve]  0 artifacts copied, 23 already retrieved (0kB/7ms)

owasp:
[owasp:dependency-check-update] Checking for updates
[owasp:dependency-check-update] starting getUpdatesNeeded() ...
[owasp:dependency-check-update] NVD CVE requires several updates; this could 
take a couple of minutes.
[owasp:dependency-check-update] Download Started for NVD CVE - 2002
[owasp:dependency-check-update] Download Started for NVD CVE - 2003
[owasp:dependency-check-update] Download Started for NVD CVE - 2004
[owasp:dependency-check-update] Download Started for NVD CVE - 2005
[owasp:dependency-check-update] Download Started for NVD CVE - 2006
[owasp:dependency-check-update] Download Started for NVD CVE - 2007
[owasp:dependency-check-update] Download Started for NVD CVE - 2008
[owasp:dependency-check-update] Download Started for NVD CVE - 2009
[owasp:dependency-check-update] Download Started for NVD CVE - 2010
[owasp:dependency-check-update] Download Started for NVD CVE - 2011
[owasp:dependency-check-update] Download Started for NVD CVE - 2012
[owasp:dependency-check-update] Download Started for NVD CVE - 2013
[owasp:dependency-check-update] Download Started for NVD CVE - 2014
[owasp:dependency-check-update] Download Started for NVD CVE - 2015
[owasp:dependency-check-update] Download Started for NVD CVE - 2016
[owasp:dependency-check-update] Download Started for NVD CVE - 2017
[owasp:dependency-check-update] Download Started for NVD CVE - 2018
[owasp:dependency-check-update] Download Started for NVD CVE - 2019
[owasp:dependency-check-update] Download Started for NVD CVE - Modified
[owasp:dependency-check-update] Download Complete for NVD CVE - 2003  (1837 ms)
[owasp:dependency-check-update] Processing Started for NVD CVE - 2003
[owasp:dependency-check-update] Download Complete for NVD CVE - Modified  (2015 
ms)
[owasp:dependency-check-update] Processing Started for NVD CVE - Modified
[owasp:dependency-check-update] Download Complete for NVD CVE - 2004  (2214 ms)
[owasp:dependency-check-update] Download Complete for NVD CVE - 2005  (2268 ms)
[owasp:dependency-check-update] Processing Started for NVD CVE - 2004
[owasp:dependency-check-update] Processing Started for NVD CVE - 2005
[owasp:dependency-check-update] Download Complete for NVD CVE - 2007  (2611 ms)
[owasp:dependency-check-update] Download Complete for NVD CVE - 2008  (2676 ms)
[owasp:dependency-check-update] Download Complete for NVD CVE - 2002  (2724 ms)
[owasp:dependency-check-update] Download Complete for NVD CVE - 2015  (2904 ms)
[owasp:dependency-check-update] Processing Started for NVD CVE - 2015
[owasp:dependency-check-update] Download Complete for NVD CVE - 2014  (3295 ms)
[owasp:dependency-check-update] Download Complete for NVD CVE - 2010  (3302 ms)
[owasp:dependency-check-update] Processing Started for NVD CVE - 2008
[owasp:dependency-check-update] Processing Started for NVD CVE - 2002
[owasp:dependency-check-update] Processing Started for NVD CVE - 2007
[owasp:dependency-check-update] Processing Started for NVD CVE - 2010
[owasp:dependency-check-update] Processing Started for NVD CVE - 2014
[owasp:dependency-check-update] Download Complete for NVD CVE - 2006  (3472 ms)
[owasp:dependency-check-update] Download Complete for NVD CVE - 2012  (3471 ms)
[owasp:dependency-check-update] Download Complete for NVD CVE - 2013  (3472 ms)
[owasp:dependency-check-update] Download Complete for NVD CVE - 2009  (3634 ms)
[owasp:dependency-check-update] Download Complete for NVD CVE - 2016  (3754 ms)
[owasp:dependency-check-update] Download Complete for NVD CVE - 2019  (4131 ms)
[owasp:dependency-check-update] Processing Started for NVD CVE - 2019
[owasp:dependency-check-update] Download Complete for NVD CVE - 2011  (5304 ms)
[owasp:dependency-check-update] Processing Started for NVD CVE - 2009
[owasp:dependency-check-update] Processing Started for NVD CVE - 2006
[owasp:dependency-check-update] Processing Started for NVD CVE - 2012
[owasp:dependency-check-update] Processing Started for NVD CVE - 2013
[owasp:dependency-check-update] Processing Started for NVD CVE - 2016
[owasp:dependency-check-update] Download Complete for NVD CVE - 2018  (6409 ms)
[owasp:dependency-check-update] Processing Started for NVD CVE - 2011
[owasp:dependency-check-update] Download Complete for NVD CVE - 2017  (6871 ms)
[owasp:dependency-check-update] Processing Started for NVD CVE - 2018
[owasp:dependency-check-update] Processing Started for NVD CVE - 2017
[owasp:dependency-check-update] Processing Complete for NVD CVE - Modified  
(232230 ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2003  (320117 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2004  (518417 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2019  (545071 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2011  (662198 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2005  (692114 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2009  (694663 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2010  (710918 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2012  (730257 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2013  (753950 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2002  (758065 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2007  (819234 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2006  (821326 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2015  (825853 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2008  (826748 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2014  (835680 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2016  (835821 
ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2018  
(1011018 ms)
[owasp:dependency-check-update] Processing Complete for NVD CVE - 2017  
(1009568 ms)
[owasp:dependency-check-update] Begin database maintenance.
[owasp:dependency-check-update] End database maintenance.
[owasp:dependency-check-update] A new version of dependency-check is available. 
Consider updating to version 5.0.0.m1.
[owasp:dependency-check-update] Check for updates complete (1021678 ms)
[owasp:dependency-check-update] Checking for updates
[owasp:dependency-check-update] Skipping NVD check since last check was within 
4 hours.
[owasp:dependency-check-update] A new version of dependency-check is available. 
Consider updating to version 5.0.0.m1.
[owasp:dependency-check-update] Skipping RetireJS update since last update was 
within 24 hours.
[owasp:dependency-check-update] Check for updates complete (15 ms)
[owasp:dependency-check-update] Analysis Started
[owasp:dependency-check-update] Finished Archive Analyzer (0 seconds)
[owasp:dependency-check-update] Finished File Name Analyzer (0 seconds)
[owasp:dependency-check-update] Finished Jar Analyzer (0 seconds)
[owasp:dependency-check-update] Finished Central Analyzer (0 seconds)
[owasp:dependency-check-update] Finished Assembly Analyzer (0 seconds)
[owasp:dependency-check-update] Finished Dependency Merging Analyzer (0 seconds)
[owasp:dependency-check-update] Finished Version Filter Analyzer (0 seconds)
[owasp:dependency-check-update] Finished Hint Analyzer (0 seconds)
[owasp:dependency-check-update] Created CPE Index (3 seconds)
[owasp:dependency-check-update] Skipping CPE Analysis for npm
[owasp:dependency-check-update] Finished CPE Analyzer (4 seconds)
[owasp:dependency-check-update] Finished False Positive Analyzer (0 seconds)
[owasp:dependency-check-update] Finished NVD CVE Analyzer (0 seconds)
[owasp:dependency-check-update] Finished Vulnerability Suppression Analyzer (0 
seconds)
[owasp:dependency-check-update] Finished Dependency Bundling Analyzer (0 
seconds)
[owasp:dependency-check-update] Analysis Complete (6 seconds)

BUILD FAILED
<https://builds.apache.org/job/ZooKeeper-trunk-owasp/ws/build.xml>:1724: 

Dependency-Check Failure:
One or more dependencies were identified with vulnerabilities that have a CVSS 
score greater than or equal to '0.0': CVE-2019-12086
See the dependency-check report for more details.



Total time: 17 minutes 43 seconds
Build step 'Invoke Ant' marked build as failure
Archiving artifacts
[Fast Archiver] Compressed 645.14 KB of artifacts by 19.8% relative to #370

Reply via email to