From dev-return-81753-archive-asf-public=cust-asf.ponee.io@zookeeper.apache.org Wed Jun 26 09:33:38 2019 Return-Path: X-Original-To: archive-asf-public@cust-asf.ponee.io Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [207.244.88.153]) by mx-eu-01.ponee.io (Postfix) with SMTP id E314518064D for ; Wed, 26 Jun 2019 11:33:37 +0200 (CEST) Received: (qmail 82727 invoked by uid 500); 26 Jun 2019 09:33:35 -0000 Mailing-List: contact dev-help@zookeeper.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@zookeeper.apache.org Delivered-To: mailing list dev@zookeeper.apache.org Received: (qmail 82640 invoked by uid 99); 26 Jun 2019 09:33:35 -0000 Received: from Unknown (HELO mailrelay1-lw-us.apache.org) (10.10.3.159) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 26 Jun 2019 09:33:35 +0000 Received: from jenkins02.apache.org (jenkins02.apache.org [195.201.213.130]) by mailrelay1-lw-us.apache.org (ASF Mail Server at mailrelay1-lw-us.apache.org) with ESMTP id 97CD157EE for ; Wed, 26 Jun 2019 09:33:34 +0000 (UTC) Received: from jenkins02.apache.org (localhost.localdomain [127.0.0.1]) by jenkins02.apache.org (ASF Mail Server at jenkins02.apache.org) with ESMTP id DF4C933E014C for ; Wed, 26 Jun 2019 09:33:33 +0000 (UTC) Date: Wed, 26 Jun 2019 09:33:32 +0000 (UTC) From: Apache Jenkins Server To: dev@zookeeper.apache.org Message-ID: <1691423187.1924.1561541613092.JavaMail.jenkins@jenkins02> In-Reply-To: <35391420.1525.1561454478494.JavaMail.jenkins@jenkins02> References: <35391420.1525.1561454478494.JavaMail.jenkins@jenkins02> Subject: Build failed in Jenkins: ZooKeeper-trunk-owasp #408 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-Instance-Identity: MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkqVKZPv7YyHBB3FvWfV7XQehwe/Ga3aadzSNknt8g382X3uN8A3SOQ+Ixq9HxS+ZlN6XR4TECySmSRy2JN5Rx8svxAD0TjtSF9LuU98dD+LniNDP7Lq6gvRFuJhbMHoS0nuTizDZLsK4X8TW5MyV9w+jFbdoZfRE5O/Mse0fkOeL5uoIS/3Vvu/W+x9QSjDkB7CaU56bPFlQjqqJBl3Cn9r34CkXQZYnLb/NjW4vcpw0+TgMUAPTIVEr5BTPZRshz19g7huwg3zANT5HBIZnzV4hsVY9w4JHkceFdKi/ibNnjPjsFs9pm0HSGJ/RDxjIvSTYT02eH4+m1RAYaj2E9QIDAQAB X-Jenkins-Job: ZooKeeper-trunk-owasp X-Jenkins-Result: FAILURE See Changes: [nkalmar] ZOOKEEPER-3433: zkpython build broken after maven migration [andor] ZOOKEEPER-3407: Update POM file [nkalmar] ZOOKEEPER-3423: use the maven-like way to ignore the generated version [andor] ZOOKEEPER-3402: Add multiRead operation ------------------------------------------ [...truncated 20.53 KB...] build-generated: [javac] Compiling 66 source files to [javac] warning: [options] bootstrap class path not set in conjunction with -source 8 [javac] 1 warning compile: [javac] Compiling 318 source files to [javac] warning: [options] bootstrap class path not set in conjunction with -source 8 [javac] :247: warning: [cast] redundant cast to ByteBuffer [javac] b = (ByteBuffer) b.slice().limit( [javac] ^ [javac] :78: warning: [cast] redundant cast to ByteBuffer [javac] fileChannel.write((ByteBuffer) fill.position(0), newFileSize - fill.remaining()); [javac] ^ [javac] 3 warnings compile-test: [mkdir] Created dir: [javac] Compiling 288 source files to [javac] warning: [options] bootstrap class path not set in conjunction with -source 8 [javac] 1 warning [javac] Compiling 11 source files to [javac] warning: [options] bootstrap class path not set in conjunction with -source 8 [javac] Note: Some input files use or override a deprecated API. [javac] Note: Recompile with -Xlint:deprecation for details. [javac] 1 warning [javac] Compiling 2 source files to [javac] warning: [options] bootstrap class path not set in conjunction with -source 8 [javac] Note: uses or overrides a deprecated API. [javac] Note: Recompile with -Xlint:deprecation for details. [javac] 1 warning init: ivy-download: ivy-taskdef: ivy-init: ivy-retrieve-owasp: [ivy:retrieve] :: loading settings :: file = [ivy:retrieve] :: resolving dependencies :: org.apache.zookeeper#zookeeper;3.6.0-SNAPSHOT [ivy:retrieve] confs: [owasp] [ivy:retrieve] found org.owasp#dependency-check-ant;4.0.2 in maven2 [ivy:retrieve] found org.owasp#dependency-check-core;4.0.2 in maven2 [ivy:retrieve] found com.vdurmont#semver4j;2.2.0 in maven2 [ivy:retrieve] found joda-time#joda-time;1.6 in maven2 [ivy:retrieve] found org.slf4j#slf4j-api;1.7.25 in maven2 [ivy:retrieve] found org.owasp#dependency-check-utils;4.0.2 in maven2 [ivy:retrieve] found commons-io#commons-io;2.6 in maven2 [ivy:retrieve] found org.apache.commons#commons-lang3;3.4 in maven2 [ivy:retrieve] found com.google.code.gson#gson;2.8.5 in maven2 [ivy:retrieve] found commons-collections#commons-collections;3.2.2 in maven2 [ivy:retrieve] found org.apache.commons#commons-compress;1.18 in maven2 [ivy:retrieve] found org.apache.commons#commons-text;1.3 in maven2 [ivy:retrieve] found org.apache.lucene#lucene-core;7.6.0 in maven2 [ivy:retrieve] found org.apache.lucene#lucene-analyzers-common;7.6.0 in maven2 [ivy:retrieve] found org.apache.lucene#lucene-queryparser;7.6.0 in maven2 [ivy:retrieve] found org.apache.lucene#lucene-queries;7.6.0 in maven2 [ivy:retrieve] found org.apache.lucene#lucene-sandbox;7.6.0 in maven2 [ivy:retrieve] found org.apache.velocity#velocity;1.7 in maven2 [ivy:retrieve] found commons-lang#commons-lang;2.4 in maven2 [ivy:retrieve] found org.glassfish#javax.json;1.0.4 in maven2 [ivy:retrieve] found org.jsoup#jsoup;1.11.3 in maven2 [ivy:retrieve] found com.sun.mail#mailapi;1.6.3 in maven2 [ivy:retrieve] found com.google.guava#guava;27.0.1-jre in maven2 [ivy:retrieve] found com.google.guava#failureaccess;1.0.1 in maven2 [ivy:retrieve] found com.google.guava#listenablefuture;9999.0-empty-to-avoid-conflict-with-guava in maven2 [ivy:retrieve] found com.google.code.findbugs#jsr305;3.0.2 in maven2 [ivy:retrieve] found org.checkerframework#checker-qual;2.5.2 in maven2 [ivy:retrieve] found com.google.errorprone#error_prone_annotations;2.2.0 in maven2 [ivy:retrieve] found com.google.j2objc#j2objc-annotations;1.1 in maven2 [ivy:retrieve] found org.codehaus.mojo#animal-sniffer-annotations;1.17 in maven2 [ivy:retrieve] found com.h3xstream.retirejs#retirejs-core;3.0.1 in maven2 [ivy:retrieve] found org.json#json;20140107 in maven2 [ivy:retrieve] found com.esotericsoftware#minlog;1.3 in maven2 [ivy:retrieve] found com.github.spullara.mustache.java#compiler;0.8.17 in maven2 [ivy:retrieve] found com.h2database#h2;1.4.196 in maven2 [ivy:retrieve] :: resolution report :: resolve 3351ms :: artifacts dl 63ms --------------------------------------------------------------------- | | modules || artifacts | | conf | number| search|dwnlded|evicted|| number|dwnlded| --------------------------------------------------------------------- | owasp | 35 | 0 | 0 | 0 || 35 | 0 | --------------------------------------------------------------------- [ivy:retrieve] :: retrieving :: org.apache.zookeeper#zookeeper [ivy:retrieve] confs: [owasp] [ivy:retrieve] 35 artifacts copied, 0 already retrieved (15405kB/308ms) owasp-taskdef: ivy-retrieve: [ivy:retrieve] :: resolving dependencies :: org.apache.zookeeper#zookeeper;3.6.0-SNAPSHOT [ivy:retrieve] confs: [default] [ivy:retrieve] found jline#jline;2.11 in maven2 [ivy:retrieve] found org.eclipse.jetty#jetty-server;9.4.15.v20190215 in maven2 [ivy:retrieve] found javax.servlet#javax.servlet-api;3.1.0 in maven2 [ivy:retrieve] found org.eclipse.jetty#jetty-http;9.4.15.v20190215 in maven2 [ivy:retrieve] found org.eclipse.jetty#jetty-util;9.4.15.v20190215 in maven2 [ivy:retrieve] found org.eclipse.jetty#jetty-io;9.4.15.v20190215 in maven2 [ivy:retrieve] found org.eclipse.jetty#jetty-servlet;9.4.15.v20190215 in maven2 [ivy:retrieve] found org.eclipse.jetty#jetty-security;9.4.15.v20190215 in maven2 [ivy:retrieve] found com.fasterxml.jackson.core#jackson-databind;2.9.9 in maven2 [ivy:retrieve] found com.fasterxml.jackson.core#jackson-annotations;2.9.0 in maven2 [ivy:retrieve] found com.fasterxml.jackson.core#jackson-core;2.9.9 in maven2 [ivy:retrieve] found org.slf4j#slf4j-api;1.7.25 in maven2 [ivy:retrieve] found org.slf4j#slf4j-log4j12;1.7.25 in maven2 [ivy:retrieve] found commons-cli#commons-cli;1.2 in maven2 [ivy:retrieve] found com.github.spotbugs#spotbugs-annotations;3.1.9 in maven2 [ivy:retrieve] found com.google.code.findbugs#jsr305;3.0.2 in maven2 [ivy:retrieve] found log4j#log4j;1.2.17 in maven2 [ivy:retrieve] found org.apache.yetus#audience-annotations;0.5.0 in maven2 [ivy:retrieve] found io.netty#netty-all;4.1.36.Final in maven2 [ivy:retrieve] found com.googlecode.json-simple#json-simple;1.1.1 in maven2 [ivy:retrieve] found commons-lang#commons-lang;2.6 in maven2 [ivy:retrieve] found org.xerial.snappy#snappy-java;1.1.7 in maven2 [ivy:retrieve] found io.dropwizard.metrics#metrics-core;3.2.5 in maven2 [ivy:retrieve] :: resolution report :: resolve 166ms :: artifacts dl 11ms --------------------------------------------------------------------- | | modules || artifacts | | conf | number| search|dwnlded|evicted|| number|dwnlded| --------------------------------------------------------------------- | default | 23 | 0 | 0 | 0 || 23 | 0 | --------------------------------------------------------------------- [ivy:retrieve] :: retrieving :: org.apache.zookeeper#zookeeper [ivy:retrieve] confs: [default] [ivy:retrieve] 0 artifacts copied, 23 already retrieved (0kB/5ms) owasp: [owasp:dependency-check-update] Checking for updates [owasp:dependency-check-update] starting getUpdatesNeeded() ... [owasp:dependency-check-update] NVD CVE requires several updates; this could take a couple of minutes. [owasp:dependency-check-update] Download Started for NVD CVE - 2002 [owasp:dependency-check-update] Download Started for NVD CVE - 2003 [owasp:dependency-check-update] Download Started for NVD CVE - 2004 [owasp:dependency-check-update] Download Started for NVD CVE - 2005 [owasp:dependency-check-update] Download Started for NVD CVE - 2006 [owasp:dependency-check-update] Download Started for NVD CVE - 2007 [owasp:dependency-check-update] Download Started for NVD CVE - 2008 [owasp:dependency-check-update] Download Started for NVD CVE - 2009 [owasp:dependency-check-update] Download Started for NVD CVE - 2010 [owasp:dependency-check-update] Download Started for NVD CVE - 2011 [owasp:dependency-check-update] Download Started for NVD CVE - 2012 [owasp:dependency-check-update] Download Started for NVD CVE - 2013 [owasp:dependency-check-update] Download Started for NVD CVE - 2014 [owasp:dependency-check-update] Download Started for NVD CVE - 2015 [owasp:dependency-check-update] Download Started for NVD CVE - 2016 [owasp:dependency-check-update] Download Started for NVD CVE - 2017 [owasp:dependency-check-update] Download Started for NVD CVE - 2018 [owasp:dependency-check-update] Download Started for NVD CVE - 2019 [owasp:dependency-check-update] Download Started for NVD CVE - Modified [owasp:dependency-check-update] Download Complete for NVD CVE - 2003 (1626 ms) [owasp:dependency-check-update] Processing Started for NVD CVE - 2003 [owasp:dependency-check-update] Download Complete for NVD CVE - Modified (1831 ms) [owasp:dependency-check-update] Processing Started for NVD CVE - Modified [owasp:dependency-check-update] Download Complete for NVD CVE - 2004 (1945 ms) [owasp:dependency-check-update] Processing Started for NVD CVE - 2004 [owasp:dependency-check-update] Download Complete for NVD CVE - 2005 (2259 ms) [owasp:dependency-check-update] Processing Started for NVD CVE - 2005 [owasp:dependency-check-update] Download Complete for NVD CVE - 2002 (2464 ms) [owasp:dependency-check-update] Processing Started for NVD CVE - 2002 [owasp:dependency-check-update] Download Complete for NVD CVE - 2010 (3160 ms) [owasp:dependency-check-update] Download Complete for NVD CVE - 2007 (3295 ms) [owasp:dependency-check-update] Download Complete for NVD CVE - 2006 (3297 ms) [owasp:dependency-check-update] Processing Started for NVD CVE - 2006 [owasp:dependency-check-update] Processing Started for NVD CVE - 2007 [owasp:dependency-check-update] Processing Started for NVD CVE - 2010 [owasp:dependency-check-update] Download Complete for NVD CVE - 2009 (3428 ms) [owasp:dependency-check-update] Download Complete for NVD CVE - 2016 (3636 ms) [owasp:dependency-check-update] Processing Started for NVD CVE - 2009 [owasp:dependency-check-update] Download Complete for NVD CVE - 2012 (4272 ms) [owasp:dependency-check-update] Download Complete for NVD CVE - 2013 (4451 ms) [owasp:dependency-check-update] Processing Started for NVD CVE - 2016 [owasp:dependency-check-update] Download Complete for NVD CVE - 2019 (4502 ms) [owasp:dependency-check-update] Download Complete for NVD CVE - 2015 (4647 ms) [owasp:dependency-check-update] Download Complete for NVD CVE - 2008 (4678 ms) [owasp:dependency-check-update] Download Complete for NVD CVE - 2014 (4763 ms) [owasp:dependency-check-update] Processing Started for NVD CVE - 2014 [owasp:dependency-check-update] Processing Started for NVD CVE - 2008 [owasp:dependency-check-update] Processing Started for NVD CVE - 2019 [owasp:dependency-check-update] Processing Started for NVD CVE - 2015 [owasp:dependency-check-update] Processing Started for NVD CVE - 2013 [owasp:dependency-check-update] Download Complete for NVD CVE - 2011 (5077 ms) [owasp:dependency-check-update] Processing Started for NVD CVE - 2012 [owasp:dependency-check-update] Download Complete for NVD CVE - 2017 (5998 ms) [owasp:dependency-check-update] Processing Started for NVD CVE - 2011 [owasp:dependency-check-update] Processing Started for NVD CVE - 2017 [owasp:dependency-check-update] Download Complete for NVD CVE - 2018 (8537 ms) [owasp:dependency-check-update] Processing Started for NVD CVE - 2018 [owasp:dependency-check-update] Processing Complete for NVD CVE - Modified (141212 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2003 (261716 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2004 (322726 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2019 (543514 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2011 (552621 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2005 (571324 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2010 (596065 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2009 (597662 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2012 (616936 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2013 (617881 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2002 (620493 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2007 (639350 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2015 (638879 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2016 (669476 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2006 (670851 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2008 (673552 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2014 (713018 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2017 (809434 ms) [owasp:dependency-check-update] Processing Complete for NVD CVE - 2018 (809126 ms) [owasp:dependency-check-update] Begin database maintenance. [owasp:dependency-check-update] End database maintenance. [owasp:dependency-check-update] A new version of dependency-check is available. Consider updating to version 5.0.0. [owasp:dependency-check-update] Check for updates complete (820879 ms) [owasp:dependency-check-update] Checking for updates [owasp:dependency-check-update] Skipping NVD check since last check was within 4 hours. [owasp:dependency-check-update] A new version of dependency-check is available. Consider updating to version 5.0.0.m1. [owasp:dependency-check-update] Skipping RetireJS update since last update was within 24 hours. [owasp:dependency-check-update] Check for updates complete (12 ms) [owasp:dependency-check-update] Analysis Started [owasp:dependency-check-update] Finished Archive Analyzer (0 seconds) [owasp:dependency-check-update] Finished File Name Analyzer (0 seconds) [owasp:dependency-check-update] Finished Jar Analyzer (0 seconds) [owasp:dependency-check-update] Finished Central Analyzer (0 seconds) [owasp:dependency-check-update] Finished Assembly Analyzer (0 seconds) [owasp:dependency-check-update] Finished Dependency Merging Analyzer (0 seconds) [owasp:dependency-check-update] Finished Version Filter Analyzer (0 seconds) [owasp:dependency-check-update] Finished Hint Analyzer (0 seconds) [owasp:dependency-check-update] Created CPE Index (1 seconds) [owasp:dependency-check-update] Skipping CPE Analysis for npm [owasp:dependency-check-update] Finished CPE Analyzer (2 seconds) [owasp:dependency-check-update] Finished False Positive Analyzer (0 seconds) [owasp:dependency-check-update] Finished NVD CVE Analyzer (0 seconds) [owasp:dependency-check-update] Finished Vulnerability Suppression Analyzer (0 seconds) [owasp:dependency-check-update] Finished Dependency Bundling Analyzer (0 seconds) [owasp:dependency-check-update] Analysis Complete (5 seconds) BUILD FAILED :1727: Dependency-Check Failure: One or more dependencies were identified with vulnerabilities that have a CVSS score greater than or equal to '0.0': CVE-2019-12814 See the dependency-check report for more details. Total time: 14 minutes 17 seconds Build step 'Invoke Ant' marked build as failure Archiving artifacts [Fast Archiver] Compressed 655.61 KB of artifacts by 19.5% relative to #403