Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Make jre/lib/jspawnhelper executable on linux #152

Closed
wants to merge 1 commit into from
Closed

Make jre/lib/jspawnhelper executable on linux #152

wants to merge 1 commit into from

Conversation

danlenar
Copy link

@danlenar danlenar commented Aug 1, 2023
edited

Ran into issue with using sonar-scanner using the embed java under Linux.
We are using C++ plugin to run the scanner.

ERROR: Error during SonarScanner execution
java.lang.IllegalStateException: java.io.IOException: Cannot run program "/usr/src/app/.scannerwork/.sonartmp/16117978935657518899/subprocess" (in directory "/usr/src/app/lib"): error=13, Permission denied
        at com.sonar.cpp.driver.ProcessExecutor.execute(ProcessExecutor.java:73)
        at com.sonar.cpp.driver.ProcessExecutor.execute(ProcessExecutor.java:44)
        at com.sonar.cpp.analyzer.ClangDriver.lambda$probeCompiler$9(ClangDriver.java:759)
        at java.base/java.util.HashMap.computeIfAbsent(Unknown Source)
        at com.sonar.cpp.analyzer.ClangDriver.probeCompiler(ClangDriver.java:749)
        at com.sonar.cpp.analyzer.ClangDriver.onCapture(ClangDriver.java:488)
        at com.sonar.cpp.analyzer.CompilerDrivers.onCapture(CompilerDrivers.java:34)
        at com.sonar.cpp.plugin.CFamilySensor.lambda$process$17(CFamilySensor.java:908)
        at com.sonar.cpp.plugin.BuildWrapperJsonReader.readCaptures(BuildWrapperJsonReader.java:86)
        at com.sonar.cpp.plugin.CFamilySensor.process(CFamilySensor.java:905)
        at com.sonar.cpp.plugin.CFamilySensor.process(CFamilySensor.java:410)
        at com.sonar.cpp.plugin.CFamilySensor.execute(CFamilySensor.java:215)
        at org.sonar.scanner.sensor.AbstractSensorWrapper.analyse(AbstractSensorWrapper.java:64)
        at org.sonar.scanner.sensor.ModuleSensorsExecutor.execute(ModuleSensorsExecutor.java:88)
        at org.sonar.scanner.sensor.ModuleSensorsExecutor.execute(ModuleSensorsExecutor.java:64)
        at org.sonar.scanner.scan.SpringModuleScanContainer.doAfterStart(SpringModuleScanContainer.java:82)
        at org.sonar.core.platform.SpringComponentContainer.startComponents(SpringComponentContainer.java:188)
        at org.sonar.core.platform.SpringComponentContainer.execute(SpringComponentContainer.java:167)
        at org.sonar.scanner.scan.SpringProjectScanContainer.scan(SpringProjectScanContainer.java:403)
        at org.sonar.scanner.scan.SpringProjectScanContainer.scanRecursively(SpringProjectScanContainer.java:399)
        at org.sonar.scanner.scan.SpringProjectScanContainer.doAfterStart(SpringProjectScanContainer.java:368)
        at org.sonar.core.platform.SpringComponentContainer.startComponents(SpringComponentContainer.java:188)
        at org.sonar.core.platform.SpringComponentContainer.execute(SpringComponentContainer.java:167)
        at org.sonar.scanner.bootstrap.SpringGlobalContainer.doAfterStart(SpringGlobalContainer.java:137)
        at org.sonar.core.platform.SpringComponentContainer.startComponents(SpringComponentContainer.java:188)
        at org.sonar.core.platform.SpringComponentContainer.execute(SpringComponentContainer.java:167)
        at org.sonar.batch.bootstrapper.Batch.doExecute(Batch.java:72)
        at org.sonar.batch.bootstrapper.Batch.execute(Batch.java:66)
        at org.sonarsource.scanner.api.internal.batch.BatchIsolatedLauncher.execute(BatchIsolatedLauncher.java:46)
        at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
        at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
        at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
        at java.base/java.lang.reflect.Method.invoke(Unknown Source)
        at org.sonarsource.scanner.api.internal.IsolatedLauncherProxy.invoke(IsolatedLauncherProxy.java:60)
        at jdk.proxy1/jdk.proxy1.$Proxy0.execute(Unknown Source)
        at org.sonarsource.scanner.api.EmbeddedScanner.doExecute(EmbeddedScanner.java:189)
        at org.sonarsource.scanner.api.EmbeddedScanner.execute(EmbeddedScanner.java:138)
        at org.sonarsource.scanner.cli.Main.execute(Main.java:126)
        at org.sonarsource.scanner.cli.Main.execute(Main.java:81)
        at org.sonarsource.scanner.cli.Main.main(Main.java:62)
Caused by: java.io.IOException: Cannot run program "/usr/src/app/.scannerwork/.sonartmp/16117978935657518899/subprocess" (in directory "/usr/src/app/lib"): error=13, Permission denied
        at java.base/java.lang.ProcessBuilder.start(Unknown Source)
        at java.base/java.lang.ProcessBuilder.start(Unknown Source)
        at com.sonar.cpp.driver.ProcessExecutor.execute(ProcessExecutor.java:57)
        ... 39 more
Caused by: java.io.IOException: error=13, Permission denied
        at java.base/java.lang.ProcessImpl.forkAndExec(Native Method)
        at java.base/java.lang.ProcessImpl.<init>(Unknown Source)
        at java.base/java.lang.ProcessImpl.start(Unknown Source)
        ... 42 more

After stracing, I found this in the strack output.

[pid   397] 1690852277.316501 execve("/opt/sonar-scanner/jre/lib/jspawnhelper", ["74:77"], 0x7ffd84db9018 /* 80 vars */) = -1 EACCES (Permission denied)

We started to see this version with 5.0. We did not have this issue under 4.8

sonar-scanner -v
INFO: SonarScanner 5.0.0.2966

I am applying the same permissions fixes that is done for macos.

sonar-scanner-cli/src/main/assembly/dist-macosx.xml

Line 31 in 69fff1f

<!-- jre lib executable files -->

@danlenar
Make jre/lib/jspawnhelper executable on linux
1d96d48 
Signed-off-by: Daniel Lenar <dlenar@vailsys.com>
@gansm
Copy link

gansm commented Aug 4, 2023

The problem affects both file jre/lib/jspawnhelper and file jre/lib/jexec.

chmod +x sonar-scanner-5.0.0.2966-linux/jre/lib/jexec

and

chmod +x sonar-scanner-5.0.0.2966-linux/jre/lib/jspawnhelper

fix the problem for me.

https://github.com/gansm/finalcut/blob/main/.github/workflows/sonarcloud.yml

@dbmeneses
Copy link
Contributor

@gansm Fixing jre/lib/jspawnhelper wasn't enough?

@gansm
Copy link

gansm commented Aug 4, 2023

@dbmeneses
Fixing jre/lib/jspawnhelper should be enough for the sonar scanner. But jre/lib/jexec is the second executable with wrong permissions in that directory. I find it cleaner to fix all java executables in case someone wants to use them.

@lit-af
Copy link

lit-af commented Aug 4, 2023

This fix works for us. GitLab CI using a linux container based on Ubuntu Jammy.

@dbmeneses
Copy link
Contributor

Thanks, both files have been fixed

@dbmeneses dbmeneses closed this Aug 7, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dbmeneses dbmeneses Awaiting requested review from dbmeneses

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
4 participants
@danlenar @gansm @dbmeneses @lit-af