Use core-module build profile to avoid downloading snapshot jars #7640

aahmed-se · 2020-07-23T04:34:59Z

The current maven build command will download snapshot jars for missing components.
We now force building the required modules.

Switch cpp github workflow to use non docker build script

aahmed-se · 2020-07-23T11:12:02Z

/pulsarbot run-failure-checks

aahmed-se · 2020-07-23T11:31:05Z

/pulsarbot run-failure-checks

…che#7640) * Use core-module build profile to avoid downloading snapshot jars * Revert cpp test workflow to use vm build * Mark BlobStoreManagedLedgerOffloaderTest as flaky (cherry picked from commit 257a2c8)

…che#7640) * Use core-module build profile to avoid downloading snapshot jars * Revert cpp test workflow to use vm build * Mark BlobStoreManagedLedgerOffloaderTest as flaky

…leJar (#7453) ### Motivation shade bouncy castle will cause some signature errors, this PR tries to remove the bouncy castle shaded module. Here is the related error stack: ``` 10:01:34.257 [pulsar-client-io-33-1] ERROR org.apache.pulsar.client.impl.ConsumerImpl - MessageCryptoBc may not included in the jar. e: java.lang.SecurityException: JCE cannot authenticate the provider BC at javax.crypto.Cipher.getInstance(Cipher.java:657) ~[?:1.8.0_121] at javax.crypto.Cipher.getInstance(Cipher.java:596) ~[?:1.8.0_121] at org.apache.pulsar.client.impl.crypto.MessageCryptoBc.<init>(MessageCryptoBc.java:147) ~[classes/:?] at org.apache.pulsar.client.impl.ConsumerImpl.<init>(ConsumerImpl.java:270) ~[classes/:?] at org.apache.pulsar.client.impl.ConsumerImpl.newConsumerImpl(ConsumerImpl.java:209) ~[classes/:?] at org.apache.pulsar.client.impl.PulsarClientImpl.lambda$doSingleTopicSubscribeAsync$5(PulsarClientImpl.java:364) ~[classes/:?] at java.util.concurrent.CompletableFuture.uniAccept(CompletableFuture.java:656) ~[?:1.8.0_131] at java.util.concurrent.CompletableFuture$UniAccept.tryFire(CompletableFuture.java:632) ~[?:1.8.0_131] ... Caused by: java.util.jar.JarException: file:/Users/jia/.m2/repository/org/apache/pulsar/bouncy-castle-bc-shaded/2.7.0-SNAPSHOT/bouncy-castle-bc-shaded-2.7.0-SNAPSHOT.jar has unsigned entries - org/bouncycastle/cert/AttributeCertificateHolder.class at javax.crypto.JarVerifier.verifySingleJar(JarVerifier.java:500) ~[?:1.8.0_121] at javax.crypto.JarVerifier.verifyJars(JarVerifier.java:361) ~[?:1.8.0_121] at javax.crypto.JarVerifier.verify(JarVerifier.java:289) ~[?:1.8.0_121] at javax.crypto.JceSecurity.verifyProviderJar(JceSecurity.java:159) ~[?:1.8.0_121] at javax.crypto.JceSecurity.getVerificationResult(JceSecurity.java:185) ~[?:1.8.0_121] at javax.crypto.Cipher.getInstance(Cipher.java:653) ~[?:1.8.0_121] ``` ### Modifications - Remove bouncy castle shaded module, avoid package bouncy castle into a dependency jar. - enhance test case to identify this error. ### Verifying this change ut passed. * remove dep of bc-shaded from other module * remove bc-shaded module * enhance testECDSAEncryption and testRSAEncryption to cover error case * fix license check * remove bc-shaded module * build a jar in jar to avoid break bc signature * use new bc dependency by classifier in maven * build pulsar-all docker image instead of pull from dockerhub in integration tests * remove nar * fix licence, fix error brings in #7640 * add bc when broker/client is referenced in pom * add missing bc reference in pom * change ci back to not build docker image

…leJar (apache#7453) ### Motivation shade bouncy castle will cause some signature errors, this PR tries to remove the bouncy castle shaded module. Here is the related error stack: ``` 10:01:34.257 [pulsar-client-io-33-1] ERROR org.apache.pulsar.client.impl.ConsumerImpl - MessageCryptoBc may not included in the jar. e: java.lang.SecurityException: JCE cannot authenticate the provider BC at javax.crypto.Cipher.getInstance(Cipher.java:657) ~[?:1.8.0_121] at javax.crypto.Cipher.getInstance(Cipher.java:596) ~[?:1.8.0_121] at org.apache.pulsar.client.impl.crypto.MessageCryptoBc.<init>(MessageCryptoBc.java:147) ~[classes/:?] at org.apache.pulsar.client.impl.ConsumerImpl.<init>(ConsumerImpl.java:270) ~[classes/:?] at org.apache.pulsar.client.impl.ConsumerImpl.newConsumerImpl(ConsumerImpl.java:209) ~[classes/:?] at org.apache.pulsar.client.impl.PulsarClientImpl.lambda$doSingleTopicSubscribeAsync$5(PulsarClientImpl.java:364) ~[classes/:?] at java.util.concurrent.CompletableFuture.uniAccept(CompletableFuture.java:656) ~[?:1.8.0_131] at java.util.concurrent.CompletableFuture$UniAccept.tryFire(CompletableFuture.java:632) ~[?:1.8.0_131] ... Caused by: java.util.jar.JarException: file:/Users/jia/.m2/repository/org/apache/pulsar/bouncy-castle-bc-shaded/2.7.0-SNAPSHOT/bouncy-castle-bc-shaded-2.7.0-SNAPSHOT.jar has unsigned entries - org/bouncycastle/cert/AttributeCertificateHolder.class at javax.crypto.JarVerifier.verifySingleJar(JarVerifier.java:500) ~[?:1.8.0_121] at javax.crypto.JarVerifier.verifyJars(JarVerifier.java:361) ~[?:1.8.0_121] at javax.crypto.JarVerifier.verify(JarVerifier.java:289) ~[?:1.8.0_121] at javax.crypto.JceSecurity.verifyProviderJar(JceSecurity.java:159) ~[?:1.8.0_121] at javax.crypto.JceSecurity.getVerificationResult(JceSecurity.java:185) ~[?:1.8.0_121] at javax.crypto.Cipher.getInstance(Cipher.java:653) ~[?:1.8.0_121] ``` ### Modifications - Remove bouncy castle shaded module, avoid package bouncy castle into a dependency jar. - enhance test case to identify this error. ### Verifying this change ut passed. * remove dep of bc-shaded from other module * remove bc-shaded module * enhance testECDSAEncryption and testRSAEncryption to cover error case * fix license check * remove bc-shaded module * build a jar in jar to avoid break bc signature * use new bc dependency by classifier in maven * build pulsar-all docker image instead of pull from dockerhub in integration tests * remove nar * fix licence, fix error brings in apache#7640 * add bc when broker/client is referenced in pom * add missing bc reference in pom * change ci back to not build docker image

aahmed-se requested a review from merlimat July 23, 2020 04:34

aahmed-se self-assigned this Jul 23, 2020

aahmed-se force-pushed the github_ci_2 branch from 25be979 to 2147f49 Compare July 23, 2020 04:36

merlimat approved these changes Jul 23, 2020

View reviewed changes

Use core-module build profile to avoid downloading snapshot jars

4ea41eb

aahmed-se force-pushed the github_ci_2 branch 3 times, most recently from 9ae9e22 to 119a6bb Compare July 23, 2020 08:17

Revert cpp test workflow to use vm build

661f8d2

aahmed-se force-pushed the github_ci_2 branch from 119a6bb to 661f8d2 Compare July 23, 2020 08:36

aahmed-se force-pushed the github_ci_2 branch 7 times, most recently from 057f37d to 3f892ee Compare July 24, 2020 05:59

Mark BlobStoreManagedLedgerOffloaderTest as flaky

25f4c39

aahmed-se force-pushed the github_ci_2 branch from 3f892ee to 25f4c39 Compare July 24, 2020 06:41

aahmed-se merged commit 257a2c8 into apache:master Jul 24, 2020

aahmed-se deleted the github_ci_2 branch July 24, 2020 18:39

jiazhai added a commit to jiazhai/pulsar that referenced this pull request Oct 21, 2020

fix licence, fix error brings in apache#7640

368b2e9

jiazhai added a commit to jiazhai/pulsar that referenced this pull request Oct 21, 2020

fix licence, fix error brings in apache#7640

264ac78

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Use core-module build profile to avoid downloading snapshot jars #7640

Use core-module build profile to avoid downloading snapshot jars #7640

aahmed-se commented Jul 23, 2020 •

edited

Loading

aahmed-se commented Jul 23, 2020

aahmed-se commented Jul 23, 2020

Use core-module build profile to avoid downloading snapshot jars #7640

Use core-module build profile to avoid downloading snapshot jars #7640

Conversation

aahmed-se commented Jul 23, 2020 • edited Loading

aahmed-se commented Jul 23, 2020

aahmed-se commented Jul 23, 2020

aahmed-se commented Jul 23, 2020 •

edited

Loading