-
Bug
-
Resolution: Fixed
-
Critical
-
happens again with:
Jenkins 2.289.2
and Jenkins 2.300 on RHEL 8 and installed Allure Jenkins Plugin Version 2.29.0
and Jenkins 2.289.2 on Windows and installed Allure Jenkins Plugin Version 2.29.0
Initial Reported Env:
Jenkins: 2.205
Root node: CentOS 7 (el7)
Agents: macOS Mojave connected through JNLP4.happens again with: Jenkins 2.289.2 and Jenkins 2.300 on RHEL 8 and installed Allure Jenkins Plugin Version 2.29.0 and Jenkins 2.289.2 on Windows and installed Allure Jenkins Plugin Version 2.29.0 Initial Reported Env: Jenkins: 2.205 Root node: CentOS 7 (el7) Agents: macOS Mojave connected through JNLP4.
Upon updating to Jenkins 2.205, our Jenkins setup became unable to get plugin updates.
I see the following error now:
"There were errors checking the update sites: None of the tool installer metadata passed the signature check"
update from thomaspatzig
happens again with Jenkins 2.289.2
response / JSON of update URL looks invalid
does the update service works properly?
https://updates.jenkins.io/update-center.json
http://updates.jenkins.io/update-center.json
http://updates.jenkins.io/current/update-center.json
[JENKINS-60229] Jenkins unable to get updates / update details of Allure Jenkins plugin
Joshua Spiewak
added a comment - 2.190.1 as well. Stack trace below. Appears to be an issue with the JDKInstaller. Most items [here|https://updates.jenkins.io/updates/?C=M;O=A] were updated today, a small handful were not.
2019-11-20 14:44:07.398+0000 [id=2431402] INFO hudson.model.UpdateSite#updateData: Obtained the latest update center data
file for UpdateSource default
2019-11-20 14:44:07.549+0000 [id=2431402] INFO h.m.DownloadService$Downloadable#load: Obtained the updated data file for
hudson.tasks.Maven.MavenInstaller
2019-11-20 14:44:07.560+0000 [id=2431402] INFO h.m.DownloadService$Downloadable#load: Obtained the updated data file for
hudson.tasks.Ant.AntInstaller
2019-11-20 14:44:07.582+0000 [id=2431402] INFO h.m.DownloadService$Downloadable#load: Obtained the updated data file for
hudson.plugins.groovy.GroovyInstaller
2019-11-20 14:44:07.754+0000 [id=2431402] WARNING h.m.DownloadService$Downloadable#updateNow: signature check failed for htt
ps://updates.jenkins-ci.org/updates/hudson.tools.JDKInstaller.json
ERROR: Signature verification failed in downloadable 'hudson.tools.JDKInstaller' <a href='#' class='showDetails'>(show d
etails)</a><pre style='display:none'>java.security.cert.CertificateExpiredException: NotAfter: Tue Nov 19 21:21:39 UTC 2019<br>
at sun.security.x509.CertificateValidity.valid(CertificateValidity.java:274)<br> at sun.security.x509.X509CertImpl.c
heckValidity(X509CertImpl.java:629)<br> at sun.security.provider.certpath.BasicChecker.verifyValidity(BasicChecker.java:190)<
br> at sun.security.provider.certpath.BasicChecker.check(BasicChecker.java:144)<br> at sun.security.provider.certpath.PKIXM
asterCertPathValidator.validate(PKIXMasterCertPathValidator.java:125)<br>Caused: java.security.cert.CertPathValidatorException: va
lidity check failed<br> at sun.security.provider.certpath.PKIXMasterCertPathValidator.validate(PKIXMasterCertPathValidator.
java:135)<br> at sun.security.provider.certpath.PKIXCertPathValidator.validate(PKIXCertPathValidator.java:233)<br> at su
n.security.provider.certpath.PKIXCertPathValidator.validate(PKIXCertPathValidator.java:141)<br> at sun.security.provider.certpa
th.PKIXCertPathValidator.engineValidate(PKIXCertPathValidator.java:80)<br> at java.security.cert.CertPathValidator.validate(
CertPathValidator.java:292)<br> at org.jvnet.hudson.crypto.CertificateUtil.validatePath(CertificateUtil.java:93)<br> at
jenkins.util.JSONSignatureValidator.verifySignature(JSONSignatureValidator.java:88)<br> at hudson.model.DownloadService$Downloadable.updateNow(DownloadService.java:416)<br> at hudson.PluginManager.checkUpdatesServer(PluginManager.java:1769)<br> at hudson.util.Retrier.start(Retrier.java:62)<br> at hudson.PluginManager.doCheckUpdatesServer(PluginManager.java:1733)<br> at java.lang.invoke.MethodHandle.invokeWithArguments(MethodHandle.java:627)<br> at org.kohsuke.stapler.Function$MethodFunction.invoke(Function.java:396)<br> at org.kohsuke.stapler.Function$InstanceFunction.invoke(Function.java:408)<br> at org.kohsuke.stapler.interceptor.RequirePOST$Processor.invoke(RequirePOST.java:77)<br> at org.kohsuke.stapler.PreInvokeInterceptedFunction.invoke(PreInvokeInterceptedFunction.java:26)<br> at org.kohsuke.stapler.Function.bindAndInvoke(Function.java:212)<br> at org.kohsuke.stapler.Function.bindAndInvokeAndServeResponse(Function.java:145)<br> at org.kohsuke.stapler.MetaClass$11.doDispatch(MetaClass.java:535)<br> at org.kohsuke.stapler.NameBasedDispatcher.dispatch(NameBasedDispatcher.java:58)<br> at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:747)<br> at org.kohsuke.stapler.Stapler.invoke(Stapler.java:878)<br> at org.kohsuke.stapler.MetaClass$1.doDispatch(MetaClass.java:169)<br> at org.kohsuke.stapler.NameBasedDispatcher.dispatch(NameBasedDispatcher.java:58)<br> at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:747)<br> at org.kohsuke.stapler.Stapler.invoke(Stapler.java:878)<br> at org.kohsuke.stapler.Stapler.invoke(Stapler.java:676)<br> at org.kohsuke.stapler.Stapler.service(Stapler.java:238)<br>
at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)<br> at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:873)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1623)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:154)<br> at org.jenkinsci.plugins.ssegateway.Endpoint$SSEListenChannelFilter.doFilter(Endpoint.java:246)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)<br> at io.jenkins.blueocean.ResourceCacheControl.doFilter(ResourceCacheControl.java:134)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)<br> at io.jenkins.blueocean.auth.jwt.impl.JwtAuthenticationFilter.doFilter(JwtAuthenticationFilter.java:61)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)<br> at jenkins.metrics.impl.MetricsFilter.doFilter(MetricsFilter.java:125)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)<br> at net.bull.javamelody.MonitoringFilter.doFilter(MonitoringFilter.java:239)<br> at net.bull.javamelody.MonitoringFilter.doFilter(MonitoringFilter.java:215)<br> at net.bull.javamelody.PluginMonitoringFilter.doFilter(PluginMonitoringFilter.java:88)<br> at org.jvnet.hudson.plugins.monitoring.HudsonMonitoringFilter.doFilter(HudsonMonitoringFilter.java:114)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)<br> at jenkins.telemetry.impl.UserLanguages$AcceptLanguageFilter.doFilter(UserLanguages.java:128)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)<br> at hudson.util.PluginServletFilter.doFilter(PluginServletFilter.java:157)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at hudson.security.csrf.CrumbFilter.doFilter(CrumbFilter.java:99)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:84)<br> at hudson.security.UnwrapSecurityExceptionFilter.doFilter(UnwrapSecurityExceptionFilter.java:51)<br>
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at jenkins.security.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:117)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at org.acegisecurity.providers.anonymous.AnonymousProcessingFilter.doFilter(AnonymousProcessingFilter.java:125)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at org.acegisecurity.ui.rememberme.RememberMeProcessingFilter.doFilter(RememberMeProcessingFilter.java:142)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at org.acegisecurity.ui.AbstractProcessingFilter.doFilter(AbstractProcessingFilter.java:271)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at jenkins.security.BasicHeaderProcessor.doFilter(BasicHeaderProcessor.java:93)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at org.acegisecurity.context.HttpSessionContextIntegrationFilter.doFilter(HttpSessionContextIntegrationFilter.java:249)<br> at hudson.security.HttpSessionContextIntegrationFilter2.doFilter(HttpSessionContextIntegrationFilter2.java:67)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at hudson.security.ChainedServletFilter.doFilter(ChainedServletFilter.java:90)<br> at hudson.security.HudsonFilter.doFilter(HudsonFilter.java:171)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at org.kohsuke.stapler.compression.CompressionFilter.doFilter(CompressionFilter.java:49)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at hudson.util.CharacterEncodingFilter.doFilter(CharacterEncodingFilter.java:82)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at org.kohsuke.stapler.DiagnosticThreadNameFilter.doFilter(DiagnosticThreadNameFilter.java:30)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:540)<br> at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:146)<br> at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:524)<br> at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:132)<br> at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:257)<br> at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1700)<br> at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:255)<br> at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1345)<br> at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:203)<br> at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:480)<br> at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1667)<br> at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:201)<br> at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1247)<br> at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:144)<br> at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:132)<br> at org.eclipse.jetty.server.Server.handle(Server.java:505)<br> at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:370)<br> at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:267)<br> at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:305)<br> at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:103)<br> at org.eclipse.jetty.io.ChannelEndPoint$2.run(ChannelEndPoint.java:117)<br> at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:333)<br> at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:310)<br> at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:168)<br> at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:126)<br> at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:366)<br> at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:698)<br> at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:804)<br> at java.lang.Thread.run(Thread.java:748)<br></pre>
at hudson.util.FormValidation._errorWithMarkup(FormValidation.java:268)
at hudson.util.FormValidation._error(FormValidation.java:200)
at hudson.util.FormValidation.error(FormValidation.java:190)
at jenkins.util.JSONSignatureValidator.verifySignature(JSONSignatureValidator.java:137)
at hudson.model.DownloadService$Downloadable.updateNow(DownloadService.java:416)
at hudson.PluginManager.checkUpdatesServer(PluginManager.java:1769)
at hudson.util.Retrier.start(Retrier.java:62)
at hudson.PluginManager.doCheckUpdatesServer(PluginManager.java:1733)
at java.lang.invoke.MethodHandle.invokeWithArguments(MethodHandle.java:627)
at org.kohsuke.stapler.Function$MethodFunction.invoke(Function.java:396)
at org.kohsuke.stapler.Function$InstanceFunction.invoke(Function.java:408)
at org.kohsuke.stapler.interceptor.RequirePOST$Processor.invoke(RequirePOST.java:77)
at org.kohsuke.stapler.PreInvokeInterceptedFunction.invoke(PreInvokeInterceptedFunction.java:26)
at org.kohsuke.stapler.Function.bindAndInvoke(Function.java:212)
at org.kohsuke.stapler.Function.bindAndInvokeAndServeResponse(Function.java:145)
at org.kohsuke.stapler.MetaClass$11.doDispatch(MetaClass.java:535)
at org.kohsuke.stapler.NameBasedDispatcher.dispatch(NameBasedDispatcher.java:58)
at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:747)
at org.kohsuke.stapler.Stapler.invoke(Stapler.java:878)
at org.kohsuke.stapler.MetaClass$1.doDispatch(MetaClass.java:169)
at org.kohsuke.stapler.NameBasedDispatcher.dispatch(NameBasedDispatcher.java:58)
at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:747)
at org.kohsuke.stapler.Stapler.invoke(Stapler.java:878)
at org.kohsuke.stapler.Stapler.invoke(Stapler.java:676)
at org.kohsuke.stapler.Stapler.service(Stapler.java:238)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)
at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:873)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1623)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:154)
at org.jenkinsci.plugins.ssegateway.Endpoint$SSEListenChannelFilter.doFilter(Endpoint.java:246)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)
at io.jenkins.blueocean.ResourceCacheControl.doFilter(ResourceCacheControl.java:134)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)
at io.jenkins.blueocean.auth.jwt.impl.JwtAuthenticationFilter.doFilter(JwtAuthenticationFilter.java:61)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)
at jenkins.metrics.impl.MetricsFilter.doFilter(MetricsFilter.java:125)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)
at net.bull.javamelody.MonitoringFilter.doFilter(MonitoringFilter.java:239)
at net.bull.javamelody.MonitoringFilter.doFilter(MonitoringFilter.java:215)
at net.bull.javamelody.PluginMonitoringFilter.doFilter(PluginMonitoringFilter.java:88)
at org.jvnet.hudson.plugins.monitoring.HudsonMonitoringFilter.doFilter(HudsonMonitoringFilter.java:114)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)
at jenkins.telemetry.impl.UserLanguages$AcceptLanguageFilter.doFilter(UserLanguages.java:128)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)
at hudson.util.PluginServletFilter.doFilter(PluginServletFilter.java:157)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at hudson.security.csrf.CrumbFilter.doFilter(CrumbFilter.java:99)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:84)
at hudson.security.UnwrapSecurityExceptionFilter.doFilter(UnwrapSecurityExceptionFilter.java:51)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at jenkins.security.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:117)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at org.acegisecurity.providers.anonymous.AnonymousProcessingFilter.doFilter(AnonymousProcessingFilter.java:125)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at org.acegisecurity.ui.rememberme.RememberMeProcessingFilter.doFilter(RememberMeProcessingFilter.java:142)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at org.acegisecurity.ui.AbstractProcessingFilter.doFilter(AbstractProcessingFilter.java:271)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at jenkins.security.BasicHeaderProcessor.doFilter(BasicHeaderProcessor.java:93)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at org.acegisecurity.context.HttpSessionContextIntegrationFilter.doFilter(HttpSessionContextIntegrationFilter.java:249)
at hudson.security.HttpSessionContextIntegrationFilter2.doFilter(HttpSessionContextIntegrationFilter2.java:67)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at hudson.security.ChainedServletFilter.doFilter(ChainedServletFilter.java:90)
at hudson.security.HudsonFilter.doFilter(HudsonFilter.java:171)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at org.kohsuke.stapler.compression.CompressionFilter.doFilter(CompressionFilter.java:49)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at hudson.util.CharacterEncodingFilter.doFilter(CharacterEncodingFilter.java:82)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at org.kohsuke.stapler.DiagnosticThreadNameFilter.doFilter(DiagnosticThreadNameFilter.java:30)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:540)
at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:146)
at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:524)
at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:132)
at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:257)
at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1700)
at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:255)
at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1345)
at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:203)
at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:480)
at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1667)
at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:201)
at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1247)
at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:144)
at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:132)
at org.eclipse.jetty.server.Server.handle(Server.java:505)
at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:370)
at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:267)
at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:305)
at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:103)
at org.eclipse.jetty.io.ChannelEndPoint$2.run(ChannelEndPoint.java:117)
at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:333)
at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:310)
at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:168)
at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:126)
at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:366)
at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:698)
at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:804)
at java.lang.Thread.run(Thread.java:748)
Joshua Spiewak
added a comment - 2.190.1 as well. Stack trace below. Appears to be an issue with the JDKInstaller. Most items [here| https://updates.jenkins.io/updates/?C=M;O=A ] were updated today, a small handful were not.
2019-11-20 14:44:07.398+0000 [id=2431402] INFO hudson.model.UpdateSite#updateData: Obtained the latest update center data
file for UpdateSource default
2019-11-20 14:44:07.549+0000 [id=2431402] INFO h.m.DownloadService$Downloadable#load: Obtained the updated data file for
hudson.tasks.Maven.MavenInstaller
2019-11-20 14:44:07.560+0000 [id=2431402] INFO h.m.DownloadService$Downloadable#load: Obtained the updated data file for
hudson.tasks.Ant.AntInstaller
2019-11-20 14:44:07.582+0000 [id=2431402] INFO h.m.DownloadService$Downloadable#load: Obtained the updated data file for
hudson.plugins.groovy.GroovyInstaller
2019-11-20 14:44:07.754+0000 [id=2431402] WARNING h.m.DownloadService$Downloadable#updateNow: signature check failed for htt
ps://updates.jenkins-ci.org/updates/hudson.tools.JDKInstaller.json
ERROR: Signature verification failed in downloadable 'hudson.tools.JDKInstaller' <a href='#' class='showDetails'>(show d
etails)</a><pre style='display:none'>java.security.cert.CertificateExpiredException: NotAfter: Tue Nov 19 21:21:39 UTC 2019<br>
at sun.security.x509.CertificateValidity.valid(CertificateValidity.java:274)<br> at sun.security.x509.X509CertImpl.c
heckValidity(X509CertImpl.java:629)<br> at sun.security.provider.certpath.BasicChecker.verifyValidity(BasicChecker.java:190)<
br> at sun.security.provider.certpath.BasicChecker.check(BasicChecker.java:144)<br> at sun.security.provider.certpath.PKIXM
asterCertPathValidator.validate(PKIXMasterCertPathValidator.java:125)<br>Caused: java.security.cert.CertPathValidatorException: va
lidity check failed<br> at sun.security.provider.certpath.PKIXMasterCertPathValidator.validate(PKIXMasterCertPathValidator.
java:135)<br> at sun.security.provider.certpath.PKIXCertPathValidator.validate(PKIXCertPathValidator.java:233)<br> at su
n.security.provider.certpath.PKIXCertPathValidator.validate(PKIXCertPathValidator.java:141)<br> at sun.security.provider.certpa
th.PKIXCertPathValidator.engineValidate(PKIXCertPathValidator.java:80)<br> at java.security.cert.CertPathValidator.validate(
CertPathValidator.java:292)<br> at org.jvnet.hudson.crypto.CertificateUtil.validatePath(CertificateUtil.java:93)<br> at
jenkins.util.JSONSignatureValidator.verifySignature(JSONSignatureValidator.java:88)<br> at hudson.model.DownloadService$Downloadable.updateNow(DownloadService.java:416)<br> at hudson.PluginManager.checkUpdatesServer(PluginManager.java:1769)<br> at hudson.util.Retrier.start(Retrier.java:62)<br> at hudson.PluginManager.doCheckUpdatesServer(PluginManager.java:1733)<br> at java.lang.invoke.MethodHandle.invokeWithArguments(MethodHandle.java:627)<br> at org.kohsuke.stapler.Function$MethodFunction.invoke(Function.java:396)<br> at org.kohsuke.stapler.Function$InstanceFunction.invoke(Function.java:408)<br> at org.kohsuke.stapler.interceptor.RequirePOST$Processor.invoke(RequirePOST.java:77)<br> at org.kohsuke.stapler.PreInvokeInterceptedFunction.invoke(PreInvokeInterceptedFunction.java:26)<br> at org.kohsuke.stapler.Function.bindAndInvoke(Function.java:212)<br> at org.kohsuke.stapler.Function.bindAndInvokeAndServeResponse(Function.java:145)<br> at org.kohsuke.stapler.MetaClass$11.doDispatch(MetaClass.java:535)<br> at org.kohsuke.stapler.NameBasedDispatcher.dispatch(NameBasedDispatcher.java:58)<br> at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:747)<br> at org.kohsuke.stapler.Stapler.invoke(Stapler.java:878)<br> at org.kohsuke.stapler.MetaClass$1.doDispatch(MetaClass.java:169)<br> at org.kohsuke.stapler.NameBasedDispatcher.dispatch(NameBasedDispatcher.java:58)<br> at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:747)<br> at org.kohsuke.stapler.Stapler.invoke(Stapler.java:878)<br> at org.kohsuke.stapler.Stapler.invoke(Stapler.java:676)<br> at org.kohsuke.stapler.Stapler.service(Stapler.java:238)<br>
at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)<br> at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:873)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1623)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:154)<br> at org.jenkinsci.plugins.ssegateway.Endpoint$SSEListenChannelFilter.doFilter(Endpoint.java:246)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)<br> at io.jenkins.blueocean.ResourceCacheControl.doFilter(ResourceCacheControl.java:134)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)<br> at io.jenkins.blueocean.auth.jwt.impl.JwtAuthenticationFilter.doFilter(JwtAuthenticationFilter.java:61)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)<br> at jenkins.metrics.impl.MetricsFilter.doFilter(MetricsFilter.java:125)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)<br> at net.bull.javamelody.MonitoringFilter.doFilter(MonitoringFilter.java:239)<br> at net.bull.javamelody.MonitoringFilter.doFilter(MonitoringFilter.java:215)<br> at net.bull.javamelody.PluginMonitoringFilter.doFilter(PluginMonitoringFilter.java:88)<br> at org.jvnet.hudson.plugins.monitoring.HudsonMonitoringFilter.doFilter(HudsonMonitoringFilter.java:114)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)<br> at jenkins.telemetry.impl.UserLanguages$AcceptLanguageFilter.doFilter(UserLanguages.java:128)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)<br> at hudson.util.PluginServletFilter.doFilter(PluginServletFilter.java:157)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at hudson.security.csrf.CrumbFilter.doFilter(CrumbFilter.java:99)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:84)<br> at hudson.security.UnwrapSecurityExceptionFilter.doFilter(UnwrapSecurityExceptionFilter.java:51)<br>
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at jenkins.security.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:117)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at org.acegisecurity.providers.anonymous.AnonymousProcessingFilter.doFilter(AnonymousProcessingFilter.java:125)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at org.acegisecurity.ui.rememberme.RememberMeProcessingFilter.doFilter(RememberMeProcessingFilter.java:142)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at org.acegisecurity.ui.AbstractProcessingFilter.doFilter(AbstractProcessingFilter.java:271)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at jenkins.security.BasicHeaderProcessor.doFilter(BasicHeaderProcessor.java:93)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at org.acegisecurity.context.HttpSessionContextIntegrationFilter.doFilter(HttpSessionContextIntegrationFilter.java:249)<br> at hudson.security.HttpSessionContextIntegrationFilter2.doFilter(HttpSessionContextIntegrationFilter2.java:67)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at hudson.security.ChainedServletFilter.doFilter(ChainedServletFilter.java:90)<br> at hudson.security.HudsonFilter.doFilter(HudsonFilter.java:171)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at org.kohsuke.stapler.compression.CompressionFilter.doFilter(CompressionFilter.java:49)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at hudson.util.CharacterEncodingFilter.doFilter(CharacterEncodingFilter.java:82)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at org.kohsuke.stapler.DiagnosticThreadNameFilter.doFilter(DiagnosticThreadNameFilter.java:30)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:540)<br> at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:146)<br> at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:524)<br> at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:132)<br> at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:257)<br> at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1700)<br> at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:255)<br> at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1345)<br> at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:203)<br> at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:480)<br> at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1667)<br> at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:201)<br> at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1247)<br> at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:144)<br> at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:132)<br> at org.eclipse.jetty.server.Server.handle(Server.java:505)<br> at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:370)<br> at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:267)<br> at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:305)<br> at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:103)<br> at org.eclipse.jetty.io.ChannelEndPoint$2.run(ChannelEndPoint.java:117)<br> at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:333)<br> at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:310)<br> at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:168)<br> at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:126)<br> at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:366)<br> at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:698)<br> at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:804)<br> at java.lang.Thread.run(Thread.java:748)<br></pre>
at hudson.util.FormValidation._errorWithMarkup(FormValidation.java:268)
at hudson.util.FormValidation._error(FormValidation.java:200)
at hudson.util.FormValidation.error(FormValidation.java:190)
at jenkins.util.JSONSignatureValidator.verifySignature(JSONSignatureValidator.java:137)
at hudson.model.DownloadService$Downloadable.updateNow(DownloadService.java:416)
at hudson.PluginManager.checkUpdatesServer(PluginManager.java:1769)
at hudson.util.Retrier.start(Retrier.java:62)
at hudson.PluginManager.doCheckUpdatesServer(PluginManager.java:1733)
at java.lang.invoke.MethodHandle.invokeWithArguments(MethodHandle.java:627)
at org.kohsuke.stapler.Function$MethodFunction.invoke(Function.java:396)
at org.kohsuke.stapler.Function$InstanceFunction.invoke(Function.java:408)
at org.kohsuke.stapler.interceptor.RequirePOST$Processor.invoke(RequirePOST.java:77)
at org.kohsuke.stapler.PreInvokeInterceptedFunction.invoke(PreInvokeInterceptedFunction.java:26)
at org.kohsuke.stapler.Function.bindAndInvoke(Function.java:212)
at org.kohsuke.stapler.Function.bindAndInvokeAndServeResponse(Function.java:145)
at org.kohsuke.stapler.MetaClass$11.doDispatch(MetaClass.java:535)
at org.kohsuke.stapler.NameBasedDispatcher.dispatch(NameBasedDispatcher.java:58)
at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:747)
at org.kohsuke.stapler.Stapler.invoke(Stapler.java:878)
at org.kohsuke.stapler.MetaClass$1.doDispatch(MetaClass.java:169)
at org.kohsuke.stapler.NameBasedDispatcher.dispatch(NameBasedDispatcher.java:58)
at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:747)
at org.kohsuke.stapler.Stapler.invoke(Stapler.java:878)
at org.kohsuke.stapler.Stapler.invoke(Stapler.java:676)
at org.kohsuke.stapler.Stapler.service(Stapler.java:238)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)
at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:873)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1623)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:154)
at org.jenkinsci.plugins.ssegateway.Endpoint$SSEListenChannelFilter.doFilter(Endpoint.java:246)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)
at io.jenkins.blueocean.ResourceCacheControl.doFilter(ResourceCacheControl.java:134)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)
at io.jenkins.blueocean.auth.jwt.impl.JwtAuthenticationFilter.doFilter(JwtAuthenticationFilter.java:61)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)
at jenkins.metrics.impl.MetricsFilter.doFilter(MetricsFilter.java:125)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)
at net.bull.javamelody.MonitoringFilter.doFilter(MonitoringFilter.java:239)
at net.bull.javamelody.MonitoringFilter.doFilter(MonitoringFilter.java:215)
at net.bull.javamelody.PluginMonitoringFilter.doFilter(PluginMonitoringFilter.java:88)
at org.jvnet.hudson.plugins.monitoring.HudsonMonitoringFilter.doFilter(HudsonMonitoringFilter.java:114)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)
at jenkins.telemetry.impl.UserLanguages$AcceptLanguageFilter.doFilter(UserLanguages.java:128)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)
at hudson.util.PluginServletFilter.doFilter(PluginServletFilter.java:157)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at hudson.security.csrf.CrumbFilter.doFilter(CrumbFilter.java:99)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:84)
at hudson.security.UnwrapSecurityExceptionFilter.doFilter(UnwrapSecurityExceptionFilter.java:51)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at jenkins.security.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:117)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at org.acegisecurity.providers.anonymous.AnonymousProcessingFilter.doFilter(AnonymousProcessingFilter.java:125)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at org.acegisecurity.ui.rememberme.RememberMeProcessingFilter.doFilter(RememberMeProcessingFilter.java:142)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at org.acegisecurity.ui.AbstractProcessingFilter.doFilter(AbstractProcessingFilter.java:271)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at jenkins.security.BasicHeaderProcessor.doFilter(BasicHeaderProcessor.java:93)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at org.acegisecurity.context.HttpSessionContextIntegrationFilter.doFilter(HttpSessionContextIntegrationFilter.java:249)
at hudson.security.HttpSessionContextIntegrationFilter2.doFilter(HttpSessionContextIntegrationFilter2.java:67)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at hudson.security.ChainedServletFilter.doFilter(ChainedServletFilter.java:90)
at hudson.security.HudsonFilter.doFilter(HudsonFilter.java:171)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at org.kohsuke.stapler.compression.CompressionFilter.doFilter(CompressionFilter.java:49)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at hudson.util.CharacterEncodingFilter.doFilter(CharacterEncodingFilter.java:82)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at org.kohsuke.stapler.DiagnosticThreadNameFilter.doFilter(DiagnosticThreadNameFilter.java:30)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:540)
at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:146)
at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:524)
at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:132)
at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:257)
at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1700)
at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:255)
at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1345)
at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:203)
at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:480)
at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1667)
at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:201)
at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1247)
at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:144)
at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:132)
at org.eclipse.jetty.server.Server.handle(Server.java:505)
at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:370)
at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:267)
at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:305)
at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:103)
at org.eclipse.jetty.io.ChannelEndPoint$2.run(ChannelEndPoint.java:117)
at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:333)
at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:310)
at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:168)
at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:126)
at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:366)
at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:698)
at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:804)
at java.lang.Thread.run(Thread.java:748) ```
WARNING h.m.DownloadService$Downloadable#updateNow: signature check failed for https://updates.jenkins.io/updates/hudson.tools.JDKInstaller.json
ERROR: Signature verification failed in downloadable 'hudson.tools.JDKInstaller' <a href='#' class='showDetails'>(show details)</a><pre style='display:none'>java.security.cert.CertificateExpiredException: NotAfter: Tue Nov 19 22:21:39 CET 2019<br> at sun.security.x509.CertificateValidity.valid(CertificateValidity.java:274)<br> at sun.security.x509.X509CertImpl.checkValidity(X509CertImpl.java:629)<br> at sun.security.provider.certpath.BasicChecker.verifyValidity(BasicChecker.java:190)<br> at sun.security.provider.certpath.BasicChecker.check(BasicChecker.java:144)<br> at sun.security.provider.certpath.PKIXMasterCertPathValidator.validate(PKIXMasterCertPathValidator.java:125)<br>Caused: java.security.cert.CertPathValidatorException: validity check failed<br> at sun.security.provider.certpath.PKIXMasterCertPathValidator.validate(PKIXMasterCertPathValidator.java:135)<br> at sun.security.provider.certpath.PKIXCertPathValidator.validate(PKIXCertPathValidator.java:233)<br> at sun.security.provider.certpath.PKIXCertPathValidator.validate(PKIXCertPathValidator.java:141)<br> at sun.security.provider.certpath.PKIXCertPathValidator.engineValidate(PKIXCertPathValidator.java:80)<br> at java.security.cert.CertPathValidator.validate(CertPathValidator.java:292)<br> at org.jvnet.hudson.crypto.CertificateUtil.validatePath(CertificateUtil.java:93)<br> at jenkins.util.JSONSignatureValidator.verifySignature(JSONSignatureValidator.java:88)<br> at hudson.model.DownloadService$Downloadable.updateNow(DownloadService.java:416)<br> at hudson.PluginManager.checkUpdatesServer(PluginManager.java:1769)<br> at hudson.util.Retrier.start(Retrier.java:62)<br> at hudson.PluginManager.doCheckUpdatesServer(PluginManager.java:1733)<br> at java.lang.invoke.MethodHandle.invokeWithArguments(MethodHandle.java:627)<br> at org.kohsuke.stapler.Function$MethodFunction.invoke(Function.java:396)<br> at org.kohsuke.stapler.Function$InstanceFunction.invoke(Function.java:408)<br> at org.kohsuke.stapler.interceptor.RequirePOST$Processor.invoke(RequirePOST.java:77)<br> at org.kohsuke.stapler.PreInvokeInterceptedFunction.invoke(PreInvokeInterceptedFunction.java:26)<br> at org.kohsuke.stapler.Function.bindAndInvoke(Function.java:212)<br> at org.kohsuke.stapler.Function.bindAndInvokeAndServeResponse(Function.java:145)<br> at org.kohsuke.stapler.MetaClass$11.doDispatch(MetaClass.java:535)<br> at org.kohsuke.stapler.NameBasedDispatcher.dispatch(NameBasedDispatcher.java:58)<br> at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:747)<br> at org.kohsuke.stapler.Stapler.invoke(Stapler.java:878)<br> at org.kohsuke.stapler.MetaClass$1.doDispatch(MetaClass.java:169)<br> at org.kohsuke.stapler.NameBasedDispatcher.dispatch(NameBasedDispatcher.java:58)<br> at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:747)<br> at org.kohsuke.stapler.Stapler.invoke(Stapler.java:878)<br> at org.kohsuke.stapler.Stapler.invoke(Stapler.java:676)<br> at org.kohsuke.stapler.Stapler.service(Stapler.java:238)<br> at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)<br> at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:873)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1623)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:154)<br> at jenkins.telemetry.impl.UserLanguages$AcceptLanguageFilter.doFilter(UserLanguages.java:128)<br> at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)<br> at hudson.util.PluginServletFilter.doFilter(PluginServletFilter.java:157)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at hudson.security.csrf.CrumbFilter.doFilter(CrumbFilter.java:99)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:84)<br> at hudson.security.UnwrapSecurityExceptionFilter.doFilter(UnwrapSecurityExceptionFilter.java:51)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at jenkins.security.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:117)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at org.acegisecurity.providers.anonymous.AnonymousProcessingFilter.doFilter(AnonymousProcessingFilter.java:125)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at org.acegisecurity.ui.rememberme.RememberMeProcessingFilter.doFilter(RememberMeProcessingFilter.java:142)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at org.acegisecurity.ui.AbstractProcessingFilter.doFilter(AbstractProcessingFilter.java:271)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at jenkins.security.BasicHeaderProcessor.doFilter(BasicHeaderProcessor.java:93)<br> at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at org.acegisecurity.context.HttpSessionContextIntegrationFilter.doFilter(HttpSessionContextIntegrationFilter.java:249)<br> at hudson.security.HttpSessionContextIntegrationFilter2.doFilter(HttpSessionContextIntegrationFilter2.java:67)<br>at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)<br> at hudson.security.ChainedServletFilter.doFilter(ChainedServletFilter.java:90)<br> at hudson.security.HudsonFilter.doFilter(HudsonFilter.java:171)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at org.kohsuke.stapler.compression.CompressionFilter.doFilter(CompressionFilter.java:49)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at hudson.util.CharacterEncodingFilter.doFilter(CharacterEncodingFilter.java:82)<br> at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at org.kohsuke.stapler.DiagnosticThreadNameFilter.doFilter(DiagnosticThreadNameFilter.java:30)<br>at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)<br> at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:540)<br> at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:146)<br> at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:524)<br> at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:132)<br> at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:257)<br> at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1700)<br> at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:255)<br> at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1345)<br> at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:203)<br> at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:480)<br> at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1667)<br> at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:201)<br> at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1247)<br> at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:144)<br> at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:132)<br> at org.eclipse.jetty.server.Server.handle(Server.java:505)<br> at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:370)<br> at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:267)<br> at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:305)<br> at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:103)<br> at org.eclipse.jetty.io.ChannelEndPoint$2.run(ChannelEndPoint.java:117)<br> at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:333)<br> at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:310)<br> at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:168)<br> at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:126)<br> at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:366)<br> at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:698)<br> at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:804)<br> at java.lang.Thread.run(Thread.java:748)<br></pre>
at hudson.util.FormValidation._errorWithMarkup(FormValidation.java:268)
at hudson.util.FormValidation._error(FormValidation.java:200)
at hudson.util.FormValidation.error(FormValidation.java:190)
at jenkins.util.JSONSignatureValidator.verifySignature(JSONSignatureValidator.java:137)
at hudson.model.DownloadService$Downloadable.updateNow(DownloadService.java:416)
at hudson.PluginManager.checkUpdatesServer(PluginManager.java:1769)
at hudson.util.Retrier.start(Retrier.java:62)
at hudson.PluginManager.doCheckUpdatesServer(PluginManager.java:1733)
at java.lang.invoke.MethodHandle.invokeWithArguments(MethodHandle.java:627)
at org.kohsuke.stapler.Function$MethodFunction.invoke(Function.java:396)
at org.kohsuke.stapler.Function$InstanceFunction.invoke(Function.java:408)
at org.kohsuke.stapler.interceptor.RequirePOST$Processor.invoke(RequirePOST.java:77)
at org.kohsuke.stapler.PreInvokeInterceptedFunction.invoke(PreInvokeInterceptedFunction.java:26)
at org.kohsuke.stapler.Function.bindAndInvoke(Function.java:212)
at org.kohsuke.stapler.Function.bindAndInvokeAndServeResponse(Function.java:145)
at org.kohsuke.stapler.MetaClass$11.doDispatch(MetaClass.java:535)
at org.kohsuke.stapler.NameBasedDispatcher.dispatch(NameBasedDispatcher.java:58)
at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:747)
at org.kohsuke.stapler.Stapler.invoke(Stapler.java:878)
at org.kohsuke.stapler.MetaClass$1.doDispatch(MetaClass.java:169)
at org.kohsuke.stapler.NameBasedDispatcher.dispatch(NameBasedDispatcher.java:58)
at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:747)
at org.kohsuke.stapler.Stapler.invoke(Stapler.java:878)
at org.kohsuke.stapler.Stapler.invoke(Stapler.java:676)
at org.kohsuke.stapler.Stapler.service(Stapler.java:238)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)
at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:873)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1623)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:154)
at jenkins.telemetry.impl.UserLanguages$AcceptLanguageFilter.doFilter(UserLanguages.java:128)
at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151)
at hudson.util.PluginServletFilter.doFilter(PluginServletFilter.java:157)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at hudson.security.csrf.CrumbFilter.doFilter(CrumbFilter.java:99)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:84)
at hudson.security.UnwrapSecurityExceptionFilter.doFilter(UnwrapSecurityExceptionFilter.java:51)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at jenkins.security.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:117)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at org.acegisecurity.providers.anonymous.AnonymousProcessingFilter.doFilter(AnonymousProcessingFilter.java:125)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at org.acegisecurity.ui.rememberme.RememberMeProcessingFilter.doFilter(RememberMeProcessingFilter.java:142)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at org.acegisecurity.ui.AbstractProcessingFilter.doFilter(AbstractProcessingFilter.java:271)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at jenkins.security.BasicHeaderProcessor.doFilter(BasicHeaderProcessor.java:93)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at org.acegisecurity.context.HttpSessionContextIntegrationFilter.doFilter(HttpSessionContextIntegrationFilter.java:249)
at hudson.security.HttpSessionContextIntegrationFilter2.doFilter(HttpSessionContextIntegrationFilter2.java:67)
at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at hudson.security.ChainedServletFilter.doFilter(ChainedServletFilter.java:90)
at hudson.security.HudsonFilter.doFilter(HudsonFilter.java:171)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at org.kohsuke.stapler.compression.CompressionFilter.doFilter(CompressionFilter.java:49)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at hudson.util.CharacterEncodingFilter.doFilter(CharacterEncodingFilter.java:82)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at org.kohsuke.stapler.DiagnosticThreadNameFilter.doFilter(DiagnosticThreadNameFilter.java:30)
at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1610)
at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:540)
at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:146)
at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:524)
at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:132)
at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:257)
at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1700)
at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:255)
at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1345)
at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:203)
at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:480)
at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1667)
at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:201)
at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1247)
at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:144)
at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:132)
at org.eclipse.jetty.server.Server.handle(Server.java:505)
at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:370)
at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:267)
at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:305)
at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:103)
at org.eclipse.jetty.io.ChannelEndPoint$2.run(ChannelEndPoint.java:117)
at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:333)
at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:310)
at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:168)
at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:126)
at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:366)
at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:698)
at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:804)
at java.lang.Thread.run(Thread.java:748)
2019-11-20 14:07:41.744+0000 [id=18] INFO hudson.util.Retrier#start: Attempted the action check updates server for 1 time(s) with no success
2019-11-20 14:07:41.744+0000 [id=18] SEVERE hudson.PluginManager#doCheckUpdatesServer: Error checking update sites for 1 attempt(s). Last exception was: None of the tool installer metadata passed the signature check
```
https://issues.jenkins-ci.org/browse/INFRA-2345
There are expired certificates used to sign these tool bundles.
Björn Pedersen
added a comment - - edited https://issues.jenkins-ci.org/browse/INFRA-2345
There are expired certificates used to sign these tool bundles. I'm getting the same error with http://updates.jenkins.io/update-center.json (not HTTPS). I downloaded that URL with wget, it starts with "updateCenter.post(" without quotes, then some valid JSON file, then ");"
That's not a valid JSON file.
Actually, Jenkins log indicates that there is an issue with an expired certificate:
signature check failed for http://updates.jenkins.io/updates/hudson.tools.JDKInstaller.json
ERROR: Signature verification failed in downloadable 'hudson.tools.JDKInstaller' <a href='#' class='showDetails'>(show details)</a><pre style='display:none'>java.security.cert.CertificateExpiredException: NotAfter: Tue Nov 19 21:21:39 UTC 2019<br> at sun.security.x509.CertificateValidity.valid(CertificateValidity.java:274)<br> at sun.security.x509.X509CertImpl.checkValidity(X509CertImpl.java:629)<br> at sun.security.provider.certpath.BasicChecker.verifyValidity(BasicChecker.java:190)<br> at
There is no https URL in the log. The date (Nov 19 21:21:39 UTC 2019) is clearly in the past.
That's not a valid JSON file.
No, it is JSONP, despite the name. update-center.actual.json is JSON.
Good to know, thank you for clarification.
The issue has just gone away, I assume it has been resolved. From the Jenkins log:
Nov 20, 2019 1:38:15 PM INFO hudson.util.Retrier start
Attempt #1 to do the action check updates server
Nov 20, 2019 1:38:30 PM INFO hudson.model.UpdateSite updateData
Obtained the latest update center data file for UpdateSource default
Nov 20, 2019 1:38:31 PM INFO hudson.model.DownloadService$Downloadable load
Obtained the updated data file for hudson.tasks.Maven.MavenInstaller
Nov 20, 2019 1:38:31 PM INFO hudson.model.DownloadService$Downloadable load
Obtained the updated data file for hudson.tasks.Ant.AntInstaller
Nov 20, 2019 1:38:31 PM INFO hudson.model.DownloadService$Downloadable load
Obtained the updated data file for hudson.plugins.nodejs.tools.NodeJSInstaller
Nov 20, 2019 1:38:32 PM INFO hudson.model.DownloadService$Downloadable load
Obtained the updated data file for hudson.tools.JDKInstaller
Nov 20, 2019 1:38:32 PM INFO hudson.util.Retrier start
Performed the action check updates server successfully at the attempt #1
it looks like that initial Jenkins Server setup from scratch works
the issue comes up after my plugins were installed:
Active Directory plugin 2.24 Allure Jenkins Plugin 2.29.0 Apache HttpComponents Client 4.x API Plugin 4.5.13-1.0 Bootstrap 4 API Plugin 4.6.0-3 Bootstrap 5 API Plugin 5.0.1-2 bouncycastle API Plugin 2.20 Branch API Plugin 2.6.4 Caffeine API Plugin 2.9.1-23.v51c4e2c879c8 Checks API plugin 1.7.0 Command Agent Launcher Plugin 1.6 Copy Artifact Plugin 1.46.1 Credentials Binding Plugin 1.26 Credentials Plugin 2.5 Display URL API 2.3.5 Durable Task Plugin 1.37 ECharts API Plugin 5.1.2-2 Folders Plugin 6.15 Font Awesome API Plugin 5.15.3-3 Git client plugin 3.7.2 Git plugin 4.7.2 GIT server Plugin 1.9 Jackson 2 API Plugin 2.12.3 JavaScript GUI Lib: ACE Editor bundle plugin 1.1 JavaScript GUI Lib: Handlebars bundle plugin 3.0.8 JavaScript GUI Lib: Moment.js bundle plugin 1.1.1 JQuery3 API Plugin 3.6.0-1 JSch dependency plugin 0.1.55.2 JUnit Plugin 1.51 Lockable Resources plugin 2.11 Mailer Plugin 1.34 MapDB API Plugin 1.0.9.0 Mask Passwords Plugin 3.0 Matrix Authorization Strategy Plugin 2.6.7 Matrix Project Plugin 1.19 MSTest plugin 1.0.0 NUnit plugin 0.27 Oracle Java SE Development Kit Installer Plugin 1.5 Pipeline 2.6 Pipeline Graph Analysis Plugin 1.11 Pipeline: API 2.46 Pipeline: Basic Steps 2.23 Pipeline: Build Step 2.13 Pipeline: Declarative 1.8.5 Pipeline: Declarative Extension Points API 1.8.5 Pipeline: Groovy 2.92 Pipeline: Input Step 2.12 Pipeline: Job 2.41 Pipeline: Milestone Step 1.3.2 Pipeline: Model API 1.8.5 Pipeline: Multibranch 2.26 Pipeline: Nodes and Processes 2.39 Pipeline: REST API Plugin 2.19 Pipeline: SCM Step 2.13 Pipeline: Shared Groovy Libraries 2.21 Pipeline: Stage Step 2.5 Pipeline: Stage Tags Metadata 1.8.5 Pipeline: Stage View Plugin 2.19 Pipeline: Step API 2.23 Pipeline: Supporting APIs 3.8 Plain Credentials Plugin 1.7 Plugin Utilities API Plugin 2.3.0 Popper.js 2 API Plugin 2.5.4-2 Popper.js API Plugin 1.16.1-2 Role-based Authorization Strategy 3.1.1 SCM API Plugin 2.6.4 Script Security Plugin 1.77 Simple Theme Plugin 0.6 Snakeyaml API Plugin 1.29.1 SSH Credentials Plugin 1.19 SSH server 3.0.3 Structs Plugin 1.23 Subversion Plug-in 2.14.4 ThinBackup 1.10 Trilead API Plugin 1.0.13
the issue is definitely coming up with plugin:
Allure Jenkins Plugin 2.29.0
after uninstalling it ... all works again as expected
Hello thomaspatzig please favor using the users mailing list for such questions. https://www.jenkins.io/mailing-lists/
Here you reopened an issue that has probably no real link to your issue, which makes it hard to understand.
I would have questions, like what in the Jenkins changelog you've looked at before upgrading would seem related to your issue, but let's use another thread/place to discuss your specifics.
Thanks!
thomaspatzig thanks for the mention, though I spent quite some time trying to understand the problem that is being described. I'm still not confident that I've duplicated the problem that was originally described in this issue, but I see a problem that I would like others to confirm is somehow related to the original issue.
I defined a Jenkins 2.289.2 installation that includes the Allure Jenkins plugin. The Allure Jenkins plugin has a tool installer. I believe that will cause Jenkins to check the tool installers when it starts. The plugins.txt file that I used to define that installation is:
# mkdir plugins # java -jar ../jenkins-plugin-manager-2.10.0.jar --jenkins-version 2.289.2 \ # --latest false --plugin-download-directory plugins --plugin-file plugins.txt # JENKINS_HOME=. java -jar ../jenkins-2.289.2.war allure-jenkins-plugin:2.29.0 bootstrap4-api:4.6.0-3 bootstrap5-api:5.0.1-2 caffeine-api:2.9.1-23.v51c4e2c879c8 checks-api:1.7.0 display-url-api:2.3.5 echarts-api:5.1.2-2 font-awesome-api:5.15.3-3 jackson2-api:2.12.3 jquery3-api:3.6.0-1 junit:1.51 matrix-project:1.19 plugin-util-api:2.3.0 popper2-api:2.5.4-2 popper-api:1.16.1-2 scm-api:2.6.4 script-security:1.77 snakeyaml-api:1.29.1 structs:1.23 workflow-api:2.46 workflow-step-api:2.23 workflow-support:3.8
When I start that Jenkins installation, the Jenkins update center reports "There were errors checking the update sites: None of the tool installer metadata passed the signature check":
The Jenkins log (available from /log/all in the Jenkins installation) reports:
Jul 06, 2021 8:50:06 AM WARNING hudson.model.DownloadService$Downloadable updateNow
signature check failed for https://updates.jenkins.io/updates/ru.yandex.qatools.allure.jenkins.tools.AllureCommandlineInstaller.json
ERROR: Signature verification failed in downloadable 'ru.yandex.qatools.allure.jenkins.tools.AllureCommandlineInstaller'
<a href='#' class='showDetails'>(show details)</a>
<pre style='display:none'>java.security.cert.CertificateExpiredException: NotAfter: Sun Jun 27 04:02:28 MDT 2021<br>
at java.base/sun.security.x509.CertificateValidity.valid(CertificateValidity.java:277)<br>
at java.base/sun.security.x509.X509CertImpl.checkValidity(X509CertImpl.java:675)<br>
at java.base/sun.security.provider.certpath.BasicChecker.verifyValidity(BasicChecker.java:190)<br>
at java.base/sun.security.provider.certpath.BasicChecker.check(BasicChecker.java:144)<br>
at java.base/sun.security.provider.certpath.PKIXMasterCertPathValidator.validate(PKIXMasterCertPathValidator.java:125)<br>
Caused: java.security.cert.CertPathValidatorException: validity check failed<br>
at java.base/sun.security.provider.certpath.PKIXMasterCertPathValidator.validate(PKIXMasterCertPathValidator.java:135)<br>
at java.base/sun.security.provider.certpath.PKIXCertPathValidator.validate(PKIXCertPathValidator.java:237)<br>
at java.base/sun.security.provider.certpath.PKIXCertPathValidator.validate(PKIXCertPathValidator.java:145)<br>
at java.base/sun.security.provider.certpath.PKIXCertPathValidator.engineValidate(PKIXCertPathValidator.java:84)<br>
at java.base/java.security.cert.CertPathValidator.validate(CertPathValidator.java:309)<br>
at org.jvnet.hudson.crypto.CertificateUtil.validatePath(CertificateUtil.java:93)<br>
at jenkins.util.JSONSignatureValidator.verifySignature(JSONSignatureValidator.java:89)<br>
at hudson.model.DownloadService$Downloadable.updateNow(DownloadService.java:388)<br>
at hudson.PluginManager.checkUpdatesServer(PluginManager.java:1895)<br>
at hudson.util.Retrier.start(Retrier.java:63)<br>
at hudson.PluginManager.doCheckUpdatesServer(PluginManager.java:1859)<br>
at jenkins.DailyCheck.execute(DailyCheck.java:93)<br>
at hudson.model.AsyncPeriodicWork.lambda$doRun$0(AsyncPeriodicWork.java:100)<br>
at java.base/java.lang.Thread.run(Thread.java:834)<br>
</pre>
at hudson.util.FormValidation._errorWithMarkup(FormValidation.java:269)
at hudson.util.FormValidation._error(FormValidation.java:201)
at hudson.util.FormValidation.error(FormValidation.java:191)
at jenkins.util.JSONSignatureValidator.verifySignature(JSONSignatureValidator.java:138)
at hudson.model.DownloadService$Downloadable.updateNow(DownloadService.java:388)
at hudson.PluginManager.checkUpdatesServer(PluginManager.java:1895)
at hudson.util.Retrier.start(Retrier.java:63)
at hudson.PluginManager.doCheckUpdatesServer(PluginManager.java:1859)
at jenkins.DailyCheck.execute(DailyCheck.java:93)
at hudson.model.AsyncPeriodicWork.lambda$doRun$0(AsyncPeriodicWork.java:100)
at java.base/java.lang.Thread.run(Thread.java:834)
Unfortunately, I don't know why the message "ERROR: Signature verification failed in downloadable 'ru.yandex.qatools.allure.jenkins.tools.AllureCommandlineInstaller'" is being reported.
When I check the certificate expiration date for updates.jenkins.io, it reports the certificate has not expired:
$ openssl s_client -servername updates.jenkins.io -connect updates.jenkins.io:443 | openssl x509 -noout -dates depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1 depth=1 C = US, O = Let's Encrypt, CN = R3 verify return:1 depth=0 CN = updates.jenkins.io verify return:1 notBefore=Jun 18 05:30:45 2021 GMT notAfter=Sep 16 05:30:44 2021 GMT DONE
Similar results are reported when I download that JSON file with curl and report verbosely. It says that the SSL certificate is valid from Jun 18, 2021 through Sep 16, 2021.
My questions:
- Is the problem I am encountering the same as the originally reported problem?
- Are there known issues with Jenkins infrastructure that might be related to the problem that I am seeing?
- Are there known issues with the Allure tool installer that it might have been corrupted?
As an additional item (that doesn't seem to affect the issue I'm seeing), please use the HTTPS URL for the Jenkins update center. It is:
https://updates.jenkins.io/update-center.json
It is not:
http://updates.jenkins.io/update-center.json
The checksums used by the Jenkins update center should safeguard even those who use HTTP rather than HTTPS, but the documented and preferred update center URL is the HTTPS URL, not the HTTP url.
Just to to confirm
On Jenkins 2.300 on RHEL 8 and installed Allure Jenkins Plugin Version 2.29.0
we have this Json Syntax Error 'SyntaxError: JSON.parse: unexpected character at line 1 column 1 of the JSON data'
because of JSON Content is embedded in updateCenter.post( and );
Same on Jenkins 2.289.2 on Windows and installed Allure Jenkins Plugin Version 2.29.0:
Startup WARNING Message:
WARNING h.m.DownloadService$Downloadable#updateNow: signature check failed for https://updates.jenkins.io/updates/ru.yandex.qatools.allure.jenkins.tools.AllureCommandlineInstaller.json <br></pre> java.lang.Thread.run(Thread.java:748)$doRun$0(AsyncPeriodicWork.java:100)388)va:89)idator.java:80)va:135)nstaller' <a href='#' class='showDetails'>(Details anzeigen)</a><pre style='display:none'>java.security.cert.CertificateExpiredException: NotAfter: Sun Jun 27 12:02:28 CEST 2021
https://updates.jenkins.io/updates/ru.yandex.qatools.allure.jenkins.tools.AllureCommandlineInstaller.json -> SyntaxError: JSON.parse: unexpected character at line 1 column 1 of the JSON data
because of JSON Content is embedded in downloadService.post('ru.yandex.qatools.allure.jenkins.tools.AllureCommandlineInstaller', and )
to batmat
read your comment and understand.
I try to follow the issue report guide line and want to avoid duplicate issues
https://www.jenkins.io/participate/report-issue/
for me it has look like the same issue
... I have no deeper looks insides
See Allure Plugin Issue Certificate expiration of the plugin when checking for plugin updates on Jenkins startup #292
because of JSON Content is embedded in downloadService.post('ru.yandex.qatools.allure.jenkins.tools.AllureCommandlineInstaller', and )
As far as I understand it, those files contain 'JSONP' even though their suffix says that they are JSON files. The AdoptOpenJDK data and every other data that I checked have the same prolog of downloadService.post
not sure if you have already seen it, but:
https://wiki.qatools.ru/display/AL/Allure+Jenkins+Plugin
https://ci.qameta.io/job/allure-plugin/
... looks like that they have big trouble with their certificates
is it revoked?
the same with their plugin signature?
If timestamps are to be trusted on https://updates.jenkins.io/updates/ the ru.yandex.qatools.allure.jenkins.tools.AllureCommandlineInstaller.json* have not been updated since 2021-05-02. I do not know how signatures of these files are generated but I don't think it has anything to do with https certificates of their sites. Maybe it has something to do with the fact that Allure used to host on Bintray which is now gone. I created https://github.com/jenkins-infra/crawler/pull/107 . Not sure if it is going to resolve it or not but should fix the tool discovery (crawling) error.
thomaspatzig could you please check now? I believe this is fixed. I cannot reproduce it anymore.
Ricardo
added a comment - Hello,
I can also confirm that the issue is now gone after reenabling the plugin installation. Haven't change a thing in my configuration.
I'm using Jenkins version 2.289.2-lts JDK11 version.
Thanks
Ricardo
added a comment - Hello,
I can also confirm that the issue is now gone after reenabling the plugin installation. Haven't change a thing in my configuration.
I'm using Jenkins version 2.289.2-lts JDK11 version.
Thanks I am going to resolve it as fixed again then. It looks like my theory was correct. After my PR was merge the signature of the metadata was updated.
FTR this not only affects 2.205, I have checked with 2.190.2 also some propietary versions based on the upcoming 2.190.3