-
Bug
-
Resolution: Not A Defect
-
Major
-
Windows 10 Pro Version: 10.0.19045 Build 19045
java 11.0.13 2021-10-19 LTS
Jenkins 2.361.3
Browsers:
Chrome 107.0.5304.107
Edge 107.0.1418.52
Firefox 107.0
-
Powered by SuggestiMate
Go to Dashboard
Select any job
Click on Configure (from the left menu)
Notice: After a few seconds (or on scrolling action) infinite loading appears and the page is not responsive
A screenshot of console log is attached.
[JENKINS-70127] Infinite loading on configuration page
markewaite Here is the list of plugins:
—
ace-editor:1.1
active-directory:2.27
additional-metrics:1.3
allure-jenkins-plugin:2.30.2
analysis-core:1.96
analysis-model-api:9.3.1
ant:1.11
antisamy-markup-formatter:2.1
apache-httpcomponents-client-4-api:4.5.10-2.0
authentication-tokens:1.4
badge:1.9.1
bitbucket:1.1.27
bootstrap4-api:4.5.3-1
bootstrap5-api:5.1.3-6
bootstraped-multi-test-results-report:2.1.3
bouncycastle-api:2.26
branch-api:2.6.1
build-blocker-plugin:1.7.7
build-history-metrics-plugin:1.2
build-name-setter:2.1.0
build-timeout:1.20
built-on-column:1.1
caffeine-api:2.9.3-65.v6a_47d0f4d1fe
checks-api:1.7.4
checkstyle:4.0.0
clearcase:1.6.3
cloudbees-folder:6.14
cobertura:1.16
code-coverage-api:1.2.0
command-launcher:1.5
compact-columns:1.12
conditional-buildstep:1.3.6
config-file-provider:3.7.0
copyartifact:1.45.2
credentials:1189.vf61b_a_5e2f62e
credentials-binding:1.24
cvs:2.16
dashboard-view:2.14
data-tables-api:1.10.21-3
display-url-api:2.3.6
docker-commons:1.16
docker-workflow:1.24
dtkit-api:2.2.1
durable-task:1.35
echarts-api:5.3.2-1
email-ext:2.79
emailext-template:1.2
embeddable-build-status:2.0.3
envinject:2.3.0
envinject-api:1.7
external-monitor-job:1.7
flaky-test-handler:1.0.4
font-awesome-api:6.0.0-1
forensics-api:0.7.0
git:4.4.5
git-client:3.5.1
git-parameter:0.9.13
git-server:1.9
github:1.32.0
github-api:1.116
github-branch-source:2.9.1
gitlab-plugin:1.5.13
gradle:1.36
greenballs:1.15.1
handlebars:1.1.1
instance-identity:3.1
ionicons-api:31.v4757b_6987003
jackson2-api:2.13.2.20220328-273.v11d70a_b_a_1a_52
javadoc:1.6
javax-activation-api:1.2.0-2
javax-mail-api:1.6.2-5
jaxb:2.3.0
jdk-tool:1.4
jenkins-multijob-plugin:1.33
jquery:1.12.4-1
jquery-detached:1.2.1
jquery-ui:1.0.2
jquery3-api:3.6.0-2
jsch:0.1.55.2
junit:1119.1121.vc43d0fc45561
junit-realtime-test-reporter:0.6
ldap:1.25
lockable-resources:2.8
mailer:408.vd726a_1130320
mapdb-api:1.0.9.0
matrix-auth:2.6.6
matrix-project:785.v06b_7f47b_c631
maven-plugin:3.8
mercurial:2.12
momentjs:1.1.1
msbuild:1.29
multi-module-tests-publisher:1.44
nodejs:1.3.5
okhttp-api:3.14.9
p4:1.11.1
pam-auth:1.6
parameterized-scheduler:1.0
parameterized-trigger:2.39
pipeline-build-step:2.13
pipeline-github-lib:1.0
pipeline-graph-analysis:1.10
pipeline-input-step:2.12
pipeline-milestone-step:1.3.1
pipeline-model-api:1.7.2
pipeline-model-declarative-agent:1.1.1
pipeline-model-definition:1.7.2
pipeline-model-extensions:1.7.2
pipeline-rest-api:2.18
pipeline-stage-step:2.5
pipeline-stage-tags-metadata:1.7.2
pipeline-stage-view:2.18
plain-credentials:1.7
plugin-util-api:2.16.0
popper-api:1.16.0-7
popper2-api:2.11.2-1
postbuild-task:1.9
postbuildscript:3.2.0-460.va_fda_0fa_26720
publish-over:0.22
publish-over-ssh:1.20.1
rebuild:1.31
repo:1.14.0
resource-disposer:0.14
role-strategy:3.1
run-condition:1.3
scm-api:602.v6a_81757a_31d2
script-security:1189.vb_a_b_7c8fd5fde
seleniumhtmlreport:1.0
simple-theme-plugin:103.va_161d09c38c7
snakeyaml-api:1.29.1
ssh:2.6.1
ssh-agent:1.22
ssh-credentials:1.18.1
ssh-slaves:1.31.2
sshd:3.236.ved5e1b_cb_50b_2
structs:324.va_f5d6774f3a_d
subversion:2.13.2
teamconcert:2.1.0
test-results-analyzer:0.3.5
test-stability:2.3
testInProgress:1.4
testng-plugin:1.15
testproject:2.10
tfs:5.157.0
throttle-concurrents:2.0.3
timestamper:1.11.8
token-macro:2.12
trilead-api:1.0.12
ui-test-capture:1.0.43
warnings:5.0.1
warnings-ng:8.4.4
windows-slaves:1.8.1
workflow-aggregator:2.6
workflow-api:1144.v61c3180fa_03f
workflow-basic-steps:2.21
workflow-cps:2.85
workflow-cps-global-lib:2.17
workflow-durable-task-step:2.35
workflow-job:2.40
workflow-multibranch:2.22
workflow-scm-step:2.11
workflow-step-api:625.vd896b_f445a_f8
workflow-support:813.vb_d7c3d2984a_0
ws-cleanup:0.38
xunit:2.4.0
It appears that your Jenkins controller has been through one or more upgrades since it was installed but your plugins have not been upgraded. Please read and follow the upgrade guides for the upgrades you've already performed. In case one of the upgrades was across Jenkins 2.277.1, you might also want to read the community forum post that provides a summary and includes video guidance as well.
Deprecated plugins
You're running a very recent version of Jenkins but many of your plugins are out of date or deprecated. You need to remove deprecated plugins as described on the "Manage Jenkins" page. It says:
The following installed plugins are deprecated
- Multijob plugin
- Pipeline: Declarative Agent API
- Warnings Plug-in
- Team Foundation Server Plug-in
- Static Analysis Utilities
- jQuery UI plugin
- Pipeline: Shared Groovy Libraries
- Checkstyle Plug-in
- WMI Windows Agents Plugin
In general, this means that these plugins are either obsolete, no longer being developed, or may no longer work.
See the linked web pages for further information about the cause for the deprecation, and suggestions on how to proceed.
Vulnerable plugins
You're running a very recent version of Jenkins but many of your plugins have security vulnerabilities reported against them. You need to upgrade or remove those plugins so that you are not at risk due to the vulnerabilities in those plugins. The "Manage Jenkins" page says:
Warnings have been published for the following currently installed components:
- Git plugin 4.4.5
- Improper masking of credentials
- Multiple SCM plugins can check out from the controller file system
- Lack of authentication mechanism in webhook
- Stored XSS vulnerability
- Pipeline: Supporting APIs 813.vb_d7c3d2984a_0
- Stored XSS vulnerability
- GitLab Plugin 1.5.13
- Non-constant time webhook token comparison
- Stored XSS vulnerability
- Missing permission check allows enumerating credentials IDs
- CVS Plug-in 2.16
- Stored XSS vulnerability
- XXE vulnerability
- Dashboard View 2.14
- Stored XSS vulnerability
- Stored XSS vulnerability
- Pipeline: Shared Groovy Libraries 2.17
- Untrusted users can modify some Pipeline libraries
- Sandbox bypass vulnerability
- Vulnerabilities in multiple Pipeline-related plugins allow reading arbitrary files on the controller
- Sandbox bypass vulnerability
- Sandbox bypass vulnerability
- Sandbox bypass vulnerability
- OS command execution vulnerabilities in Pipeline-related plugins
- Git client plugin 3.5.1
- Missing hostname verification
Many more were listed, but I was unwilling to continue reformatting the output.
Plugins to upgrade
The "Manage Jenkins" page shows that there are 131 plugins in your installation that need updates.
See the screenshot
Closing as "Not a defect" until such time as the submitter of the issue has removed deprecated plugins, upgraded outdated plugins, and removed plugins with known security vulnerabilities. Plugins in the installed list are known to have issues with the configuration form modernization that happened in Jenkins 2.277.1. Until those plugins are upgraded or removed, job and system configuration forms can be expected to fail.
Some examples of known issues include the Team Foundation Server plugin (multiple vulnerabilities and known to have issues with configuration form modernization ("tables to divs"). p4 plugin, warnings plugin, and others.
Please provide the list of plugins and their versions as described at "How to report an issue"