[Qa-jenkins-scm] Build failed in Jenkins: reproducible_fdroid_test #34

jenkins at jenkins.debian.net jenkins at jenkins.debian.net
Mon Dec 18 15:27:57 UTC 2017 

See <https://jenkins.debian.net/job/reproducible_fdroid_test/34/display/redirect?page=changes>

Changes:

[jan] whitelist some open-source firebase libs

[jan] Add a simple test for scanner

[jan] Convert to string

[michael.poehn] fix handling unreadable images in update.extract_apk_icons

------------------------------------------
[...truncated 24.08 KB...]
  self.assertNotEqual(open(sourcefile, 'rb').read(), open(testfile, 'rb').read())
..DEBUG:root:Reading 'config.py'
WARNING:root:unsafe permissions on 'config.py' (should be 0600)!
WARNING:root:Using Java's jarsigner, not recommended for verifying APKs! Use apksigner
DEBUG:root:JAR signature verified: bad-unicode-πÇÇ现代通用字-български-عربي1.apk
ERROR:root:JAR signature failed to verify: org.bitbucket.tickytacky.mirrormirror_1.apk

The jar will be treated as unsigned, because it is signed with a weak algorithm that is now disabled.

Re-run jarsigner with the -verbose option for more details.

ERROR:root:JAR signature failed to verify: org.bitbucket.tickytacky.mirrormirror_2.apk

The jar will be treated as unsigned, because it is signed with a weak algorithm that is now disabled.

Re-run jarsigner with the -verbose option for more details.

ERROR:root:JAR signature failed to verify: org.bitbucket.tickytacky.mirrormirror_3.apk

The jar will be treated as unsigned, because it is signed with a weak algorithm that is now disabled.

Re-run jarsigner with the -verbose option for more details.

ERROR:root:JAR signature failed to verify: org.bitbucket.tickytacky.mirrormirror_4.apk

The jar will be treated as unsigned, because it is signed with a weak algorithm that is now disabled.

Re-run jarsigner with the -verbose option for more details.

DEBUG:root:JAR signature verified: org.dyndns.fules.ck_20.apk
DEBUG:root:JAR signature verified: urzip.apk
ERROR:root:JAR signature failed to verify: urzip-badcert.apk
jarsigner: java.lang.SecurityException: cannot verify signature block file META-INF/CERT

ERROR:root:JAR signature failed to verify: urzip-badsig.apk
jarsigner: java.lang.SecurityException: invalid SHA1 signature file digest for AndroidManifest.xml

DEBUG:root:JAR signature verified: urzip-release.apk
ERROR:root:JAR signature failed to verify: urzip-release-unsigned.apk

no manifest.

jar is unsigned.

.DEBUG:root:Reading 'config.py'
WARNING:root:unsafe permissions on 'config.py' (should be 0600)!
WARNING:root:Using Java's jarsigner, not recommended for verifying APKs! Use apksigner
DEBUG:root:JAR signature verified: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/test_verify_apksmjspuyog/urzip-copy.apk
WARNING:root:Ignoring META-INF/MANIFEST.MF from /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/test_verify_apksmjspuyog/urzip-copy.apk
WARNING:root:Ignoring META-INF/CERT.SF from /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/test_verify_apksmjspuyog/urzip-copy.apk
WARNING:root:Ignoring META-INF/CERT.RSA from /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/test_verify_apksmjspuyog/urzip-copy.apk
DEBUG:root:JAR signature verified: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/sigcp_urzip-copy.apk
INFO:root:...successfully verified
DEBUG:root:JAR signature verified: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/sigcp_urzip-unsigned.apk
INFO:root:...successfully verified
/var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/common.TestCase:360: UserWarning: Duplicate name: 'META-INF/MANIFEST.MF'
  testapk.writestr(info, otherapk.read(info.filename))
/var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/common.TestCase:360: UserWarning: Duplicate name: 'META-INF/CERT.SF'
  testapk.writestr(info, otherapk.read(info.filename))
/var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/common.TestCase:360: UserWarning: Duplicate name: 'META-INF/CERT.RSA'
  testapk.writestr(info, otherapk.read(info.filename))
ERROR:root:JAR signature failed to verify: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/test_verify_apksmjspuyog/urzip-twosig.apk
jarsigner: java.lang.SecurityException: SHA1 digest error for AndroidManifest.xml

WARNING:root:Ignoring META-INF/MANIFEST.MF from /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/test_verify_apksmjspuyog/urzip-twosig.apk
WARNING:root:Ignoring META-INF/MANIFEST.MF from /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/test_verify_apksmjspuyog/urzip-twosig.apk
WARNING:root:Ignoring META-INF/CERT.SF from /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/test_verify_apksmjspuyog/urzip-twosig.apk
WARNING:root:Ignoring META-INF/CERT.SF from /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/test_verify_apksmjspuyog/urzip-twosig.apk
WARNING:root:Ignoring META-INF/CERT.RSA from /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/test_verify_apksmjspuyog/urzip-twosig.apk
WARNING:root:Ignoring META-INF/CERT.RSA from /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/test_verify_apksmjspuyog/urzip-twosig.apk
DEBUG:root:JAR signature verified: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/sigcp_urzip-twosig.apk
INFO:root:...successfully verified
.DEBUG:root:Reading 'config.py'
WARNING:root:unsafe permissions on 'config.py' (should be 0600)!
.DEBUG:root:Reading 'config.py'
WARNING:root:unsafe permissions on 'config.py' (should be 0600)!
DEBUG:root:JAR signature verified: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/signindex/testy.jar
DEBUG:root:JAR signature verified: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/signindex/guardianproject.jar
.DEBUG:root:Reading 'config.py'
WARNING:root:unsafe permissions on 'config.py' (should be 0600)!
DEBUG:root:JAR signature verified: bad-unicode-πÇÇ现代通用字-български-عربي1.apk
DEBUG:root:JAR signature verified: org.bitbucket.tickytacky.mirrormirror_1.apk
DEBUG:root:JAR signature verified: org.bitbucket.tickytacky.mirrormirror_2.apk
DEBUG:root:JAR signature verified: org.bitbucket.tickytacky.mirrormirror_3.apk
DEBUG:root:JAR signature verified: org.bitbucket.tickytacky.mirrormirror_4.apk
DEBUG:root:JAR signature verified: org.dyndns.fules.ck_20.apk
DEBUG:root:JAR signature verified: urzip.apk
ERROR:root:Old APK signature failed to verify: urzip-badcert.apk
jarsigner: java.lang.SecurityException: cannot verify signature block file META-INF/CERT

ERROR:root:Old APK signature failed to verify: urzip-badsig.apk
jarsigner: java.lang.SecurityException: invalid SHA1 signature file digest for AndroidManifest.xml

DEBUG:root:JAR signature verified: urzip-release.apk
ERROR:root:Old APK signature failed to verify: urzip-release-unsigned.apk

no manifest.

jar is unsigned.

..localmodule: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps
testdir /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/test_prepare_sources_refresh9hzhjm4c
testdir /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/.testfiles/test_verify_apksmjspuyog
.
----------------------------------------------------------------------
Ran 27 tests in 27.903s

OK
+ for testcase in $WORKSPACE/tests/*.TestCase
+ /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/exception.TestCase
localmodule: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps
.
----------------------------------------------------------------------
Ran 1 test in 0.000s

OK
+ for testcase in $WORKSPACE/tests/*.TestCase
+ /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/import.TestCase
DEBUG:requests.packages.urllib3.connectionpool:Starting new HTTPS connection (1): gitlab.com
DEBUG:requests.packages.urllib3.connectionpool:https://gitlab.com:443 "HEAD /fdroid/ci-test-app HTTP/1.1" 200 0
INFO:root:Getting source from git repo at https://gitlab.com/fdroid/ci-test-app.git
DEBUG:root:> git -c core.sshCommand=false -c url.https://.insteadOf=ssh:// -c url.https://u:p@bitbucket.org/.insteadOf=git@bitbucket.org: -c url.https://u:p@bitbucket.org.insteadOf=git://bitbucket.org -c url.https://u:p@bitbucket.org.insteadOf=https://bitbucket.org -c url.https://u:p@github.com/.insteadOf=git@github.com: -c url.https://u:p@github.com.insteadOf=git://github.com -c url.https://u:p@github.com.insteadOf=https://github.com -c url.https://u:p@gitlab.com/.insteadOf=git@gitlab.com: -c url.https://u:p@gitlab.com.insteadOf=git://gitlab.com -c url.https://u:p@gitlab.com.insteadOf=https://gitlab.com clone https://gitlab.com/fdroid/ci-test-app.git tmp/importer
Cloning into 'tmp/importer'...
DEBUG:root:Directory: tmp/importer
DEBUG:root:> git rev-parse --show-toplevel
DEBUG:root:Directory: tmp/importer
DEBUG:root:> git checkout -f origin/HEAD
DEBUG:root:Directory: tmp/importer
DEBUG:root:> git clean -dffx
.localmodule: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps
localmodule: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps

----------------------------------------------------------------------
Ran 1 test in 2.768s

OK
+ for testcase in $WORKSPACE/tests/*.TestCase
+ /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/index.TestCase
DEBUG:root:Reading 'config.py'
WARNING:root:unsafe permissions on 'config.py' (should be 0600)!
DEBUG:root:Verifying index signature:
DEBUG:root:JAR signature verified: /tmp/tmpmgshcz2e
.DEBUG:root:Reading 'config.py'
WARNING:root:unsafe permissions on 'config.py' (should be 0600)!
.DEBUG:root:Reading 'config.py'
WARNING:root:unsafe permissions on 'config.py' (should be 0600)!
DEBUG:requests.packages.urllib3.connectionpool:Starting new HTTP connection (1): localhost
DEBUG:requests.packages.urllib3.connectionpool:http://localhost:3128 "GET http://example.org/index-v1.jar HTTP/1.1" 404 606
.DEBUG:root:Reading 'config.py'
WARNING:root:unsafe permissions on 'config.py' (should be 0600)!
.DEBUG:root:Reading 'config.py'
WARNING:root:unsafe permissions on 'config.py' (should be 0600)!
.DEBUG:root:Reading 'config.py'
WARNING:root:unsafe permissions on 'config.py' (should be 0600)!
.DEBUG:root:Reading 'config.py'
WARNING:root:unsafe permissions on 'config.py' (should be 0600)!
DEBUG:root:> /usr/lib/jvm/java-8-openjdk-amd64/bin/jarsigner -keystore /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/dummy-keystore.jks -storepass:env FDROID_KEY_STORE_PASS -digestalg SHA1 -sigalg SHA1withRSA stats/publishsigkeys.jar repokey -keypass:env FDROID_KEY_PASS
jar signed.

Warning: 
No -tsa or -tsacert is provided and this jar is not timestamped. Without a timestamp, users may not be able to validate this jar after the signer certificate's expiration date (2044-11-26) or after any future revocation date.
DEBUG:root:> /usr/lib/jvm/java-8-openjdk-amd64/bin/jarsigner -strict -verify stats/publishsigkeys.jar
WARNING:root:repo_key_sha256 not in config.py, setting it to the signature key fingerprint of 'stats/publishsigkeys.jar'
localmodule: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps
.
----------------------------------------------------------------------
Ran 7 tests in 3.147s

OK
+ for testcase in $WORKSPACE/tests/*.TestCase
+ /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/install.TestCase
List of devices attached

localmodule: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps
.
----------------------------------------------------------------------
Ran 1 test in 0.208s

OK
+ for testcase in $WORKSPACE/tests/*.TestCase
+ /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/lint.TestCase
localmodule: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps
"metadata/org.adaway.json" is not a supported file format: (txt,yml)
"metadata/apk/" has no matching metadata file!
"metadata/dump/" has no matching metadata file!
"metadata/org.adaway.json" is not a supported file format: (txt,yml)
.
----------------------------------------------------------------------
Ran 1 test in 0.011s

OK
+ for testcase in $WORKSPACE/tests/*.TestCase
+ /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/metadata.TestCase
..WARNING:root:"metadata/org.adaway.json" is not an accepted format, convert to: txt, yml
.WARNING:root:"metadata/org.adaway.json" is not an accepted format, convert to: txt, yml
.WARNING:root:"metadata/org.adaway.json" is not an accepted format, convert to: txt, yml
localmodule: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps
.
----------------------------------------------------------------------
Ran 5 tests in 1.774s

OK
+ for testcase in $WORKSPACE/tests/*.TestCase
+ /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/publish.TestCase
.DEBUG:root:> /usr/lib/jvm/java-8-openjdk-amd64/bin/keytool -list -v -keystore dummy-keystore.jks -storepass:env FDROID_KEY_STORE_PASS
.DEBUG:root:> /usr/lib/jvm/java-8-openjdk-amd64/bin/keytool -list -v -keystore /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/dummy-keystore.jks -storepass:env FDROID_KEY_STORE_PASS
DEBUG:root:> /usr/lib/jvm/java-8-openjdk-amd64/bin/jarsigner -keystore /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/dummy-keystore.jks -storepass:env FDROID_KEY_STORE_PASS -digestalg SHA1 -sigalg SHA1withRSA stats/publishsigkeys.jar repokey -keypass:env FDROID_KEY_PASS
jar signed.

Warning: 
No -tsa or -tsacert is provided and this jar is not timestamped. Without a timestamp, users may not be able to validate this jar after the signer certificate's expiration date (2044-11-26) or after any future revocation date.
DEBUG:root:> /usr/lib/jvm/java-8-openjdk-amd64/bin/jarsigner -strict -verify stats/publishsigkeys.jar
WARNING:root:repo_key_sha256 not in config.py, setting it to the signature key fingerprint of 'stats/publishsigkeys.jar'
.DEBUG:root:> /usr/lib/jvm/java-8-openjdk-amd64/bin/keytool -list -v -keystore /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/dummy-keystore.jks -storepass:env FDROID_KEY_STORE_PASS
DEBUG:root:> /usr/lib/jvm/java-8-openjdk-amd64/bin/jarsigner -keystore /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/dummy-keystore.jks -storepass:env FDROID_KEY_STORE_PASS -digestalg SHA1 -sigalg SHA1withRSA stats/publishsigkeys.jar repokey -keypass:env FDROID_KEY_PASS
jar signed.

Warning: 
No -tsa or -tsacert is provided and this jar is not timestamped. Without a timestamp, users may not be able to validate this jar after the signer certificate's expiration date (2044-11-26) or after any future revocation date.
DEBUG:root:> /usr/lib/jvm/java-8-openjdk-amd64/bin/jarsigner -strict -verify stats/publishsigkeys.jar
.localmodule: /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps

----------------------------------------------------------------------
Ran 4 tests in 4.304s

OK
+ for testcase in $WORKSPACE/tests/*.TestCase
+ /var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/scanner.TestCase
E
======================================================================
ERROR: test_scan_source_files (__main__.ScannerTest)
----------------------------------------------------------------------
Traceback (most recent call last):
  File "/var/lib/jenkins/userContent/reproducible/reproducible_fdroid_build_apps/tests/scanner.TestCase", line 21, in test_scan_source_files
    fatal_problems = scanner.scan_source(d, Build())
TypeError: scan_source() missing 1 required positional argument: 'build'

----------------------------------------------------------------------
Ran 1 test in 0.001s

FAILED (errors=1)
+ cleanup_all
++ date -u
Mon Dec 18 15:27:57 UTC 2017 - cleanup done.
+ echo 'Mon Dec 18 15:27:57 UTC 2017 - cleanup done.'
Mon Dec 18 15:27:57 UTC 2017 - /srv/jenkins/bin/reproducible_fdroid_test.sh stopped running as /tmp/jenkins-script-UVKopfTf, which will now be removed.

SSH EXIT CODE: 1
Build step 'Execute shell' marked build as failure

More information about the Qa-jenkins-scm mailing list