Open msohn opened 4 years ago
ulfjack
commented
4 years ago As a workaround, you may be able to set main_class on the test to the vanilla JUnit runner - that doesn't have some of the additional features provided by the Bazel test runner like test sharding and test filtering, but it should work. I'm not sure how best to fix this - I think we'd want to add a mechanism to disable the security manager in the java_test rule, maybe through the jvm_args attribute?
davido
commented
4 years ago I think we'd want to add a mechanism to disable the security manager in the java_test rule, maybe through the jvm_args attribute?
This should be easily doable. I can look into creating a PR, to unblock JGit project.
msohn
commented
4 years ago thanks @davido
agusti-t
commented
3 years ago Can you give an example of how the workaround would look like @ulfjack ? I'm having a similar, I'd almost say the same, issue trying to run a SpringBootTest with EmbeddedCassandra as described here.
github-actions[bot]
commented
1 year ago Thank you for contributing to the Bazel repository! This issue has been marked as stale since it has not had any activity in the last 2+ years. It will be closed in the next 14 days unless any other activity occurs or one of the following labels is added: "not stale", "awaiting-bazeler". Please reach out to the triage team (@bazelbuild/triage) if you think this issue is still relevant or you are interested in getting the issue resolved.
github-actions[bot]
commented
1 year ago This issue has been automatically closed due to inactivity. If you're still interested in pursuing this, please reach out to the triage team (@bazelbuild/triage). Thanks!
davido
commented
1 year ago @bazelbuild/triage not stale.
Description of the problem / feature request:
Cannot run the following jgit junit tests with bazel:
https://git.eclipse.org/r/plugins/gitiles/jgit/jgit/+/master/org.eclipse.jgit.test/tst/org/eclipse/jgit/api/SecurityManagerTest.java https://git.eclipse.org/r/plugins/gitiles/jgit/jgit/+/master/org.eclipse.jgit.test/tst/org/eclipse/jgit/api/SecurityManagerMissingPermissionsTest.java
Feature requests: what underlying problem are you trying to solve with this feature?
enable running tests using a SecurityManager in bazel
Bugs: what's the simplest, easiest way to reproduce this bug? Please provide a minimal example if possible.
Run the jgit tests using bazel (general instructions are described in https://wiki.eclipse.org/EGit/Contributor_Guide#JGit_Bazel_Build):
$ git clone https://git.eclipse.org/r/jgit/jgit $ git fetch https://git.eclipse.org/r/jgit/jgit refs/changes/64/161164/2 && git checkout FETCH_HEAD $ cd jgit
comment out the content of list EXCLUDED in the file org.eclipse.jgit.test/BUILD in the local jgit worktree then run the following tests:
$ bazel test //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerTest $ bazel test //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerMissingPermissionsTest
What operating system are you running Bazel on?
Mac OS 10.15.4
What's the output of
bazel info release?$ bazel info release INFO: Invocation ID: 6ec905e0-25d1-4908-a318-4a79481ec92d release 3.0.0
If
bazel info releasereturns "development version" or "(@non-git)", tell us how you built Bazel.n/a
What's the output of
git remote get-url origin ; git rev-parse master ; git rev-parse HEAD?$ git remote get-url origin ; git rev-parse master ; git rev-parse HEAD https://git.eclipse.org/r/jgit/jgit.git f5be334a44f29734ae4dac69dfed155a8448d967 9883ab398e85dded0157fe9c7b59dd975eb89a8d
Have you found anything relevant by searching the web?
We tried to switch off the bazel sandbox by configuring a tag "local" for the execution of these tests but this didn't disable the sandboxing. It looks like bazel unconditionally sets its own SecurityManager which seems to break our tests, see https://github.com/bazelbuild/bazel/blob/1f684e1b87cd8881a0a4b33e86ba66743e32d674/src/java_tools/junitrunner/javatests/com/google/testing/junit/runner/TestRunner.java#L41-L44
hence David for now excluded these tests from the bazel test run in the latest patchset of https://git.eclipse.org/r/#/c/161164/
Any other information, logs, or outputs that you want to share?
$ bazel test //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerTest INFO: Invocation ID: 883eef98-14ce-4084-bc26-9ea057a6b486 INFO: Analyzed target //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerTest (0 packages loaded, 0 targets configured). INFO: Found 1 test target... FAIL: //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerTest (see /private/var/tmp/_bazel_d029788/b645215973ac043930fa5900e337e822/execroot/jgit/bazel-out/darwin-fastbuild/testlogs/org.eclipse.jgit.test/org_eclipse_jgit_api_SecurityManagerTest/test.log) INFO: From Testing //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerTest: ==================== Test output for //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerTest: JUnit4 Test Runner .EE Time: 0.151 There were 2 failures: 1) testInitAndClone(org.eclipse.jgit.api.SecurityManagerTest) java.lang.SecurityException: GoogleTestSecurityManager is not designed to handle other security managers. at com.google.testing.junit.runner.util.GoogleTestSecurityManager.checkPermission(GoogleTestSecurityManager.java:58) at java.lang.System.setSecurityManager0(System.java:302) at java.lang.System.setSecurityManager(System.java:293) at org.eclipse.jgit.api.SecurityManagerTest.setUp(SecurityManagerTest.java:122) 2) testInitAndClone(org.eclipse.jgit.api.SecurityManagerTest) java.lang.SecurityException: GoogleTestSecurityManager is not designed to handle other security managers. at com.google.testing.junit.runner.util.GoogleTestSecurityManager.checkPermission(GoogleTestSecurityManager.java:58) at java.lang.System.setSecurityManager0(System.java:302) at java.lang.System.setSecurityManager(System.java:293) at org.eclipse.jgit.api.SecurityManagerTest.tearDown(SecurityManagerTest.java:139)
FAILURES!!! Tests run: 1, Failures: 2
BazelTestRunner exiting with a return value of 1 JVM shutdown hooks (if any) will run now. The JVM will exit once they complete.
-- JVM shutdown starting at 2020-04-18 13:36:09 --
================================================================================ Target //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerTest up-to-date: bazel-bin/org.eclipse.jgit.test/org_eclipse_jgit_api_SecurityManagerTest.jar bazel-bin/org.eclipse.jgit.test/org_eclipse_jgit_api_SecurityManagerTest INFO: Elapsed time: 1.175s, Critical Path: 0.92s INFO: 1 process: 1 darwin-sandbox. INFO: Build completed, 1 test FAILED, 2 total actions //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerTest FAILED in 0.8s /private/var/tmp/_bazel_d029788/b645215973ac043930fa5900e337e822/execroot/jgit/bazel-out/darwin-fastbuild/testlogs/org.eclipse.jgit.test/org_eclipse_jgit_api_SecurityManagerTest/test.log
INFO: Build completed, 1 test FAILED, 2 total actions
$ bazel test //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerMissingPermissionsTest INFO: Invocation ID: dd2289a5-488b-4bad-b134-602207a15757 INFO: Analyzed target //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerMissingPermissionsTest (0 packages loaded, 0 targets configured). INFO: Found 1 test target... FAIL: //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerMissingPermissionsTest (see /private/var/tmp/_bazel_d029788/b645215973ac043930fa5900e337e822/execroot/jgit/bazel-out/darwin-fastbuild/testlogs/org.eclipse.jgit.test/org_eclipse_jgit_api_SecurityManagerMissingPermissionsTest/test.log) INFO: From Testing //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerMissingPermissionsTest: ==================== Test output for //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerMissingPermissionsTest: JUnit4 Test Runner .EE Time: 0.126 There were 2 failures: 1) testCreateNewRepos_MissingPermissions(org.eclipse.jgit.api.SecurityManagerMissingPermissionsTest) java.lang.SecurityException: GoogleTestSecurityManager is not designed to handle other security managers. at com.google.testing.junit.runner.util.GoogleTestSecurityManager.checkPermission(GoogleTestSecurityManager.java:58) at java.lang.System.setSecurityManager0(System.java:302) at java.lang.System.setSecurityManager(System.java:293) at org.eclipse.jgit.api.SecurityManagerMissingPermissionsTest.setUp(SecurityManagerMissingPermissionsTest.java:62) 2) testCreateNewRepos_MissingPermissions(org.eclipse.jgit.api.SecurityManagerMissingPermissionsTest) java.lang.SecurityException: GoogleTestSecurityManager is not designed to handle other security managers. at com.google.testing.junit.runner.util.GoogleTestSecurityManager.checkPermission(GoogleTestSecurityManager.java:58) at java.lang.System.setSecurityManager0(System.java:302) at java.lang.System.setSecurityManager(System.java:293) at org.eclipse.jgit.api.SecurityManagerMissingPermissionsTest.tearDown(SecurityManagerMissingPermissionsTest.java:94)
FAILURES!!! Tests run: 1, Failures: 2
BazelTestRunner exiting with a return value of 1 JVM shutdown hooks (if any) will run now. The JVM will exit once they complete.
-- JVM shutdown starting at 2020-04-18 13:37:10 --
================================================================================ Target //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerMissingPermissionsTest up-to-date: bazel-bin/org.eclipse.jgit.test/org_eclipse_jgit_api_SecurityManagerMissingPermissionsTest.jar bazel-bin/org.eclipse.jgit.test/org_eclipse_jgit_api_SecurityManagerMissingPermissionsTest INFO: Elapsed time: 0.992s, Critical Path: 0.73s INFO: 1 process: 1 darwin-sandbox. INFO: Build completed, 1 test FAILED, 2 total actions //org.eclipse.jgit.test:org_eclipse_jgit_api_SecurityManagerMissingPermissionsTest FAILED in 0.6s /private/var/tmp/_bazel_d029788/b645215973ac043930fa5900e337e822/execroot/jgit/bazel-out/darwin-fastbuild/testlogs/org.eclipse.jgit.test/org_eclipse_jgit_api_SecurityManagerMissingPermissionsTest/test.log
INFO: Build completed, 1 test FAILED, 2 total actions