Transaction rollback: serialization failure

[GoogleCodeExporter]

I've noticed several SQL exceptions occuring while ZAP is running and proxying 
traffic. I'm controlling ZAP via the API using the Python client.

What is the expected output? What do you see instead?

I'm seeing this trace in the console:

java.sql.SQLTransactionRollbackException: transaction rollback: serialization 
failure
    at org.hsqldb.jdbc.Util.sqlException(Unknown Source)
    at org.hsqldb.jdbc.Util.sqlException(Unknown Source)
    at org.hsqldb.jdbc.JDBCPreparedStatement.fetchResult(Unknown Source)
    at org.hsqldb.jdbc.JDBCPreparedStatement.executeUpdate(Unknown Source)
    at org.parosproxy.paros.db.TableTag.insert(TableTag.java:87)
    at org.parosproxy.paros.model.HistoryReference.addTag(HistoryReference.java:322)
    at org.zaproxy.zap.extension.pscan.PassiveScanThread.addTag(PassiveScanThread.java:171)
    at org.zaproxy.zap.extension.pscan.scanner.RegexAutoTagScanner.scanHttpResponseReceive(RegexAutoTagScanner.java:219)
    at org.zaproxy.zap.extension.pscan.PassiveScanThread.run(PassiveScanThread.java:108)
Caused by: org.hsqldb.HsqlException: transaction rollback: serialization failure
    at org.hsqldb.error.Error.error(Unknown Source)
    at org.hsqldb.error.Error.error(Unknown Source)
    at org.hsqldb.Session.executeCompiledStatement(Unknown Source)
    at org.hsqldb.Session.execute(Unknown Source)
    ... 7 more

What version of the product are you using? On what operating system?

ZAP Weekly release 2013-03-25 on Mac OS X

Please provide any additional information below.

ZAP log and console attached.

Original issue reported on code.google.com by dave.h...@gmail.com on 28 Mar 2013 at 4:57

Attachments:

• zap.log
• consoleText.txt

[GoogleCodeExporter]

Sorry, the stack trace is in the log, not the console

Original comment by dave.h...@gmail.com on 28 Mar 2013 at 4:57

[GoogleCodeExporter]

This also happens while using the GUI (which becomes "frozen").
[...]
1152762 [AWT-EventQueue-0] INFO org.zaproxy.zap.spider.Spider  - Stopping 
spidering process by request.
1152763 [pool-15-thread-1] ERROR org.zaproxy.zap.extension.spider.SpiderThread  
- transaction rollback: serialization failure
java.sql.SQLTransactionRollbackException: transaction rollback: serialization 
failure
    at org.hsqldb.jdbc.Util.sqlException(Unknown Source)
    at org.hsqldb.jdbc.Util.sqlException(Unknown Source)
    at org.hsqldb.jdbc.JDBCPreparedStatement.fetchResult(Unknown Source)
    at org.hsqldb.jdbc.JDBCPreparedStatement.executeQuery(Unknown Source)
    at org.parosproxy.paros.db.TableTag.getTagsForHistoryID(Unknown Source)
    at org.parosproxy.paros.model.HistoryReference.<init>(Unknown Source)
    at org.zaproxy.zap.extension.spider.SpiderThread.readURI(Unknown Source)
    at org.zaproxy.zap.spider.Spider.notifyListenersReadURI(Unknown Source)
    at org.zaproxy.zap.spider.SpiderTask.run(Unknown Source)
    at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
    at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
    at java.lang.Thread.run(Thread.java:722)
Caused by: org.hsqldb.HsqlException: transaction rollback: serialization failure
    at org.hsqldb.error.Error.error(Unknown Source)
    at org.hsqldb.error.Error.error(Unknown Source)
    at org.hsqldb.Session.executeCompiledStatement(Unknown Source)
    at org.hsqldb.Session.execute(Unknown Source)
    ... 10 more
1154664 [HSQLDB Timer @52380405] INFO hsqldb.db.HSQLDB379AF3DEBD.ENGINE  - 
checkpointClose end
1154836 [HSQLDB Timer @52380405] INFO hsqldb.db.HSQLDB379AF3DEBD.ENGINE  - 
Checkpoint end

Original comment by THC...@gmail.com on 8 Apr 2013 at 3:57

• Changed title: Transaction rollback: serialization failure
• Changed state: Accepted

[GoogleCodeExporter]

I'm having the same problem my backtrace is

2795422 [ZAP-ProxyThread-2254] INFO 
org.zaproxy.zap.extension.httpsessions.HttpSessionsSite  - Created a new 
session as no match was found: HttpSession [name=Session 125, active=false, 
tokenValues='']
AWT blocker activation interrupted:
java.lang.InterruptedException
        at java.lang.Object.wait(Native Method)
        at java.lang.Object.wait(Object.java:503)
        at sun.awt.AWTAutoShutdown.activateBlockerThread(AWTAutoShutdown.java:349)
        at sun.awt.AWTAutoShutdown.notifyThreadBusy(AWTAutoShutdown.java:174)
        at java.awt.EventQueue$5.run(EventQueue.java:1046)
        at java.awt.EventQueue$5.run(EventQueue.java:1037)
        at java.security.AccessController.doPrivileged(Native Method)
        at java.awt.EventQueue.initDispatchThread(EventQueue.java:1036)
        at java.awt.EventQueue.postEventPrivate(EventQueue.java:270)
        at java.awt.EventQueue.postEvent(EventQueue.java:245)
        at java.awt.EventQueue.invokeLater(EventQueue.java:1221)
        at org.zaproxy.zap.extension.alert.ExtensionAlert.addAlertToTree(Unknown Source)
        at org.zaproxy.zap.extension.alert.ExtensionAlert.alertFound(Unknown Source)
        at org.zaproxy.zap.extension.pscan.PassiveScanThread.raiseAlert(Unknown Source)
        at org.zaproxy.zap.extension.pscanrules.TestInfoSessionIdURL.scanHttpResponseReceive(TestInfoSessionIdURL.java:204)
        at org.zaproxy.zap.extension.pscan.PassiveScanThread.run(Unknown Source)

Original comment by vpereir...@gmail.com on 8 Aug 2014 at 1:32

[GoogleCodeExporter]

I'm running on linux, the version is the 2.3.1 packaged as rpm 
https://build.opensuse.org/package/show/home:vpereirabr/owasp-zap

Original comment by vpereir...@gmail.com on 8 Aug 2014 at 1:34

[GoogleCodeExporter]

@vpereirabr, what makes you think this is the same issue, your stacktrace 
doesn't seem to implicate transaction rollback or serialization at all. Can you 
tell us what you were doing when you encountered the trace you've quoted? Are 
you able to reproduce?

@THC202, do you have steps to reproduce this issue? Does this in fact affect 
2.3.1?

Original comment by kingtho...@gmail.com on 11 Aug 2014 at 12:24