Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs

classic Classic list List threaded Threaded
9 messages Options
Reply | Threaded
Open this post in threaded view
|

Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs

Chris Hostetter-3

TL;DR: Uwe: can you please upgrade the jdk-11 used on the apache lucene
jenkis jobs and your policeman jenkins jobs to 11.0.3 ?

---

Dat & I have (coincidently) found ourselves both looking into some (long
standing) SSL weirdness that has only ever manifested on java>=11.

Details can be found in SOLR-12988 & SOLR-12990 but the long and short of
it is there are at least 2 known OpenJDK bugs in SSL that have been
fixed in 11.0.3, which we are seeing evidence of in jenkins builds using
11.0.2....

https://bugs.openjdk.java.net/browse/JDK-8213202
https://bugs.openjdk.java.net/browse/JDK-8212885 / JDK-8220723

(The nature of these bugs makes it hard -- at least AFAICT -- to try to
write any "assume" logic to auto-detect if they apply to the current JVM.)

There may in fact still be other SSL related bugs in jdk 11.0.3, but it
will be hard to know until we at least upgrade to 11.0.3 to see what still
fails.

Uwe / whomever has access: if you could help us out here it would be
appreciated.



-Hoss
http://www.lucidworks.com/

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

Re: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs

david.w.smiley@gmail.com
Java 11.0.3 is much better on my machine.  Earlier today I was using 11.0.1 and getting sporadic SSL errors on all my runs -- very frustrating.  I don't have that problem since using 11.0.3.

~ David Smiley
Apache Lucene/Solr Search Developer


On Tue, Jun 18, 2019 at 5:45 PM Chris Hostetter <[hidden email]> wrote:

TL;DR: Uwe: can you please upgrade the jdk-11 used on the apache lucene
jenkis jobs and your policeman jenkins jobs to 11.0.3 ?

---

Dat & I have (coincidently) found ourselves both looking into some (long
standing) SSL weirdness that has only ever manifested on java>=11.

Details can be found in SOLR-12988 & SOLR-12990 but the long and short of
it is there are at least 2 known OpenJDK bugs in SSL that have been
fixed in 11.0.3, which we are seeing evidence of in jenkins builds using
11.0.2....

https://bugs.openjdk.java.net/browse/JDK-8213202
https://bugs.openjdk.java.net/browse/JDK-8212885 / JDK-8220723

(The nature of these bugs makes it hard -- at least AFAICT -- to try to
write any "assume" logic to auto-detect if they apply to the current JVM.)

There may in fact still be other SSL related bugs in jdk 11.0.3, but it
will be hard to know until we at least upgrade to 11.0.3 to see what still
fails.

Uwe / whomever has access: if you could help us out here it would be
appreciated.



-Hoss
http://www.lucidworks.com/

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

Re: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs

Chris Hostetter-3
In reply to this post by Chris Hostetter-3

We also need to upgrade the jdk-13 jenkins jobs to at least 13-ea+26,
which includes the fix for JDK-8224829...

        https://bugs.openjdk.java.net/browse/JDK-8224829

: Date: Tue, 18 Jun 2019 14:44:51 -0700 (MST)
: From: Chris Hostetter <[hidden email]>
: To: Uwe Schindler <[hidden email]>
: Cc: Lucene Dev <[hidden email]>
: Subject: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs
:
:
: TL;DR: Uwe: can you please upgrade the jdk-11 used on the apache lucene jenkis
: jobs and your policeman jenkins jobs to 11.0.3 ?
:
: ---
:
: Dat & I have (coincidently) found ourselves both looking into some (long
: standing) SSL weirdness that has only ever manifested on java>=11.
:
: Details can be found in SOLR-12988 & SOLR-12990 but the long and short of it
: is there are at least 2 known OpenJDK bugs in SSL that have been fixed in
: 11.0.3, which we are seeing evidence of in jenkins builds using 11.0.2....
:
: https://bugs.openjdk.java.net/browse/JDK-8213202
: https://bugs.openjdk.java.net/browse/JDK-8212885 / JDK-8220723
:
: (The nature of these bugs makes it hard -- at least AFAICT -- to try to write
: any "assume" logic to auto-detect if they apply to the current JVM.)
:
: There may in fact still be other SSL related bugs in jdk 11.0.3, but it will
: be hard to know until we at least upgrade to 11.0.3 to see what still fails.
:
: Uwe / whomever has access: if you could help us out here it would be
: appreciated.
:
:
:
: -Hoss
: http://www.lucidworks.com/
:

-Hoss
http://www.lucidworks.com/

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

Re: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs

Uwe Schindler
Ok, will work on it later today.

Uwe

Am June 22, 2019 12:23:17 AM UTC schrieb Chris Hostetter <[hidden email]>:

We also need to upgrade the jdk-13 jenkins jobs to at least 13-ea+26,
which includes the fix for JDK-8224829...

https://bugs.openjdk.java.net/browse/JDK-8224829

: Date: Tue, 18 Jun 2019 14:44:51 -0700 (MST)
: From: Chris Hostetter <[hidden email]>
: To: Uwe Schindler <[hidden email]>
: Cc: Lucene Dev <[hidden email]>
: Subject: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs
:
:
: TL;DR: Uwe: can you please upgrade the jdk-11 used on the apache lucene jenkis
: jobs and your policeman jenkins jobs to 11.0.3 ?
:
: ---
:
: Dat & I have (coincidently) found ourselves both looking into some (long
: standing) SSL weirdness that has only ever manifested on java>=11.
:
: Details can be found in SOLR-12988 & SOLR-12990 but the long and short of it
: is there are at least 2 known OpenJDK bugs in SSL that have been fixed in
: 11.0.3, which we are seeing evidence of in jenkins builds using 11.0.2....
:
: https://bugs.openjdk.java.net/browse/JDK-8213202
: https://bugs.openjdk.java.net/browse/JDK-8212885 / JDK-8220723
:
: (The nature of these bugs makes it hard -- at least AFAICT -- to try to write
: any "assume" logic to auto-detect if they apply to the current JVM.)
:
: There may in fact still be other SSL related bugs in jdk 11.0.3, but it will
: be hard to know until we at least upgrade to 11.0.3 to see what still fails.
:
: Uwe / whomever has access: if you could help us out here it would be
: appreciated.
:
:
:
: -Hoss
: http://www.lucidworks.com/
:

-Hoss
http://www.lucidworks.com/

--
Uwe Schindler
Achterdiek 19, 28357 Bremen
https://www.thetaphi.de
Reply | Threaded
Open this post in threaded view
|

RE: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs

Uwe Schindler

Hi Hoss,

 

sorry for the delay, I updated JDK on Policeman Jenkins. But there are some things to mention:

 

  • JDK 11.0.3 is *not* available free of charge from Oracle nor they supply OpenJDK convenience builds. Because of this we have to use JDK 11.0.3 from AdoptOpenJDK (Hotspot variant). I have installed those builds on Linux, Windows, MacOSX
  • JDK 12.0.1 was also installed on Linux, Windows, MacOSX (also AdoptOpenJDK)
  • JDK 13-ea+26 was installed on Linux and Windows
  • JDK-13-ea+shipilev-fastdebug (nightly) was updated to yesterday’s build) on Linux

 

If the SSL errors are really coming from this and Users have to install 11.0.3 at minimum, we have to mention this in release notes and on the web page. Especially we have to tell people to either pay Oracle to get 11.0.3 LTS or to use AdoptOpenJDK-Hotspot or Coretto (untested). Of course this is only a limitation if you enable TLS, which most people don’t do on their Solr servers.

 

Uwe

 

-----

Uwe Schindler

Achterdiek 19, D-28357 Bremen

https://www.thetaphi.de

eMail: [hidden email]

 

From: Uwe Schindler <[hidden email]>
Sent: Saturday, June 22, 2019 10:19 AM
To: Chris Hostetter <[hidden email]>
Cc: Lucene Dev <[hidden email]>
Subject: Re: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs

 

Ok, will work on it later today.

Uwe

Am June 22, 2019 12:23:17 AM UTC schrieb Chris Hostetter <[hidden email]>:


We also need to upgrade the jdk-13 jenkins jobs to at least 13-ea+26,
which includes the fix for JDK-8224829...

    
https://bugs.openjdk.java.net/browse/JDK-8224829

: Date: Tue, 18 Jun 2019 14:44:51 -0700 (MST)
: From: Chris Hostetter <
[hidden email]>
: To: Uwe Schindler <
[hidden email]>
: Cc: Lucene Dev <
[hidden email]>
: Subject: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs
:
:
: TL;DR: Uwe: can you please upgrade the jdk-11 used on the apache lucene jenkis
: jobs and your policeman jenkins jobs to 11.0.3 ?
:
: ---
:
: Dat & I have (coincidently) found ourselves both looking into some (long
: standing) SSL weirdness that has only ever manifested on java>=11.
:
: Details can be found in SOLR-12988 & SOLR-12990 but the long and short of it
: is there are at least 2 known OpenJDK bugs in SSL that have been fixed in
: 11.0.3, which we are seeing evidence of in jenkins builds using 11.0.2....
:
:
https://bugs.openjdk.java.net/browse/JDK-8213202
:
https://bugs.openjdk.java.net/browse/JDK-8212885 / JDK-8220723
:
: (The nature of these bugs makes it hard -- at least AFAICT -- to try to write
: any "assume" logic to auto-detect if they apply to the current JVM.)
:
: There may in fact still be other SSL related bugs in jdk 11.0.3, but it will
: be hard to know until we at least upgrade to 11.0.3 to see what still fails.
:
: Uwe / whomever has access: if you could help us out here it would be
: appreciated.
:
:
:
: -Hoss
:
http://www.lucidworks.com/
:

-Hoss
http://www.lucidworks.com/


--
Uwe Schindler
Achterdiek 19, 28357 Bremen
https://www.thetaphi.de

Reply | Threaded
Open this post in threaded view
|

RE: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs

Chris Hostetter-3

: sorry for the delay, I updated JDK on Policeman Jenkins. But there are
: some things to mention:

Thanks Uwe, appreciate it

: If the SSL errors are really coming from this and Users have to install
: 11.0.3 at minimum, we have to mention this in release notes and on the
: web page. Especially we have to tell people to either pay Oracle to get

Agreed -- this is being tracked in SOLR-12988, so we should probably keep
discussion of what/where/how to inform users there -- but for now the
priority is getting SSL testing re-enabled on jenkins jdk11 (w/11.0.3)
since it's been silently disabled in the test code for the past 6 months
... that way we'll have some sanity check that there aren't *OTHER* java11
+ SSL bugs we haven't found yet, before we tell people "use 11.0.3"


: * JDK 13-ea+26 was installed on Linux and Windows
: * JDK-13-ea+shipilev-fastdebug (nightly) was updated to yesterday’s build) on Linux

Unfortunately on friday I discovered that a *new* bug slipped into
13-ea+26, which garuntees SSL failures in jetty/solr (JDK-8226649) and
still has no fix, so it looks like we need to skip SSL testing on all
13-ea builds (even if they are current nightly builds of OpenJDK) for now.

BTW: I still don't really understand what "13-ea+shipilev-fastdebug" is --
can you elaborate on that?



-Hoss
http://www.lucidworks.com/


---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]
Reply | Threaded
Open this post in threaded view
|

RE: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs

Chris Hostetter-3
In reply to this post by Uwe Schindler


Uwe: when you upgraded the JVMs, were there by any chance other
(potentially inadvertent) changes to the VMs -- particularly the Windows
VM?

Since June 22nd, we've see ReplicationFactorTest fail in _almost_ every
Windows build from your server, regardless of JVM version used, on
both master and branch_8x -- and when it fails, the failure repro
checks at the end of the build "succeed" in reproducing the failure
anywhere from 1-5 times.  All of the failures occur at the exact same line
number of the test.

(Prior to June 22nd, this test only failed a total of 5 times in 2019,
across all jenkins servers/OSes, etc... and at a quick glance, rarely in
this specific spot)

Based on my review of a handful of the logs from the past week, it looks
like the failures *may* be caused by CPU starvation -- but even that's a
guess since similar situations are also tested earlier in the same test --
and it never seems to fail during them (as it simulates 3 servers with one
or 2 of the replicas partitioned off via a closed proxy, one update thread
on the leader is continuously trying to reconnect, while another leader
thread is sending updates to the remaining "live" replica -- but that live
replica doesn't seem to "see" the request until 30 seconds later, after
the first update thread appears to have given up on the "down" replica)

in any case -- i'm wondering if perhaps the number of "virtual
CPUs" or some other VM realted setting might have changed on your Windows
test instance.



: Date: Sat, 22 Jun 2019 18:37:42 +0200
: From: Uwe Schindler <[hidden email]>
: To: [hidden email], Chris Hostetter <[hidden email]>
: Subject: RE: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs
:
: Hi Hoss,
:
:  
:
: sorry for the delay, I updated JDK on Policeman Jenkins. But there are some things to mention:
:
:  
:
: * JDK 11.0.3 is *not* available free of charge from Oracle nor they supply OpenJDK convenience builds. Because of this we have to use JDK 11.0.3 from AdoptOpenJDK (Hotspot variant). I have installed those builds on Linux, Windows, MacOSX
: * JDK 12.0.1 was also installed on Linux, Windows, MacOSX (also AdoptOpenJDK)
: * JDK 13-ea+26 was installed on Linux and Windows
: * JDK-13-ea+shipilev-fastdebug (nightly) was updated to yesterday’s build) on Linux
:
:  
:
: If the SSL errors are really coming from this and Users have to install 11.0.3 at minimum, we have to mention this in release notes and on the web page. Especially we have to tell people to either pay Oracle to get 11.0.3 LTS or to use AdoptOpenJDK-Hotspot or Coretto (untested). Of course this is only a limitation if you enable TLS, which most people don’t do on their Solr servers.
:
:  
:
: Uwe
:
:  
:
: -----
:
: Uwe Schindler
:
: Achterdiek 19, D-28357 Bremen
:
: https://www.thetaphi.de
:
: eMail: [hidden email]
:
:  
:
: From: Uwe Schindler <[hidden email]>
: Sent: Saturday, June 22, 2019 10:19 AM
: To: Chris Hostetter <[hidden email]>
: Cc: Lucene Dev <[hidden email]>
: Subject: Re: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs
:
:  
:
: Ok, will work on it later today.
:
: Uwe
:
: Am June 22, 2019 12:23:17 AM UTC schrieb Chris Hostetter <[hidden email] <mailto:[hidden email]> >:
:
:
: We also need to upgrade the jdk-13 jenkins jobs to at least 13-ea+26,
: which includes the fix for JDK-8224829...
:
:       <https://bugs.openjdk.java.net/browse/JDK-8224829> https://bugs.openjdk.java.net/browse/JDK-8224829
:
: : Date: Tue, 18 Jun 2019 14:44:51 -0700 (MST)
: : From: Chris Hostetter < <mailto:[hidden email]> [hidden email]>
: : To: Uwe Schindler < <mailto:[hidden email]> [hidden email]>
: : Cc: Lucene Dev < <mailto:[hidden email]> [hidden email]>
: : Subject: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs
: :
: :
: : TL;DR: Uwe: can you please upgrade the jdk-11 used on the apache lucene jenkis
: : jobs and your policeman jenkins jobs to 11.0.3 ?
: :
: : ---
: :
: : Dat & I have (coincidently) found ourselves both looking into some (long
: : standing) SSL weirdness that has only ever manifested on java>=11.
: :
: : Details can be found in SOLR-12988 & SOLR-12990 but the long and short of it
: : is there are at least 2 known OpenJDK bugs in SSL that have been fixed in
: : 11.0.3, which we are seeing evidence of in jenkins builds using 11.0.2....
: :
: :  <https://bugs.openjdk.java.net/browse/JDK-8213202> https://bugs.openjdk.java.net/browse/JDK-8213202
: :  <https://bugs.openjdk.java.net/browse/JDK-8212885> https://bugs.openjdk.java.net/browse/JDK-8212885 / JDK-8220723
: :
: : (The nature of these bugs makes it hard -- at least AFAICT -- to try to write
: : any "assume" logic to auto-detect if they apply to the current JVM.)
: :
: : There may in fact still be other SSL related bugs in jdk 11.0.3, but it will
: : be hard to know until we at least upgrade to 11.0.3 to see what still fails.
: :
: : Uwe / whomever has access: if you could help us out here it would be
: : appreciated.
: :
: :
: :
: : -Hoss
: :  <http://www.lucidworks.com/> http://www.lucidworks.com/
: :
:
: -Hoss
:  <http://www.lucidworks.com/> http://www.lucidworks.com/
:
:
: --
: Uwe Schindler
: Achterdiek 19, 28357 Bremen
: https://www.thetaphi.de
:
:

-Hoss
http://www.lucidworks.com/


---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]
Reply | Threaded
Open this post in threaded view
|

RE: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs

Uwe Schindler

Hi,

 

no changes in the VM configurations (same number of cores,  everything same). But one change:

 

So it was updated to the Windows 10 Feature Update 1903… an 22nd of June. I have no idea what this change may have caused in our tests; but if there is something different, it would also affect Windows Server users upgrading to latest Windows Server versions.

 

Nevertheless, it’s now installing the next 2019-06 cumulative update.

 

Uwe

 

-----

Uwe Schindler

Achterdiek 19, D-28357 Bremen

https://www.thetaphi.de

eMail: [hidden email]

 

> -----Original Message-----

> From: Chris Hostetter <[hidden email]>

> Sent: Tuesday, July 2, 2019 4:04 AM

> To: Uwe Schindler <[hidden email]>

> Cc: [hidden email]

> Subject: RE: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs

>

>

>

> Uwe: when you upgraded the JVMs, were there by any chance other

> (potentially inadvertent) changes to the VMs -- particularly the Windows

> VM?

>

> Since June 22nd, we've see ReplicationFactorTest fail in _almost_ every

> Windows build from your server, regardless of JVM version used, on

> both master and branch_8x -- and when it fails, the failure repro

> checks at the end of the build "succeed" in reproducing the failure

> anywhere from 1-5 times.  All of the failures occur at the exact same line

> number of the test.

>

> (Prior to June 22nd, this test only failed a total of 5 times in 2019,

> across all jenkins servers/OSes, etc... and at a quick glance, rarely in

> this specific spot)

>

> Based on my review of a handful of the logs from the past week, it looks

> like the failures *may* be caused by CPU starvation -- but even that's a

> guess since similar situations are also tested earlier in the same test --

> and it never seems to fail during them (as it simulates 3 servers with one

> or 2 of the replicas partitioned off via a closed proxy, one update thread

> on the leader is continuously trying to reconnect, while another leader

> thread is sending updates to the remaining "live" replica -- but that live

> replica doesn't seem to "see" the request until 30 seconds later, after

> the first update thread appears to have given up on the "down" replica)

>

> in any case -- i'm wondering if perhaps the number of "virtual

> CPUs" or some other VM realted setting might have changed on your

> Windows

> test instance.

>

>

>

> : Date: Sat, 22 Jun 2019 18:37:42 +0200

> : From: Uwe Schindler <[hidden email]>

> : To: [hidden email], Chris Hostetter <[hidden email]>

> : Subject: RE: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL

> bugs

> :

> : Hi Hoss,

> :

> :

> :

> : sorry for the delay, I updated JDK on Policeman Jenkins. But there are some

> things to mention:

> :

> :

> :

> : *       JDK 11.0.3 is *not* available free of charge from Oracle nor they

> supply OpenJDK convenience builds. Because of this we have to use JDK

> 11.0.3 from AdoptOpenJDK (Hotspot variant). I have installed those builds on

> Linux, Windows, MacOSX

> : *       JDK 12.0.1 was also installed on Linux, Windows, MacOSX (also

> AdoptOpenJDK)

> : *       JDK 13-ea+26 was installed on Linux and Windows

> : *       JDK-13-ea+shipilev-fastdebug (nightly) was updated to yesterday’s

> build) on Linux

> :

> :

> :

> : If the SSL errors are really coming from this and Users have to install 11.0.3

> at minimum, we have to mention this in release notes and on the web page.

> Especially we have to tell people to either pay Oracle to get 11.0.3 LTS or to

> use AdoptOpenJDK-Hotspot or Coretto (untested). Of course this is only a

> limitation if you enable TLS, which most people don’t do on their Solr

> servers.

> :

> :

> :

> : Uwe

> :

> :

> :

> : -----

> :

> : Uwe Schindler

> :

> : Achterdiek 19, D-28357 Bremen

> :

> : https://www.thetaphi.de

> :

> : eMail: [hidden email]

> :

> :

> :

> : From: Uwe Schindler <[hidden email]>

> : Sent: Saturday, June 22, 2019 10:19 AM

> : To: Chris Hostetter <[hidden email]>

> : Cc: Lucene Dev <[hidden email]>

> : Subject: Re: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL

> bugs

> :

> :

> :

> : Ok, will work on it later today.

> :

> : Uwe

> :

> : Am June 22, 2019 12:23:17 AM UTC schrieb Chris Hostetter

> <[hidden email]> >:

> :

> :

> : We also need to upgrade the jdk-13 jenkins jobs to at least 13-ea+26,

> : which includes the fix for JDK-8224829...

> :

> :       <https://bugs.openjdk.java.net/browse/JDK-8224829>

> https://bugs.openjdk.java.net/browse/JDK-8224829

> :

> : : Date: Tue, 18 Jun 2019 14:44:51 -0700 (MST)

> : : From: Chris Hostetter < <[hidden email]>

> [hidden email]>

> : : To: Uwe Schindler < <[hidden email]> [hidden email]>

> : : Cc: Lucene Dev < <[hidden email]>

> [hidden email]>

> : : Subject: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs

> : :

> : :

> : : TL;DR: Uwe: can you please upgrade the jdk-11 used on the apache lucene

> jenkis

> : : jobs and your policeman jenkins jobs to 11.0.3 ?

> : :

> : : ---

> : :

> : : Dat & I have (coincidently) found ourselves both looking into some (long

> : : standing) SSL weirdness that has only ever manifested on java>=11.

> : :

> : : Details can be found in SOLR-12988 & SOLR-12990 but the long and short

> of it

> : : is there are at least 2 known OpenJDK bugs in SSL that have been fixed in

> : : 11.0.3, which we are seeing evidence of in jenkins builds using 11.0.2....

> : :

> : :  <https://bugs.openjdk.java.net/browse/JDK-8213202>

> https://bugs.openjdk.java.net/browse/JDK-8213202

> : :  <https://bugs.openjdk.java.net/browse/JDK-8212885>

> https://bugs.openjdk.java.net/browse/JDK-8212885 / JDK-8220723

> : :

> : : (The nature of these bugs makes it hard -- at least AFAICT -- to try to write

> : : any "assume" logic to auto-detect if they apply to the current JVM.)

> : :

> : : There may in fact still be other SSL related bugs in jdk 11.0.3, but it will

> : : be hard to know until we at least upgrade to 11.0.3 to see what still fails.

> : :

> : : Uwe / whomever has access: if you could help us out here it would be

> : : appreciated.

> : :

> : :

> : :

> : : -Hoss

> : :  <http://www.lucidworks.com/> http://www.lucidworks.com/

> : :

> :

> : -Hoss

> :  <http://www.lucidworks.com/> http://www.lucidworks.com/

> :

> :

> : --

> : Uwe Schindler

> : Achterdiek 19, 28357 Bremen

> : https://www.thetaphi.de

> :

> :

>

> -Hoss

> http://www.lucidworks.com/


oledata.mso (407K) Download Attachment
image003.emz (466K) Download Attachment
Reply | Threaded
Open this post in threaded view
|

RE: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs

Chris Hostetter-3

: no changes in the VM configurations (same number of cores,  everything same). But one change:

hmmm, ok .. jus a shot in the dark.  thanks for confirming.

: So it was updated to the Windows 10 Feature Update 1903… an 22nd of
: June. I have no idea what this change may have caused in our tests; but
: if there is something different, it would also affect Windows Server
: users upgrading to latest Windows Server versions.

yeah ... i'm really not sure how anything OS level could be causing this
... even my "CPU contention" guess doesn't _really_ make sense to me,
since earlier points in the test are basically doing the exact same thing,
and should need basically the same number of threads ... yet when the test
fails it also fails at this exact spot.

weird.


-Hoss
http://www.lucidworks.com/


---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]