Sonar-scanner-cli:latest Failing on Gitlab CI

Zedifus · May 23, 2024, 8:57pm

Template for a good new topic, formatted with Markdown:

Platform
Gitlab (Gitlab CI)

Scanner command used when applicable

sonarcloud-check:
  stage: lint
  image:
    name: sonarsource/sonar-scanner-cli:latest
    entrypoint: [""]
  tags:
    - saas-linux-medium-amd64
  rules:
    - if: "$SONAR_TOKEN == null"
      when: never
    - if: "$CODE_QUALITY_DISABLED"
      when: never
    - if: "$CI_COMMIT_TAG || $CI_COMMIT_BRANCH"
  variables:
    SONAR_USER_HOME: "${CI_PROJECT_DIR}/.sonar" # Defines the location of the analysis task cache
    GIT_DEPTH: "0" # Tells git to fetch all the branches of the project, required by the analysis task
  cache:
    key: "${CI_JOB_NAME}"
    paths:
      - .sonar/cache
  script:
    - sonar-scanner

Project Languages
Python, HTML, CSS, JavaScript
SonarCloud Project URL- SonarCloud
Error observed

INFO: Scanner configuration file: /opt/sonar-scanner/conf/sonar-scanner.properties
INFO: Project root configuration file: /builds/crafty-controller/crafty-4/sonar-project.properties
INFO: SonarScanner 5.0.1.3006
INFO: Java 17.0.11 Alpine (64-bit)
INFO: Linux 5.15.154+ amd64
INFO: User cache: /builds/crafty-controller/crafty-4/.sonar/cache
INFO: ------------------------------------------------------------------------
INFO: EXECUTION FAILURE
INFO: ------------------------------------------------------------------------
INFO: Total time: 0.892s
INFO: Final Memory: 5M/34M
INFO: ------------------------------------------------------------------------
ERROR: Error during SonarScanner execution
org.sonarsource.scanner.api.internal.ScannerException: Unable to execute SonarScanner analysis
	at org.sonarsource.scanner.api.internal.IsolatedLauncherFactory.lambda$createLauncher$0(IsolatedLauncherFactory.java:85)
	at java.base/java.security.AccessController.doPrivileged(AccessController.java:318)
	at org.sonarsource.scanner.api.internal.IsolatedLauncherFactory.createLauncher(IsolatedLauncherFactory.java:74)
	at org.sonarsource.scanner.api.internal.IsolatedLauncherFactory.createLauncher(IsolatedLauncherFactory.java:70)
	at org.sonarsource.scanner.api.EmbeddedScanner.doStart(EmbeddedScanner.java:185)
	at org.sonarsource.scanner.api.EmbeddedScanner.start(EmbeddedScanner.java:123)
	at org.sonarsource.scanner.cli.Main.execute(Main.java:74)
	at org.sonarsource.scanner.cli.Main.main(Main.java:62)
Caused by: java.lang.IllegalStateException: Fail to create temp file in /builds/crafty-controller/crafty-4/.sonar/cache/_tmp
	at org.sonarsource.scanner.api.internal.cache.FileCache.newTempFile(FileCache.java:138)
	at org.sonarsource.scanner.api.internal.cache.FileCache.get(FileCache.java:83)
	at org.sonarsource.scanner.api.internal.JarDownloader.lambda$getScannerEngineFiles$0(JarDownloader.java:60)
	at java.base/java.util.stream.ReferencePipeline$3$1.accept(ReferencePipeline.java:197)
	at java.base/java.util.ArrayList$ArrayListSpliterator.forEachRemaining(ArrayList.java:1625)
	at java.base/java.util.stream.AbstractPipeline.copyInto(AbstractPipeline.java:509)
	at java.base/java.util.stream.AbstractPipeline.wrapAndCopyInto(AbstractPipeline.java:499)
	at java.base/java.util.stream.ReduceOps$ReduceOp.evaluateSequential(ReduceOps.java:921)
	at java.base/java.util.stream.AbstractPipeline.evaluate(AbstractPipeline.java:234)
	at java.base/java.util.stream.ReferencePipeline.collect(ReferencePipeline.java:682)
	at org.sonarsource.scanner.api.internal.JarDownloader.getScannerEngineFiles(JarDownloader.java:61)
	at org.sonarsource.scanner.api.internal.JarDownloader.download(JarDownloader.java:53)
	at org.sonarsource.scanner.api.internal.IsolatedLauncherFactory.lambda$createLauncher$0(IsolatedLauncherFactory.java:76)
	... 7 more
Caused by: java.nio.file.AccessDeniedException: /builds/crafty-controller/crafty-4/.sonar/cache/_tmp/fileCache6019806376921368972.tmp
	at java.base/sun.nio.fs.UnixException.translateToIOException(UnixException.java:90)
	at java.base/sun.nio.fs.UnixException.rethrowAsIOException(UnixException.java:106)
	at java.base/sun.nio.fs.UnixException.rethrowAsIOException(UnixException.java:111)
	at java.base/sun.nio.fs.UnixFileSystemProvider.newByteChannel(UnixFileSystemProvider.java:218)
	at java.base/java.nio.file.Files.newByteChannel(Files.java:380)
	at java.base/java.nio.file.Files.createFile(Files.java:658)
	at java.base/java.nio.file.TempFileHelper.create(TempFileHelper.java:136)
	at java.base/java.nio.file.TempFileHelper.createTempFile(TempFileHelper.java:159)
	at java.base/java.nio.file.Files.createTempFile(Files.java:878)
	at org.sonarsource.scanner.api.internal.cache.FileCache.newTempFile(FileCache.java:136)
	... 19 more
ERROR: 
ERROR: Re-run SonarScanner using the -X switch to enable full debug logging.
Cleaning up project directory and file based variables
00:00
ERROR: Job failed: exit code 1

Steps to reproduce
Kick off a build in Gitlab CI, with the latest image.
Potential workaround
Version Failing:
sonarsource/sonar-scanner-cli:10.0.2.1398_5.0.1 (Digest: 866f32d84022)
Last pushed 5 hours ago (May 23, 2024 4:35pm Europe/London) by sonardocker

Version Last Known Working:
sonarsource/sonar-scanner-cli:5.0.1 (Digest: 02372948eaee)
Last pushed a month ago (Apr 16, 2024 8:30pm Europe/London) by sonardocker

Conclusion: Step back to sonarsource/sonar-scanner-cli:5.0.1

Angelo_Anolin · May 23, 2024, 8:59pm

Started happening as well on my end for two projects.

Also using Gitlab CI and the info for both failing sonar scan is below.

SonarScanner 5.0.1.3006
Java 17.0.11 Alpine (64-bit)
Linux 5.15.154+ amd64

Interestingly, we also have a separate project which was scanned an hour ago but did not have had any issue.

SonarScanner 5.0.1.3006
Java 17.0.11 Debian (64-bit)
Linux 5.15.154+ amd64

Zedifus · May 23, 2024, 9:03pm

The only discernible difference that I can see is that they have bumped the packaged Java version…

Working:
INFO: SonarScanner 5.0.1.3006
INFO: Java 17.0.10 Alpine (64-bit) <<
INFO: Linux 5.15.154+ amd64

Broken:
INFO: SonarScanner 5.0.1.3006
INFO: Java 17.0.11 Alpine (64-bit) <<
INFO: Linux 5.15.154+ amd64

micah-svenson · May 23, 2024, 9:11pm

This just started failing for me as well on Gitlab CI when using the latest docker image:
sonarsource/sonar-scanner-cli@sha256:02372948e

However, Im getting a slightly different error. This is the second time in a couple of months that a sonar-scanner-cli release caused pipelines to break with a similar if not the same error.

INFO: SonarScanner 5.0.1.3006
INFO: Java 17.0.11 Alpine (64-bit)
INFO: Linux 5.15.0-1017-aws amd64
INFO: User cache: /builds/.sonar/cache
INFO: Analyzing on SonarQube server 9.9.3.79811
INFO: EXECUTION FAILURE
INFO: ------------------------------------------------------------------------
INFO: Total time: 6.816s
INFO: Final Memory: 22M/80M
INFO: ------------------------------------------------------------------------
ERROR: Error during SonarScanner execution
java.lang.IllegalStateException: Unable to load components interface org.sonar.api.batch.sensor.Sensor
	at org.sonar.core.platform.SpringComponentContainer.getComponentsByType(SpringComponentContainer.java:156)
	at org.sonar.scanner.bootstrap.AbstractExtensionDictionary.completeScannerExtensions(AbstractExtensionDictionary.java:82)
	at org.sonar.scanner.bootstrap.AbstractExtensionDictionary.getExtensions(AbstractExtensionDictionary.java:77)
	at org.sonar.scanner.bootstrap.AbstractExtensionDictionary.getFilteredExtensions(AbstractExtensionDictionary.java:67)
	at org.sonar.scanner.sensor.ModuleSensorExtensionDictionary.selectSensors(ModuleSensorExtensionDictionary.java:47)
	at org.sonar.scanner.sensor.ModuleSensorsExecutor.lambda$execute$0(ModuleSensorsExecutor.java:54)
	at org.sonar.scanner.sensor.ModuleSensorsExecutor.withModuleStrategy(ModuleSensorsExecutor.java:79)
	at org.sonar.scanner.sensor.ModuleSensorsExecutor.execute(ModuleSensorsExecutor.java:54)
	at org.sonar.scanner.scan.SpringModuleScanContainer.doAfterStart(SpringModuleScanContainer.java:82)
	at org.sonar.core.platform.SpringComponentContainer.startComponents(SpringComponentContainer.java:188)
	at org.sonar.core.platform.SpringComponentContainer.execute(SpringComponentContainer.java:167)
	at org.sonar.scanner.scan.SpringProjectScanContainer.scan(SpringProjectScanContainer.java:403)
	at org.sonar.scanner.scan.SpringProjectScanContainer.scanRecursively(SpringProjectScanContainer.java:399)
	at org.sonar.scanner.scan.SpringProjectScanContainer.doAfterStart(SpringProjectScanContainer.java:368)
	at org.sonar.core.platform.SpringComponentContainer.startComponents(SpringComponentContainer.java:188)
	at org.sonar.core.platform.SpringComponentContainer.execute(SpringComponentContainer.java:167)
	at org.sonar.scanner.bootstrap.SpringGlobalContainer.doAfterStart(SpringGlobalContainer.java:137)
	at org.sonar.core.platform.SpringComponentContainer.startComponents(SpringComponentContainer.java:188)
	at org.sonar.core.platform.SpringComponentContainer.execute(SpringComponentContainer.java:167)
	at org.sonar.batch.bootstrapper.Batch.doExecute(Batch.java:72)
	at org.sonar.batch.bootstrapper.Batch.execute(Batch.java:66)
	at org.sonarsource.scanner.api.internal.batch.BatchIsolatedLauncher.execute(BatchIsolatedLauncher.java:46)
	at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
	at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:77)
	at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
	at java.base/java.lang.reflect.Method.invoke(Method.java:568)
	at org.sonarsource.scanner.api.internal.IsolatedLauncherProxy.invoke(IsolatedLauncherProxy.java:60)
	at jdk.proxy1/jdk.proxy1.$Proxy0.execute(Unknown Source)
	at org.sonarsource.scanner.api.EmbeddedScanner.doExecute(EmbeddedScanner.java:189)
	at org.sonarsource.scanner.api.EmbeddedScanner.execute(EmbeddedScanner.java:138)
	at org.sonarsource.scanner.cli.Main.execute(Main.java:126)
	at org.sonarsource.scanner.cli.Main.execute(Main.java:81)
	at org.sonarsource.scanner.cli.Main.main(Main.java:62)
Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ClassRealm{python}-org.sonar.plugins.python.PythonSensor': Bean instantiation via constructor failed; nested exception is org.springframework.beans.BeanInstantiationException: Failed to instantiate [org.sonar.plugins.python.PythonSensor]: Constructor threw exception; nested exception is java.lang.NoClassDefFoundError: com/sonarsource/dbd/ir/IrGeneratorUtils$MissingFeatureException
	at org.springframework.beans.factory.support.ConstructorResolver.instantiate(ConstructorResolver.java:315)
	at org.springframework.beans.factory.support.ConstructorResolver.autowireConstructor(ConstructorResolver.java:296)
	at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.autowireConstructor(AbstractAutowireCapableBeanFactory.java:1372)
	at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBeanInstance(AbstractAutowireCapableBeanFactory.java:1228)
	at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:582)
	at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:542)
	at org.springframework.beans.factory.support.AbstractBeanFactory.lambda$doGetBean$0(AbstractBeanFactory.java:335)
	at org.springframework.beans.factory.support.DefaultSingletonBeanRegistry.getSingleton(DefaultSingletonBeanRegistry.java:234)
	at org.springframework.beans.factory.support.AbstractBeanFactory.doGetBean(AbstractBeanFactory.java:333)
	at org.springframework.beans.factory.support.AbstractBeanFactory.getBean(AbstractBeanFactory.java:208)
	at org.springframework.beans.factory.support.DefaultListableBeanFactory.getBeansOfType(DefaultListableBeanFactory.java:673)
	at org.springframework.beans.factory.support.DefaultListableBeanFactory.getBeansOfType(DefaultListableBeanFactory.java:661)
	at org.springframework.context.support.AbstractApplicationContext.getBeansOfType(AbstractApplicationContext.java:1302)
	at org.sonar.core.platform.SpringComponentContainer.getComponentsByType(SpringComponentContainer.java:154)
	... 32 more
Caused by: org.springframework.beans.BeanInstantiationException: Failed to instantiate [org.sonar.plugins.python.PythonSensor]: Constructor threw exception; nested exception is java.lang.NoClassDefFoundError: com/sonarsource/dbd/ir/IrGeneratorUtils$MissingFeatureException
	at org.springframework.beans.BeanUtils.instantiateClass(BeanUtils.java:224)
	at org.springframework.beans.factory.support.SimpleInstantiationStrategy.instantiate(SimpleInstantiationStrategy.java:117)
	at org.springframework.beans.factory.support.ConstructorResolver.instantiate(ConstructorResolver.java:311)
	... 45 more
Caused by: java.lang.NoClassDefFoundError: com/sonarsource/dbd/ir/IrGeneratorUtils$MissingFeatureException
	at com.sonarsource.dbd.frontend.python.rules.A.<init>(na:812)
	at com.sonarsource.dbd.frontend.python.rules.NoneDereferenceCheck.<init>(na:337)
	at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
	at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:77)
	at java.base/jdk.internal.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
	at java.base/java.lang.reflect.Constructor.newInstanceWithCaller(Constructor.java:499)
	at java.base/java.lang.reflect.ReflectAccess.newInstance(ReflectAccess.java:128)
	at java.base/jdk.internal.reflect.ReflectionFactory.newInstance(ReflectionFactory.java:347)
	at java.base/java.lang.Class.newInstance(Class.java:645)
	at org.sonar.api.batch.rule.Checks.instantiate(Checks.java:152)
	at org.sonar.api.batch.rule.Checks.addAnnotatedChecks(Checks.java:128)
	at org.sonar.plugins.python.PythonChecks.addChecks(PythonChecks.java:41)
	at org.sonar.plugins.python.PythonChecks.addCustomChecks(PythonChecks.java:49)
	at org.sonar.plugins.python.PythonSensor.<init>(PythonSensor.java:90)
	at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
	at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:77)
	at java.base/jdk.internal.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
	at java.base/java.lang.reflect.Constructor.newInstanceWithCaller(Constructor.java:499)
	at java.base/java.lang.reflect.Constructor.newInstance(Constructor.java:480)
	at org.springframework.beans.BeanUtils.instantiateClass(BeanUtils.java:211)
	... 47 more
Caused by: java.lang.ClassNotFoundException: com.sonarsource.dbd.ir.IrGeneratorUtils$MissingFeatureException
	at org.sonar.classloader.ParentFirstStrategy.loadClass(ParentFirstStrategy.java:39)
	at org.sonar.classloader.ClassRealm.loadClass(ClassRealm.java:87)
	at org.sonar.classloader.ClassRealm.loadClass(ClassRealm.java:76)
	... 67 more
ERROR: 
ERROR: Re-run SonarScanner using the -X switch to enable full debug logging.

thomasgl-orange · May 23, 2024, 9:51pm

The issue here is ownership of the files/directories under .sonar/cache, when this directory is kept in cache and restaured between GitLab-CI jobs execution.

GitLab-CI does preserve ownership (which user/group owns each file/directory) for such caches. See for instance this comment in a GitLab issue on this topic.

Until this morning, the sonarsource/sonar-scanner-cli:latest image was version 5.0.1, and in this image jobs were executed as user root:root. It has been changed to new images (10.0.1.1390_5.0.1 and then 10.0.2.1398_5.0.1), and with these images jobs are executed as sonar-cli:sonar-cli (1000:1000). A .sonar/cache directory from a cache built yesterday will thus have the wrong ownership, leading to various scanner fatal errors: you got an AccessDeniedException, I’ve seen some ClassNotFoundException (which was less explicit about the underlying issue).

As a workaround, you can clear your runner cache for the GitLab project.

Zedifus · May 23, 2024, 10:44pm

Good catch, can confirm this resolved my issue, removed the version pin and cleared the cache and all progressed as normal. Nice to see they’ve moved to a rootless image!

system · May 30, 2024, 10:45pm

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Error in sonarqube integrating gitlab cicd SonarQube Server / Community Build sonarqube , scanner , gitlab , python	1	1302	October 17, 2022
Issues with sonarsource/sonar-scanner-cli:latest SonarQube Cloud	2	653	May 24, 2024
Error integrating gitlab cicd SonarQube Server / Community Build sonarqube , scanner	1	1328	September 28, 2022
Gitlab CI scan on Submodule is failing SonarQube Server / Community Build scanner	2	1917	November 24, 2021
GitLab CI/CD pipeline integration with sonarqube SonarQube Server / Community Build sonarqube , scanner , gitlab	2	7699	June 29, 2021

Sonar-scanner-cli:latest Failing on Gitlab CI

Related topics