Bug 1097558

Summary: Build of upgraded CXF contains regressions - org.slf4j dependencies
Product: [JBoss] JBoss Enterprise Application Platform 6 Reporter: Rostislav Svoboda <rsvoboda>
Component: BuildAssignee: Yong Yang <yyang>
Status: CLOSED CURRENTRELEASE QA Contact: Pavel Jelinek <pjelinek>
Severity: urgent Docs Contact:
Priority: unspecified    
Version: 6.3.0CC: dosoudil, kkhan
Target Milestone: ER5Keywords: Regression, TestBlocker
Target Release: EAP 6.3.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-06-28 15:40:25 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1098519    
Bug Blocks:    

Description Rostislav Svoboda 2014-05-14 05:50:40 UTC 
Build of upgraded CXF contains regressions - org.slf4j dependencies.

This issue blocks WS Interoperability testing.

I'm getting "SLF4J: Detected both log4j-over-slf4j.jar AND slf4j-log4j12.jar on the class path, preempting StackOverflowError." error.

Please exclude following dependencies cxf-rt-ws-security dependency tree.
   |  |  +- org.slf4j:jcl-over-slf4j:jar:1.7.2.redhat-3:compile
   |  |  +- org.slf4j:jul-to-slf4j:jar:1.6.4:compile
   |  |  \- org.slf4j:log4j-over-slf4j:jar:1.6.4:compile


ER4 (CXF 2.7.10)
   +- org.apache.cxf:cxf-rt-ws-security:jar:2.7.11.redhat-1:compile (version managed from 2.7.10)
   |  +- net.sf.ehcache:ehcache-core:jar:2.5.1:compile
   |  +- org.apache.ws.security:wss4j:jar:1.6.15.redhat-1:compile (version managed from 1.6.15)
   |  +- org.opensaml:opensaml:jar:2.5.3.redhat-2:compile
   |  |  +- org.opensaml:openws:jar:1.4.4.redhat-2:compile (version managed from 1.4.4)
   |  |  |  \- org.opensaml:xmltooling:jar:1.3.4.redhat-3:compile (version managed from 1.3.4)
   |  |  +- joda-time:joda-time:jar:1.6.2-redhat-4:compile
   |  |  +- xalan:serializer:jar:2.7.1.redhat-7:runtime (version managed from 2.7.1)
   |  |  +- org.slf4j:jcl-over-slf4j:jar:1.7.2.redhat-3:compile
   |  |  +- org.slf4j:jul-to-slf4j:jar:1.6.4:compile
   |  |  \- org.slf4j:log4j-over-slf4j:jar:1.6.4:compile
   |  \- commons-logging:commons-logging:jar:1.1.1:compile

ER3 (CXF 2.7.11)
   +- org.apache.cxf:cxf-rt-ws-security:jar:2.7.10.redhat-1:compile (version managed from 2.7.10)
   |  +- net.sf.ehcache:ehcache-core:jar:2.5.1:compile
   |  +- org.apache.ws.security:wss4j:jar:1.6.14.redhat-1:compile (version managed from 1.6.14)
   |  |  \- org.opensaml:opensaml:jar:2.5.3.redhat-2:compile (version managed from 2.5.1-1)
   |  |     +- org.opensaml:openws:jar:1.4.4.redhat-2:compile (version managed from 1.4.4)
   |  |     |  \- org.opensaml:xmltooling:jar:1.3.4.redhat-3:compile (version managed from 1.3.4)
   |  |     +- joda-time:joda-time:jar:1.6.2-redhat-4:compile
   |  |     \- xalan:serializer:jar:2.7.1.redhat-7:runtime (version managed from 2.7.1)
   |  \- commons-logging:commons-logging:jar:1.1.1:compile

Full tree for ER3: https://jenkins.mw.lab.eng.bos.redhat.com/hudson/view/EAP6/view/EAP6-WS/job/eap-6x-jbossws-cxf-client-dep-tree/35/artifact/jbossqe-eap-tests-ws/jbossws-cxf-client/dependency-tree-4.3.0.Final-redhat-2-using-BOM.txt

Full tree for ER4: https://jenkins.mw.lab.eng.bos.redhat.com/hudson/view/EAP6/view/EAP6-WS/job/eap-6x-jbossws-cxf-client-dep-tree/36/artifact/jbossqe-eap-tests-ws/jbossws-cxf-client/dependency-tree-4.3.0.Final-redhat-2-using-BOM.txt
Comment 1 Yong Yang 2014-05-15 06:57:51 UTC 
exclusions of log4j are commented in the upstream, https://github.com/apache/cxf/blob/cxf-2.7.11/rt/ws/security/pom.xml

I uncommented those exclusions and could build cxf 2.7.11 locally successfully.
Comment 2 Yong Yang 2014-05-15 08:23:09 UTC 
Fixed in redhat-2 builds:
https://brewweb.devel.redhat.com/buildinfo?buildID=357172
https://brewweb.devel.redhat.com/buildinfo?buildID=357171
Comment 3 Vladimir Dosoudil 2014-05-16 11:40:09 UTC 
PR: https://github.com/jbossas/jboss-eap/pull/1340
Comment 4 Rostislav Svoboda 2014-05-28 10:23:30 UTC 
Should be fixed in EAP 6.3.0 ER5 build
Comment 5 Rostislav Svoboda 2014-05-28 10:46:06 UTC 
Verified on EAP 6.3.0 ER5

https://jenkins.mw.lab.eng.bos.redhat.com/hudson/view/EAP6/view/EAP6-WS/job/eap-6x-jbossws-cxf-slf4j-dependency-check/