Fix overly broad classpath scanning in ReflectUtil.getClassesWithAnnotation() by vishesh92 · Pull Request #13427 · apache/cloudstack

vishesh92 · 2026-06-16T06:28:03Z

Description

Production logs show a recurring WARN at startup:
"could not get type for name org.conscrypt.AllocatedBuffer"
(org.reflections.ReflectionsException / ClassNotFoundException)

Root cause: ReflectUtil.getClassesWithAnnotation() uses ClasspathHelper.forPackage() to collect URLs to scan, but this returns all classpath entries (JARs/directories), not just those containing the target package. The Reflections library then scans every .class file in every JAR — including Netty's ConscryptAlpnSslEngine$BufferAdapter which references the optional org.conscrypt.AllocatedBuffer type. During expandSuperTypes(), Reflections tries Class.forName() on that type and fails because Conscrypt is not (and need not be) on the classpath.

The fix adds a FilterBuilder that restricts bytecode scanning to only classes whose fully-qualified names match the requested packages. This prevents Reflections from processing unrelated classes (e.g., io.netty.handler.ssl.*), eliminating the warning and reducing startup time by skipping thousands of irrelevant class files.

Types of changes

Breaking change (fix or feature that would cause existing functionality to change)
New feature (non-breaking change which adds functionality)
Bug fix (non-breaking change which fixes an issue)
Enhancement (improves an existing feature and functionality)
Cleanup (Code refactoring and cleanup, that may add test cases)
Build/CI
Test (unit or integration test code)

Feature/Enhancement Scale or Bug Severity

Feature/Enhancement Scale

Major
Minor

Bug Severity

Screenshots (if appropriate):

How Has This Been Tested?

How did you try to break this feature and the system with this change?

…tation() Production logs show a recurring WARN at startup: "could not get type for name org.conscrypt.AllocatedBuffer" (org.reflections.ReflectionsException / ClassNotFoundException) Root cause: ReflectUtil.getClassesWithAnnotation() uses ClasspathHelper.forPackage() to collect URLs to scan, but this returns all classpath entries (JARs/directories), not just those containing the target package. The Reflections library then scans every .class file in every JAR — including Netty's ConscryptAlpnSslEngine$BufferAdapter which references the optional org.conscrypt.AllocatedBuffer type. During expandSuperTypes(), Reflections tries Class.forName() on that type and fails because Conscrypt is not (and need not be) on the classpath. The fix adds a FilterBuilder that restricts bytecode scanning to only classes whose fully-qualified names match the requested packages. This prevents Reflections from processing unrelated classes (e.g., io.netty.handler.ssl.*), eliminating the warning and reducing startup time by skipping thousands of irrelevant class files. Signed-off-by: Ganesh Maharaj Mahalingam <g.mahalingam@apple.com>

vishesh92 · 2026-06-16T06:28:15Z

@blueorangutan package

blueorangutan · 2026-06-16T06:30:08Z

@vishesh92 a [SL] Jenkins job has been kicked to build packages. It will be bundled with KVM, XenServer and VMware SystemVM templates. I'll keep you posted as I make progress.

codecov · 2026-06-16T06:35:14Z

Codecov Report

❌ Patch coverage is 0% with 3 lines in your changes missing coverage. Please review.
✅ Project coverage is 17.67%. Comparing base (8e933b7) to head (34649c8).

Files with missing lines	Patch %	Lines
...ils/src/main/java/com/cloud/utils/ReflectUtil.java	0.00%	3 Missing ⚠️

Additional details and impacted files

@@             Coverage Diff              @@
##               4.22   #13427      +/-   ##
============================================
- Coverage     17.67%   17.67%   -0.01%     
+ Complexity    15792    15788       -4     
============================================
  Files          5922     5922              
  Lines        533167   533170       +3     
  Branches      65210    65210              
============================================
- Hits          94246    94230      -16     
- Misses       428276   428291      +15     
- Partials      10645    10649       +4

Flag	Coverage Δ
uitests	`3.69% <ø> (ø)`
unittests	`18.74% <0.00%> (-0.01%)`	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

blueorangutan · 2026-06-16T07:26:08Z

Packaging result [SF]: ✔️ el8 ✔️ el9 ✔️ el10 ✔️ debian ✔️ suse15. SL-JID 18273

DaanHoogland

clgtm

DaanHoogland · 2026-06-18T07:40:52Z

@blueorangutan test

blueorangutan · 2026-06-18T07:42:03Z

@DaanHoogland a [SL] Trillian-Jenkins test job (ol8 mgmt + kvm-ol8) has been kicked to run smoke tests

blueorangutan · 2026-06-19T01:59:32Z

[SF] Trillian test result (tid-16355)
Environment: kvm-ol8 (x2), zone: Advanced Networking with Mgmt server ol8
Total time taken: 62791 seconds
Marvin logs: https://github.com/blueorangutan/acs-prs/releases/download/trillian/pr13427-t16355-kvm-ol8.zip
Smoke tests completed. 141 look OK, 8 have errors, 0 did not run
Only failed and skipped tests results shown below:

Test	Result	Time (s)	Test File
ContextSuite context=TestExtensions>:setup	`Error`	0.00	test_extension_custom.py
ContextSuite context=TestExtensions>:setup	`Error`	0.00	test_extension_custom_action_lifecycle.py
test_01_create_extension	`Error`	0.00	test_extension_lifecycle.py
test_02_create_extension_type_fail	`Error`	0.00	test_extension_lifecycle.py
test_03_create_extension_name_fail	`Error`	0.00	test_extension_lifecycle.py
test_04_update_extension	`Error`	0.00	test_extension_lifecycle.py
test_05_register_unregister_extension	`Error`	0.05	test_extension_lifecycle.py
test_06_register_extension_already_fail	`Error`	0.05	test_extension_lifecycle.py
test_07_delete_extension_registered_resource_fail	`Error`	0.05	test_extension_lifecycle.py
test_08_extension_sync	`Error`	0.00	test_extension_lifecycle.py
test_09_extension_deploy_vm	`Error`	0.05	test_extension_lifecycle.py
test_01_add_primary_storage_disabled_host	`Failure`	117.28	test_primary_storage.py
test_create_pvlan_network	`Error`	0.10	test_pvlan.py
ContextSuite context=TestSharedFSLifecycle>:setup	`Error`	0.00	test_sharedfs_lifecycle.py
test_01_webhook_deliveries	`Error`	5.26	test_webhook_delivery.py
test_01_create_webhook_admin_local	`Error`	1.08	test_webhook_lifecycle.py
test_02_create_webhook_admin_domain	`Error`	1.08	test_webhook_lifecycle.py
test_03_create_webhook_admin_global	`Error`	1.11	test_webhook_lifecycle.py
test_04_create_webhook_domainadmin_local	`Error`	5.58	test_webhook_lifecycle.py
test_05_create_webhook_domainadmin_subdomain	`Error`	6.75	test_webhook_lifecycle.py
test_06_create_webhook_domainadmin_global_negative	`Error`	5.63	test_webhook_lifecycle.py
test_07_create_webhook_user_local	`Error`	5.24	test_webhook_lifecycle.py
test_08_create_webhook_user_domain	`Error`	5.37	test_webhook_lifecycle.py
test_09_create_webhook_user_gloabl	`Error`	5.25	test_webhook_lifecycle.py
test_10_create_webhook_admin_advanced	`Error`	5.34	test_webhook_lifecycle.py
test_11_update_webhook	`Error`	5.34	test_webhook_lifecycle.py
test_12_list_user_webhook_deliveries	`Error`	5.40	test_webhook_lifecycle.py
test_13_webhook_execute_delivery	`Error`	5.29	test_webhook_lifecycle.py

DaanHoogland approved these changes Jun 18, 2026

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Fix overly broad classpath scanning in ReflectUtil.getClassesWithAnnotation()#13427

Fix overly broad classpath scanning in ReflectUtil.getClassesWithAnnotation()#13427
vishesh92 wants to merge 1 commit into
apache:4.22from
shapeblue:fix-overly-broad-classpath-scanning

vishesh92 commented Jun 16, 2026 •

edited

Loading

Uh oh!

vishesh92 commented Jun 16, 2026

Uh oh!

blueorangutan commented Jun 16, 2026

Uh oh!

codecov Bot commented Jun 16, 2026 •

edited

Loading

Uh oh!

blueorangutan commented Jun 16, 2026

Uh oh!

DaanHoogland left a comment

Uh oh!

DaanHoogland commented Jun 18, 2026

Uh oh!

blueorangutan commented Jun 18, 2026

Uh oh!

blueorangutan commented Jun 19, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Conversation

vishesh92 commented Jun 16, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Description

Types of changes

Feature/Enhancement Scale or Bug Severity

Feature/Enhancement Scale

Bug Severity

Screenshots (if appropriate):

How Has This Been Tested?

How did you try to break this feature and the system with this change?

Uh oh!

vishesh92 commented Jun 16, 2026

Uh oh!

blueorangutan commented Jun 16, 2026

Uh oh!

codecov Bot commented Jun 16, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Codecov Report

Uh oh!

blueorangutan commented Jun 16, 2026

Uh oh!

DaanHoogland left a comment

Choose a reason for hiding this comment

Uh oh!

DaanHoogland commented Jun 18, 2026

Uh oh!

blueorangutan commented Jun 18, 2026

Uh oh!

blueorangutan commented Jun 19, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

vishesh92 commented Jun 16, 2026 •

edited

Loading

codecov Bot commented Jun 16, 2026 •

edited

Loading