FEDORA-2021-8b1a79ba17 created by nickc 5 months ago for Fedora 35
obsolete

Adds a test to annocheck to detect the presence of multibyte characters in symbol names. The presence of such characters indicates the possibility of a Trojan Source attack.

This update has been submitted for testing by nickc.

5 months ago

This update's test gating status has been changed to 'waiting'.

5 months ago

This update's test gating status has been changed to 'passed'.

5 months ago

This update has been pushed to testing.

5 months ago

This update's test gating status has been changed to 'failed'.

5 months ago

This update's test gating status has been changed to 'passed'.

5 months ago
User Icon zbyszek commented & provided feedback 5 months ago
karma

Problem 1: cannot install both llvm-libs-13.0.0~rc1-1.fc35.x86_64 and llvm-libs-13.0.0-4.fc35.x86_64 - package annobin-plugin-clang-9.87-4.fc35.x86_64 requires libLLVM-13.so.0()(64bit), but none of the providers can be installed - package annobin-plugin-clang-9.87-4.fc35.x86_64 requires libLLVM-13.so.0(LLVM_13)(64bit), but none of the providers can be installed - cannot install the best update candidate for package llvm-libs-13.0.0-4.fc35.x86_64 - cannot install the best update candidate for package annobin-plugin-clang-9.87-3.fc35.x86_64

Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.

5 months ago

Hmm, this package requires libLLVM-13.so.0()(64bit), and llvm has libLLVM-13.so()(64bit) (no .0).

What I don't understand is why the CI tests all report success. The update with llvm-libs-13.0.0-4.fc35.x86_64 went stable two weeks ago. So the installation tests should have failed.

FEDORA-2021-01ea922313 was the update for llvm.

User Icon geraldosimiao commented & provided feedback 5 months ago
karma

updated without problems here

User Icon hwti commented & provided feedback 5 months ago
karma

Failed to update too.

This package was built with llvm-13.0.0~rc1-1.fc35.x86_64 , it needs at least 13.0.0-2 for the soname change (https://src.fedoraproject.org/rpms/llvm/c/a26e75dfb6b6c5e70f45da99769d7df320f58980?branch=f35).

User Icon decathorpe commented & provided feedback 5 months ago
karma

Looks like this package was built against LLVM 13 RC1 instead of LLVM 13 GA, resulting in broken dependencies.

User Icon treba commented & provided feedback 5 months ago
karma

See comments above.

This update has been obsoleted.

5 months ago

Please login to add feedback.

Metadata
Type
unspecified
Karma
-3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
5 months ago
in testing
5 months ago

Automated Test Results