FEDORA-2021-8b1a79ba17 created by nickc a year ago
for Fedora 35
Adds a test to annocheck to detect the presence of multibyte characters in symbol names. The presence of such characters indicates the possibility of a Trojan Source attack.
This update has been submitted for testing by nickc.
Problem 1: cannot install both llvm-libs-13.0.0~rc1-1.fc35.x86_64 and llvm-libs-13.0.0-4.fc35.x86_64
- package annobin-plugin-clang-9.87-4.fc35.x86_64 requires libLLVM-13.so.0()(64bit), but none of the providers can be installed
- package annobin-plugin-clang-9.87-4.fc35.x86_64 requires libLLVM-13.so.0(LLVM_13)(64bit), but none of the providers can be installed
- cannot install the best update candidate for package llvm-libs-13.0.0-4.fc35.x86_64
- cannot install the best update candidate for package annobin-plugin-clang-9.87-3.fc35.x86_64
Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.
Hmm, this package requires libLLVM-13.so.0()(64bit), and llvm has libLLVM-13.so()(64bit) (no .0).
What I don't understand is why the CI tests all report success. The update with llvm-libs-13.0.0-4.fc35.x86_64 went stable two weeks ago. So the installation tests should have failed.
This update has been submitted for testing by nickc.
This update's test gating status has been changed to 'waiting'.
This update's test gating status has been changed to 'passed'.
This update has been pushed to testing.
This update's test gating status has been changed to 'failed'.
This update's test gating status has been changed to 'passed'.
Problem 1: cannot install both llvm-libs-13.0.0~rc1-1.fc35.x86_64 and llvm-libs-13.0.0-4.fc35.x86_64 - package annobin-plugin-clang-9.87-4.fc35.x86_64 requires libLLVM-13.so.0()(64bit), but none of the providers can be installed - package annobin-plugin-clang-9.87-4.fc35.x86_64 requires libLLVM-13.so.0(LLVM_13)(64bit), but none of the providers can be installed - cannot install the best update candidate for package llvm-libs-13.0.0-4.fc35.x86_64 - cannot install the best update candidate for package annobin-plugin-clang-9.87-3.fc35.x86_64
Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.
Hmm, this package requires
libLLVM-13.so.0()(64bit), and llvm haslibLLVM-13.so()(64bit)(no.0).What I don't understand is why the CI tests all report success. The update with
llvm-libs-13.0.0-4.fc35.x86_64went stable two weeks ago. So the installation tests should have failed.FEDORA-2021-01ea922313 was the update for
llvm.updated without problems here
Failed to update too.
This package was built with llvm-13.0.0~rc1-1.fc35.x86_64 , it needs at least 13.0.0-2 for the soname change (https://src.fedoraproject.org/rpms/llvm/c/a26e75dfb6b6c5e70f45da99769d7df320f58980?branch=f35).
Looks like this package was built against LLVM 13 RC1 instead of LLVM 13 GA, resulting in broken dependencies.
See comments above.
This update has been obsoleted.