Bugzilla – Bug 1194047
enlightenment fails in rpmlint check in Backports:SLE-15-SP4 for armv7
Last modified: 2022-07-15 02:18:19 UTC
enlightenment fails in rpmlint check in Backports:SLE-15-SP4 for armv7 with: enlightenment.armv7hl: E: permissions-file-setuid-bit (Badness: 10000) /usr/lib/enlightenment/utils/enlightenment_system is packaged with setuid/setgid bits (04755) Other architectures are fine. Full log: https://build.opensuse.org/package/live_build_log/openSUSE:Backports:SLE-15-SP4/enlightenment/step/armv7l
Re assigning to the security team, it isn't an issue on other arch's because enlightenment is in the whitelist I guess its missing from a whitelist in this case.
This is an autogenerated message for openQA integration by the openqa_review script: This bug is still referenced in a failing openQA test: otherDE_enlightenment https://openqa.opensuse.org/tests/2129658 To prevent further reminder comments one of the following options should be followed: 1. The test scenario is fixed by applying the bug fix to the tested product or the test is adjusted 2. The openQA job group is moved to "Released" or "EOL" (End-of-Life) 3. The bugref in the openQA scenario is removed or replaced, e.g. `label:wontfix:boo1234`
I did a quick look, we do have this in permissions, # enlightenment privileged desktop operations (bsc#1169238) /usr/lib64/enlightenment/utils/enlightenment_system root:root 4755 according to the buildlog, this file is packaged to /usr/lib/enlightenment/utils/enlightenment_system , lib vs lib64, that is probably the reason why this package only fails to pass permission check on armv7.
As backport project is frozen in OBS, could we get it via update?
(In reply to Guillaume GARDET from comment #4) > As backport project is frozen in OBS, could we get it via update? First we need a fixed permissions package add to SLE update, then rebuild enlightenment in Backports update afterward.
This is an autogenerated message for openQA integration by the openqa_review script: This bug is still referenced in a failing openQA test: otherDE_enlightenment https://openqa.opensuse.org/tests/2417394#step/install_otherDE_pattern/1 To prevent further reminder comments one of the following options should be followed: 1. The test scenario is fixed by applying the bug fix to the tested product or the test is adjusted 2. The openQA job group is moved to "Released" or "EOL" (End-of-Life) 3. The bugref in the openQA scenario is removed or replaced, e.g. `label:wontfix:boo1234` Expect the next reminder at the earliest in 28 days if nothing changes in this ticket.
This is an autogenerated message for openQA integration by the openqa_review script: This bug is still referenced in a failing openQA test: otherDE_enlightenment https://openqa.opensuse.org/tests/2463213#step/install_otherDE_pattern/1 To prevent further reminder comments one of the following options should be followed: 1. The test scenario is fixed by applying the bug fix to the tested product or the test is adjusted 2. The openQA job group is moved to "Released" or "EOL" (End-of-Life) 3. The bugref in the openQA scenario is removed or replaced, e.g. `label:wontfix:boo1234` Expect the next reminder at the earliest in 56 days if nothing changes in this ticket.