[#405411] p11 EPERM (try 2) firefox.git=147.0.1-alt1

ALT Linux Girar Builder robot reports
 help / color / mirror / Atom feed

From: "Girar awaiter (rauty)" <girar-builder@altlinux.org>
To: Ajrat Makhmutov <rauty@altlinux.org>
Cc: sisyphus-incominger@lists.altlinux.org,
	girar-builder-p11@altlinux.org,
	girar-builder-p11@lists.altlinux.org
Subject: [#405411] p11 EPERM (try 2) firefox.git=147.0.1-alt1
Date: Sat, 17 Jan 2026 23:45:59 +0000
Message-ID: <girar.task.405411.2.1@gyle.mskdc.altlinux.org> (raw)
In-Reply-To: <girar.task.405411.1.1@gyle.mskdc.altlinux.org>

https://git.altlinux.org/tasks/405411/logs/events.2.1.log
https://packages.altlinux.org/tasks/405411

2026-Jan-17 23:39:44 :: task #405411 for p11 resumed by rauty:
2026-Jan-17 23:39:44 :: message: CVE fixes
#100 build 147.0.1-alt1 from /people/rauty/packages/firefox.git fetched at 2026-Jan-17 21:59:46
2026-Jan-17 23:39:45 :: [i586] #100 firefox.git 147.0.1-alt1: build start
2026-Jan-17 23:39:45 :: [x86_64] #100 firefox.git 147.0.1-alt1: build start
2026-Jan-17 23:39:45 :: [aarch64] #100 firefox.git 147.0.1-alt1: build start
2026-Jan-17 23:40:10 :: [i586] #100 firefox.git 147.0.1-alt1: build SKIPPED
2026-Jan-17 23:40:11 :: [x86_64] #100 firefox.git 147.0.1-alt1: build OK (cached)
2026-Jan-17 23:40:29 :: [aarch64] #100 firefox.git 147.0.1-alt1: build OK (cached)
2026-Jan-17 23:40:30 :: 100: build check OK (cached)
2026-Jan-17 23:40:31 :: build check OK
2026-Jan-17 23:40:38 :: #100: firefox.git 147.0.1-alt1: version check OK
2026-Jan-17 23:40:38 :: build version check OK
2026-Jan-17 23:42:20 :: noarch check OK
2026-Jan-17 23:42:22 :: plan: src +1 -1 =19987, aarch64 +3 -3 =35236, x86_64 +3 -3 =36020
#100 firefox 146.0.1-alt1 -> 147.0.1-alt1
 Sat Jan 17 2026 Ajrat Makhmutov <rauty@altlinux> 147.0.1-alt1
 - New version (147.0.1).
 Thu Jan 15 2026 Ajrat Makhmutov <rauty@altlinux> 147.0-alt1
 - New version (147.0).
 - Fixes:
   + CVE-2026-0877: Mitigation bypass in the DOM: Security component
   + CVE-2026-0878: Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component
   + CVE-2026-0879: Sandbox escape due to incorrect boundary conditions in the Graphics component
   + CVE-2026-0880: Sandbox escape due to integer overflow in the Graphics component
   + CVE-2026-0881: Sandbox escape in the Messaging System component
 [...]
2026-Jan-17 23:42:22 :: firefox: fixes vulnerabilities: CVE-2026-0877 CVE-2026-0878 CVE-2026-0879 CVE-2026-0880 CVE-2026-0881 CVE-2026-0882 CVE-2026-0883 CVE-2026-0884 CVE-2026-0885 CVE-2026-0886 CVE-2026-0887 CVE-2026-0888 CVE-2026-0889 CVE-2026-0890 CVE-2026-0891 CVE-2026-0892
2026-Jan-17 23:43:03 :: patched apt indices
2026-Jan-17 23:43:12 :: created next repo
2026-Jan-17 23:43:22 :: duplicate provides check OK
2026-Jan-17 23:44:02 :: dependencies check OK
2026-Jan-17 23:44:03 :: [x86_64 aarch64] no need to repeat ELF symbols check
2026-Jan-17 23:44:03 :: [x86_64 aarch64] ELF symbols check OK
	x86_64: firefox=147.0.1-alt1 post-install unowned files:
 /usr/share/gnome-shell
 /usr/share/gnome-shell/search-providers
 /usr/share/icons/hicolor/22x22
 /usr/share/icons/hicolor/22x22/apps
 /usr/share/icons/hicolor/24x24
 /usr/share/icons/hicolor/24x24/apps
 /usr/share/icons/hicolor/256x256
 /usr/share/icons/hicolor/256x256/apps
2026-Jan-17 23:44:16 :: [x86_64] #100 firefox: install check OK (cached)
2026-Jan-17 23:44:20 :: [x86_64] #100 firefox-config-privacy: install check OK (cached)
	aarch64: firefox=147.0.1-alt1 post-install unowned files:
 /usr/share/gnome-shell
 /usr/share/gnome-shell/search-providers
 /usr/share/icons/hicolor/22x22
 /usr/share/icons/hicolor/22x22/apps
 /usr/share/icons/hicolor/24x24
 /usr/share/icons/hicolor/24x24/apps
 /usr/share/icons/hicolor/256x256
 /usr/share/icons/hicolor/256x256/apps
2026-Jan-17 23:44:24 :: [aarch64] #100 firefox: install check OK (cached)
2026-Jan-17 23:44:27 :: [x86_64] #100 firefox-debuginfo: install check OK (cached)
2026-Jan-17 23:44:32 :: [aarch64] #100 firefox-config-privacy: install check OK (cached)
2026-Jan-17 23:44:44 :: [aarch64] #100 firefox-debuginfo: install check OK (cached)
2026-Jan-17 23:45:02 :: [x86_64-i586] generated apt indices
2026-Jan-17 23:45:02 :: [x86_64-i586] created next repo
2026-Jan-17 23:45:13 :: [x86_64-i586] dependencies check OK
2026-Jan-17 23:45:33 :: gears inheritance check OK
2026-Jan-17 23:45:33 :: srpm inheritance check OK
girar-check-perms: access to firefox DENIED for rauty: project `firefox' is not listed in the acl file for repository `p11', and the policy for such projects in `p11' is to deny
check-subtask-perms: #100: firefox: needs approvals from members of @maint and @tester groups
2026-Jan-17 23:45:35 :: acl check FAILED
2026-Jan-17 23:45:46 :: created contents_index files
2026-Jan-17 23:45:56 :: created hash files: aarch64 src x86_64
2026-Jan-17 23:45:59 :: task #405411 for p11 EPERM

next prev parent reply	other threads:[~2026-01-17 23:45 UTC|newest]

Thread overview: 3+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2026-01-17 23:39 [#405411] p11 TESTED firefox.git=147.0.1-alt1 Girar awaiter (rauty)
2026-01-17 23:45 ` Girar awaiter (rauty) [this message]
2026-01-21 16:17 ` [#405411] p11 DONE (try 3) firefox.git=147.0.1-alt1 Girar pender (amakeenk)

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=girar.task.405411.2.1@gyle.mskdc.altlinux.org \
    --to=girar-builder@altlinux.org \
    --cc=devel@lists.altlinux.org \
    --cc=girar-builder-p11@altlinux.org \
    --cc=girar-builder-p11@lists.altlinux.org \
    --cc=rauty@altlinux.org \
    --cc=sisyphus-incominger@lists.altlinux.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

ALT Linux Girar Builder robot reports

This inbox may be cloned and mirrored by anyone:

	git clone --mirror http://lore.altlinux.org/sisyphus-incominger/0 sisyphus-incominger/git/0.git

	# If you have public-inbox 1.1+ installed, you may
	# initialize and index your mirror using the following commands:
	public-inbox-init -V2 sisyphus-incominger sisyphus-incominger/ http://lore.altlinux.org/sisyphus-incominger \
		sisyphus-incominger@lists.altlinux.org sisyphus-incominger@lists.altlinux.ru sisyphus-incominger@lists.altlinux.com
	public-inbox-index sisyphus-incominger

Example config snippet for mirrors.
Newsgroup available over NNTP:
	nntp://lore.altlinux.org/org.altlinux.lists.sisyphus-incominger


AGPL code for this site: git clone https://public-inbox.org/public-inbox.git