* [#424597] p11 EPERM openbao.git=2.5.5-alt1
@ 2026-07-08 13:40 Girar awaiter (tulskijms)
2026-07-14 8:30 ` [#424597] p11 DONE (try 2) openbao.git=2.5.5-alt1 Girar pender (amakeenk)
0 siblings, 1 reply; 2+ messages in thread
From: Girar awaiter (tulskijms) @ 2026-07-08 13:40 UTC (permalink / raw)
To: Maxim Tulskiy; +Cc: sisyphus-incominger, girar-builder-p11, girar-builder-p11
https://git.altlinux.org/tasks/424597/logs/events.1.1.log
https://packages.altlinux.org/tasks/424597
subtask name aarch64 i586 x86_64
#100 openbao 5:49 3:56 3:54
2026-Jul-08 13:29:33 :: task #424597 for p11 started by tulskijms:
2026-Jul-08 13:29:33 :: message: Fixes: CVE-2026-55770, CVE-2026-55776, CVE-2026-55774, CVE-2026-55775
#100 build 2.5.5-alt1 from /gears/o/openbao.git fetched at 2026-Jul-08 12:20:28 from sisyphus
2026-Jul-08 13:29:35 :: [aarch64] #100 openbao.git 2.5.5-alt1: build start
2026-Jul-08 13:29:35 :: [x86_64] #100 openbao.git 2.5.5-alt1: build start
2026-Jul-08 13:29:35 :: [i586] #100 openbao.git 2.5.5-alt1: build start
2026-Jul-08 13:33:29 :: [x86_64] #100 openbao.git 2.5.5-alt1: build OK
2026-Jul-08 13:33:31 :: [i586] #100 openbao.git 2.5.5-alt1: build OK
2026-Jul-08 13:35:24 :: [aarch64] #100 openbao.git 2.5.5-alt1: build OK
2026-Jul-08 13:35:38 :: 100: build check OK
2026-Jul-08 13:35:39 :: build check OK
2026-Jul-08 13:35:46 :: #100: openbao.git 2.5.5-alt1: version check OK
2026-Jul-08 13:35:46 :: build version check OK
2026-Jul-08 13:36:12 :: noarch check OK
2026-Jul-08 13:36:14 :: plan: src +1 -1 =20517, aarch64 +2 -2 =36890, i586 +2 -2 =35435, x86_64 +2 -2 =37908
#100 openbao 2.5.3-alt1 -> 2.5.5-alt1
Wed Jul 08 2026 Maxim Tulskiy <tulskijms@altlinux> 2.5.5-alt1
- Updated to new version 2.5.5.
- Fixes:
+ CVE-2026-55770: prevent LDAP injection via bind DN to group resolution
(auth/ldap, secrets/ldap)
+ CVE-2026-55776: fix server crash from unlock of unlocked mutex for RSA keys
created with derived=true (secrets/transit)
+ CVE-2026-55774: fix unauthorized cross-namespace lease revocation via leaked
lease identifiers (core/leases)
+ CVE-2026-55775: fix namespace path canonicalization of "root" enabling
[...]
2026-Jul-08 13:36:14 :: openbao: fixes vulnerabilities: CVE-2026-55770 CVE-2026-55776 CVE-2026-55774 CVE-2026-55775 CVE-2026-46358 CVE-2026-46405 CVE-2026-45808
2026-Jul-08 13:36:14 :: openbao: mentions vulnerabilities: CVE-2026-32952 CVE-2026-41889
2026-Jul-08 13:37:02 :: patched apt indices
2026-Jul-08 13:37:14 :: created next repo
2026-Jul-08 13:37:25 :: duplicate provides check OK
2026-Jul-08 13:38:08 :: dependencies check OK
2026-Jul-08 13:38:48 :: [x86_64 i586 aarch64] ELF symbols check OK
2026-Jul-08 13:39:04 :: [i586] #100 openbao: install check OK
2026-Jul-08 13:39:05 :: [x86_64] #100 openbao: install check OK
2026-Jul-08 13:39:14 :: [aarch64] #100 openbao: install check OK
2026-Jul-08 13:39:17 :: [i586] #100 openbao-debuginfo: install check OK
2026-Jul-08 13:39:17 :: [x86_64] #100 openbao-debuginfo: install check OK
2026-Jul-08 13:39:33 :: [aarch64] #100 openbao-debuginfo: install check OK
2026-Jul-08 13:39:53 :: [x86_64-i586] generated apt indices
2026-Jul-08 13:39:53 :: [x86_64-i586] created next repo
2026-Jul-08 13:40:05 :: [x86_64-i586] dependencies check OK
2026-Jul-08 13:40:06 :: gears inheritance check OK
2026-Jul-08 13:40:06 :: srpm inheritance check OK
girar-check-perms: access to openbao DENIED for tulskijms: does not belong to maintainers list yet
check-subtask-perms: #100: openbao: needs approvals from members of @maint and @tester groups
2026-Jul-08 13:40:08 :: acl check FAILED
2026-Jul-08 13:40:22 :: created contents_index files
2026-Jul-08 13:40:31 :: created hash files: aarch64 i586 src x86_64
2026-Jul-08 13:40:34 :: task #424597 for p11 EPERM
^ permalink raw reply [flat|nested] 2+ messages in thread
* [#424597] p11 DONE (try 2) openbao.git=2.5.5-alt1
2026-07-08 13:40 [#424597] p11 EPERM openbao.git=2.5.5-alt1 Girar awaiter (tulskijms)
@ 2026-07-14 8:30 ` Girar pender (amakeenk)
0 siblings, 0 replies; 2+ messages in thread
From: Girar pender (amakeenk) @ 2026-07-14 8:30 UTC (permalink / raw)
To: Maxim Tulskiy; +Cc: sisyphus-incominger, girar-builder-p11, girar-builder-p11
https://git.altlinux.org/tasks/archive/done/_414/424597/logs/events.2.2.log
https://packages.altlinux.org/tasks/424597
subtask name aarch64 i586 x86_64
#100 openbao 5:58 4:04 3:59
2026-Jul-14 08:24:34 :: task #424597 for p11 resumed by amakeenk:
2026-Jul-14 08:24:34 :: message: Fixes: CVE-2026-55770, CVE-2026-55776, CVE-2026-55774, CVE-2026-55775
#100 build 2.5.5-alt1 from /gears/o/openbao.git fetched at 2026-Jul-08 12:20:28 from sisyphus
2026-Jul-14 08:24:34 :: waiting for a shared lock on p11
2026-Jul-14 08:24:35 :: acquired a shared lock on p11
2026-Jul-14 08:24:36 :: [i586] #100 openbao.git 2.5.5-alt1: build start
2026-Jul-14 08:24:36 :: [aarch64] #100 openbao.git 2.5.5-alt1: build start
2026-Jul-14 08:24:36 :: [x86_64] #100 openbao.git 2.5.5-alt1: build start
2026-Jul-14 08:24:47 :: [i586] #100 openbao.git 2.5.5-alt1: build OK (cached)
2026-Jul-14 08:24:48 :: [x86_64] #100 openbao.git 2.5.5-alt1: build OK (cached)
2026-Jul-14 08:24:55 :: [aarch64] #100 openbao.git 2.5.5-alt1: build OK (cached)
2026-Jul-14 08:24:55 :: 100: build check OK (cached)
2026-Jul-14 08:24:56 :: build check OK
2026-Jul-14 08:25:03 :: #100: openbao.git 2.5.5-alt1: version check OK
2026-Jul-14 08:25:03 :: build version check OK
2026-Jul-14 08:25:35 :: noarch check OK
2026-Jul-14 08:25:37 :: plan: src +1 -1 =20558, aarch64 +2 -2 =36926, i586 +2 -2 =35458, x86_64 +2 -2 =37941
#100 openbao 2.5.3-alt1 -> 2.5.5-alt1
Wed Jul 08 2026 Maxim Tulskiy <tulskijms@altlinux> 2.5.5-alt1
- Updated to new version 2.5.5.
- Fixes:
+ CVE-2026-55770: prevent LDAP injection via bind DN to group resolution
(auth/ldap, secrets/ldap)
+ CVE-2026-55776: fix server crash from unlock of unlocked mutex for RSA keys
created with derived=true (secrets/transit)
+ CVE-2026-55774: fix unauthorized cross-namespace lease revocation via leaked
lease identifiers (core/leases)
+ CVE-2026-55775: fix namespace path canonicalization of "root" enabling
[...]
2026-Jul-14 08:25:37 :: openbao: fixes vulnerabilities: CVE-2026-55770 CVE-2026-55776 CVE-2026-55774 CVE-2026-55775 CVE-2026-46358 CVE-2026-46405 CVE-2026-45808
2026-Jul-14 08:25:37 :: openbao: mentions vulnerabilities: CVE-2026-32952 CVE-2026-41889
2026-Jul-14 08:26:29 :: patched apt indices
2026-Jul-14 08:26:40 :: created next repo
2026-Jul-14 08:26:52 :: duplicate provides check OK
2026-Jul-14 08:27:34 :: dependencies check OK
2026-Jul-14 08:27:35 :: [i586 aarch64] no need to repeat ELF symbols check
2026-Jul-14 08:28:10 :: [x86_64 i586 aarch64] ELF symbols check OK
2026-Jul-14 08:28:22 :: [i586] #100 openbao: install check OK (cached)
2026-Jul-14 08:28:23 :: [x86_64] #100 openbao: install check OK (cached)
2026-Jul-14 08:28:27 :: [i586] #100 openbao-debuginfo: install check OK (cached)
2026-Jul-14 08:28:28 :: [x86_64] #100 openbao-debuginfo: install check OK (cached)
2026-Jul-14 08:28:30 :: [aarch64] #100 openbao: install check OK (cached)
2026-Jul-14 08:28:39 :: [aarch64] #100 openbao-debuginfo: install check OK (cached)
2026-Jul-14 08:28:59 :: [x86_64-i586] generated apt indices
2026-Jul-14 08:28:59 :: [x86_64-i586] created next repo
2026-Jul-14 08:29:11 :: [x86_64-i586] dependencies check OK
2026-Jul-14 08:29:12 :: gears inheritance check OK
2026-Jul-14 08:29:12 :: srpm inheritance check OK
girar-check-perms: access to @maint ALLOWED for cas: member of approved group
girar-check-perms: access to @tester ALLOWED for amakeenk: member of approved group
check-subtask-perms: #100: openbao: approved by cas, approved by amakeenk
2026-Jul-14 08:29:14 :: acl check OK
2026-Jul-14 08:29:27 :: created contents_index files
2026-Jul-14 08:29:36 :: created hash files: aarch64 i586 src x86_64
2026-Jul-14 08:29:39 :: task #424597 for p11 TESTED
2026-Jul-14 08:29:40 :: task is ready for commit
2026-Jul-14 08:29:45 :: repo clone OK
2026-Jul-14 08:29:46 :: packages update OK
2026-Jul-14 08:29:55 :: [x86_64 i586 aarch64] update OK
2026-Jul-14 08:29:55 :: repo update OK
2026-Jul-14 08:30:07 :: repo save OK
2026-Jul-14 08:30:07 :: src index update OK
2026-Jul-14 08:30:07 :: updated /gears/o/openbao.git branch `p11'
2026-Jul-14 08:30:12 :: gears update OK
2026-Jul-14 08:30:12 :: task #424597 for p11 DONE
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2026-07-14 8:30 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2026-07-08 13:40 [#424597] p11 EPERM openbao.git=2.5.5-alt1 Girar awaiter (tulskijms)
2026-07-14 8:30 ` [#424597] p11 DONE (try 2) openbao.git=2.5.5-alt1 Girar pender (amakeenk)
ALT Linux Girar Builder robot reports
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/sisyphus-incominger/0 sisyphus-incominger/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 sisyphus-incominger sisyphus-incominger/ http://lore.altlinux.org/sisyphus-incominger \
sisyphus-incominger@lists.altlinux.org sisyphus-incominger@lists.altlinux.ru sisyphus-incominger@lists.altlinux.com
public-inbox-index sisyphus-incominger
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.sisyphus-incominger
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git