Hi, I've been struggling with non-working GBS since yesterday. After discovering the cause I'd like to share it with you to help anyone who might encounter it as well.
There has been a vulnerability reported against cpio software regarding symlink traversal. It can be found under identifier CVE-2015-1197 (details: http://www.openwall.com/lists/oss-security/2015/01/16/1). Patch has been released for this vuln. It seems that patched version of cpio doesn't work well with GBS. Until now, it probably didn't hit you. Patched cpio isn't currently included in any version of Ubuntu (except for unreleased Vivid Vervet 15.04). But Debian already got the patched cpio. It was uploaded to Debian unstable on 2015-03-07 and to Debian testing on 2015-03-13. I haven't yet tried to investigate why it breaks GBS and how to fix that. So far I am simply downgrading cpio to work this around. This is how the problem manifests on my Debian testing system: r.krypa@amdc814:/data/src/security/security-manager$ gbs lb -Ai586 --clean --overwrite info: generate repositories ... info: build conf has been downloaded at: /var/tmp/r.krypa-gbs/tizen_common_wayland_emulator32.conf info: start building packages from: /data/src/security/security-manager (git) 2015-03-18 10:58 +0100 gbs 0.23.2 info: prepare sources... info: retrieving repo metadata... Use of uninitialized value in concatenation (.) or string at /usr/lib/build/createrepomddeps line 337. info: parsing package data... info: building repo metadata ... info: resolving skipped packages ... info: *** overwriting security-manager-1.0.0-1 i586 *** info: package dependency resolving ... info: next pass: security-manager info: *** [1/1] building security-manager-1.0.0-1 i586 tizen_common_wayland_emulator32 (worker: 0) *** VM_IMAGE: , VM_SWAP: --repository /home/r.krypa/GBS-ROOT/local/repos/tizen_common_wayland_emulator32/i586/RPMS --repository http://download.tizen.org/snapshots/tizen/common/latest/repos/emulator32-wayland/packages/ logging output to /home/r.krypa/GBS-ROOT/local/BUILD-ROOTS/scratch.i586.0/.build.log... [ 0s] Memory limit set to 21976132KB [ 0s] Using BUILD_ROOT=/home/r.krypa/GBS-ROOT/local/BUILD-ROOTS/scratch.i586.0 [ 0s] Using BUILD_ARCH=i686:i586:i486:i386:noarch [ 0s] [ 0s] [ 0s] amdc814.digital.local started "build security-manager.spec" at Wed Mar 18 09:58:07 UTC 2015. [ 0s] [ 0s] [ 0s] processing specfile /home/r.krypa/GBS-ROOT/local/sources/tizen_common_wayland_emulator32/security-manager-1.0.0-1/security-manager.spec ... [ 0s] init_buildsystem --configdir /usr/lib/build/configs --cachedir /home/r.krypa/GBS-ROOT/local/cache --repository /home/r.krypa/GBS-ROOT/local/repos/tizen_common_wayland_emulator32/i586/RPMS --repository http://download.tizen.org/snapshots/tizen/common/latest/repos/emulator32-wayland/packages/ --clean /home/r.krypa/GBS-ROOT/local/sources/tizen_common_wayland_emulator32/security-manager-1.0.0-1/security-manager.spec ... [ 0s] initializing /home/r.krypa/GBS-ROOT/local/BUILD-ROOTS/scratch.i586.0/.srcfiles.cache ... [ 0s] /usr/lib/build/createrpmdeps /home/r.krypa/GBS-ROOT/local/repos/tizen_common_wayland_emulator32/i586/RPMS [ 0s] /usr/lib/build/createrepomddeps --cachedir=/home/r.krypa/GBS-ROOT/local/cache http://download.tizen.org/snapshots/tizen/common/latest/repos/emulator32-wayland/packages/ [ 1s] Use of uninitialized value in concatenation (.) or string at /usr/lib/build/createrepomddeps line 337. [ 2s] expanding package dependencies... [ 4s] cycle: libsoftokn3 -> nss [ 4s] breaking dependency nss -> libsoftokn3 [ 4s] [1/35] preinstalling libmagic-data... [ 4s] [2/35] preinstalling setup... [ 4s] [3/35] preinstalling filesystem... [ 4s] [4/35] preinstalling glibc... [ 4s] cpio: Can't write over symlinks: ./lib/ld-2.20.so [ 4s] [ 4s] [5/35] preinstalling bash... [ 4s] [6/35] preinstalling diffutils... [ 4s] [7/35] preinstalling libattr... [ 4s] [8/35] preinstalling libbz2... [ 4s] [9/35] preinstalling libcap... [ 4s] cpio: Can't write over symlinks: ./lib/libcap.so.2 [ 4s] [ 4s] [10/35] preinstalling libelf... [ 4s] [11/35] preinstalling libfreebl3... [ 4s] [12/35] preinstalling libgcc_s1... [ 4s] cpio: Can't write over symlinks: ./lib/libgcc_s.so.1 [ 4s] [ 4s] [13/35] preinstalling liblua... [ 4s] [14/35] preinstalling liblzma... [ 4s] [15/35] preinstalling libncurses... [ 4s] [16/35] preinstalling libpopt... [ 4s] [17/35] preinstalling libsmack... [ 4s] [18/35] preinstalling libsqlite... [ 4s] [19/35] preinstalling nspr... [ 4s] [20/35] preinstalling sed... [ 4s] [21/35] preinstalling tar... [ 4s] [22/35] preinstalling zlib... [ 4s] cpio: Can't write over symlinks: ./lib/libz.so.1 [ 4s] [ 4s] [23/35] preinstalling grep... [ 4s] [24/35] preinstalling libacl... [ 4s] [25/35] preinstalling libreadline... [ 4s] [26/35] preinstalling smack... [ 4s] [27/35] preinstalling bzip2... [ 4s] [28/35] preinstalling libmagic... [ 5s] [29/35] preinstalling libxml2... [ 5s] [30/35] preinstalling util-linux... [ 5s] [31/35] preinstalling coreutils... [ 5s] [32/35] preinstalling nss... [ 5s] [33/35] preinstalling libsoftokn3... [ 5s] [34/35] preinstalling rpm... [ 5s] cpio: Can't write over symlinks: ./bin/rpm [ 5s] [ 5s] [35/35] preinstalling rpm-security-plugin... [ 5s] [ 5s] running setup postinstall script [ 5s] chroot: failed to run command 'sh': No such file or directory [ 5s] initializing rpm db... [ 5s] chroot: failed to run command 'rpm': No such file or directory warning: build failed, Leaving the logs in /home/r.krypa/GBS-ROOT/local/repos/tizen_common_wayland_emulator32/i586/logs/fail/security-manager-1.0.0-1/log.txt info: *** Build Status Summary *** === the following packages failed to build due to rpmbuild issue (1) === security-manager: /home/r.krypa/GBS-ROOT/local/repos/tizen_common_wayland_emulator32/i586/logs/fail/security-manager-1.0.0-1/log.txt === Total succeeded built packages: (0) === info: generated html format report: /home/r.krypa/GBS-ROOT/local/repos/tizen_common_wayland_emulator32/i586/index.html info: generated RPM packages can be found from local repo: /home/r.krypa/GBS-ROOT/local/repos/tizen_common_wayland_emulator32/i586/RPMS info: generated source RPM packages can be found from local repo: /home/r.krypa/GBS-ROOT/local/repos/tizen_common_wayland_emulator32/i586/SRPMS info: build logs can be found in: /home/r.krypa/GBS-ROOT/local/repos/tizen_common_wayland_emulator32/i586/logs info: build roots located in: /home/r.krypa/GBS-ROOT/local/BUILD-ROOTS/scratch.i586.* error: <gbs>some packages failed to be built _______________________________________________ Dev mailing list [email protected] https://lists.tizen.org/listinfo/dev
