https://bugzilla.redhat.com/show_bug.cgi?id=1357510
Bug ID: 1357510
Summary: Erlang Port Mapper Daemon Activation Socket fails to
start
Product: Fedora
Version: 24
Component: erlang
Assignee: lemenkov(a)gmail.com
Reporter: zboszor(a)pr.hu
QA Contact: extras-qa(a)fedoraproject.org
CC: erlang(a)lists.fedoraproject.org, jeckersb(a)redhat.com,
lemenkov(a)gmail.com, rhbugs(a)n-dimensional.de, s(a)shk.io
External Bug ID: Red Hat Bugzilla 1293128
Description of problem:
I was trying to enable SSL in rabbitmq-server but it requires epmd to run.
SELinux prevents epmd to start.
Version-Release number of selected component (if applicable):
erlang-18.3.4-1.fc24.x86_64
erlang-erts-18.3.4-1.fc24.x86_64
selinux-policy-targeted-3.13.1-191.fc24.3.noarch
How reproducible:
Always.
Steps to Reproduce:
1. dnf install rabbitmq-server
2. systemctl enable epmd.socket epmd.service rabbitmq-server
3. configure SSL options in /etc/rabbitmq/rabbitmq.config
4. reboot
Actual results:
epmd.service has a dependency on epmd.socket but it cannot be activated:
audit[1]: AVC avc: denied { create } for pid=1 comm="systemd"
scontext=system_u:system_r:init_t:s0
tcontext=system_u:system_r:unconfined_service_t:s0 tclass=tcp_socket
permissive=0
There is no setsebool toggle to allow systemd to open TCP sockets.
Expected results:
EPMD daemon should be able to start without socket activation.
Additional info:
After changing the epmd.service to not require systemd socket activation
with this patch below, but #1293128 occurs:
audit[7686]: AVC avc: denied { name_connect } for pid=7686 comm="epmd"
dest=4369 scontext=system_u:system_r:init_t:s0
tcontext=system_u:object_r:epmd_port_t:s0 tclass=tcp_socket permissive=0
The patch is:
--- epmd.service.orig 2016-07-18 13:55:26.584086294 +0200
+++ epmd.service 2016-07-18 13:57:40.336416375 +0200
@@ -1,11 +1,11 @@
[Unit]
Description=Erlang Port Mapper Daemon
After=network.target
-Requires=epmd.socket
+#Requires=epmd.socket
[Service]
-ExecStart=/usr/bin/epmd -systemd
-#ExecStop=/usr/bin/epmd -kill
+ExecStart=/usr/bin/epmd -daemon
+ExecStop=/usr/bin/epmd -kill
Type=notify
StandardOutput=journal
StandardError=journal
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=1234567
Bug ID: 1234567
Summary: Package should not ship a separate emacs sub-package
Product: Fedora
Version: rawhide
Component: erlang
Assignee: lemenkov(a)gmail.com
Reporter: jonathan.underwood(a)gmail.com
QA Contact: extras-qa(a)fedoraproject.org
CC: erlang(a)lists.fedoraproject.org, lemenkov(a)gmail.com,
rhbugs(a)n-dimensional.de, s(a)shk.io
Blocks: 1234479
The Emacs add-on packaging guidelines no longer stipulate that packages which
also bundle support for Emacs should split out those Emacs files into separate
sub-packages. This package should instead ship those files with the main
package which should also Require emacs-filesystem. See
https://fedoraproject.org/wiki/Packaging:Emacs for more detail.
Referenced Bugs:
https://bugzilla.redhat.com/show_bug.cgi?id=1234479
[Bug 1234479] Violations of Emacs add-on packaging guidelines
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=1456567
Bug ID: 1456567
Summary: "dialyzer --build_plt --apps erts kernel stdlib"
crashes
Product: Fedora
Version: 25
Component: erlang
Severity: medium
Assignee: lemenkov(a)gmail.com
Reporter: leon.one(a)gmail.com
QA Contact: extras-qa(a)fedoraproject.org
CC: erlang(a)lists.fedoraproject.org, jeckersb(a)redhat.com,
lemenkov(a)gmail.com, rhbugs(a)n-dimensional.de, s(a)shk.io
Created attachment 1283282
--> https://bugzilla.redhat.com/attachment.cgi?id=1283282&action=edit
erl_crash.dump
Description of problem:
Dialyzer PLT build crashes everytime.
Version-Release number of selected component (if applicable):
dnf info erlang
Last metadata expiration check: 0:08:11 ago on Mon May 29 17:16:10 2017.
Installed Packages
Name : erlang
Arch : x86_64
Epoch : 0
Version : 19.3.4
Release : 1.fc25
dnf info erlang-dialyzer
Last metadata expiration check: 0:08:22 ago on Mon May 29 17:16:10 2017.
Installed Packages
Name : erlang-dialyzer
Arch : x86_64
Epoch : 0
Version : 19.3.4
Release : 1.fc25
How reproducible:
always
Steps to Reproduce:
1. dialyzer --build_plt --apps erts kernel stdlib
Actual results:
Compiling some key modules to native code...{"init terminating in
do_boot",{{badmatch,ok},[{dialyzer_cl,hc_cache,1,[{file,"dialyzer_cl.erl"},{line,572}]},{lists,foreach,2,[{file,"lists.erl"},{line,1338}]},{dialyzer_cl,hipe_compile,2,[{file,"dialyzer_cl.erl"},{line,516}]},{dialyzer_cl,do_analysis,4,[{file,"dialyzer_cl.erl"},{line,382}]},{dialyzer,'-cl/1-fun-0-',1,[{file,"dialyzer.erl"},{line,153}]},{dialyzer,doit,1,[{file,"dialyzer.erl"},{line,243}]},{dialyzer,plain_cl,0,[{file,"dialyzer.erl"},{line,84}]},{init,start_em,1,[]}]}}
init terminating in do_boot ()
Crash dump is being written to: erl_crash.dump...done
Expected results:
done (passed successfully)
Additional info:
crash dump attached.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=1231430
Bug ID: 1231430
Summary: Missing jinterface maven metadata
Product: Fedora
Version: rawhide
Component: erlang
Assignee: lemenkov(a)gmail.com
Reporter: puntogil(a)libero.it
QA Contact: extras-qa(a)fedoraproject.org
CC: erlang(a)lists.fedoraproject.org, lemenkov(a)gmail.com,
rhbugs(a)n-dimensional.de, s(a)shk.io
Description of problem:
erlang-jinterface do not provides maven metadata, which used by some projects
e.g. https://github.com/spring-projects/spring-amqp/ (spring-erlang sub module)
The pom file is available but is not installed
https://github.com/erlang/otp/blob/maint/lib/jinterface/java_src/pom.xml.srchttps://fedoraproject.org/wiki/Packaging:Java#Maven_pom.xml_files
and the JAR file should be placed in %_javadir
https://fedoraproject.org/wiki/Packaging:Java#JAR_file_installation
The spec file "should be" modified in this way:
%if %{?fedora} >= 21
BuildRequires: javapackages-local
%else
BuildRequires: maven-local
%endif
jinterface_lib_dir="$(ls -d1 $RPM_BUILD_ROOT%{_libdir}/erlang/lib/jinterface-*/
| sed "s,^$RPM_BUILD_ROOT,,")" test -d "$RPM_BUILD_ROOT$jinterface_lib_dir"
rm -rf "${jinterface_lib_dir}priv/OtpErlang.jar"
if the pom file is not processed
sed 's/%VSN%/%{version}/' <otp/lib/jinterface/java_src/pom.xml.src >pom.xml
generates maven metadata
%mvn_artifact [path of the processed pom file]/pom.xml [path of the built java
library]/[name of the java library].jar
install JAR file in %_javadir and generate a its symlink
%mvn_file org.erlang.otp:jinterface erlang/OtpErlang
${jinterface_lib_dir}priv/OtpErlang
%mvn_install
Version-Release number of selected component (if applicable):
All
How reproducible:
Always
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=1358459
Bug ID: 1358459
Summary: LDAP authentication is broken
Product: Fedora
Version: 24
Component: ejabberd
Assignee: lemenkov(a)gmail.com
Reporter: arcfi(a)aetera.net
QA Contact: extras-qa(a)fedoraproject.org
CC: bowlofeggs(a)electronsweatshop.com,
erlang(a)lists.fedoraproject.org, jeremy(a)jcline.org,
lemenkov(a)gmail.com, martin(a)laptop.org
Description of problem:
LDAP authentication is broken
Version-Release number of selected component (if applicable):
ejabberd-16.01-5.fc24.x86_64
erlang-eldap-18.3.4-1.fc24.x86_64
How reproducible:
Always.
Steps to Reproduce:
1. Install ejabberd.
2. Configure LDAP authentication
Actual results:
<0.362.0>@eldap_pool:start_link:61 Err =
{'EXIT',{undef,[{eldap,start_link,[<<"#Ref<0.0.4.8409>">>,[<<"ldap.kola.fad.ru">>],389,<<"ejabberd(a)kola.fad.ru">>,<<"***">>,[{encrypt,starttls},{tls_verify,hard},{tls_cacertfile,<<"/etc/pki/tls/certs/ca.kola.fad.ru.crt">>},{tls_depth,undefined}]],[]},{eldap_pool,'-start_link/7-fun-2-',7,[{file,"src/eldap_pool.erl"},{line,55}]},{lists,foreach,2,[{file,"lists.erl"},{line,1337}]},{ejabberd_auth_ldap,init,1,[{file,"src/ejabberd_auth_ldap.erl"},{line,105}]},{gen_server,init_it,6,[{file,"gen_server.erl"},{line,328}]},{proc_lib,init_p_do_apply,3,[{file,"proc_lib.erl"},{line,240}]}]}}
Workaround:
# sed --in-place --regexp-extended
--expression='s%^(ERL_LIBS=.*)$%\1/ejabberd-16.01%' /usr/bin/ejabberdctl
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=1434779
Bug ID: 1434779
Summary: Add package for rebar3
Product: Fedora
Version: 25
Component: erlang-rebar
Assignee: lemenkov(a)gmail.com
Reporter: ga25day(a)mytum.de
QA Contact: extras-qa(a)fedoraproject.org
CC: erlang(a)lists.fedoraproject.org, filip(a)andresovi.net,
lemenkov(a)gmail.com, s(a)shk.io
rebar3 is the successor for rebar which has huge adoption in Erlang
development.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=1448337
Bug ID: 1448337
Summary: CVE-2017-4966 rabbitmq: Authentication details are
stored in browser-local storage without expiration
Product: Security Response
Component: vulnerability
Keywords: Security
Severity: medium
Priority: medium
Assignee: security-response-team(a)redhat.com
Reporter: anemec(a)redhat.com
CC: aortega(a)redhat.com, apevec(a)redhat.com,
ayoung(a)redhat.com, chrisw(a)redhat.com,
cvsbot-xmlrpc(a)redhat.com,
erlang(a)lists.fedoraproject.org,
hubert.plociniczak(a)gmail.com, jeckersb(a)redhat.com,
jjoyce(a)redhat.com, josh(a)fornwall.com,
jschluet(a)redhat.com, kbasil(a)redhat.com,
lemenkov(a)gmail.com, lhh(a)redhat.com, lpeer(a)redhat.com,
markmc(a)redhat.com, plemenko(a)redhat.com,
rbryant(a)redhat.com, rjones(a)redhat.com,
sclewis(a)redhat.com, sisharma(a)redhat.com,
srevivo(a)redhat.com, s(a)shk.io, tdecacqu(a)redhat.com
It was found that the rabbitmq authentication details are being stored
indefinitely in the local browser cache.
External References:
https://github.com/rabbitmq/rabbitmq-server/releases/tag/rabbitmq_v3_6_9
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=1448336
Bug ID: 1448336
Summary: CVE-2017-4967 rabbitmq: XSS vulnerability in
management UI
Product: Security Response
Component: vulnerability
Keywords: Security
Severity: medium
Priority: medium
Assignee: security-response-team(a)redhat.com
Reporter: anemec(a)redhat.com
CC: aortega(a)redhat.com, apevec(a)redhat.com,
ayoung(a)redhat.com, chrisw(a)redhat.com,
cvsbot-xmlrpc(a)redhat.com,
erlang(a)lists.fedoraproject.org,
hubert.plociniczak(a)gmail.com, jeckersb(a)redhat.com,
jjoyce(a)redhat.com, josh(a)fornwall.com,
jschluet(a)redhat.com, kbasil(a)redhat.com,
lemenkov(a)gmail.com, lhh(a)redhat.com, lpeer(a)redhat.com,
markmc(a)redhat.com, plemenko(a)redhat.com,
rbryant(a)redhat.com, rjones(a)redhat.com,
sclewis(a)redhat.com, sisharma(a)redhat.com,
srevivo(a)redhat.com, s(a)shk.io, tdecacqu(a)redhat.com
A cross site scripting vulnerability was found in the management UI of
RabbitMQ.
External References:
https://github.com/rabbitmq/rabbitmq-server/releases/tag/rabbitmq_v3_6_9
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=1448335
Bug ID: 1448335
Summary: CVE-2017-4965 rabbitmq: XSS vulnerability in
management UI
Product: Security Response
Component: vulnerability
Keywords: Security
Severity: medium
Priority: medium
Assignee: security-response-team(a)redhat.com
Reporter: anemec(a)redhat.com
CC: aortega(a)redhat.com, apevec(a)redhat.com,
ayoung(a)redhat.com, chrisw(a)redhat.com,
cvsbot-xmlrpc(a)redhat.com,
erlang(a)lists.fedoraproject.org,
hubert.plociniczak(a)gmail.com, jeckersb(a)redhat.com,
jjoyce(a)redhat.com, josh(a)fornwall.com,
jschluet(a)redhat.com, kbasil(a)redhat.com,
lemenkov(a)gmail.com, lhh(a)redhat.com, lpeer(a)redhat.com,
markmc(a)redhat.com, plemenko(a)redhat.com,
rbryant(a)redhat.com, rjones(a)redhat.com,
sclewis(a)redhat.com, sisharma(a)redhat.com,
srevivo(a)redhat.com, s(a)shk.io, tdecacqu(a)redhat.com
A cross site scripting vulnerability was found in the management UI of
RabbitMQ.
External References:
https://github.com/rabbitmq/rabbitmq-server/releases/tag/rabbitmq_v3_6_9
--
You are receiving this mail because:
You are on the CC list for the bug.