Bugzilla – Bug 1217707
AUDIT-WHITELIST: plasma-branding-Kalpa: Review of polkit file 49-Kalpa.rules
Last modified: 2024-02-19 13:00:30 UTC
For my package found in OBS in devel:microos:kalpa:plasma-branding-Kalpa I would like a whitelisting for the following rpmlint error: [ 14s] plasma-branding-Kalpa.noarch: E: polkit-file-unauthorized (Badness: 10) /usr/share/polkit-1/rules.d/49-kalpa.rules (sha256 file digest default filter:b07feaf4e306853ec6441a45ed2e2e7da14de00edac6d86bfc96835c76dae9a2 shell filter:b07feaf4e306853ec6441a45ed2e2e7da14de00edac6d86bfc96835c76dae9a2 xml filter:<failed-to-calculate>) [ 14s] Packaging polkit rules requires a review and whitelisting by the SUSE security [ 14s] team. If the package is intended for inclusion in any SUSE product please open [ 14s] a bug report to request review of the package by the security team. Please [ 14s] refer to [ 14s] https://en.opensuse.org/openSUSE:Package_security_guidelines#audit_bugs for [ 14s] more information.
This is also the same as for openSUSE Aeon: ``` polkit.addAdminRule(function(action, subject) { return ["unix-group:wheel"]; ]); ```
Aye, Aeon and Kalpa are following similar design ideas.
It looks like the rules file you packaged here has a syntax error in it. Diff against the openSUSE-Aeon branding rules: ``` diff /usr/share/polkit-1/rules.d/49-kalpa.rules aeon.rules 3c3 < ]); --- > }); ``` Please fix this, then we can do the whitelisting.
Fixed: https://build.opensuse.org/request/show/1132361
we started the whitelisting process and a submission is on its way to Factory.
This is an autogenerated message for OBS integration: This bug (1217707) was mentioned in https://build.opensuse.org/request/show/1132520 Factory / rpmlint
This is an autogenerated message for OBS integration: This bug (1217707) was mentioned in https://build.opensuse.org/request/show/1133150 Factory / rpmlint
This whitelisting should be effective by now. Closing the bug as fixed.