https://bugzilla.redhat.com/show_bug.cgi?id=2182151 Petr Pisar <ppisar@xxxxxxxxxx> changed: What |Removed |Added ---------------------------------------------------------------------------- Flags|needinfo?(ppisar@xxxxxxxxxx | |) | --- Comment #39 from Petr Pisar <ppisar@xxxxxxxxxx> --- (In reply to Jeff Layton from comment #38) > Petr can you help interpret the Fedora review service report? In particular: > > I've tested a mockbuild and it worked: > [!]: Reviewer should test that the package builds in mock. > That's it. I will check whether it builds by submitting a scratch build to Koji. > Not sure what this means: > ktls-utils.spec:50: W: setup-not-quiet > Probably that %setup macro is missing -q argument. > I think we've addressed this in the latest: > ktls-utils.x86_64: W: crypto-policy-non-compliance-gnutls-2 /usr/sbin/tlshd > gnutls_priority_init > > We do use gnutls_priority_init, but we have to be able to limit the daemon > to the crypto algorithms supported by the kernel. We should now respect the > distro's crypto preference ordering however. > The check is a simple search and found in undefined ELF symbols. The rpmlint warning can be later overridden with ktls-utils.rpmlinrc configuration file in the dist-git repository. > I also emailed security@xxxxxxxxxxxxxxxxxxxxxxx a couple of weeks ago to > request a review of the crypto usage in this package, but I got zero > responses. Is there a more formal way to request this than just nagging a > mailing list? I also did not get any response. I don't know any more official contact. You can try mailing crypto-policies package maintainers. -- You are receiving this mail because: You are on the CC list for the bug. You are always notified about changes to this product and component https://bugzilla.redhat.com/show_bug.cgi?id=2182151 _______________________________________________ package-review mailing list -- package-review@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-review-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-review@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
