Comments

370 Comments
$ repoquery --releasever=30 --repo={fedora,updates{,-testing}} --whatrequires python2-fedmsg-meta-fedora-infrastructure
fedwatch-0:0.5-11.fc30.noarch
python2-fmn-0:2.1.1-3.fc30.noarch
the-new-hotness-0:0.10.0-5.fc30.noarch

Removing python2 subpackages in a released Fedora version is IMHO not a good idea.

The package name is now python3--lfpy. Also, no upgrade path from python3-LFPy.

The package name is now python3--lfpy. Also, no upgrade path from python3-LFPy.

This was now pushed before FEDORA-2019-8a1a071360 and the dependencies are broken in stable :(

karma

This finally has looping DynamicBuildRequires and the SELinux thing is solved as well. Thank You.

BZ#1740421 selinux is preventing mock-1.4.17-1 from executing RPM scriptlets
karma

The other update was pushed.

karma

All my relevant packages now fail to build in F29 with nothing provides libnghttp2 >= 1.39.2 needed by nodejs-1:10.16.3-1.fc29.x86_64 this seems to be needed as well FEDORA-2019-8a437d5c2f

importlib_metadata is not available in epel7 at all, either package it, ro don't update to this version.

The Fedora 32 key is invalid. See #1743422

Poetry indeed can be launched and new project can be created. Thanks for packaging this. BTW I haven't fetched python3-clikit (seems not to be needed).

The Python 3.6 problem is not mock's fault and is tracked in https://bugzilla.redhat.com/show_bug.cgi?id=1739804 - but the selinux problem is a thing.

Figured it out. Before, gocryptfs cryptdir mountpoint fails with: fuse.NewServer failed: exec: "/bin/fusermount": stat /bin/fusermount: no such file or directory. Now it doesn't. The changelog entry can be fixed with next update.

I've checked and indeed the gocryptfs package now requires fuse. OTOH it has a bogus changelog entry as the automated checks here already figured out. If you give me a reproducer on how the missing dependency affects the package before, I can see if the bug is fixed and provide karma, however neither the update or the commit or the changelog mentions the problem this is supposed to fix.

OK, so mock -r fedora-rawhide-x86_64 init && mock -r fedora-rawhide-x86_64 remove '*rpm-macros' fails with:

  Running scriptlet: binutils-2.32-23.fc31.x86_64                                                                                                                                                                          22/53 
error: failed to exec scriptlet interpreter /bin/sh: Permission denied
error: %preun(binutils-2.32-23.fc31.x86_64) scriptlet failed, exit status 127

Error in PREUN scriptlet in rpm package binutils
  Erasing          : libssh-config-0.9.0-6.fc31.noarch                                                                                                                                                                     23/53 
error: binutils-2.32-23.fc31.x86_64: erase failed
*****  Plugin catchall (1.49 confidence) suggests   **************************

If you believe that dnf should be allowed entrypoint access on the bash file by default.
Then you should report this as a bug.
You can generate a local policy module to allow this access.
Do
allow this access for now by executing:
# ausearch -c 'dnf' --raw | audit2allow -M my-dnf
# semodule -X 300 -i my-dnf.pp


Additional Information:
Source Context                unconfined_u:unconfined_r:rpm_script_t:s0-s0:c0.c1
                              023
Target Context                unconfined_u:object_r:mock_var_lib_t:s0
Target Objects                /usr/bin/bash [ file ]
Source                        dnf
Source Path                   dnf
Port                          <Unknown>
Host                          carbon
Source RPM Packages           
Target RPM Packages           bash-5.0.7-1.fc30.x86_64
Policy RPM                    selinux-policy-3.14.3-41.fc30.noarch
Selinux Enabled               True
Policy Type                   targeted
Enforcing Mode                Enforcing
Host Name                     carbon
Platform                      Linux carbon 5.1.19-300.fc30.x86_64 #1 SMP Mon Jul
                              22 16:32:45 UTC 2019 x86_64 x86_64
Alert Count                   17
First Seen                    2019-08-10 15:51:55 CEST
Last Seen                     2019-08-11 11:15:31 CEST
Local ID                      7e4896a3-a0f7-41a8-b8a5-ac7622bf68c5

Raw Audit Messages
type=AVC msg=audit(1565514931.596:907): avc:  denied  { entrypoint } for  pid=2114 comm="dnf" path="/usr/bin/bash" dev="dm-1" ino=1727060 scontext=unconfined_u:unconfined_r:rpm_script_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:mock_var_lib_t:s0 tclass=file permissive=0


Hash: dnf,rpm_script_t,mock_var_lib_t,file,entrypoint

With selinux enabled and this mock version. Works fine with previous mock version (from stable).