Comments page #1 of 9 pages

  • It is caused by following change mentioned in changelog.

    - Remove rule allowing all processes to stream connect to unconfined domains
    time->Tue Sep 17 04:27:23 2019
    type=AVC msg=audit(1568708843.291:460): avc:  denied  { connectto } for  pid=29591 comm="httpd" path="/run/httpd/ipa-custodia.sock" scontext=system_u:system_r:httpd_t:s0 tcontext=system_u:system_r:unconfined_service_t:s0 tclass=unix_stream_socket permissive=0
    

    There was an attempt to write custom selinux-policy for custodia But it seems nobody cares about enhancing security in freeIPA cause my MR is opened in upstream for 1.5 year. https://github.com/latchset/ipa-custodia-selinux/pulls

    @lvrabec how do you want to handle that?

    karma: -1
  • Just a note that AVC is not reproducible with old chroot or new-chroot + bootstrap. and everything works as expected.

    mock --rebuild ./python36-3.6.8-1.el7.src.rpm --new-chroot --bootstrap-chroot
    mock --rebuild ./python36-3.6.8-1.el7.src.rpm --old-chroot
    
  • @robert which command did you use ?

    I saw a different AVC and here is a workaround

    sh# cat mock-workaround.cil 
    (roleattributeset cil_gen_require system_r)
    (typeattributeset cil_gen_require mock_var_lib_t)
    (typeattributeset cil_gen_require rpm_script_t)
    (allow rpm_script_t mock_var_lib_t (file (entrypoint)))
    
    sh# semodule -i mock-workaround.cil
    

    But I was not able to reproduce issue with groupadd or useradd.

  • The Python 3.6 problem is not mock's fault and is tracked in https://bugzilla.redhat.com/show_bug.cgi?id=1739804 - but the selinux problem is a thing.

    I should have tried without epel-testing :-( So I can confirm my comment is unrelated to this update and thank you very much for link to another BZ

  • BTW the issue with selinux-policy might be tricky to fix on el7.7. So you might use temporary workaround with scriptlet and cil https://github.com/SELinuxProject/cil

    But I use mock in CentOS7 container and SELinux policy is not a problem for me there :-) But I can help you

  • I wrote CentOS7 which is still 7.6

    sh# docker pull docker.io/centos:7
    Trying to pull repository docker.io/library/centos ... 
    sha256:a799dd8a2ded4a83484bbae769d97655392b3f86533ceb7dd96bbac929809f3c: Pulling from docker.io/library/centos
    Digest: sha256:a799dd8a2ded4a83484bbae769d97655392b3f86533ceb7dd96bbac929809f3c
    Status: Image is up to date for docker.io/centos:7
    
    sh#  docker run --rm docker.io/centos:7 cat /etc/redhat-release
    CentOS Linux release 7.6.1810 (Core)
    

    I would say this updated was done a little bit too early.

  • I was not able to install mock in centos7 container + epel

    root@2f8fd853547a /]# yum install -y mock --enablerepo=epel-testing
    Loaded plugins: fastestmirror, ovl
    Loading mirror speeds from cached hostfile
     * base: mirror.karneval.cz
     * epel: download.eng.brq.redhat.com
     * epel-testing: mirrors.nic.cz
     * extras: mirror.usenet.farm
     * updates: mirror.karneval.cz
    Resolving Dependencies
    --> Running transaction check
    ---> Package mock.noarch 0:1.4.17-1.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: mock-core-configs >= 27.4 for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: python36-six >= 1.4.0 for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: btrfs-progs for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: createrepo_c for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: pigz for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: python36-distro for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: python36-jinja2 for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: python36-pyroute2 for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: python36-requests for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: python36-rpm for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: usermode for package: mock-1.4.17-1.el7.noarch
    --> Running transaction check
    ---> Package btrfs-progs.x86_64 0:4.9.1-1.el7 will be installed
    --> Processing Dependency: liblzo2.so.2()(64bit) for package: btrfs-progs-4.9.1-1.el7.x86_64
    --> Processing Dependency: libext2fs.so.2()(64bit) for package: btrfs-progs-4.9.1-1.el7.x86_64
    ---> Package createrepo_c.x86_64 0:0.10.0-18.el7 will be installed
    --> Processing Dependency: createrepo_c-libs = 0.10.0-18.el7 for package: createrepo_c-0.10.0-18.el7.x86_64
    --> Processing Dependency: libcreaterepo_c.so.0()(64bit) for package: createrepo_c-0.10.0-18.el7.x86_64
    ---> Package mock.noarch 0:1.4.17-1.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: mock-1.4.17-1.el7.noarch
    ---> Package mock-core-configs.noarch 0:30.5-1.el7 will be installed
    --> Processing Dependency: distribution-gpg-keys >= 1.29 for package: mock-core-configs-30.5-1.el7.noarch
    ---> Package pigz.x86_64 0:2.3.4-1.el7 will be installed
    ---> Package python36-distro.noarch 0:1.2.0-3.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-distro-1.2.0-3.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: python36-distro-1.2.0-3.el7.noarch
    ---> Package python36-jinja2.noarch 0:2.8.1-2.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-jinja2-2.8.1-2.el7.noarch
    --> Processing Dependency: python36-markupsafe for package: python36-jinja2-2.8.1-2.el7.noarch
    --> Processing Dependency: python36-setuptools for package: python36-jinja2-2.8.1-2.el7.noarch
    ---> Package python36-pyroute2.noarch 0:0.4.13-2.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-pyroute2-0.4.13-2.el7.noarch
    ---> Package python36-requests.noarch 0:2.12.5-3.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-requests-2.12.5-3.el7.noarch
    --> Processing Dependency: python36-urllib3 = 1.19.1 for package: python36-requests-2.12.5-3.el7.noarch
    --> Processing Dependency: python36-chardet for package: python36-requests-2.12.5-3.el7.noarch
    --> Processing Dependency: python36-idna for package: python36-requests-2.12.5-3.el7.noarch
    ---> Package python36-rpm.x86_64 0:4.11.3-4.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-rpm-4.11.3-4.el7.x86_64
    --> Processing Dependency: libpython3.6m.so.1.0()(64bit) for package: python36-rpm-4.11.3-4.el7.x86_64
    ---> Package python36-six.noarch 0:1.11.0-3.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-six-1.11.0-3.el7.noarch
    ---> Package usermode.x86_64 0:1.111-5.el7 will be installed
    --> Running transaction check
    ---> Package createrepo_c-libs.x86_64 0:0.10.0-18.el7 will be installed
    ---> Package distribution-gpg-keys.noarch 0:1.32-1.el7 will be installed
    ---> Package e2fsprogs-libs.x86_64 0:1.42.9-13.el7 will be installed
    ---> Package lzo.x86_64 0:2.06-8.el7 will be installed
    ---> Package mock.noarch 0:1.4.17-1.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: mock-1.4.17-1.el7.noarch
    ---> Package python36-chardet.noarch 0:2.3.0-6.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-chardet-2.3.0-6.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: python36-chardet-2.3.0-6.el7.noarch
    ---> Package python36-distro.noarch 0:1.2.0-3.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-distro-1.2.0-3.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: python36-distro-1.2.0-3.el7.noarch
    ---> Package python36-idna.noarch 0:2.7-2.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-idna-2.7-2.el7.noarch
    ---> Package python36-jinja2.noarch 0:2.8.1-2.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-jinja2-2.8.1-2.el7.noarch
    ---> Package python36-markupsafe.x86_64 0:0.23-3.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-markupsafe-0.23-3.el7.x86_64
    --> Processing Dependency: libpython3.6m.so.1.0()(64bit) for package: python36-markupsafe-0.23-3.el7.x86_64
    ---> Package python36-pyroute2.noarch 0:0.4.13-2.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-pyroute2-0.4.13-2.el7.noarch
    ---> Package python36-requests.noarch 0:2.12.5-3.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-requests-2.12.5-3.el7.noarch
    ---> Package python36-rpm.x86_64 0:4.11.3-4.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-rpm-4.11.3-4.el7.x86_64
    --> Processing Dependency: libpython3.6m.so.1.0()(64bit) for package: python36-rpm-4.11.3-4.el7.x86_64
    ---> Package python36-setuptools.noarch 0:39.2.0-3.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-setuptools-39.2.0-3.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: python36-setuptools-39.2.0-3.el7.noarch
    ---> Package python36-six.noarch 0:1.11.0-3.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-six-1.11.0-3.el7.noarch
    ---> Package python36-urllib3.noarch 0:1.19.1-5.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-urllib3-1.19.1-5.el7.noarch
    --> Processing Dependency: python36-pysocks for package: python36-urllib3-1.19.1-5.el7.noarch
    --> Running transaction check
    ---> Package mock.noarch 0:1.4.17-1.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: mock-1.4.17-1.el7.noarch
    ---> Package python36-chardet.noarch 0:2.3.0-6.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-chardet-2.3.0-6.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: python36-chardet-2.3.0-6.el7.noarch
    ---> Package python36-distro.noarch 0:1.2.0-3.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-distro-1.2.0-3.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: python36-distro-1.2.0-3.el7.noarch
    ---> Package python36-idna.noarch 0:2.7-2.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-idna-2.7-2.el7.noarch
    ---> Package python36-jinja2.noarch 0:2.8.1-2.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-jinja2-2.8.1-2.el7.noarch
    ---> Package python36-markupsafe.x86_64 0:0.23-3.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-markupsafe-0.23-3.el7.x86_64
    --> Processing Dependency: libpython3.6m.so.1.0()(64bit) for package: python36-markupsafe-0.23-3.el7.x86_64
    ---> Package python36-pyroute2.noarch 0:0.4.13-2.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-pyroute2-0.4.13-2.el7.noarch
    ---> Package python36-pysocks.noarch 0:1.6.8-6.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-pysocks-1.6.8-6.el7.noarch
    ---> Package python36-requests.noarch 0:2.12.5-3.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-requests-2.12.5-3.el7.noarch
    ---> Package python36-rpm.x86_64 0:4.11.3-4.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-rpm-4.11.3-4.el7.x86_64
    --> Processing Dependency: libpython3.6m.so.1.0()(64bit) for package: python36-rpm-4.11.3-4.el7.x86_64
    ---> Package python36-setuptools.noarch 0:39.2.0-3.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-setuptools-39.2.0-3.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: python36-setuptools-39.2.0-3.el7.noarch
    ---> Package python36-six.noarch 0:1.11.0-3.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-six-1.11.0-3.el7.noarch
    ---> Package python36-urllib3.noarch 0:1.19.1-5.el7 will be installed
    --> Processing Dependency: python(abi) = 3.6 for package: python36-urllib3-1.19.1-5.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: python36-chardet-2.3.0-6.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: mock-1.4.17-1.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: python36-setuptools-39.2.0-3.el7.noarch
    --> Processing Dependency: /usr/bin/python3.6 for package: python36-distro-1.2.0-3.el7.noarch
    --> Finished Dependency Resolution
    Error: Package: python36-distro-1.2.0-3.el7.noarch (epel)
               Requires: /usr/bin/python3.6
    Error: Package: python36-urllib3-1.19.1-5.el7.noarch (epel)
               Requires: python(abi) = 3.6
               Installed: python-2.7.5-80.el7_6.x86_64 (@updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-76.el7.x86_64 (base)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-77.el7_6.x86_64 (updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python34-3.4.10-2.el7.x86_64 (epel)
                   python(abi) = 3.4
    Error: Package: python36-distro-1.2.0-3.el7.noarch (epel)
               Requires: python(abi) = 3.6
               Installed: python-2.7.5-80.el7_6.x86_64 (@updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-76.el7.x86_64 (base)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-77.el7_6.x86_64 (updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python34-3.4.10-2.el7.x86_64 (epel)
                   python(abi) = 3.4
    Error: Package: python36-markupsafe-0.23-3.el7.x86_64 (epel)
               Requires: python(abi) = 3.6
               Installed: python-2.7.5-80.el7_6.x86_64 (@updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-76.el7.x86_64 (base)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-77.el7_6.x86_64 (updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python34-3.4.10-2.el7.x86_64 (epel)
                   python(abi) = 3.4
    Error: Package: python36-jinja2-2.8.1-2.el7.noarch (epel)
               Requires: python(abi) = 3.6
               Installed: python-2.7.5-80.el7_6.x86_64 (@updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-76.el7.x86_64 (base)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-77.el7_6.x86_64 (updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python34-3.4.10-2.el7.x86_64 (epel)
                   python(abi) = 3.4
    Error: Package: python36-six-1.11.0-3.el7.noarch (epel)
               Requires: python(abi) = 3.6
               Installed: python-2.7.5-80.el7_6.x86_64 (@updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-76.el7.x86_64 (base)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-77.el7_6.x86_64 (updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python34-3.4.10-2.el7.x86_64 (epel)
                   python(abi) = 3.4
    Error: Package: python36-rpm-4.11.3-4.el7.x86_64 (epel)
               Requires: python(abi) = 3.6
               Installed: python-2.7.5-80.el7_6.x86_64 (@updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-76.el7.x86_64 (base)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-77.el7_6.x86_64 (updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python34-3.4.10-2.el7.x86_64 (epel)
                   python(abi) = 3.4
    Error: Package: mock-1.4.17-1.el7.noarch (epel-testing)
               Requires: /usr/bin/python3.6
    Error: Package: python36-pyroute2-0.4.13-2.el7.noarch (epel)
               Requires: python(abi) = 3.6
               Installed: python-2.7.5-80.el7_6.x86_64 (@updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-76.el7.x86_64 (base)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-77.el7_6.x86_64 (updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python34-3.4.10-2.el7.x86_64 (epel)
                   python(abi) = 3.4
    Error: Package: python36-chardet-2.3.0-6.el7.noarch (epel)
               Requires: /usr/bin/python3.6
    Error: Package: python36-pysocks-1.6.8-6.el7.noarch (epel)
               Requires: python(abi) = 3.6
               Installed: python-2.7.5-80.el7_6.x86_64 (@updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-76.el7.x86_64 (base)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-77.el7_6.x86_64 (updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python34-3.4.10-2.el7.x86_64 (epel)
                   python(abi) = 3.4
    Error: Package: python36-idna-2.7-2.el7.noarch (epel)
               Requires: python(abi) = 3.6
               Installed: python-2.7.5-80.el7_6.x86_64 (@updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-76.el7.x86_64 (base)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-77.el7_6.x86_64 (updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python34-3.4.10-2.el7.x86_64 (epel)
                   python(abi) = 3.4
    Error: Package: python36-requests-2.12.5-3.el7.noarch (epel)
               Requires: python(abi) = 3.6
               Installed: python-2.7.5-80.el7_6.x86_64 (@updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-76.el7.x86_64 (base)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-77.el7_6.x86_64 (updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python34-3.4.10-2.el7.x86_64 (epel)
                   python(abi) = 3.4
    Error: Package: mock-1.4.17-1.el7.noarch (epel-testing)
               Requires: python(abi) = 3.6
               Installed: python-2.7.5-80.el7_6.x86_64 (@updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-76.el7.x86_64 (base)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-77.el7_6.x86_64 (updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python34-3.4.10-2.el7.x86_64 (epel)
                   python(abi) = 3.4
    Error: Package: python36-rpm-4.11.3-4.el7.x86_64 (epel)
               Requires: libpython3.6m.so.1.0()(64bit)
    Error: Package: python36-setuptools-39.2.0-3.el7.noarch (epel)
               Requires: /usr/bin/python3.6
    Error: Package: python36-setuptools-39.2.0-3.el7.noarch (epel)
               Requires: python(abi) = 3.6
               Installed: python-2.7.5-80.el7_6.x86_64 (@updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-76.el7.x86_64 (base)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-77.el7_6.x86_64 (updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python34-3.4.10-2.el7.x86_64 (epel)
                   python(abi) = 3.4
    Error: Package: python36-chardet-2.3.0-6.el7.noarch (epel)
               Requires: python(abi) = 3.6
               Installed: python-2.7.5-80.el7_6.x86_64 (@updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-76.el7.x86_64 (base)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python-2.7.5-77.el7_6.x86_64 (updates)
                   python(abi) = 2.7
                   python(abi) = 2.7
               Available: python34-3.4.10-2.el7.x86_64 (epel)
                   python(abi) = 3.4
    Error: Package: python36-markupsafe-0.23-3.el7.x86_64 (epel)
               Requires: libpython3.6m.so.1.0()(64bit)
     You could try using --skip-broken to work around the problem
     You could try running: rpm -Va --nofiles --nodigest
    

    ```

    karma: -1
  • @pbrezina Is there any blocker for pushing this to stable?

    and it would be good to create new update for f29 authselect-1.1-1.fc30 but 1.0.4 fixes BZ1697267 and can be pushed now.

  • This update cannot fix problem for rawhide because there is not any fixed build in rawhide. And rawhide does not use koji.

    Fedora 30 was not affected by BZ1710798. So I do not understand why it is mentioned in this update. Therefore -1

    karma: -1 #1710798: -1
  • This update cannot fix problem for rawhide because there is not any fixed build in rawhide. And rawhide does not use koji.

    Fedora 30 was not affected by BZ1710798. So I do not understand why it is mentioned in this update. Therefore -1

    karma: -1 #1710798: -1
  • bind-9.11.6-2.P1.fc29 works for me as well

    karma: +1 critpath: +1
  • There is an issue in postinstall an preuninstall scriptlets for checking existence of file.

      Installing       : bind-32:9.11.6-1.P1.fc29.x86_64                      14/19
      Running scriptlet: bind-32:9.11.6-1.P1.fc29.x86_64                      14/19
    /var/tmp/rpm-tmp.vO9GrY: line 2: -e: command not found
    
      Installing       : bind-pkcs11-32:9.11.6-1.P1.fc29.x86_64               15/19 
    

    And it breaks ipa-server

    karma: -1
  • This update made openQA happy but introduced regression https://bugzilla.redhat.com/show_bug.cgi?id=1696963

    karma: -1 #1695297: +1