Comments

137 Comments
karma

Works fine here, too. Also, the new version is already in Fedora 28, so it really should go into 29 RSN.

karma

Tested with cockpit-ssh, works fine. In particular, the https://bugs.libssh.org/T96 crash is fixed.

Tested on current Fedora Atomic:

curl -O https://kojipkgs.fedoraproject.org//packages/cockpit-ostree/176/1.fc28/noarch/cockpit-ostree-176-1.fc28.noarch.rpm
rpm-ostree override replace cockpit-ostree-176-1.fc28.noarch.rpm
reboot

After logging into Cockpit, the "Software Updates" page works and looks as before (as expected). I see the additional layer, and the cockpit-ostree downgrade in the previous one.

karma

Install & upgrade went fine. I went through all the pages, all working as expected.

I tested this on current Fedora 28 Atomic with:

rpm-ostree override replace cockpit-ostree-175-1.fc28.noarch.rpm

(Simple rpm-ostree install does not work, as this replaces a base package). After rebooting and re-logging into Cockpit, the "Software Updates" page works and looks as before (as expected). I see the additional layer, and the cockpit-ostree downgrade in the previous one.

karma

Packages install and upgrade fine. I went through all the pages, they work.

karma

I confirm that this fixes the TLS handshake regression, and generally seems to work. Thanks!

karma

Install & upgrade went fine. I went through all the pages, they work as expected.

karma

Regression detected against servers running GnuTLS: https://gitlab.com/gnutls/gnutls/issues/530

This might also explain the reported regressions above with "oracle website" and Freenode IRC.

karma

Packages install and upgrade. I went through all Cockpit pages, they work as expected.

karma

Tested install and upgrade, tested client & server, these all work fine. Now the duplicate /etc/motd is gone, it still shows it once, plus motd.d/. Great, thank you!

karma

Upgrade, server, client, and motd all work well.

karma

Install worked fine, all pages work.

karma

Install & upgrade worked fine. I went through all the pages, everything works.

karma

Installs and upgrades fine. I went through all pages and they work as intended.

Indeed, sorry. I bisected it down to upgrading authselect{,-compat,-libs} from 0.4-3 to 0.4-1. This new FreeIPA package depends on that version, so it cannot be tested in isolation. +1'ing to offset my -1 from above. I filed https://bugzilla.redhat.com/show_bug.cgi?id=1582111 about it.

This seems to break sudo rules. I installed this on a Fedora 28 client, enrolled into a COCKPIT.LAN domain (into a server running freeipa-server-4.6.90.pre1-6.1.fc28, i. e. not with this update), added a sudo rule:

ipa sudorule-add --hostcat=all --cmdcat=all All && ipa sudorule-add-user --groups=admins All

But it doesn't work:

[admin@cockpit.lan@x0 ~]$ id
uid=953000000(admin@cockpit.lan) gid=953000000(admins@cockpit.lan) groups=953000000(admins@cockpit.lan) context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023

$ ipa sudorule-show All
  Rule name: All
  Enabled: TRUE
  Host category: all
  Command category: all
  User Groups: admins

$ sudo whoami
[sudo] password for admin@cockpit.lan: 
admin@cockpit.lan is not in the sudoers file.  This incident will be reported.

Same with unqualified users:

$ id
uid=953000000(admin) gid=953000000(admins) groups=953000000(admins) context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023

$ sudo whoami
[sudo] password for admin: 
admin is not in the sudoers file.  This incident will be reported.

I didn't notice a regression, but tang is still exactly as broken as before.

This makes virt-builder work again, thanks muchly!

karma

Upgrades and installs fine, all pages work.