I have been looking for the polkit patch for CentOS Stream 9, and I have not seen a new package in the repo.
Am I missing something?
On Sat, Jan 29, 2022 at 7:24 PM Steven Rosenberg passthejoe@gmail.com wrote:
I have been looking for the polkit patch for CentOS Stream 9, and I have not seen a new package in the repo.
Am I missing something?
Yes. It passed tests yesterday[1] and will go out in the next compose.
[1]: https://kojihub.stream.centos.org/koji/buildinfo?buildID=16593
Thanks!
On Sat, Jan 29, 2022 at 4:26 PM Neal Gompa ngompa13@gmail.com wrote:
On Sat, Jan 29, 2022 at 7:24 PM Steven Rosenberg passthejoe@gmail.com wrote:
I have been looking for the polkit patch for CentOS Stream 9, and I have
not seen a new package in the repo.
Am I missing something?
Yes. It passed tests yesterday[1] and will go out in the next compose.
-- 真実はいつも一つ!/ Always, there's only one truth! _______________________________________________ CentOS-devel mailing list CentOS-devel@centos.org https://lists.centos.org/mailman/listinfo/centos-devel
For future reference you can see the general status of package updates if you aren't seeing them in a repo via:
GitLab, to see if there has been any activity on the package: - https://gitlab.com/redhat/centos-stream/rpms/
Koji, to see the build and delivery progress: - https://kojihub.stream.centos.org/ (search for SRPM package name)
For Koji you'd need to look at the tags to see where it is in the pipeline of being released.
The new polkit still hasn't moved to the CentOS Stream 9 repo. It's getting close to being a week behind RHEL 8 — and Alma and Rocky.
This does not seem like an ideal situation.
Will this change after the RHEL 9 release?
On Sat, Jan 29, 2022 at 7:51 PM Mike Rochefort mroche@redhat.com wrote:
For future reference you can see the general status of package updates if you aren't seeing them in a repo via:
GitLab, to see if there has been any activity on the package:
Koji, to see the build and delivery progress:
- https://kojihub.stream.centos.org/ (search for SRPM package name)
For Koji you'd need to look at the tags to see where it is in the pipeline of being released.
-- Mike Rochefort
CentOS-devel mailing list CentOS-devel@centos.org https://lists.centos.org/mailman/listinfo/centos-devel
On Tue, Feb 1, 2022 at 5:54 PM Steven Rosenberg passthejoe@gmail.com wrote:
The new polkit still hasn't moved to the CentOS Stream 9 repo. It's getting close to being a week behind RHEL 8 — and Alma and Rocky.
It's available in the production compose location:
https://odcs.stream.centos.org/production/CentOS-Stream-9-20220201.0/compose...
Those get pushed to mirrors on a regular basis. I suspect a push is in the works.
This does not seem like an ideal situation.
Will this change after the RHEL 9 release?
CentOS Stream addresses CVE fix policy in the FAQ. That policy will not change with the release of RHEL 9.
josh
On Sat, Jan 29, 2022 at 7:51 PM Mike Rochefort mroche@redhat.com wrote:
For future reference you can see the general status of package updates if you aren't seeing them in a repo via:
GitLab, to see if there has been any activity on the package:
Koji, to see the build and delivery progress:
- https://kojihub.stream.centos.org/ (search for SRPM package name)
For Koji you'd need to look at the tags to see where it is in the pipeline of being released.
-- Mike Rochefort
CentOS-devel mailing list CentOS-devel@centos.org https://lists.centos.org/mailman/listinfo/centos-devel
CentOS-devel mailing list CentOS-devel@centos.org https://lists.centos.org/mailman/listinfo/centos-devel
On 2/1/22 15:12, Josh Boyer wrote:
It's available in the production compose location:
https://odcs.stream.centos.org/production/CentOS-Stream-9-20220201.0/compose...
Those get pushed to mirrors on a regular basis. I suspect a push is in the works.
A few things don't look right to me...
I'm not sure if this one is a real problem, but https://download.fedoraproject.org/pub/ redirects me to mirror locations that don't exist (e.g. https://uscamirror.lonyai.com/centos-stream/pub).%C2%A0 Why would the "/pub/" path redirect to a centos-stream location (let alone one that doesn't exist?)
Dates on the compose directories look recent (https://composes.stream.centos.org/production/latest-CentOS-Stream/compose/B...), but they don't match modification dates here (http://mirror.stream.centos.org/9-stream/BaseOS/x86_64/os/), so I suspect that any other mirrors are also not getting new composes.
On Tue, Feb 1, 2022 at 8:50 PM Gordon Messmer gordon.messmer@gmail.com wrote:
Dates on the compose directories look recent (https://composes.stream.centos.org/production/latest-CentOS-Stream/compose/B...), but they don't match modification dates here (http://mirror.stream.centos.org/9-stream/BaseOS/x86_64/os/), so I suspect that any other mirrors are also not getting new composes.
To my knowledge the latest production compose does not immediately become the public compose the mirror network synchronizes from. You'd need to look at the history of prod to see which compose matches what's currently available.
https://composes.stream.centos.org/production/
I could be totally wrong on that, but that's what I think is going on. As noted by the blog post announcing the compose infra, production composes are _candidates_ for promotion to the mirror network, meaning to me not every compose will be promoted.
https://blog.centos.org/2021/07/centos-community-newsletter-july-2021/
On Tue, Feb 01, 2022 at 05:50:29PM -0800, Gordon Messmer wrote:
On 2/1/22 15:12, Josh Boyer wrote:
It's available in the production compose location:
https://odcs.stream.centos.org/production/CentOS-Stream-9-20220201.0/compose...
Those get pushed to mirrors on a regular basis. I suspect a push is in the works.
A few things don't look right to me...
I'm not sure if this one is a real problem, but https://download.fedoraproject.org/pub/ redirects me to mirror locations that don't exist (e.g. https://uscamirror.lonyai.com/centos-stream/pub).%C2%A0 Why would the "/pub/" path redirect to a centos-stream location (let alone one that doesn't exist?)
The redirects created by download.fedoraproject.org are, in theory, only for Fedora. The following does work:
$ curl -i https://download.fedoraproject.org/9-stream/ [...] location: https://mirror1.hs-esslingen.de/pub/Mirrors/centos-stream/9-stream/
But this was never tested or planned. This is just by chance that it works. What you currently see is just a redirect configured with wrong assumptions.
Adrian
On Tue, Feb 1, 2022 at 3:12 PM Josh Boyer jwboyer@redhat.com wrote:
CentOS Stream addresses CVE fix policy in the FAQ. That policy will not change with the release of RHEL 9.
I had to look this up.
Q4: How will CVEs be handled in CentOS Stream?
*A:* Security issues will be updated in CentOS Stream after they are solved in the current RHEL release. Obviously, embargoed security releases can not be publicly released until after the embargo is lifted. While there will not be any SLA for timing, Red Hat Engineers will be building and testing other packages against these releases. If they do not roll in the updates, the other software they build could be impacted and therefore need to be redone. There is therefore a vested interest for them to get these updates in so as not to impact their other builds and there should be no issues getting security updates. Q5: Does this mean that CentOS Stream is the RHEL BETA test platform now?
*A:* No. CentOS Stream will be getting fixes and features ahead of RHEL. Generally speaking we expect CentOS Stream to have fewer bugs and more runtime features as it moves forward in time but always giving direct indication of what is going into a RHEL release ---------------------------------------------------
I don't have my eye on RHEL 9 at this point, so I can't say how that distro handled the polkit update.
The polkit patch has arrived in CentOS Stream 9:
polkit-0.117-8.el9.x86_64.rpm http://mirror.stream.centos.org/9-stream/BaseOS/x86_64/os/Packages/polkit-0.117-8.el9.x86_64.rpm 2022-01-28 14:02
On Wed, Feb 2, 2022 at 1:27 PM Steven Rosenberg passthejoe@gmail.com wrote:
On Tue, Feb 1, 2022 at 3:12 PM Josh Boyer jwboyer@redhat.com wrote:
CentOS Stream addresses CVE fix policy in the FAQ. That policy will not change with the release of RHEL 9.
I had to look this up.
From https://centos.org/distro-faq/: Q4: How will CVEs be handled in CentOS Stream?
*A:* Security issues will be updated in CentOS Stream after they are solved in the current RHEL release. Obviously, embargoed security releases can not be publicly released until after the embargo is lifted. While there will not be any SLA for timing, Red Hat Engineers will be building and testing other packages against these releases. If they do not roll in the updates, the other software they build could be impacted and therefore need to be redone. There is therefore a vested interest for them to get these updates in so as not to impact their other builds and there should be no issues getting security updates. Q5: Does this mean that CentOS Stream is the RHEL BETA test platform now?
*A:* No. CentOS Stream will be getting fixes and features ahead of RHEL. Generally speaking we expect CentOS Stream to have fewer bugs and more runtime features as it moves forward in time but always giving direct indication of what is going into a RHEL release
I don't have my eye on RHEL 9 at this point, so I can't say how that distro handled the polkit update.
-
Adrian Reber -
Gordon Messmer -
Josh Boyer -
Mike Rochefort -
Neal Gompa -
Steven Rosenberg