Hi Ben, Thanks for working on this.
On Fri, 24 Mar 2023 19:25:46 +0100, Ben Cotton wrote: > Accepted blockers > ----------------- > > 1. crypto-policies ― Insecure installed RPMs (like Google Chrome) > prevent system updates in F38, can't be removed ― ASSIGNED > ACTION: Maintainers to propose solution for this case ... > Bug-by-bug detail > ============= > > Accepted blockers > ----------------- > > 1. crypto-policies ― > https://bugzilla.redhat.com/show_bug.cgi?id=2170878 ― ASSIGNED > Insecure installed RPMs (like Google Chrome) prevent system updates in > F38, can't be removed > > A fix to let RPM use a separate crytpo policy has not covered all > cases. Certain AnyDesk RPMs were apparently signed outside the window > when the certificate was valid. Panu wrote https://bugzilla.redhat.com/show_bug.cgi?id=2170878#c126 : > To me the key points here are > 1) there's a lot of obsolete/broken crypto out there > 2) we need better error messages > > Properly dealing with 2) needs an API redesign, but we'll try to work out > some sort of bandaid solution. Are better diagnostics sufficient from your point of view, or are you looking for a different solution? Thanks in advance for providing some more clarity here. Neal _______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
