Hi All,
So one thing I noticed when doing the ppc64le bootstrap is that
there's a bunch of updates that are a bit of a mess and there's a
whole bunch of run and dump in updates. There's everything from
updates with CVEs that are broken for a a long time [2], updates there
for 11+ months with missing deps (build or otherwise) [1], or just
sitting there for ever [3]. I have cleaned up a bunch of stuff in
epel7 around tagging too but not looked at the others.
I know Kevin had a bit of a look at this [4] and I think I've fixed up
a bunch of the issues in the process of the arch bringup which should
settle a little once those updates go stable but I think we could do
better to keep this cleaner with some of the tools we already use in
Fedora.
So some ideas to try and improve this, without a bunch of manual work,
in no particular order:
1) Enable task-o-tron dep checking on updates in bodhi with aim to not
push broken updates (EPEL is suppose to be more stable)
2) Automatic unpushing of updates that haven't gone stable after X
time (I propose 3 months/90 days here). That should be ample time to
know if it's good/bad.
3) Some sort of dep check spam-o-matic (daily branched/rawhide) style
weekly report (might not be needed if we never break stuff)
I was a bit shocked to see the state of EPEL7, I sort of expected it
to be better than Fedora due to the more stable nature but it was,
even this early in the el7 cycle, a bit of a mess!
Anyone else have some thoughts and ideas for improving this?
Peter
[1] https://bodhi.fedoraproject.org/updates/python-flask-assets-0.10-2.el7
[2] https://bodhi.fedoraproject.org/updates/dokuwiki-0-0.24.20140929c.el7
[3] https://bodhi.fedoraproject.org/updates/389-admin-console-1.1.10-1.el7
[4] https://lists.fedoraproject.org/archives/list/epel-devel%40lists.fedoraproj…
The following Fedora EPEL 5 Security updates need testing:
Age URL
785 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2013-11893 libguestfs-1.20.12-1.el5
550 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-1626 puppet-2.7.26-1.el5
399 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2014-3849 sblim-sfcb-1.3.8-2.el5
42 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-edbea40516 mcollective-2.8.4-1.el5
41 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-10d919912b git-1.8.2.1-2.el5
14 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-582c8075e6 thttpd-2.25b-24.el5
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2015-481f9cfb21 shellinabox-2.19-1.el5
The following builds have been pushed to Fedora EPEL 5 updates-testing
carbon-c-relay-1.2-1.el5
mksh-52-1.el5
perl-Lingua-Translit-0.24-1.el5
torsocks-2.1.0-1.el5
Details about builds:
================================================================================
carbon-c-relay-1.2-1.el5 (FEDORA-EPEL-2015-d1980d8c19)
Enhanced C implementation of Carbon relay, aggregator and rewriter
--------------------------------------------------------------------------------
Update Information:
Update to upstream 1.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290612 - carbon-c-relay-v1.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1290612
--------------------------------------------------------------------------------
================================================================================
mksh-52-1.el5 (FEDORA-EPEL-2015-ecec668f09)
MirBSD enhanced version of the Korn Shell
--------------------------------------------------------------------------------
Update Information:
mksh R52 ======== R52 is a strongly recommended bugfix release: * Move moving
external link from mksh(1) to the #ksh channel homepage linked therein * Make
setenv ���set -u���-safe and fix when invoked with no args * Make ���typeset -f���
output reentrant if name is a reserved word * Zero-pad seconds in ���time��� output
to align columns * Check signals and errorlevels from OS to be within bounds *
Quote and document ���;��� as PATH separator in some places * Simplify code to call
afree() even if arg is NULL * Fix tree-printing and reentrancy of multiple here
documents * Work around LP#1030581 by permitting exactly one space after *
Code quality work, cleanups * New code for here documents/strings with several
bugfixes * Stop using issetugid(2) for ��p checks, wrong tool for the job *
Reintroduce some -o posix changes lost in 2005, plus fixes * Make ���source��� into
a built-in command * Drop ���stop��� alias, lksh(1) functionality to auto-unalias
* Fix \u0000 ignored in $'���' and print * Improve portability of Build.sh *
Improve portability of testsuite * Fix tilde expansion for some substitutions
* Improve reparsing of ((���) |���) as ( (���) |���) * Fix test(1) not returning
evaluation errors * Fix ${*:+x} constructs (carstenh) * Make (( ��� )) into a
compound command (ormaaj) * Repair a few parameter substitution expansion
mistakes
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1291069 - mksh-52 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1291069
--------------------------------------------------------------------------------
================================================================================
perl-Lingua-Translit-0.24-1.el5 (FEDORA-EPEL-2015-e8b5166409)
Transliterates text between writing systems
--------------------------------------------------------------------------------
Update Information:
0.24 -- 2015-11-25 - Define POD encoding (UTF-8) - thanks to Lucas Kanashiro
and Mohammad Sajid Anwar for reporting this issue!
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1285578 - perl-Lingua-Translit-0.24 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1285578
--------------------------------------------------------------------------------
================================================================================
torsocks-2.1.0-1.el5 (FEDORA-EPEL-2015-6a273b8ebb)
Use SOCKS-friendly applications with Tor
--------------------------------------------------------------------------------
Update Information:
initial package
--------------------------------------------------------------------------------