Hi Ben, Thanks for working on this. On Fri, 24 Mar 2023 19:25:46 +0100, Ben Cotton wrote: > Accepted blockers > ----------------- > > 1. crypto-policies ― Insecure installed RPMs (like Google Chrome) > prevent system updates in F38, can't be removed ― ASSIGNED > ACTION: Maintainers to propose solution for this case ... > Bug-by-bug detail > ============= > > Accepted blockers > ----------------- > > 1. crypto-policies ― > https://bugzilla.redhat.com/show_bug.cgi?id=2170878 ― ASSIGNED > Insecure installed RPMs (like Google Chrome) prevent system updates in > F38, can't be removed > > A fix to let RPM use a separate crytpo policy has not covered all > cases. Certain AnyDesk RPMs were apparently signed outside the window > when the certificate was valid. Panu wrote https://bugzilla.redhat.com/show_bug.cgi?id=2170878#c126 : > To me the key points here are > 1) there's a lot of obsolete/broken crypto out there > 2) we need better error messages > > Properly dealing with 2) needs an API redesign, but we'll try to work out some sort of bandaid solution. Are better diagnostics sufficient from your point of view, or are you looking for a different solution? Thanks in advance for providing some more clarity here. Neal _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
