-
The `repomd.xml` can contain various data files. The dnf5 does not provide the appstream-related files, which means that apps consuming this appstream data cannot propose the apps provided by those re…
mcrha updated
2 months ago
-
katello-agent uses libdnf's `upgrade` method to update packages on a machine. Currently, katello-agent loops through the desired errata to be applied and installs their related packages. However, th…
-
Background:
My ultimate goal is to implement this yum plugin for DNF: https://github.com/seporaitis/yum-s3-iam for EL8.
TL;DR: This yum plugin "hooks" into yum's download process to add AWS Sigv…
-
Repositories without signed metadata expose a massive attack surface, which metadata signing eliminates. In particular, the recent libdnf vulnerability would not have been exploitable if metadata was…
-
This is libzypp’s version of CVE-2021-3445. Only users who have turned off repository signature verification for at least one repository are vulnerable, unlike DNF which is vulnerable by default. Se…
-
v3 deltarpms can be signed, and libdnf should verify the signature before passing them to drpm. The payload digest will be wrong, but that is okay since the header+payload signature can still be vali…
-
Today, if someone is using the Btrfs filesystem and has Snapper set up along with the DNF plugin for snapper, the filesystem will automatically be snapshotted on each action that modifies the operatin…
-
Essentially that means, that package should be pulled in by group only on those architectures.
-
## Update
It seems like ignorearch is not picked up from the dnf.conf
## PREVIOUS CONTEXT
We are running rpm and microdnf on our mac fleet.
I am experimenting with Apple's new M1 CPUs, so …
-
transactional-update 3.0 introduces a new **experimental** C++ API for handling Transactions. There is no separate documentation yet, but the current interface for Transaction management can be found …