Loading...

XML

Word

Printable

Type: Bug
Resolution: Done-Errata
Priority: Normal
Fix Version/s: rhel-9.5
Affects Version/s: CentOS Stream 8
Component/s: dnf
Labels:
- MigratedToJIRA
- dev+
- qe+

Fixed in Build:
dnf-4.14.0-15.el9
Regression:
None
Severity:
None

Pool Team:

sst_cs_software_management
Sub-System Group:

ssg_core_services

Dev Target Milestone:
16
Internal Target Milestone:
18
Story Points:
2
ACKs Check:

QE ack, Dev ack
Target Version:

rhel-9.5
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
Yes
Sprint:
None

Acceptance Criteria:

Hide

AC: It is documented that dnf makecache with a timer tries only one mirror from each repository.

Show
AC: It is documented that dnf makecache with a timer tries only one mirror from each repository.
Git Pull Request:
https://gitlab.com/redhat/centos-stream/rpms/dnf/-/merge_requests/36
Preliminary Testing:
Pass
Errata Link:
https://errata.engineering.redhat.com/advisory/131112
Test Coverage:
None

Release Note Type:
Bug Fix
Release Note Text:

Hide
.DNF(8) now includes information about `dnf makecache --timer` not trying further mirrors if the first mirror fails

Previously, the information that the `dnf makecache --timer` command does not try further mirrors in a repository mirrorlist if the first mirror failed was not included in the DNF(8) man page. With this update, the documentation was updated to include this information.

Show
.DNF(8) now includes information about `dnf makecache --timer` not trying further mirrors if the first mirror fails Previously, the information that the `dnf makecache --timer` command does not try further mirrors in a repository mirrorlist if the first mirror failed was not included in the DNF(8) man page. With this update, the documentation was updated to include this information.
Release Note Status:
Done

Experience:
Architecture:

Unspecified
Bugzilla Bug:
RHBZ: 2141840

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

dnf-makecache.service logs:

Nov 10 13:38:03 jik4.kamens.us dnf[684995]: Errors during downloading metadata for repository 'epel':
Nov 10 13:38:03 jik4.kamens.us dnf[684995]: - Curl error (60): Peer certificate cannot be authenticated with given CA certificates for https://epel.mirror.constant.com/8/Everything/x86_64/repodata/repomd.xml [SSL certificate problem: certificate has expired]
Nov 10 13:38:03 jik4.kamens.us dnf[684995]: Error: Failed to download metadata for repo 'epel': Cannot download repomd.xml: Curl error (60): Peer certificate cannot be authenticated with given CA certificates for https://epel.mirror.constant.com/8/Everything/x86_64/repodata/repomd.xml [SSL certificate problem: certificate has expired]
Nov 10 13:38:03 jik4.kamens.us systemd[1]: dnf-makecache.service: Main process exited, code=exited, status=1/FAILURE
Nov 10 13:38:03 jik4.kamens.us systemd[1]: dnf-makecache.service: Failed with result 'exit-code'.
Nov 10 13:38:03 jik4.kamens.us systemd[1]: Failed to start dnf makecache.

It shouldn't give up if there's an SSL certificate error with a mirror. It should switch to a different mirror.

external trackers

PnT-DevOps Jira RHELPLAN-139093

Red Hat Issue Tracker RHELPLAN-139093

links to

RHBA-2024:131112 dnf bug fix and enhancement update

Upstream PR

Assignee:: Petr Pisar

Reporter:: jik@kamens.brookline.ma.us (Inactive)

Developer:: packaging-team-maint

QA Contact:: Jan Blazek

Doc Contact:: Mariya Pershina

Votes:: 0 Vote for this issue

Watchers:: 10 Start watching this issue

Created:: 2023/08/16 8:13 AM

Updated:: 2024/11/12 9:39 AM

Resolved:: 2024/11/12 9:39 AM

Dev Target end:: 2024/06/17

Target end:: 2024/07/01

Release Date:: 2024/11/12

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates