-
Notifications
You must be signed in to change notification settings - Fork 29
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fixes #29194 - Support EL8 #148
Conversation
Currently failing on I verified that the we are getting the el8 repository on the test VM:
Assuming the package is built but not yet available in that repository, I'll next try to manually install it to move forward. |
After
But I'm not finding candlepin-selinux anywhere in Koji (not even for el7, apparently?). @ehelms are we waiting for that to be built or am I missing something? |
Use the Koji repository for now similar to pulpcore: http://koji.katello.org/releases/yum/katello-nightly/candlepin/el8/x86_64/ |
After my latest changes, the module applies with no errors:
[ Idempotence is still failing due to the same relabeling seen on el7 (my other open PR would resolve that, but needs a tweak) ] However Candlepin itself is not working:
Checking logs for more details:
|
major = fact_on(host, 'os.release.major') | ||
|
||
if major == '8' | ||
on host, 'dnf -y module enable pki-core' |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
What's in the pki-core module? Does that mean we need that module enabled on every candlepin install?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
[root@centos8-64-1 ~]# dnf module info pki-core
Last metadata expiration check: 0:04:02 ago on Mon 23 Mar 2020 05:04:27 PM UTC.
Name : pki-core
Stream : 10.6 [e] [a]
Version : 8010020191120041437
Context : 8ba0ffbe
Repo : AppStream
Summary : PKI Core module for PKI 10.6 or later
Description : A module for PKI Core packages for PKI version 10.6 or later.
Artifacts : jss-0:4.6.0-5.module_el8.1.0+238+005506d1.src
: jss-0:4.6.0-5.module_el8.1.0+238+005506d1.x86_64
: jss-debuginfo-0:4.6.0-5.module_el8.1.0+238+005506d1.x86_64
: jss-debugsource-0:4.6.0-5.module_el8.1.0+238+005506d1.x86_64
: jss-javadoc-0:4.6.0-5.module_el8.1.0+238+005506d1.x86_64
: ldapjdk-0:4.21.0-1.module_el8.1.0+238+005506d1.noarch
: ldapjdk-0:4.21.0-1.module_el8.1.0+238+005506d1.src
: ldapjdk-javadoc-0:4.21.0-1.module_el8.1.0+238+005506d1.noarch
: pki-base-0:10.7.3-1.module_el8.1.0+238+005506d1.noarch
: pki-base-java-0:10.7.3-1.module_el8.1.0+238+005506d1.noarch
: pki-ca-0:10.7.3-1.module_el8.1.0+238+005506d1.noarch
: pki-core-0:10.7.3-1.module_el8.1.0+238+005506d1.src
: pki-kra-0:10.7.3-1.module_el8.1.0+238+005506d1.noarch
: pki-server-0:10.7.3-1.module_el8.1.0+238+005506d1.noarch
: pki-symkey-0:10.7.3-1.module_el8.1.0+238+005506d1.x86_64
: pki-symkey-debuginfo-0:10.7.3-1.module_el8.1.0+238+005506d1.x86_64
: pki-tools-0:10.7.3-1.module_el8.1.0+238+005506d1.x86_64
: pki-tools-debuginfo-0:10.7.3-1.module_el8.1.0+238+005506d1.x86_64
: python3-pki-0:10.7.3-1.module_el8.1.0+238+005506d1.noarch
: tomcatjss-0:7.4.1-1.module_el8.1.0+238+005506d1.noarch
: tomcatjss-0:7.4.1-1.module_el8.1.0+238+005506d1.src
Hint: [d]efault, [e]nabled, [x]disabled, [i]nstalled, [a]ctive]
The important part above is the tomcatjss
-- without it, we get:
An error occurred in a `before(:suite)` hook.
Failure/Error: on host, 'yum -y install candlepin-selinux'
Beaker::Host::CommandFailure:
Host 'centos8-64-1' exited with 1 running:
yum -y install candlepin-selinux
Last 10 lines of output were:
Repository 'candlepin' is missing name in configuration, using id.
candlepin 12 kB/s | 13 kB 00:01
Extra Packages for Enterprise Linux Modular 8 - 50 kB/s | 117 kB 00:02
Extra Packages for Enterprise Linux 8 - x86_64 1.8 MB/s | 6.1 MB 00:03
(try to add '--skip-broken' to skip uninstallable packages or '--nobest' to use not only best candidate packages)
Error:
Problem: package candlepin-selinux-3.1.3-1.el8.noarch requires candlepin = 3.1.3-1.el8, but none of the providers can be installed
- package candlepin-3.1.3-1.el8.noarch requires tomcatjss >= 7.2.1-7.1, but none of the providers can be installed
- conflicting requests
- package tomcatjss-7.4.1-1.module_el8.1.0+238+005506d1.noarch is excluded
Thinking about it, I am not sure if the pki-core
module can be installed as an RPM dependency... do you think it makes better sense to tackle it here rather than in packaging, @ekohl ?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I'm not familiar enough with modularity to say, but this should at least be on the list of things to be aware of.
@@ -22,14 +22,32 @@ | |||
c.before :suite do | |||
# Install module and dependencies | |||
hosts.each do |host| | |||
if fact_on(host, 'osfamily') == 'RedHat' | |||
if fact_on(host, 'os.family') == 'RedHat' |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Will do shortly, thanks
Can we tie this to the Redmine issue for puppet-candlepin? I think based on the errors, we should just drop https://github.com/theforeman/puppet-candlepin/blob/master/manifests/database/postgresql.pp#L41-L42 You are also going to hit certificate permission errors if I recall from past testing. The example (https://github.com/theforeman/puppet-candlepin/blob/master/examples/basic_candlepin.pp) used in testing deploys certificate with |
Here is a diff of the changes I had to make to get the certs working with tomcat correctly:
|
d4144bd
to
b0ff06c
Compare
Try dropping these two lines https://github.com/theforeman/puppet-candlepin/blob/master/manifests/database/postgresql.pp#L41-L42 |
98e8f62
to
74f0ee5
Compare
b396e94
to
01fb9cb
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
You forgot metadata.json
General note that I normally write something like |
@ekohl I've updated metadata.json and commit message. Thanks! |
Now that the unit tests run with EL8, the repo assertion fails. Other than that 👍 |
I've added a change, this should be squashed on merge. |
No description provided.