Postings by Christopher

Workaround for missing gpg keys in mock?

I'm trying to do `fedpkg mock` to locally build some packages, and I
keep getting errors about GPG keys not found for f31/f32 packages. How
do I work around this?

What does this koji error mean?

What does this koji error mean?

BuildError: package thrift is blocked for tag f32-updates-candidate
(<a href="" title=""></a>)

pkgdb "Take" replacement?

Is there ever going to be a replacement for the old pkgdb "Take"
button to take over orphaned packages?
The current process of submitting a releng ticket, and waiting for
somebody to take manual action, seems much worse than the old pkgdb

Given the previous (ongoing?) mass orphanings, and now the steady flow
of orphanings from Stewardship SIG, it seems we're hurting ourselves
by not having an easier/more automated way for a new maintainer to
take over a package, and by not waiting until the "must orphan because
my deps are now in modules" situation has stabilized.

Intent to orphan monkeysphere

Hi all,

With gpg2 being the default in F30, and it having better support for
using auth subkeys as SSH keys, I no longer have need of
monkeysphere's ability to transfer keys from gpg-agent to ssh-agent
for myself. However, it may have other uses than what I was using it
for, so if anybody wants to take it, I'll happily turn it over to you
rather than retire it.

Orphaning js-jquery

I'm orphaning js-jquery, since I do not have time to maintain it.

It's getting harder to contribute to Fedora with all the mass
orphaning of dependencies, and I don't have time to figure it all out.
This is one that needs frequent attention, as jQuery is subject to
lots of vulnerabilities, and deserves much more attention than I've
been giving it.

Pagure "Pull Requests" URL?

Okay, so, in <a href="" title=""></a> , repos seem to have two
URLs for SSH access.
One is referred to as "Pull Requests" in the "helpful" "Clone"
dropdown menu.

Broken EPEL updates due to Centos 7.6 delay?

Anybody know what's going on with Centos 7.6-1810?
Some packages in EPEL depend on it, but it is apparently not yet available.
This discrepancy is breaking yum updates for me.

For example, xorgxrdp-0.2.8-3.el7 depends on xorg-x11-server-Xorg
1.20.1, which isn't yet available (rather, available on in the cr
repo, not in CentOS updates yet).

Modularity is still confusing

I'm still very confused about how to do modular packaging in Fedora. I
don't know:

1. How do I create a module for a new Fedora package?
2. How do I create a module for my existing non-modular Fedora package?
3. How do I declare BuildRequires on my build dependencies from another module?
4. How do I declare Requires on my runtime dependencies from another module?
5. How do I know what modules are available?
6. How do I figure out which packages are in a particular module?

Intent to orphan js-jquery1 and js-jquery2

It is my intention to orphan js-jquery1 and js-jquery2. Does anybody want
to take them over?

These very old versions of jQuery have security issues that I do not have
time nor expertise to maintain. Upstream's last patch for either of these
occurred over 2 years ago. Everybody should be using jQuery 3 by now
(js-jquery). Anything older is insecure and unsafe.

Personally, I think they should be retired, but I don't know (or have time
to check) to see if that would cause problems for anybody.

Can't fork in

When I try to fork rpms/thrift, I get the error message: Repo
"forks/ctubbsii/thrift" already exists.

However, it clearly does not exist. It is not listed at
<a href="" title=""></a> , which shows 0 forks.

Perhaps I forked it in the past, and the delete did not get cleaned up
correctly? I don't know.

Updating thrift in rawhide to 0.11.0

(sorry if this gets posted twice; previous attempt was sent from wrong
address and will hopefully bounce anyway)

Thrift in rawhide is currently 0.10.0. My intention is move to Thrift
0.11.0 in rawhide.
Affected packages seem to be:

accumulo (ctubbsii, mizdebsk, milleruntime)
avro (ricardo, gil, lef)
disruptor-thrift-server (trepik)
golang-opencensus (eclipseo, nim, jchaloup)
hive (orphan, pmackinn, coolsvap, moceap)
purple-line (fujiwara)
python-elasticsearch (dbruno, apevec, piotrp)
python-txamqp (dcallagh)

Kernel updates breaking grub configuration with tuned

So, I've been seeing this problem recently where every time I update the
Fedora kernel (currently F27), my grub configuration gets mangled.

I have tuned installed, so it has installed /etc/grub.d/00_tuned, which
executes /etc/tuned/bootcmdline, which in turn spits out when
grub2-mkconfig is run.

### BEGIN /etc/grub.d/00_tuned ###
set tuned_initrd=""
set tuned_params="skew_tick=1"
### END /etc/grub.d/00_tuned ###

However, every time I update the F27 kernel, it mangles the params line, to
something like:

set tuned_params="skew_tick=1"=1"=1"=1"=1"

The =1" can be repeated many times.

Avoiding Jargon: dist-git

Can we stop saying "dist-git" in our docs? Nobody knows what that is.
The service at <a href="" title=""></a> is clearly branded as "Fedora
Package Sources".

Using the jargon "dist-git" in our documentation is simply confusing, since
it doesn't match what the service calls itself, and doesn't match any user
interface packagers use.

How to package a gnome-shell-extension default on?

Is it possible, and if so, how do I package a gnome-shell-extension that is
defaulted to on for all users?

maven-checkstyle-plugin write access

I'm an admin on the maven-checkstyle-plugin repo, but do not have write
access for some reason. Can somebody regenerate the ACLs or whatever so I
can push?

How to get ACLs for specific branch?


I am listed as "main admin" on
<a href="" title=""></a>
I took over starting with EPEL7, though, so I don't have access to the el6

The error is:
$ git push
Total 0 (delta 0), reused 0 (delta 0)
remote: FATAL: W refs/heads/el6 rpms/python-keyring ctubbsii DENIED by
remote: error: hook declined to update refs/heads/el6
To ssh://

Modularity questions for "traditional" RPM packaging

Hi, I've been reading a lot lately about Fedora modularity, and I'm still a
bit confused on some points.

Is it necessary for maintainers to create modules for their RPM packages?
Is modularity something that a maintainer for an RPM package must deal with?
What kinds of new issues must an RPM maintainer keep in mind to avoid
making it harder for people creating/maintaining modules?
Do all RPMs have to be in a module to be included in future Fedora

Push to Batched?

I see a new option in Bodhi called "Push to Batched".
After clicking, it now gives the familiar "Push to Stable" option.

How does this work, what is meant by "Batched", how does it differ from
pushing to "Stable", can one push directly to "Stable", and when was this
change made and explained to packagers? I don't recall seeing anything
about this on this list. Perhaps I just missed the announcement of this



Pagure roles at Fedora


Pagure seems to play several roles in the Fedora community, but it's a bit
confusing. Perhaps somebody can respond (or write a Wiki article on the
topic) to clear up some confusion.

For example, I hear/read the term "dist-git" a lot, but most of the
conversation about that seems to focus on Pagure being used to host Fedora
source repos. I don't really understand how these terms relate to each

Another example: all the documentation for the transition away from Pkgdb
seems to reference However, that doesn't appear to be where the
things have moved to.

Deleting a fork in

I was playing around in the new Pagure <a href="" title=""></a> and I
created a fork of a repo to test. However, I don't need or want this fork.
How do I delete it? There doesn't appear to be an option.

HEADSUP: js-jquery -> js-jquery2

I want to update js-jquery to jQuery 3 (it is currently 2).

Upgrade path w/ new compat package

There seem to be a lot of possible guidance on the Wiki for what I'm trying
to do, but no clear, unambiguous step-by-step path to follow. So, I'm
seeking advice here.

js-jquery provides jquery 2.x and js-jquery 2.x
js-jquery1 provides jquery 1.x and js-jquery1 1.x

I want to upgrade js-jquery to 3.x and provide js-jquery2.
I want to do this efficiently with a minimum amount of time spent in

I *think* the process is:

1. Create package review for new package js-jquery2
a. Create js-jquery2 from current js-jquery packaging (with rename)

PPC64LE build for thrift


I'm trying to build the latest version of thrift, and am running into a
problem with one of the build tests, which has a dependency on boost-static
for "%{_libdir}/libboost_unit_test_framework.a"

I really have no expertise with PPC at all, and also very limited knowledge
of autotools, but it looks like it's looking in the wrong libdir on PPC64LE.

Any help would be much appreciated.

<a href="" title=""></a>
<a href="" title=""></a>

Strange koji failures


I occasionally get this strange failure in koji. Sometimes this happens
with a good package build, and I can just re-submit it without changing
anything, and it works fine. Is this a known issue?

For example, from
<a href="" title=""></a>

sh: /usr/bin/python: No such file or directory

warning: Could not canonicalize hostname:

New sources format

What's with the new sources format?
The old format, I could do `md5sum -c sources`
Why not make the new format with SHA512 follow the same pattern, so I could
do: `shasum -c sources` or `sha512sum -c sources`?

Is there any standard command-line tool to parse this new format, or do I
just gotta grep/awk/bash my way through it?

Building jquery for F24 branch

Can anybody help me build js-jquery1 for F24? I keep getting some NodeJS
and/or Grunt error with uglify, but only for the F24 branch. I want to
update the package, and I can get all the other branches to build just fine
(including EPEL7, F25, and rawhide), but F24 is broken even before I apply
any updates/changes, and I'm not sure why.

Dumb newbie packager questions

I should probably know the answers to these by now, but...

1. If I trigger more than one build for the same NVR in Koji, which one
will get tagged, and when? Which one will Bodhi use when I create an update?

2. Should I preserve the entire changelog in the SPEC? Or should I roll it
over when I update to the latest upstream? It seems the changelog could
easily become the bulk of a package if everything is preserved, and I'd
think git would suffice for anything older than the last few rebases onto
latest upstream.

3. What does the "e" stand for in n-v-r-e ?


Co-maintainer sponsorship

With some of the stuff transitioning from fedorahosted Trac to pagure, and
with some of the wiki pages not being concise or up-to-date, can somebody
point me to the best current instructions to request a co-maintainer be
added? I have a colleague who's helping me update some of my packages, but
I'm not a sponsor, and he's not currently in the packagers group.

I was waiting before he introduced himself on this list, and he actually
submits his first patch before I proceed with the actual request for him to
be sponsored, but it'd be nice to be familiar with the process in advance.


pkgdb2 devel

Where does pkgdb2 development occur? Searching online, and
<a href="" title=""></a> itself points to
<a href="" title=""></a>

That page says there's a clone at
<a href="" title=""></a>

But, based on what's at both locations, it seems like the Trac page is out
of date and so is the link at the bottom of pkgdb, and the development is
actually occurring on GitHub.

In short, should I file a Trac ticket or a GitHub issue for a feature

Koji payload hash?

What is the "Payload Hash" in koji?
It looks like an MD5, but of what? It's not the rpm... I've checked.
Should koji be providing verification hashes for manual downloads of built
RPMs? I think this would be useful for testing.

<a href="" title=""></a>