-
Notifications
You must be signed in to change notification settings - Fork 77
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
False positives for packages from yum module streams (perl, nginx) #388
Comments
I forgot my question. Is it possible to filter out package updates somehow, either manually in the web UI or with some other clever way? |
Adding support for modularity is on my to-do list. You could maybe use something like |
I don't think filtering in the client will help because the updates are not listed by "yum -C list updates" and thus never reported to the server. It looks like the matching is done server side when the report is processed using the list of installed patches and the contents of the repository. |
I'm having this same problem. I tried a few hacks to the patchman-client, but the problem is, that once you run patchman -a on the server, it finds all the modules it could possibly have, and then says the server needs hundreds of updates. The more servers I upgrade to RHEL8, the more this breaks me.. :( Running patchman 2.0.3 |
I'm having the same type of issue with Rocky Linux 8.5 (Green Obsidian) |
This should be addressed by https://github.com/furlongm/patchman/pull/400/files Feel free to test and let me know if it works for you. I may delay the release of this for the next major version of patchman as it requires migrations, but happy to discuss. |
This should be resolved now, let me know if it is not |
We have an issue with false positives on RHEL 8 / CentOS 8 / Oracle Linux 8. We have tracked down the problem to the new module stream support in yum, i.e. same application is delivered in multiple versions depending on what module is enabled, example:
Patchman reports updates for packages that belongs to a more modern stream even if the machine is fully updated and is using the default stream, exampe:
In the example above, perl-4:5.26.3-420.el8-x86_64 is the latest version for perl:5.26 but there exists a newer package for perl:5:30 but that is not enabled on the machine.
I tried switching to perl:5.30 and indeed the update notification was removed from patchman, but always running the latest module stream is probably not a good idea.
The text was updated successfully, but these errors were encountered: