-
-
Notifications
You must be signed in to change notification settings - Fork 46
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
qubes-dom0-update --refresh --check-only
fails when using Whonix
#9212
Comments
Please be more specific - provide exact error message you got |
|
Does it happen every time, or was it one time network glitch? |
The bug reproduced twice, but I think this may have been a combination of Tor being slow to start and truncated downloads being mishandled. |
Happened a third time today. Maybe some flag passed to |
I managed to reproduce this without the GUI. |
qubes-dom0-update
and Salt can update dom0, but GUI cannotqubes-dom0-update --refresh --check-only
fails when using Whonix
Can you try |
When downloading updates for dom0, DNF's stdin is not connected to any terminal, so it makes no sense for DNF to ever prompt for interactive confirmation. By default, DNF would prompt for confirmation before importing a metadata signing key, causing breakage. This change fixes 'qubes-dom0-update --check-only' using sys-whonix as UpdateVM. Fixes: QubesOS/qubes-issues#9212
I’m not sure why this didn’t cause a problem for other people, but I do have a fix. |
How to file a helpful issue
Qubes OS release
R4.2 with all testing updates enabled.
Brief summary
The GUI update tool cannot update dom0, complaining about a bad GPG signature on the metadata.
qubes-dom0-update
works, as does theupdate.qubes-dom0
Salt state.Steps to reproduce
Update dom0 via the GUI.
Expected behavior
Works
Actual behavior
Fails
The text was updated successfully, but these errors were encountered: