Dear package maintainer, Due to reasons described in https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org/thread/O6LBYY446Q2FWVBEVJCOJ34ADXTEIH65/ a rebuild of certbot is needed in Fedora 43. During the mass rebuild, it was determined that rawhide and f43 branches differ, hence I did not know if I could safely merge rawhide into f43 or if the f43 branch needs a diverging bump. Please, determine this yourself and rebuild the package in Fedora 43, ideally before the Fedora 43 Final freeze (2025-10-07). Thank you. Let me know if you need help.
Jonathan: Can we push certbot 5.0 to F43 or should we just bump the revision and keep 4.2 for F43?
Hello. This is a bulk comment. This package still needs to be rebuilt and/or shipped with Python 3.14.0rc3+ bytecode in Fedora 43. The Final Freeze of Fedora 43 is scheduled to start next week. Please prioritize this bugzilla accordingly. Thanks.
As there was no response yet I tried to bump the release version and push to F43 but unfortunately, this fails with "remote: Denied push for ref 'refs/heads/f43' for user 'fschwarz'". Not sure what is going on. Are F43 git branches locked somehow?
Branches aren't locked afaik. The issue is probably somewhere else. Do you have sufficient rights to push to that repository? Do you have the latest f43 state pulled to your local repository?
Somehow I am not a member of the certbot-sig anymore as far as FAS is concerned... Not sure how that happened, I sent an email to Nick and Jonathan but until I am re-added, I fear there is nothing I can do for this bug report.
Hi Felix, I could do a bump-and-rebuild as a provenpackager if that's helpful?
Yes, I think so. I don't know what Jonathan planned to do but it seems his maintenance strategy in general was to push the newest versions only to rawhide so bumping F43 seems like the right thing to do. Besides that, a working certbot in any somewhat recent version is strictly better than a broken one.
FEDORA-2025-7f92ac7e2d (certbot-4.1.1-4.fc43) has been submitted as an update to Fedora 43. https://bodhi.fedoraproject.org/updates/FEDORA-2025-7f92ac7e2d
(In reply to Felix Schwarz from comment #7) > Yes, I think so. I don't know what Jonathan planned to do but it seems his > maintenance strategy in general was to push the newest versions only to > rawhide so bumping F43 seems like the right thing to do. Besides that, a > working certbot in any somewhat recent version is strictly better than a > broken one. Actually my strategy is keeping it as updated as possible on all branches (we even have an exception for this from FESCo) but there have been a ton of dependency blockers coming from upstream lately making it only possible to keep rawhide updated. Hopefully now that they've cut 5.0.0 things will chill out a bit for a few years again and they'll quit driving dependency requirements forward.
The git tree for f43 is now all out of whack thanks to https://src.fedoraproject.org/rpms/certbot/c/0dc8e30ec05d9c8e663777948815a3facc37471c?branch=f43
I was going to update f43 to 5.0.0 but I guess now it can stay on 4.2.0 for the life of 43. Barring security issues or major bugs I don't intend on updating it out of sync with rawhide.
(In reply to Jonathan Wright from comment #11) > I was going to update f43 to 5.0.0 but I guess now it can stay on 4.2.0 for > the life of 43. Barring security issues or major bugs I don't intend on > updating it out of sync with rawhide. I guess it was unfortunate that the rc3 bytecode rebuild came along soon after the 5.0.0 bump happened in Rawhide, such that a simple fast-forward wasn't the obviously-correct thing to do. It's possible to get the f43 and rawhide branches back in a mutually fast-forwardable state by merging the two branches into each other, at the expense of a couple of ugly-looking merge commits in the git history. That might be worth doing if 5.0.0 would be a value thing to have in f43.
FEDORA-2025-7f92ac7e2d has been pushed to the Fedora 43 testing repository. Soon you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-7f92ac7e2d` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2025-7f92ac7e2d See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
FEDORA-2025-7f92ac7e2d (certbot-4.1.1-4.fc43) has been pushed to the Fedora 43 stable repository. If problem still persists, please make note of it in this bug report.