Bug 828696 - Certain code paths put yum in python infinite loop (Eg. some usage of yum --sec-severity).
Summary: Certain code paths put yum in python infinite loop (Eg. some usage of yum --s...
Keywords:
Status: CLOSED WONTFIX
Alias: None
Product: Red Hat Enterprise Linux 5
Classification: Red Hat
Component: yum
Version: 5.8
Hardware: Unspecified
OS: Unspecified
medium
medium
Target Milestone: beta
: ---
Assignee: Packaging Maintenance Team
QA Contact: BaseOS QE Security Team
URL:
Whiteboard:
Depends On:
Blocks: 1049888
TreeView+ depends on / blocked
 
Reported: 2012-06-05 08:20 UTC by Karel Srot
Modified: 2014-02-04 15:06 UTC (History)
4 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of: 804120
Environment:
Last Closed: 2013-12-10 20:45:26 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description Karel Srot 2012-06-05 08:20:29 UTC 
same bug seems to be present also in rhel5.8

+++ This bug was initially created as a clone of Bug #804120 +++

Description of problem:

Running certain code paths of: yum --security --sec-severity=Critical upgrade result in the plugin running:

'severity' not in notice

...but their was no explicit support for that in the class, and the default way python implements it works like:

1. Can I have element 1.
2. Can I have element 2.
2. Can I have element 3.
2. Can I have element 4.
[...]

...and this will go on forever.

 Quick test, from ipython:

In [2]: import yum.update_md

In [3]: x = yum.update_md.UpdateNotice()

In [4]: 'foo' in x

...fix is a one liner in yum.

--- Additional comment from ksrot on 2012-03-16 12:04:10 EDT ---
Comment 1 RHEL Program Management 2012-06-12 01:22:33 UTC 
This request was evaluated by Red Hat Product Management for
inclusion in the current release of Red Hat Enterprise Linux.
Because the affected component is not scheduled to be updated in the
current release, Red Hat is unfortunately unable to address this
request at this time. Red Hat invites you to ask your support
representative to propose this request, if appropriate and relevant,
in the next release of Red Hat Enterprise Linux.
Comment 2 James Antill 2013-04-05 13:50:57 UTC 
 The fix is really simple, so I'll ACK this one, but I'm not sure how useful it is given the lateness of RHEL-5 (and that it was discovered internally, and has no customers behind it).

commit 6549b355f93473e7adc8ae177bb65ad2c0ba2dfc
Author: James Antill <james>
Date:   Fri Mar 16 11:12:59 2012 -0400

    Fix UpdateNotice.getitem when asked for iteration, add contains. BZ 804120
Comment 3 RHEL Program Management 2013-05-01 06:45:37 UTC 
This request was evaluated by Red Hat Product Management for
inclusion in the current release of Red Hat Enterprise Linux.
Because the affected component is not scheduled to be updated
in the current release, Red Hat is unable to address this
request at this time.

Red Hat invites you to ask your support representative to
propose this request, if appropriate, in the next release of
Red Hat Enterprise Linux.
Comment 4 James Antill 2013-12-10 20:45:26 UTC 
 Might as well close this, given no customer desire to get it fixed and how we are very late in RHEL-5.
 At least the early versions of RHEL-6 yum could be rebuilt on RHEL-5, so if any customer really needs this then the fixed version in rhel-6 is a viable path.
Note You need to log in before you can comment on or make changes to this bug.