From fc3b1d30f4272df6ef804141a3e991ca940ac35c Mon Sep 17 00:00:00 2001 From: Zach Huntington-Meath Date: Wed, 8 Jul 2026 12:23:00 -0400 Subject: [PATCH] Include openssl-fips-provider in EL9 openssl downgrade The openssl 3.5.7-1 workaround from 57f417c excludes openssl-fips-provider-3.5.7-1 but does not downgrade it, causing a depsolve failure when the package is already installed on the box and its dependency on openssl-libs 3.5.7-1 conflicts with the exclude. Add openssl-fips-provider-3.5.5-3.el9 to the downgrade list so all three packages pin to the same known-good NVR. Co-Authored-By: Claude Opus 4.6 --- roles/vagrant_workarounds/tasks/main.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/roles/vagrant_workarounds/tasks/main.yml b/roles/vagrant_workarounds/tasks/main.yml index 239303ca8..bcbfd13b9 100644 --- a/roles/vagrant_workarounds/tasks/main.yml +++ b/roles/vagrant_workarounds/tasks/main.yml @@ -30,6 +30,7 @@ name: - openssl-3.5.5-3.el9 - openssl-libs-3.5.5-3.el9 + - openssl-fips-provider-3.5.5-3.el9 state: present when: - ansible_facts['os_family'] == 'RedHat'