I’ve been investigating a breakage in katello-host-tools for our EL5 tests. They use a container to set up the environment using our repos just like an actual client would and that’s where things have gone wrong.
The container is using an older version of the client repos hosted at repos.fedorapeople.org It’s no longer possible to install that RPM because that domain not only dropped tlsv1 support but also forces a redirect from HTTP to HTTPS so we seemingly can’t avoid it.
No problem, just update to the latest foreman-client repo, right? No luck there either because while we can avoid TLS on yum.theforeman.org the EL5 client repo lacks katello-agent and the provided subscription-manager repository it installs uses repos.fedorapeople.org as well.
As things are right now katello-host-tools can’t be set up on EL5 clients without a lot of manual effort which contradicts our documentation. My thinking is that we should either drop EL5 support for katello-host-tools & katello-agent altogether or come up with a plan to get things working again. And that is where I’d like your input!