First, I have reached out to and am working with the Tomcat maintainers to try to fix this. The issue is not as much with the Tomcat packages which are designed to replace pki-servlet-engine but with the challenges of modularity.
The workaround for the Tomcat issue is not “pretty” and please read the steps carefully especially the end. Luckily, if you don’t do the last part, dnf update will bomb out anyway from my testing.
- Open the AppStream repository file (
/etc/yum.repos.d/CentOS-Stream-AppStream.repo) and addmodule_hotfixes=1. You MUST remove this at the end. -
dnf update tomcat– a full dnf update will not work, it must be a targeted update - Open the AppStream repository file (
/etc/yum.repos.d/CentOS-Stream-AppStream.repo) and REMOVEmodule_hotfixes=1. -
dnf update– update the system