Bug 1156194

Summary: GeoIP discontinued
Product: [openSUSE] openSUSE Tumbleweed Reporter: Ludwig Nussel <lnussel>
Component: OtherAssignee: Ludwig Nussel <lnussel>
Status: RESOLVED FIXED QA Contact: E-mail List <qa-bugs>
Severity: Normal    
Priority: P3 - Medium CC: ilya, mpluskal, msvec, nwr10cst-oslnx, pgajdos, suse+build, varkoly, vcizek, wbauer
Version: Current   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard:
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---
Bug Depends on: 1136292, 1156195, 1156196, 1156197, 1156198, 1156199, 1156200, 1156201, 1156202, 1156203, 1156204, 1156205, 1156206, 1156207, 1156208, 1156209, 1156210, 1156288    
Bug Blocks:    

Description Ludwig Nussel 2019-11-07 17:11:44 UTC 
GeoIP has been discontinued by Maxmind. Please see
https://support.maxmind.com/geolite-legacy-discontinuation-notice/ for
details. Without the database GeoIP is useless. Therefore all users of GeoIP
have to either migrate to libmaxminddb or remove GeoIP support. The GeoIP
package itself will be dropped from Tumbleweed.
Comment 1 Ludwig Nussel 2019-12-30 10:00:09 UTC 
*** Bug 1140511 has been marked as a duplicate of this bug. ***
Comment 2 Neil Rickert 2019-12-30 16:10:34 UTC 
Related.

When starting "ktorrent", it complains that a GeoIP file at maxmind.com does not exist.

This happens on both Tumbleweed and Leap 15.2Alpha (and on Leap 15.1).

You can ignore the complaint (click "Cancel"), and everything works.  But maybe we should not be getting that complaint on Tumbleweed or on Leap 15.2.

Do you want a separate bug report for that?
Comment 3 Wolfgang Bauer 2019-12-30 16:40:43 UTC 
(In reply to Neil Rickert from comment #2)
> Related.
> 
> When starting "ktorrent", it complains that a GeoIP file at maxmind.com does
> not exist.
> 
> This happens on both Tumbleweed and Leap 15.2Alpha (and on Leap 15.1).
> 
> You can ignore the complaint (click "Cancel"), and everything works.  But
> maybe we should not be getting that complaint on Tumbleweed or on Leap 15.2.
> 
> Do you want a separate bug report for that?

There already is bug#1136292.

Unfortunately the upstream fix is still on hold because the patch author doesn't respond...
But I suppose I'll add the patch anyway shortly, I'm using it myself since months.
Comment 4 Wolfgang Bauer 2019-12-30 16:46:23 UTC 
Btw, ktorrent does *not* use the GeoIP package, but accesses the online GeoIP database directly.
So it is actually not relevant *here* in this bug report, which is about dropping the GeoIP package.
Comment 5 Neil Rickert 2019-12-30 17:19:53 UTC 
>There already is bug#1136292.

Thanks.
Comment 6 Wolfgang Bauer 2020-01-03 16:48:41 UTC 
@lnussel:
I don't understand why bug#1136292 has been added to the dependencies here now.
As I wrote, ktorrent doesn't depend at all on the GeoIP package.
Comment 7 Ludwig Nussel 2020-01-07 08:38:50 UTC 
Just for tracking purposes. It doesn't depend on the package but embeds a copy of the source code...
Comment 8 Petr Gajdos 2020-03-10 15:34:50 UTC 
Submitted libmaxminddb into SLE-15:Update ..
isc rq show 213557
Comment 9 Илья Индиго 2020-03-10 22:43:19 UTC 
https://build.opensuse.org/package/show/network/qbittorrent
qBittorrent also requires GeoIP.
Comment 10 Илья Индиго 2020-03-10 22:57:17 UTC 
(In reply to Илья Индиго from comment #9)
> https://build.opensuse.org/package/show/network/qbittorrent
> qBittorrent also requires GeoIP.

Fixed now. https://build.opensuse.org/request/show/783562
Comment 11 Petr Gajdos 2020-03-16 11:16:49 UTC 
I have prepared geolite2legacy and geoipupdate packages in ibs (home:pgajdos:maintenance:geolite2legacy and home:pgajdos:maintenance:geoipupdate respectively).

geoipupdate has also geoipupdate-legacy, which uses geolite2legacy to convert downloaded geolite2 CSV data. For 12 and 11, it does not make sense to provide geoipupdate itself:

                      TW | 15 | 12 | 11
---------------------------------------
geolite2legacy         x    x    x    x
geoipupdate            x    x
geoipupdate-legacy     ?    x    x    x

Question is, whether to provide geoipupdate-legacy for TW.
Comment 12 Vítězslav Čížek 2020-03-16 11:51:33 UTC 
(In reply to Petr Gajdos from comment #11)
> Question is, whether to provide geoipupdate-legacy for TW.

The GeoIP library which is able to work with the old data is being dropped (https://build.opensuse.org/request/show/756785).
However, we could provide geoipupdate-legacy for a limited time for backward compatibility. It's a small script, there shouldn't be any big maintenance cost.
Comment 13 Petr Gajdos 2020-03-16 13:38:48 UTC 
(In reply to Vítězslav Čížek from comment #12)
> However, we could provide geoipupdate-legacy for a limited time for backward
> compatibility. It's a small script, there shouldn't be any big maintenance
> cost.

Okay, submitted.
Comment 14 Petr Gajdos 2020-03-16 13:44:06 UTC 
Note that 11/geoipupdate-legacy requires curl-openssl1 to download GeoLite2 CSV data correctly.
Comment 16 Swamp Workflow Management 2020-03-25 11:20:05 UTC 
This is an autogenerated message for OBS integration:
This bug (1156194) was mentioned in
https://build.opensuse.org/request/show/788145 15.2 / geoipupdate
Comment 17 Swamp Workflow Management 2020-03-25 12:10:10 UTC 
This is an autogenerated message for OBS integration:
This bug (1156194) was mentioned in
https://build.opensuse.org/request/show/788157 15.1 / geoipupdate
https://build.opensuse.org/request/show/788159 15.1 / geolite2legacy
Comment 21 Swamp Workflow Management 2020-03-31 10:31:10 UTC 
openSUSE-RU-2020:0418-1: An update that has one recommended fix can now be installed.

Category: recommended (moderate)
Bug References: 1156194
CVE References: 
Sources used:
openSUSE Leap 15.1 (src):    geoipupdate-4.2.2-lp151.3.3.1, geolite2legacy-0+git20200101.56d8a4f-lp151.2.1
Comment 22 Swamp Workflow Management 2020-03-31 16:32:10 UTC 
SUSE-RU-2020:0829-1: An update that has one recommended fix can now be installed.

Category: recommended (moderate)
Bug References: 1156194
CVE References: 
Sources used:
SUSE Linux Enterprise Server for SAP 15 (src):    geoipupdate-4.2.2-1.5.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Linux Enterprise Server 15-LTSS (src):    geoipupdate-4.2.2-1.5.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Linux Enterprise Module for Basesystem 15-SP1 (src):    geoipupdate-4.2.2-1.5.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Linux Enterprise High Performance Computing 15-LTSS (src):    geoipupdate-4.2.2-1.5.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS (src):    geoipupdate-4.2.2-1.5.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 23 Swamp Workflow Management 2020-03-31 16:41:42 UTC 
openSUSE-RU-2020:0432-1: An update that has one recommended fix can now be installed.

Category: recommended (moderate)
Bug References: 1156194
CVE References: 
Sources used:
openSUSE Backports SLE-15-SP1 (src):    geoipupdate-4.2.2-bp151.4.3.1
Comment 24 Swamp Workflow Management 2020-04-02 13:19:28 UTC 
SUSE-RU-2020:0848-1: An update that has one recommended fix can now be installed.

Category: recommended (moderate)
Bug References: 1156194
CVE References: 
Sources used:
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (src):    GeoIP-1.6.12-6.3.1
SUSE Linux Enterprise Module for Desktop Applications 15-SP1 (src):    GeoIP-1.6.12-6.3.1
SUSE Linux Enterprise Module for Basesystem 15-SP1 (src):    GeoIP-1.6.12-6.3.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 25 Swamp Workflow Management 2020-04-08 16:29:45 UTC 
openSUSE-RU-2020:0474-1: An update that has one recommended fix can now be installed.

Category: recommended (moderate)
Bug References: 1156194
CVE References: 
Sources used:
openSUSE Leap 15.1 (src):    GeoIP-1.6.12-lp151.2.3.1
Comment 26 Marcus Meissner 2020-04-16 08:01:31 UTC 
*** Bug 1169603 has been marked as a duplicate of this bug. ***
Comment 28 Swamp Workflow Management 2020-05-12 13:38:20 UTC 
SUSE-RU-2020:1254-1: An update that has two recommended fixes can now be installed.

Category: recommended (moderate)
Bug References: 1156194,1169766
CVE References: 
Sources used:
SUSE OpenStack Cloud Crowbar 8 (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE OpenStack Cloud 8 (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE OpenStack Cloud 7 (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Linux Enterprise Software Development Kit 12-SP5 (src):    GeoIP-1.5.1-5.3.1
SUSE Linux Enterprise Software Development Kit 12-SP4 (src):    GeoIP-1.5.1-5.3.1
SUSE Linux Enterprise Server for SAP 12-SP3 (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Linux Enterprise Server for SAP 12-SP2 (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Linux Enterprise Server for SAP 12-SP1 (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Linux Enterprise Server 12-SP5 (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Linux Enterprise Server 12-SP4 (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Linux Enterprise Server 12-SP3-LTSS (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Linux Enterprise Server 12-SP3-BCL (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Linux Enterprise Server 12-SP2-LTSS (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Linux Enterprise Server 12-SP2-BCL (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Linux Enterprise Server 12-SP1-LTSS (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
SUSE Enterprise Storage 5 (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1
HPE Helion Openstack 8 (src):    GeoIP-1.5.1-5.3.1, geoipupdate-4.2.2-1.7.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 29 Swamp Workflow Management 2020-05-26 16:14:58 UTC 
SUSE-RU-2020:1422-1: An update that has one recommended fix can now be installed.

Category: recommended (moderate)
Bug References: 1156194
CVE References: 
Sources used:
SUSE Linux Enterprise Server for SAP 15 (src):    GeoIP-1.6.11-3.3.1
SUSE Linux Enterprise Server 15-LTSS (src):    GeoIP-1.6.11-3.3.1
SUSE Linux Enterprise High Performance Computing 15-LTSS (src):    GeoIP-1.6.11-3.3.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS (src):    GeoIP-1.6.11-3.3.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 30 Swamp Workflow Management 2020-12-16 14:31:35 UTC 
SUSE-RU-2020:14577-1: An update that has two recommended fixes and contains one feature can now be installed.

Category: recommended (moderate)
Bug References: 1156194,1169766
CVE References: 
JIRA References: ECO-1405
Sources used:
SUSE Linux Enterprise Server 11-SP4-LTSS (src):    geoipupdate-4.2.2-1.5.1, geolite2legacy-0+git20200101.56d8a4f-1.3.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 31 Ludwig Nussel 2023-08-15 12:13:24 UTC 
was dropped long ago