|
Bugzilla – Full Text Bug Listing |
| Summary: | Backports and SLE update repos removed during update | ||
|---|---|---|---|
| Product: | [openSUSE] openSUSE Distribution | Reporter: | Linus Kardell <linus.kardell> |
| Component: | Maintenance | Assignee: | Mr Maintenance <maintenance> |
| Status: | RESOLVED FIXED | QA Contact: | E-mail List <qa-bugs> |
| Severity: | Normal | ||
| Priority: | P5 - None | CC: | doerges, frerk.meyer, martin, mlin, nwr10cst-oslnx |
| Version: | Leap 15.3 | ||
| Target Milestone: | --- | ||
| Hardware: | Other | ||
| OS: | Other | ||
| Whiteboard: | |||
| Found By: | --- | Services Priority: | |
| Business Priority: | Blocker: | --- | |
| Marketing QA Status: | --- | IT Deployment: | --- |
| Attachments: | /var/log/zypper.log | ||
thx for the report... i see you zypper dup likely to the quarterly update 1, and downgraded the previous released openSUSE_release... after zypper patch from the online update repo they should be restored. *** Bug 1192465 has been marked as a duplicate of this bug. *** (In reply to Marcus Meissner from comment #1) > thx for the report... i see you zypper dup likely to the quarterly update 1, > and downgraded the previous released openSUSE_release... > > > after zypper patch from the online update repo they should be restored. I wanted to do zypper dup (to go 15.3) zypper up (to get the latest patches etc.) But 'zypper up' didn't give me anything because the two repos (repo-backports-update, repo-sle-update) were not installed. So, do I understand correctly that a 'zypper up -t patch' would have added them? Just did some more testing. Bottom line: As soon as you have openSUSE-release-15.3-lp1532.19.4.x86_64 installed the system is missing repo-backports-update and repo-sle-update. In the case of 'zypper dup' from 15.2 they are simply never there. In the case of a standard 'zypper up' in a 15.3 installation they are removed. FWIW, they don't come back if you do 'zypper up -t patch'. --> So IMO that's quite a security issue, because w/o these two repos you won't get most of the updates. # standard box with Leap 15.3 before installing the latest version of openSUSE-release # N.B.: repo-backports-update and repo-sle-update are present leap153:~ # zypper lr | grep repo | grep -v debug Repository priorities are without effect. All enabled repositories share the same priority. 10 | repo-backports-update | Update repository of openSUSE Backports | Yes | (r ) Yes | Yes 11 | repo-non-oss | openSUSE Leap 15.3 Non-OSS | Yes | (r ) Yes | Yes 12 | repo-non-oss-update | openSUSE Leap 15.3 Non-OSS Updates | Yes | (r ) Yes | Yes 13 | repo-oss | openSUSE Leap 15.3 OSS | Yes | (r ) Yes | Yes 14 | repo-oss-source | repo-oss-source | Yes | (r ) Yes | Yes 15 | repo-oss-update | openSUSE Leap 15.3 OSS Update | Yes | (r ) Yes | Yes 17 | repo-sle-update | Update repository with updates from SUSE Linux Enterprise 15 | Yes | (r ) Yes | Yes leap153:~ # zypper lu [...] Reading installed packages... S | Repository | Name | Current Version | Available Version | Arch --+-----------------------------------------+----------------------+---------------------------+---------------------------+------- v | Update repository of openSUSE Backports | chromedriver | 95.0.4638.54-bp153.2.37.1 | 95.0.4638.69-bp153.2.40.3 | x86_64 v | Update repository of openSUSE Backports | chromium | 95.0.4638.54-bp153.2.37.1 | 95.0.4638.69-bp153.2.40.3 | x86_64 v | openSUSE Leap 15.3 OSS | libappstream-glib8 | 0.7.16-lp153.1.1 | 0.7.16-lp1532.1.3 | x86_64 v | openSUSE Leap 15.3 OSS | openSUSE-release | 15.3-lp153.152.1 | 15.3-lp1532.19.4 | x86_64 v | openSUSE Leap 15.3 OSS | openSUSE-release-ftp | 15.3-lp153.152.1 | 15.3-lp1532.19.4 | x86_64 [...] # now installing openSUSE-release leap153:~ # zypper up --no-recommends Loading repository data... Reading installed packages... The following 5 items are locked and will not be changed by any action: Available: flash-player flash-player-debugsource freshplayerplugin freshplayerplugin-debuginfo freshplayerplugin-debugsource The following 5 package updates will NOT be installed: gstreamer-plugins-ugly gstreamer-plugins-ugly-lang libsox3 libvips42 sox The following 7 packages are going to be upgraded: chromedriver chromium libappstream-glib8 openSUSE-release openSUSE-release-ftp [...] The following product is going to be upgraded: openSUSE Leap 15.3 15.3-1 -> 15.3-2 7 packages to upgrade. # after installing the latest version of openSUSE-release # N.B.: repo-backports-update and repo-sle-update are *NOT* present any more leap153:~ # zypper lr | grep repo | grep -v debug Repository priorities are without effect. All enabled repositories share the same priority. 9 | repo-non-oss | openSUSE Leap 15.3 Non-OSS | Yes | (r ) Yes | Yes 10 | repo-non-oss-update | openSUSE Leap 15.3 Non-OSS Updates | Yes | (r ) Yes | Yes 11 | repo-oss | openSUSE Leap 15.3 OSS | Yes | (r ) Yes | Yes 12 | repo-oss-source | repo-oss-source | Yes | (r ) Yes | Yes 13 | repo-oss-update | openSUSE Leap 15.3 OSS Update | Yes | (r ) Yes | Yes leap153:~ # zypper lp Loading repository data... Reading installed packages... No updates found. leap153:~ # rpm -q openSUSE-release openSUSE-release-15.3-lp1532.19.4.x86_64 leap153:~ # rpm -ql openSUSE-release | grep repos # downgrading to temporarily fix the problem leap153:~ # zypper in --oldpackage openSUSE-release-15.3-lp153.152.1 Loading repository data... Reading installed packages... Resolving package dependencies... The following package is going to be downgraded: openSUSE-release The following product is going to be reinstalled: "openSUSE Leap 15.3" The following 3 NEW packages are going to be installed: issue-generator kernel-default-extra kernel-default-optional [...] # after downgrading openSUSE-release # N.B.: repo-backports-update and repo-sle-update are back again leap153:~ # rpm -q openSUSE-release openSUSE-release-15.3-lp153.152.1.x86_64 leap153:~ # rpm -ql openSUSE-release | grep repos /etc/zypp/repos.d/repo-backports-debug-update.repo /etc/zypp/repos.d/repo-backports-update.repo /etc/zypp/repos.d/repo-sle-debug-update.repo /etc/zypp/repos.d/repo-sle-update.repo # zypper up will definitely break things (i.e. remove update repos) leap153:~ # zypper lu [...] S | Repository | Name | Current Version | Available Version | Arch --+--------------------------------------------------------------+-------------------------+------------------+-------------------+------- v | Update repository with updates from SUSE Linux Enterprise 15 | kernel-default-extra | 5.3.18-59.10.1 | 5.3.18-59.27.1 | x86_64 v | Update repository with updates from SUSE Linux Enterprise 15 | kernel-default-optional | 5.3.18-59.10.1 | 5.3.18-59.27.1 | x86_64 v | openSUSE Leap 15.3 OSS | openSUSE-release | 15.3-lp153.152.1 | 15.3-lp1532.19.4 | x86_64 # zypper patch doesn't appear to break things on this system OTOH I have another box with Leap 15.3 configured with yast online_update_configuration and there the repos were gone today, too. leap153:~ # zypper lp Loading repository data... Reading installed packages... Repository | Name | Category | Severity | Interactive | Status | Since | Summary -------------------------------------------------------------+-----------------------------+----------+-----------+-------------+--------+-------+------------------------------------- Update repository with updates from SUSE Linux Enterprise 15 | openSUSE-SLE-15.3-2021-2352 | security | important | reboot | needed | - | Security update for the Linux Kernel Update repository with updates from SUSE Linux Enterprise 15 | openSUSE-SLE-15.3-2021-2415 | security | important | reboot | needed | - | Security update for the Linux Kernel Update repository with updates from SUSE Linux Enterprise 15 | openSUSE-SLE-15.3-2021-2687 | security | important | reboot | needed | - | Security update for the Linux Kernel Update repository with updates from SUSE Linux Enterprise 15 | openSUSE-SLE-15.3-2021-3205 | security | important | reboot | needed | - | Security update for the Linux Kernel Update repository with updates from SUSE Linux Enterprise 15 | openSUSE-SLE-15.3-2021-3387 | security | important | reboot | needed | - | Security update for the Linux Kernel Found 5 applicable patches: 5 patches needed (5 security patches) While QU1 respin the extra repos has moved to skelcd-control from release-package, skelcd-control is the right place for repos list, not release-package, IOW for new installation from medium the proper repos should be installed, don't need a release-package update from update channel to add these repos. Now with this report, the workaround in release-package have to stay for the zypper upgrading scenario... so we need to keep these extra repos in release-package in the whole 15 scope... 15.3 is eol, and we solved it there |
Created attachment 853557 [details] /var/log/zypper.log During the latest update, the backports and SLE update repos got removed, and as a result zypper wants to downgrade a ton of packages. In the zypper history I see this: # 2021-11-05 10:06:56 openSUSE-release-15.3-lp153.16.2.x86_64.rpm installed ok # Additional rpm output: # warning: /etc/zypp/repos.d/repo-sle-update.repo saved as /etc/zypp/repos.d/repo-sle-update.repo.rpmsave # warning: /etc/zypp/repos.d/repo-sle-debug-update.repo saved as /etc/zypp/repos.d/repo-sle-debug-update.repo.rpmsave # warning: /etc/zypp/repos.d/repo-backports-update.repo saved as /etc/zypp/repos.d/repo-backports-update.repo.rpmsave # warning: /etc/zypp/repos.d/repo-backports-debug-update.repo saved as /etc/zypp/repos.d/repo-backports-debug-update.repo.rpmsave # 2021-11-05 10:06:56|install|openSUSE-release|15.3-lp153.16.2|x86_64||repo-main|2dbff0ffa8ca46b7c284cceb899758e0d9bbcb2247b1f0efd5a9fee4d0bb2580| And indeed in /etc/zypp/repos.d/ I have these as repos *.rpmsave files, but not as regular *.repo files. Of note is that I've changed the URLs to point directly to a mirror. I'm attaching zypper.log