[Leap Micro 6] Cannot install patch 10 (Security update for qemu)

This patch is shown in Cockpit but doesn’t install automatically.
Attempting to install it manually shows that there are conflicts, and the suggested resolutions involve removing packages which is obviously why the patch isn’t applied automatically. Accepting the suggested resolution removes Virtualisation from Cockpit which is not ideal, and I think prevents the libvirt Virtual Machine Manager from accessing remotely.
Am I missing something or is this expected behaviour?

This is obviously not an expected behavior, but without full zypper output or at least patch name it is difficult to make any comment. Looking at download.o.o, there are no updates for Leap Micro 6.

It’s not an update, it’s a patch:

transactional update # zypper lp -a
Refreshing service 'openSUSE'.
Loading repository data...
Reading installed packages...

Repository      | Name | Category    | Severity  | Interactive | Status     | Since      | Summary
----------------+------+-------------+-----------+-------------+------------+------------+---------------------------------------------------------------------------------------------
repo-main (6.0) | 9    | recommended | low       | ---         | applied    | -          | Recommended update for bash, libcap-ng, libselinux, libselinux-bindings, libsemanage, zypper
repo-main (6.0) | 10   | security    | critical  | ---         | needed     | -          | Security update for qemu
repo-main (6.0) | 11   | security    | moderate  | ---         | not needed | -          | Security update for wget
repo-main (6.0) | 21   | security    | important | ---         | not needed | -          | Security update for skopeo
repo-main (6.0) | 22   | security    | moderate  | reboot      | applied    | 2024-08-28 | Security update for ucode-intel
repo-main (6.0) | 23   | security    | important | ---         | applied    | 2024-08-29 | Security update for python311, python-rpm-macros
repo-main (6.0) | 28   | security    | moderate  | ---         | applied    | 2024-09-04 | Security update for python-requests

Found 1 applicable patch:
1 patch needed (1 security patch)

Attempting the patch gives:

transactional update # zypper patch
Refreshing service 'openSUSE'.
Loading repository data...
Reading installed packages...
Resolving package dependencies...

Problem: the installed cockpit-machines-305-1.1.noarch requires 'qemu-hw-usb-redirect', but this requirement cannot be provided
  not installable providers: qemu-hw-usb-redirect-8.2.5-1.1.x86_64[openSUSE:repo-main]
 Solution 1: Following actions will be done:
  deinstallation of cockpit-machines-305-1.1.noarch
  deinstallation of qemu-hw-usb-redirect-8.2.1-2.8.x86_64
  deinstallation of qemu-hw-display-virtio-vga-8.2.1-2.8.x86_64
  deinstallation of qemu-hw-display-virtio-gpu-pci-8.2.1-2.8.x86_64
  deinstallation of patterns-base-kvm_host-6.0-1.2.x86_64
  deinstallation of qemu-hw-display-virtio-gpu-8.2.1-2.8.x86_64
 Solution 2: do not install patch:10-1.noarch
 Solution 3: break cockpit-machines-305-1.1.noarch by ignoring some of its dependencies

Choose from above solutions by number or cancel [1/2/3/c/d/?] (c): 
transactional update #

Oh, well …

It is the first time I see updates of the stable release pushed in the main repository. Maybe the release model has changed (at least, I do not see update repository in Leap Micro 6.0 zypper service). In any case, you need to open bug report on https://bugzilla.opensuse.org/, same user/password as here. Provide this output of zypper. In the past I would say to use “Maintenance” component, but it does not exist for Leap Micro. Not sure which is more suitable.

OK, submitted 1230150 – Cannot install patch 10 (Security update for qemu) on component Base.

I think it’s intended to just mirror SUSE micro, but perhaps there are some extra packages in the SUSE-only repositories I’m not getting. Note that I haven’t registered this installation with SUSE Connect so I’m, only seeing openSUSE repositories.
The detailed patch description contains the line “Update to version 8.2.5” for QEMU, but not all QEMU packages seem to be at that version and I’d expect the Patterns to be updated too.

I’ve installed and registered SUSE Micro in a VM for comparison. On that system the patch is named SUSE-SLE-Micro-6.0-10 and installs correctly.

zypper info is the same for the patches except in the number of conflicts (20 for openSUSE but 94 for SUSE). SUSE seems to have conflicts with all of the qemu packages. Given that the description - identical in both patches - contains “Update to version 8.2.5”, my guess is that the openSUSE patch is incomplete.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.