Bug 1220673 - Two BCI failures with bci-base 15.6
Summary: Two BCI failures with bci-base 15.6
Status: RESOLVED FIXED
Alias: None
Product: PUBLIC SUSE Linux Enterprise Server 15 SP6
Classification: openSUSE
Component: Containers (show other bugs)
Version: unspecified
Hardware: Other Other
: P2 - High : Normal
Target Milestone: ---
Assignee: Containers Team
QA Contact:
URL: https://openqa.suse.de/tests/13634256...
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2024-02-29 12:45 UTC by Felix Niederwanger
Modified: 2024-03-06 13:08 UTC (History)
4 users (show)

See Also:
Found By: openQA
Services Priority:
Business Priority:
Blocker: Yes
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Felix Niederwanger 2024-02-29 12:45:06 UTC 
In the current 15-SP6 validation round we see two issues with the bci-base:156 container, e.g. in https://openqa.suse.de/tests/13634256

> AssertionError: Installed crypto-policies = 150600.1.8 is newer than what crypto-policies-scripts requires (= 150600.1.3)

and
> >       assert not orphaned_packages.difference(known_orphaned_packages)
> E       AssertionError: assert not {'libabsl2308_0_0', 'libopenssl-3-fips-provider', 'libprotobuf-lite25_1_0', 'sle-module-basesystem-release', 'sle-module-python3-release', 'sle-module-server-applications-release'}
> E        +  where {'libabsl2308_0_0', 'libopenssl-3-fips-provider', 'libprotobuf-lite25_1_0', 'sle-module-basesystem-release', 'sle-module-python3-release', 'sle-module-server-applications-release'}

We're testing currently build 44.45.
Comment 1 Marcus Meissner 2024-02-29 13:08:48 UTC 
first: needs repo refresh

second: 000package-groups in SUSE:SLE-15-SP6:Update:BCI needs to updated for lib* to be included.

the sle-*-release packages its not clear, nott sure where they come from or if they should be there
Comment 2 Dirk Mueller 2024-02-29 15:03:08 UTC 
The repo refresh is blocked by the broken openssl3/fips state, there's a separate bug report about it
Comment 3 Fabian Vogt 2024-03-01 14:35:07 UTC 
FWICT the image contains newer libabsl and protobuf from a SLE maintenance update, which implies that it was built against SUSE:SLE-15-SP6:Update instead of SUSE:15-SP6:GA.

> the sle-*-release packages its not clear, nott sure where they come from or if they should be there

Not sure. sle15:15.5 doesn't have those OOTB.
Comment 4 Fabian Vogt 2024-03-01 14:37:38 UTC 
(In reply to Fabian Vogt from comment #3)
> > the sle-*-release packages its not clear, nott sure where they come from or if they should be there
> 
> Not sure. sle15:15.5 doesn't have those OOTB.

.changes has the answer:

-------------------------------------------------------------------
Thu Jan 25 11:45:28 UTC 2024 - Dirk Müller <dmueller@suse.com>

- install the default modules (bsc#1219178)
- add README.md and point to it for artifacthub
Comment 5 Marcus Meissner 2024-03-01 16:59:58 UTC 
(In reply to Fabian Vogt from comment #3)
> FWICT the image contains newer libabsl and protobuf from a SLE maintenance
> update, which implies that it was built against SUSE:SLE-15-SP6:Update
> instead of SUSE:15-SP6:GA.


These are in SP6:GA too now after the last maintenance snapshot.
Comment 6 Marcus Meissner 2024-03-06 13:08:09 UTC 
solved