Unable to use dnf to update Openssl [Was: Re: Openssl heartbleed]

Dennis Gilmore dennis at ausil.us
Wed Apr 9 04:17:21 UTC 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue, 08 Apr 2014 20:48:16 -0700
Adam Williamson <awilliam at redhat.com> wrote:

> On Tue, 2014-04-08 at 21:39 -0500, Dennis Gilmore wrote:
> > On Wed, 09 Apr 2014 12:00:54 +1000
> > Ankur Sinha <sanjay.ankur at gmail.com> wrote:
> > 
> > > On Tue, 2014-04-08 at 17:57 -0700, Adam Williamson wrote:
> > > > 
> > > > The update has been available since yesterday afternoon. You
> > > > have to restart your services after installing it.
> > > 
> > > So, I tried to update openssl as the announcement suggested. I
> > > couldn't do it via dnf:
> > > 
> > > http://paste.fedoraproject.org/92743/70087521
> > > 
> > > Yum worked just fine:
> > > http://paste.fedoraproject.org/92744/13970085
> > > 
> > > Is something the matter with dnf's solver? Bug worth filing?
> > 
> > it is how dnf is designed to work. it refreshes the cache in the
> > background periodically. so wont have the new metadata. "dnf clean
> > metadata" followed by "dnf update" should have worked okay. It's a
> > side effect and design decision of dnf.
> 
> I don't see what metadata has to do with it, it's a simple transaction
> to update two package files that exist locally. No repo metadata ought
> to be involved. If it works with yum it should work with dnf.

dnf's copy of the metadata is out of date, it doesnt know about the new
update and so can not fetch them and install them until it refreshes
the metadata, which is a process it hides from the users in the name of
making the user experience better.

Dennis
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)
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=8T2Y
-----END PGP SIGNATURE-----


More information about the test mailing list