Bug 2184329 - daemon: API to get severity, changelog, bug/CVE refs, etc. of available updates
Summary: daemon: API to get severity, changelog, bug/CVE refs, etc. of available updates
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Fedora
Classification: Fedora
Component: dnf5
Version: 39
Hardware: Unspecified
OS: Unspecified
high
unspecified
Target Milestone: ---
Assignee: Marek Blaha
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2023-04-04 09:15 UTC by Martin Pitt
Modified: 2024-11-11 05:21 UTC (History)
6 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2024-11-11 05:21:27 UTC
Type: Bug
Embargoed:


Attachments (Terms of Use)

Description Martin Pitt 2023-04-04 09:15:43 UTC
Description of problem: With PackageKit and dnf 4's CLI we can get details about available updates, such as the changelog, severity (security, bug fix, enhancement), and a list of bugzilla or errata URLs. I don't see such an API in <https://dnf5.readthedocs.io/en/latest/dnf_daemon/dnf5daemon_dbus_api.8.html>

This is necessary for replacing PackageKit on cockpit's "Software Updates" page (and most likely also for GNOME Software?)

Version-Release number of selected component (if applicable):

dnf5daemon-server-5.0.7-1.fc39.x86_64

Thanks!

Comment 1 Marek Blaha 2023-04-12 15:11:56 UTC
I've added the bug to upstream dnfdaemon tracking issue https://github.com/rpm-software-management/dnf5/issues/169
Do I understand correctly that what you need is basically an equivalent of `dnf updateinfo --info -v` command?

Comment 2 Martin Pitt 2023-04-21 05:26:23 UTC
Marek: Sorry for missing your reply. Indeed `dnf updateinfo --info -v` looks roughly like what I'm looking for. For cockpit we don't care much whether there is a single call to get info for all pending updates, or a per-package call -- whichever is more efficient and easier on your side. Thanks!

Comment 3 Marek Blaha 2023-08-03 08:24:33 UTC
There is https://github.com/rpm-software-management/dnf5/pull/688 PR that introduces `Advisory` interface to get list of available updates.
The output contains what's present in `updateinfo` repository metadata.

Comment 4 Fedora Release Engineering 2023-08-16 07:13:03 UTC
This bug appears to have been reported against 'rawhide' during the Fedora Linux 39 development cycle.
Changing version to 39.

Comment 5 Martin Pitt 2023-12-07 16:31:33 UTC
That new Advisory interface isn't on https://dnf5.readthedocs.io/en/latest/dnf_daemon/dnf5daemon_dbus_api.8.html yet, can you please update the docs? Or is there an example how to use it?

Comment 6 Marek Blaha 2024-03-20 16:26:17 UTC
Oh sorry - the https://github.com/rpm-software-management/dnf5/pull/1333 PR adds the interface to documentation.

Comment 7 Martin Pitt 2024-03-27 10:46:08 UTC
Thanks! I added this to my dnf5daemon test script, and the API call succeeds. On rawhide I don't get any results, but on F40 I do. Thanks!

Nice, this was the last blocker, now we could port cockpit to dnf5daemon.

Comment 8 Aoife Moloney 2024-11-08 10:51:10 UTC
This message is a reminder that Fedora Linux 39 is nearing its end of life.
Fedora will stop maintaining and issuing updates for Fedora Linux 39 on 2024-11-26.
It is Fedora's policy to close all bug reports from releases that are no longer
maintained. At that time this bug will be closed as EOL if it remains open with a
'version' of '39'.

Package Maintainer: If you wish for this bug to remain open because you
plan to fix it in a currently maintained version, change the 'version' 
to a later Fedora Linux version. Note that the version field may be hidden.
Click the "Show advanced fields" button if you do not see it.

Thank you for reporting this issue and we are sorry that we were not 
able to fix it before Fedora Linux 39 is end of life. If you would still like 
to see this bug fixed and are able to reproduce it against a later version 
of Fedora Linux, you are encouraged to change the 'version' to a later version
prior to this bug being closed.


Note You need to log in before you can comment on or make changes to this bug.