Bug 1460516
| Summary: | dnf shouldn't allow you to remove its dependencies | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Randy Barlow <randy> | ||||||||
| Component: | openssl | Assignee: | Tomas Mraz <tmraz> | ||||||||
| Status: | CLOSED INSUFFICIENT_DATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | ||||||||
| Severity: | urgent | Docs Contact: | |||||||||
| Priority: | unspecified | ||||||||||
| Version: | 27 | CC: | packaging-team-maint, randy, rbarlow, rpm-software-management, tmraz, vmukhame | ||||||||
| Target Milestone: | --- | Flags: | rbarlow:
needinfo-
|
||||||||
| Target Release: | --- | ||||||||||
| Hardware: | x86_64 | ||||||||||
| OS: | Linux | ||||||||||
| Whiteboard: | |||||||||||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |||||||||
| Doc Text: | Story Points: | --- | |||||||||
| Clone Of: | Environment: | ||||||||||
| Last Closed: | 2017-12-14 15:12:24 UTC | Type: | Bug | ||||||||
| Regression: | --- | Mount Type: | --- | ||||||||
| Documentation: | --- | CRM: | |||||||||
| Verified Versions: | Category: | --- | |||||||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||||||
| Embargoed: | |||||||||||
| Attachments: |
|
||||||||||
I believe this may be connected to dnf having wanted to install compat-openssl10-devel-1:1.0.2j-6.fc26.x86_64 instead of openssl-devel. Since it was a devel library, I used the --allowerasing option. Ever since that replacement was made, dnf does not work (which is surprising, given that it is a devel package). I was able to use rpm to get my system working again: $ sudo rpm -e compat-openssl10-devel && sudo rpm -U https://kojipkgs.fedoraproject.org//packages/openssl/1.1.0f/2.fc27/x86_64/openssl-libs-1.1.0f-2.fc27.x86_64.rpm https://kojipkgs.fedoraproject.org//packages/openssl/1.1.0f/2.fc27/x86_64/openssl-devel-1.1.0f-2.fc27.x86_64.rpm https://kojipkgs.fedoraproject.org//packages/openssl/1.1.0f/2.fc27/x86_64/openssl-1.1.0f-2.fc27.x86_64.rpm It might be good to have dnf disallow removing libraries that it depends on itself. Or alternatively, dnf could at least warn you that you are removing its dependencies with some kind of "are you sure?" prompt. Also, it's curious that dnf allowed me to remove openssl without it removing dnf itself too. That sounds like a packaging problem... Can you reproduce this? If yes, please re-run with --debugsolver and attach debugdata directory... Then I can take a look why it broke DNF... if not, please close this bug as NOTABUG. Hi Igor! I can reproduce it, but only by using --allowerasing. Here's some reproducer steps: 0. fedpkg clone erlang 1. sudo dnf builddep erlang.spec --debugsolver I'll attach the folder and a file with the output of dnf. Created attachment 1291276 [details]
debugdata folder
Created attachment 1291277 [details]
dnf output
Well, swapping devel subpackages should be completely fine... If that breaks system, that's packaging fault but not DNF... I have suspicion that something tries to dlopen unversioned libcrypto and after transaction version mismatches and everything just explodes. Reassigning to openssl for additional help. Try to build such packages in mock, btw. Can you please provide full stack trace from the crash? The original stack trace attached is not much helpful as there is no libcrypto mentioned at all. And yes, if something opens libcrypto by unversioned .so this needs to be fixed. But we need to find what does it. If you remove both compat-openssl10-devel and openssl-devel does dnf still crash? This bug appears to have been reported against 'rawhide' during the Fedora 27 development cycle. Changing version to '27'. |
Created attachment 1286848 [details] coredumpctl info Description of problem: Today I used dnf to install some build dependencies for erlang. After I installed those dependencies, dnf segfaults. Version-Release number of selected component (if applicable): dnf-2.5.0-2.fc27.noarch How reproducible: Every time. Steps to Reproduce: 1. Run dnf Actual results: $ dnf Segmentation fault (core dumped) Expected results: dnf should not segfault. Additional info: I am attaching coredump info.