Bug 1515890
Summary: | rpm reports on chroot install "error: Failed to initialize NSS library" | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 7 | Reporter: | Patrik Kis <pkis> |
Component: | nss-softokn | Assignee: | Daiki Ueno <dueno> |
Status: | CLOSED NOTABUG | QA Contact: | BaseOS QE Security Team <qe-baseos-security> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 7.5 | CC: | dueno, hkario, kengert, pkis |
Target Milestone: | rc | ||
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2017-11-30 14:23:14 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 1477308 | ||
Bug Blocks: |
Description
Patrik Kis
2017-11-21 14:49:35 UTC
Just a very general comment upfront, it's better to provide very long lists with information as text information. Pasting as long comments can make bugs difficult to read. ... better to provide ... as "attachments" Daiki, Hubert, this bug report claims that bug 1477308 isn't yet fixed, despite using nss-softokn-3.34.0-0.2.beta1.el7 Any thoughts? I have run the test with 1minutetip. It appears to be a problem in the test case itself, which doesn't create /dev/urandom within the chroot (see bug 1420523). After I run: $ chroot /tmp/tmp.XpO0BYDYXm/test mknod /dev/urandom c 1 9 rpm -q works properly: $ chroot /tmp/tmp.XpO0BYDYXm/test rpm -q rpm: no arguments given for query (In reply to Daiki Ueno from comment #5) > I have run the test with 1minutetip. It appears to be a problem in the test > case itself, which doesn't create /dev/urandom within the chroot (see bug > 1420523). > > After I run: > > $ chroot /tmp/tmp.XpO0BYDYXm/test mknod /dev/urandom c 1 9 > > rpm -q works properly: > > $ chroot /tmp/tmp.XpO0BYDYXm/test rpm -q > rpm: no arguments given for query I can confirm that this fixes the problem, but /dev/urandom was not required in RHEL-7.4. Is this change intentional and needed? (In reply to Patrik Kis from comment #6) > > /dev/urandom was not required > in RHEL-7.4. Is this change intentional and needed? Yes. Intentional: https://bugzilla.mozilla.org/show_bug.cgi?id=889116 Previously it would fall back on something else, but every modern system should have /dev/urandom, and falling back was less secure. Since RHEL 7 has /dev/urandom, requiring it in test environments should be appropriate. Thank you for the clarification. I'll fix the test. closing, because it isn't a bug in nss-softokn |