Bug 2009742

Summary: iptables-nft should require coreutils
Product: Red Hat Enterprise Linux 9 Reporter: Jan Stodola <jstodola>
Component: iptablesAssignee: Phil Sutter <psutter>
Status: CLOSED ERRATA QA Contact: qe-baseos-daemons
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 9.0CC: todoleza
Target Milestone: rcKeywords: AcceptanceCriteriaApproved, Triaged
Target Release: 9.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: iptables-1.8.7-24.el9 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2022-05-17 15:52:12 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Jan Stodola 2021-10-01 13:16:51 UTC 
Description of problem:
The following error was noticed in /var/log/anaconda/packaging.log on the installed system:

...
03:50:43,447 INF packaging: Installed: iptables-nft-1.8.7-23.el9.x86_64 1628560024 10b9dccdca8aeff1bff03b9961f2495f6d951ec352ee837fac5b78359e3b1cf1
03:50:43,491 INF packaging: Configuring (running scriptlet for): iptables-nft-1.8.7-23.el9.x86_64 1628560024 10b9dccdca8aeff1bff03b9961f2495f6d951ec352ee837fac5b78359e3b1cf1
03:50:43,511 INF dnf.rpm: /var/tmp/rpm-tmp.eM9Yv2: line 14: readlink: command not found
/var/tmp/rpm-tmp.eM9Yv2: line 14: readlink: command not found
/var/tmp/rpm-tmp.eM9Yv2: line 14: readlink: command not found
/var/tmp/rpm-tmp.eM9Yv2: line 18: readlink: command not found
/var/tmp/rpm-tmp.eM9Yv2: line 31: readlink: command not found
/var/tmp/rpm-tmp.eM9Yv2: line 34: readlink: command not found
/var/tmp/rpm-tmp.eM9Yv2: line 31: readlink: command not found
/var/tmp/rpm-tmp.eM9Yv2: line 34: readlink: command not found
/var/tmp/rpm-tmp.eM9Yv2: line 31: readlink: command not found
/var/tmp/rpm-tmp.eM9Yv2: line 34: readlink: command not found
/var/tmp/rpm-tmp.eM9Yv2: line 38: readlink: command not found

03:50:43,514 INF packaging: Installed: nftables-1:0.9.8-7.el9.x86_64 1628603089 74f0c33cab96df7f4b6780f2a7e2ea73bbb600a97926221035a1a00e209d277c
.
.
.
03:50:44,754 INF packaging: Installed: coreutils-8.32-31.el9.x86_64 1628543680 4ffed4d910af3dbde23df8e080062c11ad97ef471b78f5b65911be733fe1dde4
...

iptables-nft should require coreutils if it executes readlink in rpm scriptlets.

Version-Release number of selected component (if applicable):
iptables-nft-1.8.7-23.el9

How reproducible:


Steps to Reproduce:
1. rpm -qp iptables-nft-1.8.7-23.el9.x86_64.rpm --requires | grep coreutils

Actual results:
iptables-nft scriptlets call readlink, but the package deosn't require coreutils - this leads to errors when installing the package

Expected results:
Commands used in rpm scriptlets are installed before the iptables-nft rpm scriptlets are executed.
Comment 1 Phil Sutter 2021-10-01 13:57:38 UTC 
Thanks for the report. This was fixed in Fedora shortly after automatic sync was disabled.
Comment 3 Štěpán Němec 2021-10-13 10:56:47 UTC 
Tested iptables-1.8.7-24.el9

RHEL 9 iptables.spec now contains the fix from Fedora:
https://src.fedoraproject.org/rpms/iptables/c/2eea62dd86d3eafe7938a922f0dca0bc722b0674

[root@ci-vm-10-0-138-102 ~]# rpm -qp --requires /mnt/redhat/brewroot/packages/iptables/1.8.7/24.el9/x86_64/iptables-nft-1.8.7-24.el9.x86_64.rpm | grep -E 'coreutils|readlink'
/usr/bin/readlink

[root@ci-vm-10-0-138-102 ~]# rpm -qp --requires /mnt/redhat/brewroot/packages/iptables/1.8.7/26.el9/x86_64/iptables-nft-1.8.7-26.el9.x86_64.rpm | grep -E 'coreutils|readlink'
/usr/bin/readlink
Comment 9 errata-xmlrpc 2022-05-17 15:52:12 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (new packages: iptables), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2022:3936