The package samba-winbind has a "recommends" on "group(wbpriv)", but from what I can tell there is no package in the distribution that provides that resource. Reproducible: Always Steps to Reproduce: 1. dnf5 repoquery --recommends samba-winbind 2. dnf5 repoquery --whatprovides 'group(wbpriv)' Actual Results: The first command lists "group(wbpriv)" but the second gives no suggestion how to fulfill the recommendation. Expected Results: There should be something providing whatever is recommended as long as you stay within the distribution.
git grep -n wbpriv samba.spec:1596:/usr/sbin/groupadd -g 88 wbpriv >/dev/null 2>&1 || : samba.spec:3471:%attr(750,root,wbpriv) %dir /var/lib/samba/winbindd_privileged It is provided by the samba-winbind package. # rpm -q --scripts samba-winbind preinstall scriptlet (using /bin/sh): /usr/sbin/groupadd -g 88 wbpriv >/dev/null 2>&1 || : ... The dependency 'group(wbpriv)' is autogenerated by RPM infrastructure. There is no explicit dependency in the spec file. Are you using a Silverblue or a similar variant which does not run preinstall scriplets?
I'm running a regular system, and the group does exist on the system. Nothing in the system itself is broken. This report is only about the RPM metadata, thus "low" severity. Would the "provide" also be autogenerated if the newer "sysusers" mechanism would have been used (https://docs.fedoraproject.org/en-US/packaging-guidelines/UsersAndGroups/)? I don't package anything that needs extra users or groups and haven't looked to closely on that feature.
If samba-winbind would provide a sysusers.d file, then /usr/lib/rpm/sysusers.generate-pre.sh would generate a %preinstall section with an equivalent script to what is already in the spec, so I'd think there will be the same "provides" entry. We already have that for two other sysusers snippets, so %sysusers_create_compat : $ git grep -n sysusers samba.spec:231:Source16: samba-systemd-sysusers.conf samba.spec:232:Source17: samba-usershares-systemd-sysusers.conf samba.spec:1401:install -d -m 0755 %{buildroot}%{_sysusersdir} samba.spec:1402:install -m 0644 %{SOURCE16} %{buildroot}%{_sysusersdir}/samba.conf samba.spec:1403:install -m 0644 %{SOURCE17} %{buildroot}%{_sysusersdir}/samba-usershares.conf samba.spec:1516:%sysusers_create_compat %{SOURCE16} samba.spec:1590:%sysusers_create_compat %{SOURCE17} samba.spec:1976:%{_sysusersdir}/samba.conf samba.spec:3462:%{_sysusersdir}/samba-usershares.conf samba.spec:4621:- Move group creation logic to sysusers.d fragment # rpm -q --provides samba-common|grep group group(printadmin) = ZyBwcmludGFkbWluIC0A This is actually coming from /usr/lib/rpm/fileattrs/sysusers.attr, e.g. file attribute processor that takes sysusers.d file and generates provides: # Create user(name) and group(name) provides for sysusers. # For the primary item, encode the whole sysusers entry in base64, to be # fed into systemd-sysusers or something else that can handle it. # For groups created as a side-effect, only provide the group. I guess if we switch wbpriv group to the same way, it will get the provides.
FEDORA-2024-6c0f5c1351 has been submitted as an update to Fedora 40. https://bodhi.fedoraproject.org/updates/FEDORA-2024-6c0f5c1351
FEDORA-2024-578e97f22f has been submitted as an update to Fedora 39. https://bodhi.fedoraproject.org/updates/FEDORA-2024-578e97f22f
FEDORA-2024-6c0f5c1351 has been pushed to the Fedora 40 stable repository. If problem still persists, please make note of it in this bug report.
FEDORA-2024-578e97f22f has been pushed to the Fedora 39 testing repository. Soon you'll be able to install the update with the following command: `sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2024-578e97f22f` You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2024-578e97f22f See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
FEDORA-2024-578e97f22f has been pushed to the Fedora 39 stable repository. If problem still persists, please make note of it in this bug report.