RPMs created can't be used on an AIX machine #7
Comments
rohit-lshift
changed the title
|
You're using a version of RPM over 20 years old, but I guess version 3.0.5 has some compatibility with v4 packages. I am responsible for that commit and I don't think it was supposed to change any headers by default. In other words, it added some options, but the default behavior should have remained the same. Do you think you can produce the exact same RPM using the previous version so that we can compare the two files and see what as changed? |
|
@dwalluck, I know its 20 years old. :( I can produce RPMs from before and after that commit. I tried to use How else can I check whats different? Thanks for your help. |
|
So it did not show any changes in the |
|
It doesn't show any changes in The files sizes are different. Before: |
|
Finally found one difference: Old: $ rpm -Kv old.rpm
old.rpm:
Header SHA1 digest: OK
MD5 digest: OKNew: $ rpm -Kv new.rpm
new.rpm:
Header SHA256 digest: OK
Header SHA1 digest: OK
MD5 digest: OKSo looks like Edit: I commented out that line which adds the new header but the rpm still doesn't work. So its not that. Edit2: The outputs where produced on a "modern" machine. If I run |
|
Great, so if you use the current master and remove the line at it should hopefully work for you again. Can you try?I can make a pull request to make this optional, but I am not sure yet how we should decide to handle it. The API only currently seems to allow you to remove all signature processors, not remove just a single (existing) one. However, you can currently add one if it doesn't already exist. Maybe we should wait for @ctron to comment. I have had this idea that the builder should take an API compatibility level and then it would enable or disable features automatically based on that. Presumably, you are using https://github.com/ctron/rpm-builder so maybe something should be done here instead to allow this feature to be changed on the fly. |
|
Oh, I should have read your comment where you said you tried this already. |
|
What surprises me is the file size difference between the two. The new rpm is 28250 bytes less than the old one - roughly 1.86%. |
|
I think that the gzip compression may be responsible for (most) of the size reduction in the new file payload. Before the RPM header indicated |
|
The tests use this |
|
Thanks. I'll give it a shot. btw, its not the compression. On your suggestion, I changed compression level to |
|
I ran |
|
No luck. I added the So with all my changes - old file size: |
|
I've figured it out. 🙀 |
|
Unless I am reading the code wrong, I thought the official RPM puts the headers in the order that is it there: SHA256, SHA1, MD5: In any case, I would think we should try to match the exact order in the official RPM if we can. Of course, it may be the case that RPM itself is no longer backwards compatible with the SHA256 header added and would suffer the same issue. I don't suppose you're willing to check the order of the headers and whether or not it installs under v3 if built with official RPM? |
|
I created the same rpm for linux and inspected it. When I ran Header SHA256 digest: OK
Header SHA1 digest: OK
MD5 digest: OKI don't think I can update the rpm binary on the AIX box as that would be require quite a lot of change in our prod servers as well. 😢 |
|
Does RPM 4.15.0 create RPMs that you can install with RPM 3.0.5? |
|
@dwalluck: What I did was create the RPM for Linux and not AIX. Then I installed it on a Linux box. The underlying packager library was the same. Hope I am clearer this time around. |
|
I have not tested it, but I think that upstream RPM has broken backwards compatibility with this change. That is why I asked if someone wanted to build on official RPM 4.x and see if it installs with 3.0.5. They seem to provide no way to disable SHA256 signatures via macros the way you may be able to disable some other newer features to keep backwards compatibility. |
This change allows specifying a custom provider for signature configurations. By default it will support "default" and "md5-only".
|
@rohit-lshift I created a PR in the Maven Plugin repository, see: ctron/rpm-builder@cb5def3 I would kindly ask you to test, if that works for you, then I would merge the PR and do a new release in a few days. |
|
@ctron: that does indeed work. Thanks! |
This change allows specifying a custom provider for signature configurations. By default it will support "default" and "md5-only".
|
Is it ok to close this issue? |
|
Thanks a lot @ctron! |
Hello,
I am using this library to create RPMs for a Linux machine and an AIX machine. The AIX machine is somewhat old.
I noticed when I generated the RPMS after this commit: 2ae1880, I am unable to use the RPMs produced on the AIX box. I get a really unhelpful error:
root@somemachine:/tmp> rpm -Uvh somerpm.aix7.1.noarch.rpm error: somerpm.aix7.1.noarch.rpm cannot be installedAny help debugging this would be really helpful.
RPM version being used:
root@somemachine:/tmp> rpm --version RPM version 3.0.5I am using this library through ctron/rpm-builder
The text was updated successfully, but these errors were encountered: