Package Management (dnf)

Software packages in RHEL 10 are managed with a tool called dnf.

Introduced in 2013, dnf was a significant improvement to its predecessor yum. Landing in RHEL 8, dnf replaced yum while still maintaining a great deal of compatibility.

When compared to YUM, DNF offers:

For these exercises, you will be using the host node1 as user root.

From host bastion, ssh to node1.

Use sudo to elevate your privileges.

Verify that you are on the right host for these exercises.

You are now ready to proceed with these exercises.

Software in Red Hat Enterprise Linux is bundled into something called an 'rpm'. At a highlevel an 'rpm' file includes both

The metadata includes (but is not limited to):

Next, rpm packages get organized into structures called repositories (or repos for short) which are then published as sources to distribute content. More on this topic in the Intermediate Package Management unit.

Working with rpms directly can be challenging. Luckily tooks like dnf exist to abstract that complexity and replace it with simple, intuitive commands and processes.

Let’s get started!

Simple command to list all available packages. This includes all configured and available repos.

Command to list only the installed packages.

Command to list available packages.

A quick comparison of how many packages are installed vs available.

You should see roughly 623 packages installed compared to 4759 available for installation.

Last, let us identify packages that are installed but do not belong to any known repository. Meaning, someone downloaded and installed it manually.

Command to list a specific package.

Let us get some detailed information about this package.

Installing a package is simple. (The "-y" tells dnf to answer "yes" to any "are you sure" questions.)

Installing multiple packages from a single command is also easy.

Some of the pacakges listed above were likely already installed on the host, thus the ouput may have been very underwhelming. This set of packages is collectively known as the traditional LAMP stack: Linux, Apache, MySQL and PHP.

To remove a package from the system you can run dnf as follows.

To upgrade packages on a host you use the 'upgrade' operand. For the purposes of this lab, we don’t want to use up your time performing an actaul upgrade. However, there is something to be learned by performing a dry-run (or a harmless test).

From this output, we can determine that 56 packages were evaluated for the upgrade and that all the transaction tests completed. As part of the test, the software was also downloaded and staged in the cache directories in /var/lib. Thus when the time comes to actaully install the upgrades, you can save that initial download time by running a test like this in advance.

RHEL 10 is still very early in its life (we may still be using the BETA for this lab). Here we see that there are no security updates currently available for our release.

Performs cleanup of temporary files kept for repositories. This includes any such data left behind from disabled or removed repositories as well as for different distribution release versions.

dnf is not tasked with understanding what packages may require a reboot in order to complete an installation or upgrade.

To answer "when?" really requires a deep understanding of how Linux works. The "safe" answer is always, but that certainly is not practical nor a reality.

Advanced technologies like 'kpatch' were developed in order to improve the security response without ALWAYS requiring a reboot. Even then, with kpatch one cannot SKIP a reboot, one can only DELAY the reboot. More about that in the advanced kpatch unit.

This concludes the first exercises related to dnf.

Time to finish this unit and return the shell to its home position.