Bug 2092798

Summary: podman installation includes runc as a dependency
Product: Red Hat Enterprise Linux 9 Reporter: Suhaas Bhat <subhat>
Component: podmanAssignee: Jindrich Novy <jnovy>
Status: CLOSED ERRATA QA Contact: Joy Pu <ypu>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 9.0CC: bbaude, dwalsh, jnovy, lsm5, mheon, pthomas, tsweeney, umohnani, ypu
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: podman-4.1.0-4.el9 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2022-11-15 09:51:14 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Suhaas Bhat 2022-06-02 09:30:01 UTC 
Description of problem:
Since crun is the default runtime on RHEL 9 podman still ensures that runc is a dependency while installing podman

Version-Release number of selected component (if applicable):
podman-4.x

How reproducible:
Fully

Steps to Reproduce:
# dnf repoquery --requires podman|grep run
Last metadata expiration check: 0:08:46 ago on Fri May 30 22:29:33 2022.
oci-runtime
runc >= 1.0.0-57

Actual results:
Shows runc as a dependency

Expected results:
Remove runc as a dependency

Additional info:
https://github.com/containers/podman/discussions/14307
Comment 1 Jindrich Novy 2022-06-02 09:44:27 UTC 
podman-4.1.0-4.el9 patches the spec file like this:

-Requires: runc >= 1.0.0-57
+Recommends: crun
Comment 3 Joy Pu 2022-06-06 12:07:41 UTC 
Checked with podman-4.1.0-4.el9.src.rpm and the spec file already updated:
# grep run rpmbuild/SPECS/podman.spec 
Recommends: crun
Requires: oci-runtime
Most %{name} commands can be run as a regular user, without requiring
%{_userunitdir}/*.service
%{_userunitdir}/*.socket
%{_userunitdir}/*.timer
- don't require runc and Recommends: crun
- revert previous change and run `set_build_flags` before the build process
- require oci-runtime to assure either crun or runc is pulled in via
[root@sweetpig-9 ~]# 
So set tested flag.
Comment 7 Joy Pu 2022-06-20 09:00:29 UTC 
checked with podman 4.1.1-1.el9 and it works as expected:
#  dnf repoquery --requires podman|grep run
Last metadata expiration check: 0:35:31 ago on Mon 20 Jun 2022 01:51:38 PM IST.
oci-runtime
Comment 9 errata-xmlrpc 2022-11-15 09:51:14 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: podman security and bug fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2022:7954