RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.
Bug 2152026 - podman: ubi8 sticky bit removed from /tmp [rhel-9.1.0.z]
Summary: podman: ubi8 sticky bit removed from /tmp [rhel-9.1.0.z]
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Linux 9
Classification: Red Hat
Component: podman
Version: 9.2
Hardware: x86_64
OS: Linux
unspecified
high
Target Milestone: rc
: ---
Assignee: Jindrich Novy
QA Contact: Joy Pu
URL:
Whiteboard:
Depends On: 2152023
Blocks:
TreeView+ depends on / blocked
 
Reported: 2022-12-08 23:13 UTC by RHEL Program Management Team
Modified: 2023-01-23 15:22 UTC (History)
21 users (show)

Fixed In Version: podman-4.2.0-9.el9_1
Doc Type: If docs needed, set a value
Doc Text:
Clone Of: 2152023
Environment:
Last Closed: 2023-01-23 15:18:25 UTC
Type: ---
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Github containers podman pull 16802 0 None Merged [v4.2-rhel] Bump Buildah to v1.27.3 2022-12-12 10:58:03 UTC
Red Hat Issue Tracker RHELPLAN-141730 0 None None None 2022-12-08 23:15:28 UTC
Red Hat Product Errata RHBA-2023:0314 0 None None None 2023-01-23 15:18:35 UTC

Comment 2 Tom Sweeney 2022-12-09 22:17:24 UTC 
PR with fix: https://github.com/containers/podman/pull/16802

Setting to Post and assigning to @jnovy for any further packaging and BZ needs.
Comment 6 Joy Pu 2022-12-19 09:48:38 UTC 
Test with podman-4.2.0-9.el9_1.x86_64, the t flag still exist in the build image. So move this to verified:
[root@ibm-x3650m4-01-vm-07 test]# podman build -t test .
STEP 1/23: FROM scratch
STEP 2/23: ADD rhel-base-fs-container-8.6-2480.x86_64.tar.gz /
--> 9b0605ae60f
STEP 3/23: ADD tls-ca-bundle.pem /tmp/tls-ca-bundle.pem
--> 86ca79fdd1b
STEP 4/23: ADD atomic-reactor-repos/* /etc/yum.repos.d/
--> f9c1348ccc0
STEP 5/23: LABEL maintainer="Red Hat, Inc."
--> 5ee4925d9fb
STEP 6/23: LABEL com.redhat.component="ubi8-container"       name="ubi8"       version="8.6"
--> 006dea1fe93
STEP 7/23: LABEL com.redhat.license_terms="https://www.redhat.com/en/about/red-hat-end-user-license-agreements#UBI"
--> 4ba84716c09
STEP 8/23: LABEL summary="Provides the latest release of Red Hat Universal Base Image 8."
--> 93491a7cbeb
STEP 9/23: LABEL description="The Universal Base Image is designed and engineered to be the base layer for all of your containerized applications, middleware and utilities. This base image is freely redistributable, but Red Hat only supports Red Hat technologies through subscriptions for Red Hat products. This image is maintained by Red Hat and updated regularly."
--> 8b92ba3804f
STEP 10/23: LABEL io.k8s.display-name="Red Hat Universal Base Image 8"
--> aeecfdad164
STEP 11/23: LABEL io.openshift.expose-services=""
--> 411f584fbb5
STEP 12/23: LABEL io.openshift.tags="base rhel8"
--> 97f291c42c1
STEP 13/23: ENV container oci
--> 7cc86b94e5b
STEP 14/23: ENV PATH /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
--> dd38a848ede
STEP 15/23: CMD ["/bin/bash"]
--> 2f30a37c6ad
STEP 16/23: RUN rm -rf /var/log/*
--> a3d19066eed
STEP 17/23: RUN mkdir -p /var/log/rhsm
--> f97a29352ee
STEP 18/23: LABEL release=1054
--> dbb7ad0ac44
STEP 19/23: ADD ubi8-container-8.6-1054.json /root/buildinfo/content_manifests/ubi8-container-8.6-1054.json
--> 03ed50f6bda
STEP 20/23: ADD Dockerfile-ubi8-8.6-1054 /root/buildinfo/Dockerfile-ubi8-8.6-1054
--> ec1b1299384
STEP 21/23: LABEL "distribution-scope"="public" "vendor"="Red Hat, Inc." "build-date"="2022-12-19T02:04:53" "architecture"="x86_64" "vcs-type"="git" "vcs-ref"="f1ee6e37554363ec55e0035aba1a693d3627fdeb" "io.k8s.description"="The Universal Base Image is designed and engineered to be the base layer for all of your containerized applications, middleware and utilities. This base image is freely redistributable, but Red Hat only supports Red Hat technologies through subscriptions for Red Hat products. This image is maintained by Red Hat and updated regularly." "url"="https://access.redhat.com/containers/#/registry.access.redhat.com/ubi8/images/8.6-1054"
--> 9778ec795b8
STEP 22/23: RUN rm -f '/etc/yum.repos.d/beaker-AppStream.repo'
--> 40b554d1d63
STEP 23/23: RUN rm -f /tmp/tls-ca-bundle.pem
COMMIT test
--> 6d592c3624f
Successfully tagged localhost/test:latest
6d592c3624f7345a8f25149018f7c44b14f54af892a0888ddf77d0b882b12dd5
[root@ibm-x3650m4-01-vm-07 test]# podman run test ls -ld /tmp
drwxrwxrwt. 1 root root 31 Dec 19 09:20 /tmp
Comment 12 errata-xmlrpc 2023-01-23 15:18:25 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (podman bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2023:0314
Note You need to log in before you can comment on or make changes to this bug.