Recommended update for libcontainers-common

Announcement ID: SUSE-RU-2023:1786-1
Rating: moderate
References:
Affected Products:
  • openSUSE Leap 15.3
  • SUSE Enterprise Storage 7.1
  • SUSE Linux Enterprise High Performance Computing 15 SP3
  • SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3
  • SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
  • SUSE Linux Enterprise Micro 5.1
  • SUSE Linux Enterprise Micro 5.2
  • SUSE Linux Enterprise Micro for Rancher 5.2
  • SUSE Linux Enterprise Real Time 15 SP3
  • SUSE Linux Enterprise Server 15 SP3
  • SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
  • SUSE Linux Enterprise Server for SAP Applications 15 SP3
  • SUSE Manager Proxy 4.2
  • SUSE Manager Retail Branch Server 4.2
  • SUSE Manager Server 4.2

An update that contains two features and has seven fixes can now be installed.

Description:

This update for libcontainers-common fixes the following issues:

  • Add registry.suse.com to the unqualified-search-registries (bsc#1205536)
  • New upstream release 20230214
  • bump c/storage to 1.45.3
  • bump c/image to 5.24.1
  • bump c/common to 0.51.0
  • containers.conf:
  • add commented out options containers.read_only, engine.platform_to_oci_runtime, engine.events_container_create_inspect_data, network.volume_plugin_timeout, engine.runtimes.youki, machine.provider
  • remove deprecated setting containers.userns_size
  • add youki to engine.runtime_supports_json
  • shortnames.conf: pull in latest upstream version
  • storage.conf: add commented out option storage.transient_store
  • correct license to APACHE-2.0
  • Changes introduced to c/storage's storage.conf which adds a driver_priority attribute would break consumers of libcontainer-common as long as those packages are vendoring an older c/storage version. (bsc#1207509)
  • storage.conf: Unset 'driver' and set 'driver_priority' to allow podman to use 'btrfs' if available and fallback to 'overlay' if not.
  • .spec: rm %post script to set 'btrfs' as storage driver in storage.conf
  • Remove registry.suse.com from search unqualified-search-registries
  • add requires on util-linux-systemd for findmnt in profile script
  • only set storage_driver env when no libpod exists
  • add container-storage-driver.sh (bsc#1197093)
  • postinstall script: slight cleanup, no functional change
  • set detached sigstore attachments for the SUSE controlled registries
  • Fix obvious typo in containers.conf
  • Resync containers.conf / storage.conf with Fedora
  • Create /etc/containers/registries.conf.d and add 000-shortnames.conf to it.
  • Use $() again in %post, but with a space for POSIX compliance
  • Add missing Requires(post): sed (bsc#1200524)
  • Make %post compatible with dash
  • Switch registries.conf to v2 format
  • Reintroduce SLE specific mounts config, to avoid errors on non-SLE systems
  • Require util-linux-systemd for %post scripts (bsc#1182998, jsc#SLE-12122, bsc#1175821)
  • Update default registry (bsc#1171578)

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

  • openSUSE Leap 15.3
    zypper in -t patch SUSE-2023-1786=1
  • SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3
    zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-ESPOS-2023-1786=1
  • SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
    zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2023-1786=1
  • SUSE Linux Enterprise Real Time 15 SP3
    zypper in -t patch SUSE-SLE-Product-RT-15-SP3-2023-1786=1
  • SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
    zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2023-1786=1
  • SUSE Linux Enterprise Server for SAP Applications 15 SP3
    zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2023-1786=1
  • SUSE Manager Proxy 4.2
    zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.2-2023-1786=1
  • SUSE Manager Retail Branch Server 4.2
    zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.2-2023-1786=1
  • SUSE Manager Server 4.2
    zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.2-2023-1786=1
  • SUSE Enterprise Storage 7.1
    zypper in -t patch SUSE-Storage-7.1-2023-1786=1
  • SUSE Linux Enterprise Micro 5.1
    zypper in -t patch SUSE-SUSE-MicroOS-5.1-2023-1786=1
  • SUSE Linux Enterprise Micro 5.2
    zypper in -t patch SUSE-SUSE-MicroOS-5.2-2023-1786=1
  • SUSE Linux Enterprise Micro for Rancher 5.2
    zypper in -t patch SUSE-SUSE-MicroOS-5.2-2023-1786=1

Package List:

  • openSUSE Leap 15.3 (noarch)
    • libcontainers-common-20230214-150300.8.8.2
  • SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (noarch)
    • libcontainers-common-20230214-150300.8.8.2
  • SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch)
    • libcontainers-common-20230214-150300.8.8.2
  • SUSE Linux Enterprise Real Time 15 SP3 (noarch)
    • libcontainers-common-20230214-150300.8.8.2
  • SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch)
    • libcontainers-common-20230214-150300.8.8.2
  • SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch)
    • libcontainers-common-20230214-150300.8.8.2
  • SUSE Manager Proxy 4.2 (noarch)
    • libcontainers-common-20230214-150300.8.8.2
  • SUSE Manager Retail Branch Server 4.2 (noarch)
    • libcontainers-common-20230214-150300.8.8.2
  • SUSE Manager Server 4.2 (noarch)
    • libcontainers-common-20230214-150300.8.8.2
  • SUSE Enterprise Storage 7.1 (noarch)
    • libcontainers-common-20230214-150300.8.8.2
  • SUSE Linux Enterprise Micro 5.1 (noarch)
    • libcontainers-common-20230214-150300.8.8.2
  • SUSE Linux Enterprise Micro 5.2 (noarch)
    • libcontainers-common-20230214-150300.8.8.2
  • SUSE Linux Enterprise Micro for Rancher 5.2 (noarch)
    • libcontainers-common-20230214-150300.8.8.2

References: