From d762e16bd4f5a57811853832c100a743936f8e2b Mon Sep 17 00:00:00 2001 From: Matt Buechler Date: Thu, 27 Feb 2025 12:33:18 +0000 Subject: [PATCH] Lock Podman major version --- .../cloud-enterprise/configure-host-rhel-cloud.md | 14 +++++++++++--- .../cloud-enterprise/configure-host-rhel-onprem.md | 14 +++++++++++--- .../migrate-ece-to-podman-hosts.md | 14 +++++++++++--- 3 files changed, 33 insertions(+), 9 deletions(-) diff --git a/deploy-manage/deploy/cloud-enterprise/configure-host-rhel-cloud.md b/deploy-manage/deploy/cloud-enterprise/configure-host-rhel-cloud.md index bef34bece..99410a9f1 100644 --- a/deploy-manage/deploy/cloud-enterprise/configure-host-rhel-cloud.md +++ b/deploy-manage/deploy/cloud-enterprise/configure-host-rhel-cloud.md @@ -72,16 +72,24 @@ Verify that required traffic is allowed. Check the [Networking prerequisites](ec 4. Install podman: - * For RHEL 8 and Rocky Linux, install version `4.*`. + * Install the latest available version `4.*` using dnf. ```sh sudo dnf install podman-4.* podman-remote-4.* ``` - * For RHEL 9, install the latest available version `4.*` using dnf. + * To prevent automatic Podman major version updates, configure the Podman version to be locked while still allowing minor and patch updates. ```sh - sudo dnf install podman-4.* podman-remote-4.* + ## Install versionlock + sudo dnf install 'dnf-command(versionlock)' + + ## Lock major version + sudo dnf versionlock add --raw 'podman-4.*' + sudo dnf versionlock add --raw 'podman-remote-4.*' + + ## Verify that podman-4.* and podman-remote-4.* appear in the output + sudo dnf versionlock list ``` 5. [This step is for RHEL 9 and Rocky Linux 9 only] Switch the network stack from Netavark to CNI: diff --git a/deploy-manage/deploy/cloud-enterprise/configure-host-rhel-onprem.md b/deploy-manage/deploy/cloud-enterprise/configure-host-rhel-onprem.md index 9272d2dc5..cf3a64ff1 100644 --- a/deploy-manage/deploy/cloud-enterprise/configure-host-rhel-onprem.md +++ b/deploy-manage/deploy/cloud-enterprise/configure-host-rhel-onprem.md @@ -70,16 +70,24 @@ Verify that required traffic is allowed. 4. Install podman: - * For RHEL 8 and Rocky Linux, install version `4.*`. + * Install the latest available version `4.*` using dnf. ```sh sudo dnf install podman-4.* podman-remote-4.* ``` - * For RHEL 9, install the latest available version `4.*` using dnf. + * To prevent automatic Podman major version updates, configure the Podman version to be locked while still allowing minor and patch updates. ```sh - sudo dnf install podman-4.* podman-remote-4.* + ## Install versionlock + sudo dnf install 'dnf-command(versionlock)' + + ## Lock major version + sudo dnf versionlock add --raw 'podman-4.*' + sudo dnf versionlock add --raw 'podman-remote-4.*' + + ## Verify that podman-4.* and podman-remote-4.* appear in the output + sudo dnf versionlock list ``` 5. [This step is for RHEL 9 and Rocky Linux 9 only] Switch the network stack from Netavark to CNI: diff --git a/deploy-manage/deploy/cloud-enterprise/migrate-ece-to-podman-hosts.md b/deploy-manage/deploy/cloud-enterprise/migrate-ece-to-podman-hosts.md index 8867cc8f5..95e5ed343 100644 --- a/deploy-manage/deploy/cloud-enterprise/migrate-ece-to-podman-hosts.md +++ b/deploy-manage/deploy/cloud-enterprise/migrate-ece-to-podman-hosts.md @@ -111,16 +111,24 @@ Otherwise, when the file content changes, the corresponding user is mentioned as 4. Install podman: - * For RHEL 8 and Rocky Linux, install version `4.*`. + * Install the latest available version `4.*` using dnf. ```sh sudo dnf install podman-4.* podman-remote-4.* ``` - * For RHEL 9, install the latest available version `4.*` using dnf. + * To prevent automatic Podman major version updates, configure the Podman version to be locked while still allowing minor and patch updates. ```sh - sudo dnf install podman-4.* podman-remote-4.* + ## Install versionlock + sudo dnf install 'dnf-command(versionlock)' + + ## Lock major version + sudo dnf versionlock add --raw 'podman-4.*' + sudo dnf versionlock add --raw 'podman-remote-4.*' + + ## Verify that podman-4.* and podman-remote-4.* appear in the output + sudo dnf versionlock list ``` 5. [This step is for RHEL 9 and Rocky Linux 9 only] Switch the network stack from Netavark to CNI: