What were you trying to do that didn't work?

Derived container image is not reproducible because of rpmdb.sqlite-shm diff if I install any packages

What is the impact of this issue to you?

Loss reproducible container build feature for derived images which contains rpm package installation

Please provide the package NVR for which the bug is seen:

rpm-4.19.1.1-20.el10

How reproducible is this bug?:

100%

Steps to reproduce

1. Prepare Containerfile which install a package from ubi base image

   FROM registry.stage.redhat.io/ubi10/ubi:10.1
   ARG SOURCE_DATE_EPOCH
   RUN dnf -y install unzip && rm -rf /var/{cache,log} /var/lib/{dnf,rhsm}

1. Build the derived container image twice

   # export SOURCE_DATE_EPOCH=0 
   # buildah bud --no-cache --rewrite-timestamp -f Containerfile -t rhel-test

1. Compare the diff layer

   # diff -rq u1 u2
   Files u1/usr/lib/sysimage/rpm/rpmdb.sqlite-shm and u2/usr/lib/sysimage/rpm/rpmdb.sqlite-shm differ 

Expected results

Generated container images have identical layers if the input is identical

Actual results

rpmdb.sqlite-shm is different

Additional info

Related upstream issue: https://github.com/rpm-software-management/rpm/issues/2219