Bug 1858333

Summary: sha1 certificate used for RHSM and embedded in RHEL systems
Product: Red Hat Enterprise Linux 8 Reporter: Brian J. Atkisson <batkisso>
Component: redhat-releaseAssignee: Djordje Todorovic <dtodorov>
Status: CLOSED CURRENTRELEASE QA Contact: Release Test Team <release-test-team>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 8.2CC: jwboyer, kwalker, lisas, ssorce, tcullum, tmlcoch
Target Milestone: rc   
Target Release: 8.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2022-09-23 11:38:34 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Comment 1 Lisa S 2020-08-20 21:43:06 UTC 
Djordje, can you check if this ticket was mirrored to RHELBLD Jira like it should be?  It looks to me like it didn't...
Comment 4 Petr Zatko 2020-10-13 06:06:55 UTC 
*** Bug 1887589 has been marked as a duplicate of this bug. ***
Comment 5 Lisa S 2020-10-15 22:07:40 UTC 
@jboyer, can you chime in on your opinion if we need this in any RHEL versions other than 9 at this point?
Comment 9 Josh Boyer 2022-09-23 11:38:34 UTC 
This has been fixed in RHEL 9, and RHEL 8.5 and newer.  Older minor releases of RHEL 8 cannot have their PKI certs updated.

[jwboyer@vader]$ openssl x509 -in /etc/pki/product-default/479.pem -noout -text | grep sha1
[jwboyer@vader]$ openssl x509 -in /etc/pki/product-default/479.pem -noout -text | grep sha256
        Signature Algorithm: sha256WithRSAEncryption
    Signature Algorithm: sha256WithRSAEncryption
[jwboyer@vader]$ cat /etc/os-release 
NAME="Red Hat Enterprise Linux"
VERSION="8.6 (Ootpa)"
ID="rhel"
ID_LIKE="fedora"
VERSION_ID="8.6"
PLATFORM_ID="platform:el8"
PRETTY_NAME="Red Hat Enterprise Linux 8.6 (Ootpa)"
ANSI_COLOR="0;31"
CPE_NAME="cpe:/o:redhat:enterprise_linux:8::baseos"
HOME_URL="https://www.redhat.com/"
DOCUMENTATION_URL="https://access.redhat.com/documentation/red_hat_enterprise_linux/8/"
BUG_REPORT_URL="https://bugzilla.redhat.com/"

REDHAT_BUGZILLA_PRODUCT="Red Hat Enterprise Linux 8"
REDHAT_BUGZILLA_PRODUCT_VERSION=8.6
REDHAT_SUPPORT_PRODUCT="Red Hat Enterprise Linux"
REDHAT_SUPPORT_PRODUCT_VERSION="8.6"
[jwboyer@vader]$