Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.

While assessing a problem where Containers were constantly requiring updates due to frequent released kernel CVEs, it was determined that the source of such required updates was the fact that some development-oriented containers required
the install of kernel-headers sub-RPM that also gets rebuilt for CVEs even though most of the time its content doesn't change.

In order to avoid the aforementioned container churn we'll start to provide a pre-calculated hash for the content shipped within kernel-headers sub-RPM which can easily be consumed by Container tooling to determine if relevant content was
updated for new releases and only proceed with Container re-builds if that's really necessary.

From redhat-rpm-config, we need an update to the fileattrs and scripts library directories so these exported content hashes can be grabbed at RPM-build time and exported as Provides: dynamically (similarly to what's done for the symbols checksums via fileattrs/kabi.attr and kabi.sh)

Created attachment 1474006 [details]
Proposed changeset to be included downstream (RHEL) v3

Carlos O'Donell also pointed out that deterministic sorts can only be achieved with LC_ALL=C locale, thus we're forcing LC_ALL=C for the sub-shell running the hashing routine.

The RHEL 8 clone hasn't been approved and implemented yet,
therefore the devel NAK is still valid.

Considering this is an RFE, there's almost no chance to get it fixed in 7.8 and later.
I'm closing the issue WONTFIX.