Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.
RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.

Bug 2214178

Summary: Unable to verify checksum of the image in latest centos7 image
Product: Red Hat Enterprise Linux 7 Reporter: Delyan Yanev <delyan.yanev>
Component: distributionAssignee: Adam Samalik <asamalik>
Status: CLOSED CURRENTRELEASE QA Contact: Release Test Team <release-test-team-automation>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 7.9CC: jhughes, jwboyer, tdawson
Target Milestone: rcFlags: pm-rhel: mirror+
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2023-06-30 13:07:18 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Delyan Yanev 2023-06-12 08:03:48 UTC 
Description of problem:

Although there are "latest" image for CentOS 7 images (e.g. https://cloud.centos.org/centos/7/images/CentOS-7-x86_64-GenericCloud.qcow2) there is no checksum of the latest image into checksum file https://cloud.centos.org/centos/7/images/sha256sum.txt.
Instead they contain check-sums of "version" files.

For example, the https://cloud.centos.org/centos/7/images/sha256sum.txt file has the following content:

    1db30c9c272fb37b00111b93dcebff16c278384755bdbe158559e9c240b73b80  CentOS-7-x86_64-GenericCloud-2003.qcow2
b7555ecf90b24111f2efbc03c1e80f7b38f1e1fc7e1b15d8fee277d1a4575e87  CentOS-7-x86_64-GenericCloud-2003.qcow2c
963866edac9150db8b5c04df9ae80273a11eec6218f114cbb96cb4b53e33803c  CentOS-7-x86_64-GenericCloud-2003.qcow2.xz
100e0fd9ffde6259fa9156090bf11258124a6ade8c91ea6f43cb47cca07f7b0e  CentOS-7-x86_64-GenericCloud-2003.raw.tar.gz
51c0222aa4bc7d966fc044eb6ce9182993a1dc398eaa595e58abd0d361439baf  CentOS-7-aarch64-GenericCloud-2009.qcow2
f08fde34542218e8750a8655001a31489b0e9fe7ecd15aca28cb121e4e9d7121  CentOS-7-aarch64-GenericCloud-2009.qcow2c
4e8c53386406efea88c3c5d2b0b6df123a3a4cd37dc868921c706a003cc2ae34  CentOS-7-ppc64le-GenericCloud-2009.qcow2
ec97bb60d0c962a78730ea55f4dbb930a1e3d4a9eb880c4177d0ebd99aa70c18  CentOS-7-ppc64le-GenericCloud-2009.qcow2c
e38bab0475cc6d004d2e17015969c659e5a308111851b0e2715e84646035bdd3  CentOS-7-x86_64-GenericCloud-2009.qcow2
7ba4513d96591496213a07bbe25e3eb643d61491924c8548a91815b420fd9827  CentOS-7-x86_64-GenericCloud-2009.qcow2c

so it can't be used to verify the latest CentOS-7-x86_64-GenericCloud.qcow2 file.

Version-Release number of selected component (if applicable):

CentOS 7

How reproducible:


Steps to Reproduce:
1. Download the https://cloud.centos.org/centos/7/images/CentOS-7-x86_64-GenericCloud.qcow2 file
2. Download the https://cloud.centos.org/centos/7/images/sha256sum.txt file
3. Run the following command:
   sha256sum -c CHECKSUM

Actual results:

It fails with the following output:

Expected results:

It should pass the check:

    CentOS-7-x86_64-GenericCloud.qcow2: OK

Additional info:

We cannot verify the content and use the latest image
Comment 3 Adam Samalik 2023-06-15 10:28:16 UTC 
Please see my answer in https://bugzilla.redhat.com/show_bug.cgi?id=2214169 it applies here as well.
Comment 4 Delyan Yanev 2023-06-15 10:44:33 UTC 
This workaround is not very useful in the CI/CD cycle because we need to use the "latest" static image name and if the content of the checksum and name of the image is not part of the checksum files the verification will failed with "No such file or directory".
Comment 5 Delyan Yanev 2023-06-20 10:13:25 UTC 
@Troy Dawson Could you implement fix as you will do that in case 2214169
Comment 6 Troy Dawson 2023-06-20 17:04:24 UTC 
I have no access to the CentOS Linux 7 release process and infrastructure.  So no.
I'm not saying this won't get fixed.  But it won't be by me.
Comment 7 Delyan Yanev 2023-06-29 06:33:00 UTC 
Could you route the ticket to the right team and person. Thank you in advance.
Comment 8 Johnny Hughes 2023-06-29 15:02:24 UTC 
Latest is just a symlink to the last created package.  I can certainly add that to the file // I doubt we will generate any other CentOS-7 images there anyway.

I'll update momentarily.
Comment 9 Johnny Hughes 2023-06-29 15:44:47 UTC 
The un-versioned sha256sums have been added to the master server, this should now work, once the stand rsyncs to mirrors happen (approximately 30 mins from now).  Lets us know if everything is working as planned now.
Comment 10 Delyan Yanev 2023-06-30 09:38:58 UTC 
Everything works as expected. You can close the case. Thanks you very much for your support.