Learn more about these different git repos.
Other Git URLs
As discussed on #fedora-buildsys, Copr should use SHA-256 for all chroots (or at least EL9 ones), since currently installing anything from Copr fails on RHEL9/C9S:
# dnf -y install dnf-plugins-core epel-next-release # dnf -y config-manager --enablerepo crb # dnf -y copr enable mrc0mmand/systemd-centos-ci-centos9 centos-stream+epel-next-9-x86_64 # dnf -y install scsi-target-utils Copr repo for systemd-centos-ci-centos9 owned by mrc0mmand 62 kB/s | 56 kB 00:00 Dependencies resolved. ========================================================================================================================================================= Package Architecture Version Repository Size ========================================================================================================================================================= Installing: scsi-target-utils x86_64 1.0.79-6.el9 copr:copr.fedorainfracloud.org:mrc0mmand:systemd-centos-ci-centos9 222 k Installing dependencies: <...snip...> 90/93): perl-vars-1.05-479.el9.noarch.rpm 310 kB/s | 23 kB 00:00 (91/93): perl-podlators-4.14-460.el9.noarch.rpm 434 kB/s | 114 kB 00:00 (92/93): perl-Config-General-2.63-7.el9.noarch.rpm 369 kB/s | 73 kB 00:00 (93/93): perl-libs-5.32.1-479.el9.x86_64.rpm 961 kB/s | 2.2 MB 00:02 --------------------------------------------------------------------------------------------------------------------------------------------------------- Total 1.3 MB/s | 26 MB 00:20 Copr repo for systemd-centos-ci-centos9 owned by mrc0mmand 6.3 kB/s | 1.0 kB 00:00 Importing GPG key 0xCEFF5DD7: Userid : "mrc0mmand_systemd-centos-ci-centos9 (None) <mrc0mmand#systemd-centos-ci-centos9@copr.fedorahosted.org>" Fingerprint: 2A36 4051 61A3 74D3 803C 9924 A74A 46C5 CEFF 5DD7 From : https://download.copr.fedorainfracloud.org/results/mrc0mmand/systemd-centos-ci-centos9/pubkey.gpg Key imported successfully warning: Signature not supported. Hash algorithm SHA1 not available. warning: Signature not supported. Hash algorithm SHA1 not available. Import of key(s) didn't help, wrong key(s)? Extra Packages for Enterprise Linux 9 - x86_64 1.6 MB/s | 1.6 kB 00:00 Importing GPG key 0x3228467C: Userid : "Fedora (epel9) <epel@fedoraproject.org>" Fingerprint: FF8A D134 4597 106E CE81 3B91 8A38 72BF 3228 467C From : /etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-9 Key imported successfully Problem opening package scsi-target-utils-1.0.79-6.el9.x86_64.rpm. Failing package is: scsi-target-utils-1.0.79-6.el9.x86_64 GPG Keys are configured as: https://download.copr.fedorainfracloud.org/results/mrc0mmand/systemd-centos-ci-centos9/pubkey.gpg The downloaded packages were saved in cache until the next successful transaction. You can remove cached packages by executing 'dnf clean packages'. Error: GPG check FAILED
This is with a fresh Copr repo (created on 2022-09-26 ATTOW) in a C9S Podman container. Workarounds exist - tweaking local crypto policies or using --nogpgcheck[0] - but having this working out-of-the-box would be nice.
--nogpgcheck
/cc @praiskup @smooge @frostyx
[0] https://www.redhat.com/en/blog/rhel-security-sha-1-package-signatures-distrusted-rhel-9
Thank you for the report. Fix is in #2320.
Metadata Update from @praiskup: - Issue tagged with: bug
Commit 2ca30cb fixes this issue
Commit 5bef35a fixes this issue
The existing builds were re-signed with sha256. Everything should be installable.
I can confirm installing stuff from Copr centos-stream+epel-next-9-xxx now works correctly, thank you for the quick fix!
centos-stream+epel-next-9-xxx
Log in to comment on this ticket.