SHA1 error msgs from 'dnf update' (centos9.x)

Looks like elastic is signing 8.8.x *beat package updates with SHA1. CentOS 9 doesn't support this anymore.

I can bypass it but maybe it's time to update these to something that's supported?

journal is chock full of errors from auditbeat, et al once these are installed.

Importing GPG key 0xD88E42B4:
Userid : "Elasticsearch (Elasticsearch Signing Key)"
Fingerprint: 4609 5ACC 8548 582C 1A26 99A9 D27D 666C D88E 42B4
From :
Is this ok [y/N]: y
warning: Signature not supported. Hash algorithm SHA1 not available.
Key import failed (code 2). Failing package is: packetbeat-8.8.2-1.x86_64
GPG Keys are configured as:
The downloaded packages were saved in cache until the next successful transaction.
You can remove cached packages by executing 'dnf clean packages'.
Error: GPG check FAILED

This is being tracked in rpm --import not working on centOS stream. gives a key import error. · Issue #85876 · elastic/elasticsearch · GitHub.

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.