Skip to content

Verify download checksums during packaging#9226

Merged
swiatekm merged 2 commits intomainfrom
chore/check-download-checksums
Aug 25, 2025
Merged

Verify download checksums during packaging#9226
swiatekm merged 2 commits intomainfrom
chore/check-download-checksums

Conversation

@swiatekm
Copy link
Copy Markdown
Member

@swiatekm swiatekm commented Aug 1, 2025
edited
Loading

What does this PR do?

It verifies downloaded binaries using checksum files that we already download anyway.

Why is it important?

We ensure we don't accidentally package corrupted binaries.

Checklist

  • I have read and understood the pull request guidelines of this project.
  • My code follows the style guidelines of this project
  • I have commented my code, particularly in hard-to-understand areas
  • [ ] I have made corresponding changes to the documentation
  • [ ] I have made corresponding change to the default configuration files
  • I have added tests that prove my fix is effective or that my feature works
  • [ ] I have added an entry in ./changelog/fragments using the changelog tool
  • [ ] I have added an integration test or an E2E test

How to test this PR locally

Package agent locally. Intentionally corrupting the download requires some fiddling with proxies, unfortunately.

@swiatekm swiatekm added the backport-active-all Automated backport with mergify to all the active branches label Aug 1, 2025
@swiatekm swiatekm force-pushed the chore/check-download-checksums branch from 434306e to 71c6673 Compare August 1, 2025 17:40
@swiatekm swiatekm force-pushed the chore/check-download-checksums branch from 71c6673 to 4b9af7d Compare August 11, 2025 15:23
@swiatekm swiatekm added the chore Tasks that just need to be done, they are neither bug, nor enhancements label Aug 12, 2025
@swiatekm swiatekm force-pushed the chore/check-download-checksums branch from 4b9af7d to 8a9848c Compare August 12, 2025 14:11
@swiatekm swiatekm added the Team:Elastic-Agent-Control-Plane Label for the Agent Control Plane team label Aug 12, 2025
@swiatekm swiatekm marked this pull request as ready for review August 12, 2025 14:11
@swiatekm swiatekm requested a review from a team as a code owner August 12, 2025 14:11
@elasticmachine
Copy link
Copy Markdown
Contributor

elasticmachine commented Aug 12, 2025

Pinging @elastic/elastic-agent-control-plane (Team:Elastic-Agent-Control-Plane)

@elastic-sonarqube
Copy link
Copy Markdown

elastic-sonarqube bot commented Aug 12, 2025

Quality Gate passed Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarQube

@elasticmachine
Copy link
Copy Markdown
Contributor

elasticmachine commented Aug 12, 2025

💚 Build Succeeded

History

cc @swiatekm

michel-laterman
michel-laterman approved these changes Aug 22, 2025
View reviewed changes
Copy link
Copy Markdown
Contributor

@michel-laterman michel-laterman left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM was able to verify that this verifies files in successful build cases.

@swiatekm swiatekm merged commit d5d0175 into main Aug 25, 2025
20 checks passed
@swiatekm swiatekm deleted the chore/check-download-checksums branch August 25, 2025 10:40
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Aug 25, 2025

@Mergifyio backport 8.17 8.18 8.19 9.0 9.1

@mergify
Copy link
Copy Markdown
Contributor

mergify bot commented Aug 25, 2025
edited
Loading

backport 8.17 8.18 8.19 9.0 9.1

✅ Backports have been created

Details

mergify bot pushed a commit that referenced this pull request Aug 25, 2025
@swiatekm @mergify
Verify download checksums during packaging (#9226)
855eac9 
* Verify download checksums

* Add tests for checksum verification

(cherry picked from commit d5d0175)
@mergify mergify bot mentioned this pull request Aug 25, 2025
Merged
4 tasks
mergify bot pushed a commit that referenced this pull request Aug 25, 2025
@swiatekm @mergify
Verify download checksums during packaging (#9226)
35d5a18 
* Verify download checksums

* Add tests for checksum verification

(cherry picked from commit d5d0175)
@mergify mergify bot mentioned this pull request Aug 25, 2025
Merged
4 tasks
mergify bot pushed a commit that referenced this pull request Aug 25, 2025
@swiatekm @mergify
Verify download checksums during packaging (#9226)
e14d24e 
* Verify download checksums

* Add tests for checksum verification

(cherry picked from commit d5d0175)
@mergify mergify bot mentioned this pull request Aug 25, 2025
Merged
4 tasks
mergify bot pushed a commit that referenced this pull request Aug 25, 2025
@swiatekm @mergify
Verify download checksums during packaging (#9226)
d196f77 
* Verify download checksums

* Add tests for checksum verification

(cherry picked from commit d5d0175)
@mergify mergify bot mentioned this pull request Aug 25, 2025
Merged
4 tasks
mergify bot pushed a commit that referenced this pull request Aug 25, 2025
@swiatekm @mergify
Verify download checksums during packaging (#9226)
606dff6 
* Verify download checksums

* Add tests for checksum verification

(cherry picked from commit d5d0175)
@mergify mergify bot mentioned this pull request Aug 25, 2025
Merged
4 tasks
swiatekm added a commit that referenced this pull request Aug 25, 2025
@mergify @swiatekm
Verify download checksums during packaging (#9226) (#9555)
b281d6a 
* Verify download checksums

* Add tests for checksum verification

(cherry picked from commit d5d0175)

Co-authored-by: Mikołaj Świątek <mail@mikolajswiatek.com>
swiatekm added a commit that referenced this pull request Aug 25, 2025
@mergify @swiatekm
Verify download checksums during packaging (#9226) (#9556)
0d4136b 
* Verify download checksums

* Add tests for checksum verification

(cherry picked from commit d5d0175)

Co-authored-by: Mikołaj Świątek <mail@mikolajswiatek.com>
swiatekm added a commit that referenced this pull request Aug 25, 2025
@mergify @swiatekm
Verify download checksums during packaging (#9226) (#9557)
d306a24 
* Verify download checksums

* Add tests for checksum verification

(cherry picked from commit d5d0175)

Co-authored-by: Mikołaj Świątek <mail@mikolajswiatek.com>
swiatekm added a commit that referenced this pull request Aug 25, 2025
@mergify @swiatekm
Verify download checksums during packaging (#9226) (#9558)
6c76d4b 
* Verify download checksums

* Add tests for checksum verification

(cherry picked from commit d5d0175)

Co-authored-by: Mikołaj Świątek <mail@mikolajswiatek.com>
swiatekm added a commit that referenced this pull request Aug 25, 2025
@mergify @swiatekm
Verify download checksums during packaging (#9226) (#9559)
ca4f5c3 
* Verify download checksums

* Add tests for checksum verification

(cherry picked from commit d5d0175)

Co-authored-by: Mikołaj Świątek <mail@mikolajswiatek.com>
kaanyalti pushed a commit to kaanyalti/elastic-agent that referenced this pull request Sep 4, 2025
@swiatekm
Verify download checksums during packaging (elastic#9226)
54d551f 
* Verify download checksums

* Add tests for checksum verification
@swiatekm swiatekm mentioned this pull request Sep 9, 2025
Merged
3 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@michalpristas michalpristas michalpristas approved these changes

@michel-laterman michel-laterman michel-laterman approved these changes

Assignees

@swiatekm swiatekm

Labels

backport-active-all Automated backport with mergify to all the active branches chore Tasks that just need to be done, they are neither bug, nor enhancements skip-changelog Team:Elastic-Agent-Control-Plane Label for the Agent Control Plane team

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@swiatekm @elasticmachine @michalpristas @michel-laterman