You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@airflow.apache.org by ka...@apache.org on 2021/03/10 00:17:02 UTC
[airflow] branch v1-10-test updated (bfa85d8 -> a65c1b9)
This is an automated email from the ASF dual-hosted git repository.
kaxilnaik pushed a change to branch v1-10-test
in repository https://gitbox.apache.org/repos/asf/airflow.git.
from bfa85d8 Make rbac_app's db.session use the same timezone with @provide_session (#14025)
new 0710c79 Sign release files with an apache.org key by default (#12241)
new a65c1b9 Change the format for sha512 sum for releases (#12867)
The 2 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
dev/sign.sh | 8 ++++++--
1 file changed, 6 insertions(+), 2 deletions(-)
[airflow] 02/02: Change the format for sha512 sum for releases
(#12867)
Posted by ka...@apache.org.
This is an automated email from the ASF dual-hosted git repository.
kaxilnaik pushed a commit to branch v1-10-test
in repository https://gitbox.apache.org/repos/asf/airflow.git
commit a65c1b93724b365135f455271e6d7d60478008c2
Author: Kaxil Naik <ka...@gmail.com>
AuthorDate: Sun Dec 6 23:46:06 2020 +0000
Change the format for sha512 sum for releases (#12867)
closes https://github.com/apache/airflow/issues/12832
This format is popular and supported by tools like Ansible.
```
❯ sha512sum ../airflow-dev/1.10.14rc3/apache-airflow-1.10.14rc3-bin.tar.gz
953d3c04ee6fd2fa96e126750e642fc0872add96d180901440a91bd61c494a711b48836c634d93dcb181006935772556d5b4426671bf1a638f0a0698b51b119f ../airflow-dev/1.10.14rc3/apache-airflow-1.10.14rc3-bin.tar.gz
```
vs
```
❯ gpg --print-md SHA512 ../airflow-dev/1.10.14rc3/apache-airflow-1.10.14rc3-bin.tar.gz
../airflow-dev/1.10.14rc3/apache-airflow-1.10.14rc3-bin.tar.gz:
953D3C04 EE6FD2FA 96E12675 0E642FC0 872ADD96 D1809014 40A91BD6 1C494A71 1B48836C
634D93DC B1810069 35772556 D5B44266 71BF1A63 8F0A0698 B51B119F
```
(cherry picked from commit a00f25011fc6c859b27b6c78b9201880cf6323ce)
---
dev/sign.sh | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/dev/sign.sh b/dev/sign.sh
index a809fc6..a1b6916 100755
--- a/dev/sign.sh
+++ b/dev/sign.sh
@@ -30,5 +30,5 @@ SIGN_WITH="${SIGN_WITH:-apache.org}"
for name in "${@}"
do
gpg --armor --local-user "$SIGN_WITH" --output "${name}.asc" --detach-sig "${name}"
- gpg --print-md SHA512 "${name}" > "${name}.sha512"
+ shasum -a 512 "${name}" > "${name}.sha512"
done
[airflow] 01/02: Sign release files with an apache.org key by
default (#12241)
Posted by ka...@apache.org.
This is an automated email from the ASF dual-hosted git repository.
kaxilnaik pushed a commit to branch v1-10-test
in repository https://gitbox.apache.org/repos/asf/airflow.git
commit 0710c7929a682db926959c3356fb62899fb54b07
Author: Ash Berlin-Taylor <as...@firemirror.com>
AuthorDate: Tue Nov 10 11:26:48 2020 +0000
Sign release files with an apache.org key by default (#12241)
If you have more than a single private key in your GPG trust store, gpg
will use the first one, which for me is not right.
This changes the script to by default use any key with `apache.org` in
the name. This is a patch I've been carrying locally for about 8
releases now :D
(cherry picked from commit 3ab5828142b8ae786556867552d92e7e61ae2fb1)
---
dev/sign.sh | 6 +++++-
1 file changed, 5 insertions(+), 1 deletion(-)
diff --git a/dev/sign.sh b/dev/sign.sh
index cd805b5..a809fc6 100755
--- a/dev/sign.sh
+++ b/dev/sign.sh
@@ -23,8 +23,12 @@ set -euo pipefail
# you will still be required to type in your signing key password
# or it needs to be available in your keychain
+# Which key to sign releases with? This can be a (partial) email address or a
+# key id. By default use any apache.org key
+SIGN_WITH="${SIGN_WITH:-apache.org}"
+
for name in "${@}"
do
- gpg --armor --output "${name}.asc" --detach-sig "${name}"
+ gpg --armor --local-user "$SIGN_WITH" --output "${name}.asc" --detach-sig "${name}"
gpg --print-md SHA512 "${name}" > "${name}.sha512"
done