Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[RPM M2] The signing workflow should have a function to sign the RPM package with OpenSearch Project PGP key #1547

Open
Tracked by #27
peterzhuamazon opened this issue Jan 25, 2022 · 2 comments
Open
Tracked by #27

[RPM M2] The signing workflow should have a function to sign the RPM package with OpenSearch Project PGP key #1547

peterzhuamazon opened this issue Jan 25, 2022 · 2 comments
Assignees
@peterzhuamazon
Labels
rpm technical-debt Additional rework required to improve the existing code

Comments

@peterzhuamazon
Copy link
Member

peterzhuamazon commented Jan 25, 2022
edited
Loading

Tasks Estimate Status Notes Dependencies
Just like the build and the assemble workflow, we need to add a “--distribution” parameter so that the signing workflow can use rpm toolkit to sign RPM packages 3 Not Started    
Add the rpm toolkit call for RPM package to OpenSearch Signer Client, as it is the backend for signing workflow to function correctly 5+ Not Started This requires the internal signer client to be updated to support such feature OpenSearch Signer Client UpdatesAssemble workflow must complete all the changes
Create checksum after signing is completed to ensure the integrity of the package 2 Not Started    
  • Update 20220502:
    • We also need to get staging signed as well, as our promotion workflow will pull from staging and push to production bucket.
@peterzhuamazon peterzhuamazon mentioned this issue Jan 25, 2022
Closed
22 tasks
@peterzhuamazon peterzhuamazon changed the title The signing workflow should have a function to sign the RPM package with OpenSearch Project PGP key [RPM M2] The signing workflow should have a function to sign the RPM package with OpenSearch Project PGP key Feb 21, 2022
@peterzhuamazon
Copy link
Member Author

We are going to manually sign the rpms and yum repo for now.

@peterzhuamazon peterzhuamazon mentioned this issue Apr 20, 2022
Open
@peterzhuamazon
Copy link
Member Author

Temp method:

@bbarani bbarani added the technical-debt Additional rework required to improve the existing code label Jan 10, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@peterzhuamazon peterzhuamazon

Labels
rpm technical-debt Additional rework required to improve the existing code
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@peterzhuamazon @bbarani