Closed letFunny closed 8 months ago
spread test is failing as expected because of chisel-releases
only having the v1
format at the moment. Error in CI run is (link):
error: chisel.yaml: expected format "chisel-v2", got "chisel-v1"
Agree, those updates are currently in progress as far as I know.
Once approved and before merging, please wait for the corresponding chisel-releases PRs to be merged so that we can re-run the Spread tests
@cjdcordeiro Sure it just caught me by surprise because that was not the plan last time we discussed. I will amend the PRs and timelines to match the new direction.
@cjdcordeiro Sure it just caught me by surprise because that was not the plan last time we discussed. I will amend the PRs and timelines to match the new direction.
Y sry about that @letFunny . I think only #106 would need to be amended though
FYI: note the updated comment above (https://github.com/canonical/chisel/pull/106#pullrequestreview-1782027147) - we shall update the chisel-releases format to v1
instead of chisel-v2
. This will still create the desired disruption while making the versioning terminology clearer between the chisel-releases "format" and chisel tool releases.
According to the new plan:
v1-public-keys
while the format remains chisel-v1
.chisel-v1
and v1
where the difference is that v1-public-keys
becomes public-keys
.v0.9.0
which supports both formats.Y agreed. We'll wait for a coming PR with those changes before releasing v0.9.0
Chisel will download InRelease files instead of Release files, the former being the signed version of the latter. For each archive and its components/suites, the signature in the InRelease file will be verified against the public keys associated with that archive.
These public keys will be stored in the chisel-release chisel.yaml file, as a new top-level property called public-keys. Keys themselves will be stored in ASCII armored format together with their key id. Lastly, the archive definition will reference these public keys by name.
Example chisel.yaml: