[GitHub] [hbase] saintstack commented on a change in pull request #2754: HBASE-25375 Provide a VM-based release environment

GitBox Tue, 05 Jan 2021 17:54:32 -0800


saintstack commented on a change in pull request #2754:
URL: https://github.com/apache/hbase/pull/2754#discussion_r552308847




##########
File path: dev-support/release-vm/README.md
##########
@@ -0,0 +1,63 @@
+# HBase Release Env
+
+This is a vagrant project that provides a virtual machine environment suitable
+for running an Apache HBase release.
+
+Requires:
+* VirtualBox
+* Vagrant
+* The private portion of your signing key avilable in the local GPG agent
+* The private portion of your Github authentication key available in the local 
GPG agent
+
+## Usage
+
+Unlock the local keyring before proceeding (this should prompt you for your 
GPG passphrase). For
+example, assuming you have an authentication key configured in your keyring, 
this will do the
+trick.
+
+```sh
+$ ssh -T g...@github.com
+Hi <you>! You've successfully authenticated, but GitHub does not provide shell 
access.
+```
+
+Export the public portion of your signing credentials where the guest VM can 
access it,
+
+```sh
+$ gpg --export <you>@apache.org > gpg.<you>.apache.pub

Review comment:
       I think whats missing here is that the cwd is ./release-vm so the .pub 
is in an importable location and the vagrant up just works?

##########
File path: dev-support/release-vm/README.md
##########
@@ -0,0 +1,63 @@
+# HBase Release Env
+
+This is a vagrant project that provides a virtual machine environment suitable
+for running an Apache HBase release.
+
+Requires:
+* VirtualBox
+* Vagrant
+* The private portion of your signing key avilable in the local GPG agent
+* The private portion of your Github authentication key available in the local 
GPG agent
+
+## Usage
+
+Unlock the local keyring before proceeding (this should prompt you for your 
GPG passphrase). For
+example, assuming you have an authentication key configured in your keyring, 
this will do the
+trick.
+
+```sh
+$ ssh -T g...@github.com
+Hi <you>! You've successfully authenticated, but GitHub does not provide shell 
access.
+```
+
+Export the public portion of your signing credentials where the guest VM can 
access it,
+
+```sh
+$ gpg --export <you>@apache.org > gpg.<you>.apache.pub
+```
+
+Launch the VM
+
+```sh
+$ vagrant up
+```
+
+Connect to the VM. This should forward your ssh- and gpg-agent session.
+
+```sh
+$ vagrant ssh
+```
+
+Now from the VM, import your identity and verify the gpg-agent passthrough is 
working correctly.
+
+```sh
+$ gpg --no-autostart --import /vagrant/gpg.<you>.apache.pub
+...
+gpg: Total number processed: 1
+gpg:               imported: 1
+$ gpg --no-autostart --detach --armor --sign repos/hbase/pom.xml
+$ gpg --no-autostart --verify repos/hbase/pom.xml.asc
+gpg: assuming signed data in 'repos/hbase/pom.xml'
+...
+$ ssh -T g...@github.com

Review comment:
       Just to launch ssh agent? I need it?

##########
File path: dev-support/release-vm/README.md
##########
@@ -0,0 +1,63 @@
+# HBase Release Env
+
+This is a vagrant project that provides a virtual machine environment suitable
+for running an Apache HBase release.
+
+Requires:
+* VirtualBox
+* Vagrant
+* The private portion of your signing key avilable in the local GPG agent
+* The private portion of your Github authentication key available in the local 
GPG agent
+
+## Usage
+
+Unlock the local keyring before proceeding (this should prompt you for your 
GPG passphrase). For
+example, assuming you have an authentication key configured in your keyring, 
this will do the
+trick.
+
+```sh
+$ ssh -T g...@github.com
+Hi <you>! You've successfully authenticated, but GitHub does not provide shell 
access.
+```
+
+Export the public portion of your signing credentials where the guest VM can 
access it,
+
+```sh
+$ gpg --export <you>@apache.org > gpg.<you>.apache.pub
+```
+
+Launch the VM
+
+```sh
+$ vagrant up
+```
+
+Connect to the VM. This should forward your ssh- and gpg-agent session.
+
+```sh
+$ vagrant ssh
+```
+
+Now from the VM, import your identity and verify the gpg-agent passthrough is 
working correctly.
+
+```sh
+$ gpg --no-autostart --import /vagrant/gpg.<you>.apache.pub
+...
+gpg: Total number processed: 1
+gpg:               imported: 1
+$ gpg --no-autostart --detach --armor --sign repos/hbase/pom.xml
+$ gpg --no-autostart --verify repos/hbase/pom.xml.asc
+gpg: assuming signed data in 'repos/hbase/pom.xml'
+...
+$ ssh -T g...@github.com

Review comment:
       Why am I doing this?

##########
File path: dev-support/release-vm/README.md
##########
@@ -0,0 +1,63 @@
+# HBase Release Env
+
+This is a vagrant project that provides a virtual machine environment suitable
+for running an Apache HBase release.
+
+Requires:
+* VirtualBox
+* Vagrant
+* The private portion of your signing key avilable in the local GPG agent
+* The private portion of your Github authentication key available in the local 
GPG agent
+
+## Usage
+
+Unlock the local keyring before proceeding (this should prompt you for your 
GPG passphrase). For
+example, assuming you have an authentication key configured in your keyring, 
this will do the
+trick.
+
+```sh
+$ ssh -T g...@github.com
+Hi <you>! You've successfully authenticated, but GitHub does not provide shell 
access.
+```
+
+Export the public portion of your signing credentials where the guest VM can 
access it,
+
+```sh
+$ gpg --export <you>@apache.org > gpg.<you>.apache.pub
+```
+
+Launch the VM
+
+```sh
+$ vagrant up
+```
+
+Connect to the VM. This should forward your ssh- and gpg-agent session.
+
+```sh
+$ vagrant ssh
+```
+
+Now from the VM, import your identity and verify the gpg-agent passthrough is 
working correctly.
+
+```sh
+$ gpg --no-autostart --import /vagrant/gpg.<you>.apache.pub
+...
+gpg: Total number processed: 1
+gpg:               imported: 1
+$ gpg --no-autostart --detach --armor --sign repos/hbase/pom.xml

Review comment:
       Signing a new file, I did not have to provide my password... which is 
good. I have a vm up that does not have my private key which is good.....

##########
File path: dev-support/release-vm/README.md
##########
@@ -0,0 +1,63 @@
+# HBase Release Env
+
+This is a vagrant project that provides a virtual machine environment suitable
+for running an Apache HBase release.
+
+Requires:
+* VirtualBox
+* Vagrant
+* The private portion of your signing key avilable in the local GPG agent
+* The private portion of your Github authentication key available in the local 
GPG agent
+
+## Usage
+
+Unlock the local keyring before proceeding (this should prompt you for your 
GPG passphrase). For
+example, assuming you have an authentication key configured in your keyring, 
this will do the
+trick.
+
+```sh
+$ ssh -T g...@github.com
+Hi <you>! You've successfully authenticated, but GitHub does not provide shell 
access.
+```
+
+Export the public portion of your signing credentials where the guest VM can 
access it,
+
+```sh
+$ gpg --export <you>@apache.org > gpg.<you>.apache.pub
+```
+
+Launch the VM
+
+```sh
+$ vagrant up
+```
+
+Connect to the VM. This should forward your ssh- and gpg-agent session.
+
+```sh
+$ vagrant ssh
+```
+
+Now from the VM, import your identity and verify the gpg-agent passthrough is 
working correctly.
+
+```sh
+$ gpg --no-autostart --import /vagrant/gpg.<you>.apache.pub
+...
+gpg: Total number processed: 1
+gpg:               imported: 1
+$ gpg --no-autostart --detach --armor --sign repos/hbase/pom.xml

Review comment:
       I had to resupply my password for my gpg key here. I didn't expect that. 
I even logged out, reset my gpg agent with 
   
   gpgconf --kill all && gpg-connect-agent /bye
   
   ... signed something off the vm (which required me to fill in my 
password)..... I then did vagrant ssh and had to provide password again.

##########
File path: dev-support/release-vm/README.md
##########
@@ -0,0 +1,63 @@
+# HBase Release Env
+
+This is a vagrant project that provides a virtual machine environment suitable
+for running an Apache HBase release.
+
+Requires:
+* VirtualBox
+* Vagrant
+* The private portion of your signing key avilable in the local GPG agent
+* The private portion of your Github authentication key available in the local 
GPG agent
+
+## Usage
+
+Unlock the local keyring before proceeding (this should prompt you for your 
GPG passphrase). For
+example, assuming you have an authentication key configured in your keyring, 
this will do the
+trick.
+
+```sh
+$ ssh -T g...@github.com
+Hi <you>! You've successfully authenticated, but GitHub does not provide shell 
access.
+```
+
+Export the public portion of your signing credentials where the guest VM can 
access it,
+
+```sh
+$ gpg --export <you>@apache.org > gpg.<you>.apache.pub
+```
+
+Launch the VM
+
+```sh
+$ vagrant up
+```
+
+Connect to the VM. This should forward your ssh- and gpg-agent session.
+
+```sh
+$ vagrant ssh
+```
+
+Now from the VM, import your identity and verify the gpg-agent passthrough is 
working correctly.
+
+```sh
+$ gpg --no-autostart --import /vagrant/gpg.<you>.apache.pub
+...
+gpg: Total number processed: 1
+gpg:               imported: 1
+$ gpg --no-autostart --detach --armor --sign repos/hbase/pom.xml

Review comment:
       I didn't expect to have to reprovide my gpg password if forwarding going 
on.




----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
us...@infra.apache.org

[GitHub] [hbase] saintstack commented on a change in pull request #2754: HBASE-25375 Provide a VM-based release environment

Reply via email to