Uploaded image for project: 'Cassandra'
  1. Cassandra
  2. CASSANDRA-14970

New releases must supply SHA-256 and/or SHA-512 checksums

    XMLWordPrintableJSON

    Details

      Description

      Release policy was updated around 9/2018 to state:

      "For new releases, PMCs MUST supply SHA-256 and/or SHA-512; and SHOULD NOT supply MD5 or SHA-1. Existing releases do not need to be changed."

      build.xml needs to be updated from MD5 & SHA-1 to, at least, SHA-256 or both. cassandra-builds/cassandra-release scripts need to be updated to work with the new checksum files.

      http://www.apache.org/dev/release-distribution#sigs-and-sums

        Attachments

        1. 0001-Update-release-checksum-algorithms-to-SHA-256-SHA-512.patch
          1 kB
          Michael Shuler
        2. 0001-Update-downloads-for-sha256-sha512-checksum-files.patch
          1 kB
          Michael Shuler
        3. ant-publish-checksum-fail.jpg
          399 kB
          Michael Shuler
        4. build_cassandra-2.1.png
          601 kB
          Michael Shuler
        5. build_trunk.png
          777 kB
          Michael Shuler
        6. cassandra-2.1_14970_updated.patch
          8 kB
          Michael Shuler

          Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. CASSANDRA-14963 Release artifacts should be able to be built without being release manager

          • Normal -
          • Open
          relates to

          Bug - A problem which impairs or prevents the functions of the product. CASSANDRA-14962 Package builds should use source tar artifact as "orig"

          • Normal -
          • Open

          Task - A task that needs to be done. CASSANDRA-15541 Add dch release version to debian packages

          • Normal -
          • Resolved

          Task - A task that needs to be done. CASSANDRA-15540 Use the ASF process for packaging and uploading deb files

          • Normal -
          • Triage Needed
          requires

          Improvement - An improvement or enhancement to an existing feature or task. INFRA-14923 Add new SHA-* rules to Nexus staging

          • Major - Major loss of function.
          • Closed

            Activity

              People

              • Assignee:
                mck Michael Semb Wever
                Reporter:
                mshuler Michael Shuler
                Authors:
                Michael Semb Wever
                Reviewers:
                Michael Semb Wever, Michael Shuler
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: