Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Update encrypted key used for CI access
- Loading branch information
Showing
4 changed files
with
40 additions
and
4 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1 +1 @@ | ||
| 3.1.0-dev.309 | ||
| 3.1.0-dev.313 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,32 @@ | ||
| ========================================= | ||
| Continuous Integration Configuration Info | ||
| ========================================= | ||
|
|
||
| The following pointers are aimed at maintainers to help describe a few points | ||
| about the Cirrus CI setup that may not be obvious/intuitive. | ||
|
|
||
| Private Test Suite | ||
| ------------------ | ||
|
|
||
| Access to the private test suite is available in CI tasks except in Pull | ||
| Requests from people that do not otherwise have write access to the zeek | ||
| repository on GitHub. To configure this access for the | ||
| ``zeek-testing-private`` repository, it uses a "deploy key" which is a single | ||
| purpose SSH key with read-only permissions. Here's how it can be set up: | ||
|
|
||
| 1. ``ssh-keygen -f cirrus-key`` | ||
|
|
||
| 2. Add contents of ``cirrus-key.pub`` as a new key on GitHub: | ||
| https://github.com/zeek/zeek-testing-private/settings/keys | ||
|
|
||
| 3. Generate a new Cirrus CI secured variable in the repository settings at | ||
| https://cirrus-ci.com/github/zeek/zeek. The value of the secured variable | ||
| is the base64-encoded private key, and can be obtained from the output of | ||
| the command: ``base64 cirrus-key``. | ||
|
|
||
| 4. Take the ``ENCRYPTED[...]``` string generated by Cirrus and use that as the | ||
| value of ``ZEEK_TESTING_PRIVATE_SSH_KEY`` in ``.cirrus.yml`` | ||
|
|
||
| 5. Delete the local key: ``rm cirrus-key*`` | ||
|
|
||
| 6. Commit/push the changes. |