8080
8181rc_hash=" $( git rev-list --max-count=1 " ${rc_tag} " ) "
8282
83- id =" apache-arrow-java-${version} "
84- tar_gz =" ${id} .tar.gz "
83+ artifacts_dir =" apache-arrow-java-${version} -rc ${rc }"
84+ signed_artifacts_dir =" ${artifacts_dir} -signed "
8585
8686if [ " ${RELEASE_SIGN} " -gt 0 ]; then
8787 git_origin_url=" $( git remote get-url origin) "
@@ -105,23 +105,34 @@ if [ "${RELEASE_SIGN}" -gt 0 ]; then
105105 echo " Found GitHub Actions workflow with ID: ${run_id} "
106106 gh run watch --repo " ${repository} " " ${run_id} "
107107
108- echo " Downloading .tar.gz from GitHub Releases"
108+ echo " Downloading artifacts from GitHub Releases"
109109 gh release download " ${rc_tag} "
110- --dir . \
111- --pattern " ${tar_gz} "
110+ --dir " ${artifacts_dir} "
112111 --repo " ${repository} "
113112 --skip-existing
114113
115- echo " Signing tar.gz and creating checksums"
116- gpg --armor --output " ${tar_gz} .asc" " ${tar_gz} "
114+ echo " Signing artifacts"
115+ rm -rf " ${signed_artifacts_dir} "
116+ mkdir -p " ${signed_artifacts_dir} "
117+ for artifact in " ${artifacts_dir} " * ; do
118+ case " ${artifact} " in
119+ * .asc | * .sha256 | * .sha512)
120+ continue
121+ ;;
122+ esac
123+ gpg --armor \
124+ --detach-sig \
125+ --output " ${signed_artifacts_dir} /$( basename " ${artifact} " ) "
126+ " ${artifact} "
127+ done
117128fi
118129
119130if [ " ${RELEASE_UPLOAD} " -gt 0 ]; then
120131 echo " Uploading signature"
121132 gh release upload " ${rc_tag} "
122133 --clobber \
123134 --repo " ${repository} "
124- " ${tar_gz} .asc"
135+ " ${signed_artifacts_dir} " / * .asc
125136fi
126137
127138echo " Draft email for dev@arrow.apache.org mailing list"
0 commit comments