Brew install of 1password-cli is broken, cheksum error

mickael
mickael
Community Member
edited April 2019 in CLI

Hi,

@cohix, It looks like the brew installation of 1Password-cli is broken:

Installing brew package 1password-cli...
==> Satisfying dependencies
==> Downloading https://cache.agilebits.com/dist/1P/op/pkg/v0.5.5/op_darwin_amd64_v0.5.5.zip
######################################################################## 100.0%
==> Verifying SHA-256 checksum for Cask '1password-cli'.
==> Note: Running `brew update` may fix SHA-256 checksum errors.
Error: Checksum for Cask '1password-cli' does not match.
Expected: e4ea329debcf991434d90728fa3cba531bce5449a08883d3530dfeb796fc3a3b
  Actual: 5e47ee0f1801d178818056eae9752d332ee69fbd0d96d49b3087a098b49a5db0
    File: /Users/admin/Library/Caches/Homebrew/downloads/a9f835f6159e7c717d76be6bcad303f6b00f2a15b9adbca8ece27c49744254b3--op_darwin_amd64_v0.5.5.zip
To retry an incomplete download, remove the file above.
If the issue persists, visit:
  https://github.com/Homebrew/homebrew-cask/blob/master/doc/reporting_bugs/checksum_does_not_match_error.md

Is it possible that the zip file has been replaced without bumping the version ?

Could you please check this and confirm that 5e47ee0f1801d178818056eae9752d332ee69fbd0d96d49b3087a098b49a5db0 is actually the new expected checksum ?

I will push a PR to update it on brew.

Thanks,


1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided

Comments

  • Claudi
    Claudi
    Community Member

    @cohix Same question for the Linux builds. Can you confirm that the binaries have been rebuilt without a version bump?

    Link to earlier discussion

  • cohix
    cohix
    1Password Alumni

    Yes I can confirm the latest version was re-built in error when. our build servers were upgraded. The version currently being served on app-updates.agilebits.com is the "new" version and we will unfortunately be keeping it. There are steps being done to prevent this from happening in the future. You can always verify the PGP signature of the binaries as noted in the getting started documentation.

  • mickael
    mickael
    Community Member

    @cohix I forgot to look at this, thanks for having reminded it to me.

  • mickael
    mickael
    Community Member
    edited May 2019

    @cohix, Things seems a little bit more complicated because it looks like that some CDN still serve the old version. Especially, the travis agent of brew is still seeing the old one, so the team won't update it until at last travis starts to fail.

    It looks like that things will remain broken until the next release.

  • kylekthompson
    kylekthompson
    Community Member

    @cohix, is there any chance you'd consider bumping the minor version and re-publishing? That way we can point the cask to that new version with only one known checksum.

  • cohix
    cohix
    1Password Alumni

    It is too late to "release" a new version unfortunately, as some package managers have already picked up the "new" version. It's an unfortunate problem that we're working to ensure it won't happen again, but since we don't officially support third party package managers yet, we won't be dedicating any resources to make this work right now.

  • mickael
    mickael
    Community Member

    FYI, Brew has finally updated their checksum match. It should be resolved there now.

  • Thanks for the update :+1: :)

    Ben

This discussion has been closed.