hama-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Apache Wiki <wikidi...@apache.org>
Subject [Hama Wiki] Update of "HowToCommit" by thomasjungblut
Date Sat, 03 Nov 2012 22:41:02 GMT
Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Hama Wiki" for change notification.

The "HowToCommit" page has been changed by thomasjungblut:
http://wiki.apache.org/hama/HowToCommit?action=diff&rev1=5&rev2=6

  1. Download the RC's package asc, the url must be given by the release manager starting
the vote thread.
  
  {{{
- wget <SOME URL>/hama-0.x.0-incubating.tar.gz.asc 
+ wget <SOME URL>/hama-0.x.0.tar.gz.asc 
  }}}
  
  2. Import the committers keys
  
  {{{
- wget http://incubator.apache.org/hama/KEYS
+ wget http://hama.apache.org/files/KEYS
- gpg --import http://incubator.apache.org/hama/KEYS
+ gpg --import KEYS
  }}}
  
  Note that the last argument after import is a file, not a url.
@@ -63, +63 @@

  3. Verify
  
  {{{
- gpg --verify hama-0.x.0-incubating.tar.gz.asc
+ gpg --verify hama-0.x.0.tar.gz.asc
  }}}
  
  If everything is correctly verified, you have to post the result on the vote thread while
casting your vote.
  
+ 
+ You can use a convenient shell script to check the signatures, it takes the release managers
apache index file URL as argument (e.g. http://people.apache.org/~edwardyoon/dist/0.6-RC3/).
+ 
+ {{{
+ #!/bin/bash
+ 
+ function check_return {
+         RETVAL=$?
+         [ $RETVAL -ne 0 ] && exit 1
+ }
+ 
+ function check_md5 {
+ 	real=`openssl md5 $1 | cut -d ' ' -f2`
+ 	expected=`cat $1.md5 | cut -d ' ' -f1`
+ 	if [ "$real" != "$expected" ]
+ 	then
+ 	    echo "md5 sums mismatch" && exit 1
+ 	else
+ 	    echo "md5 checksums OK"
+ 	fi
+ }
+ 
+ function check_sha1 {
+         real=`openssl sha1 $1 | cut -d ' ' -f2`
+         expected=`cat $1.sha1 | cut -d ' ' -f1`
+         if [ "$real" != "$expected" ]
+         then
+             echo "sha1 sums mismatch" && exit 1
+         else
+             echo "sha1 checksums OK"
+         fi
+ }
+ 
+ 
+ function import_keys {
+ 	wget -q http://hama.apache.org/files/KEYS
+ 	gpg --import KEYS
+ 	rm KEYS
+ }
+ 
+ import_keys
+ 
+ wget --convert-links -q -L -O out.html $1
+ cat out.html | grep -o -E 'href="([^"#]+).([gz|asc|md5|sha1|zip])"' | cut -d'"' -f2 | sort
| uniq > links
+ 
+ mkdir release
+ 
+ while read lnk; do
+   echo "Downloading $lnk"
+ #  wget --directory-prefix=release $lnk
+ done < links
+ 
+ for filename in `find release/ -iregex ".*\(gz\|zip\)" -printf "%f\n"`
+ do
+   echo "checking release/$filename"
+ 
+   gpg --verify release/$filename.asc  
+   check_return
+   
+   check_md5 release/$filename 
+ 
+   check_sha1 release/$filename
+     
+ done;
+ 
+ rm out.html
+ rm links
+ 
+ }}}
+ 

Mime
View raw message