[Hama Wiki] Update of "HowToCommit" by thomasjungblut

Sat, 03 Nov 2012 15:41:28 -0700 

Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Hama Wiki" for change 
notification.

The "HowToCommit" page has been changed by thomasjungblut:
http://wiki.apache.org/hama/HowToCommit?action=diff&rev1=5&rev2=6

  1. Download the RC's package asc, the url must be given by the release 
manager starting the vote thread.
  
  {{{
- wget <SOME URL>/hama-0.x.0-incubating.tar.gz.asc 
+ wget <SOME URL>/hama-0.x.0.tar.gz.asc 
  }}}
  
  2. Import the committers keys
  
  {{{
- wget http://incubator.apache.org/hama/KEYS
+ wget http://hama.apache.org/files/KEYS
- gpg --import http://incubator.apache.org/hama/KEYS
+ gpg --import KEYS
  }}}
  
  Note that the last argument after import is a file, not a url.
@@ -63, +63 @@

  3. Verify
  
  {{{
- gpg --verify hama-0.x.0-incubating.tar.gz.asc
+ gpg --verify hama-0.x.0.tar.gz.asc
  }}}
  
  If everything is correctly verified, you have to post the result on the vote 
thread while casting your vote.
  
+ 
+ You can use a convenient shell script to check the signatures, it takes the 
release managers apache index file URL as argument (e.g. 
http://people.apache.org/~edwardyoon/dist/0.6-RC3/).
+ 
+ {{{
+ #!/bin/bash
+ 
+ function check_return {
+         RETVAL=$?
+         [ $RETVAL -ne 0 ] && exit 1
+ }
+ 
+ function check_md5 {
+       real=`openssl md5 $1 | cut -d ' ' -f2`
+       expected=`cat $1.md5 | cut -d ' ' -f1`
+       if [ "$real" != "$expected" ]
+       then
+           echo "md5 sums mismatch" && exit 1
+       else
+           echo "md5 checksums OK"
+       fi
+ }
+ 
+ function check_sha1 {
+         real=`openssl sha1 $1 | cut -d ' ' -f2`
+         expected=`cat $1.sha1 | cut -d ' ' -f1`
+         if [ "$real" != "$expected" ]
+         then
+             echo "sha1 sums mismatch" && exit 1
+         else
+             echo "sha1 checksums OK"
+         fi
+ }
+ 
+ 
+ function import_keys {
+       wget -q http://hama.apache.org/files/KEYS
+       gpg --import KEYS
+       rm KEYS
+ }
+ 
+ import_keys
+ 
+ wget --convert-links -q -L -O out.html $1
+ cat out.html | grep -o -E 'href="([^"#]+).([gz|asc|md5|sha1|zip])"' | cut 
-d'"' -f2 | sort | uniq > links
+ 
+ mkdir release
+ 
+ while read lnk; do
+   echo "Downloading $lnk"
+ #  wget --directory-prefix=release $lnk
+ done < links
+ 
+ for filename in `find release/ -iregex ".*\(gz\|zip\)" -printf "%f\n"`
+ do
+   echo "checking release/$filename"
+ 
+   gpg --verify release/$filename.asc  
+   check_return
+   
+   check_md5 release/$filename 
+ 
+   check_sha1 release/$filename
+     
+ done;
+ 
+ rm out.html
+ rm links
+ 
+ }}}
+

Reply via email to