How to validate a Pharo6 download with the example of the mac download:
1) get the checksum file (note: uses SSL):
https://ci.inria.fr/pharo/job/Pharo-6.0-Update-Step-5-Publish/lastSuccessfulBuild/artifact/Pharo6.1-mac.zip.sha256.txt
2) download Pharo:
http://files.pharo.org/platform/Pharo6.1-mac.zip
with sha256sum installed, you can do:
sha256sum -c Pharo6.1-mac.zip.sha256.txt
and it prints:
Pharo6.1-mac.zip: OK
Marcus
> On 24 Oct 2017, at 17:34, Marcus Denker <[email protected]> wrote:
>
> Hi,
>
> A tiny first step: I added sha256 chechsums for all downloads created by the
> Pharo6 build process
>
> https://ci.inria.fr/pharo/
>
> This step:
>
> https://ci.inria.fr/pharo/job/Pharo-6.0-Update-Step-5-Publish/
>
> now creates .sha256.txt files, e.g for the mac:
>
>
> https://ci.inria.fr/pharo/job/Pharo-6.0-Update-Step-5-Publish/lastSuccessfulBuild/artifact/Pharo6.1-mac.zip.sha256.txt
>
> This allows to check that downloads from the file server are indeed the same
> files that the build server created.
> http://files.pharo.org/platform/
> http://files.pharo.org/image/60/
>
>
> As I said, just a very first step.
>
> TODO:
> - pgp signatures
> - insert into website
> - SSL for files.pharo.org
> - do it Pharo7
> - ….
>
> So: more to come!
>
> Marcus
