Check integrity of gitian input source tarballs #3191

pull wtogami wants to merge 1 commits into bitcoin:master from wtogami:integrity_check changing 4 files +19 −4

wtogami commented at 4:00 AM on November 1, 2013: contributor
sha256sum verification of source tarballs during gitian build. This follows the earlier example in boost-win32.yml. This does not change anything about the gitian outputs.

Test Plan
- Search for multiple copies of the tarball and download them from multiple distros. Confirm that they match the sha256sum's in this commit.
Check integrity of gitian input source tarballs b31482844b
BitcoinPullTester commented at 4:10 AM on November 1, 2013: none

Automatic sanity-testing: PASSED, see http://jenkins.bluematt.me/pull-tester/b31482844b682e888a5c81739b488a182128ce12 for binaries and test log. This test script verifies pulls every time they are updated. It, however, dies sometimes and fails to test properly. If you are waiting on a test, please check timestamps to verify that the test.log is moving at http://jenkins.bluematt.me/pull-tester/current/ Contact BlueMatt on freenode if something looks broken.
laanwj commented at 12:02 PM on November 7, 2013: member
I did a full windows+linux+deps build with this, and it worked. I've also tried "corrupting" inputs/openssl-1.0.1c.tar.gz by gunzipping and gzipping it, and this caused the build to fail with the following in build.log:
```
+ echo '2a9eb3cd4e8b114eb9179c0d3884d61658e7d8e8bf4984798a5f5bd48e325ebe  openssl-1.0.1c.tar.gz'
+ sha256sum -c
openssl-1.0.1c.tar.gz: FAILED
sha256sum: WARNING: 1 computed checksum did NOT match
```
ACK.
laanwj referenced this in commit 182e9090a5 on Nov 7, 2013
laanwj merged this on Nov 7, 2013
laanwj closed this on Nov 7, 2013
Bushstar referenced this in commit e9235b9bbb on Apr 8, 2020
DrahtBot locked this on Sep 8, 2021

Contributors

wtogami

BitcoinPullTester

laanwj