1 changed files with 15 additions and 15 deletions
Unified View
Diff Options
-
+15 -15README.md
+ 15
- 15
README.md
View File
| @@ -41,12 +41,12 @@ the first two lines. | |||||
| Setting up and verifying a snapshot or release: | Setting up and verifying a snapshot or release: | ||||
| ``` | ``` | ||||
| $wget https://www.funkthat.com/gitea/jmg/snapaid/raw/branch/master/snapaid.sh | |||||
| $chmod 755 snapaid.sh | |||||
| $./snapaid.sh verify FreeBSD-12.2-RELEASE-amd64-mini-memstick.img.xz | |||||
| $ wget https://www.funkthat.com/gitea/jmg/snapaid/raw/branch/master/snapaid.sh | |||||
| $ chmod 755 snapaid.sh | |||||
| $ ./snapaid.sh verify FreeBSD-12.2-RELEASE-amd64-mini-memstick.img.xz | |||||
| ``` | ``` | ||||
| Note that the provided filename MUST match exactly the released name so | |||||
| Note that the provided filename *MUST* match exactly the released name so | |||||
| that it can be found in the index. It could be possible in the future | that it can be found in the index. It could be possible in the future | ||||
| to find it via shasum, but that is not implemented yet. | to find it via shasum, but that is not implemented yet. | ||||
| @@ -74,16 +74,16 @@ backend | |||||
| ------- | ------- | ||||
| The backend is just a simple text file which indexes all the published | The backend is just a simple text file which indexes all the published | ||||
| snapshots. It is built from the emails to the freebsd-snapshot | |||||
| list. After verification of the email's signature, the SHA512 entry | |||||
| lines are extracted, the file name is parsed, and added to the complete | |||||
| index. The message-id of the email is in the index so that the frontend | |||||
| can d/l the original email and verify the GPG signature locally. The | |||||
| complete index is used for verifying a snapshot that has already been | |||||
| downloaded. Another index is also maintained which only contains the | |||||
| currently available to d/l snapshots. This may contain snapshots that | |||||
| no longer exist, as it is only updated/checked when a new snapshot is | |||||
| released. | |||||
| snapshots. It is built from the emails to the freebsd-snapshot and | |||||
| freebsd-announce lists. After verification of the email's signature, | |||||
| the SHA512 entry lines are extracted, the file name is parsed, and added | |||||
| to the complete index. The message-id of the email is in the index so | |||||
| that the frontend can download the original email and verify the GPG | |||||
| signature locally. The complete index is used for verifying a snapshot | |||||
| that has already been downloaded. Another index is also maintained | |||||
| which only contains the currently available to download snapshots. This | |||||
| may contain snapshots that no longer exist, as it is only | |||||
| updated/checked when a new snapshot is released. | |||||
| The procmail rc lines that I use: | The procmail rc lines that I use: | ||||
| ``` | ``` | ||||
| @@ -108,6 +108,6 @@ so that a later rule can file them in the proper mailbox. The second rule | |||||
| is for the snapshots, and smiilarly organized, but the mailbox filing | is for the snapshots, and smiilarly organized, but the mailbox filing | ||||
| happens here. | happens here. | ||||
| The snapwrap.sh script is included in the repo, but the command to deploy | |||||
| The `snapwrap.sh` script is included in the repo, but the command to deploy | |||||
| the database to the FreeBSD.org servers has been deleted, but it is a | the database to the FreeBSD.org servers has been deleted, but it is a | ||||
| simple: `tar -cf - <files> | ssh freefall tar -xf -` type command. | simple: `tar -cf - <files> | ssh freefall tar -xf -` type command. | ||||