THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
1. Obtaining and Preparing the Voting Candidate Files
1.1 On Apache Jenkins:
- You have to set up json file milestone content.
- Go to the https://builds.apache.org/job/Netbeans/job/netbeans-TLP/job/netbeans/
- Check that the build on release<version> and verify artefacts they should be branded with like a voting candidate. Cancel and relaunch build otherwise
- Wait for the job to be finished.
- Keep the build
1.2 On your computer, once the build described in 1.1 above has succeeded:
- Download and extract the build artifacts.
Check the SHA512 checksums:
Code Block language bash theme Midnight find . -name '*.sha512' -execdir sha512sum --check '{}' \; #alternative for z in $(find . -name '*.sha512'); do cd $(dirname $z); sha512sum ./$(basename $z) --check --quiet; cd - >/dev/null; done
NB. check (and create if necessary) .sha512 files for nbm/updates.xml and nbm/tasks.jar
Sign the Release Files
Code Block language bash theme Midnight export GPG_EMAIL="YOU@apache.org" find . -name '*.zip' -exec gpg -u $GPG_EMAIL --armor --output {}.asc --detach-sign {} \; # Stop here if nbms are not going to be published find . -name '*.nbm' -exec gpg -u $GPG_EMAIL --armor --output {}.asc --detach-sign {} \; find . -name '*.gz' -exec gpg -u $GPG_EMAIL --armor --output {}.asc --detach-sign {} \; # nbm licenses find . -name '*.license' -exec gpg -u $GPG_EMAIL --armor --output {}.asc --detach-sign {} \; # nbm/updates.xml and nbm/tasks.jar find . -name '*.jar' -exec gpg -u $GPG_EMAIL --armor --output {}.asc --detach-sign {} \; find . -name '*.xml' -exec gpg -u $GPG_EMAIL --armor --output {}.asc --detach-sign {} \;
Verify Signatures
Code Block language bash theme Midnight find . -name '*.asc' -exec gpg --verify {} \;
...