Received: from malur.postgresql.org ([2a02:16a8:dc51::56])
	by arkaria.postgresql.org with esmtps
 (TLS1.2:ECDHE_RSA_AES_256_CBC_SHA384:256)
	(Exim 4.89)
	(envelope-from <pgsql-pkg-yum-owner+archive@lists.postgresql.org>)
	id 1fYsvg-000756-AX
	for pgsql-pkg-yum@arkaria.postgresql.org; Fri, 29 Jun 2018 12:55:13 +0000
Received: from localhost ([127.0.0.1] helo=malur.postgresql.org)
	by malur.postgresql.org with esmtp (Exim 4.89)
	(envelope-from <pgsql-pkg-yum-owner+archive@lists.postgresql.org>)
	id 1fYsvc-0005BE-FF
	for pgsql-pkg-yum@arkaria.postgresql.org; Fri, 29 Jun 2018 12:55:08 +0000
Received: from magus.postgresql.org ([2a02:c0:301:0:ffff::29])
	by malur.postgresql.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_CBC_SHA384:256)
	(Exim 4.89)
	(envelope-from <a4obmfyynycqcgqmaylaqxi6dzew6gismu@quarantine.de>)
	id 1fYsvc-0005B6-89
	for pgsql-pkg-yum@lists.postgresql.org; Fri, 29 Jun 2018 12:55:08 +0000
Received: from mx.unixadm.org ([176.9.96.198])
	by magus.postgresql.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_CBC_SHA384:256)
	(Exim 4.89)
	(envelope-from <a4obmfyynycqcgqmaylaqxi6dzew6gismu@quarantine.de>)
	id 1fYsvY-00052e-Af
	for pgsql-pkg-yum@lists.postgresql.org; Fri, 29 Jun 2018 12:55:07 +0000
Received: from suchianji.intranet.unixadm.org
 (ip-88-152-120-25.hsi03.unitymediagroup.de [88.152.120.25])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(Client CN "phil", Issuer "Unixadm CA" (verified OK))
	by mx.unixadm.org (Postfix) with ESMTPS id E3B86206D3
	for <pgsql-pkg-yum@lists.postgresql.org>;
 Fri, 29 Jun 2018 14:55:00 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=quarantine.de;
	s=itchy; t=1530276900; h=from:from:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:mime-version:mime-version:
	 content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=oGr2nWqU0cy/5MoV5QwHOixyhzI5nSEGaB1clrlg8RM=;
	b=SbnTwzTE7Zeo+jsOD6VznVCnUtyNGBWMhkCUb8IUI+LHd+WLX7vvopKhrjLGdciW3AJYMg
	wav6ZCriHl3Q10pOaZKiw3LzLQ9wqWmXPyOebmAOBbFEEA45Npw4Z+Q1oJBCYakxyx/IRQ
	N1h8Ux+q5TzlT4ooVQwwUefL1vE++X4MZb9AwovY9BNZvvubqnMpDoN0GzoQBfAQi9ZgIt
	gEKyd65BFvH1eQ+kyXNroEA+SbGMC+hRkUmp1CWxONvW1Ackf1fxR3cHP8IkTzmG1jARgG
	iU8S/DEpEQwVRGEgM46BOPIsANYmtkjEDm1xExpMyTFjmQksyfqEPCsnUrRChA==
Subject: Re: upload of rebuilt packages to the repository
From: Philippe Kueck <a4obmfyynycqcgqmaylaqxi6dzew6gismu@quarantine.de>
To: pgsql-pkg-yum@lists.postgresql.org
References: <f4f0c3c3-ae97-6b94-8ca8-824952fb8c83@quarantine.de>
Message-ID: <c93b8b9f-6641-1e2e-6b8c-9078cadb4625@quarantine.de>
Date: Fri, 29 Jun 2018 14:54:59 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101
 Thunderbird/52.8.0
MIME-Version: 1.0
In-Reply-To: <f4f0c3c3-ae97-6b94-8ca8-824952fb8c83@quarantine.de>
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 8bit
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=quarantine.de;
	s=itchy; t=1530276900; h=from:from:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:mime-version:mime-version:
	 content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=oGr2nWqU0cy/5MoV5QwHOixyhzI5nSEGaB1clrlg8RM=;
	b=Zy97DVfUvW4Z1iFDaVqs9MLm7MSSzUxoxU+RuM7r3OSOeQgQ3KW77nxnrjY95mmXE9ubjm
	iHQBJic8tuYzxxTf4bJch/zQF6vs5h0mDsftSdBhQnAbLrqQmW48sW05Ln3DPKTq8GLB9g
	NXYjvlipNXSV2zv/8z5iq2xB/iUUqXm5YIcfF/2DP1yP5SmKJg//ftKLiQQeFRjg+VrZ3K
	E6gPMua4eNl8mJzlFHo7y9V3O9bEZtOeUjiub5DkMY+Q3hJUeN9qWHNq8WvZwXeCK7DOQd
	pJXeIenaIBR23kBCQvR5ElvcLabL7xF5phNG9ppkGKlF79VfrB4wpao/lUUxzQ==
ARC-Seal: i=1; s=itchy; d=quarantine.de; t=1530276900; a=rsa-sha256;
	cv=none;
	b=JKngW19zMQaJGp/vvkNRCpXZiecowAKvubWzArvIBy+hMA0Vrk7W2lp2LTD00SL2kE+mSvNCBUSYe9dYJ+M5nHeiSCF9oZu2P/msfvvxSkEf/q/i06i4Obngfl6csM6eWEMC2GHLxyJbp5f2YvEzC+7oEyfgPnmxYypVxn8ET+ZvLLoV7o4FAB5nigKpyCE8SLhePXORXZN84LYWyO6/LQzYrgvwr5Ef2123ITLc4772fNgnRn2pj5ZYM9/0SCfIQTl+d94B1GCTcjxrOz/4PjdvQ+9J1BNAyg05YIYO8eAMl0PvFKisvtrwGEXeTYkXH0EFXmo606zjZqmVhl65mQ==
ARC-Authentication-Results: i=1; mx.unixadm.org;
	auth=pass smtp.auth=phil
 smtp.mailfrom=a4obmfyynycqcgqmaylaqxi6dzew6gismu@quarantine.de
List-Id: <pgsql-pkg-yum.lists.postgresql.org>
List-Help: <https://lists.postgresql.org/manage/>
List-Subscribe: <https://lists.postgresql.org/manage/>
List-Post: <mailto:pgsql-pkg-yum@lists.postgresql.org>
List-Owner: <mailto:pgsql-pkg-yum-owner@lists.postgresql.org>
List-Archive: <https://www.postgresql.org/list/pgsql-pkg-yum>
Precedence: bulk

Hi all,

it happened again. Altered rpm packages were uploaded to the repository
without bumping the version string. Why do you do this? Mirrors haven
been shattered, breaking our own repositories and yum caches.

If you need to add a gpg signature to your packages, increase the
release number and delete the unsigned package.
If you released a faulty/corrupt package, increase the release number
and delete the previous package.
If after uploading your package to the repository you find out your
package is missing a bugfix, increase the release number.
If you need to rebuild your package against a different library set,
increase the release number.
If you need to rebuild your package with different compiler flags,
increase the release number.
Even if hell freezes over, increase the release number.

That's what I found so far:
> 0_existing/osm2pgrouting_10-2.3.3-1.rhel7.x86_64.rpm
> # osm2pgrouting_10-2.3.3-1.rhel7.x86_64
>   built: Tue Dec 19 22:56:36 2017
>   signature: (none)
>   md5: 3eeff0d2547711082c465880ba710cfc
>   size: 137028
> 
> 1_online/osm2pgrouting_10-2.3.3-1.rhel7.x86_64.rpm
> # osm2pgrouting_10-2.3.3-1.rhel7.x86_64
>   built: Tue Dec 19 22:56:36 2017
>   signature: DSA/SHA1, Mon Jun 18 15:17:19 2018, Key ID 1f16d2e1442df0f8
>   md5: cad0d9aedf3608e50f6cfb0221b3119b
>   size: 137028
> 
> 0_existing/osm2pgrouting_10-debuginfo-2.3.3-1.rhel7.x86_64.rpm
> # osm2pgrouting_10-debuginfo-2.3.3-1.rhel7.x86_64
>   built: Tue Dec 19 22:56:36 2017
>   signature: (none)
>   md5: a410f47dab9a087c99decef93e282eb7
>   size: 17680
> 
> 1_online/osm2pgrouting_10-debuginfo-2.3.3-1.rhel7.x86_64.rpm
> # osm2pgrouting_10-debuginfo-2.3.3-1.rhel7.x86_64
>   built: Tue Dec 19 22:56:36 2017
>   signature: DSA/SHA1, Mon Jun 18 15:17:19 2018, Key ID 1f16d2e1442df0f8
>   md5: 0d8467f42671e341fe2f7d17111dffc7
>   size: 17680
> 
> 0_existing/pgadmin4-python-pbr-3.1.1-1.rhel7.noarch.rpm
> # pgadmin4-python-pbr-3.1.1-1.rhel7.noarch
>   built: Wed Apr 11 02:44:54 2018
>   signature: DSA/SHA1, Wed Apr 11 02:44:55 2018, Key ID 1f16d2e1442df0f8
>   md5: bccdf4366e5cf371312741509024eef2
>   size: 77368
> 
> 1_online/pgadmin4-python-pbr-3.1.1-1.rhel7.noarch.rpm
> # pgadmin4-python-pbr-3.1.1-1.rhel7.noarch
>   built: Wed Apr 11 02:45:00 2018
>   signature: DSA/SHA1, Wed Apr 11 02:45:01 2018, Key ID 1f16d2e1442df0f8
>   md5: 4a75384dd952d7654f5c2597baf80234
>   size: 77364
> 
> 0_existing/pgadmin4-python-simplejson-3.13.2-1.rhel7.x86_64.rpm
> # pgadmin4-python-simplejson-3.13.2-1.rhel7.x86_64
>   built: Wed Apr 11 02:49:44 2018
>   signature: DSA/SHA1, Wed Apr 11 02:49:47 2018, Key ID 1f16d2e1442df0f8
>   md5: 364341231594bc82aa203315d8fe8db6
>   size: 188664
> 
> 1_online/pgadmin4-python-simplejson-3.13.2-1.rhel7.x86_64.rpm
> # pgadmin4-python-simplejson-3.13.2-1.rhel7.x86_64
>   built: Wed Apr 11 02:49:54 2018
>   signature: DSA/SHA1, Wed Apr 11 02:49:56 2018, Key ID 1f16d2e1442df0f8
>   md5: 517f5e3bcf2086be16e04e0b8a736ebd
>   size: 188664
> 
> 0_existing/pgadmin4-python-simplejson-debuginfo-3.13.2-1.rhel7.x86_64.rpm
> # pgadmin4-python-simplejson-debuginfo-3.13.2-1.rhel7.x86_64
>   built: Wed Apr 11 02:49:44 2018
>   signature: DSA/SHA1, Wed Apr 11 02:49:47 2018, Key ID 1f16d2e1442df0f8
>   md5: ec13ec30d9958ac87d8a0410019734b1
>   size: 56512
> 
> 1_online/pgadmin4-python-simplejson-debuginfo-3.13.2-1.rhel7.x86_64.rpm
> # pgadmin4-python-simplejson-debuginfo-3.13.2-1.rhel7.x86_64
>   built: Wed Apr 11 02:49:54 2018
>   signature: DSA/SHA1, Wed Apr 11 02:49:57 2018, Key ID 1f16d2e1442df0f8
>   md5: 37e02e71c1b3231d7028c9fea8a56f24
>   size: 56488
> 
> 0_existing/pgadmin4-python-sshtunnel-0.1.3-1.rhel7.noarch.rpm
> # pgadmin4-python-sshtunnel-0.1.3-1.rhel7.noarch
>   built: Wed Jun 27 01:04:30 2018
>   signature: DSA/SHA1, Wed Jun 27 01:04:30 2018, Key ID 1f16d2e1442df0f8
>   md5: 27bd4760e4424a02d2d24f2d92a2d411
>   size: 37460
> 
> 1_online/pgadmin4-python-sshtunnel-0.1.3-1.rhel7.noarch.rpm
> # pgadmin4-python-sshtunnel-0.1.3-1.rhel7.noarch
>   built: Wed Jun 27 01:04:34 2018
>   signature: DSA/SHA1, Wed Jun 27 01:04:34 2018, Key ID 1f16d2e1442df0f8
>   md5: 645328bcb6a353ce832f940643625628
>   size: 37456

Kind regards

Philippe



On 06.03.2018 13:36, Philippe Kueck wrote:
> Hi all,
> 
> 
> I've noticed that from time to time PostgreSQL pushes rebuilds of
> already existing packages[1] – i.e. same %{name}, %{epoch}, %{version},
> %{release} and same filename but different content – into the yum
> repository.
> 
> Please don't to that.
> 
> If the existing package is buggy or corrupt, just increase %{release}
> and push the new package to the repo.
> Otherwise yum and mirrors might not handle it correctly. With cached
> metadata, yum will complain about checksum mismatches. Mirrors that are
> using e.g. reposync will create a corrupted file if the former package
> was smaller than the updated one by appending additional bytes to the
> existing file. If the former package was larger than the updated one,
> your the servers will respond with a "416 range not satisfiable".
> 
> 
> Best,
> 
> Philippe
> 
> [1] for example amcheck_next10-1.3-1.rhel7.x86_64 on march 1st
>