feat: add sha256sums for kind binaries

[viveksyngh]

• Add sha256sum file for kind binaries build as a part of release process

Fixes: #2331

[k8s-ci-robot]

Welcome @viveksyngh!

It looks like this is your first PR to kubernetes-sigs/kind 🎉. Please refer to our pull request process documentation to help your PR have a smooth ride to approval.

You will be prompted by a bot to use commands during the review process. Do not be afraid to follow the prompts! It is okay to experiment. Here is the bot commands documentation.

You can also check if kubernetes-sigs/kind has its own contribution guidelines.

You may want to refer to our testing guide if you run into trouble with your tests not passing.

If you are having difficulty getting your pull request seen, please follow the recommended escalation practices. Also, for tips and tricks in the contribution process you may want to read the Kubernetes contributor cheat sheet. We want to make sure your contribution gets all the attention it needs!

Thank you, and welcome to Kubernetes. 😃

[k8s-ci-robot]

Hi @viveksyngh. Thanks for your PR.

I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[viveksyngh]

/assign @BenTheElder

[viveksyngh]

/kind feature

[xinydev]

the original output for shasum is something like hashValue fileName, I think it only needs the hash value here?

https://github.com/kubernetes/kompose/blob/0b331d9e5dede975d62ca382b2dd7dff89019f6e/script/release.sh#L243

[aojea]

how do you know the filaname to check it with the command?

[aojea@aojea-laptop ~]$ shasum -a 256 ifac.go > ifac.sha
[aojea@aojea-laptop ~]$ sha256sum -c ifac.sha 
ifac.go: OK
[aojea@aojea-laptop ~]$ cp ifac.sha ifac.shaonly
[aojea@aojea-laptop ~]$ vi ifac.shaonly #removed the filename
[aojea@aojea-laptop ~]$ sha256sum -c ifac.shaonly 
sha256sum: ifac.shaonly: no properly formatted SHA256 checksum lines found

[xinydev]

You are right, it is not easy to check.

however,I found that we have a lot of current tar files are only have the hash value,I'm just curious what is the reason for this.

➜  ~ gsutil cat gs://kubernetes-release/release/v1.21.0-alpha.0/kubernetes-test-windows-amd64.tar.gz.sha256   
e3b8a57d0bba4665f54874e4478bf2b360254314a482f4ba36f15ce228c561b7%     

➜  ~ gsutil cat gs://kubernetes-release/release/v1.21.0-alpha.0/kubernetes-src.tar.gz.sha256   
7eaf8fa1aa03afead4292d1e10dbc839439b4cd45a5a749bac242f8cf0040f45%    

I find a shell script using the command to check.

[aojea]

not an expert here, I always used the hash filename format, that is what shasum reports directly

[viveksyngh]

I have also used hash filename format for one of the CLI in the past. Not sure what benefit other approach has.

[aojea]

/ok-to-test

[aojea]

the verify job fails

In ./hack/release/build/cross.sh line 53:
for f in ${REPO_ROOT}/bin/kind-*; do shasum -a 256 $f > $f.sha256sum; done
         ^----------^ SC2231: Quote expansions in this for loop glob to prevent wordsplitting, e.g. "$dir"/*.txt .
                                                   ^-- SC2086: Double quote to prevent globbing and word splitting.
                                                        ^-- SC2086: Double quote to prevent globbing and word splitting.

[viveksyngh]

/test pull-kind-verify

[aojea]

don't use the oneliner and keep the last line, is easier to read

Suggested change

	for f in "${REPO_ROOT}"/bin/kind-*; do shasum -a 256 "$f" > "$f".sha256sum; done
	for f in "${REPO_ROOT}"/bin/kind-*; do
	shasum -a 256 "$f" > "$f".sha256sum
	done

[viveksyngh]

Updated

[aojea]

hmm this adds the whole path to the generated file, I think that we have to cd first in the folder

cd "${REPO_ROOT}"/bin
for f in kind-*; do
      shasum -a 256 "$f" > "$f".sha256sum
done

[viveksyngh]

yup it was adding full path. I have updated that to change to the directory and then run sha command.

[aojea]

/lgtm
thanks
/assign @BenTheElder

[BenTheElder]

/lgtm
/approve
/hold
thanks!

[BenTheElder]

TODO: refactor to not need cd EDIT: at least in the current shell scope, we could perhaps do this bit in a subshell or see if there's some other approach to manipulating the output.
TODO: update loop to ignore files with .sha256sum extension.

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: BenTheElder, viveksyngh

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [BenTheElder]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[BenTheElder]

/hold cancel
we can iterate later, thank you!