Doing A Self Check/QA for RPMS

From openSUSE

Quality Assurance for Your Newly Built RPMs (DRAFT)

This document tries to outline some steps and concepts for making higher quality, more reliable rpms. As a packager, you have some responsibilities to try to do things "the right way." Essentially, when someone installs your package, they are giving you root permissions on their machine and with that comes the responsibility to not break things and or cause problems for them later on. Part of this is related to the Trust Concept

Pre Build checks

Check for source tarball md5sums, sha1sums or gpg signatures from the project home page. This is a welcome practice by upstream and if you are a developer on an open source project you should encourage this practice.
Open the source tarball and check for correct licensing and other docs. Is a man page included ? Lack of a man page is considered a blocker for Debian and it is not terribly hard to create one to submit upstream.

Build Checks

Run rpmlint from the command line on your packages. Rpmlint is not perfect, but makes many sanity checks on your rpms. Strongly recommended.
```
 rpmlint package.arch.rpm 
```
will give you a report on your package will be issued. The -i switch will give more verbose and detailed output.

Install Checks

Use rpm's debug output to see every change made by an install.

rpm -ivvh package-x-x.rpm

will give you detailed output on install. Similarly, you can install an older version of an rpm, then run

rpm -Uvvh package-x-x.rpm

to test for potential upgrade issues.

Retrieved from "http://en.opensuse.org/Doing_A_Self_Check/QA_for_RPMS"

The content on this and other wiki pages is posted by community members who are not acting for or on behalf of Novell, Inc., whether or not they otherwise have affiliation with Novell.
This site uses the YAML CSS framework.
About openSUSE | Disclaimers | Feedback
This page was last modified 19:42, 9 July 2008. This page has been accessed 463 times.