This is an automated email from the ASF dual-hosted git repository. github-bot pushed a commit to branch asf-site in repository https://gitbox.apache.org/repos/asf/incubator-tubemq-website.git
The following commit(s) were added to refs/heads/asf-site by this push: new 8021a14 Automated deployment: Fri Jul 24 03:02:44 UTC 2020 5cffb0469b9f158f0fa27af6af773c7dac6ce8b1 8021a14 is described below commit 8021a14544908c243fa9b662fde77db251fa9add Author: guangxuCheng <guangxuch...@users.noreply.github.com> AuthorDate: Fri Jul 24 03:02:44 2020 +0000 Automated deployment: Fri Jul 24 03:02:44 UTC 2020 5cffb0469b9f158f0fa27af6af773c7dac6ce8b1 --- docs/en-us/development/how-to-release.md | 5 ++--- docs/en-us/development/how-to-verify.md | 18 +++--------------- docs/zh-cn/development/how-to-release.md | 5 ++--- docs/zh-cn/development/how-to-verify.md | 18 +++--------------- en-us/docs/development/how-to-release.html | 7 +++---- en-us/docs/development/how-to-release.json | 2 +- en-us/docs/development/how-to-release.md | 5 ++--- en-us/docs/development/how-to-verify.html | 16 ++-------------- en-us/docs/development/how-to-verify.json | 2 +- en-us/docs/development/how-to-verify.md | 18 +++--------------- zh-cn/docs/development/how-to-release.html | 7 +++---- zh-cn/docs/development/how-to-release.json | 2 +- zh-cn/docs/development/how-to-release.md | 5 ++--- zh-cn/docs/development/how-to-verify.html | 16 ++-------------- zh-cn/docs/development/how-to-verify.json | 2 +- zh-cn/docs/development/how-to-verify.md | 18 +++--------------- 16 files changed, 34 insertions(+), 112 deletions(-) diff --git a/docs/en-us/development/how-to-release.md b/docs/en-us/development/how-to-release.md index a64c948..8cda0a8 100644 --- a/docs/en-us/development/how-to-release.md +++ b/docs/en-us/development/how-to-release.md @@ -227,14 +227,13 @@ cp ./tubemq-client/target/apache-tubemq-client-${release_version}-bin.tar.gz /tm cp ./tubemq-server/target/apache-tubemq-server-${release_version}-bin.tar.gz /tmp/apache-tubemq-${release_version}-${rc_version}/ # 拷贝server包到源码包目录下,方面下一步对包进行签名 ``` -### 3.5 对源码包/二进制包进行签名/sha512/md5 +### 3.5 对源码包/二进制包进行签名/sha512 ```shell -for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i > $i.md5 ; done # 计算MD5 for i in *.tar.gz; do echo $i; gpg --print-md SHA512 $i > $i.sha512 ; done # 计算SHA512 for i in *.tar.gz; do echo $i; gpg --armor --output $i.asc --detach-sig $i ; done # 计算签名 ``` -### 3.6 检查生成的签名/sha512/md5是否正确 +### 3.6 检查生成的签名/sha512是否正确 具体可以参考:[验证候选版本](how-to-verify.md) 比如验证签名是否正确如下: ```shell diff --git a/docs/en-us/development/how-to-verify.md b/docs/en-us/development/how-to-verify.md index da93c07..ed8d905 100644 --- a/docs/en-us/development/how-to-verify.md +++ b/docs/en-us/development/how-to-verify.md @@ -21,8 +21,7 @@ svn co https://dist.apache.org/repos/dist/dev/incubator/tubemq/${release_version 1. 是否包含源码包 2. 是否包含源码包的签名 3. 是否包含源码包的sha512 -4. 是否包含源码包的md5 -5. 如果上传了二进制包,则同样检查(2)-(4)所列的内容 +4. 如果上传了二进制包,则同样检查(2)-(4)所列的内容 ### 2.2 检查gpg签名 - 导入公钥 @@ -61,18 +60,7 @@ gpg --print-md SHA512 apache-tubemq-client-${release_version}-bin.tar.gz for i in *.tar.gz.sha512; do echo $i; sha512sum -c $i; done ``` -#### 2.4 检查MD5 -> 本地计算MD5后,验证是否与dist上的一致 -```shell -for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i; done -#或者 -gpg --print-md MD5 apache-tubemq-${release_version}-src.tar.gz -# 如果上传二进制包,则同样需要检查二进制包的MD5 -gpg --print-md MD5 apache-tubemq-server-${release_version}-bin.tar.gz -gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz -``` - -### 2.5. 检查源码包的文件内容 +### 2.4. 检查源码包的文件内容 解压缩`apache-tubemq-${release_version}-src.tar.gz`,进行如下检查: @@ -83,7 +71,7 @@ gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz - 单测是否能够跑通 - .... -### 2.6 检查二进制包(如果上传了二进制包) +### 2.5 检查二进制包(如果上传了二进制包) 解压缩`apache-tubemq-client-${release_version}-src.tar.gz`和` apache-tubemq-server-${release_version}-src.tar.gz`,进行如下检查: - DISCLAIMER文件是否存在及内容是否正确 diff --git a/docs/zh-cn/development/how-to-release.md b/docs/zh-cn/development/how-to-release.md index d5ca218..cf23436 100644 --- a/docs/zh-cn/development/how-to-release.md +++ b/docs/zh-cn/development/how-to-release.md @@ -224,14 +224,13 @@ cp ./tubemq-client/target/apache-tubemq-client-${release_version}-bin.tar.gz /tm cp ./tubemq-server/target/apache-tubemq-server-${release_version}-bin.tar.gz /tmp/apache-tubemq-${release_version}-${rc_version}/ # 拷贝server包到源码包目录下,方面下一步对包进行签名 ``` -### 3.5 对源码包/二进制包进行签名/sha512/md5 +### 3.5 对源码包/二进制包进行签名/sha512 ```shell -for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i > $i.md5 ; done # 计算MD5 for i in *.tar.gz; do echo $i; gpg --print-md SHA512 $i > $i.sha512 ; done # 计算SHA512 for i in *.tar.gz; do echo $i; gpg --armor --output $i.asc --detach-sig $i ; done # 计算签名 ``` -### 3.6 检查生成的签名/sha512/md5是否正确 +### 3.6 检查生成的签名/sha512是否正确 具体可以参考:[验证候选版本](how-to-verify.md) 比如验证签名是否正确如下: ```shell diff --git a/docs/zh-cn/development/how-to-verify.md b/docs/zh-cn/development/how-to-verify.md index 36c025d..6294e70 100644 --- a/docs/zh-cn/development/how-to-verify.md +++ b/docs/zh-cn/development/how-to-verify.md @@ -19,8 +19,7 @@ svn co https://dist.apache.org/repos/dist/dev/incubator/tubemq/${release_version 1. 是否包含源码包 2. 是否包含源码包的签名 3. 是否包含源码包的sha512 -4. 是否包含源码包的md5 -5. 如果上传了二进制包,则同样检查(2)-(4)所列的内容 +4. 如果上传了二进制包,则同样检查(2)-(4)所列的内容 ### 2.2 检查gpg签名 - 导入公钥 @@ -59,18 +58,7 @@ gpg --print-md SHA512 apache-tubemq-client-${release_version}-bin.tar.gz for i in *.tar.gz.sha512; do echo $i; sha512sum -c $i; done ``` -#### 2.4 检查MD5 -> 本地计算MD5后,验证是否与dist上的一致 -```shell -for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i; done -#或者 -gpg --print-md MD5 apache-tubemq-${release_version}-src.tar.gz -# 如果上传二进制包,则同样需要检查二进制包的MD5 -gpg --print-md MD5 apache-tubemq-server-${release_version}-bin.tar.gz -gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz -``` - -### 2.5. 检查源码包的文件内容 +### 2.4. 检查源码包的文件内容 解压缩`apache-tubemq-${release_version}-src.tar.gz`,进行如下检查: @@ -81,7 +69,7 @@ gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz - 单测是否能够跑通 - .... -### 2.6 检查二进制包(如果上传了二进制包) +### 2.5 检查二进制包(如果上传了二进制包) 解压缩`apache-tubemq-client-${release_version}-src.tar.gz`和` apache-tubemq-server-${release_version}-src.tar.gz`,进行如下检查: - DISCLAIMER文件是否存在及内容是否正确 diff --git a/en-us/docs/development/how-to-release.html b/en-us/docs/development/how-to-release.html index 4ed15bf..311c76c 100644 --- a/en-us/docs/development/how-to-release.html +++ b/en-us/docs/development/how-to-release.html @@ -209,12 +209,11 @@ mvn compile clean install package -DskipTests # 编译 cp ./tubemq-client/target/apache-tubemq-client-${release_version}-bin.tar.gz /tmp/apache-tubemq-${release_version}-${rc_version}/ # 拷贝client包到源码包目录下,方面下一步对包进行签名 cp ./tubemq-server/target/apache-tubemq-server-${release_version}-bin.tar.gz /tmp/apache-tubemq-${release_version}-${rc_version}/ # 拷贝server包到源码包目录下,方面下一步对包进行签名 </code></pre> -<h3>3.5 对源码包/二进制包进行签名/sha512/md5</h3> -<pre><code class="language-shell">for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i > $i.md5 ; done # 计算MD5 -for i in *.tar.gz; do echo $i; gpg --print-md SHA512 $i > $i.sha512 ; done # 计算SHA512 +<h3>3.5 对源码包/二进制包进行签名/sha512</h3> +<pre><code class="language-shell">for i in *.tar.gz; do echo $i; gpg --print-md SHA512 $i > $i.sha512 ; done # 计算SHA512 for i in *.tar.gz; do echo $i; gpg --armor --output $i.asc --detach-sig $i ; done # 计算签名 </code></pre> -<h3>3.6 检查生成的签名/sha512/md5是否正确</h3> +<h3>3.6 检查生成的签名/sha512是否正确</h3> <p>具体可以参考:<a href="how-to-verify.md">验证候选版本</a> 比如验证签名是否正确如下:</p> <pre><code class="language-shell">for i in *.tar.gz; do echo $i; gpg --verify $i.asc $i ; done diff --git a/en-us/docs/development/how-to-release.json b/en-us/docs/development/how-to-release.json index 5f6accb..c1f3241 100644 --- a/en-us/docs/development/how-to-release.json +++ b/en-us/docs/development/how-to-release.json @@ -1,6 +1,6 @@ { "filename": "how-to-release.md", - "__html": "<h1>如何发布版本</h1>\n<p><font color=\"#dd0000\" size=\"4\">TODO: This page needs to be translated into English. If you are interested, just do it.</font></p>\n<blockquote>\n<p>本文主要介绍了Release Manager如何按照Apache的流程发布版本,</p>\n</blockquote>\n<h2>0. 前言</h2>\n<p>Source Release是Apache关注的重点,也是发布的必须内容;\nBinary Release是可选项,TubeMQ可以选择是否发布二进制包到Apache仓库或者发布到Maven中央仓库。</p>\n<p>请参考以下链接,找到更多关于ASF的发布指南:</p>\n<p><a href=\"https://incubator.apache.org/guides/releasemanagement.html\">Apache Release [...] + "__html": "<h1>如何发布版本</h1>\n<p><font color=\"#dd0000\" size=\"4\">TODO: This page needs to be translated into English. If you are interested, just do it.</font></p>\n<blockquote>\n<p>本文主要介绍了Release Manager如何按照Apache的流程发布版本,</p>\n</blockquote>\n<h2>0. 前言</h2>\n<p>Source Release是Apache关注的重点,也是发布的必须内容;\nBinary Release是可选项,TubeMQ可以选择是否发布二进制包到Apache仓库或者发布到Maven中央仓库。</p>\n<p>请参考以下链接,找到更多关于ASF的发布指南:</p>\n<p><a href=\"https://incubator.apache.org/guides/releasemanagement.html\">Apache Release [...] "link": "/en-us/docs/development/how-to-release.html", "meta": { "title": "How to Release - Apache TubeMQ" diff --git a/en-us/docs/development/how-to-release.md b/en-us/docs/development/how-to-release.md index a64c948..8cda0a8 100644 --- a/en-us/docs/development/how-to-release.md +++ b/en-us/docs/development/how-to-release.md @@ -227,14 +227,13 @@ cp ./tubemq-client/target/apache-tubemq-client-${release_version}-bin.tar.gz /tm cp ./tubemq-server/target/apache-tubemq-server-${release_version}-bin.tar.gz /tmp/apache-tubemq-${release_version}-${rc_version}/ # 拷贝server包到源码包目录下,方面下一步对包进行签名 ``` -### 3.5 对源码包/二进制包进行签名/sha512/md5 +### 3.5 对源码包/二进制包进行签名/sha512 ```shell -for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i > $i.md5 ; done # 计算MD5 for i in *.tar.gz; do echo $i; gpg --print-md SHA512 $i > $i.sha512 ; done # 计算SHA512 for i in *.tar.gz; do echo $i; gpg --armor --output $i.asc --detach-sig $i ; done # 计算签名 ``` -### 3.6 检查生成的签名/sha512/md5是否正确 +### 3.6 检查生成的签名/sha512是否正确 具体可以参考:[验证候选版本](how-to-verify.md) 比如验证签名是否正确如下: ```shell diff --git a/en-us/docs/development/how-to-verify.html b/en-us/docs/development/how-to-verify.html index 8bf7de5..51f59d6 100644 --- a/en-us/docs/development/how-to-verify.html +++ b/en-us/docs/development/how-to-verify.html @@ -30,7 +30,6 @@ <li>是否包含源码包</li> <li>是否包含源码包的签名</li> <li>是否包含源码包的sha512</li> -<li>是否包含源码包的md5</li> <li>如果上传了二进制包,则同样检查(2)-(4)所列的内容</li> </ol> <h3>2.2 检查gpg签名</h3> @@ -72,18 +71,7 @@ gpg --print-md SHA512 apache-tubemq-client-${release_version}-bin.tar.gz <span class="hljs-meta">#</span><span class="bash"> 或者</span> for i in *.tar.gz.sha512; do echo $i; sha512sum -c $i; done </code></pre> -<h4>2.4 检查MD5</h4> -<blockquote> -<p>本地计算MD5后,验证是否与dist上的一致</p> -</blockquote> -<pre><code class="language-shell">for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i; done -<span class="hljs-meta">#</span><span class="bash">或者</span> -gpg --print-md MD5 apache-tubemq-${release_version}-src.tar.gz -<span class="hljs-meta">#</span><span class="bash"> 如果上传二进制包,则同样需要检查二进制包的MD5</span> -gpg --print-md MD5 apache-tubemq-server-${release_version}-bin.tar.gz -gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz -</code></pre> -<h3>2.5. 检查源码包的文件内容</h3> +<h3>2.4. 检查源码包的文件内容</h3> <p>解压缩<code>apache-tubemq-${release_version}-src.tar.gz</code>,进行如下检查:</p> <ul> <li>DISCLAIMER文件是否存在及内容是否正确</li> @@ -93,7 +81,7 @@ gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz <li>单测是否能够跑通</li> <li>....</li> </ul> -<h3>2.6 检查二进制包(如果上传了二进制包)</h3> +<h3>2.5 检查二进制包(如果上传了二进制包)</h3> <p>解压缩<code>apache-tubemq-client-${release_version}-src.tar.gz</code>和<code>apache-tubemq-server-${release_version}-src.tar.gz</code>,进行如下检查:</p> <ul> <li>DISCLAIMER文件是否存在及内容是否正确</li> diff --git a/en-us/docs/development/how-to-verify.json b/en-us/docs/development/how-to-verify.json index f5d47e9..587a0d8 100644 --- a/en-us/docs/development/how-to-verify.json +++ b/en-us/docs/development/how-to-verify.json @@ -1,6 +1,6 @@ { "filename": "how-to-verify.md", - "__html": "<h1>验证候选版本</h1>\n<p><font color=\"#dd0000\" size=\"4\">TODO: This page needs to be translated into English. If you are interested, just do it.</font></p>\n<p>详细的检查列表请参考: <a href=\"https://cwiki.apache.org/confluence/display/INCUBATOR/Incubator+Release+Checklist\">check list</a></p>\n<h2>1. 下载要发布的候选版本到本地环境</h2>\n<pre><code class=\"language-shell\">svn co https://dist.apache.org/repos/dist/dev/incubator/tubemq/${release_version}-${rc_version}/\n</code></pre>\n<h2>2. 验证上传的版本是否合 [...] + "__html": "<h1>验证候选版本</h1>\n<p><font color=\"#dd0000\" size=\"4\">TODO: This page needs to be translated into English. If you are interested, just do it.</font></p>\n<p>详细的检查列表请参考: <a href=\"https://cwiki.apache.org/confluence/display/INCUBATOR/Incubator+Release+Checklist\">check list</a></p>\n<h2>1. 下载要发布的候选版本到本地环境</h2>\n<pre><code class=\"language-shell\">svn co https://dist.apache.org/repos/dist/dev/incubator/tubemq/${release_version}-${rc_version}/\n</code></pre>\n<h2>2. 验证上传的版本是否合 [...] "link": "/en-us/docs/development/how-to-verify.html", "meta": { "title": "How to Verify - Apache TubeMQ" diff --git a/en-us/docs/development/how-to-verify.md b/en-us/docs/development/how-to-verify.md index da93c07..ed8d905 100644 --- a/en-us/docs/development/how-to-verify.md +++ b/en-us/docs/development/how-to-verify.md @@ -21,8 +21,7 @@ svn co https://dist.apache.org/repos/dist/dev/incubator/tubemq/${release_version 1. 是否包含源码包 2. 是否包含源码包的签名 3. 是否包含源码包的sha512 -4. 是否包含源码包的md5 -5. 如果上传了二进制包,则同样检查(2)-(4)所列的内容 +4. 如果上传了二进制包,则同样检查(2)-(4)所列的内容 ### 2.2 检查gpg签名 - 导入公钥 @@ -61,18 +60,7 @@ gpg --print-md SHA512 apache-tubemq-client-${release_version}-bin.tar.gz for i in *.tar.gz.sha512; do echo $i; sha512sum -c $i; done ``` -#### 2.4 检查MD5 -> 本地计算MD5后,验证是否与dist上的一致 -```shell -for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i; done -#或者 -gpg --print-md MD5 apache-tubemq-${release_version}-src.tar.gz -# 如果上传二进制包,则同样需要检查二进制包的MD5 -gpg --print-md MD5 apache-tubemq-server-${release_version}-bin.tar.gz -gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz -``` - -### 2.5. 检查源码包的文件内容 +### 2.4. 检查源码包的文件内容 解压缩`apache-tubemq-${release_version}-src.tar.gz`,进行如下检查: @@ -83,7 +71,7 @@ gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz - 单测是否能够跑通 - .... -### 2.6 检查二进制包(如果上传了二进制包) +### 2.5 检查二进制包(如果上传了二进制包) 解压缩`apache-tubemq-client-${release_version}-src.tar.gz`和` apache-tubemq-server-${release_version}-src.tar.gz`,进行如下检查: - DISCLAIMER文件是否存在及内容是否正确 diff --git a/zh-cn/docs/development/how-to-release.html b/zh-cn/docs/development/how-to-release.html index 17fdee8..4ed1f20 100644 --- a/zh-cn/docs/development/how-to-release.html +++ b/zh-cn/docs/development/how-to-release.html @@ -207,12 +207,11 @@ mvn compile clean install package -DskipTests # 编译 cp ./tubemq-client/target/apache-tubemq-client-${release_version}-bin.tar.gz /tmp/apache-tubemq-${release_version}-${rc_version}/ # 拷贝client包到源码包目录下,方面下一步对包进行签名 cp ./tubemq-server/target/apache-tubemq-server-${release_version}-bin.tar.gz /tmp/apache-tubemq-${release_version}-${rc_version}/ # 拷贝server包到源码包目录下,方面下一步对包进行签名 </code></pre> -<h3>3.5 对源码包/二进制包进行签名/sha512/md5</h3> -<pre><code class="language-shell">for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i > $i.md5 ; done # 计算MD5 -for i in *.tar.gz; do echo $i; gpg --print-md SHA512 $i > $i.sha512 ; done # 计算SHA512 +<h3>3.5 对源码包/二进制包进行签名/sha512</h3> +<pre><code class="language-shell">for i in *.tar.gz; do echo $i; gpg --print-md SHA512 $i > $i.sha512 ; done # 计算SHA512 for i in *.tar.gz; do echo $i; gpg --armor --output $i.asc --detach-sig $i ; done # 计算签名 </code></pre> -<h3>3.6 检查生成的签名/sha512/md5是否正确</h3> +<h3>3.6 检查生成的签名/sha512是否正确</h3> <p>具体可以参考:<a href="how-to-verify.md">验证候选版本</a> 比如验证签名是否正确如下:</p> <pre><code class="language-shell">for i in *.tar.gz; do echo $i; gpg --verify $i.asc $i ; done diff --git a/zh-cn/docs/development/how-to-release.json b/zh-cn/docs/development/how-to-release.json index 53b98e1..20547e0 100644 --- a/zh-cn/docs/development/how-to-release.json +++ b/zh-cn/docs/development/how-to-release.json @@ -1,6 +1,6 @@ { "filename": "how-to-release.md", - "__html": "<h1>如何发布版本</h1>\n<blockquote>\n<p>本文主要介绍了Release Manager如何按照Apache的流程发布版本,</p>\n</blockquote>\n<p>Source Release是Apache关注的重点,也是发布的必须内容;\nBinary Release是可选项,TubeMQ可以选择是否发布二进制包到Apache仓库或者发布到Maven中央仓库。</p>\n<p>请参考以下链接,找到更多关于ASF的发布指南:</p>\n<p><a href=\"https://incubator.apache.org/guides/releasemanagement.html\">Apache Release Guide</a></p>\n<p><a href=\"https://incubator.apache.org/\">Apache incubator 官网</a></p>\n<h2>1. 添加GPG KEY</h2>\n<blockquote>\n<p>本章节主要参考:<a href=\"https:/ [...] + "__html": "<h1>如何发布版本</h1>\n<blockquote>\n<p>本文主要介绍了Release Manager如何按照Apache的流程发布版本,</p>\n</blockquote>\n<p>Source Release是Apache关注的重点,也是发布的必须内容;\nBinary Release是可选项,TubeMQ可以选择是否发布二进制包到Apache仓库或者发布到Maven中央仓库。</p>\n<p>请参考以下链接,找到更多关于ASF的发布指南:</p>\n<p><a href=\"https://incubator.apache.org/guides/releasemanagement.html\">Apache Release Guide</a></p>\n<p><a href=\"https://incubator.apache.org/\">Apache incubator 官网</a></p>\n<h2>1. 添加GPG KEY</h2>\n<blockquote>\n<p>本章节主要参考:<a href=\"https:/ [...] "link": "/zh-cn/docs/development/how-to-release.html", "meta": { "title": "如何发布版本- Apache TubeMQ" diff --git a/zh-cn/docs/development/how-to-release.md b/zh-cn/docs/development/how-to-release.md index d5ca218..cf23436 100644 --- a/zh-cn/docs/development/how-to-release.md +++ b/zh-cn/docs/development/how-to-release.md @@ -224,14 +224,13 @@ cp ./tubemq-client/target/apache-tubemq-client-${release_version}-bin.tar.gz /tm cp ./tubemq-server/target/apache-tubemq-server-${release_version}-bin.tar.gz /tmp/apache-tubemq-${release_version}-${rc_version}/ # 拷贝server包到源码包目录下,方面下一步对包进行签名 ``` -### 3.5 对源码包/二进制包进行签名/sha512/md5 +### 3.5 对源码包/二进制包进行签名/sha512 ```shell -for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i > $i.md5 ; done # 计算MD5 for i in *.tar.gz; do echo $i; gpg --print-md SHA512 $i > $i.sha512 ; done # 计算SHA512 for i in *.tar.gz; do echo $i; gpg --armor --output $i.asc --detach-sig $i ; done # 计算签名 ``` -### 3.6 检查生成的签名/sha512/md5是否正确 +### 3.6 检查生成的签名/sha512是否正确 具体可以参考:[验证候选版本](how-to-verify.md) 比如验证签名是否正确如下: ```shell diff --git a/zh-cn/docs/development/how-to-verify.html b/zh-cn/docs/development/how-to-verify.html index abc525b..036e09e 100644 --- a/zh-cn/docs/development/how-to-verify.html +++ b/zh-cn/docs/development/how-to-verify.html @@ -29,7 +29,6 @@ <li>是否包含源码包</li> <li>是否包含源码包的签名</li> <li>是否包含源码包的sha512</li> -<li>是否包含源码包的md5</li> <li>如果上传了二进制包,则同样检查(2)-(4)所列的内容</li> </ol> <h3>2.2 检查gpg签名</h3> @@ -71,18 +70,7 @@ gpg --print-md SHA512 apache-tubemq-client-${release_version}-bin.tar.gz <span class="hljs-meta">#</span><span class="bash"> 或者</span> for i in *.tar.gz.sha512; do echo $i; sha512sum -c $i; done </code></pre> -<h4>2.4 检查MD5</h4> -<blockquote> -<p>本地计算MD5后,验证是否与dist上的一致</p> -</blockquote> -<pre><code class="language-shell">for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i; done -<span class="hljs-meta">#</span><span class="bash">或者</span> -gpg --print-md MD5 apache-tubemq-${release_version}-src.tar.gz -<span class="hljs-meta">#</span><span class="bash"> 如果上传二进制包,则同样需要检查二进制包的MD5</span> -gpg --print-md MD5 apache-tubemq-server-${release_version}-bin.tar.gz -gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz -</code></pre> -<h3>2.5. 检查源码包的文件内容</h3> +<h3>2.4. 检查源码包的文件内容</h3> <p>解压缩<code>apache-tubemq-${release_version}-src.tar.gz</code>,进行如下检查:</p> <ul> <li>DISCLAIMER文件是否存在及内容是否正确</li> @@ -92,7 +80,7 @@ gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz <li>单测是否能够跑通</li> <li>....</li> </ul> -<h3>2.6 检查二进制包(如果上传了二进制包)</h3> +<h3>2.5 检查二进制包(如果上传了二进制包)</h3> <p>解压缩<code>apache-tubemq-client-${release_version}-src.tar.gz</code>和<code>apache-tubemq-server-${release_version}-src.tar.gz</code>,进行如下检查:</p> <ul> <li>DISCLAIMER文件是否存在及内容是否正确</li> diff --git a/zh-cn/docs/development/how-to-verify.json b/zh-cn/docs/development/how-to-verify.json index 6544835..3ac632a 100644 --- a/zh-cn/docs/development/how-to-verify.json +++ b/zh-cn/docs/development/how-to-verify.json @@ -1,6 +1,6 @@ { "filename": "how-to-verify.md", - "__html": "<h1>验证候选版本</h1>\n<p>详细的检查列表请参考: <a href=\"https://cwiki.apache.org/confluence/display/INCUBATOR/Incubator+Release+Checklist\">check list</a></p>\n<h2>1. 下载要发布的候选版本到本地环境</h2>\n<pre><code class=\"language-shell\">svn co https://dist.apache.org/repos/dist/dev/incubator/tubemq/${release_version}-${rc_version}/\n</code></pre>\n<h2>2. 验证上传的版本是否合规</h2>\n<blockquote>\n<p>开始验证环节,验证包含但不局限于以下内容和形式</p>\n</blockquote>\n<h3>2.1 查看发布包是否完整</h3>\n<blockquote>\n<p>上传到dist的包必须包含源码包,二进制包可选</p>\ [...] + "__html": "<h1>验证候选版本</h1>\n<p>详细的检查列表请参考: <a href=\"https://cwiki.apache.org/confluence/display/INCUBATOR/Incubator+Release+Checklist\">check list</a></p>\n<h2>1. 下载要发布的候选版本到本地环境</h2>\n<pre><code class=\"language-shell\">svn co https://dist.apache.org/repos/dist/dev/incubator/tubemq/${release_version}-${rc_version}/\n</code></pre>\n<h2>2. 验证上传的版本是否合规</h2>\n<blockquote>\n<p>开始验证环节,验证包含但不局限于以下内容和形式</p>\n</blockquote>\n<h3>2.1 查看发布包是否完整</h3>\n<blockquote>\n<p>上传到dist的包必须包含源码包,二进制包可选</p>\ [...] "link": "/zh-cn/docs/development/how-to-verify.html", "meta": { "title": "如何验证版本- Apache TubeMQ" diff --git a/zh-cn/docs/development/how-to-verify.md b/zh-cn/docs/development/how-to-verify.md index 36c025d..6294e70 100644 --- a/zh-cn/docs/development/how-to-verify.md +++ b/zh-cn/docs/development/how-to-verify.md @@ -19,8 +19,7 @@ svn co https://dist.apache.org/repos/dist/dev/incubator/tubemq/${release_version 1. 是否包含源码包 2. 是否包含源码包的签名 3. 是否包含源码包的sha512 -4. 是否包含源码包的md5 -5. 如果上传了二进制包,则同样检查(2)-(4)所列的内容 +4. 如果上传了二进制包,则同样检查(2)-(4)所列的内容 ### 2.2 检查gpg签名 - 导入公钥 @@ -59,18 +58,7 @@ gpg --print-md SHA512 apache-tubemq-client-${release_version}-bin.tar.gz for i in *.tar.gz.sha512; do echo $i; sha512sum -c $i; done ``` -#### 2.4 检查MD5 -> 本地计算MD5后,验证是否与dist上的一致 -```shell -for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i; done -#或者 -gpg --print-md MD5 apache-tubemq-${release_version}-src.tar.gz -# 如果上传二进制包,则同样需要检查二进制包的MD5 -gpg --print-md MD5 apache-tubemq-server-${release_version}-bin.tar.gz -gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz -``` - -### 2.5. 检查源码包的文件内容 +### 2.4. 检查源码包的文件内容 解压缩`apache-tubemq-${release_version}-src.tar.gz`,进行如下检查: @@ -81,7 +69,7 @@ gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz - 单测是否能够跑通 - .... -### 2.6 检查二进制包(如果上传了二进制包) +### 2.5 检查二进制包(如果上传了二进制包) 解压缩`apache-tubemq-client-${release_version}-src.tar.gz`和` apache-tubemq-server-${release_version}-src.tar.gz`,进行如下检查: - DISCLAIMER文件是否存在及内容是否正确