You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@tubemq.apache.org by gx...@apache.org on 2020/07/24 02:59:53 UTC
[incubator-tubemq-website] branch master updated: [TUBEMQ-301]
[website] Update how-to-release/how-to-verify (#44)
This is an automated email from the ASF dual-hosted git repository.
gxcheng pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/incubator-tubemq-website.git
The following commit(s) were added to refs/heads/master by this push:
new 5cffb04 [TUBEMQ-301] [website] Update how-to-release/how-to-verify (#44)
5cffb04 is described below
commit 5cffb0469b9f158f0fa27af6af773c7dac6ce8b1
Author: Guangxu Cheng <gx...@apache.org>
AuthorDate: Fri Jul 24 10:59:43 2020 +0800
[TUBEMQ-301] [website] Update how-to-release/how-to-verify (#44)
---
docs/en-us/development/how-to-release.md | 5 ++---
docs/en-us/development/how-to-verify.md | 18 +++---------------
docs/zh-cn/development/how-to-release.md | 5 ++---
docs/zh-cn/development/how-to-verify.md | 18 +++---------------
4 files changed, 10 insertions(+), 36 deletions(-)
diff --git a/docs/en-us/development/how-to-release.md b/docs/en-us/development/how-to-release.md
index a64c948..8cda0a8 100644
--- a/docs/en-us/development/how-to-release.md
+++ b/docs/en-us/development/how-to-release.md
@@ -227,14 +227,13 @@ cp ./tubemq-client/target/apache-tubemq-client-${release_version}-bin.tar.gz /tm
cp ./tubemq-server/target/apache-tubemq-server-${release_version}-bin.tar.gz /tmp/apache-tubemq-${release_version}-${rc_version}/ # 拷贝server包到源码包目录下,方面下一步对包进行签名
```
-### 3.5 对源码包/二进制包进行签名/sha512/md5
+### 3.5 对源码包/二进制包进行签名/sha512
```shell
-for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i > $i.md5 ; done # 计算MD5
for i in *.tar.gz; do echo $i; gpg --print-md SHA512 $i > $i.sha512 ; done # 计算SHA512
for i in *.tar.gz; do echo $i; gpg --armor --output $i.asc --detach-sig $i ; done # 计算签名
```
-### 3.6 检查生成的签名/sha512/md5是否正确
+### 3.6 检查生成的签名/sha512是否正确
具体可以参考:[验证候选版本](how-to-verify.md)
比如验证签名是否正确如下:
```shell
diff --git a/docs/en-us/development/how-to-verify.md b/docs/en-us/development/how-to-verify.md
index da93c07..ed8d905 100644
--- a/docs/en-us/development/how-to-verify.md
+++ b/docs/en-us/development/how-to-verify.md
@@ -21,8 +21,7 @@ svn co https://dist.apache.org/repos/dist/dev/incubator/tubemq/${release_version
1. 是否包含源码包
2. 是否包含源码包的签名
3. 是否包含源码包的sha512
-4. 是否包含源码包的md5
-5. 如果上传了二进制包,则同样检查(2)-(4)所列的内容
+4. 如果上传了二进制包,则同样检查(2)-(4)所列的内容
### 2.2 检查gpg签名
- 导入公钥
@@ -61,18 +60,7 @@ gpg --print-md SHA512 apache-tubemq-client-${release_version}-bin.tar.gz
for i in *.tar.gz.sha512; do echo $i; sha512sum -c $i; done
```
-#### 2.4 检查MD5
-> 本地计算MD5后,验证是否与dist上的一致
-```shell
-for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i; done
-#或者
-gpg --print-md MD5 apache-tubemq-${release_version}-src.tar.gz
-# 如果上传二进制包,则同样需要检查二进制包的MD5
-gpg --print-md MD5 apache-tubemq-server-${release_version}-bin.tar.gz
-gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz
-```
-
-### 2.5. 检查源码包的文件内容
+### 2.4. 检查源码包的文件内容
解压缩`apache-tubemq-${release_version}-src.tar.gz`,进行如下检查:
@@ -83,7 +71,7 @@ gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz
- 单测是否能够跑通
- ....
-### 2.6 检查二进制包(如果上传了二进制包)
+### 2.5 检查二进制包(如果上传了二进制包)
解压缩`apache-tubemq-client-${release_version}-src.tar.gz`和`
apache-tubemq-server-${release_version}-src.tar.gz`,进行如下检查:
- DISCLAIMER文件是否存在及内容是否正确
diff --git a/docs/zh-cn/development/how-to-release.md b/docs/zh-cn/development/how-to-release.md
index d5ca218..cf23436 100644
--- a/docs/zh-cn/development/how-to-release.md
+++ b/docs/zh-cn/development/how-to-release.md
@@ -224,14 +224,13 @@ cp ./tubemq-client/target/apache-tubemq-client-${release_version}-bin.tar.gz /tm
cp ./tubemq-server/target/apache-tubemq-server-${release_version}-bin.tar.gz /tmp/apache-tubemq-${release_version}-${rc_version}/ # 拷贝server包到源码包目录下,方面下一步对包进行签名
```
-### 3.5 对源码包/二进制包进行签名/sha512/md5
+### 3.5 对源码包/二进制包进行签名/sha512
```shell
-for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i > $i.md5 ; done # 计算MD5
for i in *.tar.gz; do echo $i; gpg --print-md SHA512 $i > $i.sha512 ; done # 计算SHA512
for i in *.tar.gz; do echo $i; gpg --armor --output $i.asc --detach-sig $i ; done # 计算签名
```
-### 3.6 检查生成的签名/sha512/md5是否正确
+### 3.6 检查生成的签名/sha512是否正确
具体可以参考:[验证候选版本](how-to-verify.md)
比如验证签名是否正确如下:
```shell
diff --git a/docs/zh-cn/development/how-to-verify.md b/docs/zh-cn/development/how-to-verify.md
index 36c025d..6294e70 100644
--- a/docs/zh-cn/development/how-to-verify.md
+++ b/docs/zh-cn/development/how-to-verify.md
@@ -19,8 +19,7 @@ svn co https://dist.apache.org/repos/dist/dev/incubator/tubemq/${release_version
1. 是否包含源码包
2. 是否包含源码包的签名
3. 是否包含源码包的sha512
-4. 是否包含源码包的md5
-5. 如果上传了二进制包,则同样检查(2)-(4)所列的内容
+4. 如果上传了二进制包,则同样检查(2)-(4)所列的内容
### 2.2 检查gpg签名
- 导入公钥
@@ -59,18 +58,7 @@ gpg --print-md SHA512 apache-tubemq-client-${release_version}-bin.tar.gz
for i in *.tar.gz.sha512; do echo $i; sha512sum -c $i; done
```
-#### 2.4 检查MD5
-> 本地计算MD5后,验证是否与dist上的一致
-```shell
-for i in *.tar.gz; do echo $i; gpg --print-md MD5 $i; done
-#或者
-gpg --print-md MD5 apache-tubemq-${release_version}-src.tar.gz
-# 如果上传二进制包,则同样需要检查二进制包的MD5
-gpg --print-md MD5 apache-tubemq-server-${release_version}-bin.tar.gz
-gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz
-```
-
-### 2.5. 检查源码包的文件内容
+### 2.4. 检查源码包的文件内容
解压缩`apache-tubemq-${release_version}-src.tar.gz`,进行如下检查:
@@ -81,7 +69,7 @@ gpg --print-md MD5 apache-tubemq-client-${release_version}-bin.tar.gz
- 单测是否能够跑通
- ....
-### 2.6 检查二进制包(如果上传了二进制包)
+### 2.5 检查二进制包(如果上传了二进制包)
解压缩`apache-tubemq-client-${release_version}-src.tar.gz`和`
apache-tubemq-server-${release_version}-src.tar.gz`,进行如下检查:
- DISCLAIMER文件是否存在及内容是否正确