如何准备 Apache Release on Apache Dubbohttps://deploy-preview-3199--dubbo.netlify.app/zh-cn/contact/committer/release-guide/Recent content in 如何准备 Apache Release on Apache DubboHugozh-cn通用 Release 流程https://deploy-preview-3199--dubbo.netlify.app/zh-cn/contact/committer/release-guide/common/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3199--dubbo.netlify.app/zh-cn/contact/committer/release-guide/common/<h2 id="理解-apache-发布的内容和流程">理解 Apache 发布的内容和流程</h2> <p>总的来说,Source Release 是 Apache 关注的重点,也是发布的必须内容;而 Binary Release 是可选项,Dubbo 可以选择是否发布二进制包到 Apache 仓库或者发布到 Maven 中央仓库。</p> <p>请参考以下链接,找到更多关于 ASF 的发布指南:</p> <ul> <li><a href="http://www.apache.org/dev/release-publishing">Apache Release Guide</a></li> <li><a href="http://www.apache.org/dev/release.html">Apache Release Policy</a></li> <li><a href="http://www.apache.org/dev/publishing-maven-artifacts.html">Maven Release Info</a></li> </ul> <h2 id="发布流程">发布流程</h2> <h3 id="1-准备分支">1. 准备分支</h3> <p>从主干分支拉取新分支作为发布分支,如现在要发布 <code>${release_version}</code> 版本,则从开发分支拉出新分支 <code>${release_version}-release</code>,此后<code>${release_version}</code> Release Candidates 涉及的修改及打标签等都在<code>${release_version}-release</code>分支进行,最终发布完成后合入主干分支。</p> <p>例:如 Java SDK 需要发布 <code>3.0.10</code> 版本,从 <code>3.0</code> 分支拉出新分支 <code>3.0.10-release</code>,并在此分支提交从 Snapshot 替换为 <code>3.0.10</code> 版本号的 commit。</p> <h3 id="2-github-打标签并发布-pre-release-状态">2. Github 打标签并发布 Pre Release 状态</h3> <p>在对应 GitHub 仓库中基于 <code>${release_version}-release</code> 分支,打标签 <code>${release_version}-release</code>,填写 Release Note 并发布 Pre Release 状态。(<strong>不允许在投票流程正式通过前把 Release 状态置为正式发布状态</strong>)</p>Java SDK Release 流程https://deploy-preview-3199--dubbo.netlify.app/zh-cn/contact/committer/release-guide/java-sdk/Mon, 01 Jan 0001 00:00:00 +0000https://deploy-preview-3199--dubbo.netlify.app/zh-cn/contact/committer/release-guide/java-sdk/<h2 id="理解-apache-发布的内容和流程">理解 Apache 发布的内容和流程</h2> <p>总的来说,Source Release 是 Apache 关注的重点,也是发布的必须内容;而 Binary Release 是可选项,Dubbo 可以选择是否发布二进制包到 Apache 仓库或者发布到 Maven 中央仓库。</p> <p>请参考以下链接,找到更多关于 ASF 的发布指南:</p> <ul> <li><a href="http://www.apache.org/dev/release-publishing">Apache Release Guide</a></li> <li><a href="http://www.apache.org/dev/release.html">Apache Release Policy</a></li> <li><a href="http://www.apache.org/dev/publishing-maven-artifacts.html">Maven Release Info</a></li> </ul> <h2 id="本地构建环境准备">本地构建环境准备</h2> <p>主要包括签名工具、Maven 仓库认证相关准备</p> <h3 id="安装gpg">安装GPG</h3> <p>详细文档请参见<a href="https://www.gnupg.org/download/index.html">这里</a>, Mac OS 下配置如下</p> <div class="highlight"><pre tabindex="0" style="color:#93a1a1;background-color:#002b36;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code class="language-sh" data-lang="sh"><span style="display:flex;"><span>$ brew install gpg </span></span><span style="display:flex;"><span>$ gpg --version <span style="color:#586e75">#检查版本,应该为2.x</span> </span></span></code></pre></div><h3 id="用gpg生成key">用gpg生成key</h3> <p>根据提示,生成 key</p> <div class="highlight"><pre tabindex="0" style="color:#93a1a1;background-color:#002b36;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code class="language-shell" data-lang="shell"><span style="display:flex;"><span>$ gpg --full-gen-key </span></span><span style="display:flex;"><span>gpg <span style="color:#719e07">(</span>GnuPG<span style="color:#719e07">)</span> 2.0.12; Copyright <span style="color:#719e07">(</span>C<span style="color:#719e07">)</span> <span style="color:#2aa198">2009</span> Free Software Foundation, Inc. </span></span><span style="display:flex;"><span>This is free software: you are free to change and redistribute it. </span></span><span style="display:flex;"><span>There is NO WARRANTY, to the extent permitted by law. </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span>Please <span style="color:#719e07">select</span> what kind of key you want: </span></span><span style="display:flex;"><span> <span style="color:#719e07">(</span>1<span style="color:#719e07">)</span> RSA and RSA <span style="color:#719e07">(</span>default<span style="color:#719e07">)</span> </span></span><span style="display:flex;"><span> <span style="color:#719e07">(</span>2<span style="color:#719e07">)</span> DSA and Elgamal </span></span><span style="display:flex;"><span> <span style="color:#719e07">(</span>3<span style="color:#719e07">)</span> DSA <span style="color:#719e07">(</span>sign only<span style="color:#719e07">)</span> </span></span><span style="display:flex;"><span> <span style="color:#719e07">(</span>4<span style="color:#719e07">)</span> RSA <span style="color:#719e07">(</span>sign only<span style="color:#719e07">)</span> </span></span><span style="display:flex;"><span>Your selection? <span style="color:#2aa198">1</span> </span></span><span style="display:flex;"><span>RSA keys may be between <span style="color:#2aa198">1024</span> and <span style="color:#2aa198">4096</span> bits long. </span></span><span style="display:flex;"><span>What keysize <span style="color:#719e07">do</span> you want? <span style="color:#719e07">(</span>2048<span style="color:#719e07">)</span> <span style="color:#2aa198">4096</span> </span></span><span style="display:flex;"><span>Requested keysize is <span style="color:#2aa198">4096</span> bits </span></span><span style="display:flex;"><span>Please specify how long the key should be valid. </span></span><span style="display:flex;"><span> <span style="color:#268bd2">0</span> <span style="color:#719e07">=</span> key does not expire </span></span><span style="display:flex;"><span> &lt;n&gt; <span style="color:#719e07">=</span> key expires in n days </span></span><span style="display:flex;"><span> &lt;n&gt;w <span style="color:#719e07">=</span> key expires in n weeks </span></span><span style="display:flex;"><span> &lt;n&gt;m <span style="color:#719e07">=</span> key expires in n months </span></span><span style="display:flex;"><span> &lt;n&gt;y <span style="color:#719e07">=</span> key expires in n years </span></span><span style="display:flex;"><span>Key is valid <span style="color:#719e07">for</span>? <span style="color:#719e07">(</span>0<span style="color:#719e07">)</span> </span></span><span style="display:flex;"><span>Key does not expire at all </span></span><span style="display:flex;"><span>Is this correct? <span style="color:#719e07">(</span>y/N<span style="color:#719e07">)</span> y </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span>GnuPG needs to construct a user ID to identify your key. </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span>Real name: Robert Burrell Donkin </span></span><span style="display:flex;"><span>Email address: rdonkin@apache.org </span></span><span style="display:flex;"><span>Comment: CODE SIGNING KEY </span></span><span style="display:flex;"><span>You selected this USER-ID: </span></span><span style="display:flex;"><span> <span style="color:#2aa198">&#34;Robert Burrell Donkin (CODE SIGNING KEY) &lt;rdonkin@apache.org&gt;&#34;</span> </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span>Change <span style="color:#719e07">(</span>N<span style="color:#719e07">)</span>ame, <span style="color:#719e07">(</span>C<span style="color:#719e07">)</span>omment, <span style="color:#719e07">(</span>E<span style="color:#719e07">)</span>mail or <span style="color:#719e07">(</span>O<span style="color:#719e07">)</span>kay/<span style="color:#719e07">(</span>Q<span style="color:#719e07">)</span>uit? O </span></span><span style="display:flex;"><span>You need a Passphrase to protect your secret key. <span style="color:#586e75"># 填入密码,以后打包过程中会经常用到</span> </span></span></code></pre></div><h3 id="查看-key-id">查看 key id</h3> <div class="highlight"><pre tabindex="0" style="color:#93a1a1;background-color:#002b36;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code class="language-sh" data-lang="sh"><span style="display:flex;"><span>$ gpg --list-keys </span></span><span style="display:flex;"><span>pub rsa4096/28681CB1 2018-04-26 <span style="color:#586e75"># 28681CB1就是key id</span> </span></span><span style="display:flex;"><span>uid <span style="color:#719e07">[</span>ultimate<span style="color:#719e07">]</span> liujun <span style="color:#719e07">(</span>apache-dubbo<span style="color:#719e07">)</span> &lt;liujun@apache.org&gt; </span></span><span style="display:flex;"><span>sub rsa4096/D3D6984B 2018-04-26 </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span><span style="color:#586e75"># 通过key id发送public key到keyserver</span> </span></span><span style="display:flex;"><span>$ gpg --keyserver pgpkeys.mit.edu --send-key 28681CB1 </span></span><span style="display:flex;"><span><span style="color:#586e75"># 其中,pgpkeys.mit.edu为随意挑选的keyserver,keyserver列表为:https://sks-keyservers.net/status/,为相互之间是自动同步的,选任意一个都可以。</span> </span></span></code></pre></div><p>PS: 上文bash中两个server地址均无法打开,可以使用直接使用网页上传: <code>https://keyserver.ubuntu.com/</code></p>