Entering freeze for libvirt-6.6.0
I have just tagged v6.6.0-rc1 in the repository and pushed signed tarballs and source RPMs to https://libvirt.org/sources/ Please give the release candidate some testing and in case you find a serious issue which should have a fix in the upcoming release, feel free to reply to this thread to make sure the issue is more visible. If you have not done so yet, please update NEWS.rst to document any significant change you made since the last release. As already announced I'm on vacation next week and thus I won't make the usual second release candidate. If everything looks good when I'm back, I will make the final release on Aug 1. Thanks, Jirka
On 7/24/20 5:06 PM, Jiri Denemark wrote:
I have just tagged v6.6.0-rc1 in the repository and pushed signed tarballs and source RPMs to https://libvirt.org/sources/
I'm not having much luck finding your public key used for signing. At https://pgp.key-server.io/ I've found 1024D/8A42DBE1 associated with your @redhat.com mail address but it appears this is not the key you used. Can you please provide a pointer to your public key? Thanks! Regards, Jim
On a Monday in 2020, Jim Fehlig wrote:
On 7/24/20 5:06 PM, Jiri Denemark wrote:
I have just tagged v6.6.0-rc1 in the repository and pushed signed tarballs and source RPMs to https://libvirt.org/sources/
I'm not having much luck finding your public key used for signing. At https://pgp.key-server.io/ I've found 1024D/8A42DBE1 associated with your @redhat.com mail address but it appears this is not the key you used. Can you please provide a pointer to your public key? Thanks!
Both pgp.ocf.berkeley.edu and pgp.uni-mainz.de seem to have it, the rest of the servers from the SKS pool [0] I randomly tried did not catch up yet. Also note that the key is not (yet) signed by any other libvirt maintainers, partially thanks to the pandemic, and thanks to the flooding of the PGP web of trust by fake signatures: https://lists.gnupg.org/pipermail/gnupg-announce/2019q3/000439.html Jano
Regards, Jim
On 7/27/20 10:23 AM, Ján Tomko wrote:
On a Monday in 2020, Jim Fehlig wrote:
On 7/24/20 5:06 PM, Jiri Denemark wrote:
I have just tagged v6.6.0-rc1 in the repository and pushed signed tarballs and source RPMs to https://libvirt.org/sources/
I'm not having much luck finding your public key used for signing. At https://pgp.key-server.io/ I've found 1024D/8A42DBE1 associated with your @redhat.com mail address but it appears this is not the key you used. Can you please provide a pointer to your public key? Thanks!
Both pgp.ocf.berkeley.edu and pgp.uni-mainz.de seem to have it, the rest of the servers from the SKS pool [0] I randomly tried did not catch up yet.
Thanks, found it on pgp.ocf.berkeley.edu. Regards, Jim
participants (3)
-
Jim Fehlig -
Jiri Denemark -
Ján Tomko