2012/6/23 Tim Williams <[email protected]>: > On Thu, Jun 21, 2012 at 5:07 PM, Olivier Lamy <[email protected]> wrote: >> Hi, >> I'd like we release Apache DirectMemory 0.1-incubating (first release >> on Apache land !) >> >> We solved 53 issues (see http://s.apache.org/DIRECTMEMORY-0.1-incubating) >> >> As we essentially produce Maven artifacts, we will publish only a >> source release artifact available here: >> http://people.apache.org/builds/incubator/directmemory/0.1-incubating/ >> >> Staging maven repository: >> https://repository.apache.org/content/repositories/orgapachedirectmemory-263/ >> >> [+1] >> [0] >> [-1] > > I found: > Tim-Williamss-MacBook-Pro:DirectMemory-rc twilliams$ md5 *.zip && > openssl sha1 *.zip > MD5 (directmemory-0.1-incubating-source-release.zip) = > 3bc04b9e8a62e9c26316fc8400a63867 > SHA1(directmemory-0.1-incubating-source-release.zip)= > f64665fba5343a00567921271ad3c60211597913 > > ... so that's checks... > > o) I don't see a KEYS file and gpg doesn't find your key in order to > verify it. Since others have had success, perhaps I'm missing it > somewhere?
with a line keyserver hkp://pgp.mit.edu ~/.gnupg/gpg.conf olamy@minotaur:~/tmp$ gpg -v directmemory-0.1-incubating-source-release.zip.asc Warning: using insecure memory! Version: GnuPG v1.4.11 (Darwin) gpg: armor header: gpg: assuming signed data in `directmemory-0.1-incubating-source-release.zip' gpg: Signature made Thu Jun 21 20:42:42 2012 UTC using DSA key ID B4372146 gpg: Can't check signature: No public key olamy@minotaur:~/tmp$ gpg --recv-keys B4372146 Warning: using insecure memory! gpg: requesting key B4372146 from hkp server pgp.mit.edu gpg: /home/olamy/.gnupg/trustdb.gpg: trustdb created gpg: key B4372146: public key "Olivier Lamy <[email protected]>" imported gpg: Total number processed: 1 gpg: imported: 1 or with importing http://apache.org/dist/incubator/directmemory/KEYS (svn source https://svn.apache.org/repos/asf/incubator/directmemory/project/KEYS) > > o) I'd remove the LICENSE.tst - a single file is sufficient. fixed > > o) I can't get rat to be very useful for me right now but I notice > that some files (e.g. *.sh) don't have an Apache License header. fixed > > o) I think just including DEPENDENCIES in NOTICE would be more typical. removed. But I have to check why maven still generate an empty DEPENDENCIES file. blocker for you ? > > overall, I'd prefer to see a new candidate rolled. > > Thanks, > --tim @ant "comment box made of "="s " removed. If you want to test release stuff use: mvn clean install -Prelease (-DskipTests to get it faster) If everything is fine. I will retry that on Monday. -- Olivier
