All of lore.kernel.org
 help / color / mirror / Atom feed
From: Marek Vasut <marex@denx.de>
To: Marta Rybczynska <rybczynska@gmail.com>
Cc: akuster808 <akuster808@gmail.com>,
	openembedded-devel@lists.openembedded.org, raj.khem@gmail.com
Subject: Re: [oe] [meta-oe][dunfell][PATCH 1/5] freerdp: Upgrade to 2.2.0
Date: Mon, 17 Jan 2022 23:21:23 +0100	[thread overview]
Message-ID: <c001289b-219a-f9bf-64f4-1c09917b2809@denx.de> (raw)
In-Reply-To: <CAApg2=QC-VnA3brVeOya4Yps+PLthVMQK7sZY8OKAh9WctH7LA@mail.gmail.com>

On 1/17/22 18:34, Marta Rybczynska wrote:
> On Sun, Jan 16, 2022 at 7:22 PM Marek Vasut <marex@denx.de> wrote:
> 
>> On 1/16/22 19:05, akuster808 wrote:
>>>
>>>
>>> On 1/15/22 7:45 AM, Marek Vasut wrote:
>>>> On 1/15/22 14:43, akuster808 wrote:
>>>>>
>>>>>
>>>>> On 1/11/22 8:57 PM, Marek Vasut wrote:
>>>>>> On 1/12/22 05:42, akuster808 wrote:
>>>>>>>
>>>>>>>
>>>>>>> On 1/11/22 2:47 PM, Marek Vasut wrote:
>>>>>>>> From: Khem Raj <raj.khem@gmail.com>
>>>>>>>>
>>>>>>>> (cherry picked from commit f751dcf81a18fe817b40e755a2ba3f54a74d1e02)
>>>>>>>> Signed-off-by: Khem Raj <raj.khem@gmail.com>
>>>>>>>> Signed-off-by: Marek Vasut <marex@denx.de>
>>>>>>>
>>>>>>> And why should I allow this?
>>>>>>
>>>>>> This ... what ? The SoB line or the update ?
>>>>>
>>>>> What is in the update from 2.2.0 to 2.4.1?
>>>>
>>>> This patch updates freerdp from 2.0.0 to 2.2.0 , not from 2.2.0 to
>>>> 2.4.1 , that's a later patch.
>>> I still see new features being added in 2.2.0 so the same statements
>>> apply.  Until the process changes to allow package updates that include
>>> new features and functionality for a LTS branch, I am going to decline
>>> taking this patch series.
>>
>> What about the large amount of CVE fixes and the fact that this is still
>> a stable-2.0 branch update, not upgrade to 3.x , as explained below ?
>>
>>
> Marek,
> Are you able to backport needed fixes to 2.2.x series? This would be
> something
> Armin would likely accept.

I'm not really confident at sifting through the 550 or so patches 
between freerdp 2.0.0 and 2.4.1 and picking out what ought to be CVE 
fixes correctly, so that might end up with even worse result.

We can likely pick the fixes from debian oldstable freerdp, but those 
are also last updated in June 2020, and debian stable is on freerdp 
2.3.0 now.

Also, June 2020 is where freerdp no longer has CVE information in the 
commit messages, for whatever reason.

That's why I think rolling the freerdp forward to latest stable-2.x 
series is the easiest, the CVEs get reliably closed and there shouldn't 
be any API/ABI incompatibility.


      reply	other threads:[~2022-01-17 22:21 UTC|newest]

Thread overview: 14+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2022-01-11 22:47 [meta-oe][dunfell][PATCH 1/5] freerdp: Upgrade to 2.2.0 Marek Vasut
2022-01-11 22:47 ` [meta-oe][dunfell][PATCH 2/5] freerdp: Upgrade 2.2.0 -> 2.3.0 Marek Vasut
2022-01-11 22:47 ` [meta-oe][dunfell][PATCH 3/5] freerdp: backport openssl 3.x patches Marek Vasut
2022-01-12  4:43   ` [oe] " akuster808
2022-01-12  4:59     ` Marek Vasut
2022-01-11 22:47 ` [meta-oe][dunfell][PATCH 4/5] freerdp: Upgrade 2.3.0 -> 2.4.1 Marek Vasut
2022-01-11 22:47 ` [meta-oe][dunfell][PATCH 5/5] freerdp: Add missing libusb1 dependency Marek Vasut
2022-01-12  4:42 ` [oe] [meta-oe][dunfell][PATCH 1/5] freerdp: Upgrade to 2.2.0 akuster808
2022-01-12  4:57   ` Marek Vasut
2022-01-15 13:43     ` akuster808
2022-01-15 15:45       ` Marek Vasut
     [not found]         ` <47b66e62-0682-38c7-6c03-a53427fdf4d9@gmail.com>
2022-01-16 18:21           ` Marek Vasut
2022-01-17 17:34             ` Marta Rybczynska
2022-01-17 22:21               ` Marek Vasut [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=c001289b-219a-f9bf-64f4-1c09917b2809@denx.de \
    --to=marex@denx.de \
    --cc=akuster808@gmail.com \
    --cc=openembedded-devel@lists.openembedded.org \
    --cc=raj.khem@gmail.com \
    --cc=rybczynska@gmail.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.