From: akuster808 <akuster808@gmail.com>
To: Paul Eggleton <paul.eggleton@linux.intel.com>,
Sona Sarmadi <sona.sarmadi@enea.com>
Cc: yocto@yoctoproject.org
Subject: Re: General policies for CVE fixes
Date: Mon, 17 Oct 2016 15:41:04 -0700 [thread overview]
Message-ID: <d0f477af-facf-8a78-7cd8-9db858e8d9bd@gmail.com> (raw)
In-Reply-To: <2707323.ORKxCqrsOD@peggleto-mobl.ger.corp.intel.com>
On 10/17/2016 02:34 PM, Paul Eggleton wrote:
> On Mon, 17 Oct 2016 15:23:55 Bruce Ashfield wrote:
>> On 2016-10-17 03:11 PM, Sona Sarmadi wrote:
>>> From https://wiki.yoctoproject.org/wiki/Stable_branch_maintenance:
>>>
>>> /General policies: /
>>>
>>> * /Fixes must go into master first unless they are applicable only to
>>>
>>> the stable branch; if back-porting to an older stable branch, the
>>> fix should first be applied to the newer stable branches before
>>> being back-ported to the older branch/
>>>
>>> Does anyone know the reason for the policy above i.e. why fixes have to
>>> go to master first?
>> The kernel has the same policy for -stable kernels. Speaking at a very
>> high level, it simply ensures that the development of maintenance/stable
>> branches does not move ahead of master in terms of fixes.
>>
>> That keeps development focused on the tip, where it belongs (versus
>> companies/people working in silos for an extended period of time), since
>> once in master many branches can benefit from it.
> Another way to think about this is what would happen if we didn't fix it in
> master first, then forgot to go back and do that? master (and the stable
> release that eventually follows from it) would potentially be left without the
> fix, so when you upgraded the vulnerability would come back.
That applies for any fix , security or not.
-armin
>
> Cheers,
> Paul
>
next prev parent reply other threads:[~2016-10-17 22:41 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-10-17 19:11 General policies for CVE fixes Sona Sarmadi
2016-10-17 19:23 ` Bruce Ashfield
2016-10-17 21:34 ` Paul Eggleton
2016-10-17 22:41 ` akuster808 [this message]
2016-10-17 22:53 ` Paul Eggleton
2016-10-17 19:28 ` akuster
2016-10-17 23:01 ` Khem Raj
2016-10-19 10:42 ` Sona Sarmadi
2016-10-19 13:08 ` Bruce Ashfield
2016-10-19 15:41 ` akuster
2016-10-27 6:23 ` Sona Sarmadi
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=d0f477af-facf-8a78-7cd8-9db858e8d9bd@gmail.com \
--to=akuster808@gmail.com \
--cc=paul.eggleton@linux.intel.com \
--cc=sona.sarmadi@enea.com \
--cc=yocto@yoctoproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.