Xen project Mailing List

Re: [Xen-devel] Design session report: Xen on Distros

To: George Dunlap <george.dunlap@xxxxxxxxxx>

Date: Mon, 15 Jul 2019 14:52:23 +0000

Accept-language: en-US

Arc-authentication-results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=suse.com;dmarc=pass action=none header.from=suse.com;dkim=pass header.d=suse.com;arc=none

Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=4+wcDz/51UmXXCRfmEMacYHthVquY4iawNoBVScczLo=; b=dMdohp90iMpmsnJrPkF+Xbd5fNw90xhOVdAEaMQJPqIJRW3+RmWxy6zXxFdfzzBfrcqpl8+02wM1kRKREPmZfC2NI01z25NF96W5RKNNH5HVeDGOP7f8enjySSrx99ryzfjLzecm3tJbAIgJpMgy1kLx69mAjdLAgKdLX51r9IehUB0Vwt0KTYS1NgbxqE4LPKCtuedL4NFaLFgTyTuDWUHW+hAjVpSDYW2T4Jcgo2GTbGsmFfzdTVZYxudO17PP+5QwLrfu4Jybi92d25gk0UsxP0w1vKHE6HAKNYiMGX+6l/NS1uVxVsKFXFjegerQak06qYzQBJbfn8EbRARVUA==

Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ewglK3Q6+VFLqLMc0t1yH2CZsFqeF6Kb9aIqdr86OboHkxTpp4Q2+d85pksCYDIYcFkGHH9al56G8KLzSuiaSyw72apY/SmKG44ot6ShTbL5AfE+DlHB73zzgL8uS8cNgcHuV8Sc81ssKQSTReqzBGFMLApdsZ4RpA8ecmLJVGZzR3ecxMW1drN3j3Ch6VPkJf8XneqMkiNBqjN3zhXM9VXzfHrIh1TOGWWqaJcvP/q4zkgHRH7Mj+AvXk4NxuuLikTvmebESd9dl/PThGgVdAtelXK5i96gWruGeLksb3ES0rKAkQS1rSN6juA88sJA+heTbfLzckEuBCu7hBSfNQ==

Authentication-results: spf=none (sender IP is ) smtp.mailfrom=JBeulich@xxxxxxxx;

Cc: xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>

Delivery-date: Mon, 15 Jul 2019 14:52:34 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Thread-index: AQHVOxdKPvpxo6u4BUiqE8VCaQqJKabLu4AAgAAFgTSAAAKcAA==

Thread-topic: [Xen-devel] Design session report: Xen on Distros

On 15.07.2019 16:42, George Dunlap wrote: > On 7/15/19 3:23 PM, Jan Beulich wrote: >> On 15.07.2019 16:11, George Dunlap wrote: >>> There was a long discussion about security patches, with the general >>> proposal being that we should cut a point release for every security issue. >> >> Interesting. Looks like in politics that until a decision fits people >> they keep re-raising the point. Iirc on a prior meeting (Budapest?) >> we had settled on continuing with the current scheme. Were there any >> new arguments towards this alternative model? > > Well I don't know if there were any new arguments because I don't > immediately remember the old discussion. Do we have a summary of the > discussion in Budapest, with its conclusions, anywhere? I don't recall if suitable notes were taken back then; as indicated I'm not even sure which meeting it was at. > The basic idea was that: > > 1. Most distros / packagers are going to want to do an immediate release > anyway. > > 2. Distros generally seemed to be rebasing on top of staging as soon as > the XSA went out anyway (and ISTR this being the recommeneded course of > action) > > So for all intents and purposes, we have something which is, in fact, a > release; all it's missing is a signed tag and a tarball. > > Obviously there are testing implications that would need to be sorted > out before this could become a reality. > > In any case, the ball is in the court of "VOLUNTEER" to write up a > concrete proposal which could be discussed. You'll be able to raise all > your concerns at that point if you want (although having a sketch would > of course be helpful for whoever is writing such a proposal). Sure - I realized soon after having sent the initial reply that perhaps this was the wrong context in the first place to raise my question. Jan _______________________________________________ Xen-devel mailing list Xen-devel@xxxxxxxxxxxxxxxxxxxx https://lists.xenproject.org/mailman/listinfo/xen-devel

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.