Re: [opensuse] Explaining the openSUSE Development Model
On Mon, Oct 17, 2005 at 09:36:12AM -0700, Daniel Hatfield wrote: > All, > > I'm new to the list and missed the first part of this thread as it > doesn't appear to be included in the replies. http://lists.opensuse.org/archive/opensuse/2005-Oct/ and then look for the subject. houghi -- Quote correct (NL) http://www.briachons.org/art/quote/ Zitiere richtig (DE) http://www.afaik.de/usenet/faq/zitieren Quote correctly (EN) http://www.netmeister.org/news/learn2quote.html - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [opensuse] Explaining the openSUSE Development Model
On Mon, Oct 17, 2005 at 07:16:09AM +1000, Peter Flodin wrote: > On 17/10/05, Marcus Meissner <[EMAIL PROTECTED]> wrote: > > Security bugs will be fixed ... in the next snapshot. (or when continuois > > syncing is done, as soon as it is checked in.) > > > > Several security updates like for the released products will not be done. > > > > Ciao, Marcus > > Ok just some clarification (last time and I will update the wiki and > don't want to get it wrong :-) > > If we take the current state where we have a released 10.0 and 10.1 in alpha. > > 1. All fixes/updates in upstream packages are evaluated and applied to > the EDGE stream. Yes. > 2. Security fixes that are severe (like Firefox 1.07) are also applied > to released 10.0 and published as an update. >a) Is there any guideline on the selection criteria (or does > 'severe' sum it up?) Hmm? Nothing has changed from 9.x to 10.0, security updates happen as before. >b) For how long are severe security fixes applied to Released? 6 > months until the next GM release? This happens like it was for the last years. For box releases we usually do that for 2 years. If EDGE still gets frozen and released every 6 months there is probably no need to change that cycle and currently no one has stepped up to me and told me that this will change. Ciao, Marcus (SUSE Security Teamlead) - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] All, I'm new to the list and missed the first part of this thread as it doesn't appear to be included in the replies. >From what has been stated I understand what the unstable repositories are, but I'm not sure what exactly is in stable. Is it the same as the last official release tree or something different. Thanks for clarifying. Daniel - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [opensuse] Explaining the openSUSE Development Model
On Mon, Oct 17, 2005 at 07:16:09AM +1000, Peter Flodin wrote: > On 17/10/05, Marcus Meissner <[EMAIL PROTECTED]> wrote: > > Security bugs will be fixed ... in the next snapshot. (or when continuois > > syncing is done, as soon as it is checked in.) > > > > Several security updates like for the released products will not be done. > > > > Ciao, Marcus > > Ok just some clarification (last time and I will update the wiki and > don't want to get it wrong :-) > > If we take the current state where we have a released 10.0 and 10.1 in alpha. > > 1. All fixes/updates in upstream packages are evaluated and applied to > the EDGE stream. Yes. > 2. Security fixes that are severe (like Firefox 1.07) are also applied > to released 10.0 and published as an update. >a) Is there any guideline on the selection criteria (or does > 'severe' sum it up?) Hmm? Nothing has changed from 9.x to 10.0, security updates happen as before. >b) For how long are severe security fixes applied to Released? 6 > months until the next GM release? This happens like it was for the last years. For box releases we usually do that for 2 years. If EDGE still gets frozen and released every 6 months there is probably no need to change that cycle and currently no one has stepped up to me and told me that this will change. Ciao, Marcus (SUSE Security Teamlead) - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [opensuse] Explaining the openSUSE Development Model
On 17/10/05, Marcus Meissner <[EMAIL PROTECTED]> wrote: > Security bugs will be fixed ... in the next snapshot. (or when continuois > syncing is done, as soon as it is checked in.) > > Several security updates like for the released products will not be done. > > Ciao, Marcus Ok just some clarification (last time and I will update the wiki and don't want to get it wrong :-) If we take the current state where we have a released 10.0 and 10.1 in alpha. 1. All fixes/updates in upstream packages are evaluated and applied to the EDGE stream. 2. Security fixes that are severe (like Firefox 1.07) are also applied to released 10.0 and published as an update. a) Is there any guideline on the selection criteria (or does 'severe' sum it up?) b) For how long are severe security fixes applied to Released? 6 months until the next GM release? Pflodo - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [opensuse] Explaining the openSUSE Development Model
On Sun, Oct 16, 2005 at 09:48:12AM -0500, Andy Smith wrote: > Hello, > > Does the EDGE repository also include security updates? I have 10.0.42 > installed, and so far that is the only installation source that YaST has > accepted. Security bugs will be fixed ... in the next snapshot. (or when continuois syncing is done, as soon as it is checked in.) Several security updates like for the released products will not be done. Ciao, Marcus - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [opensuse] Explaining the openSUSE Development Model
On Sun, 16 Oct 2005, Andy Smith wrote: > Does the EDGE repository also include security updates? I have 10.0.42 > installed, and so far that is the only installation source that YaST has > accepted. As soon as the stream is constantly synced out, it will contain security fixes in terms of package updates to new versions. I.e. if you want the latests sec. fixes, you'll always have to update to the latests version that's in EDGE. Regards Christoph - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [opensuse] Explaining the openSUSE Development Model
Hello, Does the EDGE repository also include security updates? I have 10.0.42 installed, and so far that is the only installation source that YaST has accepted. Thanks, Andy Henne Vogelsang wrote: - "unfrozen" EDGE that recives: * fixes * new packages * new features * new versions of packages - A released product (like 10.0) that recives: * Security fixes * fixes for serious bugs So the direct impact of your fixes, package wishes or the results of your bugreports you _always_ find in EDGE. Henne [1] EDGE installation repository: http://download.opensuse.org/distribution/SL-OSS-edge/inst-source/ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [opensuse] Explaining the openSUSE Development Model (was: [opensuse] YOU politics)
On Sat, Oct 15, 2005 at 08:40:30AM +1000, Peter Flodin wrote: > On 14/10/05, Henne Vogelsang <[EMAIL PROTECTED]> wrote: > > Once we have a goldmaster we "copy" the frozen stream to another > > location and unfreeze the EDGE stream again. Then you have 2 > > streams: > > Is this true? That it is not until GM that the split is from the EDGE > stream? So there is a period where there is no branch taking new > features? When we saw that 10.1 Alpha came out before 10.0 GM, is that > only because the final release is delayed by production? The 10.0 GM was done before (and the branch split up) ... It just had to pass additional qualification tests and production while EDGE was already open. Ciao, Marcus - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [opensuse] Explaining the openSUSE Development Model (was: [opensuse] YOU politics)
On 14/10/05, Henne Vogelsang <[EMAIL PROTECTED]> wrote: > Once we have a goldmaster we "copy" the frozen stream to another > location and unfreeze the EDGE stream again. Then you have 2 > streams: Is this true? That it is not until GM that the split is from the EDGE stream? So there is a period where there is no branch taking new features? When we saw that 10.1 Alpha came out before 10.0 GM, is that only because the final release is delayed by production? Pflodo - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [opensuse] Explaining the openSUSE Development Model (was: [opensuse] YOU politics)
On Friday 14 October 2005 13:35, Henne Vogelsang wrote: > There you have to understand the concept of how openSUSE developes > distributions. Let me explain. > > We have a "code stream" that is constantly developed. Its called EDGE. > Everytime a packager submits a fix, version update, new feature, new > package its build in EDGE. You find EDGE as an installation > repository here [1]. Knew you had this (similar to rawhide), just didn't know it was public. Great. -- // Janne - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[opensuse] Explaining the openSUSE Development Model (was: [opensuse] YOU politics)
Hi, On Friday, October 14, 2005 at 10:01:53, Janne Karhunen wrote: > On Friday 14 October 2005 09:30, Pascal Bleser wrote: > > > > Any chances we could set up a BZ voting system for these? It > > > would probably serve as a good input to SUSE managers as what > > > is considered as 'serious' by the users. > > > > That's not the idea. At least not at the moment. IMHO. > > Problem is that users might be slightly less motivated about > bug reporting if they never see the fixes. AFAIK even Fedora > manages to distribute fixes back to community. But then again, > it's much more buggy to begin with ;) There you have to understand the concept of how openSUSE developes distributions. Let me explain. We have a "code stream" that is constantly developed. Its called EDGE. Everytime a packager submits a fix, version update, new feature, new package its build in EDGE. You find EDGE as an installation repository here [1]. Then from time to time we "freeze" the EDGE stream and allow only fixes to go in. No new features, no version updates, no new packages. On fixed dates (usually every second thursday) we build installable medias from the EDGE stream so people can test the same "state" of the "frozen" EDGE stream together. First they are called previews which then lead to betas which lead to release candidates which lead to a gold master. Once we have a goldmaster we "copy" the frozen stream to another location and unfreeze the EDGE stream again. Then you have 2 streams: - "unfrozen" EDGE that recives: * fixes * new packages * new features * new versions of packages - A released product (like 10.0) that recives: * Security fixes * fixes for serious bugs So the direct impact of your fixes, package wishes or the results of your bugreports you _always_ find in EDGE. Henne [1] EDGE installation repository: http://download.opensuse.org/distribution/SL-OSS-edge/inst-source/ -- Henne Vogelsang, Subsystems "Rules change. The Game remains the same." - Omar (The Wire) - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
