On Sat, Aug 21, 2004 at 05:43:22PM -0600, dann frazier wrote:
> On Fri, Aug 20, 2004 at 01:48:32PM -0600, dann frazier wrote:
> > We need to come to an agreement about which kernel-source we will ship
> > for sarge. According to http://wiki.debian.net/index.cgi?DebianKernel,
> > everyone w/ 2.4.26 has 2.4.27 except for powerpc (sparc is building).
> >
> > 2.4.26 has had more testing time - its used in d-i RC1. The latest
> > kernel-source-2.4.26 package appears to be in good shape with respect
> > to security.
> >
> > What arguments are there for moving to 2.4.27 prior to sarge?
>
> maks attems responded:
> > important sparse fixes.
>
> CAN-2004-0495 (Al Viro sparse fixes) is not fixed in kernel-source-2.4.26,
> and there maybe others.
>
> > and newer libata, acpi, xfs and netdrv.
>
> Thiemo Seufer responded:
> > Updated device mapper and IPsec.
>
> So, some things got updated - I don't know the details of these updates,
> but nothing jumps out as a show stopper for sarge. Going with 2.4.26 appears
> to require less changes to sarge than choosing 2.4.25 or 2.4.27 and, imo, the
> d-i testing we've received w/ 2.4.26 outweighs these updates.
>
>
> Sarge 2.4 Proposal
> ------------------
> In the interest of reducing the security maintenance of kernel packages
> in sarge, I propose that we choose to settle on 2.4.26 as the 2.4
> kernel for sarge.
>
> This, I believe, will involved the following:
>
> - File bugs for any package that Depends or Build-Depends on a non 2.4.26
> kernel package in sarge, asking that they fix & upload to t-p-u.[1]
> - We request the removal of all non 2.4.26 2.4 kernel packages[2] from
> sarge.
> - We review kernel-source-2.4.26 for important missing security fixes
> - We upload a RC kernel-source-2.4.26 to t-p-u
> - We rebuild all 2.4.26 kernel-images against the latest k-s & upload to
> t-p-u.
- All debian-installer arches that don't use 2.4.26 yet need to move to
it. This include powerpc which was 2.4.25 based previously.
> [2]
> My grepping of the sarge Sources file shows the following packages:
> (Probably not exhaustive, though I tried to be - please point out anything
> I missed)
> kernel-patch-2.4.25-apus No 2.4.26, afaict
> kernel-patch-2.4.25-powerpc 2.4.26 counterpart exists in sid
I will ask for the removal of 2.4.25 once d-i is rebuilt with 2.4.26.
As for apus, i have the suspision that 2.4.25 doesn't even boot of it, but
apart from Simon Richter, who did some work, nobody ever tried the debian
kernels. As i said on debian-boot, i am much in favor of dropping support for
apus from the debian-installer and for the official kernels.
Friendly,
Sven Luther
