Am 25.04.2016 um 12:23 schrieb Holger Levsen: > On Mon, Apr 25, 2016 at 12:17:52PM +0200, Markus Koschany wrote: >> I think in those cases it is reasonable to recommend to manually change >> build dependencies back to OpenJDK 6 because rebuilding a package does >> not pose a security risk and should never happen on production systems >> anyway. > > I dont think it's reasonable. Maybe it's a bad but working workaround > but… it breaks several assumptions and usecases. I'd rather think LO > should get a sourceful upload to cope with these changes properly. >
I have discussed this on debian-java already but in short I had to ponder about several things and one thing was how to spend our resources responsibly. Of course I can fix all build failures in Wheezy LTS but fixing 140 bugs [1] won't happen in zero time and I'm not convinced that spending time on all of these bugs should be a priority. Thus I think it is more reasonable to focus on runtime issues with OpenJDK 7 because those are more likely to be critical for users. Asking users to apply a patch or to use a workaround is not a perfect solution but it is a reasonable solution in this case. Regards, Markus [1] https://bugs.debian.org/cgi-bin/pkgreport.cgi?tag=openjdk-7-transition;users=ubuntu-de...@lists.ubuntu.com
signature.asc
Description: OpenPGP digital signature
