Bug#1004441: unblocking chromium?

To: Paul Gevers <elbrus@debian.org>
Cc: Debian Security Team <team@security.debian.org>, Debian Chromium Team <chromium@packages.debian.org>, 1004441@bugs.debian.org
Subject: Bug#1004441: unblocking chromium?
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Fri, 6 Jan 2023 10:18:16 +0100
Message-id: <[🔎] 20230106091816.GA8306@inutil.org>
Reply-to: Moritz Muehlenhoff <jmm@inutil.org>, 1004441@bugs.debian.org
In-reply-to: <[🔎] 5dfa2878-a25f-1f71-90e3-83613d8d83d3@debian.org>
References: <20220126020028.47a29233@e7470.queued.net> <02d50300-fa49-909a-8b3d-fcaaa2a148bf@debian.org> <20220127161504.GA32657@inutil.org> <[🔎] 5dfa2878-a25f-1f71-90e3-83613d8d83d3@debian.org> <4b1ab9c1-ab06-3f6f-a520-94fccb4416c0@debian.org>

On Fri, Jan 06, 2023 at 08:41:50AM +0100, Paul Gevers wrote:
> Dear Chromium team, Security team,
> 
> On 27-01-2022 17:15, Moritz Muehlenhoff wrote:
> > On Wed, Jan 26, 2022 at 09:38:42PM +0100, Paul Gevers wrote:
> > > > So, I'm proposing the following: we unblock chromium from
> > > > testing, with the understanding that prior to bookworm's release, we
> > > > have a discussion with the release team about whether chromium will
> > > > be allowed in the stable release. This will allow testing users to
> > > > upgrade for now, and then at bookworm freeze time we can figure out what
> > > > will happen with chromium (and prepare the appropriate release notes if
> > > > it will no longer be in stable/testing). What does the release team &
> > > > others think of this?
> > 
> > Sounds good!
> > 
> > > If the security team agrees with the message this is sending,
> > > I propose the following. We create an RC bug against release.debian.org (to
> > > make sure this issue is not forgotten, but not directly blocks chromium)
> > > with an "Affects: chromium", that clearly states that we postpone the
> > > decision. The decision will depend on how chromium updates (both in sid and
> > > supported releases) are handled between now and approximately the freeze. If
> > > we do this, don't get me wrong, I'll kick chromium out of bookworm again if
> > > there's no good track record before we release.
> > 
> > Sounds good!
> 
> It's about time we start discussing this. In your opinion, did the Chromium
> Team show enough track record to warrant chromium in bookworm during its
> stable cycle? From the raw number of uploads my first impression is yes, but
> I have no idea of the quality, how the communication went and those kind of
> details.

Andres's work has been top notch and it seems recently someone else has joined
the effort as well, so if they are up for continuing with Chromium's pace, that's
perfectly fine to continue to do so for bookworm.

We might consider to set some expectation for oldstable-security, though e.g state that
oldstable-security updates stop three months after the release of stable or so.

Chromium is very fast-paced in toolchain changes (e.g. in the past new C++ features
become incompatible with GCC and we might see something similar with LLVM (which
is used these days) as well.

Cheers,
        Moritz

Reply to:

Follow-Ups:
- Bug#1004441: unblocking chromium?
  - From: Adrian Bunk <bunk@debian.org>

References:
- Bug#1004441: unblocking chromium?
  - From: Paul Gevers <elbrus@debian.org>

Prev by Date: Re: transition: pandas 1.3 -> 1.5
Next by Date: Re: transition: pandas 1.3 -> 1.5
Previous by thread: Bug#1004441: unblocking chromium?
Next by thread: Bug#1004441: unblocking chromium?
Index(es):
- Date
- Thread