Regarding kernel minor version upgrade which we discussed in the meeting,
we've reached consensus with Ken Young and other security team members:
For the below two options we had:
Option#1: upgrade the kernel 21.3 in the master only;
Option#2: only cherry pick the security patch to address CVE-11477.
Conclusion is that we will stick with Option#1: put the kernel upgrade
into master after RC1 branched out; then we continue to do testing on master;
if everything goes well, we can cherry pick the patches to release branch.
continue the upgrade in master with Workflow -1 for now till RC1.
Regarding kernel minor version upgrade which we discussed in the meeting,
we've reached consensus with Ken Young and other security team members:
For the below two options we had:
Option#1: upgrade the kernel 21.3 in the master only;
Option#2: only cherry pick the security patch to address CVE-11477.
Conclusion is that we will stick with Option#1: put the kernel upgrade
into master after RC1 branched out; then we continue to do testing on master;
if everything goes well, we can cherry pick the patches to release branch.
continue the upgrade in master with Workflow -1 for now till RC1.
Option#1 Patches: /review. opendev. org/#/c/ 670856/ /review. opendev. org/#/c/ 670870/ /review. opendev. org/#/c/ 670869/
https:/
https:/
https:/
Option#2 Patches: /review. opendev. org/#/c/ 670711/
https:/