Jump to: navigation, search

Difference between revisions of "StableBranch"

(Stable Branch)
 
(24 intermediate revisions by 9 users not shown)
Line 1: Line 1:
  
 
= Stable Branch =
 
= Stable Branch =
The [https://launchpad.net/~openstack-stable-maint stable-maint team] manages the stable branch for OpenStack core projects with the support of the core developers of those projects and the release team.
 
  
__TOC__
+
[http://docs.openstack.org/project-team-guide/stable-branches.html The stable branch policy is now maintained in the project team guide]
 
 
== Overview ==
 
The stable branch is intended to be a safe source of fixes for high impact bugs and security issues which have been fixed on master since a given release.
 
 
 
Official point releases for each project are published from the branch roughly every 8 weeks, assuming enough fixes have accumulated to make the release worthwhile.
 
 
 
Note, that the Swift project is not included in this process because its regular releases are intended to be stable updates.
 
 
 
It's possible to check current maintained versions in the [[releases]] page.
 
 
 
[[OpenStack]]'s stable branch policy borrows much from prior art. There are many projects which maintain such a branch and it's possible to build a picture of a rough consensus across these projects on how a stable branch should operate. One example of another project's policy is [http://github.com/torvalds/linux/blob/master/Documentation/stable_kernel_rules.txt the Linux kernel's stable_kernel_rules.txt].
 
 
 
== Appropriate Fixes ==
 
Only a limited class of changes are appropriate for inclusion on the stable branch.
 
 
 
A number of factors must be weighed when considering a change:
 
 
 
* The risk of regression - even the tiniest changes carry some risk of breaking something and we really want to avoid regressions on the stable branch
 
* The user visible benefit - are we fixing something that users might actually notice and, if so, how important is it?
 
* How self-contained the fix is - if it fixes a significant issue but also refactors a lot of code, it's probably worth thinking about what a less risky fix might look like
 
* Whether the fix is already on master - a change must be a backport of a change already merged onto master, unless the change simply does not make sense on master
 
 
 
The stable-maint team need to balance the risk of any given patch with the value that it will provide to users of the stable branch. A large, risky patch for a major data corruption issue might make sense. As might a trivial fix for a fairly obscure error handling case.
 
 
 
Some types of changes are completely forbidden:
 
 
 
* New features
 
* Changes to the external HTTP APIs
 
* Changes to Nova's internal AMQP API
 
* Changes to the notification definitions
 
* DB schema changes
 
* Incompatible config file changes
 
 
 
== Gerrit ==
 
Each backported commit proposed to gerrit should be reviewed and +2ed by two stable-maint members before it is approved. Where a stable-maint member has backported a fix, a single other +2 is sufficient for approval.
 
 
 
If unsure about a given fix, stable-maint members should consult with the appropriate core developers for a more detailed technical review.
 
 
 
Existing core developers are greatly encouraged to join the stable-maint team in order to help with reviewing backports, judging their appropriateness for the stable branch and approving them.
 
 
 
== Security Fixes ==
 
Fixes for embargoed security issues receive special treatment. These should be reviewed in advance of disclosure by core developers and stable-maint. At the time of coordinated public disclosure, the fix is proposed simultaneously to master and the stable branches and immediately approved.
 
 
 
== Releases ==
 
The stable-maint and release teams work together to publish point releases from the stable branch. See [[StableBranchRelease]] for details about how these releases are prepared.
 
 
 
== Joining the Team ==
 
We're really keen to add more folks to the stable-maint team to help out with reviews.
 
 
 
All you really need is some time and the ability to apply the "safe source of high impact fixes" and "must be fixed on master first" policies. It mostly comes down to having a good sense of the risk vs benefit of applying a backport to the branch.
 
 
 
If you'd like to join the team, you can start by simply [+-]1ing stable branch reviews. It's best if you can add some brief thoughts to your review on why you think the fix is suitable for stable so that we know how you're applying the policy.
 
 
 
After doing reviews over a few weeks, [http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-stable-maint post to the openstack-stable-maint list and ask to be added].
 
 
 
Same as in other OpenStack core teams, stable-maint membership will be periodically reviewed and inactive members removed.
 
 
 
== Workflow ==
 
=== Proposing Fixes ===
 
Anyone can propose a cherry-pick to the stable-maint team.
 
 
 
One way is that if a bug in launchpad looks like a good candidate for backporting - e.g. if it's a significant bug with the previous release - then just nominating the bug for the icehouse series will bring it to the attention of the maintainers e.g. [https://bugs.launchpad.net/nova/icehouse/+nominations for nova].
 
 
 
If you don't have the appropriate permissions to nominate the bug, then tagging it with '''icehouse-backport-potential''' is also sufficient e.g. [https://bugs.launchpad.net/nova/+bugs?field.tag=icehouse-backport-potential for nova].
 
 
 
If the patch you're proposing will not cherry-pick cleanly, you can help by resolving the conflicts yourself and proposing the resulting patch. Please keep Conflicts lines in the commit message to help reviewers! You can use [https://github.com/openstack-ci/git-review git-review] to propose a change to the stable branch with:
 
 
 
 
 
<pre><nowiki>
 
$> git cherry-pick -x $master_commit_d
 
$> git review stable/icehouse
 
</nowiki></pre>
 
 
 
 
 
Failing all that, just ping one of the team and mention that you think the bug/commit is a good candidate.
 
 
 
=== Change-Ids ===
 
When cherry-picking a commit, keep the original <code><nowiki>Change-Id</nowiki></code> and gerrit will show a separate review for the stable branch while still allowing you to use the <code><nowiki>Change-Id</nowiki></code> to see all the reviews associated with it. See [https://review.openstack.org/#/q/Ic5082b74a362ded8b35cbc75cf178fe6e0db62d0,n,z this change as an example].
 
Hint: Change-Id line must be in the ''last'' paragraph. Conflicts in the backport add a new paragraph, creating a new Change-Id but you can avoid that by moving conflicts above the paragraph with Change-Id line or removing empty lines to make a single paragraph.
 
 
 
=== Email Notifications ===
 
If you want to be notified of these patches you can create a watch on this screen: https://review.openstack.org/#settings,projects with the settings:
 
 
 
 
 
<pre><nowiki>
 
Project Name: All-Projects
 
    Only If: branch:stable/icehouse
 
</nowiki></pre>
 
 
 
Then check the "Email Notifications - New Changes" checkbox.  That will cause gerrit to send an email whenever a matching change is proposed, and better yet, the change shows up in your 'watched changes' list in gerrit.
 
 
 
See the docs for [https://review.openstack.org/#settings,projects Watched Projects] configuration and the [https://review.openstack.org/Documentation/user-search.html search syntax].
 
 
 
=== Bug Tags ===
 
Bugs tagged with '''icehouse-backport-potential''' are bugs which apply to the stable release and may be suitable for backporting once fixed. Once the backport has been proposed, the tag should be removed.
 
 
 
Gerrit tags bugs with '''in-stable-icehouse''' when they are merged into the stable branch. The release manager later removes the tag when the bug is targeted to the appropriate series.
 

Latest revision as of 02:14, 18 September 2018

Stable Branch

The stable branch policy is now maintained in the project team guide