other bullets do not have trailing .

I would be tempted to expand this a bit further and subsume your new point above, maybe something like:

* If there is an incompatible change, there are a few options:

   * If the library uses versioned symbols, bump the version of affected symbols and provide compatibility versions of affected symbols under the old version.

   * If the library uses versioned symbols, but the compatibility cannot be preserved with compatibility symbols (e.g. the layout of an exported global variable changed), bump the major number.  Along with bumping the major number, old compatibility symbols should be removed.

    * If the library does not use versioned symbols, bump major number.  Consider adding a version map to begin versioning symbols when bumping the major.

pulled in jhb's and emaste's suggestions.

IMO it does not provide the right attitude.

First it should emphasize that ABI should not be broken. If this is absolutely impossible, then the breakage should be done in backward-compatible manner.

For symver-ed libraries, attitude should be that we do not do changes that would require bumping the library version. If the change of the nature that makes it impossible to handle most of the cases with the application of symver, it should be heavily considered if this change worth it at all.

That said, it is not true that gobal symbols cannot be versioned, or that layout changes for them are blockers. For instance, we sometimes grow sys_errlist[] when adding new errno values.

Updated to reflect kib pointing out the practice is to not bump major versions where possible.

We do allow changing the libraries ABI, otherwise FreeBSD cannot evolve. But we make concerned efforts and pay large tax to make ABI changes backward-compatible.

This is not what I wrote or asked for. For non-symvered libs, we have no other way than bump library version.

But for symvered, the change that requires library version bump probably should be not done (but other strong reasons must exist to even make this argument for bumping).

I think 'top' there is 'to'.

And the wording is strange. I suspect you mean that the version bump should be last, since from now on we would have symver?

Also it probably should be noted, that for third-party libraries that do not provide stable ABI or which ABI compat policies are not compatible with FreeBSD policy, we do something special. Either make them private (sqlite?) or just follow upstream (openssl?).

For third-party libs which do provide comparable ABI statibility guarantess, we use upstream tooling (e.g. symver for libstdc++ or libcxx).

I agree we don't want breakage. I was perhaps trying to say that there might some extreme cases where symvers alone doesn't save you. Growing sys_errlist isn't one of those, but if we had a public structure and wanted to remove fields from it, that would be painful. OTOH, in my (still WIP) patches to bump fileno in FILE to int I have gone to great lengths to preserve the ABI for fields currently abused by existing software by leaving their ABI intact even when they are hidden in the future.

I don't know that we always want a version map. Off the top of my head I would guess that a minority of the libraries in /lib and /usr/lib are versioned. Partly because adding versions itself is a major change requiring a bump, so instead, we should probably defer adding versions until there's another reason to bump and then at that time evaluate if for the given library, adding versions would be a good idea.

When creating new libraries, we should always do version mapped or the library must be private. for existing libraries, you may be right...

That is to say, the cost of a version map for existing libraries is high. The cost for new ones that want to do ABI stability is low if done from the start. So we should encourage them strongly for FreeBSD-created libraries at least.

This probably should say 'for project-maintained shared libraries', since we cannot guarantee ABI stability for third-party. Look at the ncurses saga.

This makes the library symver-ed.

I am not sure where this 'only one increment between major releases' comes from. It would makes HEAD users' live miserable in some situations.

I believe we should not punish them, who provide such valuable and otherwise limited testing of the HEAD.

Good point of clarification.

Yes. I'm saying that all new libraries should be either symver'd or private unless there's a good reason not to do so.

It's the current policy that we've done since day one in the project.

Having said that, we can certainly change it since, honestly, it was tied in many ways to the OS == library version notion people had in their heads. And to avoid undue churn, especially in the era when changes were dumped incrementally. And we already bump many times for ports.

So, I agree with you it's a bad policy that we should revisit.

How about: When changing a library in a way that requires a major version bump, please be mindful of the affect this has on users upgrading and try to batch changes where possible to reduce churn.

Fine with me.

OK. Done, and made it a bullet list, which is easier to read, imho

Did you miss a word here?

I don't believe listed items should start with 'However' as the indentation already indicates that it's a sub-clause of the above item.

A tiny bit of wordsmithing is required here.

Tiny typo here.

Using our here seems to imply that it's written from a different perspective than the rest of the article.

Same as above.

Make it clear that exp-runs should be run to catch the full impact.