Re: Small rant: installer environment size

2022-12-07 Thread Tomáš Popela
Hi Adam, On Thu, Dec 8, 2022 at 5:30 AM Adam Williamson wrote: > On Thu, 2022-12-08 at 03:28 +, Gary Buhrmaster wrote: > > On Thu, Dec 8, 2022 at 12:42 AM Adam Williamson > > wrote: > > > > > > Hi folks! Today I woke up and found > > > https://bugzilla.redhat.com/show_bug.cgi?id=2151495 , w

[Review] level-zero and openpgl

2022-12-07 Thread Luya Tshimbalanga
Hello everyone, both level-zero and openpgl are needed for review. level-zero is useful to support oneAPI for Blender while openpgl is an optional dependency for Blender starting for 3.4.x release. level-zero: https://bugzilla.redhat.com/show_bug.cgi?id=2151768 openpgl: https://bugzilla.redhat.

Re: Small rant: installer environment size

2022-12-07 Thread Adam Williamson
On Thu, 2022-12-08 at 07:57 +0100, Florian Weimer wrote: > * Adam Williamson: > > > 1. /usr/lib/locale/locale-archive , from glibc-all-langpacks - this is > > 224M uncompressed. A quick test just compressing the file with xz on my > > system shows it compresses to around 11M, though, so that's pro

Re: Small rant: installer environment size

2022-12-07 Thread Florian Weimer
* Adam Williamson: > 1. /usr/lib/locale/locale-archive , from glibc-all-langpacks - this is > 224M uncompressed. A quick test just compressing the file with xz on my > system shows it compresses to around 11M, though, so that's probably > all it adds up to after compression (the image is an xz-com

Re: Small rant: installer environment size

2022-12-07 Thread Adam Williamson
On Thu, 2022-12-08 at 03:28 +, Gary Buhrmaster wrote: > On Thu, Dec 8, 2022 at 12:42 AM Adam Williamson > wrote: > > > > Hi folks! Today I woke up and found > > https://bugzilla.redhat.com/show_bug.cgi?id=2151495 , which diverted me > > down a bit of an "installer environment size" rabbit hol

Re: Small rant: installer environment size

2022-12-07 Thread Gary Buhrmaster
On Thu, Dec 8, 2022 at 12:42 AM Adam Williamson wrote: > > Hi folks! Today I woke up and found > https://bugzilla.redhat.com/show_bug.cgi?id=2151495 , which diverted me > down a bit of an "installer environment size" rabbit hole. Does the "new and improved" web based installer help this in any wa

Re: Small rant: installer environment size

2022-12-07 Thread Kevin Kofler via devel
Adam Williamson wrote: > As of today, with that new dep in webkitgtk, Rawhide's network install > images are 703M in size. Here's a potted history of network install > image sizes: > > Fedora Core 8: 103.2M (boot.iso 9.2M + stage2.img 94M) > Fedora 13: 208M > Fedora 17: 162M (last "old UI") > Fedo

Re: Policy on supporting old and external software packages and compat RPMS

2022-12-07 Thread Gary Buhrmaster
On Thu, Dec 8, 2022 at 1:54 AM Alexander Ploumistos wrote: > I think that you are about to miss an important opportunity here. +3000 (well, I guess I am only allowed a +1). For non-niche requirements, I mostly find the primary maintainers are more than willing to add interested parties to the m

Re: Policy on supporting old and external software packages and compat RPMS

2022-12-07 Thread Alexander Ploumistos
Hello Terry, On Thu, Dec 8, 2022 at 12:28 AM Terry Barnaby wrote: > > Well I don't want to rock the boat with the maintainer, they are just > doing what they think is expected. > > I will just continue with my own local RPM for our own uses and provide > it for anyone else that is in the same boa

Re: F38 proposal: Add _FORTIFY_SOURCE=3 to distribution build flags (System-Wide Change proposal)

2022-12-07 Thread Demi Marie Obenour
On 12/6/22 14:02, Richard W.M. Jones wrote: > On Tue, Dec 06, 2022 at 05:52:16PM -, Andrii Nakryiko wrote: >>> On Tue, Dec 06, 2022 at 03:12:19AM +, Gary Buhrmaster wrote: >>> >>> Note that is not a fully equivalent scenario. The no-omit-frame-pointer >>> proposal was only offering a functi

Re: Small rant: installer environment size

2022-12-07 Thread Peter Boy
> Am 08.12.2022 um 01:42 schrieb Adam Williamson : > > Hi folks! Today I woke up and found > https://bugzilla.redhat.com/show_bug.cgi?id=2151495 , which diverted me > down a bit of an "installer environment size" rabbit hole. > > ... many thanks for your efforts! I very much appreciate it kee

Small rant: installer environment size

2022-12-07 Thread Adam Williamson
Hi folks! Today I woke up and found https://bugzilla.redhat.com/show_bug.cgi?id=2151495 , which diverted me down a bit of an "installer environment size" rabbit hole. As of today, with that new dep in webkitgtk, Rawhide's network install images are 703M in size. Here's a potted history of network

Re: Policy on supporting old and external software packages and compat RPMS

2022-12-07 Thread Terry Barnaby
On 06/12/2022 16:37, Kevin Kofler via devel wrote: Terry Barnaby wrote: Well in this case I have created a suitable compat lib, all I did was re-introduce the bits to the SPEC file that removed the building of the compat lib and we are fine. I haven't separated it out from the main ncurses SPEC

Re: OpenVPN 2.6 Beta released

2022-12-07 Thread Alexander Ploumistos
Thanks for the detailed response. There was quite a lot of reading, but in the end the upgrade from 2.5 was uneventful. I do hope there will be a migration guide when version 3 lands though. I see these messages in my system logs: Dec 07 22:56:24 bb3 audit[1786]: AVC avc: denied { setpcap } for

Re: F38 proposal: Add _FORTIFY_SOURCE=3 to distribution build flags (System-Wide Change proposal)

2022-12-07 Thread Siddhesh Poyarekar
On Wed, Dec 7, 2022 at 3:15 PM Andrii Nakryiko wrote: > > > On Tue, Dec 6, 2022 at 12:56 PM Andrii Nakryiko > > > > > I don't think the two are comparable at all, neither in terms of > > potential performance impact (register pressure across an entire > > program vs at specific API call points in

Re: [Modularity] XML format for in-repository modules

2022-12-07 Thread Stephen Gallagher
On Wed, Dec 7, 2022 at 8:40 AM Petr Pisar wrote: ... > As you can see, there are no separate documents for modules and default > streams. Everything is kept inside one document. That enables > properties (e.g. obsoletes or default profiles) pertaining the same entity > (e.g. a stream) to be placed

Re: Policy on supporting old and external software packages and compat RPMS

2022-12-07 Thread Stephen Smoogen
On Wed, 7 Dec 2022 at 15:45, Terry Barnaby wrote: > On 06/12/2022 20:21, Josh Boyer wrote: > > On Tue, Dec 6, 2022 at 2:01 PM Stephen Smoogen > wrote: > >> > >> > >>> > >> I think he would be happy with the policy spelled out in any form. > Something like: > >> > >> While the Fedora Project is t

F39 proposal: Boost 1.81 upgrade (System-Wide Change proposal)

2022-12-07 Thread Ben Cotton
https://fedoraproject.org/wiki/Changes/F39Boost181 This document represents a proposed Change. As part of the Changes process, proposals are publicly announced in order to receive community feedback. This proposal will only be implemented if approved by the Fedora Engineering Steering Committee.

F38 proposal: Perl: Replace versioned MODULE_COMPAT_ requires by RPM dependency generator (System-Wide Change proposal)

2022-12-07 Thread Ben Cotton
https://fedoraproject.org/wiki/Changes/Perl_replace_MODULE_COMPAT_by_generator (Note that this proposal was originally submitted to use a macro. See https://fedoraproject.org/w/index.php?title=Changes%2FPerl_replace_MODULE_COMPAT_by_generator&type=revision&diff=662550&oldid=661061 for a diff from

Re: Policy on supporting old and external software packages and compat RPMS

2022-12-07 Thread Terry Barnaby
On 06/12/2022 17:40, Vít Ondruch wrote: Dne 06. 12. 22 v 17:09 Terry Barnaby napsal(a): On 06/12/2022 15:56, Vít Ondruch wrote: Dne 06. 12. 22 v 16:44 Terry Barnaby napsal(a): On 06/12/2022 10:40, Dominik 'Rathann' Mierzejewski wrote: On Tuesday, 06 December 2022 at 07:43, Terry Barnaby wro

Re: Policy on supporting old and external software packages and compat RPMS

2022-12-07 Thread Terry Barnaby
On 06/12/2022 20:21, Josh Boyer wrote: On Tue, Dec 6, 2022 at 2:01 PM Stephen Smoogen wrote: On Tue, 6 Dec 2022 at 13:50, Josh Boyer wrote: On Tue, Dec 6, 2022 at 11:27 AM Neal Gompa wrote: On Tue, Dec 6, 2022 at 7:54 AM Josh Boyer wrote: On Tue, Dec 6, 2022 at 1:43 AM Terry Barnaby wr

Re: F38 proposal: Add _FORTIFY_SOURCE=3 to distribution build flags (System-Wide Change proposal)

2022-12-07 Thread Andrii Nakryiko
> On Tue, Dec 6, 2022 at 12:56 PM Andrii Nakryiko > > I don't think the two are comparable at all, neither in terms of > potential performance impact (register pressure across an entire > program vs at specific API call points in some unique cases) nor in > terms of the benefits it provides. It'

Re: F38 proposal: Add _FORTIFY_SOURCE=3 to distribution build flags (System-Wide Change proposal)

2022-12-07 Thread Andrii Nakryiko
> Andrii, > > copilot to pilot, you are responding to Jakub Jelinek's points, not Copilot? Pilot? I don't understand this euphemism. And yes, I'm well aware who I'm replying to, thank you. > Neal's. Jakub is a compiler/toolchain engineer with considerable And not sure why you are implying th

Re: F38 proposal: Add _FORTIFY_SOURCE=3 to distribution build flags (System-Wide Change proposal)

2022-12-07 Thread Andrii Nakryiko
> On Tue, Dec 06, 2022 at 05:46:11PM -, Andrii Nakryiko wrote: > > Depends on how large functions are. If you have lots of small functions, > it can be more than 50% of instructions you get the frame pointer wrong. You might be technically correct, but if some application is spending 50% of

Fedora CoreOS Meeting Minutes 2022-12-07

2022-12-07 Thread Dusty Mabe
Minutes: https://meetbot.fedoraproject.org/fedora-meeting-1/2022-12-07/fedora_coreos_meeting.2022-12-07-16.29.html Minutes (text): https://meetbot.fedoraproject.org/fedora-meeting-1/2022-12-07/fedora_coreos_meeting.2022-12-07-16.29.txt Log: https://meetbot.fedoraproject.org/fedora-meeting-1/2022

Re: OpenVPN 2.6 Beta released

2022-12-07 Thread David Sommerseth
On 07/12/2022 16:02, Alexander Ploumistos wrote: Hello David, Thanks for the heads up. Is there a tool that can test server and client configurations for compatibility before upgrading? If not, how can one verify that certificates, TLS version etc. comply with the minimum requirements? There ex

Can't pull fedora rawhide container image

2022-12-07 Thread Jun Aruga (he / him)
I am trying to pull the fedora rawhide image from https://registry.fedoraproject.org/ . First, the URL below to print available tags is empty on my browser. https://registry.fedoraproject.org/repo/fedora/tags/ But I was able to see the available tags by skopeo. And the "rawhide" tag is included.

Re: Fedora/CentOS planned outage 2022-12-08 19:00 UTC

2022-12-07 Thread Stephen Smoogen
Due to some issues, this "lanned" outage has to be delayed to 2022-12-13 at the same time. On Mon, 5 Dec 2022 at 10:14, Stephen Smoogen wrote: > > lanned Outage - IAD2 Outage - 2022-12-13 19:00 UTC > > There will be an outage starting at 2022-12-13 19:00 UTC, > which will last approximately 4 ho

Re: OpenVPN 2.6 Beta released

2022-12-07 Thread Alexander Ploumistos
Hello David, Thanks for the heads up. Is there a tool that can test server and client configurations for compatibility before upgrading? If not, how can one verify that certificates, TLS version etc. comply with the minimum requirements? Best regards, A. _

Re: Fedora 35 End Of Life in one week

2022-12-07 Thread Steven A. Falco
On 12/7/22 09:14 AM, Tomas Hrcka wrote: Fedora 36 will continue to receive updates until approximately one month after the release of Fedora 37. Shouldn't that be "until approximately one month after the release of Fedora _38_"? Steve ___ de

Fedora 35 End Of Life in one week

2022-12-07 Thread Tomas Hrcka
Hello all, Fedora 35 will go end of life for updates and support on 2022-12-13 No further updates, including security updates, will be available for Fedora 35 after the said date. All the updates of Fedora N being pushed to stable will be stopped as well. Fedora 36 will continue to receive update

Re: [Modularity] XML format for in-repository modules

2022-12-07 Thread Daniel Alley
I will always applaud any attempt at standardizing & documenting the metadata format, and I was never thrilled with glib, so this sounds great to me - I only wish that it had been this way from the beginning :) In practice I am not certain that Satellite (and similar tools) can prefer the XML m

Re: [Modularity] XML format for in-repository modules

2022-12-07 Thread Petr Pisar
V Wed, Dec 07, 2022 at 02:23:21PM +0100, Petr Pisar napsal(a): > > I'd be glad to hear any comments on the format. > I forgot to mention that I'm taking my vacation now until the very end of this callendar year. So no rush, but do not expect my reponse until then. -- Petr signature.asc Descrip

Re: [Modularity] XML format for in-repository modules

2022-12-07 Thread Ewoud Kohl van Wijngaarden
On Wed, Dec 07, 2022 at 02:23:18PM +0100, Petr Pisar wrote: Those who should be concerned most are DNF5 developers and relengs producing composes. There are third party repositories which also publish modular metadata. I know this because in yum.theforeman.org we do this. Do we fall under rel

Re: [Modularity] XML format for in-repository modules

2022-12-07 Thread Neal Gompa
On Wed, Dec 7, 2022 at 8:23 AM Petr Pisar wrote: > > Hello Fedora developers, > > I'd like to show you a proposal for a new XML format of modular metadata which > reside in YUM repositories. > > In short I propose replacing YAML syntax with XML syntax while removing > features which where never im

Re: Review Request: ImageMagick7

2022-12-07 Thread Neal Gompa
On Wed, Dec 7, 2022 at 4:26 AM Tomáš Popela wrote: > > Hi Neal, > > On Tue, Dec 6, 2022 at 5:15 PM Neal Gompa wrote: >> >> Yes, the EOL period is further out, but I'd rather make it so that the >> next RHEL will have ImageMagick 7 right from the beginning. > > > Just to be transparent: ImageMagic

[Modularity] XML format for in-repository modules

2022-12-07 Thread Petr Pisar
Hello Fedora developers, I'd like to show you a proposal for a new XML format of modular metadata which reside in YUM repositories. In short I propose replacing YAML syntax with XML syntax while removing features which where never implemented or used, while providing a detailed specification leav

Re: OpenSSH: hardening hostkeys permissions

2022-12-07 Thread Daniel P . Berrangé
On Wed, Dec 07, 2022 at 01:48:48PM +0100, Dmitry Belyavskiy wrote: > The problem we expect is that after reverting the patch we can lose the > remote access to the hosts because sshd will reject starting because of > group reading permissions. This should be covered by the upgrade scriptlet, > thou

OpenSSH: hardening hostkeys permissions

2022-12-07 Thread Dmitry Belyavskiy
Dear colleagues, Many years ago we implemented the patch https://src.fedoraproject.org/rpms/openssh/c/1ddd0ee5 Unfortunately, as it was 11 years ago, we can't find the exact explanation where the requirement came from. We think that we intended to increase security, but it probably caused more co

Fedora rawhide compose report: 20221207.n.0 changes

2022-12-07 Thread Fedora Rawhide Report
OLD: Fedora-Rawhide-20221206.n.0 NEW: Fedora-Rawhide-20221207.n.0 = SUMMARY = Added images:1 Dropped images: 2 Added packages: 8 Dropped packages:2 Upgraded packages: 110 Downgraded packages: 0 Size of added packages: 8.54 MiB Size of dropped packages

[Test-Announce] Fedora 38 Rawhide 20221207.n.0 nightly compose nominated for testing

2022-12-07 Thread rawhide
Announcing the creation of a new nightly release validation test event for Fedora 38 Rawhide 20221207.n.0. Please help run some tests for this nightly compose if you have time. For more information on nightly release validation testing, see: https://fedoraproject.org/wiki

Re: Review Request: ImageMagick7

2022-12-07 Thread Tomáš Popela
Hi Neal, On Tue, Dec 6, 2022 at 5:15 PM Neal Gompa wrote: > Yes, the EOL period is further out, but I'd rather make it so that the > next RHEL will have ImageMagick 7 right from the beginning. > Just to be transparent: ImageMagick (or GraphicsMagick) won't be in RHEL 10 (or in any future versio

Re: F38 proposal: Add _FORTIFY_SOURCE=3 to distribution build flags (System-Wide Change proposal)

2022-12-07 Thread Daniel P . Berrangé
On Wed, Dec 07, 2022 at 09:02:36AM +0100, Vitaly Zaitsev via devel wrote: > On 06/12/2022 23:20, Michael Catanzaro via devel wrote: > > Even if extra bounds checking makes code 10% slower, which seems very > > unlikely, the benefit of the extra hardening would still be worth it. > > _FORTIFY_SOUR

Re: Mystery fedpkg srpm failure

2022-12-07 Thread Panu Matilainen
On 12/2/22 11:14, Florian Weimer wrote: * Aleksei Bavshin: On 12/1/22 23:18, Aleksei Bavshin wrote: On 12/1/22 22:28, Florian Weimer wrote: I don't see what spec file aspect is causing this failure: $ fedpkg clone -a cups-bjnp Cloning into 'cups-bjnp'... remote: Enumerating objects: 278, don

Re: F38 proposal: Add _FORTIFY_SOURCE=3 to distribution build flags (System-Wide Change proposal)

2022-12-07 Thread Vitaly Zaitsev via devel
On 06/12/2022 23:20, Michael Catanzaro via devel wrote: Even if extra bounds checking makes code 10% slower, which seems very unlikely, the benefit of the extra hardening would still be worth it. _FORTIFY_SOURCE=3 is going to make it harder to hack Fedora users, converting code execution vulne