This entire proposal although has write ideas (I also like to see UKI
in Fedora as I have use UKI on Arch and undestand its advantages) is in
the wrong.
But why start doing UKI without first fixing the need of host specific
initrd and commandline. I am sure even non-UEFI users will be better of
of
Hi,
> With my FESCo hat on, I immediately have the following comment:
> please narrow down the scope to things that we can actually approve
> for F38. E.g. the parts related to replacing grub2 by sd-boot
> are IMHO not realistic for F38 (*).
sd-boot actually replacing grub2 in anaconda installs
> > == Detailed Description ==
> > The goal is to move away from initrd images being generated on the
> > installed machine. They are generated while building the kernel
> > package instead, then shipped as part of a unified kernel image.
> >
> > A unified kernel image is an all-in-one efi binary
On Tue, Dec 20, 2022 at 9:10 PM Kevin Kofler via devel
wrote:
>
> Daniel P. Berrangé wrote:
> > That is not correct. There are a number of benefits of UKIs.
> >
> > The most critical is that the initrd content and cmdline is
> > covered by the SecureBoot signature.
>
> From an end user point of vi
PS (adding to my previous reply):
Daniel P. Berrangé wrote:
> The immediate need for UKIs is indeed related to SecureBoot and
> TPMs. These are a core technology foundation of the confidential
> virtual machine stack. On Azure today, if you request an Ubuntu
> confidential VM, Azure will pre-encry
On Tue, Dec 20, 2022 at 9:04 PM Kevin Kofler via devel
wrote:
>
> Neal Gompa wrote:
> > I think Fedora is the only major distro that doesn't do this,
> > actually. Mageia and openSUSE do this too. They also use graphical
> > GRUB by default instead of plain text GRUB.
>
> IIRC, the reason that Fed
Daniel P. Berrangé wrote:
> That is not correct. There are a number of benefits of UKIs.
>
> The most critical is that the initrd content and cmdline is
> covered by the SecureBoot signature.
From an end user point of view, having more stuff covered by Restricted Boot
is not a benefit.
Neal Gompa wrote:
> I think Fedora is the only major distro that doesn't do this,
> actually. Mageia and openSUSE do this too. They also use graphical
> GRUB by default instead of plain text GRUB.
IIRC, the reason that Fedora does not use graphical GRUB by default is that
it at least used to brea
> On 19 Dec 2022, at 16:50, Jaroslav Mracek wrote:
>
> I also remember RHEL8 where we ship DNF as YUM. And DNF is very similar to
> YUM - both are Python based tool. Anyway in RHEL9 the same tool is shipped as
> DNF, because it creates a confusion. And I don't want to experience the same
> i
On Tue, Dec 20, 2022, 4:27 PM Simo Sorce wrote:
> On Tue, 2022-12-20 at 14:29 -0500, Neal Gompa wrote:
> > Yeah, I seriously doubt this. Linux's model for supporting
> > confidential computing is not user-friendly, so I expect low adoption
> > and resistance once the flaws become apparent to woul
On Tue, Dec 20, 2022, 4:31 PM Simo Sorce wrote:
> On Tue, 2022-12-20 at 20:42 +0100, Björn Persson wrote:
> > I note that taking away the kernel command line is indeed a clearly
> > stated goal, which will limit Fedora to simple, appliance-like uses.
>
> I for one, haven't touched once the comman
On Tue, 2022-12-20 at 14:56 -0500, Demi Marie Obenour wrote:
> How do you plan to handle system recovery? For VMs this is much
> less of a concern, but on bare metal there needs to be a way for
> a local, authenticated administrator to obtain a root shell on
> the system console even if the root f
On Tue, 2022-12-20 at 20:42 +0100, Björn Persson wrote:
> I note that taking away the kernel command line is indeed a clearly
> stated goal, which will limit Fedora to simple, appliance-like uses.
I for one, haven't touched once the command line in this laptop that
has 4 years. So I welcome simpli
On Tue, 2022-12-20 at 14:29 -0500, Neal Gompa wrote:
> Yeah, I seriously doubt this. Linux's model for supporting
> confidential computing is not user-friendly, so I expect low adoption
> and resistance once the flaws become apparent to would-be users.
>
Neal, you are being unnecessarily negative
Greetings!
I wanted to share with our Fedora devel community that the CoreOS
layering-examples have matured enough for versioning the repo. At the
moment we have 11 examples showing how to create a OCI compliant
images that then you can boot into with the features added as part of:
https://fedorap
On Tue, Dec 20, 2022, at 2:22 PM, Daniel P. Berrangé wrote:
> parted/libparted already have support for handling GUIDs since
> their 3.5 release.
>
> I added pyparted support in
>
> https://github.com/dcantrell/pyparted/pull/95
>
> and I've got work in progress for blivet support
>
> https:/
On 12/20/22 10:22, Ben Cotton wrote:
> https://fedoraproject.org/wiki/Changes/Unified_Kernel_Support_Phase_1
>
> This document represents a proposed Change. As part of the Changes
> process, proposals are publicly announced in order to receive
> community feedback. This proposal will only be imple
On Tue, Dec 20, 2022, 2:29 PM Neal Gompa wrote:
> On Tue, Dec 20, 2022 at 2:02 PM Daniel P. Berrangé
> wrote:
> >
> > On Tue, Dec 20, 2022 at 11:28:48AM -0500, Neal Gompa wrote:
> > > On Tue, Dec 20, 2022 at 10:22 AM Ben Cotton
> wrote:
> > > >
> > > >
> https://fedoraproject.org/wiki/Changes/U
> Main motivation for this move is to make the distro more robust and more
> secure.
Improving security would be great, but it must be done in a way that
allows the sysadmin to configure and repair the system and authorize
the new configuration.
> Switching the whole distro over to unified kerne
On Tue, Dec 20, 2022 at 2:02 PM Daniel P. Berrangé wrote:
>
> On Tue, Dec 20, 2022 at 11:28:48AM -0500, Neal Gompa wrote:
> > On Tue, Dec 20, 2022 at 10:22 AM Ben Cotton wrote:
> > >
> > > https://fedoraproject.org/wiki/Changes/Unified_Kernel_Support_Phase_1
> > >
> > > This document represents a
On Tue, Dec 20, 2022 at 01:56:57PM -0500, Chris Murphy wrote:
>
>
> On Tue, Dec 20, 2022, at 10:22 AM, Ben Cotton wrote:
>
> > == Detailed Description ==
> > The goal is to move away from initrd images being generated on the
> > installed machine. They are generated while building the kernel
>
Hello all.
libquotient 0.7.0 will include a soversion bump from .0.6 to .0.7.
This release includes both ABI and API changes:
https://github.com/quotient-im/libQuotient/releases/tag/0.7.0
Affected packages:
- neochat
- quaternion
- spectral (retired, will be replaced by neochat)
I will rebuild
On Tue, Dec 20, 2022, at 1:56 PM, Chris Murphy wrote:
> For example:
> https://bugzilla.redhat.com/show_bug.cgi?id=2120845
>
> For that matter, grubby likewise steps on *all* BLS snippets found in
> /boot/loader/entries when using the --update=ALL flag, not just the BLS
> snippets
Incomplete
On Tue, Dec 20, 2022 at 11:28:48AM -0500, Neal Gompa wrote:
> On Tue, Dec 20, 2022 at 10:22 AM Ben Cotton wrote:
> >
> > https://fedoraproject.org/wiki/Changes/Unified_Kernel_Support_Phase_1
> >
> > This document represents a proposed Change. As part of the Changes
> > process, proposals are publi
On Tue, Dec 20, 2022, at 1:56 PM, Chris Murphy wrote:
> So I think the first big barrier to entry is answering the questions:
>
> * Enhance parted/libparted to support arbitrary GUIDs and enhance
> blivet to understand the full listing of GUIDs? Or
>
> * Enhance parted/libparted to support full
On Tue, Dec 20, 2022, at 10:22 AM, Ben Cotton wrote:
> == Detailed Description ==
> The goal is to move away from initrd images being generated on the
> installed machine. They are generated while building the kernel
> package instead, then shipped as part of a unified kernel image.
>
> A unifi
On Tue, Dec 20, 2022 at 1:18 PM Hans de Goede wrote:
>
> Hi,
>
> On 12/20/22 17:28, Neal Gompa wrote:
> > On Tue, Dec 20, 2022 at 10:22 AM Ben Cotton wrote:
> >>
> >> https://fedoraproject.org/wiki/Changes/Unified_Kernel_Support_Phase_1
> >>
> >> This document represents a proposed Change. As par
Hi,
On 12/20/22 17:28, Neal Gompa wrote:
> On Tue, Dec 20, 2022 at 10:22 AM Ben Cotton wrote:
>>
>> https://fedoraproject.org/wiki/Changes/Unified_Kernel_Support_Phase_1
>>
>> This document represents a proposed Change. As part of the Changes
>> process, proposals are publicly announced in order
On Tue, Dec 20, 2022 at 04:38:37PM +0100, Dan Horák wrote:
> On Tue, 20 Dec 2022 10:22:03 -0500
> Ben Cotton wrote:
>
> > https://fedoraproject.org/wiki/Changes/Unified_Kernel_Support_Phase_1
> >
> > This document represents a proposed Change. As part of the Changes
> > process, proposals are pu
LibRaw 0.21.0 is coming to rawhide. This will impact several packages; I'll
handle the rebuilds in a side tag.
--
Gwyn Ciesla
she/her/hers
in your fear, seek only peace
in your fear, seek only love
-d. bowie
Sent with Proton Mail secure email.
On Tue, Dec 20, 2022 at 04:22:39PM +, Zbigniew Jędrzejewski-Szmek wrote:
> On Tue, Dec 20, 2022 at 10:22:03AM -0500, Ben Cotton wrote:
> > https://fedoraproject.org/wiki/Changes/Unified_Kernel_Support_Phase_1
>
> It's great to see this happening!
>
> > Phase 1 goals (high priority):
> >
> >
On Tue, Dec 20, 2022 at 10:22 AM Ben Cotton wrote:
>
> https://fedoraproject.org/wiki/Changes/Unified_Kernel_Support_Phase_1
>
> This document represents a proposed Change. As part of the Changes
> process, proposals are publicly announced in order to receive
> community feedback. This proposal wi
Hi
I'd like to mentor Hussein (FAS: blinxen) in learning to become a
packager. He is a work colleague of mine. In particular, he's helping me
getting libimagequant updated, which some time ago was ported to rust.
As such, I'd like to add him as a co-maintainer of libimagequant and
help him ge
On Tue, Dec 20, 2022 at 10:22:03AM -0500, Ben Cotton wrote:
> https://fedoraproject.org/wiki/Changes/Unified_Kernel_Support_Phase_1
It's great to see this happening!
> Phase 1 goals (high priority):
>
> * Ship a unified kernel image as (optional) kernel sub-rpm. Users can
> opt-in to use that k
On Tue, 20 Dec 2022 10:22:03 -0500
Ben Cotton wrote:
> https://fedoraproject.org/wiki/Changes/Unified_Kernel_Support_Phase_1
>
> This document represents a proposed Change. As part of the Changes
> process, proposals are publicly announced in order to receive
> community feedback. This proposal
https://fedoraproject.org/wiki/Changes/Unified_Kernel_Support_Phase_1
This document represents a proposed Change. As part of the Changes
process, proposals are publicly announced in order to receive
community feedback. This proposal will only be implemented if approved
by the Fedora Engineering St
On Tue, Dec 20, 2022 at 02:49:48PM +0100, Florian Weimer wrote:
> * Daniel P. Berrangé:
>
> > One notable thing is Ubuntu's use of --enable-default-pie. Some Google
> > links also suggested -fPIC as a possible solution to my error, so I
> > tried modifying the build system to add -fPIC to CFLAGS/L
* Daniel P. Berrangé:
> One notable thing is Ubuntu's use of --enable-default-pie. Some Google
> links also suggested -fPIC as a possible solution to my error, so I
> tried modifying the build system to add -fPIC to CFLAGS/LDFLAGS, but
> that merely gave me a differrent set of errors :-(
Have you
> Am 20.12.2022 um 09:37 schrieb Samuel Sieb :
>
> On 12/20/22 00:12, Peter Boy wrote:
>> Yesterdays update showed a warning in logwatch of a Fedora Server instance
>> (F36, plain standard installation, nothing fancy, just httpd and a
>> systems-container):
>> - dnf-rpm Beg
On Tue, Dec 20, 2022 at 2:16 PM Vít Ondruch wrote:
> Good to know. Thx. Please tell me that part of the plan is renaming dnf5
> => dnf and I'll shut up.
>
I second to this. While it makes sense to temporarily introduce a parallel
installable dnf5 to enable easier early testing, I think dnf5 shou
Dne 19. 12. 22 v 17:50 Jaroslav Mracek napsal(a):
I am still very much against the `dnf5` package name and I have uneasy
feelings reading (in my words) "`/usr/bin/dnf` symlink will change from
`/usr/bin/dnf-3` to `/usr/bin/dnf5`". This name change is going to break
so basic assumption such as `r
On Tue, Dec 20, 2022 at 01:49:00PM +0100, Jakub Jelinek wrote:
> On Tue, Dec 20, 2022 at 12:12:42PM +, Daniel P. Berrangé wrote:
> > For KVM AMD SEV-SNP virtualization we're trying to get SVSM guest
> > firmware built on Fedora.
> >
> > https://github.com/svsm-vtpm/linux-svsm
> >
> > It bui
On Tue, Dec 20, 2022 at 12:12:42PM +, Daniel P. Berrangé wrote:
> For KVM AMD SEV-SNP virtualization we're trying to get SVSM guest
> firmware built on Fedora.
>
> https://github.com/svsm-vtpm/linux-svsm
>
> It builds successfully on Ubuntu 22.04 (gcc 11.3.0) which is what upstream
> uses a
On Tue, Dec 20, 2022 at 1:28 PM Miro Hrončok wrote:
>
> On 19. 12. 22 18:47, Barry Scott wrote:
> >
> >
> >> On 19 Dec 2022, at 17:40, Ben Cotton wrote:
> >>
> >> On Mon, Dec 19, 2022 at 12:36 PM Barry wrote:
> >>>
> >>> Why is pysvn on the list? I the pysvn maintainer and i am active.
> >>> I a
On Tue, 2022-12-20 at 12:12 +, Daniel P. Berrangé wrote:
> gcc -m64 -nostdlib -Wl,-Tsrc/start/svsm.lds -Wl,--build-id=none -o
> svsm.bin.elf src/start/start.o target/x86_64-unknown-
> none/debug/liblinux_svsm.a -Wl,--start-group
> ./external/build/lib/libtpm.a ./external/build/lib/libplatform.a
On 19. 12. 22 18:47, Barry Scott wrote:
On 19 Dec 2022, at 17:40, Ben Cotton wrote:
On Mon, Dec 19, 2022 at 12:36 PM Barry wrote:
Why is pysvn on the list? I the pysvn maintainer and i am active.
I am also the upstream maintainer.
The "main admin" is orphan. You should be able to go to
For KVM AMD SEV-SNP virtualization we're trying to get SVSM guest
firmware built on Fedora.
https://github.com/svsm-vtpm/linux-svsm
It builds successfully on Ubuntu 22.04 (gcc 11.3.0) which is what upstream
uses as their primary dev platform. On Fedora 37 (gcc 12.2.1) though, we're
getting erro
On Mon, Dec 19, 2022 at 6:00 PM Miro Hrončok wrote:
> perl-POE-Component-Client-Pingorphan 3 weeks
> ago
>
Taking.
M.
--
Michal Josef Špaček
___
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an e
Hello Miro,
> tito frostyx, maxamillion, orphan 3 weeks ago
Taking
On Tue, Dec 20, 2022 at 12:30 AM Emmanuel Seyman wrote:
>
> * Miro Hrončok [19/12/2022 16:43] :
> >
> > perl-Mail-Procmailorphan 0 weeks
> > ago
>
> Taken.
>
> Emmanuel
> __
Hi folks,
I hope you are doing well. I write this to let you know that I have been
working on the MDAPI project under Pierre-Yves Chibon's guidance for some
time now for
1. Refactoring the code
2. Implementing code quality standards
3. Adding more comprehensive tests
4. Implementing a
On 12/20/22 00:12, Peter Boy wrote:
Yesterdays update showed a warning in logwatch of a Fedora Server instance
(F36, plain standard installation, nothing fancy, just httpd and a
systems-container):
- dnf-rpm Begin
Packages Updated:
fedora-relea
Yesterdays update showed a warning in logwatch of a Fedora Server instance
(F36, plain standard installation, nothing fancy, just httpd and a
systems-container):
- dnf-rpm Begin
Packages Updated:
fedora-release-36-20.noarch -> fedora-release-36-2
52 matches
Mail list logo
