Hi everyone!
On Tuesday 2018-01-09 is the submission deadline for System Wide
Changes & Changes requiring mass rebuild of Fedora 28 [1]. Please make
sure your Change proposals are submitted for review before this
deadline.
Self Contained Changes proposals submission deadline is planned then
on 20
= System Wide Change: Golang 1.10 =
https://fedoraproject.org/wiki/Changes/golang1.10
Change owner(s):
* Jakub Čajka
Rebase of Golang package to upcoming version 1.10 in Fedora 28,
including rebuild of all dependent packages(pre-release version of Go
will be used for rebuild, if released versio
= System Wide Change: Kerberos in Python modernization =
https://fedoraproject.org/wiki/Changes/kerberos-in-python-modernization
Change owner(s):
* Robbie Harwood
Replace usage of python-krbV and pykerberos with python-gssapi in all
Fedora packages to enable their removal from Fedora. rharwood w
On Thu, Jan 04, 2018 at 09:36:27PM -0800, John Reiser wrote:
> 4) All code must be generated by a compiler that enforces the probing policy,
> and all language support run-time routines also must enforce the policy.
> No mixing of old or foreign compilers with the new gcc.
> No mixing of old or for
On Fri, 2018-01-05 at 09:23 +0100, Jan Kurik wrote:
>
>
> == Detailed Description ==
> Replace older, clunkier, less user-friendly python interfaces to
> Kerberos with python-gssapi. python-gssapi uses the GSSAPI interface,
> which is widely standardized, implemented by both MIT and Heimdal
> Ker
= Proposed Self Contained Change: Thunderbolt Enablement =
https://fedoraproject.org/wiki/Changes/ThunderboltEnablement
Change owner(s):
* Christian Kellner
Support Thunderbolt 3 peripherals in a secure way hardware out of the box.
== Detailed Description ==
Thunderbolt™ is the brand name of a
Devices connected via Thunderbolt can be DMA masters and thus read
system memory without interference of the operating system (or even
the CPU). Version 3 of the interface provides 4 different security
levels, in order to mitigate the aforementioned security risk that
connected devices pose to the
On 5 January 2018 at 09:35, David Woodhouse wrote:
> On Fri, 2018-01-05 at 09:23 +0100, Jan Kurik wrote:
>>
>>
>> == Detailed Description ==
>> Replace older, clunkier, less user-friendly python interfaces to
>> Kerberos with python-gssapi. python-gssapi uses the GSSAPI interface,
>> which is wide
= System Wide Change:Removal of Sun RPC Interfaces From glibc =
https://fedoraproject.org/wiki/Changes/SunRPCRemoval
Change owner(s):
* Florian Weimer fweimer AT redhat DOT com>
This system-wide change covers the removal of interfaces related to
Sun RPC from glibc.
== Detailed Description ==
g
On Thu, Jan 04, 2018 at 09:36:27PM -0800, John Reiser wrote:
> 2) The explicit write by the stack probe can mask a memcheck(valgrind)
>violation, at least until memcheck groks the probe.
That should not be true. The probe is done after the stack pointer is
lowered, so memcheck/valgrind knows t
On 01/05/2018 12:41 PM, Mark Wielaard wrote:
On Thu, Jan 04, 2018 at 09:36:27PM -0800, John Reiser wrote:
2) The explicit write by the stack probe can mask a memcheck(valgrind)
violation, at least until memcheck groks the probe.
That should not be true. The probe is done after the stack po
On 01/05/2018 10:17 AM, Zbigniew Jędrzejewski-Szmek wrote:
On Thu, Jan 04, 2018 at 09:36:27PM -0800, John Reiser wrote:
4) All code must be generated by a compiler that enforces the probing policy,
and all language support run-time routines also must enforce the policy.
No mixing of old or forei
On 01/05/2018 12:41 PM, Mark Wielaard wrote:
On Thu, Jan 04, 2018 at 09:36:27PM -0800, John Reiser wrote:
2) The explicit write by the stack probe can mask a memcheck(valgrind)
violation, at least until memcheck groks the probe.
That should not be true. The probe is done after the stack po
= Proposed Self Contained Change: Anaconda modularization =
https://fedoraproject.org/wiki/Changes/AnacondaModularization
Change owner(s):
* Jiří Konečný
Anaconda installer will be split into several modules that will
communicate over DBus using stable API.
== Detailed Description ==
Anaconda
On 01/05/2018 01:26 PM, Stephan Bergmann wrote:
On 01/05/2018 12:41 PM, Mark Wielaard wrote:
On Thu, Jan 04, 2018 at 09:36:27PM -0800, John Reiser wrote:
2) The explicit write by the stack probe can mask a memcheck(valgrind)
violation, at least until memcheck groks the probe.
That should
> The solution to automatically enable thunderbolt 3 devices to work
> with Fedora without compromising the security of the computer consists
> of two user space compoments: a system daemon (boltd) and a component
> in GNOME shell.
So what will happen in other desktops?
Is it necessary to impleme
On 01/05/2018 06:36 AM, John Reiser wrote:
1) Each on-stack allocation (both fixed- and variable-sized [alloca()])
always is present and "dirty". The stack probe (or the incremental growth
of <= PAGE_SIZE bytes at a time) forces it to consume separate, real RAM.
In a local declaration such as t
= System Wide Change: Make authselect default tool instead of authconfig =
https://fedoraproject.org/wiki/Changes/AuthselectAsDefault
Change owner(s):
* Pavel Březina
Replace authconfig with authselect and make authselect a default tool
to configure PAM and nsswitch.conf. A compatibility tool w
Hi,
On Thu, 2018-01-04 at 14:16 +0100, Jan Kurik wrote:
> - Add VirtualBox Guest Additions package to the default package list
> for the Workstation product
I don't understand this one, VirtualBox Guest should *only* be
installed in an virtual machine .
Today VirtualBox-server conflicts with Vir
On Fri, 2018-01-05 at 14:50 +0100, Jan Kurik wrote:
> The tool is packaged with a default
> profile set that is fully supported. If an administrator has
> different
> needs they can create a custom profile and make it accessible in
> authselect by dropping it in the tool specific directory.
How?
On Wed, Jan 3, 2018 at 5:48 PM, Adam Williamson
wrote:
>
> >
> > Again, from my reading on the web this only affects Intel CPUs of the
> > last decade.
>
> This is certainly not correct. Both the Google researchers and Red
> Hat's security team have stated that many other CPUs and CPU families
>
On 01/05/2018 03:14 PM, John Florian wrote:
On Fri, 2018-01-05 at 14:50 +0100, Jan Kurik wrote:
The tool is packaged with a default
profile set that is fully supported. If an administrator has
different
needs they can create a custom profile and make it accessible in
authselect by dropping it in
On Fri, Jan 5, 2018 at 9:48 AM, Gerald B. Cox wrote:
>
>
> On Wed, Jan 3, 2018 at 5:48 PM, Adam Williamson
> wrote:
>>
>>
>> >
>> > Again, from my reading on the web this only affects Intel CPUs of the
>> > last decade.
>>
>> This is certainly not correct. Both the Google researchers and Red
>> H
(Sorry for the short notice -- I forgot that I was running the meeting this
week.)
Following is the list of topics that will be discussed in the
FESCo meeting Friday at 16:00UTC in #fedora-meeting onirc.freenode.net.
To convert UTC to your local time, take a look at
http://fedoraproject.org/wik
On Fri, 2018-01-05 at 16:02 +0100, Pavel Březina wrote:
> On 01/05/2018 03:14 PM, John Florian wrote:
> > On Fri, 2018-01-05 at 14:50 +0100, Jan Kurik wrote:
> > > The tool is packaged with a default
> > > profile set that is fully supported. If an administrator has
> > > different
> > > needs they
On 05/01/18 15:02, Pavel Březina wrote:
Yes, there is a data dir: /usr/share/authselect/
Description of these directories may be seen in the man page, currently
at this upstream link:
https://github.com/pbrezina/authselect/blob/master/src/man/authselect-profiles.5.txt.in.in
Well /usr/share/a
On Fri, Jan 05, 2018 at 01:31:09PM +0100, Björn Persson wrote:
> > The solution to automatically enable thunderbolt 3 devices to work
> > with Fedora without compromising the security of the computer consists
> > of two user space compoments: a system daemon (boltd) and a component
> > in GNOME she
On Fri, Jan 05, 2018 at 02:50:45PM +0100, Jan Kurik wrote:
> = System Wide Change: Make authselect default tool instead of authconfig =
> https://fedoraproject.org/wiki/Changes/AuthselectAsDefault
Does this change do anything to reduce the number of files in /etc
that do not contain local configur
On Fri, 2018-01-05 at 10:10 +, James Hogarth wrote:
> On 5 January 2018 at 09:35, David Woodhouse wrote:
> > On Fri, 2018-01-05 at 09:23 +0100, Jan Kurik wrote:
> > >
> > >
> > > == Detailed Description ==
> > > Replace older, clunkier, less user-friendly python interfaces to
> > > Kerberos
On Fri, Jan 5, 2018 at 7:28 AM, Josh Boyer
wrote:
>
>
> That is only for one of the issues, Meltdown. AMD and other vendors
> are impacted by Spectre.
>
> > I'm assuming that Fedora and Redhat both are bypassing this for AMD,
> > correct?
>
> You would need to contact Red Hat, or review the exis
Hello
I'm the admin of https://src.fedoraproject.org/rpms/clamav/ but I
haven't commit permissions for brancn epel 7 , what I need to do ? to
have permission to commit on epel7 .
Best regards,
--
Sérgio M. B.
___
devel mailing list -- devel@lists.fed
===
#fedora-meeting: FESCO (2018-01-05)
===
Meeting started by jsmith at 16:00:09 UTC. The full logs are available
athttps://meetbot.fedoraproject.org/fedora-meeting/2018-01-05/fesco.2018-01-05-16.00.log.html
.
Meeting summary
---
> "IG" == Igor Gnatenko writes:
IG> First thing you should do is to open a ticket for FPC[0] in order to
IG> fix guidelines.
I'm still catching up on list mail but someone sent me a personal email
about this. Not sure why they didn't open a ticket, but in the end it
doesn't matter. I did s
> On Thu, 2018-01-04 at 14:16 +0100, Jan Kurik wrote:
>
> I don't understand this one, VirtualBox Guest should *only* be
> installed in an virtual machine .
Workstation already installs guest support for all major virtualization systems
*except* VirtualBox by default: hyperv-daemon, open-vm-tool
> "IG" == Igor Gnatenko writes:
IG> Before FPC approves that it's really not needed, strictly speaking
IG> is violation of packaging guidelines...
I hope we're not so bureaucracy minded that we can't ignore obviously
wrong things because they're on a wiki page that just hasn't been
updated
So, if I am reading this correctly:
1) Triggers have been added to hicolor-icon-theme in all supported fedora
releases (f26+),
2) the scriptlets are no longer necessary in packages installing hicolor
icons, and
3) references to the scriptlets have been removed from the packaging
guidelines.
Accor
On Fri, Jan 05, 2018 at 02:03:17PM +, Sérgio Basto wrote:
> Hi,
>
> On Thu, 2018-01-04 at 14:16 +0100, Jan Kurik wrote:
> > - Add VirtualBox Guest Additions package to the default package list
> > for the Workstation product
>
> I don't understand this one, VirtualBox Guest should *only* be
>
Hey all,
pkgconf is being upgraded to 1.4.0 in Rawhide today.
With this update, libpkgconf bumps its soversion from 2 to 3. So, I'll
be rebuilding everything that depends on libpkgconf.
The list of dependent packages to rebuild:
perl-PkgConfig-LibPkgConf
perl-Alien-pkgconf
--
真実はいつも一つ!/ Always
On Fri, Jan 05, 2018 at 05:10:34PM +, Sérgio Basto wrote:
> I'm the admin of https://src.fedoraproject.org/rpms/clamav/ but I
> haven't commit permissions for brancn epel 7 , what I need to do ? to
> have permission to commit on epel7 .
With the change to src.fedoraproject.org, there aren't s
Hi, guys,
Running F26 on AMD FX8300 system.
Have been keeping my system updated every time the notification
pops up with the reboot and install.
Today had a bit of cookiness happen on the web, so I decided to
do a manual dnf update from the CLI. 386 updates
It'
On 2018-01-05 05:19, Jan Kurik wrote:
> == Detailed Description ==
> glibc bundles an implementation of Sun RPC (including XDR support, on
> which Sun RPC is based). This implementation is not compatible with
> IPv6, and due to the way addresses are represented, adding IPv6
> support would need an
On 2018-01-05 12:57, Howard Howell wrote:
> Running F26 on AMD FX8300 system.
> Have been keeping my system updated every time the notification
> pops up with the reboot and install.
>
> Today had a bit of cookiness happen on the web, so I decided to
> do a manual dnf update from
On 01/05/2018 08:10 PM, Yaakov Selkowitz wrote:
Please be aware that not all RPC-dependent packages are "aware" of
libtirpc yet. Notably, KDE's NFS kioslaves (in kdebase3, kde-runtime,
and kio-extras) would need to be patched to use libtirpc. Without such,
the packages would rebuild, but witho
On 2018-01-05 14:09, Florian Weimer wrote:
> On 01/05/2018 08:10 PM, Yaakov Selkowitz wrote:
>> Please be aware that not all RPC-dependent packages are "aware" of
>> libtirpc yet. Notably, KDE's NFS kioslaves (in kdebase3, kde-runtime,
>> and kio-extras) would need to be patched to use libtirpc.
On Fri, 2018-01-05 at 10:57 -0800, Howard Howell wrote:
> Hi, guys,
> Running F26 on AMD FX8300 system.
> Have been keeping my system updated every time the notification
> pops up with the reboot and install.
>
> Today had a bit of cookiness happen on the web, so I decided to
> d
On Fri, 2018-01-05 at 21:09 +0100, Florian Weimer wrote:
> On 01/05/2018 08:10 PM, Yaakov Selkowitz wrote:
>
> > Please be aware that not all RPC-dependent packages are "aware" of
> > libtirpc yet. Notably, KDE's NFS kioslaves (in kdebase3, kde-runtime,
> > and kio-extras) would need to be patche
On 01/05/2018 09:42 PM, Simo Sorce wrote:
On Fri, 2018-01-05 at 21:09 +0100, Florian Weimer wrote:
On 01/05/2018 08:10 PM, Yaakov Selkowitz wrote:
Please be aware that not all RPC-dependent packages are "aware" of
libtirpc yet. Notably, KDE's NFS kioslaves (in kdebase3, kde-runtime,
and kio-e
On Fri, 2018-01-05 at 13:54 -0500, Matthew Miller wrote:
> On Fri, Jan 05, 2018 at 05:10:34PM +, Sérgio Basto wrote:
> > I'm the admin of https://src.fedoraproject.org/rpms/clamav/ but I
> > haven't commit permissions for brancn epel 7 , what I need to do ?
> > to
> > have permission to commit
# F28 Blocker Review meeting
# Date: 2018-01-08
# Time: 17:00 UTC
# Location: #fedora-blocker-review on irc.freenode.net
Hi folks! We have six proposed blockers for Fedora 28 Beta, so let's
have a review meeting on Monday.
If you have time over the weekend, you can take a look at the proposed or
# Fedora Quality Assurance Meeting
# Date: 2018-01-08
# Time: 16:00 UTC
(https://fedoraproject.org/wiki/Infrastructure/UTCHowto)
# Location: #fedora-meeting on irc.freenode.net
Greetings testers, and Happy New Year!
We haven't had a meeting for a little while, and it's Interesting Times
in the wo
> "JF" == John Florian writes:
JF> One last thought, how friendly is this going to be with tools like
JF> puppet and ansible?
Well it has to be friendlier than authconfig, because generally
authconfig isn't and can't be made idempotent. It will randomly reorder
things you pass to it on the
> "SB" == Sérgio Basto writes:
SB> I don't have permissions on epel7
There are a few repos where the gitolite permission setup wasn't
regenerated after the switch to pagure. I just checked and that
definitely appears to be one of them, but I don't have permission to fix
it for you. If you
On Fri, 2018-01-05 at 21:10 -0600, Jason L Tibbitts III wrote:
> > > > > > "SB" == Sérgio Basto writes:
>
> SB> I don't have permissions on epel7
>
> There are a few repos where the gitolite permission setup wasn't
> regenerated after the switch to pagure. I just checked and that
> definitely a
No missing expected images.
Failed openQA tests: 13/128 (x86_64), 2/24 (i386), 1/2 (arm)
New failures (same test did not fail in Rawhide-20180104.n.0):
ID: 184478 Test: x86_64 universal install_simple_encrypted
URL: https://openqa.fedoraproject.org/tests/184478
ID: 184490 Test: x86_64
54 matches
Mail list logo
