Hello,
This is a follow up on my previous email[1] about OpenScanHub Prototype for
Fedora.
Thank you to those who have provided early feedback. Your help is truly
appreciated!
I am writing this message to get feedback from the community on possibly
new defects identified by static analyzers in Core Critical Path packages
that have changed in Fedora 41.
TLDR: This report[2] contains 14188 identified defects. Please review the
report and provide feedback.
A mass scan was performed this week on the packages that have changed in
Fedora 41. This report[2] contains all the new defects that have been
identified in the core packages listed in Critical Path Packages. Please
review the report and fix or report any defects to upstream that may be
real bugs. Not all defects reported by OpenScanHub may be actual bugs, so
please verify reported defects before investing time into fixing or
reporting them. We hope this is helpful for the packages you maintain and
for the upstream projects. Questions can be asked on the OpenScanHub
mailing list[3]. If you want to see the full logs of the scans, they are
available on the tasks[4] page. User documentation for performing a scan is
available on the Fedora wiki[5].
If the feedback on this report is positive, there may be a possibility of
increasing the scope of scans to cover a wider range of packages.
Please remember this is currently an early production stage for OpenScanHub
scanning. Constructive feedback is appreciated. Thank you!
[1]
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org…
[2] https://svashisht.fedorapeople.org/f41-22-Apr-2024/
[3]
https://lists.fedoraproject.org/archives/list/openscanhub@lists.fedoraproje…
[4] https://openscanhub.fedoraproject.org/task/
[5] https://fedoraproject.org/wiki/OpenScanHub
In Fedora we enable flambda in our OCaml package. Debian does not.
Flambda is "a series of optimisation passes provided by the native
code compilers as of OCaml 4.03" and "aims to make it easier to write
idiomatic OCaml code without incurring performance penalties". In
other words, it claims to be a better optimizer.
More here:
https://ocaml.org/manual/5.1/flambda.html
We recently found that one package (coccinelle) takes much, much
longer to compile when this is enabled. As in one particular file
goes from seconds -> 30 minutes to compile. I investigated and the
difference is entirely explained by enabling flambda, and goes away
when disabled. Apart from this being annoying, it doesn't seem to be
a problem in any other way (for example, the final program doesn't
noticable run faster or slower). Upstream coccinelle seem to be using
Debian and therefore haven't seen the problem.
Thread about all that:
https://lore.kernel.org/cocci/20240502085433.GA30267@redhat.com/
This email is mostly to notify that this is happening. I'm not sure
if a single package slowing down compilation means we need to do
anything here, but if anyone else sees similar symptoms, let us know.
Rich.
--
Richard Jones, Virtualization Group, Red Hat http://people.redhat.com/~rjones
Read my programming and virtualization blog: http://rwmj.wordpress.com
virt-p2v converts physical machines to virtual machines. Boot with a
live CD or over the network (PXE) and turn machines into KVM guests.
http://libguestfs.org/virt-v2v
Following is the list of topics that will be discussed in the
FESCo meeting Monday at 19:00 UTC in #meeting:fedoraproject.org
on Matrix.
To convert UTC to your local time, take a look at
http://fedoraproject.org/wiki/UTCHowto
or run:
date -d '2024-05-06 19:00 UTC'
Links to all issues to be discussed can be found at:
https://pagure.io/fesco/report/meeting_agenda
= Discussed and Voted in the Ticket =
#3202 Change: Python Built with gcc -O3
https://pagure.io/fesco/issue/3202
APPROVED (+3, 0, 0)
#3201 Change: Reproducible Package Builds
https://pagure.io/fesco/issue/3201
APPROVED (+5, 0, 0)
= Followups =
= New business =
#3204 Request for one-time Updates Policy Exception: GStreamer 1.24 for Fedora 40
https://pagure.io/fesco/issue/3204
#3200 provenpackager nomination for fche
https://pagure.io/fesco/issue/3200
#3186 Mandatory 2FA for all packagers
https://pagure.io/fesco/issue/3186
= Open Floor =
For more complete details, please visit each individual
issue. The report of the agenda items can be found at
https://pagure.io/fesco/report/meeting_agenda
If you would like to add something to this agenda, you can
reply to this e-mail, file a new issue at
https://pagure.io/fesco, e-mail me directly, or bring it
up at the end of the meeting, during the open floor topic. Note
that added topics may be deferred until the following meeting.
Hello everyone,
We've prepared a side-tag for testing Rawhide with dnf5 as the default
package manager. Instructions for installing the packages from the side-tag
can be found at the following link [1].
Please provide feedback in Bodhi or on this mailing list regarding the use
cases you're familiar with from the existing dnf command, and share your
experience with this new version.
If there's no negative feedback regarding any critical functionality, we
plan to push the packages from the side-tag to Rawhide next week.
[1] https://bodhi.fedoraproject.org/updates/FEDORA-2024-8a41ea93a2
Thanks,
Jan