Orphaning luit
by Peter Hutterer
I've orphaned luit. The only user of it was xterm and it recently dropped
support for luit so there are no users left. Whether there are *any* users
left is unclear too :)
The luit package we shipped is still the freedesktop.org one which has been
unmaintained for about a decade now. Upstream now points to
Thomas Dickey's fork at http://invisible-island.net/luit/ so if anyone
wants to take this, I advise switching to that version as part of the first
steps.
Cheers,
Peter
2 years, 3 months
F36 Change: Make Authselect Mandatory (System-Wide Change proposal)
by Ben Cotton
https://fedoraproject.org/wiki/Changes/Make_Authselect_Mandatory
== Summary ==
This change wants to make authselect required to configure
authentication and identity sources and forcefully update
non-authselect configuration to the sssd authselect profile to
eliminate any existing non-authselect setups.
Even though it will still be possible to manually modify the
configuration, users that require special configuration should create
and use custom authselect profile.
''Authselect is available in Fedora since Fedora 27 and enabled by
default on new installations since Fedora 28. Authconfig compatibility
tool was removed from Fedora 35 as a
[[Changes/RemoveAuthselectCompatPackage|system wide change page]]. It
is now well accepted by the community as well as the package
maintainers. The package maintainers have repeatedly requested to make
authselect mandatory for the users which lead to creation of
[https://bugzilla.redhat.com/show_bug.cgi?id=2000936 this bugzilla].''
== Owner ==
* Name: [[User:pbrezina|Pavel Březina]]
* Email: pbrezina(a)redhat.com
== Detailed Description ==
The following components must be updated to make authselect mandatory:
* authselect
* pam
* glibc
* packages that use it: systemd, ecryptfs, nss-mdns and fingerprint.
Required changes:
# Remove user-nsswitch.conf functionality from authselect
# Move ownership of /etc/nsswitch.conf and /etc/pam.d/{system-auth,
password-auth, smartcard-auth, fingerprint-auth, postlogin} to
authselect from glibc and pam
# Require authselect in pam
# Remove non-authselect support from systemd, ecryptfs, nss-mdns and fingerprint
# Select default profile when authselect is installed
# Select default profile when authselect is upgraded
=== Remove user-nsswitch.conf functionality ===
File /etc/authselect/user-nsswitch.conf was introduced in authselect
to allow partial user modifications of nsswitch.conf without the need
to create a custom authselect profile. The main driver was to enable
modules that are not included in authselect such as systemd-resolved
and nss-mdns.
This however made the situation more confusing to users and it is not
desirable any more if authselect is mandatory.
'''Authselect will drop user-nsswitch.conf functionality and instead
add more nsswitch modules to existing profiles and be more open about
future inclusion requests.'''
=== Own /etc/nsswitch.conf and /etc/pam.d/{system-auth, password-auth,
smartcard-auth, fingerprint-auth, postlogin} instead of glibc and pam
===
File /etc/nsswitch.conf is currently owned by glibc. It will be now
owned by authselect and removed from glibc.
PAM configuration generated by authselect is currently owned by pam.
It will be now owned by authselect and removed from pam.
''Note: that config-util and other will still be owned by pam since
these files are not generated by authselect.''
'''All files that are generated by authselect are now owned by authselect.'''
=== Require authselect in pam ===
The pam package will require authselect. This will tie pam and
authselect together and it will be impossible to uninstall authselect
without uninstalling pam which fundamentally makes authselect a hard
dependency on each system.
'''This step will make it impossible to uninstall authselect, making
it always available to RPM packages.'''
=== Remove non-authselect support from systemd, ecryptfs, nss-mdns and
fingerprint ===
'''Non-authselect configuration support will be dropped in these packages.'''
=== Select default profile when authselect is installed ===
If authselect configuration is not detected and this is a new
installation of authselect it will automatically select the
distribution default authselect profile by calling authselect select
--force with distribution specific parameters.
If existing authselect configuration is detected (perhaps from
previous installation), it will be updated (current behavior).
This makes sure that if authselect is installed (which is always) a
configuration is created.
Select default profile when authselect is upgraded
If authselect is upgraded from an older version and non-authselect
configuration is detected, it will forcefully overwrite it with
distribution defaults by calling authselect select --force with
distribution specific parameters.
This is a one time event so if someone does not want to use
authselect, it remains possible. However, non-authselect
configurations will not be supported by RPM packages mentioned above.
If authselect is upgraded on a system that already is configured by
it, the update process remains the same as it is now.
'''This step will forcefully update existing installations to
authselect configuration. It is a one time event and opt-out is still
possible but no longer supported.
'''
== Benefit to Fedora ==
'''Making authselect mandatory will provide better user and
maintainers experience and significantly reduce risk of breaking
system configuration.'''
The use of authselect-generated configuration is currently optional.
This means that users can uninstall authselect or just opt-out from it
by modifying the PAM and nsswitch.conf manually.
Additionally users that upgrade from pre-authselect systems (Fedora 27
and older) must opt-in to authselect manually, which is not the case
most of the time. Also sometimes an upgrade of a particular package
that did not handle authselect configuration correctly automatically
opted-out its users. Therefore we can split users into four groups:
* Those who are using authselect
* Those who were using authselect but are not anymore due to various
errors in packages
* Those who are not using authselect because they are not aware of it
and upgraded from older Fedora versions thus it was not automatically
enabled
* Those who are not using authselect knowingly
''Fedora is now split into two worlds: those who use authselect and
those who don’t. This however keeps two problems existing. Authselect
was designed to solve them both. But it will be solved only if the use
of authselect is a mandatory requirement.''
=== 1. It is difficult to deliver updates to configurations ===
FIles /etc/nsswitch.conf and /etc/pam.d/* are distributed as
%config(noreplace) which means that they are configuration files and
are only installed if they are not yet present. If they are present
then they are never overwritten with package updates, instead an
*.rpmnew file is created and the update responsibility is left
completely to the user.
It is done this way to prevent overwriting user changes
configurations. But at the same time it means that even configurations
that are not modified by the users can not be changed so we can not
deliver fixes and changes efficiently.
It is only possible through difficult scriptlets. As an example, we
can show this bugzilla where a change in Gnome required an update to
PAM otherwise the user could not authenticate. Delivering the change
was easy with authselect, but difficult for non-authselect systems.
Authselect already knows how the resulting configuration should look
and does not risk overriding user configuration. Making it mandatory
will help distribute important updates to nsswitch and PAM
configuration.
=== 2. Package maintainers wants to enable/disable nsswitch or PAM
modules automatically upon installation/uninstallation ===
Packages that install nsswitch modules (e.g. systemd, nss-mdns) or PAM
modules (e.g. ecryptfs, fprintd) want to enable the module
automatically upon RPM installation to provide a better user
experience. So they use various more or less complex and fragile
scriptlets in %post action of the RPM.
This is usually easier for the nsswitch module, when simple sed works
for most configurations. But it is not really possible for PAM
(because there is high risk of introducing security vulnerabilities or
breaking authentication completely) so the packages used authconfig
and now authselect.
Packages need to detect the current authselect state and either call
authselect when available or fallback to non-authselect scriptlets.
The end results tends to be the same for nsswitch modules but
different for PAM modules where it is either enabled with authselect
or nothing happens.
'''If authselect is made mandatory, packages can only support
authselect configuration which makes the change simple,
straightforward, easier to test and safe.'''
== Scope ==
* Proposal owners:
** authselect maintainers:
*** implement the changes described in "Detailed Description" in all
affected packages
*** open pull requests with the changes against affected packages
* Other developers:
** maintainers of affected packages must accept submitted merge request
* Release engineering: [https://pagure.io/releng/issue/10337 #10337]
* Policies and guidelines: N/A (not needed for this Change)
* Trademark approval: N/A (not needed for this Change)
* Alignment with Objectives: N/A
== Upgrade/compatibility impact ==
The system will be forcefully configured with authselect, selecting
the default distribution profile (sssd), if non-authselect
configuration is detected. It will will override users configuration.
A backup will be created, users can run 'authselect backup-restore
$id' to restore their configuration when desired.
== How To Test ==
* Authselect must keep working as expected.
* Ownership of the following files is transferred to authselect-libs package
** /etc/pam.d/fingerprint-auth
** /etc/pam.d/password-auth
** /etc/pam.d/postlogin
** /etc/pam.d/smartcard-auth
** /etc/pam.d/system-auth
** /etc/nsswitch.conf
* pam requires authselect
* updating from previous system with non-authselect configuration must
result in applied authselect configuration with sssd profile
* updating from previous system with authselect configuration must
remain intact (besides applying udated profiles)
* installing/removing affected packages (see Detailed Description)
must not break authselect configuration
== User Experience ==
PAM and nsswitch.conf configuration will be automatically updated when changed.
''Note: To request inclusion of a new nsswitch or PAM module in
default authselect profiles, either open an issue on authselect GitHub
project or open a bug against authselect component in Fedora
bugzilla.''
''Note: Users will still be able to create custom profiles to include
modules that are not supported by default authselect profiles.
However, such profiles will have limited update support. It is
possible to create a custom profile with some files as symlinks to
default profiles, those files will receive updates automatically.
However, modified files of the custom profiles still need to be
updated manually and the users are responsible for the update.
''
''Note: Users will still be able to opt-out from authselect, but such
configuration will no longer be updated on upgrades or touched by
package installation.''
== Dependencies ==
This change does not break any packages that depends on authselect.
== Contingency Plan ==
* Contingency mechanism: Revert changes in affected packages.
* Contingency deadline: Beta
* Blocks release? No
== Documentation ==
There is no upstream documentation.
== Release Notes ==
Configuring system authentication and identity sources with authselect
is now mandatory. Systems with non-authselect configuration will be
automatically forcefully upgraded to authselect configuration. Users
that require special configuration are encouraged to create and use
custom authselect profile.
--
Ben Cotton
He / Him / His
Fedora Program Manager
Red Hat
TZ=America/Indiana/Indianapolis
2 years, 4 months
Orphaned packages looking for new maintainers
by Miro Hrončok
The following packages are orphaned and will be retired when they
are orphaned for six weeks, unless someone adopts them. If you know for sure
that the package should be retired, please do so now with a proper reason:
https://fedoraproject.org/wiki/How_to_remove_a_package_at_end_of_life
Note: If you received this mail directly you (co)maintain one of the affected
packages or a package that depends on one. Please adopt the affected package or
retire your depending package to avoid broken dependencies, otherwise your
package will fail to install and/or build when the affected package gets retired.
Request package ownership via the *Take* button in he left column on
https://src.fedoraproject.org/rpms/<pkgname>
Full report available at:
https://churchyard.fedorapeople.org/orphans-2021-11-22.txt
grep it for your FAS username and follow the dependency chain.
For human readable dependency chains,
see https://packager-dashboard.fedoraproject.org/
For all orphaned packages,
see https://packager-dashboard.fedoraproject.org/orphan
Package (co)maintainers Status Change
================================================================================
Java-WebSocket orphan 3 weeks ago
PyPAM orphan, tmraz 1 weeks ago
arduino-ctags orphan 3 weeks ago
asl orphan 3 weeks ago
bitlbee-discord orphan 6 weeks ago
bytelist lef, orphan 3 weeks ago
cAudio orphan 6 weeks ago
chaos-client go-sig, orphan 3 weeks ago
chck fale, orphan, zvetlik 3 weeks ago
concurrent-trees hhorak, orphan 3 weeks ago
conky-manager orphan 3 weeks ago
couchdb orphan 3 weeks ago
crlfuzz go-sig, orphan 3 weeks ago
cuetools orphan 3 weeks ago
dummy-test-package-rubino asaleh, orphan, packagerbot, 3 weeks ago
patrikp, scoady, wwoods
edac-utils orphan 3 weeks ago
elog orphan 6 weeks ago
erlang-certifi erlang-maint-sig, orphan 4 weeks ago
erlang-cf erlang-maint-sig, orphan 4 weeks ago
erlang-cth_readable erlang-maint-sig, orphan 4 weeks ago
erlang-erlware_commons erlang-maint-sig, orphan 4 weeks ago
erlang-eunit_formatters erlang-maint-sig, orphan 4 weeks ago
erlang-exometer_core orphan 3 weeks ago
erlang-hex_core erlang-maint-sig, orphan 4 weeks ago
erlang-protobuffs orphan 3 weeks ago
erlang-providers erlang-maint-sig, orphan 4 weeks ago
erlang-relx erlang-maint-sig, orphan 4 weeks ago
erlang-riak_api bowlofeggs, erlang-maint-sig, 3 weeks ago
orphan
erlang-riak_core bowlofeggs, erlang-maint-sig, 3 weeks ago
orphan
erlang-ssl_verify_fun erlang-maint-sig, orphan 4 weeks ago
erlang-triq orphan 3 weeks ago
fennel epel-packagers-sig, lua- 3 weeks ago
packagers-sig, orphan
forbidden-apis jvanek, orphan 3 weeks ago
gdata-sharp moezroy, orphan, tpokorra 3 weeks ago
gfm orphan 6 weeks ago
gnu-getopt dwalluck, mizdebsk, orphan 3 weeks ago
golang-github-beevik-ntp go-sig, orphan 2 weeks ago
golang-github-dgraph-io-badger orphan 6 weeks ago
golang-github-dgraph-io- orphan 6 weeks ago
ristretto
golang-github-ema-qdisc go-sig, orphan 2 weeks ago
golang-github-geziyor orphan 6 weeks ago
golang-github-kolo-xmlrpc go-sig, orphan 2 weeks ago
golang-github-mdlayher- go-sig, orphan 2 weeks ago
genetlink
golang-github-mdlayher-wifi go-sig, orphan 2 weeks ago
golang-github-milochristiansen- go-sig, orphan 6 weeks ago
axis2
golang-github-milochristiansen- go-sig, orphan 6 weeks ago
lua
golang-github-soundcloud-runit go-sig, orphan 2 weeks ago
ipmitool branto, jridky, orphan, 0 weeks ago
pcahyna, praveenp
jsap orphan 3 weeks ago
k3guitune orphan 3 weeks ago
kexi kde-sig, orphan 0 weeks ago
komparator orphan 3 weeks ago
latex-mk orphan 3 weeks ago
libcxl orphan 5 weeks ago
libgaiagraphics orphan 3 weeks ago
libocxl orphan 5 weeks ago
librfid orphan 3 weeks ago
libticables2 orphan 6 weeks ago
libticalcs2 orphan 6 weeks ago
libticonv orphan 6 weeks ago
libtifiles2 orphan 6 weeks ago
llvm11.0 orphan, tstellar 3 weeks ago
mingw-colord-gtk gnome-sig, orphan 3 weeks ago
mir orphan 2 weeks ago
mygui orphan 6 weeks ago
naabu go-sig, orphan 3 weeks ago
netcf berrange, orphan 3 weeks ago
nuclei go-sig, orphan 3 weeks ago
oci-kvm-hook orphan 3 weeks ago
pam_mount lupinix, orphan, steve 3 weeks ago
passenger kanarip, orphan 3 weeks ago
perl-OpenOffice-UNO filabrazilska, orphan, scenek 3 weeks ago
plantuml gil, orphan 0 weeks ago
plasma-applet-redshift-control kde-sig, lupinix, orphan 3 weeks ago
postgres-decoderbufs fjanus, hhorak, orphan, 3 weeks ago
panovotn
purple-mattermost orphan 6 weeks ago
python-sockjs-tornado orphan, python-sig 6 weeks ago
qotd orphan 6 weeks ago
quasselgrep orphan 6 weeks ago
qwtpolar orphan 3 weeks ago
rubygem-simple-navigation orphan 3 weeks ago
rubygem-six orphan 3 weeks ago
rust-ruma-events orphan, rust-sig 3 weeks ago
seahorse-sharing gnome-sig, orphan, stefw 3 weeks ago
shuffledns go-sig, orphan 3 weeks ago
spasm-ng orphan 6 weeks ago
sugar-visualmatch orphan 3 weeks ago
tfdocgen orphan 6 weeks ago
tilp2 orphan 6 weeks ago
trafshow orphan 3 weeks ago
treefrog-framework orphan 6 weeks ago
truth orphan 3 weeks ago
uglify-js1 nodejs-sig, orphan, patches 6 weeks ago
umph orphan 1 weeks ago
unshield orphan 6 weeks ago
vanessa_logger orphan 3 weeks ago
vgrive orphan 3 weeks ago
wxpdfdoc orphan, swt2c 3 weeks ago
xfce4-equake-plugin cheese, orphan 3 weeks ago
xoreos-tools orphan 6 weeks ago
yecht orphan 3 weeks ago
yydebug orphan 3 weeks ago
zgrab2 orphan 6 weeks ago
The following packages require above mentioned packages:
Report too long, see the full version at
https://churchyard.fedorapeople.org/orphans-2021-11-22.txt
See dependency chains of your packages at
https://packager-dashboard.fedoraproject.org/
See all orphaned packages at https://packager-dashboard.fedoraproject.org/orphan
Affected (co)maintainers (either directly or via packages' dependencies):
abbot: truth
abbra: ipmitool
achernya: truth
adev: truth
adrian: truth
akoutsou: golang-github-kolo-xmlrpc
alakatos: truth
alexl: truth
am1g0: truth
andreamanzi: truth
anoopcs: ipmitool
asaleh: dummy-test-package-rubino
asn: ipmitool
atim: truth
avagin: truth
avsej: truth
berrange: netcf, ipmitool
besser82: ipmitool
bofh80: golang-github-kolo-xmlrpc
bonzini: ipmitool
bowlofeggs: erlang-riak_core, erlang-riak_api, erlang-exometer_core,
erlang-triq, erlang-protobuffs
branto: ipmitool
bruno: truth
caillon: truth
caolanm: truth
carlwgeorge: truth
cfeist: ipmitool
cheese: xfce4-equake-plugin
churchyard: truth
clalance: ipmitool
cockpit: golang-github-kolo-xmlrpc
codeblock: erlang-triq, erlang-protobuffs
comzeradd: truth
crobinso: ipmitool
dang: ipmitool
ddd: truth
defolos: truth
deji: truth
denisarnaud: truth
devos: ipmitool
dwalluck: gnu-getopt
dwmw2: ipmitool
dwrobel: plantuml
eclipseo: golang-github-ema-qdisc, golang-github-mdlayher-wifi,
golang-github-mdlayher-genetlink, truth, golang-github-soundcloud-runit,
golang-github-kolo-xmlrpc, golang-github-beevik-ntp
ehabkost: ipmitool
epel-packagers-sig: fennel
erlang-maint-sig: erlang-cf, erlang-riak_core, erlang-erlware_commons,
erlang-riak_api, erlang-providers, erlang-hex_core, erlang-eunit_formatters,
erlang-certifi, erlang-cth_readable, erlang-ssl_verify_fun, erlang-relx,
erlang-exometer_core, erlang-triq, erlang-protobuffs
etrunko: truth
fab: truth
fale: chck
fantom: truth
filabrazilska: erlang-triq, erlang-protobuffs, perl-OpenOffice-UNO
filbranden: truth
fjanus: postgres-decoderbufs
fnux: erlang-triq, erlang-protobuffs
fujiwara: truth
gbitzes: truth
gd: ipmitool
gferon: truth
gil: plantuml
gnome-sig: mingw-colord-gtk, seahorse-sharing
go-sig: naabu, golang-github-ema-qdisc, chaos-client,
golang-github-mdlayher-genetlink, golang-github-mdlayher-wifi, nuclei, truth,
golang-github-soundcloud-runit, golang-github-kolo-xmlrpc,
golang-github-beevik-ntp, golang-github-milochristiansen-axis2, shuffledns,
crlfuzz, golang-github-milochristiansen-lua
grover: ipmitool
hguemar: truth
hhorak: postgres-decoderbufs, concurrent-trees, truth
hno: truth
hubbitus: vanessa_logger, truth
hvad: truth
iboukris: ipmitool
icheishvili: erlang-triq, erlang-protobuffs
idevat: ipmitool
ignatenkobrain: rust-ruma-events, truth
infra-sig: truth
jarrpa: ipmitool
java-sig: truth
jcline: erlang-triq, erlang-protobuffs
jcpunk: ipmitool
jeckersb: erlang-triq, erlang-protobuffs
jforbes: ipmitool
jiffintt: ipmitool
jjanco: truth
jjg: truth
jkucera: truth
jlayton: ipmitool
jlcjohn: truth
jmlich: truth
jonny: truth
jreznik: truth
jridky: truth, ipmitool
jskarvad: truth
jsteffan: truth, ipmitool
jstephen: ipmitool
jvanek: forbidden-apis
kanarip: passenger
kde-sig: plasma-applet-redshift-control, kexi, truth
kevin: ipmitool
kkeithle: ipmitool
kkofler: truth
konradm: truth
kwizart: truth
laine: ipmitool
larsu: golang-github-kolo-xmlrpc
leamas: jsap
lef: bytelist
leigh123linux: ipmitool
libvirt-maint: ipmitool
limb: truth
linkdupont: truth
ljavorsk: truth
lkundrak: erlang-triq, erlang-protobuffs, ipmitool
lua-packagers-sig: fennel
lupinix: pam_mount, plasma-applet-redshift-control
martinlanghoff: erlang-triq, erlang-protobuffs
martinpitt: golang-github-kolo-xmlrpc
marx: ipmitool
mayorga: truth
mbarnes: truth
mcrha: truth
mhayden: truth
michaelc: ipmitool
mikep: truth
mizdebsk: gnu-getopt, truth
mjakubicek: truth
mkulik: truth
mlisik: ipmitool
mlombard: ipmitool
mmuzila: truth
moceap: truth
moezroy: gdata-sharp
mruprich: truth
mschorm: truth
msehnout: golang-github-kolo-xmlrpc
mstevens: truth
music: truth
musuruan: truth
nforro: truth
ngompa: truth
njha: truth
nodejs-sig: uglify-js1
nonamedotc: ipmitool
oalbrigt: ipmitool
obnox: ipmitool
obudai: golang-github-kolo-xmlrpc
ochosi: golang-github-kolo-xmlrpc
odubaj: truth
okeeble: truth
olem: golang-github-kolo-xmlrpc
omular: ipmitool
orion: truth
osier: ipmitool
packagerbot: dummy-test-package-rubino
packit: golang-github-kolo-xmlrpc
panovotn: postgres-decoderbufs
patches: uglify-js1
patrikp: dummy-test-package-rubino
pbrobinson: truth
pcahyna: ipmitool
pemensik: truth
peter: erlang-cf, erlang-riak_core, erlang-erlware_commons, erlang-providers,
erlang-hex_core, erlang-eunit_formatters, erlang-certifi, erlang-cth_readable,
erlang-ssl_verify_fun, erlang-relx, erlang-exometer_core, erlang-triq,
erlang-protobuffs
piotrp: truth
ppisar: truth
praveenp: ipmitool
pwalter: truth
python-sig: python-sockjs-tornado, truth
quintela: ipmitool
rathann: ipmitool
rdieter: truth
rebus: truth
rhughes: truth
rjones: ipmitool
rmattes: truth
robotics-sig: truth
rocha: truth
rsroka: truth
rstoyanov: truth
rstrode: truth
ruben: truth
rust-sig: rust-ruma-events, truth
s4504kr: erlang-triq, erlang-protobuffs
sagitter: truth
salimma: truth
sandeen: truth
scenek: perl-OpenOffice-UNO
scitech_sig: truth
scoady: dummy-test-package-rubino
sergiomb: truth
simo: ipmitool
skoduri: ipmitool
skottler: erlang-triq, erlang-protobuffs
smani: libgaiagraphics, truth
ssp: truth
stefw: seahorse-sharing
steve: pam_mount
swt2c: wxpdfdoc
tagoh: truth
tartare: truth
tdawson: truth
terjeros: ipmitool
than: truth
thofmann: truth
timn: truth
tjikkun: truth
tmraz: PyPAM
tojeline: ipmitool
tomegun: golang-github-kolo-xmlrpc
tomh: truth
torbuntu: truth
tpokorra: gdata-sharp
tstellar: llvm11.0
van: truth
vascom: truth, ipmitool
veillard: ipmitool
virtmaint-sig: ipmitool
vjancik: truth
vokac: truth
volter: truth
wwoods: dummy-test-package-rubino
xavierb: erlang-triq, erlang-protobuffs
xiubli: ipmitool
yanqiyu: truth
zfridric: truth
zmiklank: truth
zvetlik: chck
--
The script creating this output is run and developed by Fedora
Release Engineering. Please report issues at its pagure instance:
https://pagure.io/releng/
The sources of this script can be found at:
https://pagure.io/releng/blob/main/f/scripts/find_unblocked_orphans.py
2 years, 4 months
Seeking maintainers of mathematical packages
by Jerry James
For some years now, I have maintained a collection of mathematical packages
and some of their dependencies in Fedora. I actually stopped using the
packages in question awhile ago, but have been maintaining them out of
inertia. I would like to free up time to get some code checking and formal
methods packages into Fedora. But I need to divest myself of the sagemath
and Macaulay2 stacks in order to have time to do so.
There are 241 packages listed below. I am primary maintainer for 217 of
them. Before anybody panics, I am not talking about orphaning them now.
My plan is to spend the next 12 months searching for people willing to step
into the primary maintainer role for these packages. I will repeat this
message at regular intervals in hope of finding willing participants. One
year from now, if I have not given all of these packages away, then I will
orphan the rest.
This is not a collection of packages that is falling apart. They are high
quality packages. Very little needs to be done right away.
If you have interest in any of the listed packages, please get in touch.
It doesn't matter if you are currently a Fedora packager or not. If not, I
will sponsor you via the comaintainer path, and stick around until you feel
comfortable handling the package yourself. It doesn't matter if you are
interested in only a single package. Contact me anyway.
To help those who may be new to packaging, I have started documenting some
of my workflows. I have a set of web pages rooted here:
https://jamezone.org/pleasure/software/Fedora/packager/
Those pages contain walk-throughs and examples illustrating how I approach
various tasks. I'm willing to donate any of that content to Fedora, so if
you see something you think should be on docs.fedoraproject.org, feel free
to tell me so. Also feel free to suggest additions or changes to what I
have there.
Packages for which I am the primary maintainer
----------------------------------------------
4ti2
GAPDoc
TOPCOM
antic
arb
azove
bigloo
bliss
carat
check
clblast
clisp
cocoalib
cohomCalg
coin-or-Data-Netlib
coin-or-Data-miplib3
coxeter
cryptominisat
csdp
cxsc
e-antic
ecl
eclib
ffcall
fflas-ffpack
flintqs
freetdi-gala
gap
gap-pkg-ace
gap-pkg-aclib
gap-pkg-alnuth
gap-pkg-atlasrep
gap-pkg-autodoc
gap-pkg-automata
gap-pkg-autpgrp
gap-pkg-browse
gap-pkg-caratinterface
gap-pkg-circle
gap-pkg-cohomolo
gap-pkg-congruence
gap-pkg-corelg
gap-pkg-crime
gap-pkg-crisp
gap-pkg-crypting
gap-pkg-cryst
gap-pkg-crystcat
gap-pkg-ctbllib
gap-pkg-curlinterface
gap-pkg-cvec
gap-pkg-datastructures
gap-pkg-design
gap-pkg-digraphs
gap-pkg-edim
gap-pkg-factint
gap-pkg-ferret
gap-pkg-fga
gap-pkg-fining
gap-pkg-float
gap-pkg-format
gap-pkg-forms
gap-pkg-fr
gap-pkg-francy
gap-pkg-gbnp
gap-pkg-genss
gap-pkg-grape
gap-pkg-groupoids
gap-pkg-grpconst
gap-pkg-guava
gap-pkg-hap
gap-pkg-hapcryst
gap-pkg-happrime
gap-pkg-hecke
gap-pkg-images
gap-pkg-io
gap-pkg-irredsol
gap-pkg-json
gap-pkg-jupyterkernel
gap-pkg-jupyterviz
gap-pkg-laguna
gap-pkg-liealgdb
gap-pkg-liepring
gap-pkg-liering
gap-pkg-loops
gap-pkg-lpres
gap-pkg-mapclass
gap-pkg-nautytracesinterface
gap-pkg-nq
gap-pkg-openmath
gap-pkg-orb
gap-pkg-polenta
gap-pkg-polycyclic
gap-pkg-polymaking
gap-pkg-primgrp
gap-pkg-profiling
gap-pkg-qpa
gap-pkg-quagroup
gap-pkg-radiroot
gap-pkg-recog
gap-pkg-repsn
gap-pkg-resclasses
gap-pkg-scscp
gap-pkg-semigroups
gap-pkg-singular
gap-pkg-sla
gap-pkg-smallgrp
gap-pkg-smallsemi
gap-pkg-sonata
gap-pkg-sophus
gap-pkg-spinsym
gap-pkg-tomlib
gap-pkg-toric
gap-pkg-transgrp
gap-pkg-utils
gap-pkg-uuid
gap-pkg-xmod
gap-pkg-zeromqinterface
gcl
gf2x
gfan
gmp-ecm
gnofract4d
gp2c
iml
java-diff-utils
javacc-maven-plugin
jline
jmol
jni-inchi
jol
juniversalchardet
latte-integrale
libbraiding
libdivide
libfplll
libgpuarray
libhomfly
libpoly
libsemigroups
libsvm
linbox
lrslib
m4ri
m4rie
material-icons-fonts
mathic
mathicgb
maven-doxia
maven-doxia-sitetools
maven-reporting-api
maven-reporting-impl
mcqd
memtailor
minisat2
mpfi
mpsolve
naga
nauty
normaliz
ocaml-tplib
pari
pari-elldata
pari-galdata
pari-galpol
pari-nflistdata
pari-nftables
pari-seadata
permlib
pl
polymake
polyml
primecount
pynac
python-BTrees
python-ZEO
python-ZODB
python-ZODB3
python-fastcache
python-gmpy2
python-j1m.sphinxautozconfig
python-jupymake
python-jupyter-kernel-singular
python-jupyter-polymake
python-manuel
python-pari-jupyter
python-persistent
python-pplpy
python-pysingular
python-random2
python-readthedocs-sphinx-ext
python-repoze-sphinx-autointerface
python-sphinx-copy-button
python-sphinx-math-dollar
python-sphinx-testing
python-sphinx_rtd_theme
python-sphinxcontrib-zopeext
python-tdlib
python-theano
python-zodbpickle
python-zope-testrunner
qd
qepcad-B
rubiks
saclib
scala
scalacheck
sharedmeataxe
sirocco
stp
subunit
symmetrica
sympol
sympy
tlx
tth
vinci
xgap
zn_poly
Packages for which I am comaintainer. This serves as notice to the primary
maintainers that I am stepping away from actively working on these packages.
The primary maintainer is listed after the package name.
----------------------------------------------------------------------------
cddlib: pcpa
flint: pcpa
givaro: mycae
libedit: branto
ntl: rdieter
tbb: trodgers; see https://copr.fedorainfracloud.org/coprs/jjames/TBB2021/
for my take on what the next version of tbb should look like
Packages for which I am neither primary maintainer nor comaintainer, but
I've
been maintaining them anyway. As above, this serves as notice to the
primary
maintainer that I am stepping away from active maintenance of these
packages.
-----------------------------------------------------------------------------
L-function: pcpa
Macaulay2: rdieter
Singular: pcpa
brial: pcpa
cliquer: pcpa
fes: pcpa
frobby: rdieter
lrcalc: pcpa
palp: pcpa
planarity: pcpa
ppl: bagnara
python-cypari2: pcpa
python-cysignals: pcpa
python-fpylll: pcpa
rw: pcpa
sagemath: pcpa
surf-geometry: pcpa
sympow: pcpa
As far as I know, neither bagnara nor pcpa is actively involved in Fedora
anymore, so once I step away from their packages, the packages will
effectively be unmaintained.
If you want to see how these packages are related to each other, here is a
graph showing all of the packages I am involved with in Fedora:
https://jamezone.org/pleasure/software/Fedora/fedora.pdf
The black ovals are packages for which I am primary maintainer, blue are
packages for which I am comaintainer, green are packages for which I am
neither but I maintain the package anyway, and red are packages that I
normally don't touch except for the occasional rebuild due to an soname
bump or similar. The ones I am talking about stepping away from are
primarily on the right half of the diagram.
Regards,
--
Jerry James
http://www.jamezone.org/
2 years, 4 months
F36 Change: Users are administrators by default in the installer GUI.
(Self-Contained Change proposal)
by Ben Cotton
https://fedoraproject.org/wiki/Changes/Users_are_admins_by_default_in_Ana...
= Users are administrators by default in the installer GUI =
== Summary ==
The Anaconda installer GUI will have the administrative rights
checkbox on the User screen ticked by default.
== Owner ==
* Name: [[User:Vladimirslavik| Vladimir Slavik]]
* Email: vslavik(a)redhat.com
== Detailed Description ==
Currently, the Anaconda installer GUI presents an unticked checkbox
"Make this user administrator" on the user setup screen by default.
This means users have to discover the control, understand its meaning,
and consciously decide to change the value from the default one.
However, computer usage by individuals is heavily skewed towards
single user machines where the (sole) user has administrative powers
over the machine by invoking `sudo`. This has been always reflected by
the design of the screen, which allows only a single user to be
created. The GNOME first time setup also creates a single user - and
makes them an administrator without asking.
The proposed change merely changes the default GUI state to be in line
with this expectation.
Further, this change of defaults complements the default for root
account. The redesign of root setup screen in Fedora 35 makes it clear
that root should be left locked. This change makes it clear that the
user should be the administrator. Together, these defaults will let
the user satisfy all user account options by filling in nothing more
than the user name and the password (twice to confirm).
== Benefit to Fedora ==
One less footgun in the installer for entry-level users. They will be
able to rely on defaults and achieve the expected outcome.
== Scope ==
* Proposal owners: Isolated change - adjust Anaconda code to do so as
suggested here. Low effort.
* Other developers: No changes needed.
* Release engineering: Different defaults ''could'' impact installer
testing. [https://pagure.io/releng/issues #Releng issue number]
* Policies and guidelines: N/A
* Trademark approval: N/A
* Alignment with Objectives: None.
== Upgrade/compatibility impact ==
No impact. Installation implies teardown of previous system, including users.
== How To Test ==
Start Anaconda installer for the Server variant, open the user setup
screen, "Make this user administrator" is checked = pass.
Should be variant / spin / hardware agnostic, with the caveat that the
presence of user screen is configurable, so in many cases the screen
is not reachable.
Kickstart installs are not affected.
== User Experience ==
Users installing Fedora will no longer be forced to spend time
deciding how to arrange the administrative powers (they, root, both?)
and configuring that. They will be able to fill in user name and
password and the default configuration will be valid. They can give in
to the power of defaults.
For users that want to configure the system differently from the
majority use case, the controls to do so are still as they were, only
the defaults are different.
For those installing Fedora manually often, muscle memory for user
screen will break, as the checkbox will no longer have to be toggled.
== Dependencies ==
None.
== Contingency Plan ==
Any Fedora QA and OpenQA changes reflecting this will have to be
reverted. Other than that, there is no technical or process
requirement for this change, so no impact. The change does not happen
and previous defaults remain.
* Contingency mechanism: N/A
* Contingency deadline: N/A
* Blocks release? No
== Documentation ==
* https://github.com/rhinstaller/anaconda/pull/3719
== Release Notes ==
In the User spoke, the "Make this user administrator" checkbox is now
checked by default. This improves installation experience for users
who do not know and need to rely on the default values to guide them.
--
Ben Cotton
He / Him / His
Fedora Program Manager
Red Hat
TZ=America/Indiana/Indianapolis
2 years, 4 months
jpegxl soname bump
by Scott Talbert
Hi @eclipseo,
Looks like jpegxl soname was bumped, breaking a bunch of stuff:
2021-11-21 20:20:51
Package resolution failed
Problem: package gd-2.3.3-3.fc36.x86_64 requires
libavif.so.12()(64bit), but none of the providers can be installed
- package graphviz-2.49.3-2.fc36.x86_64 requires libgd.so.3()(64bit),
but none of the providers can be installed
- package libavif-0.9.2-2.fc35.x86_64 requires libaom.so.3()(64bit),
but none of the providers can be installed
- conflicting requests
- nothing provides libjxl.so.0()(64bit) needed by
libaom-3.1.2-1.fc35.x86_64
- nothing provides libjxl.so.0(JXL_0)(64bit) needed by
libaom-3.1.2-1.fc35.x86_64
Problem: package graphviz-2.49.3-2.fc36.x86_64 requires
libgd.so.3()(64bit), but none of the providers can be installed
- package gd-2.3.3-3.fc36.x86_64 requires libavif.so.12()(64bit), but
none of the providers can be installed
- package doxygen-2:1.9.1-12.fc36.x86_64 requires graphviz, but none
of the providers can be installed
- package libavif-0.9.2-2.fc35.x86_64 requires libaom.so.3()(64bit),
but none of the providers can be installed
- conflicting requests
- nothing provides libjxl.so.0()(64bit) needed by
libaom-3.1.2-1.fc35.x86_64
- nothing provides libjxl.so.0(JXL_0)(64bit) needed by
libaom-3.1.2-1.fc35.x86_64
Thanks,
Scott
2 years, 4 months
F36 Change: ostree native containers / CoreOS layering (System-Wide
Change proposal)
by Ben Cotton
https://fedoraproject.org/wiki/Changes/OstreeNativeContainer
== Summary ==
Enhance the (rpm-)ostree stack to natively support OCI/Docker
containers as a transport and delivery mechanism for operating system
content.
This is the basis of
https://github.com/coreos/enhancements/blob/main/os/coreos-layering.md
== Owner ==
* Name: [[User:walters| Colin Walters]]
* Email: walters(a)verbum.org
== Detailed Description ==
Having the Fedora ecosystem (from users to release engineering)
maintain tooling that operates on all three of "container images",
RPMs, and OSTree updates is a maintenance burden.
This proposes that:
* The ostree stack is enhanced to support
encapsulating/unencapsulating ostree commits as OCI/Docker images
(DONE)
* rpm-ostree is updated to consume this, while still supporting all
its current features (e.g. per-machine package layering) (DONE)
* We ship e.g. `quay.io/fedora/coreos:stable` and
`quay.io/fedora/silverblue:36` etc.
* We support '''deriving''' new user custom images from these images
* We enhance this tooling to
[https://github.com/ostreedev/ostree-rs-ext/issues/69 support
chunking]
For more details, please see:
* [https://github.com/coreos/enhancements/blob/main/os/coreos-layering.md
CoreOS layering enhancement]
* [https://coreos.github.io/rpm-ostree/container/ rpm-ostree container docs]
* [https://github.com/ostreedev/ostree-rs-ext/ ostree-rs-ext project]
Note that significant effort has been invested in ensuring
compatibility between what exists in ostree today and OCI/Docker
container image "encapsulation". For example, we will continue to
reuse the GPG signature infrastructure on OSTree commits that exists
today - the ostree tooling knows how to verify the signature *inside*
the container image. In the future, we will also likely invest in
container-native signatures.
== Benefit to Fedora ==
* Stronger focus on Docker/OCI as transport for operating system and
applications
* New ability to easily create derived operating system images "server side"
* More benefit from e.g. work on container deltas
== Scope ==
* Proposal owners: Lots of detailed items listed in the rpm-ostree/CoreOS docs.
* Other developers: The "other" here is vague, but certainly
developing this so far has needed cooperation with e.g. the
containers/ organization etc.
* Release engineering: https://pagure.io/releng/issue/10399
* Policies and guidelines: N/A (not needed for this Change)
* Trademark approval: N/A (not needed for this Change)
* Alignment with Objectives: No
== Upgrade/compatibility impact ==
Each individual edition/spin would need to choose when and how to make
a cutover to containers as a transport. The Fedora OSTree repository
would continue to be maintained until that is finished.
== How To Test ==
See the examples under https://coreos.github.io/rpm-ostree/container/
== User Experience ==
Users of rpm-ostree systems will primarily interact with container images.
== Dependencies ==
Release engineering.
== Contingency Plan ==
* Contingency mechanism: Continue to ship updates via baseline OSTree
<!-- REQUIRED FOR SYSTEM WIDE CHANGES -->
* Blocks release? No
== Documentation ==
Already linked above to avoid duplicating it here.
--
Ben Cotton
He / Him / His
Fedora Program Manager
Red Hat
TZ=America/Indiana/Indianapolis
2 years, 4 months
Fedora 35 Cloud image && virt-sysprep
by Pavel Raiskup
Hello,
anyone had a successful experience with Fedora 35 Cloud images, and
guestfish/virt-sysprep?
Seems like we switched from ext4 or xfs to 'btrfs', and guestfish
doesn't work with the images, am I right? At least I had problems
on EL8 hypervisors so far.
Pavel
2 years, 4 months