From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp2 ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms11 with LMTPS id UNKJCH09L1+6UAAA0tVLHw (envelope-from ) for ; Sun, 09 Aug 2020 00:04:13 +0000 Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp2 with LMTPS id 4M9fBH09L19vTgAAB5/wlQ (envelope-from ) for ; Sun, 09 Aug 2020 00:04:13 +0000 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 9652E94060D for ; Sun, 9 Aug 2020 00:04:12 +0000 (UTC) Received: from localhost ([::1]:44372 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1k4Yot-00083V-DR for larch@yhetil.org; Sat, 08 Aug 2020 20:04:11 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:35586) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1k4Yoh-00083B-Cv for guix-devel@gnu.org; Sat, 08 Aug 2020 20:03:59 -0400 Received: from world.peace.net ([64.112.178.59]:48576) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1k4Yof-0005v2-D6 for guix-devel@gnu.org; Sat, 08 Aug 2020 20:03:59 -0400 Received: from mhw by world.peace.net with esmtpsa (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1k4YoS-0005Js-Ds; Sat, 08 Aug 2020 20:03:44 -0400 From: Mark H Weaver To: Vagrant Cascadian Subject: Re: Linux-libre 5.8 and beyond In-Reply-To: <87pn8097po.fsf@ponder> Date: Sat, 08 Aug 2020 20:02:48 -0400 Message-ID: <87o8nk4rek.fsf@netris.org> MIME-Version: 1.0 Content-Type: text/plain Received-SPF: pass client-ip=64.112.178.59; envelope-from=mhw@netris.org; helo=world.peace.net X-detected-operating-system: by eggs.gnu.org: First seen = 2020/08/08 20:03:45 X-ACL-Warn: Detected OS = Linux 2.2.x-3.x [generic] [fuzzy] X-Spam_score_int: -18 X-Spam_score: -1.9 X-Spam_bar: - X-Spam_report: (-1.9 / 5.0 requ) BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-BeenThere: guix-devel@gnu.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: guix-devel@gnu.org, Marius Bakke Errors-To: guix-devel-bounces+larch=yhetil.org@gnu.org Sender: "Guix-devel" X-Scanner: scn0 Authentication-Results: aspmx1.migadu.com; dkim=none; dmarc=none; spf=pass (aspmx1.migadu.com: domain of guix-devel-bounces@gnu.org designates 209.51.188.17 as permitted sender) smtp.mailfrom=guix-devel-bounces@gnu.org X-Spam-Score: -1.01 X-TUID: zsY5dSvh08e9 Hi, Vagrant Cascadian wrote: > Thanks for updating linux-libre to 5.7! Yes, many thanks to Leo Famulari for taking care of that (large) job. > I saw the 5.8 was out, and gave a quick shot at updating it, but it hung > python indefinitely during the deblobbing process. I also tried > switching to python 3 instead of python 2, but it had the same > issue. Apparently this is a known issue: > > https://lists.gnu.org/archive/html/info-gnu/2020-08/msg00001.html Thanks for bringing this to our attention. Until the deblobbing issue is resolved, in the definition of 'linux-libre-5.8-pristine-source', we could simply replace the call to 'make-linux-libre-source' with an ordinary 'origin' form that fetches the deblobbed source tarball from the linux-libre project, using (linux-libre-urls linux-libre-5.8-version) as the URI. The bigger issue is that the default configurations will need to be updated again before 5.7.x reaches end-of-life, which will be quite soon. Otherwise we'll need to revert back to 5.4.x in order to get upstream security updates. > So I asked a bit in #linux-libre on freenode and they wondered why we > don't use the git repository instead of running the deblob scripts again > in guix. > > One of the issues might be that linux-libre may occasionally remove > releases that accidentally contained non-free code breaking guix's > ability to build old versions. Last I checked, the linux-libre project periodically deletes most of its older tarballs, even if there are no accidents. This problem came to my attention while trying to help someone determine which version of linux-libre introduced a bug on their system. I was about to suggest bisecting point versions before realizing that the relevant linux-libre tarballs had all been deleted. Moreover, if we had succeeded in finding the first buggy release, the next step would have been to do a 'git bisect' to determine the precise commit that introduced the bug. Other reasons to run the deblob scripts ourselves include: * It may be useful for users with newer hardware devices, which are not yet well supported by the latest stable release, to use an arbitrary commit from either Linus' mainline git repository or some other subsystem tree. * It allows us to update to a new point version (which usually includes security fixes) more quickly, before the linux-libre project reacts. * It allows us to avoid trusting the integrity of the systems used by the linux-libre project to produce their deblobbed tarballs. Regards, Mark