问答博客资讯标签用户活动
logo极客观点logo项目管理logoHarmonyOS
开发者社区
javascript
前端
python
node.js
react
vue.js
php
laravel
go
人工智能
mysql
linux
ios
java
android
css
typescript
spring
程序员
logoONES 研发管理logo思否企业问答

2024 基于图像的 Linux 峰会的报告

  • Marketing Weakness: Admit marketing isn't strong. Focus on writing articles for Linux world. Encourage subscription to continue.
  • Image-Based Linux Summit: Annual event. Third edition in Berlin on Sept 24. Gathers stakeholders for discussions on image-based Linux.
  • Progress since Previous Summit: UAPI Group added more specifications. Systemd implemented many features like systemd-pcrlock. Mkosi had major updates.
  • Systemd: Implemented new features in major releases. Systemd-pcrlock aims to solve measured-boot issues. Other changes and an "State of the Project" talk.
  • Distributions: Flatcar adopted System Extensions. NixOS integrated systemd-repart. Other distributions made progress in various areas.
  • Linux Plumbers Conference: Held in Vienna. UAPI group members participated and organized a microconference.
  • Kernel: Integrity Policy Enforcement Linux Security Module (IPE LSM) accepted upstream.
  • Dual-boot and discoverable-partitions specification: Discussed compatibility with dual booting and partition ownership. Proposals to enhance partition identification.
  • Stateless OpenPGP verification: Need for a generic pattern. Discussed pitfalls of GnuPG. Proposal to explore additional technologies.
  • Kernel-enforced restrictions for unsigned filesystems: Need for security features. Proposals for BPF LSM and enhancing IPE LSM.
  • Combining FIDO2 and TPM2 for authentication: Discussed potential of combining technologies. Considered different schemes.
  • Challenges of immutable systems: How to deliver immutable systems without increasing complexity. Discussed various solutions.
  • Systemd on musl: Adaptation for postmarketOS. Challenges and plans for porting.
  • The /etc dilemma: How to handle /etc on immutable systems. Discussed different solutions and a working precedent.
  • Progress on hermetic /usr: Efforts to push forward the concept. Challenges and solutions.
  • Unprivileged image mounting and user ranges assignment: Systemd services for unprivileged mounting. Challenges and proposed solutions.
  • ESP resizing: UKIs need more ESP space. Extended boot loader partition. Idea to dynamically extend ESP but no implementation yet.
  • Factory reset: Implemented in user space. Need a strategy for ESP. Agreed to create a vendor directory.
  • Customizing the boot process via credentials: Switch from kernel command line to systemd credentials. Issues with tooling and user-space adoption.
  • Conclusions: Productive day. Continue work on UAPI Group and ancillary projects. Prepare for FOSDEM 2025.
A report from the 2024 Image-Based Linux Summit
https://lwn.net/SubscriberLink/994704/0356b274aa959853/
阅读 21
0 条评论
得票最新