Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.
Sign upConsider adding anti-evil-maid package to R3.2 iso #2176
Comments
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
marmarek
Jul 15, 2016
Member
This is somehow related to #803. Maybe even a duplicate?
We're quite late in R3.2 release cycle, but if it indeed will be inactive by default, the regression risk is low and I'm for it.
|
This is somehow related to #803. Maybe even a duplicate? |
marmarek
added this to the Release 3.2 milestone
Jul 15, 2016
marmarek
added
C: other
P: major
task
labels
Jul 15, 2016
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
rustybird
Jul 15, 2016
We're quite late in R3.2 release cycle, but if it indeed will be inactive by default, the regression risk is low and I'm for it.
I don't want to break the iso build (which is hard to test for me right now, my notebook is throttled down all the way due to overheating). Will these two commands be a problem in such a context?
rustybird
commented
Jul 15, 2016
I don't want to break the iso build (which is hard to test for me right now, my notebook is throttled down all the way due to overheating). Will these two commands be a problem in such a context? |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
rustybird
Jul 15, 2016
Sorry, let me rephrase that: The iso build shouldn't break, but maybe the %post scriptlet would not work inside of Anaconda?
rustybird
commented
Jul 15, 2016
|
Sorry, let me rephrase that: The iso build shouldn't break, but maybe the %post scriptlet would not work inside of Anaconda? |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
marmarek
Jul 15, 2016
Member
At the time package is installed there may be no dracut or grub2-mkconfig yet. For this, better add:
Requires(post): dracut
Requires(post): grub2-tools
initrd + grub configuration will be regenerated anyway at the end of installation.
But I see other problem: UEFI installation. Currently tboot doesn't have native UEFI support, so it can't be directly plugged in. In such installation we don't even install grub, since xen.efi is directly plugged into UEFI BIOS.
|
At the time package is installed there may be no dracut or grub2-mkconfig yet. For this, better add: initrd + grub configuration will be regenerated anyway at the end of installation. But I see other problem: UEFI installation. Currently tboot doesn't have native UEFI support, so it can't be directly plugged in. In such installation we don't even install grub, since xen.efi is directly plugged into UEFI BIOS. |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
rustybird
commented
Jul 15, 2016
|
I've updated the dependencies. Not sure what to do about UEFI |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
marmarek
Jul 15, 2016
Member
It may be an option to add the packages, but do not install them by default - available in software selection dialog.
But since the user still needs to download SINIT file, I'm not sure if all this worth an effort.
|
It may be an option to add the packages, but do not install them by default - available in software selection dialog. |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
rustybird
Jul 15, 2016
Yeah, if the user would have to choose manually anyway then it doesn't seem worth the trouble.
Is it possible to tell Anaconda to only add a package when not doing an UEFI installation?
rustybird
commented
Jul 15, 2016
|
Yeah, if the user would have to choose manually anyway then it doesn't seem worth the trouble. Is it possible to tell Anaconda to only add a package when not doing an UEFI installation? |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
marmarek
Jul 15, 2016
Member
Is it possible to tell Anaconda to only add a package when not doing an UEFI installation?
Theoretically yes, but it's rather hacky (there is a list of packages required for bootloader, hardcoded into anaconda itself).
Theoretically yes, but it's rather hacky (there is a list of packages required for bootloader, hardcoded into anaconda itself). |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
rustybird
commented
Jul 15, 2016
|
Oh well. Maybe another time |
rustybird commentedJul 15, 2016
If QubesOS/qubes-antievilmaid#14 is merged, AEM would be totally inactive (and hidden in the GRUB menu anyway) for users who haven't run anti-evil-maid-install.