Fedora Linux 40 Accepted System-Wide Changes
Anaconda WebUI for Fedora Workstation by default
The new PatternFly-based UI has been developed by the Anaconda team for some time now and we would like to make it available for users of Fedora to enhance and modernize installation experience. As the first step in this user adoption process, we are targeting Fedora Workstation only.
Owners
- Owner: Fedora Workstation SIG
Tracking
- Last updated: 2023-09-28
- Tracking bug: #2231339
- Release Notes tracker: #1033
- Contingency deadline: Beta freeze
- Status: 100% code completed
Build Fedora Workstation live ISO with Image Builder
Image Builder is a set of modern tools for building operating system images. Its goal is to make the builds reliable and reproducible. Moreover, it's designed to give the end users a simple workflow to build their own custom images. The aim of this change is to create an additional, non-blocking Fedora Workstation live ISO using Image Builder.
Owners
- Owner: Jiří Konečný
Tracking
- Last updated: 2023-09-28
- Tracking bug: #2233273
- Release Notes tracker: #1034
- Contingency deadline: Final freeze (the change is trivially revertable)
- Status: Change accepted
Deprecating libuser and removing passwd package from Fedora
Libuser is not actively developed. Most of the depending component have build-time option to work without libuser.
Owners
- Owner: Tomas Halman
Tracking
- Last updated: 2023-09-28
- Tracking bug: #2233275
- Release Notes tracker: N/A
- Contingency deadline: final development freeze
- Status: Change accepted
Build JDKs once, repack everywhere
This is the last step in https://fedoraproject.org/wiki/MoveFedoraJDKsToBecomePortableJDKs effort. JDKs in fedora are already static, and we repack portable tarballs into RPMs. Currently, the portable tarball is built for each Fedora and EPEL version. Goal here is to build each JDK (8,11,17,21,latest (20)) only once, in oldest live Fedora repack in all live Fedoras. If jdk is buitl in epel, it will be built in oldest possible epel and repacked in newer live epels.
Owners
- Owner: Jiri Vanek
Tracking
- Last updated: 2023-10-03
- Tracking bug: #2233283
- Release Notes tracker: #1012
- Contingency deadline: N/A
- Status: Change accepted
Remove webkit2gtk-4.0 API Version
The webkit2gtk-4.0 API version will no longer be built. Packages that depend on it will fail to build from source and eventually be retired.
Owners
- Owner: Michael Catanzaro
Tracking
- Last updated: 2023-05-04
- Tracking bug: #2193249
- Release Notes tracker: #983
- Contingency deadline: F39 beta freeze
- Status: Change accepted
Porting Fedora to Modern C
Back in 1999, a new revision of the C standard removed several backwards compatibility features. However, GCC still accepts these obsolete constructs by default. Support for these constructs is confusing to programmers and potentially affect GCC's ability to implement features from future C standards. It is expected that a future GCC version (likely GCC 14) will disable support for these legacy language constructs by default. The goal of this change is to prepare Fedora for this transition.
Owners
- Owner: Florian Weimer
Tracking
- Last updated: 2023-09-28
- Tracking bug: #2142177
- Release Notes tracker: N/A
- Contingency deadline: not provided
- Status: Change accepted
Modernize Live Media
Modernize the live media by switching to the "new" live environment setup scripts provided by livesys-scripts and leverage new functionality in dracut to enable support for automatically enabling persistent overlays when flashed to USB sticks.
Owners
- Owner: Neal Gompa, Matt Coleman
Tracking
- Last updated: 2023-08-23
- Tracking bug: #2139918
- Release Notes tracker: #898
- Contingency deadline: Final Freeze
- Status: Change accepted
Ostree Native Container (Phase 2, stable)
Continue the work done in https://fedoraproject.org/wiki/Changes/OstreeNativeContainer but in an officially stable format, and expanded to cover more OSTree-based editions. This goes "all in" on being container-native and significantly changes the technology and user emphasis.
Owners
- Owner: Colin Walters, Joseph Marrero, Brent Baude
Tracking
- Last updated: 2023-08-22
- Tracking bug: #2151321
- Release Notes tracker: #933
- Contingency deadline: Dunno
- Status: Change accepted
KTLS implementation for GnuTLS
Acceleration of GnuTLS with software Kernel TLS (KTLS)
Owners
- Owner: František Krenželok, Daiki Ueno
Tracking
- Last updated: 2023-08-23
- Tracking bug: #2130000
- Release Notes tracker: #881
- Contingency deadline: 2023-02-21
- Status: Change accepted
DNF/RPM Copy on Write enablement for all variants
RPM Copy on Write provides a better experience for Fedora Users as it reduces the amount of I/O and offsets CPU cost of package decompression. RPM Copy on Write uses reflinking capabilities in btrfs, which is the default filesystem starting from Fedora 33 for most variants. Note that this behavior is not being turned on by default for this Change.
Owners
- Owner: Matthew Almond, Davide Cavalca, Manu Bretelle
Tracking
- Last updated: 2023-08-22
- Tracking bug: #1915976
- Release Notes tracker: #634
- Contingency deadline: Final freeze
- Status: Change accepted
Fedora Linux 40 Accepted Self-Contained Changes
PHP 8.3
Update the PHP stack in Fedora to the latest version 8.3.x
- Owner: Remi Collet and PHP SIG
- Last updated: 2023-10-03
- Tracking bug: #2241987
- Status: Change accepted
Restructure Kubernetes Packages
New or revised (sub)package names are proposed for Kubernetes packages in Fedora. The new names will better align Kubernetes with current usage as documented upstream and improve alignment of package content with current Fedora practices and standards.
- Owner: Brad Smith
- Last updated: 2023-09-28
- Tracking bug: #2241263
- Status: Change accepted
Revitalize Forge Macros
Up until now, the forge macros have been part of redhat-rpm-config. We will split them out into a new forge-srpm-macros package. We will add more test coverage and add a new %forgeversion macro to allow adding snapshot info to Version instead of Release.
- Owner: Maxwell G
- Last updated: 2023-10-03
- Tracking bug: #2238452
- Status: 100% code completed
Enable auto-updates by default in Fedora Kinoite
On Fedora Kinoite, Plasma Discover supports automatically updating the system in a safe fashion via rpm-ostree staged updates. We want users to benefit from bug fixes and updates in general by default thus we want to enable auto-updates by default. Users will still have the option of disabling that or tuning the frequency at which updates happen.
- Owner: Timothée Ravier, Neal Gompa
- Last updated: 2023-10-02
- Tracking bug: #2233192
- Status: Change accepted
Register EC2 Cloud Images with uefi-preferred AMI flag
A new feature of EC2 is to be able to register AMIs with a boot mode of uefi-preferred rather than picking one of bios or uefi. In EC2, aarch64 has always been UEFI, while x86-64 started out as BIOS only and some instance types have recently begun to support booting in UEFI mode. Previously, an AMI had to pick if it was UEFI or BIOS. With uefi-preferred it allows an AMI to launch with whatever firmware stack is available for the instance type, preferring UEFI when UEFI is an option.
- Owner: Stewart Smith, David Duncan
- Last updated: 2023-10-03
- Tracking bug: #2185883
- Status: Change accepted
Register EC2 Cloud Images with IMDSv2-only AMI flag
In November 2019, AWS launched IMDSv2 (Instance Meta-Data Store version 2 - see https://aws.amazon.com/blogs/security/defense-in-depth-open-firewalls-reverse-proxies-ssrf-vulnerabilities-ec2-instance-metadata-service/ ) which provides "belt and suspenders" protections for four types of vulnerabilities that could be used to try to access the Instance Meta-Data Store available to EC2 instances. In that announcement, AWS recommended adopting IMDSv2 and restricting access to IMDSv2 only for added security. This can be done at instance launch time, or (more recently in October 2022) by providing a flag when registering an AMI to indicate that the AMI should by default launch with IMDSv1 disabled, and thus require IMDSv2.
- Owner: Stewart Smith David Duncan
- Last updated: 2023-10-03
- Tracking bug: #2185249
- Status: Change accepted
mkosi-initrd
mkosi-initrd is an alternative builder for initrds. It will be packaged in Fedora, so that users can use it to build initrds locally. A kernel-install plugin will be provided to build the initrd when a kernel package is installed. As a stretch goal, initrds will be build in koji and delivered via rpm packages. As a further stretch goal, pre-built initrds will be used in Unified Kernel Images that can be delivered via rpm packages.
- Owner: Zbigniew Jędrzejewski-Szmek, Lukáš Nykrýn , Daan De Meyer
- Last updated: 2023-08-23
- Tracking bug: #2203221
- Status: Change accepted
Enable bootupd for Fedora Silverblue & Kinoite
By design, ostree does not manage bootloader updates as they can not (yet) happen in a safe fashion. To solve this issue, bootupd (https://github.com/coreos/bootupd) was created. bootupd is a small socket activated program that takes care of updating the bootloader. It currently only supports EFI booted systems and rpm-ostree based systems. The updates are triggered by an administrator and are not (yet) automated for safety reasons. This change is about enabling bootupd integration in Fedora Silverblue and Fedora Kinoite to make bootloader updates easier. bootupd is already used in Fedora CoreOS.
- Owner: Timothée Ravier, Tomáš Popela, Colin Walters
- Last updated: 2023-09-08
- Tracking bug: #2150982
- Status: In progress
Retire python3.7
The python3.7 package will be retired without replacement from Fedora Linux 40. Python 3.7 will be End of Life in June 2023 and it will be kept around only to test software targeting Debian 10 “Buster” LTS. The removal is more or less aligned with Debian 10 TLS EOL (June 2024) -- Fedora 39 (the last one to include Python 3.7) will likely EOL on 2024-11-12.
- Owner: Miro Hrončok
- Last updated: 2022-07-08
- Tracking bug: #2105404
- Status: 100% code completed