Overview

Request 1196354 superseded

- Install tpm2 tools by default for FDE
- Remove policycoreutils-python-utils again from selinux, no
python in default install
- Move systemd-zram-service to onlyDVD, as this is incompatible
with main MicroOS workload

- Remove the rest of the previously added packages from desktop
common, since it's basically abandoned

- Remove previously added packages from desktop common
- Add TPM support and mokuil to onlyDVD pattern
- Add zRam support to base
- Add policycoreutils-python-utils to selinux

- Sync some packages which are present in Aeon

Fabian Vogt's avatar
Fabian Vogt (favogt) -
target maintainer

IMO the TPM packages should not be part of the pattern but some package like sdbootutil which actually makes use of it

Thorsten Kukuk's avatar
Thorsten Kukuk (kukuk) -
author source maintainer target maintainer

There are several use cases for TPM (ask our SEs what they do with it with SLE Micro) beside FDE. And sdbootutil also works without TPM, would be wrong, too. Since we want to make FDE+TPM the default and enterprise customers ask for it for other use cases, adding them to the patterns is the right thing to do.

Fabian Vogt's avatar
Fabian Vogt (favogt) -
target maintainer

There are several use cases for TPM (ask our SEs what they do with it with SLE Micro) beside FDE.

Sure, but that should be pulled in by whatever makes use of the TPM, not the base itself.

And sdbootutil also works without TPM, would be wrong, too.

Arguably "Recommends" is correct here but that's disabled on MicroOS so we already have to make dependencies harder than they have to be to work around that.

Since we want to make FDE+TPM the default and enterprise customers ask for it for other use cases, adding them to the patterns is the right thing to do.

I'm not arguing against adding it, I'm just arguing that the pattern is the wrong place for these very specific packages.

Thorsten Kukuk's avatar
Thorsten Kukuk (kukuk) -
author source maintainer target maintainer

Sure, but that should be pulled in by whatever makes use of the TPM, not the base itself.

You can say the same about less, openssh, ... The patterns are to install useful packages by default, and for our customers and our plans the TPM tools are useful.

Fabian Vogt's avatar
Fabian Vogt (favogt) -
target maintainer

Unlike less, openssh, ..., the TPM tools are not really useful on their own, there needs to be some application around it.

Fabian Vogt's avatar
Fabian Vogt (favogt) -
target maintainer

What are exfatprogs needed for?

Thorsten Kukuk's avatar
Thorsten Kukuk (kukuk) -
author source maintainer target maintainer

You should have asked that the person who added that in the old SR. But since exFAT is today commonly used for external devices to exchange data, it makes absolute sense to have the tools for it, too. It makes a lot of more sense than dosfstools which we have today.

Fabian Vogt's avatar
Fabian Vogt (favogt) -
target maintainer

We need dosfstools for the ESP

Request History
Thorsten Kukuk's avatar

kukuk created request

- Install tpm2 tools by default for FDE
- Remove policycoreutils-python-utils again from selinux, no
python in default install
- Move systemd-zram-service to onlyDVD, as this is incompatible
with main MicroOS workload

- Remove the rest of the previously added packages from desktop
common, since it's basically abandoned

- Remove previously added packages from desktop common
- Add TPM support and mokuil to onlyDVD pattern
- Add zRam support to base
- Add policycoreutils-python-utils to selinux

- Sync some packages which are present in Aeon

Thorsten Kukuk's avatar

kukuk superseded request

superseded by 1196981

openSUSE Build Service is sponsored by
Places