From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from atuin.qyliss.net (localhost [IPv6:::1]) by atuin.qyliss.net (Postfix) with ESMTP id 5DBA31F0B2; Mon, 14 Jul 2025 11:26:05 +0000 (UTC) Received: by atuin.qyliss.net (Postfix, from userid 993) id DD34B1F10D; Mon, 14 Jul 2025 11:26:00 +0000 (UTC) X-Spam-Checker-Version: SpamAssassin 4.0.1 (2024-03-26) on atuin.qyliss.net X-Spam-Level: X-Spam-Status: No, score=-0.8 required=3.0 tests=DKIM_SIGNED,DKIM_VALID, DKIM_VALID_AU,DMARC_MISSING,RCVD_IN_DNSWL_LOW,SPF_HELO_PASS autolearn=unavailable autolearn_force=no version=4.0.1 Received: from fout-b4-smtp.messagingengine.com (fout-b4-smtp.messagingengine.com [202.12.124.147]) by atuin.qyliss.net (Postfix) with ESMTPS id BF3611F10B for ; Mon, 14 Jul 2025 11:25:58 +0000 (UTC) Received: from phl-compute-03.internal (phl-compute-03.phl.internal [10.202.2.43]) by mailfout.stl.internal (Postfix) with ESMTP id 0ED5B1D00220; Mon, 14 Jul 2025 07:25:56 -0400 (EDT) Received: from phl-mailfrontend-02 ([10.202.2.163]) by phl-compute-03.internal (MEProxy); Mon, 14 Jul 2025 07:25:56 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=alyssa.is; h=cc :cc:content-type:content-type:date:date:from:from:in-reply-to :message-id:mime-version:reply-to:subject:subject:to:to; s=fm1; t=1752492355; x=1752578755; bh=oEJK+eqz4ml3MJUeoqLciECTs7sd2b0+ 6JI2kRDW3gI=; b=Y8LAALEcrCMLoeF7OnU2AGHNJVYnrwcCkmr8Ghp6liT3gscS jESZTStcL7vfCTJMNElSBNDoe46e3hJQ1KVgx251ahPMhMf9nV4fBTZooDm1acYc Bu4E9zCaOvNS2ooa7gORP2tUTkZEVqVhXaz0F4TPJZHiP1eJH7VRw24+V0qnPY98 BT5AT+d9zUD5aUy+Nsyg10Hd+tbOy3J8NjZrkxn8F3q967GI0rU+l+dU418IR5xE VdI2xqHyHBjJdThHHNiQx5ItghvrGTHY4RqtIUc5fyweH/9FA0Aew+11BVdjP+eI JdUhTQRAhu+v6KoQaPoyWsADzP00Vzk/gThDiA== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-type:content-type:date:date :feedback-id:feedback-id:from:from:in-reply-to:message-id :mime-version:reply-to:subject:subject:to:to:x-me-proxy :x-me-sender:x-me-sender:x-sasl-enc; s=fm2; t=1752492355; x= 1752578755; bh=oEJK+eqz4ml3MJUeoqLciECTs7sd2b0+6JI2kRDW3gI=; b=i GoGZfyAQahJ8OA9b3HOqLTyhItqviRRnIbnzathY2DzmKkAWkAOODLkI1nFVFQTO 46zJgS4Tod7oNveANVVLZ0Hwu4/fGsUjINKVX1zHWSjTNJV24fNV1OytVIAIy847 xZ7I1KIsJp/96duv+hY5ygs3R4zPYxu/zP1uLaQjbmtOuK6OgWYoZwAo6tPj8hxS 7SAv0cIBW1RNtRnzFhx6JTUg7WI1eH9e9pLXJokzhkUnl5jJaIbtgPUbJ13UmNFS 46esPTIxUzdYTvq6CQYXSx9mc2C+C9ZGbo60zH5PbtZ+znvJR0HFz3Kdv5hF1jfW o8+5X6PrurpgQwb734zcg== X-ME-Sender: X-ME-Received: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeeffedrtdefgdehudekfecutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpuffrtefokffrpgfnqfghnecuuegr ihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmdenogfuuh hsphgvtghtffhomhgrihhnucdlgeelmdenucfjughrpefhvfevufffkfggtgesghdtreer tddttdenucfhrhhomheptehlhihsshgrucftohhsshcuoehhihesrghlhihsshgrrdhish eqnecuggftrfgrthhtvghrnhepheduteeugfektefgfedvgfeiteettdfhgedthfdtgfel vdejvdelheethfelfeevnecuffhomhgrihhnpehgohhoghhlvgdrtghomhdptghhrhhomh hiuhhmrdhorhhgpdhsphgvtghtrhhumhdqohhsrdhorhhgpdhfrhgvvgguvghskhhtohhp rdhorhhgpdhgihhthhhusgdrtghomhenucevlhhushhtvghrufhiiigvpedtnecurfgrrh grmhepmhgrihhlfhhrohhmpehhihesrghlhihsshgrrdhishdpnhgspghrtghpthhtohep vddpmhhouggvpehsmhhtphhouhhtpdhrtghpthhtohepuggvmhhiohgsvghnohhurhesgh hmrghilhdrtghomhdprhgtphhtthhopeguihhstghushhssehsphgvtghtrhhumhdqohhs rdhorhhg X-ME-Proxy: Feedback-ID: i12284293:Fastmail Received: by mail.messagingengine.com (Postfix) with ESMTPA; Mon, 14 Jul 2025 07:25:55 -0400 (EDT) Received: by sf.qyliss.net (Postfix, from userid 1000) id EB0AB29C84867; Mon, 14 Jul 2025 13:25:53 +0200 (CEST) From: Alyssa Ross To: discuss@spectrum-os.org Subject: This Week in Spectrum, 2025-W28 Date: Mon, 14 Jul 2025 13:25:51 +0200 Message-ID: <87tt3f6mkg.fsf@alyssa.is> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" Message-ID-Hash: MQ2DGI2G46AMZYRO6PSS6EEI7MJR2AKF X-Message-ID-Hash: MQ2DGI2G46AMZYRO6PSS6EEI7MJR2AKF X-MailFrom: hi@alyssa.is X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-discuss.spectrum-os.org-0; header-match-discuss.spectrum-os.org-1; header-match-discuss.spectrum-os.org-2; header-match-discuss.spectrum-os.org-3; header-match-discuss.spectrum-os.org-4; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header CC: Demi Marie Obenour X-Mailman-Version: 3.3.9 Precedence: list List-Id: General high-level discussion about Spectrum Archived-At: List-Archive: List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: --=-=-= Content-Type: text/plain This week, I finally finished the networking fixes I've kept mentioning for the last few weeks. Now, if the VMM for the network provider VM exits for whatever reason, it's possible to recover without rebooting the whole system. I've also fixed running AppImages, which had recently regressed, and added a test for that functionality to ensure it doesn't happen again. Along the way came various improvements to Spectrum's integration test framework. As I work on tests and the test framework, each new test is easier than the last, and it's a great feeling! Now, I'm looking into a Cloud Hypervisor bug that causes Spectrum's File Chooser portal implementation to intermittently not work. When that's fixed, I of course already have a Spectrum regression test ready for that too. In this case, because it only doesn't work some of the time, having a test that can (usually) reproduce it has made debugging so much easier than trying to reproduce by hand. I investigated a couple more newly introduced Nixpkgs regressions that affected Spectrum. One was a crosvm segfault on startup, caused by minijail not taking into account that kernel headers could include features not available on the running kernel. They already had a fix, and tagged a new release including it when I asked, but sadly it seems that the regression will be reintroduced next time a new kernel version is added[1]. :( [1]: https://groups.google.com/a/chromium.org/g/minijail/c/7YR25MbzGG0 Demi continued working towards sound in Spectrum. She sent another revision of her patch to run PipeWire in guests[2], and sent a large batch of security fixes upstream to PipeWire[3], some of which have already been accepted[4]. She also continued her work fixing unsoundness in Cloud Hyprevisor with a PR[5] to the rust-vmm vfio crate, and started a discussion in the review thread for the specification of the virtio-media device about its security properties[6]. [2]: https://spectrum-os.org/lists/archives/spectrum-devel/638beeaa-2351-4f51-81a6-bc58883930c2@gmail.com/ [3]: https://gitlab.freedesktop.org/pipewire/pipewire/-/merge_requests/2423 [4]: https://gitlab.freedesktop.org/pipewire/pipewire/-/merge_requests/2423#note_2993653 [5]: https://github.com/rust-vmm/vfio/pull/103 [6]: https://spectrum-os.org/lists/archives/spectrum-devel/67378956-e1dd-4d7f-9b66-97887b625936@gmail.com/ See you next week! --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iHUEARYKAB0WIQRV/neXydHjZma5XLJbRZGEIw/wogUCaHTpPwAKCRBbRZGEIw/w oq0YAP9dhrr6iUrjuogvI4KHB10ioW48WAYLfRHnyV0V3MNSpQD+PnnEdGXPCbiH H4C5DrDtejoWIctKp2SMHrUECq3XOA0= =Ofab -----END PGP SIGNATURE----- --=-=-=--