pondělí 7. dubna 2014

Summary of accepted Fedora 21 Changes - weeks 13/14

This is summary of FESCo's accepted Fedora 21 Changes for weeks 13 and 14 (2014-03-26 and 2014-04-02 meetings).

Reminder: the Change Submission deadline for System Wide Change is tomorrow (2014-04-08 23:59 UTC).

Accepted changes

System Wide Changes

Modular Kernel Packaging for Cloud

​​​Kernel modules that are not necessary in virtualized environments become optionally (un)installable.

Announcement

Optional Javadocs

Make javadoc subpackages of Java packages optional in guidelines and communicate this change to users.

Announcement

Ruby on Rails 4.1

Ruby on Rails 4.1 is the latest version of well know web framework written in Ruby.

Announcement

Java 8

Make Java 8 (provided by OpenJDK 8 which is java-1.8.0-openjdk) the default Java runtime. The current default Java runtime (Java 7, provided by OpenJDK 7, java-1.7.0-openjdk) will be obsoleted and removed.

This is essentially an upgrade to the latest Java and OpenJDK version. 

Announcement

PrivateDevices=yes and PrivateNetwork=yes For Long-Running Services

Let's make Fedora more secure by default! Recent systemd versions provide two per-service switches PrivateDevices?=yes/no and PrivateNetwork?=yes/no which enable services to run without access to any physical devices in /dev, or without access to kind of network sockets. So far this has seen little use in Fedora, and with this Fedora Change we'd like to change this, and enable these for all long-running services that do not require device/network access.

Announcement

notting has question to note: is disconnecting the netlink and audit namespace
truly required, or just merely a choice of what they decided to remove?

Self Contained Changes

Amplab Tachyon discussed at ​https://lists.fedoraproject.org/pipermail/devel/2014-March/197168.html

Amplab-Tachyon is a fault tolerant distributed file system enabling reliable
file sharing at memory-speed across cluster frameworks.

Apache Mesos discussed at ​https://lists.fedoraproject.org/pipermail/devel/2014-March/197180.html

Apache Mesos is a cluster manager for sharing distributed application
frameworks. This change brings Mesos to Fedora, which many have called a
micro-kernel for the data center.

Apache Spark discussed at ​https://lists.fedoraproject.org/pipermail/devel/2014-March/196967.html

Apache Spark is a fast and general engine for large-scale data processing.
This change brings Spark to Fedora, allowing easy deployment and development of Spark applications on Fedora.

Improved Scala Ecosystem Support discussed at https://lists.fedoraproject.org/pipermail/devel/2014-March/196964.html

Fedora now supports several essential parts of the Scala language ecosystem as well as building packages with sbt, the de facto build tool for the Scala community.

Scala proposal owners to work to develop packaging guidelines

DNSSEC support for FreeIPA discussed at https://lists.fedoraproject.org/pipermail/devel/2014-March/197177.html

FreeIPA with integrated DNS server will support serving of DNSSEC secured
zones and automatic DNSSEC key maintenance.

This first version will have only the very basic functionality with limited
user interface and limited resiliency. Next versions (to be delivered in
Fedora 22 time frame) will improve resiliency and user interface
significantly.

NFS Ganesha File Server discussed at ​https://lists.fedoraproject.org/pipermail/devel/2014-March/196968.html

NFS Ganesha is a user mode file server that supports NFSv3, NFSv4, and NFSv4.1 including pNFS for distributed filesystems. It uses loadable filesystem driver modules to support its backend filesystems. It also integrates 9P.2000L file service

Rejected Changes

Security Policy In The Installer

There are many known tips and tricks how to make a system more secure, often depending on the use case for the system. With the OSCAP Anaconda Addon and the SCAP Security Guide projects, we may allow users choosing a security policy for their newly installed system.

Announcement

Please consider re-proposing as a kickstart-only change.