Fedora Introduces Offline Updates 287
itwbennett writes "Thanks to a new feature approved this week by the Fedora Engineering Steering Committee, you won't hear Fedora 18 users bragging about systems that have been running continuously for months on end. 'Fedora's new Offline System Update feature will change the current system to something that is more Windows- and OS X-like: while many updates can still be made on the fly, certain package updates will require the system to be restarted so the patches can be applied in a special mode, according to the Fedora wiki page on the feature,' writes blogger Brian Proffitt."
um... (Score:5, Insightful)
why is this a good thing exactly?
Re:um... (Score:5, Interesting)
Would it *kill* you to read the article? (Score:3)
in order to avoid problems related to conflicts of libraries and services that are currently running with those on disk...
Installing updates while the session is running causes havoc with some apps like Firefox that have file resources that have not been locked (just try updating xulrunner when Firefox or Thunderbird is openâ¦)
Re: (Score:2)
I have read TFA, and I still CAN NOT understand the whole thing !!
If it's the FF, they can kill FF and re-launch the thing after the patch are done
What's the freaking need to take the whole system down?
Re:Would it *kill* you to read the article? (Score:5, Interesting)
try resizing your /var or / LVM partitions while the system is running, let me know how that goes
An OS upgrade has no business resizing your /var or root partitions. Period. Heck, you have to be pretty ignorant if you presume they're always local.
Seriously, what has happened to Fedora lately? First they added gvfs so backup programs broke when root was denied access. Then the went Gnome 3 to cater to the iGeneration. Then they went to systemd, where you can't quickly and easily decide what to run on startup in each runlevel, but have to edit dozens or hundreds of different files. And don't even get me started on mtab. Now this?
Thank goodness RHEL is supposed to be feature fixed for many years to come. And there, updates don't require a reboot. They actually TEST.
Re:Would it *kill* you to read the article? (Score:4, Insightful)
try resizing your /var or / LVM partitions while the system is running, let me know how that goes. This is because real enterprises have issues your linux server in mom's basement don't.
I have been doing exactly that for years, and it is only been getting easier. These are the commands you need to use if you have them stacked LVM->DMCRYPT->EXT4
fdisk
partprobe
pvresize
lvresize
cryptsetup resize
resize2fs
Use the tools in the stacking order that you have used to set up your system.
So I'm letting you know right now, if you actually know Linux system administration, it has worked fine for years and years. First online resize of a filesystem that was mounted over the network for a lot of users I did back in 2001.
Re: (Score:3)
First off i did read the artical
Installing updates while the session is running causes havoc with some apps like Firefox that have file resources that have not been locked (just try updating xulrunner when Firefox or Thunderbird is openâ¦)
but i am also a regular Linux desktop user and as for firefox needing to be shut off when ever i run update i am simply informed that i need to restart firefox. no reboot ever. occasionally i may have to logout and back in for a update/install but still no reboot needed. this is still a pointless bad idea.
Re: (Score:2)
Re: (Score:2)
I think Fedora is intended to be "bleeding edge" technology wise
No, cutting edge. Bleeding edge is cutting edge gone wrong.
Like we have here.
I am still trying to understand (Score:5, Insightful)
I actually took time to read the TFA and as many background freaking thing that are related that I can find on this thing, and tell you the truth, I am still trying to understand
I just do not understand why they want to take the thing offline, in order to run an update
I mean, what is wrong in keeping the system running while the patches run in the background?
I can understand it if the thing got a big hit - either from a worm attack or trojan or attacks from the outside - ... in real big emergency where the system can't just take it anymore, maybe, just maybe, take the whole thing offline (or power down the entire system), that makes sense
But ... just updating the damn thing you gotta take it offline, just like Windoze?
What's the freaking point?
Re:I am still trying to understand (Score:5, Insightful)
updates have been working just fine for years.. i don't understand either... sounds more like being too lazy to write proper post-install/update scripts that could trigger or recommend a reboot *when necessary*
___
to those who keep saying..
"i wish linux were more like windows"
there ya go. hope you're happy.
now sod off.
Re:I am still trying to understand (Score:5, Funny)
I'll wait until I can actually do anything remotely useful in Linux, then I'll be happy.
Ignorance isn't bliss then?
Re: (Score:3)
Re:I am still trying to understand (Score:4, Interesting)
Well, yes they can get away with patching on the fly for a lot of things, but really the system needs a reboot or it might be unstable. Some things may segfault if libraries get yanked out from underfoot unless they are 100% drop-in, binary compatible. Ever see what happens when a glibc upgrade goes awry? You can't even so much as run "ls". Many times have I had to boot with other media and finish a glibc install by hand. (I soon learned to "make install install_root=/someplace/else" first before running "make install" so I could easily manually install the finished product if the make install failed)
It's a lot easier when a distributor with packaging utilities is just installing same version with patches back ported, because the entry points and symbols and stuff are all the same. But these "offline updates" that happen in a "special mode" (While few daemons are running) will actually give them more freedom to upgrade things.
Re:I am still trying to understand (Score:5, Insightful)
Well, yes they can get away with patching on the fly for a lot of things, but really the system needs a reboot or it might be unstable. Some things may segfault if libraries get yanked out from underfoot
Library changes don't effect running programs that have already loaded the libraries. The file on disk is updated; the program won't be linked against new libraries until it is restarted.
Ever see what happens when a glibc upgrade goes awry? You can't even so much as run "ls". Many times have I had to boot with other media and finish a glibc install by hand.
This is why you need a package manager. GLIBC is a critical system library.
Requiring a reboot for a GLIBC update makes it scarier, not safer.
Hardware doesn't always come back up when you issue 'reboot'; you know, especially when you are doing the update remotely, to systems several hundred miles away, and don't have the luxury of a computer monitor and power switch.
Sometimes the reboot takes a long time; sometimes you have a component such as a RAID card that hates warm boots, and will fail to come up properly after a reset until you cold boot.
Re:I am still trying to understand (Score:4, Informative)
I am not sure what distro you're using, but when Firefox gets updated on my Ubuntu machines, it does pop up a dialog box saying that Firefox was updated and needs to restart -- and then it waits for my permission to do so. When a low-level package (kernel, libc, etc.) gets updated, one of the menu bar icons changes to indicate that a restart is needed to complete the updates -- so also I have control over when that happens.
My system doesn't initialize USB properly on reboot; about every other boot, Grub can't see keyboard input, so I can't select which partition to boot from. I only reboot a few times a year, though, so it would be a gross waste of money to replace components (starting with the motherboard) until the problem got fixed.
Re:um... (Score:4, Interesting)
Yeah every other day is patch Tuesday.
Re:um... (Score:4, Insightful)
Re: (Score:2)
this has nothing to do with installing without a network connection it has to do with shutting down and rebooting to install. Read the summery and artical. Besides you can put the rpm's or deb's on a cd/dvd/thumbdrive and install them all now and i think there is a group working on super-deb's which is a deb package with the main app plus all dependencies. Not only that but you can already have synaptic generate a script to download the debs you need from a connected computer, in ubuntu it does at least. So
Re: (Score:2)
No sitting with your adsl maxed out doing 20 mins of new updates.
Re: (Score:3)
Because, as an example, this may give server admins the ability to queue LVM resize operations on lvms (say shrink /opt or /var paritions) and grow (say /home) and get a post unmount or pre-mount phase in the boot\shutdown sequence
Admins can schedule this already. inittab and runlevel scripts work just fine, and aren't exactly rocket science.
An upgrade has no business changing parttion sizes, or assuming they are changeable or even local. Are they trying to dumb down Fedora so much that it can be used as neither a server nor a workstation with remote mounts? If so, it seriously needs a fork so the iGeneration people can play with their own toys and dumb down and restrict their systems to the level they want.
And even for local file
Wrong area of focus. (Score:5, Insightful)
"Installing updates while the session is running causes havoc with some apps like Firefox that have file resources that have not been locked (just try updating xulrunner when Firefox or Thunderbird is open)," blogged Fedora developer Richard Hughes.
Seems to me adding features to the package system that can determine and possibly correct such things (ie, closing Firefox or Thunderbird) would be the better way to go rather than force me to have to reboot. Hopefully it will retain the capability to install new software while updates are pending. I'd hate to have to reboot to install some tiny dependency. (A restart is required before you can install libfoo. Ugh!)
Re: (Score:3, Insightful)
So a bunch of gui apps are breaking things? Step A tell them there idiots and to fix there broken bits. Step B go down to text mode and back lets the X sessions figure themselves out. Why would you need a reboot for any of this. Server apps should be restarted if needed and user apps should not be so broken.
Re: (Score:3)
All you have to do is open the file not load it into ram, the updater can replace the file and the old one hangs around until nothing has it open, this is basic unix file system from 30 years ago and something windows has never been able to do. No great amounts of extra ram needed. For actual libraries it's trivial to find out the specific version at start up and ask for those explicitly from then on just as it's trivial to keep ever version of every library ever installed.
As I said servers get restarted.
Re:Wrong area of focus. (Score:4, Insightful)
This is exactly right. Look at the Flash updater on other systems. If a browser is running, Flash closes it down during an update. Fedora could easily detect Firefox is running and close that down during an update. If X11 needs an update, bounce the user to the console until it completes. And so forth. A whole boot mode just for installing "extra important" updates feels like the wrong approach to a more general problem.
Re:Wrong area of focus. (Score:5, Interesting)
If X11 needs an update, bounce the user to the console until it completes.
Or, update X, and the user gets the new version when X is next restarted. This is what Arch does: the old files (binaries) are deleted, but remain on disk until the program exits. I've had uptimes of many months and not had trouble with X being updated.
Re: (Score:2)
That _still_ doesn't make sense !! (Score:2)
Do that, and 4 months later, -one- of the many successfully applied updates will screw things up, and you'll have to figure out which update exactly was the culprit.
Problem is, it still does NOT make any sense !!
Okay, they took the whole system down and do a reboot
Does that provide any guarantee that 4 months from now one of the updates will not fuck up and leave you scratching your head?
Re: (Score:2)
It's still best practice to pull systems from production for updates and restart after patching to test for issues.
Rebooting makes sure everything is using the new version, making it quite obvious if there's any big problems with the updates.
Having the updates process force-kill dependant applications on a multi-user or server system isn't going to make the sysadmin any friends unless they are taking it out of production first. Enforcing this for Fedora makes sense (it's upstream of RHEL), and it reduces th
Re: (Score:2)
Re: (Score:3)
Fedora has never been aimed at the general public. I've always seen it as aimed at power users who don't want to tweak things to get a working desktop. A middle ground between Ubuntu and Arch.
As far the rebootin, that's just silly. If the Fedora devs think the user should reboot after applying an update, then they can present that as a message to user after they apply updates. Then the user can reboot if they want to.
Re: (Score:3)
This really doesn't look like it's going to change anything too radically.
Re: (Score:3)
Restarting apache post-upgrade is what the post-upgrade scripts for the rpm package are for.
Package Maintainer Fail. File a bug report.
Re: (Score:2)
Or rather make programs not care if their files get updated. It should all be in memory anyway.
I can do a full system update (Gentoo) without any programs caring that their files have been replaced by newer ones. Restart a program, say Firefox, and its the new version.
Re: (Score:3)
Re: (Score:3, Interesting)
The correct solution seems to be how Gentoo does it: Install BOTH versions of the library. Until nothing is accessing the old version anymore, it won't get uninstalled. So in this case, until FireFox is restarted it will keep having the old version of XULRunner around all the live-long day.
Or is using library versioning really such a foreign concept to newer Linux developers? Hell, my Gentoo box right now has four different versions of Python installed: 2.4, 2.6, 2.7, and 3.2, so I can do cross-version deve
Re:Wrong area of focus. (Score:4, Insightful)
"Installing updates while the session is running causes havoc with some apps like Firefox that have file resources that have not been locked (just try updating xulrunner when Firefox or Thunderbird is open)," blogged Fedora developer Richard Hughes.
When Ubuntu noticed this same problem, they included a Firefox extension to tell the user to restart. Fedora tries to re-plumb the OS and re-invent the behavior Windows is moving away from instead?
Fortuantely, it looks like this is constrained to the GNOME environment at the moment, so most of us may be safe - for now. I'll have to surf over to the KDE list to see if there's some righteous indignation going on there.
Re: (Score:2)
Re: (Score:2)
This attitude is what leads to the infuriating "YOU MUST UPDATE AND REBOOT NOW" type of updates. If I want to keep running with their downlevel software, it should be up to me. Sure, pop up a reminder or a notification that I need to restart, but if I ignore it it's my business. I happen to know my schedule (and know that I'll
Re: (Score:3)
So, exit X and all X apps, update, restart X. You've "restarted" the graphical world.
Not quite, because some KDE and Gnome daemons run even if there is no X server started. But, restarting these should do the trick.
Re: (Score:2, Insightful)
OS X has an "offline updater" and just reboots the machine. My Mac boots in like 5 seconds off an SSD, so what you're suggesting is a lot more complicated and would be only be slightly faster.
It's not 1998 anymore, every OS is stable and can boot quickly. Nobody cares about your "uptime".
Re:Wrong area of focus. (Score:5, Interesting)
It's not 1998 anymore, every OS is stable and can boot quickly. Nobody cares about your "uptime".
Business users sure care about uptime.
And a modern system can easily take 10 minutes or more sorting out and testing the hardware and RAIDs before it even begins to boot.
Continue living in your iPad world, but know that you can access diddley squat on your iPad unless the servers at the other end work reliably.
Re: (Score:2)
And a modern system can easily take 10 minutes or more sorting out and testing the hardware and RAIDs before it even begins to boot.
I've only ever seen times half that long on server hardware (which isn't what's really being discussed, here). I have never seen a desktop take 5 minutes, let alone 10 minutes, let alone more! I also would bet a large sum that I never will. You're seriously exaggerating.
Re: (Score:3)
You run KDE & Gnome on your servers?
Where did I say that I did?
Users may run kde and Gnome clients apps on servers, of course.
Please let us iPad peons know what they are so we can avoid providing you any confidential information.
Where have you been the last 15 years or so? These days, X11 is usually forwarded through ssh.
Reboot still does not guarantee anything (Score:2)
Not quite, because some KDE and Gnome daemons run even if there is no X server started. But, restarting these should do the trick.
Now, can you guarantee that the system after the reboot will never have any problem left ?
The list of daemons that runs on the background, even after X is taken off, is already known.
They could have just create a script to off all those daemons, after that, patch the system, after that, re-launch all those daemons, without having to reboot
Couldn't they?
Re:Wrong area of focus. (Score:4, Interesting)
And we just had a bunch of development LAMP services go haywire because Python updates changed the on-disk libraries in a way that confused our mod_wsgi Python web apps. And the packages apparently don't track dependencies like that, so we had to restart HTTPD manually.
Strange.
My server, when it upgrades apache or one of its dependencies, calls "httpd -k graceful", so unused processes restart, and used processes restart as soon as they become unused.
The stupid! It hurts! (Score:5, Insightful)
Good grief, the Stupid coming from Fedora and the GNOMEs is making my head hurt. We managed to update running systems with package management for how long? Leave it to the GNOMEs to fudge things up.... or just have Mac/Windows envy and convince themselves that this isn't a bug, it is a feature!
Re: (Score:2)
Next up: All the niceties of DLL hell.
If anything, people should be working towards not having to restart for all updates, even kernel patches. Instead, in the fevor to be more like iOS/OSX and Windows, Linux is regressing.
Re:The stupid! It hurts! (Score:4)
If anything, people should be working towards not having to restart for all updates, even kernel patches. Instead, in the fevor to be more like iOS/OSX and Windows, Linux is regressing.
It's not Linux that's regressing, it's Fedora.
RHEL, the non-community release based on Fedora, doesn't ever require restarts. You can, if you like, but they actually test that the updates don't require the new kernel they provide. If the Fedora guys present a community release that's completely unusable for RHEL, I expect that Red Hat will pull support of Fedora, and spend that money on in-house development instead. When Red Hat said they wanted to support visionaries, I'm quite sure they didn't mean the kind of visions you only get through illegal substances, and where you end up wearing underwear on your head.
Re: (Score:2)
As parent said, this is a terrible outcome.
Moving on constructively, I would suggest fedora should just be a minimal package set and a system for managing VMs. A good way to partition each VM would be for example, each system that manages it's own packages (eg. ruby, perl, firefox). Because of the rise of multi core computing this would have no performance impact at all. The advantages of a system like this include easier system management, better security, and convenience. There will be better upgrade-abil
Re: (Score:2, Informative)
redhat (aka fedora) has always had a pathetic package mgmt system. They finally got something that didn't completely suck when they adopted yellow dog's, but really, RH's Not Invented Here mantra is really to its and its users detriment (I think since yellowdog was as RH derivative, and RH's pkg manager, uptodate, sucked sooooo bad, they made this one exception to NIH).
Debian has handled updates and major upgrades flawlessly for decades (years before RH existed). Maybe fedora / redhat can base their distr
Re:The stupid! It hurts! (Score:4, Interesting)
> redhat (aka fedora) has always had a pathetic package mgmt system.
No, rpm is a better system than deb. It had signed packages years before Debian and nice all in one file .srpm/.src.rpm files that build from pristine sources plus patches and a .spec. And rpm specifically forbids (although clueless commerical vendors sometimes ignore it) interactive install/update, absolutely required for mass installs or unattended update. I think you are getting confused over the update systems built atop them. There I would agree that Debian's apt family was better than what Red Hat was shipping until fairly recent versions of Yum and even then I would note that Yum is still a P.I.G. And delta rpms absolutely rock if you aren't sitting on the wire with a local mirror.
> Debian has handled updates and major upgrades flawlessly for decades
Not exactly. It took far longer to update my Mythtv system from Debian 5.0 to 6.0 following the directions at debian.org than I have ever spent doing a single version upgrade on a RH/Fedora system. Admitted that was my first time doing a version update on Debian on a machine I cared about and was taking pains to avoid pooching the system so that probably accounts for some of the extra time. Along with the fact that it was connected to a TV and the console was not easily visible so I was also taking care to keep it available over the network at all times during the process, something I haven't tried yet on RH. Point is neither one does version upgrades 100% hands off.
> (years before RH existed)
Obviously you weren't actually using Linux way backthen or you wouldn't have said something so ignorant. Debian saw first light Aug 1993 and got it's first primitive package system with 0.01 in Jan 1994. It didn't hit 1.x until years later. RH released 1.0 Oct 1994 and got rpm in 1995.
> Debian just restarts the bits that are likely to break if they were not restarted.
Like RH up until this idiotic new notion.
Re: (Score:3)
It had signed packages years before Debian
I don't know who got what first but as you said, Debian has this too.
and nice all in one file .srpm/.src.rpm files that build from pristine sources plus patches and a .spec.
Same as Debian, you have a [package-source].orig.tar.gz, [package-description].dsc and [debian-specific-patches].diff.gz.
And rpm specifically forbids (although clueless commerical vendors sometimes ignore it) interactive install/update, absolutely required for mass installs or unattended update.
You can do unattended installs or updates in debian with
DEBIAN_FRONTEND=noninteractive apt-get -q -y dist-upgrade
I think it's pretty safe to assume that the systems are equivalent nowadays.
Re: (Score:2)
First, yum is superior technically to debians packaging system. Not going to bother explaining, because I seriously doubt it would do any good.
Next, this idea of rebooting (technically, two boots - download updates, reboot into a small system, apply updates, reboot into complete environment) is an idea that won't matter much soon.
Hard drives are already in the 3TB territory. btrfs or zfs will become necessary for reliability. When this happens, snapshots will be available to solve the problem properly.
Now,
Re: (Score:2)
First, yum is superior technically to debians packaging system. Not going to bother explaining, because I seriously doubt it would do any good.
By all means, please do.
I've worked professionally with the RPM build system and at one time was far too intimately aware of its shortcomings. I haven't built nearly as many .deb packages, but what exposure I've had to them sure made me feel good about their packaging toolkit.
From a sysadmin's perspective, I don't particularly hate yum, but I don't see anything that makes it more compelling than apt. In fact, I don't see a lot of daylight between them any more, except for yum's tendency to go online and up
Re: (Score:3)
Implemented for a small set of critical system packages, an offline[*] update makes sense. By "critical system packages", I exclude user applications like Firefox. At worst (or at best) the policy should be limited to kernel upgrades, the way it's been done in a typical Unix or Unix-like system.
Which strictly isn't necessary. For example, I've already "updated" my running kernel since two weeks ago, while my system continues to run under the old kernel. I know this has security issues, but I'm not a server
Re: (Score:2, Insightful)
Not really, it's pretty easy.
Re: (Score:3, Informative)
I can say from personal experience that the method described worked, without evidence of any problem, when I upgraded via yum from F16 to F17 on a hard drive dedicated to Fedora.
Re: (Score:3)
No, preupgrade can handle it. It still requires a reboot into Anaconda but it does its work without any need for interraction and it does it fairly fast.
I was opposed to the merge on historical principle until I read all of the arguments and thought on it a bit.
The change does make sense. Existing practice is a solution to a problem that hasn't really existed for decades. The whole distro now fits into a tiny (by modern standards) partition and we have rescue media now so the importance of always being a
What? (Score:2)
Bad things are features now?
Giving the people what they want. (redux) (Score:2)
Finally, the Fedora guys have listened to its customers and fanbase! People have been clamouring for years to be able to restart their computers needlessly after updating and now these long years of loyalty have been rewarded. Bravo, Fedora. Bravo.
Soft reboots! (Score:2)
Re: (Score:3)
So everyone.. (Score:2)
per-package filesystems (Score:4, Interesting)
It's too bad btrfs still has such performance problems with common applications (BTDTBTEXT4).
We really ought to have each package on its own filesystem. When there's an update, snapshot the filesystem, let currently running processes reference the old stuff so they don't crash, but new processes can have the new stuff. When the old version on longer has any references left, it can go away. This might not always make sense, but for a desktop it's a lot better than what we have now.
Yeah, there's some plumbing work that needs solving (rpm, containers interaction perhaps, VersionKit or whatever) but this idea of rebooting a linux system to get consistent updates is just picking at a scab, and indicative that a real solution is still necessary.
Re: (Score:3)
That's an interesting proposition. A similar idea has been realized in the research Linux (and Hurd) distibution NixOS.
"In NixOS, the entire operating system — the kernel, applications, system packages, configuration files, and so on — is built by the Nix package manager from a description in a purely functional build language. The fact that it’s purely functional essentially means that building a new configuration cannot overwrite previous configurations. Most of the other features follow
Re: (Score:2)
That's good stuff. Linux distributions need to stay nimble and borrow liberally from other good ideas.
I experienced rollback upgrades with nexenta, and liked that quite a bit. ZFS >> BTRFS right now, though.
I'm using Puppet to describe a test cluster, and I absolutely love that (at least the ideas if not the expression necessarily). Functional declaration is absolutely the right way to do things. I've been wondering about how something like Puppet (if not Puppet) should become integral to Fedora
Re: (Score:2)
Btrfs performance is bad due to a lot of seeks. With a SSD and Facebook's Flashcache to cache your rotating clunkers it performs very nicely.
Re:per-package filesystems (Score:4, Interesting)
Btrfs performance is bad due to a lot of seeks. With a SSD and Facebook's Flashcache to cache your rotating clunkers it performs very nicely.
Don't apologize for bad performance. ZFS has a very similar feature set to BTRFS but it doesn't have all these problems. Maybe BTRFS just isn't ready yet - I wonder if the developers ever feel like they'd wish people stopped rushing it into production.
Anyway, I use SSD+Flashcache on some servers - it works great. But that shouldn't be the minimum system requirement for a Fedora machine.
Re: (Score:2)
Of course, now that you have (snapshot-)transactional semantics, you need transactional syntax. That means changes to POSIX.
OK
Woops.
POSIX 1 lasted about three years. POSIX 2 has lasted twenty.
If the choice really is rebooting *nix boxes to be able to handle package updates OR specifying POSIX 3, I doubt too many of the IEEE guys who worked on POSIX 2 are going to get their feelings bent out of shape. I'd imagine some of them would recoil in terror at the notion of rebooting a unix box to update Firefox.
Bu
Again? (Score:2)
1. This feature was in other distributions for years if not decades -- if kernel or libraries used by everything are updated, the updater asks the user to reboot, otherwise only affected programs are restarted.
2. It's Brian Proffitt, an anti-Linux attack dog again.
Re: (Score:2)
FAIL. That's not the same as what this MIS-feature does. This abortion actually APPLIES the updates during the bootup process - like -hack- Windows -spit-.
Re: (Score:2)
[citation needed], and Brian Proffitt does not qualify.
Re:Again? (Score:4, Informative)
Assuming you don't want to RTFA, how about the the feature page [fedoraproject.org] itself.
Re: (Score:2)
Looked through Fedora wiki page he referenced. It's an experimental feature that may end up not even being used, applicable to a very small subset of packages, to make sure that updater itself won't get broken or confused halfway through the update process. What may say a lot about the expected quality of the package manager/updater, but with no real effect on anything.
To be fair, Gentoo occasionally suffered from the very kind of breakage they are trying to prevent, but Gentoo has an excuse of package mana
Re: (Score:2)
I looked at the page too. The word "experimental" does not occur there. It's targeted at Fedora 18 and is 85% complete already.
While I might not care if Fedora gets screwed up by this abortion, Fedora is the source for Redhat Enterprise Linux, and I care VERY MUCH if RHEL 7 gets screwed up come 2013 or 2014.
Awwww... (Score:3)
The headline made me think "Fedora will start sending patches and updates on CD through the mail."
users will just deprioritize updates (Score:5, Insightful)
The workaround to the focus-stealing forced-reboot update is, of course, is simply *not to apply the updates in a timely fashion.* As long as their applications are up and running, and they'd prefer to leave them up and running, why would they?
With this move FC is just setting itself up for the deprioritization of updates, and this could ultimately lead to worse security and stability.
Re: (Score:3)
Fix the problem not the symptom (Score:2)
Surely a neater solution would be to have some type of version number associated with them so that multiple copies of a library could co-exist peacefully on the same system.
Re: (Score:2)
Surely a neater solution would be to have some type of version number associated with them so that multiple copies of a library could co-exist peacefully on the same system.
Because you want the old defective buggy one with security holes lying around indefinitely?
Everyone calm down (Score:5, Informative)
Ok, you guys (and TFA) seriously missunderstand this feature, and yes it is a feature. This won't affect any update that doesn't already require a reboot. The difference is that currently if you update a critical system library, everything that depends on that library has the potential to act in an unstable manner until the next reboot occurs. This change says that if you're updating one of those libraries, the update doesn't actually happen at package install time, it gets scheduled to occur on the next reboot. That's it. No more extra reboots, just more stability and updates scheduled for boot time.
The fact that windows has this feature isn't a problem, its the fact that it requires it on nearly every dll update. The reason for this is that windows locks files when they're in use, so its actually impossible to update the file until the services that use it (which are often core system services) are stopped, ie at boot time. Linux has avoided this by making its filesystem be refcounted. If a file is in use and you delete it, it stays there until the thing using it exits. So library updates just delete the old library and install a new one, while programs using the old library continue to until they're restarted. This works until you have something dynamically loading stuff, or when you have ipc between programs using the different versions of the library, or a million other modern techniques that unix designers didn't think of.
Anyway, this really is not the travesty everyone here thinks it is.
Re: (Score:2)
The fact that windows has this feature isn't a problem, its the fact that it requires it on nearly every dll update.
Is that really true anymore?
Re: (Score:2)
Its semi-true. Since XP they've gone through and tried to untangle the mess of dll dependencies, and there's a lot that doesn't require a reboot. But if you look at the dependency graph of windows core libraries its still a big circular mess.
The file lock on open is still definitely true though, its core to the way windows filesystems work and changing it would break compatibility with decades of software.
Re: (Score:3)
Linux has avoided this by making its filesystem be refcounted. If a file is in use and you delete it, it stays there until the thing using it exits. So library updates just delete the old library and install a new one, while programs using the old library continue to until they're restarted. This works until you have something dynamically loading stuff, or when you have ipc between programs using the different versions of the library, or a million other modern techniques that unix designers didn't think of.
Holy CRAP, please don't paint it like Linux does what it does to "avoid a problem" - Linux does what old Unix systems always have done EXCEPT urge people to update from single user mode or reboot after any patch set - unless you read every patch's release notes and take redial action. Linux vendors just skipped that part, and shame on them.
Windows does what _it_ does to avoid the EXACT problem you go on to explain, the results of what Linux does is undefinable!
Busting the myth (Score:5, Informative)
ToasterMonkey is correct: The reason that you usually do not need to restart the system or applications on Linux is the fact that the potential problems of *not* restarting are simply *ignored* on Linux. It's a head-in-the-sand solution.
Most of the time this does not present a problem. It is only when some application uses dynamic or delayed loading (and the suddenly loads an updated and binary incompatible library), uses on-demand loaded resources (what Firefox does) or have other types of dependencies between what sits in memory and what sits on disk.
But there is no secret or magic sauce in Linux which makes this not a pronlem. It is simply assumed that it's not a big problem. But in the case of Firefox this is a regular occurrence. And we all what updating glibc can lead to.
Java will also delay/demand load classes/libraries. Updating to the next version of a Java application while it is running may very well set the running application up for a crash. If a library/class has not yet been loaded (or has been evicted), the risk is that updating the disk files will lead to an incompatible class being loaded when it is required. While designing with backwards-compatibility in mind is good style, it is not reasonable to expect that the developer foresees all of the problems and complexities this can lead to.
The same situation exists for binary modules and other types of runtime environments. As software is getting more complicated techniques such as dynamically or delay loaded libraries/resources, object serialization which depend on a specific binary format, pre-compiled scripts etc. all risk running afoul of the head-in-the-sand mentality.
What is needed is a way for applications or services to register that they depend on certain files. The application may very well be able to survive (or even encourage) updating some of the files during normal operating (think plug-ins). But other files are expected to *not change* beneath the application. This is a reasonable expectation, but only the application (developer) can tell the update process which files it is ok to change on the fly and which files really only should be changed while the application or system is offline.
At this time there is no way for applications or background processes to tell the Linux system or an installer what it should do prior to and after updating certain files. Individual updates may be written to look for certain processes it considers in-risk - but that is really getting it backwards.
Windows has had the Restart Manager (http://msdn.microsoft.com/en-us/library/windows/desktop/cc948910(v=vs.85).aspx) since Vista. Applications, device drivers, system services etc can now register with the RM (for instance all of the files in its directory and certain system wide libraries) and tell it that certain files should not be clobbered during an update/installation if the application is running. When an installer wants to replace a file which has been registered with RM, it can ask (default if using MSI installers) the RM to ask applications with a registered interest if it would be ok to save their state and close. If all applications/services agrees, the RM will then send the actual save+close message to the applications/services. The RM will then relinquish control to the installer which will replace the files. After the installation, the installer invokes the RM again to let it restart all of the applications.
When saving their state the applications/services can register how they want to be restarted to re-establish the state they left, i.e. Word and Excel opens the same documents, Chrome opens the same tabs re-establishing scroll positions etc.
When the RM determines that a file is being held locked by an application which is *not* registered with the RM it backs off and does not ask any apps to stop (it wouldn't know how to ask them to restart). Instead the installer schedules *all* of the files to be replaced "off-line", i.e. you will not have a situation where some of the files have be
Not clear (Score:2)
As others have commented, the wiki is not very clear on all implications on this, but as far as my use of linux (12 years now), I have never had to reboot for any kind of update or security patch that is not kernel related or glibc, that is why I use Linux, because once it works it just keeps working, I really hated the times when even installing an application on Windows would reboot the entire system, WTF?
Seems to me that the upper level of the Linux desktop stack is getting more and more complex and more
Re:Fedora, whatever... wait, kill Debian and Gento (Score:5, Interesting)
> Are Gentoo/Debian really that intertwined with whatever Fedora maintainers decide?
Not yet. But if GNOME and/or Firefox start requiring the feature other distros have a choice between two bad options. This new Linux only notion that started with systemd is increasingly Fedora only. You can have your distro if you want, if it behaves just like Fedora. One big monolitic blob of alien tech. Want the new udev? It is part of systemd. Want the new GNOME, wait for it to be unusable without udev which requires systemd. And so on.
Re: (Score:3)
Not yet. But if GNOME and/or Firefox start requiring the feature other distros have a choice between two bad options.
Actually, I think it leaves with one good option. Give GNOME the boot, Firefox the finger, and ship with KDE and Chromium. I used to use both, until GNOME3 and Firefox's general suckiness pushed me off onto the alternatives.
Re: (Score:2)
KDE and Chromium. I used to use both, until GNOME3 and Firefox's general suckiness pushed me off onto the alternatives.
I'm kind of on the fence with Chrome, I regard it as a giant piece of spyware but I use it at work because it requires one click to create a security exception every time the Websense thought police software decides to rewrite yet another security certificate as opposed to Firefox where creating a security exception requires three clicks. As for GNOME I rather like it, it's rather fast, and I must be one of a handful of people who actually like the new UI even if it is bug ridden as hell. Even with all of t
Re: (Score:2)
I suggested Chromium rather than Chrome because it is open source - which means its processes are all open for inspection to avoid spyware, and it fits with Debians policies.
Re: (Score:3)
Also note that this feature is about implementing offline updates for GNOME. Other spins are not affected, although they could choose to use the same systemd and PackageKit infrastructure, and provide a similar experience.
[emphasis mine]
I guess you could just use a spin that doesn't require this or just not use GNOME.
Re: (Score:2)
Last I checked GNOME 3 didn't run on BSD. Now, it's been a while since I checked, but, I remember the GNOME devs not caring about non-Linux platforms.
Re: (Score:2)
And just what do you think BSD will do when the orphaned Gnome2 is no longer a viable desktop (security vulnerabilities, unfixed bugs, etc)?
Re: (Score:2)
Well that's easy. They can use MATE, or a different DE (KDE works fine last I checked).
Re: (Score:2)
If you had said Xfce I could accept that :-)
Re: (Score:2)
Fedora != Linux.
The rest of us never have to reboot.
Re:linux just gets shittier and shitter (Score:4, Funny)
That's one thing OSX does right. It *shows* you if you need to reboot for EACH package. Microsoft _still_ can't get this right after how many years?? "This update may require to reboot." WTF you don't know?? Either it modifies kernel files or it doesn't? Either the resources provided by a .dll are in use or they are not. It's not fucking rocket science.
More Lennart Poettering vandalism (Score:2)
Official feature page [fedoraproject.org]
Do not want. Will not accept. Have a nice day and bye. Fix stupid apps and libs; don't cater to lowest denominator. Yeah I understand in the proposal there is still an option to do updates the old way, but how long do you think that will survive?
This idiot is progressively turning linux into a cesspool. Don't take my word for it. Take the word of 18,600 guys [google.com]. This guy is a one man engine of destruction.
Re: (Score:2)
Without this the SecureBoot only limits what people can do with their computers
I thought that was the whole point of 'Secure Boot'?