Slashdot is powered by your submissions, so send in your scoop


Forgot your password?
GNU is Not Unix GUI Operating Systems Security Linux

Guix Gets Grafts: Timely Delivery of Security Updates 13

paroneayea writes: GNU Guix, the functional package manager (and with GuixSD, distribution) got a nice feature yesterday: timely delivery of security updates with grafts. Guix's new grafts feature recursively produces re-linked packages as dependencies without waiting for all to compile when a time-sensitive security upgrade is an issue. This came just in time for this week's OpenSSL security issues, and has been successfully tested by the community. It worked so well that it was able to reproduce the ABI break issue that other traditional distributions experienced also!
This discussion has been archived. No new comments can be posted.

Guix Gets Grafts: Timely Delivery of Security Updates

Comments Filter:
  • Is Guix a window cleaner, a dessert topping, or both?

    • I'm sorry about your butthurt, but it's not my fault that your devs don't understand how to name things in a fashion that it doesn't require 20 minutes to puzzle out and leave you feeling dissatisfied even then.

  • GNU doesn't like dynamically linking to libraries, instead preferring to statically link all the code. This results in (obviously) all statically linked packages having to be recompiled from scratch every time something in a core package (like OpenSSL) changes.

    Now, however they've figured out a way to dynamically link dependent packages so that their statically linked packages will recompile correctly. Oh, and wanton disabling SSLv2 breaks shit.

    • by Tool Man ( 9826 )

      If "wanton disabling SSLv2" breaks shit, it's shit that needs breaking. Dodgy old crypto protocols are deprecated for a reason, and massive, cheap security lossage is a good example here.

  • thank you for finally explaining wtf the thing is that you want to tell us more about. congratulations slashdot, you did it!

If a 6600 used paper tape instead of core memory, it would use up tape at about 30 miles/second. -- Grishman, Assembly Language Programming