Richard Hughes

@hughsie
2.3K Followers
552 Following
1.2K Posts
I write free software. Firmware troublemaker.
Websitehttps://hughsie.com/
GitHubhttps://github.com/hughsie
Richard Hughes6d ago

To the people slightly upset that you have to create a user account to mirror the LVFS; this is why -- imagine every AI robot mindlessly doing this kind of thing in a loop.

https://lvfs.readthedocs.io/en/latest/offline.html#mirror-the-public-firmware

Richard HughesMar 12
Announcing #fwupd 2.1.1 -- a very big release with the usual bugfixes, new features and lots and lots of new hardware support: https://github.com/fwupd/fwupd/releases/tag/2.1.1
Show threadRichard HughesMar 3
Wow, well done everyone. Already up to 61%!
Richard HughesMar 2

Next week we're planning a big #fwupd release (with a lot of new exciting stuff) but the translations are looking a bit sad. Can anybody help? Thanks.

https://hosted.weblate.org/projects/fwupd/fwupd/

fwupd/fwupd

fwupd is being translated into 48 languages using Weblate. Join the translation or start translating your own project.

Hosted Weblate
Show threadRichard HughesFeb 27

We dropped the #fwupd side in https://github.com/fwupd/fwupd/commit/575b0f08281799962e8fbf6ac2ff570066fa3fe7 -- and #LVFS will stop signing with GPG when we release 2.1.1 in a few weeks time.

I think the only people that will even notice are those using #qubes to deploy updates.

Drop support for GPG signing of metadata and firmware · fwupd/fwupd@575b0f0

The design of gnupg and libgpgme are completly upside-down; the library calls a binary and then screen scrapes the output. It's also impossible to support PQC in a backwards compatible way due ...

GitHub
Richard HughesFeb 26

A slightly boring but important #fwupd release: https://github.com/fwupd/fwupd/releases/tag/2.0.20

Most of the new plugins and dep removal work is in the 'main' branch that will become 2.1.1 in a few weeks time.

Release 2.0.20 · fwupd/fwupd

This release adds the following features: Add support for changing AMD UMA carveout size Warn the user if they are using the blocked-firmware functionality This release fixes the following bugs: ...

GitHub
Richard HughesFeb 24

If the LVFS stopped signing with GPG+PKCS#7 and only relied on PKCS#7 going forward would anyone care?

Thanks to using libjcat we can add and remove signature formats as we need to in a forwards and backwards compatible way. We added PQC-compatible certs a few months ago and nobody noticed.

Richard HughesFeb 19

A great discovery today: fwupd capsule updates using coreboot!

https://novacustom.com/introduction-of-fwupd-support-capsule-updates/

#dasharo #novacustom

Introduction of fwupd support + Capsule Updates - NovaCustom

For easy installation of firmware updates. Firmware updates were unnecessarily complex for a long time. They required manual command line steps, were error-prone, and carried a real risk of “bricking.” In addition, updates often depended on specific BIOS settings. If something was wrong, an update could fail. This not only caused frustration for users, but ... Read more

NovaCustom
Richard HughesFeb 16

Does this look like AI spam to anyone else? https://github.com/fwupd/fwupd/pull/9908

I'm not sure how to handle it; ideas welcome.

Richard HughesFeb 13

Just a PSA that probably affects very few people -- if you're uploading modem firmware to the LVFS the payload has to be in .zip format. We used to accept .7z but I no longer want to depend on libzma.

I've converted all the affected ~20 modem firmwares on the LVFS to use zip.