Richard Hughes

@hughsie
2.3K Followers
552 Following
1.2K Posts
I write free software. Firmware troublemaker.
Websitehttps://hughsie.com/
GitHubhttps://github.com/hughsie
Richard Hughes6d ago

To the people slightly upset that you have to create a user account to mirror the LVFS; this is why -- imagine every AI robot mindlessly doing this kind of thing in a loop.

https://lvfs.readthedocs.io/en/latest/offline.html#mirror-the-public-firmware

Richard HughesMar 12
Announcing #fwupd 2.1.1 -- a very big release with the usual bugfixes, new features and lots and lots of new hardware support: https://github.com/fwupd/fwupd/releases/tag/2.1.1
Show threadRichard HughesMar 3
Wow, well done everyone. Already up to 61%!
Show threadRichard HughesMar 2
@john3voltas if wager that more than half of the people using fwupdmgr don't speak much English at all.
Richard HughesMar 2

Next week we're planning a big #fwupd release (with a lot of new exciting stuff) but the translations are looking a bit sad. Can anybody help? Thanks.

https://hosted.weblate.org/projects/fwupd/fwupd/

fwupd/fwupd

fwupd is being translated into 48 languages using Weblate. Join the translation or start translating your own project.

Hosted Weblate
Show threadRichard HughesMar 1
@funkylab @dlharmon yup, check out fwupd.org and see if that fits. Happy to help. R
Show threadRichard HughesFeb 27

@astraleureka good question. When we started fwupd all those years ago we had one large corporate customer that refused to use GnuTLS for anything, and we had a different ecosystem using fwupd that didn't "trust" GPG.

The other consideration was that a long time ago the Linux Foundation HSM thing only supported GPG. From a personal point of view I didn't trust either just to stop working for some arcane cypto policy reason, and having a fallback trust path seemed like a good idea.

Show threadRichard HughesFeb 27
@bagder agreed; Fastly also provides all the mirroring for the LVFS; they deserve a lot of thanks.
Show threadRichard HughesFeb 27

We dropped the #fwupd side in https://github.com/fwupd/fwupd/commit/575b0f08281799962e8fbf6ac2ff570066fa3fe7 -- and #LVFS will stop signing with GPG when we release 2.1.1 in a few weeks time.

I think the only people that will even notice are those using #qubes to deploy updates.

Drop support for GPG signing of metadata and firmware · fwupd/fwupd@575b0f0

The design of gnupg and libgpgme are completly upside-down; the library calls a binary and then screen scrapes the output. It's also impossible to support PQC in a backwards compatible way due ...

GitHub
Richard HughesFeb 26

A slightly boring but important #fwupd release: https://github.com/fwupd/fwupd/releases/tag/2.0.20

Most of the new plugins and dep removal work is in the 'main' branch that will become 2.1.1 in a few weeks time.

Release 2.0.20 · fwupd/fwupd

This release adds the following features: Add support for changing AMD UMA carveout size Warn the user if they are using the blocked-firmware functionality This release fixes the following bugs: ...

GitHub