Hello Joshua, Benjamin,
On 13/05/2026 09:07, Benjamin Robin wrote:
Hello Joshua,
On Wednesday, May 13, 2026 at 12:29 AM, Joshua Watt wrote:
On Tue, May 12, 2026 at 4:27 PM Joshua Watt <[email protected]> wrote:
On Tue, May 12, 2026 at 11:02 AM Jérémie Dautheribes via
lists.openembedded.org
<[email protected]> wrote:
Add support for optional zstd compression for all types of SBOMs,
including:
- image SBOM
- recipe SBOM
- SDK SBOM
We should perhaps also implement decompression when reading in
documents, so that the intermediate documents are compressed as well;
if we are allowing the final documents to be compressed, I don't see a
compelling reason why we wouldn't just compress all of them.
I am not sure this is a good idea performance-wise, mainly because
Yocto is currently relying on an external program to compress and
decompress. We need to wait for Python 3.14 to be the minimum required
Python version to be able to use the native implementation of zstd.
Indeed intermediate documents are pretty "small".
Also with SPDX2, intermediate documents were not compressed.
The goal is not to reduce the size of the build directory, but only
the size of deployed artifacts.
In addition to what Benjamin already explained, our typical use-case is
storing the deployed SBOMs to an external location (typically a cloud
provider) and we encountered some cases where the uncompressed image
SBOM size is ~180 MB.
We could compress them outside of Yocto of course, but we thought it
would be great to have this feature directly in Yocto, especially since
it was already supported in the SPDX 2.2 implementation.
Best regards,
--
Jérémie Dautheribes, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#236937):
https://lists.openembedded.org/g/openembedded-core/message/236937
Mute This Topic: https://lists.openembedded.org/mt/119282964/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-
