Re: [qubes-devel] A first stab at an open source GUI for Qubes

the manager, having choice is a good think. Depending on quality, we may include it in standard repositories, if you want. Please make sure it won't conflict with existing applications, so can be installed along with them. Especially 'qubes-manager' name is already taken. - -- Best Regards, Marek Marczykow

Re: [qubes-devel] Difference between PVH and PVHVM

m. > > Regards, > Vít Šesták 'v6ak' > - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -BEGIN PGP SIGNATURE- Version: Gn

Re: [qubes-devel] Suspend not working

gards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQEcBAEBCAAGBQJaLyBaAAoJENuP0xzK19csB9gIAI5/+XSv5g3ZnVsexP8n2/92 4Oqhe7IA

Fedora-related help (was: Re: [qubes-devel] Any chance of moving dom0 to F26 for 4.0 final release)

a). We've tried to upstream this, but apparently there is not much interest it in... See here for related pull requests and discussion: https://github.com/rhinstaller/pykickstart/pull/32#issuecomment-144046375 https://bugzilla.redhat.com/show_bug.cgi?id=1448164 Thanks! - -- Best Regards, Marek Marcz

Re: [qubes-devel] Any chance of moving dom0 to F26 for 4.0 final release

-- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQEcBAEBCAAGBQJaLMZ/AAoJENuP0xzK19cskysI

Re: [qubes-devel] Re: Qubes OS 4.0-rc3 has been released!

s?utf8=%E2%9C%93=is%3Aissue+label%3Ar4.0-dom0-stable [1] https://www.qubes-os.org/doc/version-scheme/#release-schedule - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? --

Re: [qubes-devel] Need admin api advice

method there. Then use that instead of None for QubesVM constructor. Something like this: class DummyQubes(qubesadmin.app.QubesBase): def qubesd_call(self, *args, **kwargs): pass dummy_app = DummyQubes() dummyvm = qubesadmin.vm.QubesVM(dummy_app, "dummy1&q

Re: [qubes-devel] Network VM's always autostart even when they are not supposed to

f that was > the cause it wouldn't explain why the firewall vm starts at boot too. Is any other VM started there too? Maybe some other VM (using such netvm) is configured with autostart=True. Another possibility is dom0 update check or dom0 clock sync. Those actions require appropriate V

Re: [qubes-devel] Fedora 27

om/d/msg/qubes-devel/l9xDmPXpNfg/NJyHRP_EAQAJ) but I > should work on it in the next days. > - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thi

Re: [qubes-devel] Convert to trusted LibreOffice file

may still be hostile. So, running this tool in DispVM may be useful to guard file-storing VM. But it will not guarantee that the output file is safe. (*) which is IMO less likely for this code, than for full LibreOffice. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Becau

Re: [qubes-devel] Re: Is there a way to save dispvm snapshots for fast startup?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Mon, Nov 13, 2017 at 01:45:32AM -0800, Elias Mårtenson wrote: > On Thursday, 9 November 2017 23:25:34 UTC+8, Marek Marczykowski-Górecki > wrote: > > > Whatever it did, it certainly made the experience of using DVM's mu

Re: [qubes-devel] Re: Is there a way to save dispvm snapshots for fast startup?

(hopefully sufficient) fix - it will land in testing repo today. [1] https://github.com/QubesOS/qubes-issues/issues/3221 [2] https://github.com/QubesOS/qubes-issues/issues/1512 - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people

Re: [qubes-devel] dispvms in qubes 4.0

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Thu, Nov 09, 2017 at 04:32:38AM +, pixelfairy wrote: > On Wed, Nov 8, 2017 at 8:08 PM Marek Marczykowski-Górecki < > marma...@invisiblethingslab.com> wrote: > > > -BEGIN PGP SIGNED MESSAGE- > > Hash: SH

Re: [qubes-devel] dispvms in qubes 4.0

M (with name like disp1234), start qubes.StartApp+xterm service there (so, launch an application from /usr/share/applications/xterm.deskop - xterm). And when that application exit, destroy the DispVM. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the orde

Re: [qubes-devel] dispvms in qubes 4.0

-25-dvm provided for this purpose), then set template_for_dispvms=True and use that AppVM for your DispVM. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -BEGIN

Re: [qubes-devel] Where does Qubes 4 store the VM images?

space? This is known issue, see here for details and workarounds until proper solution got implemented: https://github.com/QubesOS/qubes-issues/issues/3240 In short: sudo lvs qubes_dom0/pool00 And look at 'Data%' column. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things La

Re: [qubes-devel] qvm-open-in-vm (Q4.0rc2)

open app/file do not wait until you close app/file. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQEc

[qubes-devel] Re: upstream

epitre > PS: Sorry I forgot to CC to the list Also, please don't top-post... > Le 05/11/2017 à 17:51, Marek Marczykowski-Górecki a écrit : > > On Sun, Nov 05, 2017 at 05:41:17PM +0100, Frédéric Epitre wrote: > > > Following the list of options I setup in my infrastruct

[qubes-devel] Re: upstream

" branch might introduce some additional complexity, as you need to keep it in sync (when? how to handle conflicts? how to change upstream branch/repo?). PS CCing qubes-devel - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normall

Re: [qubes-devel] Where can I find the clocksync script?

s some race condition leading to not enabling it sometimes. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQEcBAEBCA

Re: [qubes-devel] Windows App VM

-- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQEcBAEBCAAGBQJZ9hpEAAoJENuP0xzK19cs9HMH/0kd5vhktLfYHhfx2xz6lGdw oiVPPSQymurWKq

Re: [qubes-devel] Where can I find the clocksync script?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Sun, Oct 29, 2017 at 09:27:55PM -0700, loke...@gmail.com wrote: > On Friday, 27 October 2017 19:10:46 UTC+8, Marek Marczykowski-Górecki wrote: > > > > Here is how it works: > > > > 1. sys-net runs some standard cl

Re: [qubes-devel] Re: templates-update-repos, local mirrors and CentOS

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Sun, Oct 29, 2017 at 03:59:34PM -0700, Frédéric Pierret (fepitre) wrote: > > > Le dimanche 29 octobre 2017 22:45:38 UTC+1, Marek Marczykowski-Górecki a > écrit : > > > > -BEGIN PGP SIGNED MESSAGE- > > Has

Re: [qubes-devel] Re: templates-update-repos, local mirrors and CentOS

of the baseurl. I should upload it tomorrow. > > > > The template for CentOS7 is not yet available for r4.0. The problem is > > that there is not always the python3 packages for CentOS needed by Qubes > > tools, and we have to construct specific components for the m

Re: [qubes-devel] templates-update-repos, local mirrors and CentOS

hon3 packages for CentOS needed by Qubes tools, > and we have to construct specific components for the missing dependencies. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is

[qubes-devel] Qubes Security Bulletin #35: Xen hypervisor issue related to grant tables (XSA-236)

rg/xsa/advisory-236.html - -- The Qubes Security Team https://www.qubes-os.org/security/ ``` - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -BEGIN PGP SIGNATUR

[qubes-devel] Re: [qubes-users] Qubes OS 4.0 second candidate (rc2) has been released!

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Tue, Oct 24, 2017 at 05:28:53PM -0700, Jean-Philippe Ouellet wrote: > On Tue, Oct 24, 2017 at 5:26 PM, Jean-Philippe Ouellet <j...@vt.edu> wrote: > > On Tue, Oct 24, 2017 at 1:21 AM, Marek Marczykowski-Górecki > > <marma..

Re: [qubes-devel] seems net-vm wount start : Sum of all thin volume sizes (500.67 GiB) exceeds the size of thin pool qubes_dom0/pool00 and the size of whole volume group (465.56 GiB)!\n'

in /var/log/xen/console/guest-sys-net.log? If not, try enabling debug mode of that VM (`qvm-prefs sys-net debug on`) and try again. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting s

Re: [qubes-devel] Need clarification for R4 qubes-firewall cycles

. What is the recommended way to modify iptables before forwarding is > enabled at startup, and subsequently during normal runtime? Either add own startup script, order before network.target. Or modify /etc/qubes/iptables.rules. If you don't care about ordering, you can use /rw/config/rc.local. - --

[qubes-devel] Qubes OS 4.0 second candidate (rc2) has been released!

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hello, We have just released Qubes 4.0-rc2: https://www.qubes-os.org/news/2017/10/23/qubes-40-rc2/ - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why

Re: [qubes-devel] Question about xorg.conf in dom0

and what takes precedence" so I > decided to ask in the group with maximum concentration of people who > actually know how it works on the inside See also files in /etc/X11/xorg.conf.d/ - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order

[qubes-devel] Debian buster packages for R3.2

are totally untested. And because Debian testing is evolving dynamically now, things may stop working after some update (for example next pulseaudio version). Packages for R4.0 will be later. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which

Re: [qubes-devel] Re: Delay of Qubes 4.0rc2

there anything in particular that is causing the delay? A specific > feature such as HVM PCI Passthrough or something with Xen? This issue: https://github.com/QubesOS/qubes-issues/issues/3173 Will be in a week... - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it m

Re: [qubes-devel] Template's root volume partition table in Qubes 4.0

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Tue, Oct 17, 2017 at 01:09:58PM +0200, Zrubi wrote: > On 10/14/2017 12:22 AM, Marek Marczykowski-Górecki wrote: > > Current partition layout of a template in Qubes 4.0 is: 1. xvda1: > > root filesystem (almost all available space

Re: [qubes-devel] Re: Template's root volume partition table in Qubes 4.0 - dalaying rc2 one more week

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Sat, Oct 14, 2017 at 04:01:11PM +0200, Wojtek Porczyk wrote: > On Sat, Oct 14, 2017 at 03:36:05PM +0200, Marek Marczykowski-Górecki wrote: > > Thanks for the explanation. > > This should be enough for the online resize part. Now, b

Re: [qubes-devel] Re: Template's root volume partition table in Qubes 4.0

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Sat, Oct 14, 2017 at 04:29:30PM +0100, Andrew Clausen wrote: > Hi Marek, > > On 14 October 2017 at 15:45, Marek Marczykowski-Górecki < > marma...@invisiblethingslab.com> wrote: > > > -BEGIN PGP SIGNED ME

Re: [qubes-devel] Re: Template's root volume partition table in Qubes 4.0

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Sat, Oct 14, 2017 at 04:01:11PM +0200, Wojtek Porczyk wrote: > On Sat, Oct 14, 2017 at 03:36:05PM +0200, Marek Marczykowski-Górecki wrote: > > Thanks for the explanation. > > This should be enough for the online resize part. Now, b

Re: [qubes-devel] Re: Template's root volume partition table in Qubes 4.0

A256 > > > > On Sat, Oct 14, 2017 at 02:06:43AM +0200, Wojtek Porczyk wrote: > > > On Sat, Oct 14, 2017 at 01:40:45AM +0200, Marek Marczykowski-Górecki > > wrote: > > > > On Sat, Oct 14, 2017 at 01:21:58AM +0200, Wojtek Porczyk wrote: > > > &

[qubes-devel] Template's root volume partition table in Qubes 4.0

image#L59-L76 - - and other places there assuming root fs is on the first partition [2] https://github.com/QubesOS/qubes-linux-utils/tree/master/dracut - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-postin

Re: [qubes-devel] [GSoC] Qubes-MIME-Types (Qubes File Trust)

ove forward with integrating > the code. In the mean time, I'll be cleaning up and adding new unit test > cases, to ensure things are rock-solid before its merged in. > > https://github.com/anoadragon453/qubes-file-trust Thanks for the update! What is the status of upstreaming nautilu

Re: [qubes-devel] Build ISO

Any suggestions on how to debug it? If you're booting in UEFI mode, try legacy. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -BEGIN PGP SIGNATURE- Ve

Re: [qubes-devel] Salt vcpus bug in 4.0rc1

that line makes it work. I searched on github and the qubes-devel > list > but didn't find anything. Should I just go ahead and make a new bug on github? Yes, please. Also, take a look at qvm.vm wrapper: https://github.com/QubesOS/qubes-mgmt-salt-dom0-qvm/blob/master/README.rst#qvm-v

Re: [qubes-devel] qubes-url-redirector

sses a message to the browser's extension with URL to be opened > and the browser's counterpart opens it. However I'll update on this. > > Best, > Raffaele. > - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normal

Re: [qubes-devel] Re: Qubes 4.0 FC26

e02d57b). > > I should push everything on github on devel branches in the next days, a > time to polish and debug a bit more. Stay tuned ! > > Le dimanche 10 septembre 2017 01:43:33 UTC+2, Marek Marczykowski-Górecki a > écrit : > > > > -BEGIN PGP SIGNED MESSAGE- >

Re: [qubes-devel] Re: Delay of Qubes 4.0rc2

s-os.org/doc/releases/4.0/schedule/ - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQEcBAEBCAAGBQJZwrNOAAoJENuP

[qubes-devel] Delay of Qubes 4.0rc2

in testing repository, so you may simply update the system from there. [1] https://www.qubes-os.org/doc/releases/4.0/release-notes/ - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad

Re: [qubes-devel] Disposable VMs on Qubes 4.0

we don't use something we later > want to change. Specifically for consistency with fedora-XX-dvm, I've used whonix-ws-dvm there. > Cheers, > Patrick > > https://github.com/QubesOS/qubes-mgmt-salt-dom0-virtual-machines/pull/5 - -- Best Regards, Marek Marczykowski-Górecki Invisible Things

Re: [qubes-devel] Disposable VMs on Qubes 4.0

bleVM? I don't know. The first step would be testing what is missing (if anything). There is a chance it will just work. > > OTOH, it should be much easier there, because in > > Qubes 4.0 there are no more savefiles - DisposableVM is started the > > same way as Ap

Re: [qubes-devel] Re: Qubes 4.0 FC26

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Sun, Sep 10, 2017 at 01:43:24AM +0200, Marek Marczykowski-Górecki wrote: > On Sun, Sep 10, 2017 at 12:31:03AM +0200, Frédéric Epitre wrote: > > - I succeed to build all the components (dom0 and vm) for the release > > 4.0 with Fed

[qubes-devel] Re: Qubes 4.0 FC26

rification. Probably needs to be updated. But as said above - don't worry about it now. > I will debug in the next days with a new fresh branch for fedora 26 in > the installer. > > Best, > > Frédéric > > - -- Best Regards, Marek Marczykowski-Górecki Invisible Thi

[qubes-devel] Re: Qubes-MIME-Handlers final report (#9)

technicalities, the main work is in a good shape. [1] https://github.com/QubesOS/qubes-issues/issues/3065 [2] https://wiki.gnome.org/Newcomers/SubmitPatch - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why

Re: [qubes-devel] Re: Qubes 3.2 Kernel 4.12

e more work on reviewing config changes and more testing (probably longer time in current-testing when uploading new major version). For this to happen, we'd prefer to have someone tracking kernel changes - IIUC Reg Tiangha already do this anyway. What do you think? - -- Best Regards, Marek

Re: [qubes-devel] Qubes Security Bulletin #32: Xen hypervisor and Linux kernel vulnerabilities (XSA-226 through XSA-230)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Tue, Aug 15, 2017 at 02:43:42PM +, Rusty Bird wrote: > Marek Marczykowski-Górecki: > > On Tue, Aug 15, 2017 at 01:59:59PM +, Holger Levsen wrote: > > > So, "sudo qubes-dom0-update" for the first paragraph,

Re: [qubes-devel] Xen 4.6.6 for Qubes 3.2

es. See here for details: https://xenproject.org/downloads/xen-archives/xen-46-series/xen-466.html - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -BEGIN PGP SIGNATURE- Ve

Re: [qubes-devel] python API for dom0 <> AppVM communication

d way, see more details here: https://www.qubes-os.org/doc/qrexec3/ While there is python API (as part of Admin API) which among other things wrap this, it is an overkill here. It will wrap subprocess.Popen(...) into a little longer line... - -- Best Regards, Marek Marczykowski-Górecki Invisible Thi

Re: [qubes-devel] feature request, copy / paste / type. is this feasible?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Fri, Aug 11, 2017 at 04:08:53AM -0700, pixel fairy wrote: > > On Friday, August 11, 2017 at 3:39:01 AM UTC-7, Marek Marczykowski-Górecki > wrote: > > > > -BEGIN PGP SIGNED MESSAGE- > > Hash: SHA256 > &g

Re: [qubes-devel] feature request, copy / paste / type. is this feasible?

will be interpreted as commands. Limiting allowed character set to printable ASCII solve most of those problems, but also breaks diacritics (like ą or ł in polish). Another problem is possibly different keyboard layout - you need to take care of it while typing text... - -- Best Regards, Marek Mar

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #8

the project. I > > don't want to spend another couple weeks patching Dolphin only to run > > out of time for a general cleanup and other polish. I will try to pour > > through the Dolphin code and note down everything that one would need to > > do with Dolphin to make it w

Re: [qubes-devel] [PATCH] qubes-receive-updates fails to delete all unverified packages

een checks on the packages > and those packages getting replaced by a concurrent > qubes-receive-updates potentially unpacking a replacement file between > the check and the file getting used. > > There are some other issues in that file, like the regex being '.rpm' > instead of '

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #7

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Tue, Jul 25, 2017 at 08:54:57PM -0700, Andrew Morgan wrote: > On 07/25/2017 06:23 PM, Marek Marczykowski-Górecki wrote: > > On Tue, Jul 25, 2017 at 05:52:56PM -0700, Andrew Morgan wrote: > >> On 07/24/2017 02:33 AM, A

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #7

pful with > some answers, but I still have a lot of questions :) Maybe, just guessing, it looks for extensions somewhere else? Like /lib instead of /usr/lib or such. I'd check ./configure (or equivalent) options. And if still nothing, use strace to check where it really looks (log to a fil

Re: [qubes-devel] Split GPG: Enable Hidden Recipients

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Sun, Jul 23, 2017 at 12:36:39PM +, Eric Duncan wrote: > On Fri, Jul 21, 2017 at 8:16 PM Marek Marczykowski-Górecki wrote: > > > > >On Wed, Jul 19, 2017 at 08:31:42AM -0700, Eric Duncan wrote: > > > This

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #6

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Mon, Jul 24, 2017 at 03:01:38AM -0700, Andrew Morgan wrote: > On 07/24/2017 02:57 AM, Marek Marczykowski-Górecki wrote: > > 2. You should check (and at least log non-zero) exit code of > > qvm-file-trust. Failing to mark

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #6

o be configurable, thus I may have to keep the > >> space separation but escape spaces in the argument list. > >> > >> user@dev$ echo "hello there" this is a test for many words and xargs in > >> one go | xargs -s 24 ./argc > >> 5 > >>

Re: [qubes-devel] OVMF for R4.0

hat kernel included Most of it is easy to workaround for testing, but for OVMF to be really usable there is some more work to do. Anyway, help in this area will be greatly appreciated! - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which peopl

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #6

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Thu, Jul 20, 2017 at 04:29:25PM -0700, Andrew Morgan wrote: > On 07/20/2017 12:36 PM, Marek Marczykowski-Górecki wrote: > > On Wed, Jul 19, 2017 at 10:42:36PM -0700, Andrew Morgan wrote: > >> Hey Marek, > > > >>

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #6

> a few hundred milli-seconds, so we may need to scale our period for > calling qvm-file-trust with a list of files down a bit (unless python > can take in 10K+ full filepaths as arguments). As Jean-Philippe already said, better split to multiple calls. - -- Best Regards, Marek Marczykow

[qubes-devel] New Qubes 4.0 pre-release image [20170718]

rt, please check if it isn't reported already - both in qubes-issues and on a mailing list. Also, if you want to report something on the above "known issues" list - we know it already... [1] https://groups.google.com/d/msgid/qubes-devel/20170706214430.GA5042%40mail-itl - -- Best Regard

[qubes-devel] Changing qubes-core-admin license to LGPL v2.1+

nsent to this change.* (If you need more time to decide, simply reply within one month to tell us that you need more time.) [1] https://www.qubes-os.org/news/2016/11/30/qubes-commercialization/ - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in w

Re: [qubes-devel] Fedora 25 template for Qubes 3.2

see those *-portal). Also probably some new services were introduced. Maybe not all of them are needed in Qubes VM? We do have a long blacklist already... Generally I'd recommend starting with a process list, looking for things not that needed and try to a) kill, b) uninstall. - -- Best Regards,

Re: [qubes-devel] module-vchan-sink and alternate sample format (float32le specifically) question

ally need some other format, I think the way to go would be to add module parameter, and similar option for pacat-simple-vchan. But please, no in-band negotiation. Especially not in VM->dom0 direction. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the ord

Re: [qubes-devel] Re: 'Hypervisor Introspection defeated Eternalblue a priori'

for example As for examples what could possibly go wrong when adding anti-virus parsing whatever it can find, see here: https://bugs.chromium.org/p/project-zero/issues/detail?id=1252 - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people n

[qubes-devel] Re: Fedora 25 template for Qubes 3.2

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Thu, Jul 13, 2017 at 10:49:53PM +0200, Marek Marczykowski-Górecki wrote: > Hi all, > > We've uploaded Fedora 25 template for Qubes 3.2. It was already possible > to perform in-place upgrade[1], but now we also provide full template.

[qubes-devel] Fedora 25 template for Qubes 3.2

it internally, but you can help us here too! This is one of things to be included in Qubes 3.2.1. [1] https://www.qubes-os.org/doc/template/fedora/upgrade-24-to-25/ - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #6

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Tue, Jul 11, 2017 at 04:09:33PM -0700, Andrew Morgan wrote: > On 07/11/2017 04:03 PM, Marek Marczykowski-Górecki wrote: > > On Tue, Jul 11, 2017 at 03:39:57PM -0700, Andrew Morgan wrote: > >> On 07/11/2017 02:55 AM, Marek Ma

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #6

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Tue, Jul 11, 2017 at 03:39:57PM -0700, Andrew Morgan wrote: > On 07/11/2017 02:55 AM, Marek Marczykowski-Górecki wrote: > > On Mon, Jul 10, 2017 at 09:38:22PM -0700, Andrew Morgan wrote: > >> I also ran a few passes

Re: [qubes-devel] [GSoC] Qubes-MIME-Handlers Weekly Progress Report #6

ons for (instead check with our cli tool > and decide what to do based on its output) > > 2. If the file is deemed an untrusted file, attempt to open it with our > dvm-desktop handler > > 3. Failing that, display an error > > That should about cover the functionality. Hopefull

Re: [qubes-devel] Preliminary test image of Qubes 4.0

pers for your efforts. > Qubes OS got lots of attention in the last days/weeks in German IT media news. :) - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -BEGIN

[qubes-devel] Preliminary test image of Qubes 4.0

- we know it already... Download links: https://ftp.qubes-os.org/~marmarek/Qubes-DVD-x86_64-20170706.iso https://ftp.qubes-os.org/~marmarek/Qubes-DVD-x86_64-20170706.iso.asc (signed with my code signing key) - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messe

Re: [qubes-devel] [GSoC] Qubes-MIME-Handlers Weekly Progress Report #5

ecific > stuff but am now plugging away at covering all the methods. (...) Nice work! As usual, see comments on github. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad th

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #4

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Mon, Jul 03, 2017 at 10:36:18AM -0700, Andrew Morgan wrote: > On 07/03/2017 01:44 AM, Marek Marczykowski-Górecki wrote: > > On Sun, Jul 02, 2017 at 10:26:53PM -0700, Andrew Morgan wrote: > >> On 06/30/2017 02:06 PM, Marek Ma

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #4

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Sun, Jul 02, 2017 at 10:26:53PM -0700, Andrew Morgan wrote: > On 06/30/2017 02:06 PM, Marek Marczykowski-Górecki wrote: > > On Fri, Jun 30, 2017 at 03:36:33AM -0700, Andrew Morgan wrote: > >> It's (slightly past) that time

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #3

ion by default, and have -q for scripts. After all, command arguments should be optimized for interactive usage (if that is one intended use case), because this is where command length matter. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in wh

Re: [qubes-devel] Qubes 4.0

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Thu, Jun 29, 2017 at 06:41:33AM -0400, Outback Dingo wrote: > On Thu, Jun 29, 2017 at 6:32 AM, Outback Dingo <outbackdi...@gmail.com> wrote: > > On Thu, Jun 29, 2017 at 6:31 AM, Marek Marczykowski-Górecki > > <marma..

Re: [qubes-devel] Qubes 4.0

il.com> > > wrote: > >> > >> > >> On Jun 28, 2017 20:16, "Marek Marczykowski-Górecki" > >> <marma...@invisiblethingslab.com> wrote: > >> > >> -BEGIN PGP SIGNED MESSAGE- > >> Hash: SHA256 > >> > >> On We

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #3

est loader in core-admin. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQEcBAEBCAAG

Re: [qubes-devel] Qubes 4.0

guess templates are not included. Have you built them? Check qubes-src/linux-template-builder/rpm/noarch - if its empty, execute "make template", then "make iso" again. - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people

Re: [qubes-devel] Qubes 4.0

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Thu, Jun 29, 2017 at 01:04:12AM +0200, Wojtek Porczyk wrote: > On Thu, Jun 29, 2017 at 12:07:04AM +0200, Marek Marczykowski-Górecki wrote: > > On Wed, Jun 28, 2017 at 11:41:38PM +0200, Wojtek Porczyk wrote: > > > On Wed, Jun

Re: [qubes-devel] Qubes 4.0

to deliver on Andrew's promise with a slight delay. As always... - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? --

Re: [qubes-devel] Re: Stack-clash kernel vuln & patches

to have slightly cleaner git history - for example you have applied XSA 216 patch twice. After already being applied in QubesOS/qubes-linux-kernel repository... - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally

Re: [qubes-devel] Qubes 4.0 built from git fails

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Wed, Jun 28, 2017 at 11:31:48AM -0400, Outback Dingo wrote: > On Wed, Jun 28, 2017 at 7:03 AM, Marek Marczykowski-Górecki > <marma...@invisiblethingslab.com> wrote: > > -BEGIN PGP SIGNED MESSAGE- > > Hash: SHA25

Re: [qubes-devel] Qubes 4.0 built from git fails

] Error 1 > [root@localhost qubes-builder]# Run the build as normal user (it will use sudo where really necessary). - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thi

Re: [qubes-devel] QSB #31: Xen hypervisor vulnerabilities with unresearched impact (XSA 216-224)

actor is blocking upgrades (which > could eg. make the user switch to tor upgrades). Yes, here: https://github.com/QubesOS/updates-status/issues And in fact, testing period (7 days) for those packages just ended, so we'll move them to stable repository - -- Best Regards, Marek Marczyk

Re: [qubes-devel] [GSoC] Qubes-MIME-Handlers Weekly Progress Report #3

trusted" (assuming file marking daemon is working), right? I think this is a good thing. > # Going Forward > > We're currently heading into week 2 of 4 of what was supposed to be > patching the file managers, however now that it seems that's no longer > necessary, we're pretty much

[qubes-devel] Building security updates

cription-of-the-infrastructure - -- Best Regards, Marek Marczykowski-Górecki Invisible Things Lab A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQEcBAEBCAAGBQJZSbNIAAoJENuP0xzK19csFlsH/0

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #2

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Tue, Jun 20, 2017 at 10:49:50AM +0200, Marek Marczykowski-Górecki wrote: > On Mon, Jun 19, 2017 at 06:57:37PM -0700, Andrew Morgan wrote: > > On 06/14/2017 08:41 PM, Marek Marczykowski-Górecki wrote: > > > On Wed, Jun 14, 2017 a

Re: [qubes-devel] Re: [GSoC] Qubes-MIME-Handlers Weekly Progress Report #2

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Mon, Jun 19, 2017 at 06:57:37PM -0700, Andrew Morgan wrote: > On 06/14/2017 08:41 PM, Marek Marczykowski-Górecki wrote: > > On Wed, Jun 14, 2017 at 06:20:10PM -0700, Andrew Morgan wrote: > >> On 06/14/2017 03:11 PM, Marek Ma

Re: [qubes-devel] Routing Qubes master audio to a VM

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Mon, Jun 19, 2017 at 09:55:35AM +0100, Matt McCutchen wrote: > On Sun, 2017-06-18 at 20:56 +0200, Marek Marczykowski-Górecki wrote: > > #1 is definitely better for latency, but also from architecture point of > > view - ultimatel

Re: [qubes-devel] Re: 3.2.1 should be released

from https://github.com/marmarek/qubes-core-libvirt.git > release3.2... > fatal: Remote branch release3.2 not found in upstream origin > make: *** [Makefile:187: core-libvirt.get-sources] Error 1 Set builder to use QubesOS github account (GIT_PREFIX=QubesOS/qubes-). I don't kee

Re: [qubes-devel] Re: 3.2.1 should be released

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Mon, Jun 19, 2017 at 09:08:00AM +0200, Outback Dingo wrote: > On Sun, Jun 18, 2017 at 7:17 PM, Marek Marczykowski-Górecki > <marma...@invisiblethingslab.com> wrote: > > -BEGIN PGP SIGNED MESSAGE- > > Hash: SHA25

<    1   2   3   4   5   6   7   8   >