User:Maffblaster/Gentoo ideas

From Gentoo Wiki
Jump to:navigation Jump to:search

This page lists various improvement ideas I have for Gentoo (as a distribution).

Portkey - Cool name for software.

Python Zen


Apport is program that catches crash dumps and renames them according to some qualifying parameters.

Also look into Whoopsie.


repo.presync.d/* hooks

Presently Portage has a repos.postsync.d/ hook directory in /etc/portage for post-repository syncs. This enables custom scripts to act on various repositories after a sync. The primary purpose for repos.postsync.d/ scripts is to generate package metadata, which in turn speeds up Portage's operations.

Similarly, the repos.presync.d/ directory could enable pre-sync hooks to be executed before Portage syncs the repositories. There may be little benefit to having this option, however some users may which to do things like "snapshot" the repository before syncing.

I guess the same thing could be done with a cron job or timer.

Btrfs snapshot of rootfs before @world update

Create a script (emerge wrapper? pre/post hook?) to issue a rootfs snapshot before @world updates. Safely remove created snapshot post update.

New options

  • Output (--list?) the packages in a set, display a count of the total installed packages in the set. Example:
root #emerge --list @world
This can presently be performed with equery:
user $equery list @world
  • Add a --verify option to verify the integrity of installed packages. The digests seem to already exist; Portage just needs to reference them. Would be similar to the qcheck command from app-portage/portage-utils, but accepts sets/package atoms/globs. Examples:
root #emerge --verify @profile
root #emerge --verify @system
root #emerge --verify @world
root #emerge --verify www-client/chromium

Better progress indicators

Portage could have a progress bar for update when updating a predefined set; particularlly when using the the --jobs option.

Something like:

CODE Progress bar for Portage
# Demo code

Can be enabled/disabled via the FEATURE variable (disabled by default for now).

FILE /etc/portage/make.confProgress bar for Portage

GPG signing for binpkgs (on binhost)

Now that Portage includes GPG signing by developers on all ebuilds in the Gentoo ebuild repo it is possible to verify the integrity of upstream package releases (mostly tarballs) by running:

root #emerge --fetchonly --emptytree @world

It is possible to get package releases directly from upstream (instead of from the Gentoo distfile mirrors) by enabling

Currently system administrators have the option of downloading the source tarball directly from upstream (via RESTRICT="mirror"). From Gentoo mirrors (via GENTOO_MIRRORS).

If they have setup a binary package server (after setting USE defaults across the board). For upstream projects/developers who offer a GPG signed checksum, it would be of high quality and value to have Portage automatically ensure the tarball has not been compromised. This would probably be a new feature to include in a future EAPI release.

binpkg tarballs

Right now Portage creates tbz2 tarballs for binpkgs even when other forms of compression are used to create the files (xz, gz, lz, etc.). Portage should generate binpkgs with a corresponding extension whenever formatting is adjusted in make.conf:

  • gz = tgz
  • lz = tlz
  • xz = txz


#emerge --sync
Performing Global Updates

(Could take a couple of minutes if you have a lot of binary packages.)

 .='update pass'  *='binary update'  #='/var/db update'  @='/var/db move'
 s='/var/db SLOT move'  %='binary move'  S='binary SLOT move'
 p='update /etc/portage/package.*'

Userspace hardening

  • Disable udev (new device creation/management) when the screen is locked. This way devices that can harm the system cannot be created unless there is a known user at the keyboard.
    • If you have to replace/re-plug the keyboard you'll be in trouble, however it would avoid things like PoisonTap, which is a newer example of this.

Zorin OS

It would be nice to see Zorin OS shell themes available in Gentoo.

Subgraph OS

I might make use of the user space application firewall present in Subgraph OS.

oz looks pretty neat as well.

Virtual workspaces in VR

Get a VR headset. Get an open source display engine. Create a virtual workspace. Configure the display however you want. Display would forward windows directly to the canvas in VR. Could show as physical monitors in a virtual space, or as a 180 or 360 degree curved environment.

I imagine this will not be more useful until VR headsets attain higher resolution, since the primary mode in this case would be viewing text.

eclean improvements

eclean -d distfiles should remove old items that are no longer listed in the main repo. It should at least ask if the user would like to clean them.

user $eclean -d distfiles
 * Building file list for distfiles cleaning...
 * Your distfiles directory was already clean.

   The following unavailable installed packages were found
             virtual/perl-CPAN-Meta-2.150.5 ...distfile name(s) not known/saved
             virtual/perl-CPAN-Meta-Requirements-2.140.0 ...distfile name(s) not known/saved
             virtual/perl-CPAN-Meta-YAML-0.18.0 ...distfile name(s) not known/saved
             virtual/perl-Carp-1.400.0 ...distfile name(s) not known/saved
             virtual/perl-Compress-Raw-Zlib-2.69.0 ...distfile name(s) not known/saved
             virtual/perl-Data-Dumper-2.160.0 ...distfile name(s) not known/saved
             virtual/perl-Digest-1.170.0-r6 ...distfile name(s) not known/saved
             virtual/perl-Exporter-5.720.0-r1 ...distfile name(s) not known/saved
             virtual/perl-ExtUtils-CBuilder-0.280.225 ...distfile name(s) not known/saved
             virtual/perl-ExtUtils-Install-2.40.0-r1 ...distfile name(s) not known/saved
             virtual/perl-ExtUtils-MakeMaker-7.100.100_rc ...distfile name(s) not known/saved
             virtual/perl-ExtUtils-Manifest-1.700.0-r2 ...distfile name(s) not known/saved
             virtual/perl-ExtUtils-ParseXS-3.310.0 ...distfile name(s) not known/saved
             virtual/perl-File-Path-2.120.100_rc ...distfile name(s) not known/saved
             virtual/perl-File-Spec-3.630.0 ...distfile name(s) not known/saved
             virtual/perl-File-Temp-0.230.400-r4 ...distfile name(s) not known/saved
             virtual/perl-Getopt-Long-2.480.0 ...distfile name(s) not known/saved
             virtual/perl-IO-1.360.0 ...distfile name(s) not known/saved
             virtual/perl-JSON-PP-2.273.0-r1 ...distfile name(s) not known/saved
             virtual/perl-MIME-Base64-3.150.0-r1 ...distfile name(s) not known/saved
             virtual/perl-Module-Metadata-1.0.31 ...distfile name(s) not known/saved
             virtual/perl-Parse-CPAN-Meta-1.441.700 ...distfile name(s) not known/saved
             virtual/perl-Perl-OSType-1.9.0 ...distfile name(s) not known/saved
             virtual/perl-Pod-Simple-3.320.0 ...distfile name(s) not known/saved
             virtual/perl-Scalar-List-Utils-1.420.200_rc ...distfile name(s) not known/saved
             virtual/perl-Storable-2.560.0 ...distfile name(s) not known/saved
             virtual/perl-Test-Harness-3.360.0 ...distfile name(s) not known/saved
             virtual/perl-Text-ParseWords-3.300.0-r1 ...distfile name(s) not known/saved
             virtual/perl-Time-Local-1.230.0-r3 ...distfile name(s) not known/saved
             virtual/perl-parent-0.234.0 ...distfile name(s) not known/saved
             virtual/perl-podlators-4.70.0 ...distfile name(s) not known/saved
             virtual/perl-version-0.991.600 ...distfile name(s) not known/saved
             virtual/python-ipaddress-1.0 ...distfile name(s) not known/saved