From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on atuin.qyliss.net X-Spam-Level: X-Spam-Status: No, score=-4.6 required=3.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS, MAILING_LIST_MULTI,RCVD_IN_DNSWL_LOW,SPF_HELO_PASS, T_SCC_BODY_TEXT_LINE autolearn=unavailable autolearn_force=no version=3.4.6 Received: from atuin.qyliss.net (localhost [IPv6:::1]) by atuin.qyliss.net (Postfix) with ESMTP id 8269010FBF; Sat, 16 Apr 2022 09:27:30 +0000 (UTC) Received: by atuin.qyliss.net (Postfix, from userid 496) id DE4B310F53; Sat, 16 Apr 2022 09:27:27 +0000 (UTC) Received: from out5-smtp.messagingengine.com (out5-smtp.messagingengine.com [66.111.4.29]) by atuin.qyliss.net (Postfix) with ESMTPS id 76D6810F51 for ; Sat, 16 Apr 2022 09:27:23 +0000 (UTC) Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 2978E5C00E9; Sat, 16 Apr 2022 05:27:22 -0400 (EDT) Received: from mailfrontend1 ([10.202.2.162]) by compute1.internal (MEProxy); Sat, 16 Apr 2022 05:27:22 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=alyssa.is; h=cc :cc:content-type:date:date:from:from:in-reply-to:message-id :mime-version:reply-to:sender:subject:subject:to:to; s=fm3; t= 1650101242; x=1650187642; bh=YBH0JDL0HD+v51F/lCnd83WI8cMomifISMp 9RV3rhsw=; b=Nrt8qKLjUSfMvUq9fmOGW7fylvJ/Yc6UZ13eVMFGYc19NNQ+xo7 iVdR+9rwHnoluIbb3LM62yatk0DOuZgq4B2BlYKdpwN2MD4t0/CeO2W5X906ZUbA CT2edErIXT4YDZv7K4GlWZR0Cd8/ixzTV19HJDguLCJt6OeZGIZG3IiSNh9EmO6K 7zcrOSmESmuwi/iXaFfd0AKM24hoOhmhHr65iqd9JPy3PDDG7rsHpFC9D+VjKl6V 4SczzhtEBzr0KtKCgCCpkqD/fmOKthcjxEMwzeFOazMOUg1TSwinpmwItlu1El2d KTQ9RdCxCFe3najK1pONJGl4TG8Y/win40g== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-type:date:date:from:from :in-reply-to:message-id:mime-version:reply-to:sender:subject :subject:to:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm1; t=1650101242; x=1650187642; bh=YBH0JDL0HD+v5 1F/lCnd83WI8cMomifISMp9RV3rhsw=; b=k2BmzKdf6oaTy2E7t9GLmv8b5bcgl EEU5ZkN5+koIqeg6CURIT+XDv4KVq7i3KKRaBpZYHBhLCRqMm6LhOFXO55C4O6Dn DDcNqZo+OFXD+srCeOCfAyhnCgAqCaXcRs2pC6I2YWAFRYUMEonJbO8xIeKh+06j ty75ZcWyWySMbRERDrNgSVQa8sw+htUHqds99c45MPAwpFYEQyiStc6sBhsEauYi Pw+ik8PIJHmsdTjJKr1H3tzf28PdA51Fa5kLTTGcZl5NhbU6QJKWw5zg0owyHSt/ npKUhtGYmqdzIxLErF0eTwjo0zE1JeSugyRB1aVGeY2tA34KwwodgbWoQ== X-ME-Sender: X-ME-Received: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvvddrudeljedgudeiucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurhepfffhvffukfggtggusehgtderredttdejnecuhfhrohhmpeetlhihshhsrgcu tfhoshhsuceohhhisegrlhihshhsrgdrihhsqeenucggtffrrghtthgvrhhnpeehffdufe eiiefguedthefffeehgfetgffhudeivdeludehgfduuedvueehkeduleenucffohhmrghi nhepghhithhhuhgsrdgtohhmpdhrohhstghiughushdrtghomhdpshhpvggtthhruhhmqd hoshdrohhrghenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhepmhgrihhlfhhr ohhmpehqhihlihhsshesvghvvgdrqhihlhhishhsrdhnvght X-ME-Proxy: Received: by mail.messagingengine.com (Postfix) with ESMTPA; Sat, 16 Apr 2022 05:27:21 -0400 (EDT) Received: by eve.qyliss.net (Postfix, from userid 1000) id 629B534D; Sat, 16 Apr 2022 09:27:18 +0000 (UTC) Date: Sat, 16 Apr 2022 09:27:18 +0000 From: Alyssa Ross To: discuss@spectrum-os.org, devel@spectum-os.org Subject: Puck is joining Spectrum as a paid Wayland developer Message-ID: <20220416092718.isdz7343oauplrof@eve> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="zkw5hsk3mmpobons" Content-Disposition: inline Message-ID-Hash: 3VYGG3QLV37IJDQL3SZZMTOTJ5ZZKZFL X-Message-ID-Hash: 3VYGG3QLV37IJDQL3SZZMTOTJ5ZZKZFL X-MailFrom: qyliss@eve.qyliss.net X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-config-1; header-match-discuss.spectrum-os.org-0; header-match-discuss.spectrum-os.org-1; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header CC: Puck Meerburg X-Mailman-Version: 3.3.5 Precedence: list List-Id: General high-level discussion about Spectrum Archived-At: List-Archive: List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: --zkw5hsk3mmpobons Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Since I started working on Spectrum, one of the things I've been most excited about has been the potential of Wayland and related technologies to provide a level of integration and cohesion that hasn't been seen before in a compartmentalized operating system. It's the main thing that people who are aware of Spectrum but are not closely following its development know the project for. But people who /have/ been following my work closely will have noticed that I haven't had much to say about it for a while. My original grant agreement covered some basic Wayland functionality. With that funding, I was able to learn about, run (to my knowledge, for the first time outside the context of Chromium OS development) and experiment with virtio wayland. I produced documentation and a portable demo, that helped give other developments like Thomas's wayland-proxy-virtwl[1][2] their start. We're on a solid track to have basic Wayland functionality for applications running in isolated VMs, including things like inter-application copy/paste, and possibly optional GPU acceleration. But to have a system that provides the level of security I want Spectrum to have, there's still a lot of work to do. New protocols need to be designed, discussed, and implemented, not just in Spectrum, but in the Wayland ecosystem in general, to make it possible to do things like identify which application a Wayland window belongs to, or manage access to the clipboard. None of this is so big it's infeasible for Spectrum as a project, but it's a big time investment not covered by my original grant agreement for Spectrum, and so I've been shying away from it in favour of work with a more immediate return on investment, like my recent work creating an installer and live image for Spectrum, or figuring out how VM configuration will work. Recently, though, the stars aligned in a way that mean we should be able to make a lot of progress on these bigger Wayland developments much quicker than I was otherwise expecting. After a couple of months of working to make it happen, I'm so excited to finally be able to announce that we have secured a modest amount of additional funding to enable Puck Meerburg to work on Spectrum with me, focusing entirely on Wayland work. She will be designing the protocols we need, producing reference implementations, discussing them with upstream with an aim to get them standardised, and so on. One of the most exciting things about the work we have planned for Puck is that none of it is Spectrum-specific. In keeping with the general development philosophy for Spectrum, we want to move the ecosystem forward for everyone, rather than developing Spectrum-specific hacks that would be useless if the project ever wasn't able to continue. Puck is the ideal person to be working on this. She was already our resident Wayland expert, being able to answer just about any question I had when doing Wayland work, and even providing some patches of her own[3]. She has experience with standards processes through her work on ActivityPub. She has an amazing talent for finding bugs =E2=80=94 just look at her list of Nix discoveries[4], and experience doing security researcher =E2=80=94 she recently discovered a "critical"-rated security is= sue in Mastodon[5]. And she's proven over and over her ability to jump into an unfamiliar problem space and diagnose an issue at an amazing speed. I'm confident that having Puck spending a lot of time working with Spectrum is going to be a huge boon to the project even outside of the Wayland work she's specifically funded to work on. A final note: the grant funding for both Puck and myself expires at the end of September. What happens after that point is yet to be determined. Given the level of donations I currently receive, unless there's a sudden drop in my donation income, I'll should still be able to spend at least most of my time working on Spectrum, regardless of what happens with other funding sources. As I've said before, donation income is also extremely important to provide a level of stability and flexibility that grant funding just can't =E2=80=94 it's important to know that I'm not going to be broke becau= se it's taking longer than expected to implement something, or there's something unanticipated I need to do first that I don't have funding for. It would be really helpful if we could get some of that stability and flexibility for Puck as well, especially looking towards what happens once our grant funding is up. So Puck is now also accepting donations, and if you'd like to help Spectrum push forward Wayland security, please consider sponsoring her. https://github.com/sponsors/puckipedia I'm so excited for where things go from here. [1]: https://github.com/talex5/wayland-proxy-virtwl/ [2]: https://roscidus.com/blog/blog/2021/03/07/qubes-lite-with-kvm-and-wayl= and/ [3]: https://spectrum-os.org/git/nixpkgs/tree/pkgs/os-specific/linux/chromi= um-os/sommelier/0011-sommelier-use-stable-xdg-shell-protocol.patch?h=3D8f34= d0d679ed15bc04dc3aa5f1f8777a2a110e34 [4]: https://github.com/NixOS/nix/issues?q=3Dauthor%3Apuckipedia+is%3Aissue [5]: https://github.com/mastodon/mastodon/releases/tag/v3.4.6 --zkw5hsk3mmpobons Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAABCAAdFiEEH9wgcxqlHM/ARR3h+dvtSFmyccAFAmJai/MACgkQ+dvtSFmy ccChNQ//cdyQm1nsgGj83HiMnO5z//EcACSn2lL/u8LAqosKDEszG2CcMzLgjfNt NaIer2WwB8WFBwpC4CTAYNQ5R5mTxYZP5xGb8MxPo+GlV7a4MSvvxHYyun/LPtWt D7AQRf4ebuXpDpl4891tgriIP/cCVjiA22hbHdPwMvxdzDpbil6FvMM02AcHQ6A/ ryytXAtCWgQfk6Wc7xGr6uVBgc8038S3nFeLKN54S0UrXvgyQQjkz4k5xYVByT9F E8VITa5tvf7eRKQoMg8qYiI7i00ElQfvmrPslGRgv/Nz9oIbU/V/+ShRGxup1WAX 9XQ3zIyM/7YPsEIXihzcKgrQ44SW0t8dII+lUIHIRQbSHyMOxN55gel3FFl1BNjx FprLdtxE0nyv2//UTh+0O/NexuUNhu2y1xYgb8A1NGpq1MMLU35uDaTPiaKfYDHj VF8WIEFQSrVlnisTfD+WIM8vFyd0N43eHZsjPGNgB2BB4XSR67cCRHQI0c5uzimq 4iEug9VvR2ZkL8PHXA02dWGe9kw0JBa7RrbipwIY3qk0rnXyGxMy5qvVDnFL1xBW kgyRkEwh5Y6EuUrCe77d93gP1Rsnu0y51ZFLqeq1U/EDQj5ayeCg8gu8lgKOKnzI rGVNxb1tMEd0BaMRIPdaFY+LK6N1K/+R8ZxMjmWdO/MKx6LlW4w= =iG3e -----END PGP SIGNATURE----- --zkw5hsk3mmpobons--