[Testing Update] 2023-10-11 - Pipewire, Mattermost, Qt5, Haskell, Python

• As you might have seen some of our team were able to attend FOSDEM 2023 and the conference proved to be incredibly productive for us. See our blog post for more.
• Arch Linux and Manjaro on TUXEDO computers - Arch Linux and Manjaro on TUXEDO computers - TUXEDO Computers
• Linux, Judo, unicycles and … Baywatch?! How Vivaldi and Manjaro aim above the ordinary. | Vivaldi Browser
• Framework | Spotlight on Manjaro Linux
• Protect your personal data, keep yourself safe (unlimited devices): 82% off + 2 mo. FREE

You will need to rebuild any AUR Python packages that install files to site-packages or link to libpython3.10.so.

Print a list of of packages that have files in /usr/lib/python3.10/ :

pacman -Qoq /usr/lib/python3.10/

Rebuild them all at once:*

pamac build $(pacman -Qoq /usr/lib/python3.10)

* Note that if any fail to build, you’ll have to rebuild what’s remaining one or a few at a time.

Use rebuild-detector to see if anything else needs to be rebuilt:

checkrebuild

AUR (Arch User Repository) packages are neither supported by Arch nor Manjaro. Posts about them in Announcement topics are off-topic and will be flagged, moved or removed without warning.

If you had the old glibc-locales package from the extra repo installed, the update to the new core package will need manual intervention:

 sudo pacman -Syu glibc-locales --overwrite /usr/lib/locale/\*/\*

2023-09-22 - David Runge

With shadow >= 4.14.0, Arch Linux’s default password hashing algorithm changed from SHA512 to yescrypt [1].

Furthermore, the umask [2] settings are now configured in /etc/login.defs instead of /etc/profile.

This should not require any manual intervention.

Reasons for Yescrypt

The password-based key derivation function (KDF) and password hashing scheme yescrypt has been chosen due to its adoption (readily available in libxcrypt, which is used by pam [3]) and its stronger resilience towards password cracking attempts over SHA512.

Although the winner of the Password Hashing Competition [4] has been argon2, this even more resilient algorithm is not yet available in libxcrypt [5][6].

Configuring yescrypt

The YESCRYPT_COST_FACTOR setting in /etc/login.defs is currently without effect, until pam implements reading its value [7]. If a YESCRYPT_COST_FACTOR higher (or lower) than the default (5) is needed, it can be set using the rounds option of the pam_unix [8] module (i.e. in /etc/pam.d/system-auth).

General list of changes

• yescrypt is used as default password hashing algorithm, instead of SHA512
• pam honors the chosen ENCRYPT_METHOD in /etc/login.defs and does not override the chosen method anymore
• changes in the filesystem (>= 2023.09.18) and pambase (>= 20230918) packages ensure, that umask is set centrally in /etc/login.defs instead of /etc/profile

[1] yescrypt - scalable KDF and password hashing scheme

[2] umask(1p) — Arch manual pages

[3] PAM - ArchWiki

[4] https://www.password-hashing.net/

[5] [RFC] Add argon2 backend. by ferivoz · Pull Request #113 · besser82/libxcrypt · GitHub

[6] Add support for Argon2 by maandree · Pull Request #150 · besser82/libxcrypt · GitHub

[7] pam_unix: Support reading YESCRYPT_COST_FACTOR from /etc/login.defs · Issue #607 · linux-pam/linux-pam · GitHub

[8] pam_unix(8) — Arch manual pages

– Arch Linux - News: Changes to default password hashing algorithm and umask settings

With the filesystem 2023.09.03-1 and bashrc-manjaro 5.1.016-3 updates there may be pacnews for the following files if you have local modifications:

• /etc/shells
• /etc/bash.bashrc

This would be a good time to test @Ste74’s new manjaro-pacnew-checker program. See Check and manage pacnew files for more info.

2023-08-19 - Robin Candau

As of ansible-core 2.15.3, upstream moved documentation and examples to a separate dedicated repository (see the related changelogs).
This means that, starting from version 2.15.3 the ansible-core package will stop shipping documentation and a default configuration example under /etc/ansible/ansible.cfg.

Regarding the documentation, it is available online: https://docs.ansible.com/
As for the configuration file, as explained in the wiki, a base config can be generated with the following command:

ansible-config init --disabled > ansible.cfg

After updating from ansible-core <= 2.15.2-1 to >= 2.15.3-1, everyone using a custom global Ansible configuration file stored under /etc/ansible/ansible.cfg will have their configuration saved as a pacsave file.
To restore it, run the following command:

mv /etc/ansible/ansible.cfg.pacsave /etc/ansible/ansible.cfg

– Arch Linux - News: ansible-core >= 2.15.3-1 update may require manual intervention

There seems a performance regression of posix_memalign in Glibc-2.38. More info here: 30723 – Poor posix_memalign performance with long free lists

Workarounds:

You can try another malloc like mimalloc or jemalloc as workaround. Install mimalloc and start mpv with:

LD_PRELOAD=/usr/lib/libmimalloc.so mpv

or

LD_PRELOAD=/usr/lib/libjemalloc.so mpv

For folks that dont want to change things too much … an apparent workaround is to set a lowish cache size:

mkdir -p ~/.config/mpv && printf '\ndemuxer-max-bytes=50MiB\ndemuxer-max-back-bytes=25MiB\n' | tee -a ~/.config/mpv/mpv.conf

When upgrading from budgie-desktop 10.7.2-5 to 10.7.2-6, the package mutter43 must be replaced with magpie-wm, which currently depends on mutter. As mutter43 conflicts with mutter, manual intervention is required to complete the upgrade.

First remove mutter43, then immediately perform the upgrade. Do not relog or reboot between these steps.

pacman -Rdd mutter43
pacman -Syu

Error: Failed to commit transaction:
conflicting files:
grub: /usr/bin/update-grub already exists in filesystem (owned by grub-update)

sudo pacman -Rdd grub-update
sudo pacman -Suu grub

[1] [2] [3]

[Unstable Update] 2023-05-21 - Repository changes - #199 by Zesko

Kernel 6.4.4, 6.4.5 and 6.1.39 LTS are affected:
The known issue and report:

• [SOLVED] Linux 6.4.4 introduces high IO-Wait CPU operations on one ... / Kernel & Hardware / Arch Linux Forums
• FS#79177 : Kernel 6.4.4 has regression with high iowait on one core
• It is fixed in Kernel 6.4.6

The latest lib32-libgudev update does not cooperate with the version of the same package provided by steam, and steam seems to attempt making calls to both leading to the crash.

Details: bug report, arch task, arch forum thread.

• Workaround #1 (causes steam to avoid making any calls to lib32-libgudev by using a different library altogether)

  • sudo pacman -S lib32-libnm

• Workaround #2 (forces steam and any other application to always use the new lib32-libgudev)

  • sudo pacman -S lib32-libudev0-shim

• Workaround #3 (use steam-native-runtime, which doesn’t have the issue)

  • sudo pacman -S steam-native-runtime

pamac upgrade                                                                                                              
Preparing...
==== AUTHENTICATING FOR org.manjaro.pamac.commit ====
Authentication is required to install, update, or remove packages
Authenticating as:
Password: 
==== AUTHENTICATION COMPLETE ====
Synchronizing package databases...
Warning: installing dav1d (1.2.1-1) breaks dependency 'libdav1d.so=7-64' required by ffmpeg
Add ffmpeg to remove
Error: Failed to prepare transaction:
could not satisfy dependencies:
- removing ffmpeg breaks dependency 'libavcodec.so=60-64' required by chromaprint
- removing ffmpeg breaks dependency 'libavformat.so=60-64' required by chromaprint
- removing ffmpeg breaks dependency 'libavutil.so=58-64' required by chromaprint
- removing ffmpeg breaks dependency 'libswresample.so=4-64' required by chromaprint
- removing ffmpeg breaks dependency 'ffmpeg' required by chromium
- installing dav1d (1.2.1-1) breaks dependency 'libdav1d.so=7-64' required by ffmpeg4.4
- if possible, remove ffmpeg4.4 and retry
- removing ffmpeg breaks dependency 'libavdevice.so=60-64' required by mpv
- removing ffmpeg breaks dependency 'libavfilter.so=9-64' required by mpv
- removing ffmpeg breaks dependency 'libswscale.so=7-64' required by mpv
Warning: dav1d: downgrading from version 1.3.0-1 to version 1.2.1-1
Resolving dependencies...
Checking inter-conflicts...
Error: Failed to prepare transaction:
could not satisfy dependencies:
- removing ffmpeg breaks dependency 'libavcodec.so=60-64' required by chromaprint
- removing ffmpeg breaks dependency 'libavformat.so=60-64' required by chromaprint
- removing ffmpeg breaks dependency 'libavutil.so=58-64' required by chromaprint
- removing ffmpeg breaks dependency 'libswresample.so=4-64' required by chromaprint
- removing ffmpeg breaks dependency 'ffmpeg' required by chromium
- installing dav1d (1.2.1-1) breaks dependency 'libdav1d.so=7-64' required by ffmpeg4.4
- if possible, remove ffmpeg4.4 and retry
- removing ffmpeg breaks dependency 'libavdevice.so=60-64' required by mpv
- removing ffmpeg breaks dependency 'libavfilter.so=9-64' required by mpv
- removing ffmpeg breaks dependency 'libswscale.so=7-64' required by mpv

grep 'dav1d' /var/log/pacman.log

...
[2023-06-15T20:47:43+0200] [ALPM] upgraded dav1d (1.2.0-1 -> 1.2.1-1)
[2023-10-11T18:16:23+0200] [ALPM] upgraded dav1d (1.2.1-1 -> 1.3.0-1)