User:Adamwill/Draft CoreOS Basic Release Criteria: Difference between revisions

Violations of this criterion for release-blocking images are considered "automatic blockers", they do not have to go through the review process. See QA:SOP_blocker_bug_process#Automatic_blockers for more details on the automatic blocker procedure.

• Proposed 2012-01-30, implemented 2012-02-20
• Test case: QA:Testcase_Mediakit_ISO_Checksums

Supported architectures are the Fedora primary architectures. All images are not necessarily expected to be available for all primary architectures.

Release-blocking images must boot from all system firmware types that are commonly found on the primary architectures. For the x86_64 architecture, UEFI with Secure Boot configured in accordance with Microsoft's Windows certification requirements is considered a 'commonly found' firmware type.

Supported ARM platforms are those listed by the ARM team at Architectures/ARM/Supported_Platforms.

Supported IoT platforms are those listed by the IoT team here.

Release-blocking cloud images must boot in the Fedora OpenStack Cloud and in Amazon EC2.

Release-blocking live and dedicated installer images must boot when written to a USB stick with at least one of the officially supported methods. Release-blocking ARM disk images must boot when written to a medium bootable by the platform under test, according to the instructions for the platform under test.

System-specific bugs don't necessarily constitute an infringement of this criterion - for instance, if the image fails to boot because of a bug in some specific system's firmware, that is unlikely to constitute a violation unless the system is an extremely popular one. See Blocker_Bug_FAQ for more discussion of this.

• demoting optical support 2016-12-06, implementation 2017-01-17

Test cases:

• QA:Testcase_Boot_default_install
• QA:Testcase_USB_stick_Live_luc
• QA:Testcase_USB_stick_Live_litd
• QA:Testcase_USB_stick_Live_dd
• QA:Testcase_USB_stick_DVD_litd
• QA:Testcase_USB_stick_DVD_dd

The boot menu for all supported installer and live images should include an entry which causes both installation and the installed system to attempt to use a generic, highly compatible video driver (such as 'vesa').

System-specific bugs don't necessarily constitute an infringement of this criterion - for instance, if the installer or desktop fails to start because of a bug in support for some specific graphics card, that is unlikely to constitute a violation. See Blocker_Bug_FAQ for more discussion of this.

• Bugzilla: #614488 was proposed as Alpha blocker for F14. Bug was fixed before before blocker status was confirmed or rejected.
• Proposed 2010-07-16.
• Implemented 2010-07-23.
• Rewritten as part of major Fedora 19 criteria revision.
• 'Basic graphics' mode portion split between Beta and Final 2019-04-02
• Test cases: see test cases for "Release-blocking images must boot"

Supported network hardware is hardware for which the Fedora kernel includes drivers and, where necessary, for which a firmware package is available. If support for a commonly-used piece or type of network hardware that would usually be present is omitted, that may constitute a violation of this criterion, after consideration of the hardware-dependent-issues|normal factors for hardware-dependent issues. Similarly, violations of this criteria that are hardware or configuration dependent are, as usual, subject to consideration of those factors when determining whether they are release-blocking.

Common wireless network configurations using supported hardware as defined above are covered by this criterion. This includes access to home and enterprise wireless networks using 802.11 series connection protocols and WPA2 and WPA3 personal and enterprise security protocols. Bugs that are specific to particular hardware or configurations will be assessed according to hardware-dependent-issues|the normal considerations for such issues.

• Proposed 2020-08-21.
• Revised 2022-06-03.
• Implemented 2022-07-18.
• Test cases: casually covered by multiple test cases that require networking, but specific test cases are missing

As there are many different VPN server applications and configurations, blocker reviewers must use their best judgment in determining whether violations of this criterion are likely to be encountered commonly enough to block a release, and if so, at which milestone. As a general principle, the more people are likely to use affected servers and the less complicated the configuration required to hit the bug, the more likely it is to be a blocker.

• Proposed 2020-08-21.
• Revised 2022-06-03.
• Implemented 2022-07-18.
• Test cases: casually covered by multiple test cases that require networking, but specific test cases are missing

'Launched normally' means from the boot menu on a dedicated installer image, and from the desktop on a live image.

• Test cases: see test cases for "Release-blocking images must boot"

This criterion only covers direct repository URLs ("baseurl"), and doesn't cover mirrorlist or metalink URLs.

• Dropped FTP and clarified HTTPS on 2021-07-01

Test cases:

• QA:Testcase_install_repository_Mirrorlist_default
• QA:Testcase_install_repository_Mirrorlist_graphical
• QA:Testcase_install_repository_HTTP/FTP_graphical
• QA:Testcase_install_repository_HTTP/FTP_variation

Test case: QA:Testcase_Boot_default_install

This criterion covers showstopper bugs in the installer for which there isn't any other specific criterion: obviously, it can't 'complete an installation' if there's a showstopper. However, it does not mean that any failed installation test at all constitutes a release blocking issue: an installer which works fine in most cases but crashes when you attach it to a Hitachi hard disk on a wet Thursday is still 'able to complete an installation'.

Test cases:

• QA:Testcase_Anaconda_User_Interface_Graphical
• QA:Testcase_Anaconda_User_Interface_Text
• QA:Testcase_Anaconda_User_Interface_VNC
• QA:Testcase_Anaconda_User_Interface_VNC_Vncconnect

• Modification from 'default package set' proposed 2012-09-06.
• Idea to cover the release blocking desktops and minimal package set proposed 2012-09-06, implemented 2012-09-26.
• Reversion back to covering only default package set (due to deliverable changes as part of Fedora.next): proposed 2014-12-23, implemented 2015-01-30.
• Test case: QA:Testcase_Boot_default_install (for each covered image)

Disks not selected as installation targets must not be affected by the installation process in any way.

• Proposed 2012-10-01, implemented 2012-10-02.
• Test case: QA:Testcase_partitioning_guided_multi_select

'Locally connected storage interfaces' include PATA, SATA, NVMe, SAS, and SCSI.

Test cases:

• QA:Testcase_install_to_SATA
• QA:Testcase_install_to_PATA
• QA:Testcase_install_to_NVMe
• QA:Testcase_install_to_SAS
• QA:Testcase_install_to_SCSI

...well, so long as the disk is big enough, of course. It must work whether the disk is formatted or not and whether or not it contains any existing data - but before Beta, it's OK if it can only install to a disk with existing data by overwriting it.

• Proposed 2012-10-01, implemented 2012-10-02.
• Test case: QA:Testcase_partitioning_guided_empty

• Part of Fedora 22 Server release criteria drafts, added 2014-06-26
• Test case: QA:Testcase_kickstart_user_creation

• Proposed 2012-01-30, implemented 2012-02-20.
• Clarified HTTPS on 2021-07-01
• Test case: QA:Testcase_Anaconda_updates.img_via_URL

No, silly - we mean crashes, really. This is about the crash reporting capabilities: when the installer crashes, it should pop up some dialogs that let you send a report containing data on the crash.

Test case: QA:Testcase_Anaconda_save_traceback_to_bugzilla

This criterion applies only to the recommended Fedora virtualization tools - the qemu/kvm - libvirt - virt-manager stack.

• Initial virtualization criterion was part of initial Fedora 13 criteria revision
• Revision to explicitly cover both guest and host functionality was proposed 2011-09-07
• Proposal was heavily amended after discussion, particularly a suggestion by Albert Graham, to be more concise and to cover guest functionality when host runs previous release
• Amended proposal was implemented 2011-10-14
• Moved from Beta to Alpha 2017-04-05
• Test case: QA:Testcase_Install_to_Previous_KVM

In all of the above cases, if any system partitions were encrypted as part of the installation, the boot process must prompt for the passphrase(s) and correctly unlock the partition(s) when provided with the correct passphrase(s).

In all of the above cases, the boot should proceed without any unexpected user intervention being required. On a graphical install, if the user explicitly intervenes to prevent graphical boot by passing a bootloader parameter, the non-graphical requirement comes into effect.

System-specific bugs don't necessarily constitute an infringement of this criterion - for instance, if the system fails to boot because of a bug in the support some specific system's hardware, that is unlikely to constitute a violation unless the system is an extremely popular one. See Blocker_Bug_FAQ for more discussion of this.

These criteria can be used to cover known severe issues in applying post-release updates. For instance, if there was a bug that meant the system would install and boot fine but would break as soon as the user ran 'yum update', that may well be covered by these criteria.

On the first boot after installation, a utility for creating user accounts and other configuration may (may, not must) run prior to a log in screen appearing.

On configurations where their use is expected and documented, e.g. Fedora CoreOS deployments, provisioning utilities like ignition are considered to satisfy the "working mechanism to create a user account" requirement.

• Requirement for graphical installs to boot to desktop was in original Fedora 13 criteria revision.
• Changes to cover non-graphical installs were proposed 2010-08-12, implemented 2010-08-16.
• Changes to cover firstboot were proposed 2011-03-17, implemented 2011-03-29.
• Change to stop requiring text mode firstboot to work was proposed 2011-08-08, implemented 2011-08-17.
• Wording was simplified and clarified as part of the major Fedora 19 criteria revision.
• Change to reflect F19 firstboot->initial-setup/gnome-initial-setup migration and anaconda user creation proposed 2013-07-18, implemented 2013-07-24.
• Time limit for initial setup was proposed 2021-03-14, approved 2021-04-12
• Test cases:
  • QA:Testcase_Anaconda_user_creation
  • QA:Testcase_base_initial_setup
  • QA:Testcase_base_startup

This criterion is not intended to require there are no broken services in the distribution, but that the init daemon itself works. The criterion is not violated by a buggy service script, only if the init daemon itself is broken. A sufficiently-important service being broken might constitute a violation of another criterion - for instance, a service for a logging daemon being broken might violate the requirement that logging works - but not this one.

• Proposed 2014-07-04, revised proposal 2014-07-07
• Test case: QA:Testcase_base_service_manipulation

This includes - but is not necessarily limited to - non-module packages, official module streams that are enabled (including any enabled by default in a release-blocking deployment), and rpm-ostree updates and rollbacks for any release-blocking rpm-ostree-based deployment. The criterion should also be reasonably interpreted to cover any other form of software distribution that we invent in future and include in an otherwise release-blocking deployment of Fedora, but have not yet updated this text to specifically refer to.

Appropriately means that the relevant software mechanism(s) for any given deployment must choose the software to be installed, updated or removed in ways that are broadly in line with the user's intent and typical expectations, and the project's intent as to which software should be provided from which repositories etc. To give a specific example of why this wording is included, there was previously a case where newer package versions from modules were being installed as 'updates' to systems which did not have those modules installed, only the package with the same name from the non-modular system repositories. This would be an example of 'inappropriate' updating that violated this criterion. Other examples might include installing packages from the wrong module stream, or failing to include available updates from an enabled official repository.

A bug in some particular package will not usually constitute a violation of this criterion. It's really about the mechanism functioning correctly. So if the default console package manager is working fine, but the update transaction fails because there happen to be two conflicting packages in the repositories, that's not a release blocking problem.

On the other hand, it is established by precedent - e.g. RHBZ #1261569 - that a bug which prevents newly-installed kernels from becoming the default boot choice is considered to violate this criterion, especially if that bug itself cannot be satisfactorily fixed with an update. Similar cases - where a media/installer bug prevents a package update from behaving as intended, and the consequences are significant - may well also constitute violations.

This criterion applies only to Fedora-provided and controlled update mechanisms for Fedora-provided content. It should not be interpreted to cover any other 'mechanisms' which may be included in the distribution (e.g. if an application includes a plugin system and an install/remove/update mechanism for those plugins, that mechanism is not covered here).

• Requirement was in force for 'default desktop' in original Fedora 13 criteria revision.
• Modification to cover 'release-blocking desktops' was proposed 2011-05-17, implemented 2011-05-31.
• Modification to move graphical update requirement to Beta or Final agreed during 2013-09-18 blocker review meeting.
• Modification to cover modules, rpm-ostree and potentially other 'update' types agreed by FESCo and implemented on 2018-05-11.
• Modification to cover installing and removing (as well as updating) software proposed 2018-06-12, implemented 2018-07-26
• Test cases: QA:Testcase_base_update_cli, QA:Testcase_RpmOstree_Upgrade, QA:Testcase_package_install_remove

Well, it must provide at least basic local file-based logging of kernel messages, and allow other components to write log messages. This must be done in accordance with relevant standards accepted by the Fedora Project.

• Thread 'Syslog not running' 2011-05-16.
• Proposed 2011-05-16, implemented 2011-05-17 as part of initial Fedora 16 Alpha criteria page creation.
• Test case: QA:Testcase_base_system_logging

• Part of initial Server release criteria proposal, 2014-06-06
• In fact applies to all flavors, so moved to generic criteria as part of combined Fedora 22 Alpha criteria draft, 2014-07-07
• Test case: QA:Testcase_base_selinux

The system must shut down in such a way that storage volumes (e.g. simple partitions, LVs and PVs, RAID arrays) are taken offline safely and the system's BIOS or EFI is correctly requested to power down the system.

• Proposed 2011-07-22, Implemented 2011-07-27.
• Test case: QA:Testcase_desktop_login

• Initial artwork criteria proposed 2010-10-10, implemented 2010-10-13.
• Revision to be less strict and pervasive proposed 2012-08-28, implemented 2012-09-04.
• Extended to cover Editions 2018-02-01 (obvious extension, not reviewed)
• Test case: QA:Testcase_base_artwork_release_identification

The web browser must be able to download files, load extensions (if applicable), and log into FAS.

• Requirement was in force for 'default desktop' in original Fedora 13 criteria revision.
• Modification to cover 'release-blocking desktops' was proposed 2011-05-17, implemented 2011-05-31.
• Test cases:
  • QA:Testcase_desktop_browser,
  • QA:Testcase_desktop_app_basic

• Initial artwork criteria proposed 2010-10-10, implemented 2010-10-13.
• Revision to be less strict and pervasive proposed 2012-08-28, implemented 2012-09-04.
• Test case: QA:Testcase_base_artwork_release_identification,

For instance, if a service needs to be manually enabled or a configuration file minimally tweaked, this is acceptable.

• Converted 2018-07 from the former Server Role requirements, which were proposed 2014-09-29, second draft 2014-09-30, implemented 2014-10-01
• Test cases:
  • QA:Testcase_freeipa_trust_server_installation
  • QA:Testcase_FreeIPA_web_ui
  • QA:Testcase_realmd_join_kickstart etc.

For instance, if a service needs to be manually enabled or a configuration file minimally tweaked, this is acceptable.

• Converted 2018-07 from the former Server Role requirements, which were proposed 2014-09-29, second draft 2014-09-30, implemented 2014-10-01
• Test cases:
  • QA:Testcase_postgresql_server_installation
  • QA:Testcase_database_server_remote_client

The install-time capability is not required to be interactive (i.e. it is acceptable for it to be possible by kickstart only).

This criterion is understood to mandate that there must be no requirement for a local user account to be created during install or first boot of a Server system.

• Part of initial Server release criteria proposal, 2014-06-06
• Test cases:
  • QA:Testcase_realmd_join_kickstart
  • QA:Testcase_realmd_join_sssd

To explain the last part of this criterion - it is possible to include firewall configuration options in a kickstart-driven installation, and the criterion requires that those options work as expected. The options considered to be 'supported' are those documented at Anaconda/Kickstart#firewall.

• Part of initial Server release criteria proposal, 2014-06-06. Tweaked to remove Server Role-related content 2018-07.
• Test cases:
  • QA:Testcase_Server_firewall_default
  • QA:Testcase_kickstart_firewall_disabled
  • QA:Testcase_kickstart_firewall_configured

• Part of initial Server release criteria proposal, 2014-06-06
• Test case: QA:Testcase_Server_cockpit_default

• Test cases:
  • QA:Testcase_RpmOstree_Upgrade
  • QA:Testcase_RpmOstree_Rebase
  • QA:Testcase_RpmOstree_Package_Layering

• Test case: QA:Testcase_Zezere_Ignition

• Appropriate modification of the regular installer requirement for coreos-installer, discussed in the CoreOS criteria concordance discussion
• Test case: FIXME

• Appropriate modification of the regular installer requirements for coreos-installer, discussed in the CoreOS criteria concordance discussion
• Test case: FIXME