this post was submitted on 25 Jan 2024
122 points (98.4% liked)

Open Source

31359 readers
138 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 5 years ago
MODERATORS
Cloak@lemmy.ml
kevincox@lemmy.ml
CrypticCoffee@lemmy.ml
Lettuceeatlettuce@lemmy.ml
122
Ventoy 1.0.97 Released (github.com)
submitted 10 months ago by d3Xt3r to c/opensource@lemmy.ml
4 comments fedilink hide all child comments
 

Ventoy is an open source tool to create a bootable USB drive for ISO/WIM/IMG/VHD(x)/EFI files. With Ventoy, you don't need to format the drive over and over, you just need to copy the image files to the USB drive, and Ventoy will give you a boot menu to select them and boot from it.

1.0.97 Changelog:

  • Add support for FreeBSD 14.0. (#2636)
  • Fix Proxmox 8.1 boot issue. (#2657)
  • Fix VTOY_LINUX_REMOUNT option does not work with latest linux kernel version. (#2661 #2674)
  • Fix the VentoyPlugson issue that default_file value is wrong for more than 10 theme files. (#2608)
  • vtoyboot updated to 1.0.31
you are viewing a single comment's thread
view the rest of the comments
[โ€“] Mikelius@lemmy.ml 24 points 10 months ago (1 children)

Just to get it out there... I checked this out about a year ago. It's not completely open source. The project consists of many executables and "pre complied dependencies" that don't appear to share matching checksums which may indicate modifications of some sort. Looks like a great tool, but I'm extremely skeptical of what's going on under the hood.

Hopefully they do truly open source it and prove me wrong, I'd love to give it a try some day.

[โ€“] whoelectroplateuntil@sh.itjust.works 7 points 10 months ago* (last edited 10 months ago)

Unless the dependencies they compile in have reproducible builds set up, then you literally cannot expect binaries to compile the same bit-for-bit between different build environments. This is a known problem for tons of reasons, etc etc. Progress has been made on improving build practices, but there are still tons of projects that aren't reproducible. Also, the checksums not matching could easily be caused by Ventoy developers enabling different compile-time flags on their builds than upstream builds, which is near the top of the list of reasons why you'd bother to provide your own builds to start with. There are literally like 500 legitimate reasons why their builds might have different checksums than upstream's builds. Your accusation is nonsense unless you can do some more digging and prove there are unpublished modifications to their dependencies.