Canonical decides to try a new approach to the Linux desktop with Ubuntu Linux version 24.04. It will have long-term support (LTS). This new release will use immutable Linux with additional software provided by Snaps.
Canonical software engineer Oliver Grawert spilled the beans in a response to a post about Ubuntu’s plans to ship the CUPS print stack as a snap. Grawert writes: “An immutable version has been around since 2015, called Ubuntu Core…there will be a desktop version with the next LTS.” This version will be optional, but the classic desktop will not disappear.
Oliver Smith, Ubuntu Desktop Project Manager at Canonical, confirmed this new Ubuntu model in an official Ubuntu blog post. Olivier Smith did not want to give an exact date for the release of this new version. He writes, “In due time, when we think the whole system can be delivered in this way, we will be happy to offer a version of Ubuntu Desktop with these new features.”
What is an immutable system?
At this point, you might be wondering, “What is an immutable system?”
An immutable operating system is one in which some or all of the operating system file systems are read-only and cannot be modified. This is because these systems are inherently safer. Many attacks and exploits rely on writing or modifying files. If you can’t modify the files, hackers can’t harm your work or your computer.
Immutable operating systems are often used in Internet of Things (IoT) devices. For example, Canonical has been offering Ubuntu Core, an IoT platform, since 2014.
Container technology at the service of the operating system
Built on the same core container technology as Docker and LXC, Ubuntu Core uses a comprehensive sandboxing approach to ensure security and independence for every component in the system. This approach not only allows applications to operate within their own data management limitations, but also provides the flexibility to use newer versions of applications on older versions of Linux.
Specifically, immutable operating systems have the following common characteristics:
- Read only : The main characteristic of an immutable operating system is that users or applications cannot directly modify the running system.
- Atomic Updates: Updates are applied atomically, which means they are applied successfully all at once or not at all.
- Predictable: Since the core operating system does not change, its behavior is predictable from device to device.
-
Isolated applications: Applications are isolated from the main operating system and from each other, usually through containerization. This ensures that changes made by one application do not affect the central system or other applications.
Chromebooks use immutable systems
If this idea is so great, why haven’t you heard of it before? In fact, you’ve heard of it. You just didn’t know that Chromebooks with ChromeOS have been using immutable and sandboxed technologies since they first appeared in 2011.
The difference between ChromeOS and other operating systems is that ChromeOS is a Linux distribution, but it is also a very restricted distribution. As Smith pointed out, “Desktop software is in many ways more difficult to containerize than server or IoT software, because we want our desktop applications to work well together. This tight integration also makes it more difficult to define sandbox boundaries between applications and system components in a way that is both secure and easy to use.”
Canonical is not the first to tackle this problem. Besides Chrome OS, Fedora Silverblue with OSTree and openSUSE Aeon already offer immutable Linux desktops. But if you’re an Ubuntu fan and want a stable, secure, and immutable Linux desktop, this is the release you’ll want to see.
Good use of snaps
Also, unlike those distros, Ubuntu Core takes a more granular approach to the operating system. It divides the operating system into components, each encapsulated in a snap. The four primary snaps — Gadget, Kernel, Base, and Snapd — form the basis of Ubuntu Core. Other OS snaps can be added to this image to enable other OS elements, such as a desktop environment.
This composable approach allows users to assemble Ubuntu Core images with only the components needed to run single-purpose applications. This reduces both the operating system footprint and the potential attack surface. Plus, you can update each snap at your own pace. This greatly minimizes the need to restart the device.
Behind the scenes, Canonical has been thinking about the potential benefits of Ubuntu Core for developers and everyday users. The inherent properties of Ubuntu Core, such as secure boot, recovery states, and hardware encryption, will significantly strengthen the security posture of the user’s computer.
An example with NVIDIA graphics cards
Additionally, Ubuntu Core’s modularity allows users to experiment with other desktop environments while building on a very stable, signed, and secure LTS base. Using snap channels also allows rolling certain elements of the cast, improving the user experience.
Each snap of an application or component has four standard channels: Stable, candidate, beta, and edge. These channels allow users to choose the status of their software. The stable channel is the most tested and trusted, while the edge channel includes the latest changes.
So, for example, gamers, Smith said, “could opt for a kernel channel that delivers the latest NVIDIA drivers as they become available, much like the Ubuntu Desktop team did for Mesa as part of our work on Steam immediacy.”
Loss of control for experienced Linux developers and users
While this approach will appeal to users looking for stability and security, developers and old-school Linux users who want maximum control of their system will find it unappealing. For them, the traditional Ubuntu desktop will always be there.
And many users don’t like Canonical’s “snaps”. Immutable operating systems also cause problems. They are not as flexible as regular operating systems, and not all applications and services work well with containerized environments.
That said, this new Ubuntu Linux desktop might just prove popular. And, who knows, just as Chromebooks have become popular, maybe in 2024 dedicated Ubuntu laptops will also find a large following.
Source: “ZDNet.com”