I use Fedora 43 Gnome in Thinkpad but I need face login but without install any third-party pakage.
1 Like
Hi, GNOME doesnât develop Fedora. You need to ask at https://discussion.fedoraproject.org/
2 Likes
this is major problem with linux, users are confused about where to ask for features, bugs, etc.
there are some cases, when i report a bug to distro, they say report it upstream, when i report upstream they say its downstream patch problem.
Face login is extremely difficult to get right. Ultimately it is somewhere on the roadmap, but before we can get there we need to do a big rework of our authentication protocol. We also need new Linux kernel features to do this somewhat securely. Thatâs not to mention the complexity of actually matching a face biometrically. Weâd probably need to find an expert in that space and bring them in to develop this capability using modern techniques.
In other words, thereâs exactly 0 chance itâs happening in the next version. Itâs not a feature we can sit down and implement in an afternoon, or even a couple of dozen of afternoons. Weâre talking about years of work.
1 Like
what about os level passkeys, does we have any on going work, or it is also difficult as face authentication.
It is also quite a complicated thing to implement, also on the order of years to get done. Work is ongoing here though: Credentials for Linux ¡ GitHub
1 Like
Whatâs upstream and downstream in the context of something stable like gnome versus rolling?
In the context of GNOME, the stuff you get from a distro like Ubuntu or Fedora is âdownstreamâ and GNOME itself (the code you find on gitlab.gnome.org) is upstream. Downstreams (distros) take GNOMEâs upstream code, compile it and integrate it with the rest of their system, and then ship that to the end-user to use.
This relationship makes it difficult to identify where an issue really exists. A bug might exist due to a choice a downstream has made while integrating GNOME into the rest of the system, and thus itâs a âdownstream bugâ that needs to be solved by the downstream. Alternatively, a bug might just exist in GNOME itself, and thatâs an âupstream bugâ. A lot of the time itâs not exactly super clear where the bug exists. Maybe a bug was caused by a choice made by a downstream, but the upstream project can decide to take responsibility for fixing the issue anyway. Thus the line gets super blurry unless youâre really keeping track.
For an end-user, the best approach is to report issues to your distribution. The people working on the distribution are responsible for at least triaging if the issue is their own or if it belongs upstream.
A feature like face unlock or passkeys will require collaboration between upstream and downstream. Upstream GNOME is missing functionality that weâd need for this feature to work right. On the other hand, even once the feature exists upstream, a downstream distribution would then need to take GNOMEâs support for the feature and make the necessary effort to adjust their integrations between GNOME and the rest of the system.
2 Likes
Thanks for the good explanation!
@Lemma got a point about the upstream/downstream mess is exactly why casual users bail on Linux. Itâs a classic Linux headache where nobody wants to take ownership of a bug. But honestly, @adrianvovk response is the reality check we needed. Everyoneâs asking for Windows Hello-style features without realizing the sheer amount of plumbing needed in the kernel and PAM just to make it secure. Itâs not just a âfeatureâ, itâs a massive architectural shift. Iâd rather they take years to get it right than ship some insecure gimmick that breaks on every update.