From 35c721095c7c1f91927e98c6016195ab3b021032 Mon Sep 17 00:00:00 2001
From: awokd <34515595+awokd@users.noreply.github.com>
Date: Fri, 26 Jan 2018 11:55:26 +0000
Subject: [PATCH 1/2] Update software-update-dom0.md

Dnf vs. Yum, add EFI update
---
 common-tasks/software-update-dom0.md | 32 ++++++++++++++++++++++------
 1 file changed, 25 insertions(+), 7 deletions(-)

diff --git a/common-tasks/software-update-dom0.md b/common-tasks/software-update-dom0.md
index 1c59390f..50365969 100644
--- a/common-tasks/software-update-dom0.md
+++ b/common-tasks/software-update-dom0.md
@@ -58,10 +58,14 @@ Of course, command line tools are still available for accomplishing various upda
     sudo qubes-dom0-update package-version
     ~~~
 
-    Yum will say that there is no update, but the package will nonetheless be downloaded to dom0.
+    Dnf/Yum will say that there is no update, but the package will nonetheless be downloaded to dom0.
 
-2.  Downgrade the package:
+2.  Downgrade the package (R4.0+):
 
+    ~~~
+    sudo dnf downgrade package-version
+    ~~~
+    R3.2 and earlier
     ~~~
     sudo yum downgrade package-version
     ~~~
@@ -76,20 +80,26 @@ You can re-install in a similar fashion to downgrading.
     sudo qubes-dom0-update package
     ~~~
 
-    Yum will say that there is no update, but the package will nonetheless be downloaded to dom0.
+    Dnf/Yum will say that there is no update, but the package will nonetheless be downloaded to dom0.
 
-2.  Re-install the package:
+2.  Re-install the package (R4.0+):
 
+    ~~~
+    sudo dnf reinstall package
+    ~~~
+    R3.2 and earlier
     ~~~
     sudo yum reinstall package
     ~~~
 
-    Note that yum will only re-install if the installed and downloaded versions match. You can ensure they match by either updating the package to the latest version, or specifying the package version in the first step using the form `package-version`.
+    Note that Dnf/Yum will only re-install if the installed and downloaded versions match. You can ensure they match by either updating the package to the latest version, or specifying the package version in the first step using the form `package-version`.
 
 ### How to uninstall a package
 
-If you've installed a package such as anti-evil-maid, you can remove it with the following command:
+If you've installed a package such as anti-evil-maid, you can remove it with the following command (R4.0+):
 
+    sudo dnf remove anti-evil-maid
+R3.2 and earlier
     sudo yum remove anti-evil-maid
     
 ### Testing repositories
@@ -124,8 +134,16 @@ is needed for the VMs. (Note that the following example enables the unstable rep
 sudo qubes-dom0-update --enablerepo=qubes-dom0-unstable kernel kernel-qubes-vm
 ~~~
 
-Rebuild grub config.
+If the update process does not automatically do it (you should see it mentioned in the CLI output
+from the update command), you may need to manually rebuild the EFI or grub config depending on which
+your system uses.
 
+EFI (Replace the file names with the correct versions for your updated kernel)
+~~~
+sudo /usr/bin/dracut -f /boot/efi/EFI/qubes/initramfs-4.4.31-11.pvops.qubes.x86_64.img 4.4.31-11.pvops.qubes.x86_64
+~~~
+
+Grub2
 ~~~
 sudo grub2-mkconfig -o /boot/grub2/grub.cfg
 ~~~

From ad0d428cbcccd2392dc1c77bd487afcca59111c2 Mon Sep 17 00:00:00 2001
From: awokd <34515595+awokd@users.noreply.github.com>
Date: Sat, 27 Jan 2018 10:20:53 +0000
Subject: [PATCH 2/2] Remove Yum

---
 common-tasks/software-update-dom0.md | 24 +++++++-----------------
 1 file changed, 7 insertions(+), 17 deletions(-)

diff --git a/common-tasks/software-update-dom0.md b/common-tasks/software-update-dom0.md
index 50365969..e39a1f2c 100644
--- a/common-tasks/software-update-dom0.md
+++ b/common-tasks/software-update-dom0.md
@@ -14,7 +14,7 @@ Updating software in dom0
 Why would one want to update software in dom0?
 ----------------------------------------------
 
-Normally, there should be few reasons for updating software in dom0. This is because there is no networking in dom0, which means that even if some bugs are discovered e.g. in the dom0 Desktop Manager, this really is not a problem for Qubes, because none of the third-party software running in dom0 is accessible from VMs or the network in any way. Some exceptions to this include: Qubes GUI daemon, Xen store daemon, and disk back-ends. (We plan move the disk backends to an untrusted domain in Qubes 2.0.) Of course, we believe this software is reasonably secure, and we hope it will not need patching.
+Normally, there should be few reasons for updating software in dom0. This is because there is no networking in dom0, which means that even if some bugs are discovered e.g. in the dom0 Desktop Manager, this really is not a problem for Qubes, because none of the third-party software running in dom0 is accessible from VMs or the network in any way. Some exceptions to this include: Qubes GUI daemon, Xen store daemon, and disk back-ends. (We plan move the disk backends to an untrusted domain.) Of course, we believe this software is reasonably secure, and we hope it will not need patching.
 
 However, we anticipate some other situations in which updating dom0 software might be necessary or desirable:
 
@@ -58,17 +58,13 @@ Of course, command line tools are still available for accomplishing various upda
     sudo qubes-dom0-update package-version
     ~~~
 
-    Dnf/Yum will say that there is no update, but the package will nonetheless be downloaded to dom0.
+    Dnf will say that there is no update, but the package will nonetheless be downloaded to dom0.
 
-2.  Downgrade the package (R4.0+):
+2.  Downgrade the package:
 
     ~~~
     sudo dnf downgrade package-version
     ~~~
-    R3.2 and earlier
-    ~~~
-    sudo yum downgrade package-version
-    ~~~
 
 ### How to re-install a package
 
@@ -80,27 +76,21 @@ You can re-install in a similar fashion to downgrading.
     sudo qubes-dom0-update package
     ~~~
 
-    Dnf/Yum will say that there is no update, but the package will nonetheless be downloaded to dom0.
+    Dnf will say that there is no update, but the package will nonetheless be downloaded to dom0.
 
-2.  Re-install the package (R4.0+):
+2.  Re-install the package:
 
     ~~~
     sudo dnf reinstall package
     ~~~
-    R3.2 and earlier
-    ~~~
-    sudo yum reinstall package
-    ~~~
 
-    Note that Dnf/Yum will only re-install if the installed and downloaded versions match. You can ensure they match by either updating the package to the latest version, or specifying the package version in the first step using the form `package-version`.
+    Note that Dnf will only re-install if the installed and downloaded versions match. You can ensure they match by either updating the package to the latest version, or specifying the package version in the first step using the form `package-version`.
 
 ### How to uninstall a package
 
-If you've installed a package such as anti-evil-maid, you can remove it with the following command (R4.0+):
+If you've installed a package such as anti-evil-maid, you can remove it with the following command:
 
     sudo dnf remove anti-evil-maid
-R3.2 and earlier
-    sudo yum remove anti-evil-maid
     
 ### Testing repositories