Hírolvasó

Game of Trees 0.74 released

OpenBSD Journal
3 év 1 hónap óta
For those who have been paying attention to the Game of Trees development list, there has been a lot going on with got(1). Apologies here at undeadly for having missed some release announcements!

Having written as much, got 0.74 was released on July 14th, 2022!

Release notes may be found here: https://gameoftrees.org/releases/CHANGES

The -portable release also got some attention, and those release notes may be found here: http://gameoftrees.org/releases/portable/CHANGELOG

Read more…

[$] Leaving python-dev behind

Linux Weekly News
3 év 1 hónap óta
It was not all that long ago that Python began its experiment with replacing one of its mailing lists with a forum on its Discourse discussion site. Over time, the Discourse instance has become more and more popular within the Python community. It would seem that another mailing list will soon be subsumed within Discourse as the Python steering council is planning to effectively retire the venerable python-dev mailing list soon.
jake

Security updates for Wednesday

Linux Weekly News
3 év 1 hónap óta
Security updates have been issued by Fedora (golang-github-gosexy-gettext, golang-github-hub, oci-seccomp-bpf-hook, and popub), Oracle (kernel and kernel-container), SUSE (python2-numpy), and Ubuntu (check-mk and pyjwt).
corbet

Cirq 1.0 released

Linux Weekly News
3 év 1 hónap óta
Google has released Cirq 1.0 for developers working with leading-edge computers:

Cirq is a Python framework for writing, running, and analyzing the results of quantum computer programs. It was designed for near-term quantum computers, those with a few hundred qubits and few thousands of quantum gates. The significance of the 1.0 release is that Cirq has support for the vast majority of workflows for these systems and is considered to be a stable API that we will only update with breaking changes at major version numbers.

corbet

[$] Android apps on Linux with Waydroid

Linux Weekly News
3 év 1 hónap óta
It is not uncommon for users to want to run a program targeted to one operating system on another type of system. With the increasing prevalence of smartphones, Android has become the world's most widely used operating system. So users may want to run Android apps on Linux systems in order to get access to a game or other app that is not available in a Linux version or to develop mobile apps on their desktop system. The Waydroid project provides a way to run those apps on Linux, which means they can run on a variety of devices, including Linux-based smartphones like the PinePhone.
jake

Security updates for Tuesday

Linux Weekly News
3 év 1 hónap óta
Security updates have been issued by Fedora (buildah), SUSE (dovecot23 and nodejs12), and Ubuntu (harfbuzz, libhttp-daemon-perl, tiff, and webkit2gtk).
corbet

Ubuntu 21.10 is no longer supported

Linux Weekly News
3 év 1 hónap óta
The Ubuntu 21.10 ("Impish Indri") release is no longer supported as of July 14; users who are on that version will want to look into upgrading soon.

This is a follow-up to the End of Life warning sent earlier to confirm that as of July 14, 2022, Ubuntu 21.10 is no longer supported. No more package updates will be accepted to 21.10, and it will be archived to old-releases.ubuntu.com in the coming weeks.

corbet

[$] The BPF panic function

Linux Weekly News
3 év 1 hónap óta
One of the key selling points of the BPF subsystem is that loading a BPF program is safe: the BPF verifier ensures that the program cannot hurt the kernel before allowing the load to occur. That guarantee is perhaps losing some of its force as more capabilities are made available to BPF programs but, even so, it may be a bit surprising to see this proposal from Artem Savkov adding a BPF helper that is explicitly designed to crash the system. If this patch set is merged in something resembling its current form, it will be the harbinger of a new era where BPF programs are, in some situations at least, allowed to be overtly destructive.
corbet

Conill: How efficient can cat(1) be?

Linux Weekly News
3 év 1 hónap óta
Ariadne Conill explores ways to make the Unix cat utility more efficient on Linux.

The first possible option is the venerable sendfile syscall, which was originally added to improve the file serving performance of web servers. Originally, sendfile required the destination file descriptor to be a socket, but this restriction was removed in Linux 2.6.33. Unfortunately, sendfile is not perfect: because it only supports file descriptors which can be memory mapped, we must use a different strategy when using copying from stdin.

corbet

Security updates for Monday

Linux Weekly News
3 év 1 hónap óta
Security updates have been issued by Debian (mat2 and xen), Fedora (butane, caddy, clash, direnv, geoipupdate, gitjacker, golang-bug-serial-1, golang-github-a8m-envsubst, golang-github-apache-beam-2, golang-github-aws-lambda, golang-github-cespare-xxhash, golang-github-chromedp, golang-github-cloudflare, golang-github-cloudflare-redoctober, golang-github-cockroachdb-pebble, golang-github-cucumber-godog, golang-github-dreamacro-shadowsocks2, golang-github-dustinkirkland-petname, golang-github-etcd-io-gofail, golang-github-facebookincubator-contest, golang-github-facebookincubator-dhcplb, golang-github-facebookincubator-go2chef, golang-github-facebookincubator-ntp, golang-github-facebookincubator-nvdtools, golang-github-goccy-yaml, golang-github-gojuno-minimock, golang-github-google-wire, golang-github-hexdigest-gowrap, golang-github-intel-goresctrl, golang-github-j-keck-arping, golang-github-jamesclonk-vultr, golang-github-liamg-scout, golang-github-liamg-tml, golang-github-mattn-colorable, golang-github-mdlayher-ethernet, golang-github-moby-buildkit, golang-github-mock, golang-github-niklasfasching-org, golang-github-nxadm-tail, golang-github-path-network-mmproxy, golang-github-rakyll-statik, golang-github-shopify-toxiproxy, golang-github-shulhan-bindata, golang-github-skynetservices-skydns, golang-github-sophaskins-efs2tar, golang-github-spf13-cobra, golang-github-spyzhov-ajson, golang-github-task, golang-github-temoto-robotstxt, golang-github-theoapp-theo-agent, golang-github-tinylib-msgp, golang-github-tklauser-numcpus, golang-github-valyala-fasthttp, golang-google-protobuf, golang-honnef-tools, golang-k8s-kube-openapi, golang-k8s-pod-security-admission, golang-k8s-sample-cli-plugin, golang-mvdan-sh-3, golang-storj-drpc, golang-x-tools, gopass, harfbuzz, hcloud, manifest-tool, moby-engine, mqttcli, nex, php-laminas-diactoros2, podman-tui, seamonkey, snapd, tinygo, vgrep, vultr, vultr-cli, weldr-client, xen, and yubihsm-connector), Mageia (golang and java), Oracle (grub2, kernel, kernel-container, and squid), and SUSE (crash, kernel, nodejs12, nodejs14, and nodejs16).
jake

Kernel prepatch 5.19-rc7

Linux Weekly News
3 év 1 hónap óta
The 5.19-rc7 kernel prepatch is out for testing.

We obviously had that whole "Retbleed" thing, and it does show up in both the diffstat and the shortlog, and rc7 is definitely bigger than usual. And also as usual, when we've had one of those embargoed hw issues pending, the patches didn't get the open development, and then as a result missed all the usual sanity checking by all the automation build and test infrastructure we have. So no surprise - there's been various small fixup patches afterwards too for some corner cases.

That said, last week there were two other development trees that independently also asked for an extension, so 5.19 will be one of those releases that have an additional rc8 next weekend before the final release.

corbet

[$] Sharing page tables with msharefs

Linux Weekly News
3 év 1 hónap óta
A page-table entry (PTE) is relatively small, requiring just eight bytes to refer to a 4096-byte page on most systems. It thus does not seem like a worrisome level of overhead, and little effort has been made over the kernel's history to reduce page-table memory consumption. Those eight bytes can hurt, though, if they are replicated across a sufficiently large set of processes. The msharefs patch set from Khalid Aziz is a revised attempt to address that problem, but it is proving to be a hard sell in the memory-management community.
corbet

Security updates for Friday

Linux Weekly News
3 év 1 hónap óta
Security updates have been issued by Debian (webkit2gtk and wpewebkit), Fedora (curl, kernel, openssl1.1, php, subversion, xorg-x11-server, and xorg-x11-server-Xwayland), Oracle (grub2), SUSE (gnutls, kernel, logrotate, oracleasm, p11-kit, and python-PyJWT), and Ubuntu (libhttp-daemon-perl and python2.7, python3.10, python3.4, python3.5, python3.6, python3.8, python3.9).
jake

Stable kernel updates delayed

Linux Weekly News
3 év 1 hónap óta
The stable kernel updates that were due on July 14 have been delayed for several days, according to Greg Kroah-Hartman, due to problems that have come up with the Retbleed mitigation patches.

The problems are purely due to the fact that we were forced to do this type of work "in private" with very limited ability for testing by the normal larger kernel community like we rely on. We don't have fancy or huge private testing labs where we can do all of this work as we are an open source project, and we rely on open testing in public.

The ongoing problems might yet slow down the 5.19 release as well.

Update: there has actually been a different set of updates released: 5.18.12, 5.15.55, 5.10.131, and 5.4.206. These revert a single problematic MTD patch.

corbet

Tunney: Porting OpenBSD pledge() to Linux

Linux Weekly News
3 év 1 hónap óta
Justine Tunney has created an implementation of the OpenBSD pledge() system call for Linux.

OpenBSD limits security to a small pond, but makes it easy. Linux is a big tent, but makes it impossibly hard. SECCOMP BPF might as well be the Traditional Chinese of programming languages, since only a small number of people who've devoted the oodles of time it takes to understand code like what you see above have actually been able to benefit from it.

corbet