4 év 4 hónap óta
Security updates have been issued by CentOS (screen), Debian (clamav, courier-authlib, and tomcat9), Red Hat (thunderbird), SUSE (clamav, glibc, kernel, open-iscsi, opensc, spamassassin, thunderbird, wpa_supplicant, and xorg-x11-server), and Ubuntu (linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gke-5.4, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-dell300x, linux-gcp, linux-gcp-4.15, linux-kvm, linux-oracle, linux-raspi2, linux-snapdragon, linux, linux-aws, linux-azure, linux-gcp, linux-hwe-5.8, linux-kvm, linux-oracle, linux-raspi, linux, linux-aws, linux-kvm, linux-lts-xenial, linux-raspi2, linux-snapdragon, linux-oem-5.10, linux-oem-5.6, nettle, and xorg-server, xorg-server-hwe-16.04, xorg-server-hwe-18.04).
ris
4 év 4 hónap óta
The FreeBSD 13 release is out. It includes a lot of updated software, the
removal of a number of GNU tools (including the toolchain), and more, but
not WireGuard. See
the release
notes for the details.
corbet
4 év 4 hónap óta
There are times when developers and system administrators need to diagnose
problems in running code. The program to be examined can be a user-space
process, the kernel, or both. Two of the major tools available on Linux to
perform this sort of analysis are
SystemTap and
bpftrace. SystemTap has been available
since 2005, while bpftrace is a more recent contender that, to some,
may appear to
have made SystemTap obsolete. However, SystemTap is still the preferred
tool for
some real-world use cases.
jake
4 év 4 hónap óta
Security updates have been issued by Debian (libpano13), Fedora (mosquitto and perl-Net-CIDR-Lite), Mageia (curl, mongodb, pdfbox, python-jinja2, rygel, spamassassin, tor, velocity, webkit2, and wireshark), openSUSE (umoci), Oracle (389-ds:1.4, kernel, and virt:ol and virt-devel:rhel), Red Hat (kernel and kpatch-patch), Slackware (dnsmasq and irssi), and SUSE (cifs-utils, rubygem-actionpack-4_2, and spamassassin).
ris
4 év 4 hónap óta
While some parts of the core kernel reached a relatively stable "done"
state years ago, others never really seem to be finished. One of the
latter variety is undoubtedly the kernel's implementation of spinlocks,
which arbitrate access to data at the lowest levels of the kernel. Lock
performance can have a significant effect on the performance of the system
as a whole, so optimization work can pay back big dividends. Lest one
think that this work is finally done, the
NUMA-aware
qspinlock patch set shows how some more performance can be squeezed out
of the kernel's spinlock implementation.
corbet
4 év 4 hónap óta
The Free Software Foundation has finally
issued
a statement on why the decision to return Richard Stallman to the
organization's board of directors was taken.
We decided to bring RMS back because we missed his wisdom. His historical,
legal and technical acumen on free software is unrivaled. He has a deep
sensitivity to the ways that technologies can contribute to both the
enhancement and the diminution of basic human rights. His global network of
connections is invaluable. He remains the most articulate philosopher and
an unquestionably dedicated advocate of freedom in computing.
RMS acknowledges that he has made mistakes. He has sincere regrets,
especially at how anger toward him personally has negatively impacted the
reputation and mission of FSF. While his personal style remains troubling
for some, a majority of the board feel his behavior has moderated and
believe that his thinking strengthens the work of the FSF in pursuit of its
mission.
There is also a
separate statement from Stallman.
corbet
4 év 4 hónap óta
Security updates have been issued by CentOS (kernel and libldb), Debian (mediawiki, qemu, ruby-kramdown, and xen), Fedora (grub2, libldb, libopenmpt, python-pikepdf, python39, samba, squid, and webkit2gtk3), openSUSE (bcc, ceph, gssproxy, hostapd, isync, kernel, openexr, openSUSE KMPs, and tpm2-tss-engine), SUSE (fwupdate and wpa_supplicant), and Ubuntu (spamassassin).
ris
4 év 4 hónap óta
The
5.12-rc7 kernel prepatch is out; it's
rather larger than Linus would have liked.
"End result: I'm still waffling about the final 5.12 release. The fact
that we have a big rc7 does make me think that I'll probably do an rc8
this time around. But it ends up depending a bit on how the upcoming
week goes, and if things are deathly quiet, I may end up deciding that
an rc8 doesn't really make sense."
corbet
4 év 4 hónap óta
corbet
4 év 4 hónap óta
HPVM ("heterogeneous parallel
virtual machine") is a compiler for targets like GPUs and FPGAs based on
LLVM; the 1.0 release is available now. "This release is a major addition to our first release (version 0.5),
adding support for linear algebra tensor operations, Pytorch and
Keras frontends, approximations for convolution operators, and an
efficient and flexible framework for approximation tuning. Our novel
approximation-tuner automatically selects approximation knobs for
individual tensor operations and selects configurations that maximize
a (configurable) performance objective."
corbet
4 év 4 hónap óta
The
seccomp()
mechanism allows the imposition of a filter program (expressed in
"classic" BPF)
that makes policy decisions on whether to allow each system call invoked by the target
process. The
user-space notification
feature further allows those decisions to be deferred to another
process. As
this recent
patch set from Sargun Dhillon shows, though, user-space notification
still has some rough edges, especially when it comes to signals. This
patch makes a simple change to try to address a rather complex problem
brought to the fore by changes in the Go language's preemption model.
corbet
4 év 4 hónap óta
Security updates have been issued by Debian (lib3mf, php-pear, and python-django), Fedora (perl-Net-Netmask), openSUSE (flatpak, libostree, xdg-desktop-portal,, fwupd, fwupdate, and hostapd), Oracle (kernel, libldb, nettle, and squid), Red Hat (nettle), and SUSE (fwupdate, tpm2-tss-engine, and umoci).
jake
4 év 4 hónap óta
I was asking at the mailing lists about ofono configuration for PinePhone... and apparently it is not exactly simple to get it to work. (One thing is that there's no "RING" indication on AT channels, and it looks there's more.)I'm looking for working calls and working SMSes, ideally with ringtones played when SMS arrives. So far postmarketOS with Plasma Mobile was closest... but the UI is really unstable, in what looks like hard to debug way. Is there something closer to working? Right now I guess getting Mobian to work and hacking incoming SMS notifications might be easiest..
4 év 4 hónap óta
Richard Stallman's
return to the Free
Software Foundation's board of
directors has provoked a flurry of responses, and many organizations in
the free-software community have expressed their unhappiness with that
appointment. In almost every case, the process leading up to that
expression has been carried out behind closed doors. The Debian project,
instead, is deciding what to do in a classic Debian way — holding a public
vote on a general resolution with a wide range of possible outcomes.
corbet
4 év 4 hónap óta
Security updates have been issued by Fedora (chromium, libldb, rpm, samba, and seamonkey), openSUSE (isync), Oracle (kernel), Red Hat (openssl and squid), SUSE (ceph, flatpak, libostree, xdg-desktop-portal, xdg-desktop-portal-gtk, fwupd, fwupdate, and openexr), and Ubuntu (curl, linux-lts-trusty, and lxml).
jake
4 év 4 hónap óta
The LWN.net Weekly Edition for April 8, 2021 is available.
corbet
4 év 4 hónap óta
Five years ago, we
looked at an effort to
assist in the assignment of
Common
Vulnerabilities and Exposures (CVE) IDs, especially for open-source
projects.
Developers in the free-software world have often found it difficult to
obtain CVE IDs for the vulnerabilities that they find.
The
Distributed Weakness
Filing (DWF) project was meant to reduce the friction in the
CVE-assignment process, but it never really got off the ground. In a
blog
post, Josh Bressers said that DWF was hampered by trying to follow the
rules for CVEs. That has led to a plan to restart DWF, but this time without the
"yoke of legacy CVE".
jake
4 év 4 hónap óta
The lavapipe vulkan software rasterizer in Mesa is now reporting Vulkan 1.1 support.
It passes all CTS tests for those new features in 1.1 but it stills fails all the same 1.0 tests so isn't that close to conformant. (lines/point rendering are the main areas of issue).
There are also a bunch of the 1.2 features implemented so that might not be too far away though 16-bit shader ops and depth resolve are looking a bit tricky.
If there are any specific features anyone wants to see or any crazy places/ideas for using lavapipe out there, please either file a gitlab issue or hit me up on twitter @DaveAirlie
4 év 4 hónap óta
Projects, even of the open-source variety, sometimes have secrets that need
to be maintained. They can range from things like signing keys, which are
(or should be) securely stored away from the project's code, to credentials
and tokens for access to various web-based services, such as cloud-hosting services or the
Python Package Index (PyPI). These credentials
are sometimes
needed by instances of the running code, and some others benefit from being
stored "near" the code, but these types of credentials are not meant to
be
distributed outside of the project.
They can sometimes mistakenly be added to a public repository, however, which is
a slip that attackers are most definitely on the lookout for.
The big repository-hosting services like GitHub
and GitLab are well-placed to scan for these kinds of secrets being
committed to project repositories—and they do.
jake
4 év 4 hónap óta
ris