Hírolvasó

In a recent post to tech@, David Gwynne (dlg@) introduced a new daemon to log packets from BPF.

The message reads

List: openbsd-tech Subject: bpflogd(8): capture packets via BPF to log files From: David Gwynne <david () gwynne ! id ! au> Date: 2025-04-24 5:44:53 this is basically pflogd(8), but different. the reason it exists is because i needed to continously log some packets from span ports coming from multiple switches to try and help debug a network issue that only seems to occur every couple of months. pflogd provides that for a single pflog interface, but i needed it on multiple ethernet interfaces.

Read more…

A chipzilla új vezérigazgatója először beszélt elemzőknek a cég előtt álló kihívásokról.

The Debian Project Leader election results have been announced. Andreas Tille has been re-elected and will serve another term through April 2026. LWN looked at the election and candidates in early April.

New compiler releases often bring with them new warnings; those warnings are usually welcome, since they help developers find problems before they turn into nasty bugs. Adapting to new warnings can also create disruption in the development process, though, especially when an important developer upgrades to a new compiler at an unfortunate time. This is just the scenario that played out with the 6.15-rc3 kernel release and the implementation of -Wunterminated-string-initialization in GCC 15.

Sometimes worms have a tendency to multiply once their can is opened. James Bottomley recently encountered that situation; he led a session in the filesystem track at the 2025 Linux Storage, Filesystem, Memory Management, and BPF Summit (LSFMM+BPF) to discuss filesystem behavior with respect to suspending and resuming the system. As he noted in his topic proposal, he came at the problem because he needed a way to resynchronize the contents of efivarfs after a system resume and thought there should be an API available to use. But, as the resulting thread shows, the filesystem freeze and thaw code had never been used by the system-wide suspend and resume code. Due to a scheduling mixup, though, several of us missed Bottomley's session, including Luis Chamberlain who has been working on hooking those two pieces up; what follows is largely from a second session that Chamberlain led, with some background information from the topic-proposal discussion and an email exchange with Bottomley.

Security updates have been issued by Debian (haproxy and openrazer), Fedora (c-ares and mingw-poppler), Red Hat (thunderbird), SUSE (epiphany, ffmpeg-6, gopass, and libsoup-3_0-0), and Ubuntu (erlang, haproxy, libapache2-mod-auth-openidc, libarchive, linux, linux-aws, linux-azure, linux-azure-5.15, linux-azure-fde, linux-azure-fde-5.15, linux-gcp, linux-gke, linux-gkeop, linux-hwe-5.15, linux-ibm, linux-intel-iotg, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-nvidia-tegra, linux-nvidia-tegra-igx, linux-oracle, linux-raspi, linux, linux-aws, linux-azure, linux-azure-6.8, linux-ibm, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-oem-6.8, linux-oracle, linux-oracle-6.8, linux-aws-6.8, linux-aws-fips, linux-fips, linux-gcp-fips, linux-azure-fips, linux-gcp, linux-gke, linux-gkeop, linux-gcp-6.8, linux-ibm-5.15, linux-intel-iot-realtime, linux-realtime, linux-intel-iotg-5.15, linux-realtime, perl, and yelp, yelp-xsl).

"Megfejtettük, hogy miért ideges Magyar Péter – a Magyar Nemzeti Bank szembesítette a vádakkal" trey 2025. 04. 24., cs – 15:57

Generatív AI-modelljének továbbfejlesztett verziói mellett számos új funkciót jelentett be az Adobe a MAX eseményen.

A cég üzletfejlesztési vezetőjét a Google trösztellenes perének jóvátételi szakaszában hallgatták meg.

Aggasztó számokat mutat az FBI éves jelentése.

Tavaly év vége óta jelentősen sikerült növelni a keresőcég chatbot-szolgáltatásának felhasználói bázisát, de az OpenAI ChatGPT-jét nehéz lesz utolérni.

A TSMC 2028-tól indítja az A14-alapú gyártósorokat, illetve jön a System on Wafer-X.

Tesla tapasztalatok IV. trey 2025. 04. 24., cs – 07:30

Version 0.111 of Game of Trees has been released (and the port updated, with additional useful information in the commit message):

• introduce gotsysd: configure gotd servers by committing to gotsys.git repo
• make gotd run 'gotsys check' on gotsys.conf commits before accepting them
• make gotd run 'gotsys apply' when the gotsys.git repo receives changes
• add a missing malloc failure check to gotd's repo_write process
• make got clone/fetch work against Git servers which do not speak English
• stop processing more messages upon error in gotd repo_write process
• close file descriptors passed to gotd_imsg_compose_event() on failure
• potential fix for use-after-free in lib/repository.c's match_packed_object()
• make gotd return an informative error when the connection limit is exceeded
• in gotctl info, display the time when a client connection was created
• add reload support to gotd, triggered via 'gotctl reload', not via SIGHUP!
• test S_ISREG in parse_ref_file() explicitly rather than via getline(3)
• release ref-file lock when fstat fails in parse_ref_file()
• do not treat unhandled signals as a fatal error in gotwebd
• fix an edge case of tog spinning when 'B' is pressed in log view
• stop using got_repo_map_path() in gotwebd to fix spurious realpath(3) errors
• avoid creation of pack_fds array when not needed, saving file descriptors
• gotwebd now runs as the _gotwebd user by default, rather than "www"
• gotwebd can now serve repositories outside the /var/www chroot directory
• the gotwebd.conf repos_path directive is no longer relative to the chroot
• get rid of the gotwebd-specific libexec helpers in /var/www/bin/gotwebd
• improve gotwebd behaviour when sending data to already disconnected clients
• plug some memory leaks in got-send-pack and got-fetch-pack
• fix got-fetch-http performance when server sends chunked HTTP responses

Inside this week's LWN.net Weekly Edition:

• Front: Owen Le Blanc and MCC; UID/GID drift; DMA for UIO; More LSFMM+BPF 2025 coverage.
• Briefs: EU OS; RISC-V Fedora; Ubuntu 25.04; NLnet funding; Template strings; Tor Browser 14.5; Quotes; ...
• Announcements: Newsletters, conferences, security updates, patches, and more.

The Fedora Project is looking for solutions to an interesting problem with its image-based editions and spins, such as the Atomic Desktops or CoreOS, that are created with rpm-ostree or bootc. If a package that is part of a image-based version has a user or group created dynamically on installation, and it owns files installed on the system, the system may be subject to user ID (UID) and group ID (GID) "drift" on updates. This "UID/GID drift" may come about when a new image with updates is generated, and therefore files may have the wrong ownership. This can have side-effects ranging from mildly inconvenient to serious. No solutions have been adopted just yet, but there are a few ideas on how to deal with the problem.

The NLnet Foundation has announced the projects that have received funding from its October call for grant proposals from the Next Generation Internet (NGI) Zero Commons Fund.

The selected projects all contribute, one way or another, to the mission of the Commons Fund: reclaiming the public nature of the internet. For example, there are people working on interesting open hardware projects such as the tablet MNT Reform Touch and the Solar FemtoTX motherboard — a collaborative effort to create an ultra-low power motherboard that can run on solar power. LLM2FPGA aims to enable running open source LLMs locally on programmable chips ("FPGAs") using a fully open-source toolchain. bcachefs readies itself as the next generation filesystem for Linux, improving performance, scalability and reliability when compared to legacy filesystems.

In all, 42 projects have been selected for the NGI grants which are between €5,000 and €50,000. See the announcement for the full list of selected projects, and the current projects page for other recent projects funded by NLnet.

In the filesystem track at the 2025 Linux Storage, Filesystem, Memory Management, and BPF Summit (LSFMM+BPF), Amir Goldstein wanted to resume discussing a feature that he had briefly introduced at the end of a 2023 summit session: filesystem "write barriers". The idea is to have an operation that would wait for any in-flight write() system calls, but not block any new write() calls as bigger hammers, such as freezing the filesystem, would do. His prototype implementation is used by a hierarchical storage management (HSM) system to create a crash-consistent change log, but there may be other use cases to consider. He wanted to discuss implementation options and the possibility of providing an API for user-space applications.

Security updates have been issued by AlmaLinux (bluez, expat, and postgresql:12), Fedora (chromium, golang, LibRaw, moodle, openiked, ruby, and trafficserver), Red Hat (bluez, expat, gnutls, libtasn1, libxslt, mod_auth_openidc, mod_auth_openidc:2.3, ruby:3.1, thunderbird, and xmlrpc-c), and Ubuntu (linux, linux-aws, linux-gcp, linux-hwe-6.11, linux-lowlatency, linux-lowlatency-hwe-6.11, linux-oem-6.11, linux-oracle, linux-raspi, linux-realtime, linux-azure, linux-azure-6.11, linux-gcp-6.8, and matrix-synapse).

A járműgyártó még az idén integrálja újabb termékeinek szoftverébe a DeepSeek technológiáját.