lwn.net 피드 구독하기
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
업데이트: 2시간 3분 지남

Stable kernel updates

수, 2020/03/18 - 11:49오후
Stable kernels 5.5.10, 5.4.26, and 4.19.111 have been released with important fixes. Users of those series should upgrade.

Security updates for Wednesday

수, 2020/03/18 - 11:43오후
Security updates have been issued by Debian (libvncserver and twisted), Fedora (libxslt), Red Hat (kernel, kernel-rt, python-flask, python-pip, python-virtualenv, slirp4netns, tomcat, and zsh), Scientific Linux (kernel, python-pip, python-virtualenv, tomcat, and zsh), SUSE (apache2-mod_auth_openidc and skopeo), and Ubuntu (apport and dino-im).

Security updates for Tuesday

화, 2020/03/17 - 11:49오후
Security updates have been issued by Arch Linux (okular, thunderbird, and webkit2gtk), Debian (webkit2gtk), Fedora (php-horde-Horde-Form), Gentoo (libvorbis, nss, and proftpd), Oracle (firefox and kernel), Red Hat (kernel), Scientific Linux (firefox), SUSE (cni, cni-plugins, conmon, fuse-overlayfs, podman, librsvg, and ovmf), and Ubuntu (ceph, icu, linux, linux-aws, linux-kvm, linux-aws-5.0, linux-gcp, linux-gke-5.0, linux-oracle-5.0, linux-kvm, linux-oracle, linux-raspi2, linux-raspi2-5.3, linux-kvm, linux-raspi2, linux-snapdragon, and linux-lts-xenial, linux-aws).

[$] Filesystem-oriented flags: sad, messy and not going away

화, 2020/03/17 - 8:12오전
Over the last decade, the addition of a "flags" argument to all new system calls, even if no flags are actually needed at the outset, has been widely adopted as a best practice. The result has certainly been greater API extensibility, but we have also seen a proliferation of various types of flags for related system calls. For calls related to files and filesystems, in particular, the available flags have reached a point where some calls will need as many as three arguments for them rather than just one.

FSF: 2019 Free Software Awards

화, 2020/03/17 - 12:42오전
The Free Software Foundation has announced the recipients of the 2019 Free Software Awards. A new category was added this year; the Award for Outstanding New Free Software Contributor went to Clarissa Lima Borges, "a talented young Brazilian software engineering student whose Outreachy internship work focused on usability testing for various GNOME applications". The Project of social benefit award went to Let's Encrypt, and the Award for the Advancement of Free Software was given to Jim Meyering, "a prolific free software programmer, maintainer, and writer".

Stable kernel 4.19.110

화, 2020/03/17 - 12:26오전
Stable kernel 4.19.110 has been released. "This fixes a problem in 4.19.109 in the KVM subsystem. If you use KVM, you are strongly encouraged to upgrade. If not, no big deal, you can ignore this release."

Security updates for Monday

월, 2020/03/16 - 11:45오후
Security updates have been issued by Debian (graphicsmagick, qemu, and slurm-llnl), Fedora (ansible, couchdb, mediawiki, and python3-typed_ast), Gentoo (atftp, curl, file, gdb, git, gst-plugins-base, icu, libarchive, libgcrypt, libjpeg-turbo, libssh, libvirt, musl, nfdump, ppp, python, ruby-openid, runc, sqlite, squid, sudo, SVG Salamander, systemd, thunderbird, tiff, and webkit-gtk), Mageia (firefox, kernel, and thunderbird), openSUSE (firefox, librsvg, php7, and tomcat), Red Hat (firefox), Slackware (thunderbird), and SUSE (firefox, kernel, salt, and wireshark).

Tails 4.4 released

월, 2020/03/16 - 11:00오후
Version 4.4 of The Amnesic Incognito Live System (or Tails) has been released. It has fixed a bunch of security vulnerabilities in Tails 4.3; users are advised to "upgrade as soon as possible". Tails 4.4 brings new versions of the Tor Browser (9.0.6), Thunderbird (68.5.0), and the Linux kernel (5.4.19). It also fixes some problems with WiFi. Tails is a Linux distribution that runs from removable media; it is focused on privacy, security, and anonymity.

Kernel prepatch 5.6-rc6

월, 2020/03/16 - 10:44오후
The 5.6-rc6 kernel prepatch has been released. "Diffstat looks normal, and the number of commits is right in the middle of the usual range too. And I don't think any of the commits look all that strange either - it's all pretty small."

[$] A QUIC look at HTTP/3

토, 2020/03/14 - 6:35오전
The Hypertext Transfer Protocol (HTTP) is a core component of the world-wide web. Over its evolution it has added features, including encryption, but time has revealed its limitations and those of the whole protocol stack. At FOSDEM 2020, Daniel Stenberg delivered a talk about a new version of the protocol called HTTP/3. It is under development and includes some big changes under the hood. There is no more TCP, for example; a new transport protocol called QUIC is expected to improve performance and allow new features.

Data Sharing and Open Source Software Help Combat Covid-19 (Wired)

토, 2020/03/14 - 5:09오전
Wired has an article on an open-source tool that is being used to track strains of Covid-19 throughout the world. "In the case of the Seattle area teenager, genetic data about his strain of Covid-19 was uploaded to Gisaid, a platform for sharing genomic data. Then researchers at Nextstrain made the connection with the earlier patient. Nextstrain is an open source application that tracks the evolution of viruses and bacteria, including Covid-19, Ebola, and lesser-known outbreaks such as Enterovirus D68 using data sourced largely from Gisaid. Hodcroft and other researchers involved with the project analyze the data shared on Gisaid for mutations and visualize the results. That’s how the team was able to spot the connection between the two Covid-19 cases in Washington."

Varrazzo: Thinking psycopg3

토, 2020/03/14 - 1:11오전
Psycopg is the database adapter used by most Python programs needing to work with the PostgreSQL database manager. In this blog post, psycopg maintainer Daniele Varrazzo looks forward to the next major version. "There is a chance now to rethink how thick the C libpq wrapper should be. We can reduce the C implementation to a minimal wrapper around the libpq (replaceable by a CFFI Python wrapper if compiling C is not available on the client), using it as a foundation to build a familiar DBAPI blocking interface. A blocking behaviour is not bad in itself: it allows to write most of the programs, the ones which don't need crazy concurrency, in a simple and familiar paradigm; the async layer would be available under the hood to squeeze the best performance in programs who have embraced an asynchronous pattern and framework."

Security updates for Friday

토, 2020/03/14 - 12:27오전
Security updates have been issued by Arch Linux (firefox, golang-golang-x-crypto, kernel, mbedtls, ppp, and python-django), Debian (slirp and yubikey-val), Fedora (firefox, java-1.8.0-openjdk-aarch32, mbedtls, monit, seamonkey, sympa, and zsh), Gentoo (chromium, e2fsprogs, firefox, groovy, postgresql, rabbitmq-c, ruby, and vim), Mageia (ppp), openSUSE (kernel), and SUSE (glibc, kernel, openstack-manila, php5, and squid).

Stable kernels for everyone

금, 2020/03/13 - 7:22오전
As expected, the 5.5.9, 5.4.25, 4.19.109, 4.14.173, 4.9.216, and 4.4.216 stable kernels have all been released; each contains another set of important fixes.

[$] Dentry negativity

금, 2020/03/13 - 5:14오전
Back in 2017, Waiman Long posted a patch set placing limits on the number of "negative dentries" stored by the kernel. The better part of three years later, that work continues with, seemingly, no better prospects for getting into the mainline. It would be understandable, though, if many people out there don't really know what negative dentries are or why kernel developers care about them. That, at least, can be fixed, even if the underlying problem seems to be more difficult.

Security updates for Thursday

금, 2020/03/13 - 12:00오전
Security updates have been issued by CentOS (kernel), Debian (dojo, firefox-esr, sleuthkit, and wpa), Fedora (cacti, cacti-spine, and python-psutil), Oracle (kernel), Red Hat (kernel), Scientific Linux (kernel), SUSE (ardana-ansible, ardana-cinder, ardana-cobbler, ardana-db, ardana-horizon, ardana-input-model, ardana-monasca, ardana-mq, ardana-nova, ardana-octavia, ardana-osconfig, ardana-tempest, ardana-tls, crowbar-core, crowbar-ha, crowbar-openstack, crowbar-ui, keepalived, openstack-barbican, openstack-ceilometer, openstack-cinder, openstack-dashboard, openstack-dashboard-theme-SUSE, openstack-designate, openstack-heat, openstack-horizon-plugin-designate-ui, openstack-horizon-plugin-ironic-ui, openstack-horizon-plugin-neutron-lbaas-ui, openstack-horizon-plugin-octavia-ui, openstack-ironic, openstack-ironic-python-agent, openstack-keystone, openstack-magnum, openstack-monasca-agent, openstack-neutron, openstack-neutron-fwaas, openstack-neutron-gbp, openstack-neutron-vpnaas, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-sahara, openstack-swift, python-amqp, python-ironic-lib, python-keystoneauth1, python-keystoneclient, python-keystonemiddleware, python-ovs, supportutils-plugin-suse-openstack-cloud, rubygem-crowbar-client, rubygem-puma, venv-openstack-horizon, ardana-cinder, ardana-cobbler, ardana-designate, ardana-extensions-example, ardana-extensions-nsx, ardana-glance, ardana-heat, ardana-input-model, ardana-ironic, ardana-keystone, ardana-logging, ardana-monasca, ardana-monasca-transform, ardana-mq, ardana-neutron, ardana-nova, ardana-octavia, ardana-osconfig, ardana-tempest, crowbar-core, crowbar-ha, crowbar-openstack, crowbar-ui, keepalived, mariadb, openstack-cinder, openstack-dashboard, openstack-dashboard-theme-SUSE, openstack-heat, openstack-heat-templates, openstack-horizon-plugin-designate-ui, openstack-horizon-plugin-neutron-lbaas-ui, openstack-ironic, openstack-keystone, openstack-monasca-agent, openstack-neutron, openstack-neutron-gbp, openstack-neutron-vsphere, openstack-nova, openstack-octavia, openstack-octavia-amphora-image, openstack-resource-agents, openstack-sahara, openstack-trove, python-cinderlm, python-congressclient, python-designateclient, python-ironic-lib, python-ne tworking-cisco, python-osc-lib, python-oslo.context, python-oslo.rootwrap, python-oslo.serialization, python-oslo.service, python-stevedore, python-taskflow, rubygem-crowbar-client, rubygem-pumavenv-openstack-swift, firefox, ipmitool, kernel, and php72), and Ubuntu (firefox).

[$] LWN.net Weekly Edition for March 12, 2020

목, 2020/03/12 - 10:25오전
The LWN.net Weekly Edition for March 12, 2020 is available.

[$] Handling attacks on a community

목, 2020/03/12 - 6:07오전
A recent message to the debian-project mailing list by Debian project leader (DPL) Sam Hartman is about a proposal to moderate the mailing list. There have been repeated attacks on various project members and the distribution itself posted to the list over the last few years, many from sock-puppet, throwaway email accounts, which spawned a recent discussion on the debian-private mailing list; Hartman was summarizing that discussion for those who are not on the private list. But the problems on debian-project (and other Debian public lists) are kind of just the tip of the iceberg; there is an ongoing, persistent effort to roil the distribution and its community.

GNOME 3.36 released

목, 2020/03/12 - 4:36오전
Version 3.36 of the GNOME desktop environment is out. "This release brings a new lock screen and a new app for managing shell extensions, among other things. Once again, the shell has received many performance improvements. Improvements to core GNOME applications include better support for metered networks and parental controls in GNOME Software, a new look for the initial setup assistant, a redesigned GNOME Clocks, and many more." See the release notes for details and screenshots.

Ekstrand: Plumbing explicit synchronization through the Linux ecosystem

목, 2020/03/12 - 4:33오전
For those who are interested in the details of graphics synchronization: Jason Ekstrand describes in detail the value of explicit synchronization, the reason why we can't have it now, and a proposal for eventually making it possible to go explicit. "Explicit synchronization is the future of graphics and media. At least, that seems to be the consensus among all the graphics people I've talked to. I had a chat with one of the lead Android graphics engineers recently who told me that doing explicit sync from the start was one of the best engineering decisions Android ever made. It's also the direction being taken by more modern APIs such as Vulkan."