LWN.net is a comprehensive source of news and opinions from
and about the Linux community. This is the main LWN.net feed,
listing all articles which are posted to the site front page.
업데이트: 1시간 24분 지남
수, 2022/12/07 - 12:35오전
The kernel's page cache holds pages from files in RAM, allowing those
pages to be accessed without expensive trips to persistent storage.
Applications are normally entirely unaware of the page cache's operation;
it speeds things up and that is all that matters. Some applications,
though, can benefit from knowledge about how much of a given file is
present in the page cache at any given time; the
proposed
cachestat() system call from Nhat Pham is the latest in a long
series of attempts to make that information available.
화, 2022/12/06 - 7:02오후
Security updates have been issued by Ubuntu (binutils and ca-certificates).
화, 2022/12/06 - 5:57오후
Alison Chaiken
provides an
overview of Linux ABI concerns on opensource.com.
Understanding the stable ABI is a bit subtle. Consider that, while
most of sysfs is stable ABI, the debug interfaces are guaranteed to
be unstable since they expose kernel internals to userspace. In
general, Linus Torvalds has pronounced that by "don't break
userspace," he means to protect ordinary users who "just want it to
work" rather than system programmers and kernel engineers, who
should be able to read the kernel documentation and source code to
figure out what has changed between releases.
화, 2022/12/06 - 12:07오전
The kernel project is now more than three decades old; over that time, a
number of development practices have come and gone. Once upon a time, the
use of "magic numbers" to identify kernel data structures was seen as a
good way to help detect and debug problems. Over the years, though, the
use of magic numbers has gone into decline;
this
patch set from Ahelenia Ziemiańska may be an indication that the reign
of magic numbers may be reaching its end.
월, 2022/12/05 - 11:11오후
Security updates have been issued by Debian (awstats, chromium, clamav, g810-led, giflib, http-parser, jhead, libpgjava, node-cached-path-relative, node-fetch, and vlc), Fedora (fastnetmon, kernel, librime, qpress, rr, thunderbird, and wireshark), Red Hat (kernel, kernel-rt, and kpatch-patch), Slackware (mozilla), SUSE (cherrytree and chromium), and Ubuntu (libbpf, libxml2, linux-gcp-5.15, linux-gke, linux-gke-5.15, and linux-gke).
월, 2022/12/05 - 5:04오후
The
eighth and presumably final 6.1 kernel
prepatch has been released for testing. "So everything looks good,
and while the calming down may have happened later than I wished for, it
did happen. Let's hope this upcoming week is as quiet (or quieter)."
토, 2022/12/03 - 11:51오후
The
6.0.11,
5.15.81, and
5.10.157
stable kernel updates have been released; each contains another set of
important fixes.
토, 2022/12/03 - 12:47오전
The software-interrupt mechanism is one of the oldest parts in the kernel;
arguably, the basic design behind it predates Linux itself. Software
interrupts can get in the way of other work so, for almost as
long as they have existed, developers have wished that they
could be made to go away. That has never happened, though, and doesn't
look imminent. Instead, Android systems have long carried a patch that
tries to minimize the impact of software interrupts, at least in some
situations. John Stultz is now
posting
that work, which contains contributions from a number of authors, in
the hope of getting it into the mainline kernel.
금, 2022/12/02 - 11:59오후
Security updates have been issued by Debian (snapd), Fedora (firefox, libetpan, ntfs-3g, samba, thunderbird, and xen), SUSE (busybox, emacs, and virt-v2v), and Ubuntu (linux, linux-aws, linux-aws-5.15, linux-gcp, linux-gkeop, linux-hwe-5.15,
linux-ibm, linux-intel-iotg, linux-kvm, linux-lowlatency,
linux-lowlatency-hwe-5.15, linux-oracle, linux-oracle-5.15, linux-raspi, linux, linux-aws, linux-aws-5.4, linux-gcp, linux-gcp-5.4, linux-gkeop,
linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle,
linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux, linux-aws, linux-dell300x, linux-gcp-4.15, linux-kvm, linux-oracle,
linux-raspi2, linux-snapdragon, linux, linux-aws, linux-gcp, linux-ibm, linux-kvm, linux-lowlatency,
linux-oracle, linux-raspi, linux, linux-aws, linux-kvm, linux-lts-xenial, linux-aws-hwe, linux-gcp, linux-hwe, linux-oracle, and tiff).
금, 2022/12/02 - 11:22오후
Bleeping Computer
reports
that the Android platform signing certificates for several manufacturers
have leaked and been used to sign malware.
However, based on the results, even though Google said that "all
affected parties were informed of the findings and have taken
remediation measures to minimize the user impact," it looks like
not all the vendors have followed Google's recommendations since,
at least in Samsung's case, the leaked platform certificates are
still being used to digitally sign apps.
금, 2022/12/02 - 9:00오전
Over on the Google security blog, Jeffrey Vander Stoep
writes about the impact of focusing on using memory-safe languages for new code in Android.
As the amount of new memory-unsafe code entering Android has decreased, so too has the number of memory safety vulnerabilities. From 2019 to 2022 it has dropped from 76% down to 35% of Android’s total vulnerabilities.
2022 is the first year where memory safety vulnerabilities do not represent a majority of Android’s vulnerabilities.
While correlation doesn’t necessarily mean causation, it’s interesting to note that the percent of vulnerabilities caused by memory safety issues seems to correlate rather closely with the development language that’s used for new code. This matches the expectations published in our blog post 2 years ago about the age of memory safety vulnerabilities and why our focus should be on new code, not rewriting existing components. Of course there may be other contributing factors or alternative explanations. However, the shift is a major departure from industry-wide trends that have persisted for more than a decade (and likely longer) despite substantial investments in improvements to memory unsafe languages.
(Thanks to Rahul Sundaram.)
금, 2022/12/02 - 12:09오전
The Document Foundation
(TDF) was
created in 2010 to steward and
support the development of the
LibreOffice suite, which was then a new fork of OpenOffice.org. TDF has
clearly been successful;
unlike OpenOffice,
which is currently under the Apache umbrella, LibreOffice is an actively
developed and widely
used project. But TDF has also been showing signs of stress in recent
years, and the situation does not appear to be getting better. There are
currently some significant disagreements over just what role TDF should
play; if those cannot be resolved, there is a real chance that they could
rip the Foundation apart.
목, 2022/12/01 - 11:51오후
Security updates have been issued by CentOS (device-mapper-multipath, firefox, hsqldb, krb5, thunderbird, and xorg-x11-server), Debian (libraw), Fedora (freerdp and grub2), SUSE (bcel, emacs, glib2, glibc, grub2, nodejs10, and tomcat), and Ubuntu (linux-azure-fde and snapd).
목, 2022/12/01 - 10:05오전
The LWN.net Weekly Edition for December 1, 2022 is available.
목, 2022/12/01 - 8:49오전
The recent discussion of a proposed change to the Python language—the usual
fare on the
language's
Ideas
forum—was interesting, somewhat less for the actual feature under
discussion than
for the other issues raised. The change itself is a minor, convenience
feature that would provide a reproducible iteration order for certain
kinds of sets between
separate
invocations of the interpreter. That is a pretty limited use case, and one
that could perhaps be fulfilled in other ways, but the discussion also
highlighted some
potentially worrying trends in the way that feature ideas are handled in
the Python community.
수, 2022/11/30 - 10:14오후
It was only a matter of time before somebody found a way to inject BPF into
the CPU scheduler.
This patch
series, posted by Tejun Heo and containing work by David Vernet, Josh
Don, and Barret Rhoden, does exactly that. The cover letter covers the
motivation behind this work in detail:
One of our main goals was to lower the barrier to entry for
experimenting with the scheduler. sched_ext provides ergonomic
callbacks and helpers to ease common operations such as managing
idle CPUs, scheduling tasks on arbitrary CPUs, handling preemptions
from other scheduling classes, and more. While sched_ext does
require some ramp-up, the complexity is self-contained, and the
learning curve gradual. Developers can ramp up by first
implementing simple policies such as global FIFO in only tens of
lines of code, and then continue to learn the APIs and building
blocks available with sched_ext as they build more featureful and
complex schedulers.
There is a bit more documentation in this
patch.
수, 2022/11/30 - 10:13오후
Security updates have been issued by Debian (krb5), Fedora (galera, mariadb, and mingw-python3), Red Hat (389-ds:1.4, kernel, kernel-rt, kpatch-patch, krb5, and usbguard), Scientific Linux (krb5), Slackware (kernel), SUSE (binutils, dbus-1, exiv2, freerdp, git, java-1_8_0-ibm, kernel, libarchive, libdb-4_8, libmspack, nginx, opencc, python, python3, rxvt-unicode, sudo, supportutils, systemd, vim, and webkit2gtk3), and Ubuntu (bind9, gnutls28, libsamplerate, linux-gcp-5.4, perl, pixman, shadow, and sysstat).
수, 2022/11/30 - 6:11오전
As of late, concerns about the future of Twitter have caused many of its
users to seek alternatives. Amid this upheaval, an open-source
microblogging service called
Mastodon has received a great deal of
attention. Mastodon is not reliant on any single company or central
authority to run its servers; anyone can run their own. Servers communicate
with each other, allowing people on different servers to send each other
messages and follow each other's posts. Mastodon doesn't just talk to
itself, though; it can exchange messages with anything that speaks the
ActivityPub protocol.
There are many such implementations, so someone who wants to deploy their own
microblogging service enjoys a variety of choices.
수, 2022/11/30 - 2:17오전
Asahi Lina gives
a detailed
update on progress toward a graphics driver for Apple M1 hardware.
There is still a long road ahead! The UAPI that we are using right
now is still a prototype, and there are a lot of new features that
need to be added or redesigned in order to support a full Vulkan
driver in the future. Since Linux mandates that the UAPI needs to
remain stable and backwards compatible across versions (unlike
macOS), that means that the kernel driver will not be heading
upstream for many months, until we have a more complete
understanding of the GPU rendering parameters and have implemented
all the new design features needed by Vulkan.
수, 2022/11/30 - 12:25오전
Lucien Cartier-Tilet
looks
forward to the upcoming Emacs 29 release.
In case you didn’t know, Emacs’ current syntax highlighting is
currently based on a system of regexes. Although it is not the
worst thing to use, it’s not the best either, and it can become
quite slow on larger files.
TreeSitter parses programming languages based into a concrete
syntax tree. From there, not only can syntax highlighting can be
done at high speed, but a much deeper analysis of the code is
possible and actions such sa syntax manipulation can also be
achieved since the syntax tree itself is available as an object
which can be manipulated!
페이지