LWN.net is a comprehensive source of news and opinions from
and about the Linux community. This is the main LWN.net feed,
listing all articles which are posted to the site front page.
Posodobljeno: 56 min 42 sec nazaj
Sob, 01/14/2023 - 22:28
The
6.1.6,
5.15.88, and
5.10.163
stable kernel updates have been released; each contains another set of
important fixes.
Pet, 01/13/2023 - 17:19
Speculative-execution vulnerabilities come about when the CPU, while executing
speculatively, is able to access memory that would otherwise be denied to
it. Most of these vulnerabilities would go away if the CPU were always
constrained by the established memory protections. An obvious way to fix
these problems would be to make CPUs behave that way, but doing that
without destroying performance is not an easy task. So, instead, Intel
has developed a feature called "linear address-space separation" (LASS) to
paper over parts of the problem; Yian Chen has posted
a
patch set adding support for this feature.
Pet, 01/13/2023 - 15:48
Security updates have been issued by Fedora (cacti, cacti-spine, mbedtls, postgresql-jdbc, and rust), Oracle (.NET 6.0, dbus, expat, grub2, kernel, kernel-container, libtasn1, libtiff, sqlite, and usbguard), Red Hat (rh-postgresql10-postgresql), SUSE (php7), and Ubuntu (heimdal, linux, linux-aws, linux-aws-5.15, linux-azure, linux-azure-5.15, linux-gcp, linux-gcp-5.15, linux-hwe-5.15, linux-ibm, linux-kvm, linux-oracle, linux-raspi,, linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-5.4, linux-hwe, linux-ibm, linux-kvm, linux-oracle, linux-oracle-5.4,, linux, linux-aws, linux-kvm, linux-lts-xenial, and vim).
Čet, 01/12/2023 - 21:17
The Chromium browser project has
announced
that it will be integrating support for third-party libraries written in Rust.
Our goal in bringing Rust into Chromium is to provide a simpler
(no IPC) and safer (less complex C++ overall, no memory safety
bugs in a sandbox either) way to satisfy the rule of two, in order
to speed up development (less code to write, less design docs,
less security review) and improve the security (increasing the
number of lines of code without memory safety bugs, decreasing the
bug density of code) of Chrome. And we believe that we can use
third-party Rust libraries to work toward this goal.
Rust was developed by Mozilla specifically for use in writing a
browser, so it’s very fitting that Chromium would finally begin to
rely on this technology too. Thank you Mozilla for your huge
contribution to the systems software industry. Rust has been an
incredible proof that we should be able to expect a language to
provide safety while also being performant.
Čet, 01/12/2023 - 16:51
The release of the
4.9.337 stable
kernel update on January 7 marked the end of an era: after just over
six years of maintenance, the 4.9.x series will receive no more updates. This
kernel saw a lot of change after Linus Torvalds made the "final" release
and left the building; it's time for a look at the "stable" portion of this
kernel's life to see what can be learned.
Čet, 01/12/2023 - 15:49
Greg Kroah-Hartman has announced the release of the
6.1.5,
6.0.19,
and
5.15.87 stable kernels. As usual, they
contain lots of important fixes all over the kernel tree; users should
upgrade. This is also the last release in the 6.0.y kernel series: "All
users must move to the
6.1.y branch at this point in time, as this branch is now end-of-life."
Čet, 01/12/2023 - 15:29
Security updates have been issued by Debian (emacs, libxstream-java, and netty), Fedora (mingw-binutils, pgadmin4, phoronix-test-suite, vim, and yarnpkg), Red Hat (.NET 6.0, dbus, expat, java-1.8.0-ibm, kernel, kernel-rt, kpatch-patch, libreoffice, libtasn1, libtiff, postgresql:10, sqlite, systemd, usbguard, and virt:rhel and virt-devel:rhel), and SUSE (net-snmp, openstack-barbican, openstack-barbican, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-neutron, openstack-neutron-gbp, php7, php74, php8, python-future, python3, samba, SDL2, and w3m).
Čet, 01/12/2023 - 01:50
The LWN.net Weekly Edition for January 12, 2023 is available.
Čet, 01/12/2023 - 00:17
The
PyTorch
compromise that happened right at the end of 2022 was rather ugly, but
its impact was not widespread—seemingly, at least. The incident does
highlight some of
the perils of relying on an external "supply chain" for the components that
are used to build one's software. It also would appear to be another
case of "security researchers" run amok, though perhaps that part of the story
is only meant to cover the tracks—or ass—of the perpetrator.
Sre, 01/11/2023 - 22:20
Version
3.0 of the Discourse forum platform is out.
We are bringing our customers and users some major new capabilities
to enable communities to have thoughtful, purposeful discussions
online. This new release includes real-time chat and user status to
enable more informal communication, a customizable sidebar for
easier access to the things each user cares about most, and a new
notifications interface that makes it easier to decide what is
important to follow up on, along with many other improvements.
Sre, 01/11/2023 - 15:18
Security updates have been issued by Debian (exiv2, hsqldb, libjettison-java, ruby-sinatra, and viewvc), Fedora (golang-github-docker, mbedtls, and vim), Gentoo (alpine, commons-text, jupyter_core, liblouis, mbedtls, ntfs3g, protobuf-java, scikit-learn, and twisted), Red Hat (kernel and kpatch-patch), SUSE (rubygem-activerecord-5.2, tiff, and webkit2gtk3), and Ubuntu (dotnet6, linux-azure-5.4, linux-azure-fde, linux-gcp, linux-oracle, linux-ibm, and linux-oem-5.17, linux-oem-6.0).
Tor, 01/10/2023 - 22:36
Python's formatted strings, or "f-strings", came relatively late to the
language, but have become a popular feature. F-strings allow a compact
representation for the common task of interpolating program data into
strings, often in order to output them in some fashion. Some
restrictions were placed on f-strings to simplify the implementation of
them, but those restrictions are not really needed anymore and, in
fact, are complicating the CPython parser. That has led to a Python
Enhancement Proposal (PEP) to formalize the syntax of f-strings for the
benefit of Python users while simplifying the maintenance of the
interpreter itself.
Tor, 01/10/2023 - 17:39
In late 2021, LWN
covered a plan to
eliminate the Python global interpreter lock (GIL), thus improving the
language's thread-level concurrency. This plan has now been codified as
PEP 703, which includes
an extensive discussion of the changes that would be made.
The global interpreter lock will remain the default for CPython
builds and python.org downloads. A new build configuration flag,
--without-gil will be added to the configure script that
will build CPython without the global interpreter lock.
The posting of a PEP is only one step in a long path toward integrating
this change into the CPython interpreter; expect some extended discussions
over the coming months.
Tor, 01/10/2023 - 15:05
Security updates have been issued by Debian (libtasn1-6), Fedora (nautilus), Oracle (kernel, kernel-container, nodejs:14, tigervnc, and xorg-x11-server), Red Hat (grub2, nodejs:14, tigervnc, and xorg-x11-server), Scientific Linux (tigervnc and xorg-x11-server), SUSE (systemd), and Ubuntu (firefox, linux-aws, linux-aws-5.15, linux-azure, linux-azure-5.15, linux-azure-fde, linux-azure, w3m, and webkit2gtk).
Pon, 01/09/2023 - 17:16
The kernel's memory-management developers have been busy before and during
the holidays; the result is a number of patch sets making significant
changes to that subsystem. It is time for a quick look at three of those
projects. Two of them aim to increase the sharing of page tables between
processes, while the third takes advantage of the
multi-generational LRU to create a better
picture of what a process's working set actually is.
Pon, 01/09/2023 - 16:19
Security updates have been issued by Fedora (python2.7), SUSE (ca-certificates-mozilla, libksba, and ovmf), and Ubuntu (linux, linux-aws, linux-aws-5.4, linux-gcp, linux-gcp-5.4, linux-gke,
linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm,
linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15,
linux-dell300x, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm,
linux-oracle, linux-raspi2, linux-snapdragon, linux, linux-aws, linux-kvm, linux-lowlatency, linux-raspi, linux, linux-gcp, linux-gke, linux-gkeop, linux-hwe-5.15, linux-ibm,
linux-kvm, linux-lowlatency, linux-oracle, linux-raspi,, and linux-aws).
Pon, 01/09/2023 - 02:25
Linus has released
6.2-rc3 for testing.
"Here we are, another week done, and things are starting to look a lot
more normal after that very quiet holiday week that made rc2 so very
small".
Sob, 01/07/2023 - 15:52
The
6.1.4,
6.0.18, and
4.9.337
stable kernel updates have been released; each contains another set of
important fixes.
Greg Kroah-Hartman has also
let it be known
that 4.9.337 is the end of the line for the 4.9 kernel, which was released
just over six years ago. "This kernel is now END-OF-LIFE and you should move to 4.14.y at the
least, 6.1.y is the better option."
Pet, 01/06/2023 - 17:13
Most developers probably do not see the generation of random numbers as
being a performance bottleneck for their programs, but there are seemingly
exceptions. Over the last few years, Jason Donenfeld has brought a new
level of energy to the development of the kernel's random-number generator;
he is now directing his efforts toward improving performance for user space
with
this patch
series that provides an implementation of the
getrandom()
system call in the kernel's
"virtual dynamic
shared object" (vDSO) area. The result is, indeed, better performance,
but not all developers see this benefit as being worth the additional
complexity required to achieve it.
Pet, 01/06/2023 - 15:20
Security updates have been issued by Debian (libetpan and smarty3), SUSE (libksba, rpmlint-mini, tcl, and xrdp), and Ubuntu (curl, firefox, and linux-oem-5.14).