Posts
261
Following
25
Followers
1214

Jonathan Corbet

On the radar: improved tunable handling for glibc. The recent vulnerability has drawn their attention to this aspect of library behavior, and now they are trying to make some changes to prevent the next vulnerability before it happens (or at least before somebody finds it)

https://lwn.net/ml/libc-alpha/20231010180111.561793-1-adhemerval.zanella@linaro.org
0
5
10

Jonathan Corbet

So they made a movie about my dad ...

https://fullcirclefilm.co/

...and about a crazy kid named Trevor Kennison and how both recovered their lives after a devastating injury. I've seen it, it's definitely worth a watch. The site lists a lot of upcoming screenings (all just in North America, alas).
0
6
16

Jonathan Corbet

So OSS Europe was an interesting experience, this year, in a way.

I did my usual talk, and started with the usual section on kernel releases. When talking about stable updates I tossed in a quick mention that six-year support from the stable team was being phased out — something I understood to be generally known for about the last year. Way at the end of the talk, as my last topic, I discussed at some length the stresses being felt by kernel maintainers.

@sjvn wrote an article about the talk (https://www.zdnet.com/article/long-term-support-for-linux-kernel-to-be-cut-as-maintainence-remains-under-strain/) and made a connection between the stable-policy change and the maintainer issue — something I had not done in the talk. It was a bit of a shift from what I said, but not a bad article overall.

Then the rest of the net filled up with other writers putting up articles that were clearly just cribbed from SJVN's piece — sometimes with credit, sometimes without. I'm getting emails about what a terrible idea this all is, as if I had anything to do with that decision or can somehow change it. I have, it seems, taken away everybody's six-year support, and they're not happy about it.

All because of a 30-second mention of a change that was made public something like a year ago. My 1.5 minutes of fame has given me a new appreciation for this old quote from Rusty Russell: "when a respected information source covers something where you have on-the-ground experience, the result is often to make you wonder how much fecal matter you've swallowed in areas outside your own expertise."
5
39
74
@yogthos Linux was doing OK before the companies showed up...I was there, after all. But an awful lot of things didn't work very well, we lacked support for a lot of hardware, and so on. If you're getting >90% of your code from companies, they are clearly adding something.

No, it's not altruism on their part, but does that matter?

Anyway, I was challenging the assertion that free software is a transfer of wealth from volunteers to companies; I don't think you've said anything to change minds on that.
0
0
2
@yogthos This can be argued the other way...the vast majority of Linux kernel development is done by people who are paid, often quite well, for that work. Companies have paid for this and have then given it all away. It could be said to be one of the largest transfers from corporations to a common resource ever.

I'm not entirely fond of how free software has become, to many, a way to shed maintenance costs. There are a lot of problems with how things work. But the situation is not quite as portrayed in this cute little image, IMO.
1
0
5

Jonathan Corbet

On the radar: reconsidering the kernel's preemption models.

It all started in a discussion on optimizing string operations on x86, but that led to finding ways to allow preemption for long-running operations even in non-preempable kernels.

You see, the kernel offers a number of different models for when kernel code itself can be preempted to run something with a higher priority. All the way from PREEMPT_NONE (no preemption at all) through PREEMPT_VOLUNTARY (preemption at explicitly marked points) and plain PREEMPT (anytime not in a critical section) through to PREEMPT_RT for realtime. Linus was getting grumpy about the scattering of voluntary preemption points, and eventually came around to the idea of maybe dropping PREEMPT_NONE and PREEMPT_VOLUNTARY altogether:

https://lwn.net/ml/linux-kernel/CAHk-=whpYjm_AizQij6XEfTd7xvGjrVCx5gzHcHm=2Xijt+Kyg@mail.gmail.com/

I doubt that's going to happen, but we may see a reduction of options in favor of PREEMPT_DYNAMIC, which allows choosing between voluntary and full preemption at boot time.
0
6
15

Well, vger (as of right now) no longer directly attempts to deliver to gmail/google/googlemail just to get the ridiculous backlog out of the primary mail paths. Vger (1 machine) is kicking all of that queue over to 8 other machines and letting them go try to get that delivered and queue up somewhere where it's not going to cause everyone else pain.

This should, at least for now, settle out several things, but if you are seeing mail wonkiness give postmaster@ a ping and I'll take a look.

Also if you are on Gmail and doing kernel dev, might be worth looking at other email providers.

2
8
0
@liw @neil @pwaring Surprisingly, I have a *lot* of sympathy for people trying to earn their living with their writing. It's not an easy path, and you have to pick your poison... whether it's overt paywalls, annoying popups, or surveillance advertising, it's going to be annoying to people.

We've found a solution that works well enough for LWN - at least, well enough to keep us from having to get real jobs - but I'm not sure what the best solution is in a general sense.
1
0
9

Jonathan Corbet

On the radar: restricting access to "ALTER SYSTEM" in postgresql

Having mutually untrusting users connecting to the same postgresql server is a tricky proposition from the beginning; it's even moreso if, for some reason, some of those users are postgresql superusers. There is a proposal to chip away one piece of the problem by making it possible to disable the ALTER SYSTEM command, which affects global server parameters:

https://lwn.net/ml/pgsql-hackers/CA+VUV5rEKt2+CdC_KUaPoihMu+i5ChT4WVNTr4CD5-xXZUfuQw@mail.gmail.com/

There is disagreement over whether this is a piece of security theater or a useful option for some providers.
0
0
0

Jonathan Corbet

On the radar: advancing the Git SHA-256 work.

Moving Git away from the SHA1 hash has been a long and slow process:

https://lwn.net/Articles/898522/

Much of the basic support to use SHA-256 is there, but a lot of the finishing work is not, so it remains unused. Now Eric Biederman has surfaced with a set of patches to provide interoperability between SHA-1 and SHA-256 repositories:

https://lwn.net/ml/git/87sf7ol0z3.fsf@email.froward.int.ebiederm.org/

Someday, maybe, this transition will actually happen. Maybe.
2
17
35
@raimue ...which is nice, but I honestly can't remember a time when I've thought "this rebase is taking too long, I guess I'll go get a coffee". Evidently others have had a different experience.
2
0
3

Jonathan Corbet

On the radar: git replay and jj

The git community is considering a "replay" command as a variant of rebase:

https://lwn.net/ml/git/20230907092521.733746-1-christian.couder@gmail.com/

As I was reading through the description, I saw that one of the motivations for this work is "jj is slaughtering us on rebase speed". Not being familiar with jj or its murderous speed, I dug and found:

https://github.com/martinvonz/jj

Google, it seems, has put a full-time developer on creating an alternative to git.
10
52
70

Jonathan Corbet

On the radar: maintainers summit discussion about keeping old, unmaintained filesystems in the kernel:

https://lwn.net/ml/ksummit-discuss/ZO9NK0FchtYjOuIH@infradead.org/

The kernel has a "no regressions" rule, and it's hard to argue that removing a filesystem that has users is not a regression. But there are also limits to how long some of those filesystems can be carried forward.

I looked at one aspect of this back in July (https://lwn.net/Articles/939097/), but the discussion seems destined to continue for a while yet.

Still, should this topic show up at the actual maintainers summit, I'm guessing Linus would stop it short by saying "we don't remove code that people are using; next topic".
1
9
12

Jonathan Corbet

On the radar: the 6.6 bcachefs discussion:

https://lwn.net/ml/linux-kernel/20230903032555.np6lu5mouv5tw4ff@moria.home.lan/

It turns out that if you ask to merge a big new subsystem that hasn't even been seen in linux-next, Linus gets grumpy with you.
0
5
16

Jonathan Corbet

On the radar: replacing openSUSE Leap:

https://lwn.net/ml/opensuse-factory/c9df1be1a23ad815393acb1797d0f9bf1f007e89.camel@suse.de/

"Slowroll" for the win?
1
1
3

Jonathan Corbet

On the radar: passim in Fedora

https://lwn.net/ml/fedora-devel/CAD2FfiHV5_kd72Xc1t-=V_EtqBiiKZ7=8Uke5k3FZeLcZOJ9Mw@mail.gmail.com/

Passim, it seems, is an mDNS-based system for sharing firmware updates across a local net. The idea is to help firmware distribution scale up, but it might also increase the attack surface of systems in interesting ways.
2
0
0
@bluca Luca, honestly, the contempt you show toward people you disagree with only serves to hamper your cause in the end.

It's not "performative art" from "moon howlers", it's a key Debian developer who is concerned that the project has taken a wrong turn.

My own personal belief is that you are more likely to be right than he is, but your discussion style masks that. You might be surprised by the results you could get by assuming good faith instead.
1
0
4
@gudenau He clarified that later in the discussion and, in fact, has not ignored everything thereafter, so no, that doesn't tell me a whole lot.
1
0
0

Jonathan Corbet

It has happened at last: after many iterations, that x86 shadow-stack patch series has been accepted into the mainline for 6.6:

https://lwn.net/ml/linux-kernel/CAHk-=wipDVFEfSJxbnUSDqENs5i8RzSsgJOFdb69pH=b7BOFiQ@mail.gmail.com/

For those who haven't been following this saga, see https://lwn.net/Articles/926649/
0
11
18

Jonathan Corbet

On the radar: tossing out the Debian /usr merge and start over.

I've been watching this for a week or so...Debian developer Ian Jackson has declared that the project's current approach to its interminable /usr-merge effort was mistaken from the beginning:

https://lwn.net/ml/debian-ctte/25823.5706.112593.999861@chiark.greenend.org.uk/

He proposes backing the whole thing out (on the entire installed Debian user base) and trying again with a symlink-farm approach.

Need I say that he has not found an immediate consensus on this?
3
10
22
Show older