Posts
4983Following
329Followers
494OpenPGP: 3AB05486C7752FE1
Jarkko Sakkinen
jarkko
It has quite short errata now: TPM2_PolicyAuthorize returns InvalidPolicy (which will be addressed some day). Other than that it addresses empty policies, special handling for TPM2_PolicySecret and other weirdness.
Plus, has 'parentPublic" extension, which enables implict and automatic parent key discovery.
Other than this crate is decoupled from all crypto libraries, other than pem crate and implementing encoder and decoder with rasn. I
Lot's of stuff have been piled, so it needs boil for a while after all these changes but now it is at least in the ballpark.
[1] https://docs.rs/tpm2-tpmkey/latest/tpm2_tpmkey/
[2] https://www.hansenpartnership.com/draft-bottomley-tpm2-keys.txt
0
0
0
repeated
Phoronix
phoronix@masto.aisudo-rs Affected By Multiple Security Vulnerabilities - Impacting Ubuntu 25.10
The Ubuntu 25.10 transition to using some Rust system utilities continues proving quite rocky. Beyond some early performance issues with Rust Coreutils, breakage for some executables, and broken unattended upgrades due to a Rust Coreutils bug, it's also sudo-rs now causing Ubuntu developers some headaches. There are two moderate security issues affecting su…
https://www.phoronix.com/news/sudo-rs-security-ubuntu-25.10
0
2
0
repeated
Jan Wildeboer 😷
jwildeboer@social.wildeboer.net
In my personal opinion: Instead of banning, say, Chinese companies from delivering infrastructure components like the EU is pondering with Huawei and mobile networks, the ultimate goal should be to demand open source software/firmware for these components and reproducible builds of all software components so #DigitalSovereignty becomes default.
8
15
0
Jarkko Sakkinen
jarkkohttps://lore.kernel.org/all/aRKeLRx2NeozFUrc@kernel.org/
#linux #kernel #ai
0
0
1
Jarkko Sakkinen
jarkkoGiven that Servo is complicated I'm figuring offline rendering part in a separate project.
I needed some tileable content to work with so I wrote "a classic" fractal cloud generator out of my memory (decades ago literally) ("diamond alike" recursion and periodic perlin noise) :-)
This was also great finding: https://github.com/rust-windowing/softbuffer
1
0
1
Jarkko Sakkinen
jarkkoI dropped MockTPM from tpm2sh but I'm plannig to resurrect it as a focused and almost zero configuration TPM emulator with exactly two preset configuration. I will pay also attention to QEMU integration. I think presets could be even named after chips.
Options will be something along lines:
1. --cache-dir
2. --preset (not sure about option name yet)
3. Options for supplying certificates for endorsement CA.
That's it.
#linux #kernel #mocktpm #tpm
0
0
1
repeated
Brad Linder
bradlinder@fosstodon.orgMaemo Leste is a mobile Linux distro that carries on the legacy of Nokia's short-lived Linux-based smartphone OS. Ccurrently based on Devuan Daedalus (Debian Bookworm), work is underway to migrate to Excalibur (Trixie). Here's a summary of recent developments. https://maemo-leste.github.io/maemo-leste-2025-daedalus-release.html #MobileLinux #MaemoLeste #Maemo #Debian #Duvian
0
6
2
Jarkko Sakkinen
jarkkoFor me that means exactly to never use Gitoxide and stick using libgit2 bindings because they retain software ubiquitos across environment and toolchains.
This also thought me an important lesson: using well established C-library throught bindings is 9/10 times a better choice than using equivalent "pure Rust" implementation. This does not mean that the Rust implementation would be somehow"worse", generally it just seems that Rust developers are completely ignorant of optimizing things like RSVM.
That leaves you two options.
1. Use a really old version of "pure Rust" library in order to maintain RSVM of your choice. Usually this means using a version, which never will be updated.
2. Use Rust-bindings of a C-library and have always up to date version of the dependency while retaining RSVM of your choice.
The crazy RSVM requirement of Gitoxide zeros down its applicability for anything production. I will never touch it again.
#rustlang
2
0
0
repeated
Mastodon Engineering
MastodonEngineering@mastodon.socialWe’re happy to announce that Mastodon 4.5 is now ready for prime time! Quote posts, async fetching of replies, server timeline visibility settings, more moderation tools, and lots and lots of other tweaks and improvements.
Announcement on our blog: https://blog.joinmastodon.org/2025/11/mastodon-4.5/
Full release notes and update instructions are available on our GitHub release page: https://github.com/mastodon/mastodon/releases/tag/v4.5.0
0
10
0
Jarkko Sakkinen
jarkkoInstead using servo this will happen when showing HTML mail in mutt:
1. Render page as bitmap(s) to the cache after extracting CID shenanigans using Servo.
2. Page is showed then in the terminal sixel first and fallback to unicode rendering.
This way sixels performance issues won't get in the way and will overall much nice experience than opening a random tab in a browser.
https://crates.io/crates/mailweb
#mutt #viewhtmlmail #mailweb #servo
1
0
2
Jarkko Sakkinen
jarkko
0
0
2
Jarkko Sakkinen
jarkkoYou don't need to be an engineer to get it. It just tends to be easier to find ways map registers to registers, and requires more stretch to move between stack and register machine.
1
0
0
Jarkko Sakkinen
jarkkodude, you have like left and right plus one more state. i could explain DAC to my mom who does not anything aboutc omputers or permissions and i'm confident that she would get it.
other posts are the usual 2025 AI crap. i made account mostly to backup CV somewhere someday and curiosity after many years away from.
it does deliver shit and i do get some entertainment for boring moments so i guess it is a great service then 🤷
1
0
0