Language Selection

English French German Italian Portuguese Spanish

LWN

Syndicate content
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Updated: 35 min 31 sec ago

OpenSSH 8.7 released

Friday 20th of August 2021 04:51:38 PM
OpenSSH 8.7 has been released. Changes include steps toward deprecating scp and using the SFTP protocol for file transfers instead, changes to remote-to-remote copies (they go through the local host by default now), a stricter configuration-file parser, and more.

[$] The Btrfs inode-number epic (part 1: the problem)

Friday 20th of August 2021 03:29:52 PM
Unix-like systems — and their users — tend to expect all filesystems to behave in the same way. But those users are also often interested in fancy new filesystems offering features that were never envisioned by the developers of the Unix filesystem model; that has led to a number of interesting incompatibilities over time. Btrfs is certainly one of those filesystems; it provides a long list of features that are found in few other systems, and some of those features interact poorly with the traditional view of how filesystems work. Recently, Neil Brown has been trying to resolve a specific source of confusion relating to how Btrfs handles inode numbers.

Villa: Setting new expectations for open source maintainers

Friday 20th of August 2021 03:10:10 PM
Luis Villa writes about increasing demands on open-source maintainers on opensource.com.

Second, these new and increasingly specialized requirements primarily benefit a specific class of open source users—large enterprises. That isn't necessarily a bad thing—big enterprises are essential in many ways, and indeed, the risks to them deserve to be taken seriously.

But in a world where hundreds of billions of dollars in enterprise value have been created by open source, and where small educational/hobby projects (and even many small companies) don't really benefit from these new unfunded mandates, developers will likely focus on other things, since few of them got into open source primarily to benefit the Fortune 500.

Security updates for Friday

Friday 20th of August 2021 02:02:00 PM
Security updates have been issued by Fedora (libtpms and mingw-exiv2), openSUSE (389-ds, aspell, c-ares, fetchmail, firefox, go1.15, go1.16, haproxy, java-1_8_0-openjdk, krb5, libass, libmspack, libsndfile, openexr, php7, qemu, and tor), Oracle (compat-exiv2-023 and compat-exiv2-026), and SUSE (389-ds, aspell, djvulibre, fetchmail, firefox, go1.15, go1.16, java-1_8_0-openjdk, krb5, libass, libmspack, nodejs8, openexr, postgresql10, qemu, and spice-vdagent).

[$] The shrinking role of ETXTBSY

Thursday 19th of August 2021 03:05:44 PM
Unix-like systems abound with ways to confuse new users, many of which have been present since long before Linux entered the scene. One consistent source of befuddlement is the "text file is busy" (ETXTBSY) error message that is delivered in response to an attempt to overwrite an executable image file. Linux is far less likely to deliver ETXTBSY results than it once was, but they do still happen on occasion. Recent work to simplify the mechanism behind ETXTBSY has raised a more fundamental question: does this error check have any value at all?

LibreOffice 7.2 Community released

Thursday 19th of August 2021 01:54:13 PM
The Document Foundation has announced the latest release of LibreOffice: LibreOffice 7.2 Community, the new major release of the volunteer-supported free office suite for desktop productivity, is available from https://www.libreoffice.org/download. Based on the LibreOffice Technology platform for personal productivity on desktop, mobile and cloud, it provides a large number of interoperability improvements with Microsoft’s proprietary file formats. In addition, LibreOffice 7.2 Community offers numerous performance improvements in handling large files, opening certain DOCX and XLSX files, managing font caching, and opening presentations and drawings that contain large images. There are also drawing speed improvements when using the Skia back-end that was introduced with LibreOffice 7.1.

[...] LibreOffice 7.2 Community’s new features have been developed by 171 contributors: 70% of code commits are from 51 developers employed by three companies sitting in TDF’s Advisory Board – Collabora, Red Hat and allotropia – or other organizations (including The Document Foundation), and 30% are from 120 individual volunteers.

See the release notes for more information on the changes and new features in the LibreOffice 7.2.

Security updates for Thursday

Thursday 19th of August 2021 01:03:18 PM
Security updates have been issued by CentOS (exiv2, firefox, and thunderbird), Fedora (libsndfile, python-docx, and xscreensaver), openSUSE (haproxy), and SUSE (haproxy).

[$] LWN.net Weekly Edition for August 19, 2021

Thursday 19th of August 2021 12:22:25 AM
The LWN.net Weekly Edition for August 19, 2021 is available.

"The kernel report" online, August 26

Wednesday 18th of August 2021 09:04:18 PM
As part of the ramp-up to the 2021 Linux Plumbers Conference, LWN editor Jonathan Corbet will be presenting a version of "The kernel report" at 9:00AM US/Mountain time (15:00 UTC) on Thursday, August 26. Registration for LPC is not required; all are welcome for an update on the state of kernel development and a perspective on 30 years of the Linux kernel. Please come for an interesting discussion and to help the LPC crew stress-test the 2021 infrastructure.

The talk will be happening at meet.lpc.events; the more the merrier.

[$] PEP 649 revisited

Wednesday 18th of August 2021 08:47:18 PM
Back in June, we looked at a change to Python annotations, which provide a way to associate metadata, such as type information, with functions. That change was planned for the upcoming Python 3.10 release, but was deferred due to questions about it and its impact on run-time uses of the feature. The Python steering council felt that more time was needed to consider all of the different aspects of the problem before deciding on the right approach; the feature freeze for Python 3.10 was only around two weeks off when the decision was announced on April 20. But now, there is most of a year before another feature freeze, which gives the council (and the greater Python development community) some time to discuss it at a more leisurely pace.

Three stable kernels

Wednesday 18th of August 2021 03:38:49 PM
Stable kernels 5.13.12, 5.10.60, 5.4.142 have been released. As usual, there are important fixes and users should upgrade.

Security updates for Wednesday

Wednesday 18th of August 2021 03:33:09 PM
Security updates have been issued by Debian (haproxy), Fedora (c-ares, hivex, kernel, libtpms, newsflash, python-django, rust-gettext-rs, and rust-gettext-sys), openSUSE (c-ares and libsndfile), Scientific Linux (cloud-init, edk2, exiv2, firefox, kernel, kpatch-patch, microcode_ctl, sssd, and thunderbird), SUSE (c-ares, fetchmail, haproxy, kernel, libmspack, libsndfile, rubygem-puma, spice-vdagent, and webkit2gtk3), and Ubuntu (exiv2, haproxy, linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gke, linux-gke-5.4, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm, linux-oracle, linux-raspi2, linux-snapdragon, and linux, linux-aws, linux-azure, linux-gcp, linux-hwe-5.11, linux-oracle, linux-raspi).

[$] STARTTLS considered harmful

Wednesday 18th of August 2021 12:30:22 AM
The use of Transport Layer Security (TLS) encryption is ubiquitous on today's internet, though that has largely happened over the last 20 years or so; the first public version of its predecessor, Secure Sockets Layer (SSL), appeared in 1995. Before then, internet protocols were generally not encrypted, thus providing fertile ground for various types of "meddler-in-the-middle" (MitM) attacks. Later on, the STARTTLS command was added to some protocols as a backward-compatible way to add TLS support, but the mechanism has suffered from a number of flaws and vulnerabilities over the years. Some recent research, going by the name "NO STARTTLS", describes more, similar vulnerabilities and concludes that it is probably time to avoid using STARTTLS altogether.

Firefox 91.0.1 and Firefox ESR 91.0.1

Tuesday 17th of August 2021 07:10:47 PM
These releases of Firefox 91.0.1 and Firefox ESR 91.0.1 fix two issues; one caused buttons on the tab bar to be resized and the other caused tabs from private windows to be visible in non-private windows. There is also a fix for a header splitting attack, and fixes for various stability issues.

Security updates for Tuesday

Tuesday 17th of August 2021 03:25:33 PM
Security updates have been issued by Fedora (firefox), openSUSE (cpio and rpm), Oracle (compat-exiv2-026, exiv2, firefox, kernel, kernel-container, qemu, sssd, and thunderbird), Red Hat (cloud-init, edk2, kernel, kpatch-patch, microcode_ctl, and sssd), and SUSE (cpio, firefox, and libcares2).

Git 2.33.0 released

Tuesday 17th of August 2021 01:53:01 PM
Version 2.33.0 of the Git source-code management system has been released.

As can be seen here, it turns out that this release does not have many end-user facing changes and new features, but a lot of fixes and internal improvements went into the codebase during this cycle. Also, preparation for a new merge strategy backend (can be used with "git merge -sort" today) is on its final stretch and we are hoping that it can become the default in the next release.

Go 1.17 is released

Monday 16th of August 2021 10:05:15 PM
The Go blog has announced the release of version 1.17 of the Go programming language. The new version has some fairly small changes to the language, support for the Arm 64-bit architecture on Windows, along with other features, bug fixes, and more: This release brings additional improvements to the compiler, namely a new way of passing function arguments and results. This change has shown about a 5% performance improvement in Go programs and reduction in binary sizes of around 2% for amd64 platforms. Support for more platforms will come in future releases.

See the release notes for more information.

[$] Short subjects: Realtime, Futexes, and ntfs3

Monday 16th of August 2021 04:27:10 PM
Even in the dog days of (northern-hemisphere) summer, the kernel community is a busy place. There are many developments that show up on your editor's radar, but which, for whatever reason, do not find their way into a full-length feature article. The time has come to catch up with a few of those topics; read on for updates on the realtime patch set, the effort to reinvent futexes, and the ntfs3 filesystem.

Asahi Linux progress report for August

Monday 16th of August 2021 04:02:04 PM
For those waiting to run Linux on Apple M1 hardware, the the August Asahi Linux progress report is out.

Instead, a much safer approach that has been used by projects such as Nouveau in the past is to record a log of the hardware accesses that the official drivers perform on a real system, without actually looking at the code. Nouveau accomplished this by using a Linux driver to intercept accesses by Nvidia’s official Linux driver. Of course, Apple’s M1 drivers are for macOS, not Linux. While we could implement the same approach with a custom patch to the open source core of the macOS kernel, we decided instead to go one level deeper and build a hypervisor that can run the entirety of macOS, unmodified, in a VM that transparently presents it the real M1 hardware.

Debian Edu / Skolelinux Bullseye released

Monday 16th of August 2021 03:29:37 PM
Following the Debian "Bullseye" release is a new Skolelinux distribution for a school near you.

Debian Edu, also known as Skolelinux, is a Linux distribution based on Debian providing an out-of-the box environment of a completely configured school network. Immediately after installation, a school server running all services needed for a school network is set up just waiting for users and machines to be added via GOsa², a comfortable web interface.

More in Tux Machines

Kernel and Graphics: Intel, AMD, and NVIDIA

  • Intel teases 'software-defined silicon' with Linux kernel contribution – and won't say why

    Intel has teased a new tech it calls "Software Defined Silicon" (SDSi) but is saying almost nothing about it – and has told The Register it could amount to nothing. SDSi popped up around three weeks ago in a post to the Linux Kernel mailing list, in which an Intel Linux software engineer named David Box described it as "a post-manufacturing mechanism for activating additional silicon features".

  • RadeonSI Lands Another "Very Large" Optimization To Further Boost SPECViewPerf - Phoronix

    In recent months we have seen a lot of RadeonSI optimizations focused on SPECViewPerf with AMD seemingly trying to get this open-source OpenGL driver into very capable shape moving forward for workstation GL workloads. Hitting Mesa 22.0-devel today is yet another round of patches for tuning SPECViewPerf.

  • Vendors Including NVIDIA Talk Up New OpenCL Extensions For Vulkan Interop, NN Inference - Phoronix

    Last Friday night we spotted OpenCL 3.0.9 with several new extensions included. Today The Khronos Group is formally announcing these latest OpenCL additions focused on Vulkan interoperability as well as neural network inferencing. These new extensions for OpenCL 3.0 include an integer dot product extension for neural network inferencing (cl_khr_integer_dot_product) with a focus on 8-bit integer support.

  • RadeonSI Enables NGG Shader Culling For Navi 1x Consumer GPUs - Phoronix

    As another possible performance win for RadeonSI Gallium3D as AMD's open-source Radeon OpenGL driver on Linux systems is enabling of NGG culling for Navi 1x consumer graphics processors rather than limiting it only to newer Navi 2x (RDNA2) GPUs. Merged on Monday was a patch to enable shader culling for Navi 1x consumer SKUs with no longer limiting it to Navi 2x / GFX10.3 or when using various debug options. This culling was also enabled for Navi 1x GPUs but only for the "Pro" graphics SKUs.

Databases: Managing Database Migrations, PostgreSQL-Related Releases

KDE Plasma 5.18.8, Bugfix Release for October

Plasma 5.18 was released in February 2020 with many feature refinements and new modules to complete the desktop experience. Read more

today's howtos

  • Speak to me! – Purism

    My trusty laptop’s speakers gave up the ghost. I don’t like to sit around in headphones all the time, I don’t have any other speakers, and the replacements are still being manhandled by the postman. I’d get used to the austerity if I hadn’t started missing calls from a friend. That’s unacceptable! But what am I supposed to do? Buy extra gadgets just to throw them away after a week? Nope, I’m not that kind of a person. But hey – I have a Librem 5! It has a speaker. It’s open. I have control over it, and I’m a hacker too. So I should be able to come up with a hack to turn it into a speaker for my laptop, right? Pulseaudio to the rescue. I look through the guide. There it is: forwarding audio over a network.

  • How To Install CSF Firewall on Debian 11 - idroot

    In this tutorial, we will show you how to install CSF Firewall on Debian 11. For those of you who didn’t know, CSF is also known as “Config Server Firewall” is a free and advanced firewall for Linux systems. We should use ConfigServer Security & Firewall (CSF) since this CSF have more advanced and comprehensive features than other firewall application such as UFW, Firewalld, or Iptables. Compared to the other Linux firewall application, CSF is more user-friendly and effective which is mostly used by web hosting providers. This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you through the step-by-step installation of the ConfigServer Security & Firewall (CSF) on a Debian 11 (Bullseye).

  • What are the differences between SQL and MySQL | FOSS Linux

    Due to many organizations, businesses, companies, and firms making an online presence, databases have become the core requirement for their daily operations. A database in a layman’s language is defined as a collection of data stored and organized electronically to ensure easy retrieval, access, management, and manipulation of business data. Most business successes depend on databases since they aid in storing essential and relevant data in a central position. Besides, databases also help facilitate communication of crucial business info such as employee profiles, sales transactions, customer profiles, marketing campaigns, product inventory, etc. Furthermore, databases have ensured that the company’s data is secure through various authentication mechanisms like access specifiers, user logins, and sign-ups. This article will talk about the difference between the two popular relational databases SQL and MySQL.

  • How to install Funkin' Psych Engine on a Chromebook

    Today we are looking at how to install Friday Night Funkin' Psych Engine on a Chromebook. Please follow the video/audio guide as a tutorial where we explain the process step by step and use the commands below.

  • How to Use an SSH Key with Non-root Users - Unixcop

    You can SSH to your Linux instance as root with the key. However, the key doesn’t work for non-root users. So we will illustrate two methods to use SSH keys with non-root users.

  • Allow Port Through Firewall in Ubuntu 20.04 - Linux Nightly

    Ubuntu comes with ufw (uncomplicated firewall) installed by default. This is a frontend for iptables/nftables, the built-in Linux firewall, and is meant to make firewall management a bit easier. In this guide, you’ll see how to add rules to the firewall to open ports and allow certain services to have access through the firewall on Ubuntu.

  • Some regex tests with grep, sed and AWK

    In my data work I regularly do searching and filtering with GNU grep (version 3.3), GNU sed (4.7) and GNU AWK (4.2.1). I don't know if they all use the same regex engine, but I've noticed differences in regex speed between these three programs. This post documents some of the differences.

  • Upgrade to Fedora 35 from Fedora 34 using DNF – If Not True Then False

    This is guide, howto upgrade Fedora 34 to Fedora 35 using DNF. This method works on desktop and server machines. You can also upgrade older Fedora installations (example Fedora 33/32/31/30) directly to Fedora 35. I have tested this method on several machines, but if you have problems, please let me know. Always remember backup, before upgrade!

  • Jenkins: Basic security settings - Anto ./ Online

    Jenkins contains sensitive information. Thus it must be secured, like any other sensitive platform. Thankfully Jenkins provides you with many security options. This guide will show you all the essential bits that you need to know. You access these features on the Configure Global Security page under manage Jenkins.

  • LDAP query from Python · Pablo Iranzo Gómez's blog

    Recently, some colleagues commented about validating if users in a Telegram group were or not employees anymore, so that the process could be automated without having to chase down the users that left the company. One of the fields that can be configured by each user, is the link to other platforms (Github, LinkedIn, Twitter, Telegram, etc), so querying an LDAP server could suffice to get the list of users. First, we need to get some data required, in our case, we do anonymous binding to our LDAP server and the field to search for containing the ‘other platform’ links.