Language Selection

English French German Italian Portuguese Spanish

LWN

Syndicate content
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Updated: 2 hours 13 min ago

[$] Synchronized GPU priority scheduling

Friday 22nd of October 2021 02:59:12 PM
Since the early days, Unix-like systems have implemented the concept of process priorities, where higher-priority processes are given more CPU time to get their work done. Implementations have changed, and alternatives (such as deadline scheduling) are available for specialized situations, but the core priority (or, in an inverted sense, "niceness") concept remains essentially the same. What should happen, though, in a world where increasing amounts of computing work is done outside of the CPU? Tvrtko Ursulin has put together a patch set showing how the nice mechanism can be extended to GPUs as well.

Security updates for Friday

Friday 22nd of October 2021 01:34:31 PM
Security updates have been issued by Arch Linux (apache, chromium, nodejs, nodejs-lts-erbium, nodejs-lts-fermium, and virtualbox), Fedora (vsftpd and watchdog), Oracle (java-1.8.0-openjdk, java-11-openjdk, and redis:6), and Ubuntu (libcaca, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gke, linux-gke-5.4, linux-gkeop, linux-gkeop-5.4, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-azure-5.8, and mailman).

You Can Now Directly Read Data Logs From Tesla Vehicles (Jalopnik)

Thursday 21st of October 2021 11:24:35 PM
The Jalopnik automotive site has posted an article on a (relatively) new set of open-source tools that can extract log data from Tesla cars.

Since Tesla cars run a Debian-based operating system, navigating through their file systems is somewhat trivial to anyone who’s spent a weekend messing with virtual Linux machines (or watching Mr. Robot). Actually accessing the car’s memory, however, is considerably harder: all cases require at least partially disassembling the dashboard, and some even require disassembly of the car’s media control unit.

Once that’s done, however, the data trove is incredible.

Announcing Rust 1.56.0 and Rust 2021

Thursday 21st of October 2021 07:35:17 PM
The Rust language project has announced the release of stable version 1.56.0 and the Rust 2021 edition. We wrote about plans for the Rust 2021 Edition in May. Editions are a mechanism for opt-in changes that may otherwise pose backwards compatibility risk. See the edition guide for details on how this is achieved. This is a smaller edition, especially compared to 2018, but there are still some nice quality-of-life changes that require an edition opt-in to avoid breaking some corner cases in existing code.

See the detailed release notes for 1.56.0 for lots more information on the release.

Notes from the 2021 Git Contributors' Summit

Thursday 21st of October 2021 03:04:13 PM
For those who are curious about where the development of Git is headed: Johannes Schindelin has posted an extensive set of notes from the just-concluded Git Contributors' Summit.

We held our second all-virtual Summit over the past two days. It was the traditional unconference style meeting, with topics being proposed and voted on right before the introduction round. It was really good to see the human faces behind those email addresses. 32 contributors participated, and we spanned the timezones from PST to IST.

Be sure to go into the thread for the full notes.

[$] Controlling the CPU scheduler with BPF

Thursday 21st of October 2021 02:15:45 PM
While the BPF virtual machine has been supported by Linux for most of the kernel's existence, its role for much of that time was limited to, as its full name (Berkeley packet filter) would suggest, filtering packets. That began to change in 2012 with the introduction of seccomp() filtering, and the pace picked up in 2014 with the arrival of the extended BPF virtual machine. At this point, BPF hooks have found their way into many kernel subsystems. One area that has remained BPF-free, though, is the CPU scheduler; that could change if some version of this patch set from Roman Gushchin finds its way into the mainline.

Security updates for Thursday

Thursday 21st of October 2021 02:00:06 PM
Security updates have been issued by Debian (python-babel, squashfs-tools, and uwsgi), Fedora (gfbgraph and rust-coreos-installer), Mageia (aom, libslirp, redis, and vim), openSUSE (fetchmail, go1.16, go1.17, mbedtls, ncurses, python, squid, and ssh-audit), Red Hat (java-1.8.0-openjdk and java-11-openjdk), Scientific Linux (java-1.8.0-openjdk and java-11-openjdk), SUSE (fetchmail, git, go1.16, go1.17, ncurses, postgresql10, python, python36, and squid), and Ubuntu (linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-dell300x, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm, linux-raspi2, linux-snapdragon, linux, linux-bluefield, linux-gcp-5.4, linux-hwe-5.4, linux-kvm, linux-oem-5.10, and linux-oem-5.13).

[$] LWN.net Weekly Edition for October 21, 2021

Thursday 21st of October 2021 12:41:01 AM
The LWN.net Weekly Edition for October 21, 2021 is available.

[$] Empowering users of GPL software

Wednesday 20th of October 2021 09:59:10 PM
A new style of GPL-enforcement lawsuit was filed on October 19 by Software Freedom Conservancy (SFC) against television maker Vizio. Unlike previous GPL-enforcement suits, which have been pursued on behalf of the developers and copyright holders of GPL-licensed code, this suit has been filed on behalf of owners of the TVs in question. The idea that owners of devices that contain code under the GPL have the right to access that code seems clearly embodied in the license, but it remains to be seen if the courts will decide that those owners have the legal standing to sue for relief.

Stable kernel updates

Wednesday 20th of October 2021 03:35:52 PM
Stable kernels 5.14.14, 5.10.75, 5.4.155, 4.19.213, and 4.14.252 have been released. They all contain important fixes and users of those series should upgrade.

Security updates for Wednesday

Wednesday 20th of October 2021 03:26:55 PM
Security updates have been issued by Debian (ffmpeg, smarty3, and strongswan), Fedora (udisks2), openSUSE (flatpak, strongswan, util-linux, and xstream), Oracle (redis:5), Red Hat (java-1.8.0-openjdk, java-11-openjdk, openvswitch2.11, redis:5, redis:6, and rh-redis5-redis), SUSE (flatpak, python-Pygments, python3, strongswan, util-linux, and xstream), and Ubuntu (linux, linux-aws, linux-aws-5.11, linux-azure, linux-azure-5.11, linux-gcp, linux-gcp-5.11, linux-hwe-5.11, linux-kvm, linux-raspi and strongswan).

How a simple Linux kernel memory corruption bug can lead to complete system compromise (Project Zero)

Wednesday 20th of October 2021 01:20:04 PM
Over at the Project Zero blog, Jann Horn has a lengthy post on a kernel bug, ways to exploit it, and various ideas on mitigation. While the exploitation analysis is highly detailed, more than half of the post looks at various defenses to this kind of bug. This blog post describes a straightforward Linux kernel locking bug and how I exploited it against Debian Buster's 4.19.0-13-amd64 kernel. Based on that, it explores options for security mitigations that could prevent or hinder exploitation of issues similar to this one.

I hope that stepping through such an exploit and sharing this compiled knowledge with the wider security community can help with reasoning about the relative utility of various mitigation approaches.

A lot of the individual exploitation techniques and mitigation options that I am describing here aren't novel. However, I believe that there is value in writing them up together to show how various mitigations interact with a fairly normal use-after-free exploit.

[$] Moving toward Qubes OS 4.1

Wednesday 20th of October 2021 12:35:01 AM
On October 11, the first release candidate for Qubes OS version 4.1 was announced. Qubes OS is a security-oriented desktop operating system that uses multiple virtual machines (VMs or "qubes") to isolate various types of functionality. The idea is to compartmentalize different applications and operating-system subsystems to protect them from each other and to limit access to the user's data if an application is compromised. Version 4.1 will bring several important enhancements to help Qubes OS continue to live up to its motto: "A reasonably secure operating system".

SFC files suit against Vizio over GPL violations

Tuesday 19th of October 2021 05:50:05 PM
Software Freedom Conservancy has announced that it filed suit against TV maker Vizio over "repeated failures to fulfill even the basic requirements of the General Public License (GPL)". The organization raised the problems with Vizio in August 2018, but the company stopped responding in January 2020, according to the announcement. "We are asking the court to require Vizio to make good on its obligations under copyleft compliance requirements," says [Software Freedom Conservancy executive director Karen] Sandler. She explains that in past litigation, the plaintiffs have always been copyright holders of the specific GPL code. In this case, Software Freedom Conservancy hopes to demonstrate that it's not just the copyright holders, but also the receivers of the licensed code who are entitled to rights.

The lawsuit suit seeks no monetary damages, but instead seeks access to the technical information that the copyleft licenses require Vizio to provide to all customers who purchase its TVs (specifically, the plaintiff is asking for the technical information via "specific performance" rather than "damages").

The complaint is also available.

Security updates for Tuesday

Tuesday 19th of October 2021 02:54:19 PM
Security updates have been issued by Debian (redmine and strongswan), Fedora (containerd, fail2ban, grafana, moby-engine, and thunderbird), openSUSE (curl, firefox, glibc, kernel, libqt5-qtsvg, rpm, ssh-audit, systemd, and webkit2gtk3), Red Hat (389-ds:1.4, curl, kernel, kernel-rt, redis:5, and systemd), SUSE (util-linux), and Ubuntu (ardour, linux-azure, linux-azure-5.11, and strongswan).

[$] A disagreement over get_mm_exe_file()

Monday 18th of October 2021 02:45:42 PM
Differences of opinion over which kernel symbols should be exported to loadable modules have been anything but uncommon over the years. Often, these disagreements relate to which kernel capabilities should be available to proprietary modules. Sometimes, though, it hinges on the disagreements over the best way to solve a problem. The recent discussion around the removal of an export for a core kernel function is a case in point.

Security updates for Monday

Monday 18th of October 2021 02:26:30 PM
Security updates have been issued by Debian (amd64-microcode, libreoffice, linux-4.19, and nghttp2), Fedora (chromium, libopenmpt, vim, and xen), openSUSE (firefox, kernel, krb5, libaom, and opera), Oracle (thunderbird), SUSE (firefox, firefox, rust-cbindgen, iproute2, javapackages-tools, javassist, mysql-connector-java, protobuf, python-python-gflags, and krb5), and Ubuntu (nginx).

Kernel prepatch 5.15-rc6

Monday 18th of October 2021 01:46:18 PM
The 5.15-rc6 kernel prepatch is out. "I'd love to say that it's all looking average, but rc6 is actually bigger than rc5 was, and larger than normal for this time in the release cycle. It's not _enormously_ larger than normal, and it's not the largest rc6 we've had, but it's still slightly worrisome."

A set of stable kernels

Monday 18th of October 2021 01:09:20 AM
Greg Kroah-Hartman has released the 5.14.13, 5.10.74, 5.4.154, 4.19.212, 4.14.251, 4.9.287, and 4.4.289 stable kernel updates. Each contains another set of important fixes.

[$] Possible changes to Debian's decision-making processes

Friday 15th of October 2021 02:35:27 PM
The name Debian brings to mind a Linux distribution, but the Debian project is far more than that; it is an ongoing experiment in democratic project governance. Debian's processes can result in a lot of public squabbling; one should not lose track, though, of the fact that those processes have enabled a large community to maintain and grow a complex distribution for decades without the benefit of an overseeing corporate overlord. Processes can be improved, though; a recent proposal from Russ Allbery gives an interesting picture of where the pain points are and what can be made better.

More in Tux Machines

pg_statement_rollback v1.3 released

pg_statement_rollback is a PostgreSQL extension to add server side transaction with rollback at statement level like in Oracle or DB2. Release v1.3 of pg_statement_rollback was released. This is a maintenance release to add support to PostgreSQL 14. See ChangeLog for a complete list of changes. Read more Also: PostgreSQL Weekly News - October 24, 2021

Review: Ubuntu 21.10

Ubuntu 21.10 (code name Impish Indri) and its many variant flavors were released on October 14. This release is a non-Long Term Support release, meaning it will be supported for nine months. Like all new releases of Ubuntu, Ubuntu 21.10 comes with numerous updates and enhancements. The most notable of these changes are the customized GNOME 40 desktop and Firefox being a Snap instead of a Deb package. Both of these changes are explored in depth in this review. Installing Ubuntu 21.10 I began by downloading the 2.9GB ISO and copying it to a flash drive. Booting the computer from the flash drive resulted in an extremely familiar experience. Unfortunately, the new installer currently being worked on did not make it into this release, so Ubuntu 21.10 still provides the same installation experience as all the recent releases of Ubuntu. Read more

Indie dev finds that Linux users generate more, better bug reports

An indie developer has found an interesting observation: Though only 5.8% of his game's buyers were playing on Linux, they generated over 38% of the bug reports. Not because the Linux platform was buggier, either. Only 3 of the roughly 400 bug reports submitted by Linux users were platform specific, that is, would only happen on Linux. The developer, posting as Koderski for developer Kodera Software on Reddit, makes indie game ΔV: Rings of Saturn—that's Delta V, or DV, for the non-rocket-science-literate. It's a hard science, physics-based space mining and piracy game that I quite like, personally, for its blend of playability that still honors the basics of spaceflight. If you quite like the space combat of, say, The Expanse, DV is a sim that might be for you. Koderski says he's sold a little over 12,000 copies of his game, and about 700 of those were bought by Linux players. "I got 1040 bug reports in total, out of which roughly 400 are made by Linux players," says Koderski's post. "That’s one report per 11.5 users on average, and one report per 1.75 Linux players. That’s right, an average Linux player will get you 650% more bug reports." Koderski's numbers are a limited sample size drawn from one person's experience, but tell a compelling story. Read more

today's howtos

  • How to use and install Stremio on Linux

    Stremio is a media center that allows users to watch movies, TV shows, and even YouTube videos instantaneously. It also supports DLNA and many other features. Here’s how to use Stremio on Linux.

  • Deploying containers with Consfigurator

    For some months now I’ve been working on some patches to Consfigurator to add support for Linux containers. My goal is to make Consfigurator capable of both performing the initial setup of a container and of entering the running container to apply configuration. For the case of unprivileged LXCs running as non-root, my work-in-progress branch can now do both of these things. As Consfigurator enters the container directly using system calls, it should be decently fast at configuring multiple containers on a host, and it will also be possible to have it do this in parallel. The initial setup for the container uses Consfigurator’s existing support for building root filesystems, and it should be easy to extend that to support arbitrary GNU/Linux distributions by teaching Consfigurator how to invoke bootstrapping tools other than debootstrap(8).

  • Vincent Bernat: FRnOG #34: how we deployed a datacenter in one click

    The presentation, in French, was recorded. I have added English subtitles.

  • How to install FileZilla on a Chromebook

    Today we are looking at how to install FileZilla on a Chromebook. Please follow the video/audio guide as a tutorial where we explain the process step by step and use the commands below.

  • How to Install Zoom Client on Fedora 35 - LinuxCapable

    Zoom is a communications technology platform that provides videotelephony and real-time online chat services through a cloud-based peer-to-peer software platform and is used for teleconferencing, telecommuting, distance education, and much more.

  • How to Install Sails.js Framework with Nginx on Rocky Linux 8 - LinuxCapable

    Sails.js is a Javascript framework that you can use to easily and quickly build customized enterprise-grade for Node.js. It resembles the MVC architecture from such frameworks as Ruby on Rails, but with improved support for the more data-oriented modern style of developing web applications and is compatible with other front-end including Angular, React, iOS, Android, Windows Phone, and much more. In the following tutorial, you will learn how to install Sails.js and access the web-based interface by installing and configuring an Nginx reverse proxy setup on Rocky Linux 8.

  • How to Zip and Unzip Files on Android (RAR, ZIP, 7Z) - Make Tech Easier

    If your job demands that you send many large files, or if you just want an easy way to send a large number of pictures to someone, zip files are a necessity – even on your phone! This article shows how to compress or decompress large files on your Android smartphone.

  • How to Install Python Pip / PIP3 on Debian 11 Bullseye - LinuxCapable

    PIP is the standard package manager for installing Python packages. With PIP, you can list, search and download to install packages from the Python Package Index (PyPI). PIP was first included with the Python installer since version 3.4 for Python 3 release and 2.7.9 for Python 2 and is well utilized with many Python projects. In the following tutorial, you will learn how to install the PIP / PIP2 or PIP3 on Debian 11 Bullseye operating system.

  • How to Install Google Chrome on openSUSE Leap 15 - LinuxCapable

    ogle Chrome is the most used Internet Explorer software on the earth, with a recent update in 2021 that Chrome is currently the primary browser of more than 2.65 billion internet users. However, as you would know, after installing openSUSE, only Mozilla Firefox is packaged with the distribution but luckily, installing Google Chrome is a straightforward task. In the following tutorial, you will learn how to install Google Chrome in three various ways in stable, beta, or unstable versions on openSUSE Leap 15.

  • How to browse Reddit from the Linux desktop with Giara

    If you like Reddit but prefer to browse from an app, Giara may be for you. It is a Linux app that allows users to consume Reddit content from the desktop. In this guide, we’ll show you how to install it and use it on your system. Note: You must have a Reddit account to make use of the Giara application on Linux. To create a new Reddit account, head over to Reddit and click on the new “sign up” button.

  • How to Install Brave Browser on openSUSE Leap 15 - LinuxCapable

    Brave is a free and open-source web browser developed by Brave Software, Inc. based on the Chromium web browser. Brave is a privacy-focused Internet web browser, which distinguishes itself from other browsers by automatically blocking online advertisements and website trackers in its default settings. Brave has claimed its browser puts less strain on your computer’s performance than Google Chrome, regardless of how much you ask of it. Even with multiple tabs open at once, Brave uses less memory than Google Chrome-like, up to 66% less. In the following tutorial, you will learn how to install Brave on openSUSE Leap 15.

  • How to Install / Upgrade to Latest Nginx Mainline or Stable on openSUSE Leap 15 - LinuxCapable

    For those using openSUSE 15 Leap, you might have noticed that installing Nginx directly from its repository does not install the latest stable or mainline version. This is a common trend in most distributions that focus on the stability of packages and provide only urgent bug or security updates until the subsequent major distribution. For most, using the default Nginx that comes bundled with the repository will be preferred, but often many require and want the latest version of stable or mainline for updated features. The following tutorial will cover installing the last stable or mainline versions of Nginx on openSUSE 15 Leap.

  • How to Add a User to Sudoers on openSUSE - LinuxCapable

    When installing openSUSE, the user account that was created during the initial setup has sudo rights. However, there may be a need to add additional sudo users or make the default user have sudo rights. This is a straightforward process with a few commands. In the following tutorial, you will learn to add a user to the sudoers group on any openSUSE system.

  • How to easily download and install apps on Linux with AppImage Pool

    AppImagePool is an AppImageHub client for Linux. With it, users can easily browse and download AppImages from the AppImageHub store. Here’s how to get it working on your Linux system.