Language Selection

English French German Italian Portuguese Spanish

Gentoo

Don't Look For Gentoo's CPU Optimization Options To Land In The Mainline Linux Kernel

Filed under
Linux
Gentoo

Gentoo's Linux kernel build has long offered various CPU options in allowing those building their distribution to optimize their kernel build to the CPU being used. Every so often the patch is suggested for upstreaming to the mainline Linux kernel before being quickly rejected by the upstream maintainers.

This week the kernel CPU options patch was suggested for mainlining in the Linux kernel. The patch adds extra CPU options to the kernel configuration (Kconfig) area for adjusting the GCC optimization values for various generations of Intel/AMD CPUs. It allows building the kernel ranging from -march=k8-sse3 to -march=cannonlake, among other prominent generations of Intel/AMD processors over the years.

Read more

Redcore Linux Gives Gentoo a Nice Facelift

Filed under
Linux
Gentoo
Reviews

I like the overall look and feel of Redcore Linux. I generally do not use Gentoo-based Linux distros.

However, this distro does a good job of leveling the field of differences among competing Linux families. I especially like the way the LXQt and the KDE Plasma desktops have a noticeable common design that makes the Redcore distro stand out.

Read more

Attack on git signature verification via crafting multiple signatures

Filed under
Development
Gentoo
Security

This article shortly explains the historical git weakness regarding handling commits with multiple OpenPGP signatures in git older than v2.20. The method of creating such commits is presented, and the results of using them are described and analyzed.

Read more

Custom Linux Installations

Filed under
GNU
Linux
Gentoo
Debian

Customize your Linux installation and gain working knowledge of your system at the same time.

Most Linux users are content with a standard installation of their distribution of choice. However, many prefer a custom installation. They may simply prefer to do things their way without dozens of post-install tweaks. Others may want to know exactly what they are installing as a requirement for security. Still others may want a consistent installation for multiple machines or to learn more about their operating system step by step. Linux offers tools for all these purposes.

Admittedly, most of these tools are for major distributions. A survey of these tools shows that many are for time-tested distros like Debian or openSUSE. If you want a custom install of, say, KDE neon or Puppy Linux, you may not find a ready-made solution. But among the major distributions, you are like to find multiple solutions. Read on for some of the main options.

Read more

Calculate Linux 18.12 released

Filed under
Gentoo

We have a bunch of news for this last 2018 release. We have added support for installation on Btrfs with the zstd compression. All server editions have been optimized for size. Software can now be transferred when reinstalling the system. Our ISO images are packed in the zstd format to speed up the startup times for the LiveCD, applications and system installation.

Are available for download: Calculate Linux Desktop featuring the KDE (CLD), Cinnamon (CLDC), LXQt (CLDL), Mate (CLDM) or else Xfce (CLDX and CLDXE) environments, Calculate Directory Server (CDS), Calculate Linux Scratch (CLS) and Calculate Scratch Server (CSS).

Read more

Calculate Linux Desktop 18 LXQt released

Filed under
Gentoo

We are happy to announce the release of a new Calculate Linux Desktop flavour, featuring the LXQt desktop and therefore named CLDL. As well as other Calculates, it is backward compatible with Gentoo. As well as Gentoo, it uses Portage to install and manage packages. Our repository contains 13033 binary packages. The system boots with OpenRC. For network configuration, you have the choice between NetworkManager or OpenRC. For sound management, ALSA is suggested, PulseAudio is not needed.
CLDL is the fifth little one in the Calculate Linux Desktop family, providing a full-fledged workplace both in office and at home. This new distribution perfectly combines the advantages of Qt5, which is indeed the base for its interface, with the low system requirements of the Openbox window manager. CLDL is localized out-of-box in all standard European languages.

Read more

Elivepatch Progressing For Live Kernel Patching On Gentoo, Rolling To Other Distros

Filed under
Linux
Gentoo

Elivepatch is a distributed live kernel patching mechanism developed by the Gentoo crowd during GSoC 2017 and has continued to be developed. While it is still centered around Gentoo, there are ambitions to bring this open-source live kernel patching tech to other distributions.

Alice Ferrazzi as the Gentoo Kernel Project Leader has been central to the development of Elivepatch going back to its start almost two years ago and she presented on it last week at Linux Plumbers Conference 2018. Elivepatch builds upon the live-patching code in the mainline kernel but was motivated due to the different vendor solutions being quite limited. For example, Oracle with Ksplice only works with Oracle Linux kernels, some of the vendor solutions being closed-source, requiring other custom kernel bits, or lack long-term support.

Read more

Compartmentalized computing with CLIP OS

Filed under
OS
Gentoo

The design of CLIP OS 5 includes three elements: a bootloader, a core system, and the cages. The system uses secure boot with signed binaries. Only the x86 architecture was supported in the previous versions, and there are no other architectures in the plan for now. The core system is based on Hardened Gentoo. Finally, the cages provide user sessions, with applications and documents.

Processes running in separate cages cannot communicate directly. Instead, they must pass messages using special services on the core system; these services are unprivileged and confined on the cage system, but privileged on the core. These communication paths are shown in this architecture diagram from the documentation. Cages are also isolated from the core system itself — all interactions (system calls, for example) are checked and go through mediation services. The isolation between applications will be using containers, and the team plans to use the Flatpak format. The details of the CLIP OS 5 implementation are not available yet, as this feature is planned for the stable release.

A specific Linux security module (LSM) inspired from Linux-VServer will be used to add additional isolation between the cages, and between the cages and the core system. Linux-VServer is a virtual private server implementation designed for web hosting. It implements partitioning of a computer system in terms of CPU time, memory, the filesystem, and network addressing into security contexts. Starting and stopping a new virtual server corresponds to setting up and tearing down a security context.

Read more

Calculate Linux 18 released

Filed under
Gentoo

We are happy to announce the release of Calculate Linux 18!

In this latest version, Calculate Utilities were ported to Qt5, your network is managed in a different way, and binary packages get checked using their index signature.

Calculate Linux Desktop featuring KDE (CLD), Cinnamon (CLDC), Mate (CLDM), or Xfce (CLDX) environments, Calculate Linux Scratch (CLS), Calculate Directory Server (CDS) and Calculate Scratch Server (CSS) are available for download.

Read more

CLIP OS, Like Chrome OS, is Based on Gentoo

Filed under
Gentoo

ANSSI, the National Cybersecurity Agency of France, has released the sources of CLIP OS, that aims to build a hardened, multi-level operating system, based on the Linux kernel and a lot of free and open source software. We are happy to hear that it is based on Gentoo Hardened!

Read more

Syndicate content

More in Tux Machines

From Trusty to Bionic - my Ultrabook story

I am happy with how the upgrade went, given that I've actually bumped the system two major releases. Apart from small issues, there was nothing cardinal in the move. No data loss, no complications, no crashes. All my stuff remains intact, and so does Windows 8, living happily together and sharing the disk with Ubuntu. Mission accomplished. But we ain't done. I need to make the system as usable as possible. Which means Unity testing - and Plasma testing, of course, duh! Indeed, this remains a productivity box, and as such, it must fulfill some very stringent requirements. It must be stable, fast and elegant. It must work with me every step of the way, and it must allow me to transparently and seamlessly use various programs that I need. On this particular machine, that would be video editing with Kdenlive, that would be image processing with GIMP, the use of encryption and VPN tools, tons of writing on the superbly ergonomic Asus keyboard. But all that and more - coming soon. For now, thank you Trusty for five sweet, loyal years. May you ReST in ethernet peace. Read more

Software: Avidemux, Cockpit and NVMe VFIO in Linux

  • Avidemux 2.7.3 Released with Various Decoder Fixes (Ubuntu PPA)
    Avidemux video editor released a new bug-fix version just 11 days after the last, with decoder fixes and misc small improvements
  • Cockpit Project: Cockpit 190
    Cockpit is the modern Linux admin interface. We release regularly. Here are the release notes from version 190.
  • NVMe VFIO Mediated Device Support Being Hacked On For Lower Latency Storage In VMs
    Maxim Levitsky of Red Hat sent out a "request for comments" patch series this week introducing NVMe VFIO media storage device support for the Linux kernel. Levitsky is pursuing faster virtualization of storage while striving for low latency and that led to the creation of a VFIO-based mediated device driver to pass an NVMe partition or namespace to a guest. This NVMe VFIO mediated device support would allow virtualized guests to run their unmodified/standard NVMe device drivers, including the Windows drivers, while still allowing the NVMe device to be shared between the host and guest.

Fedora: Parental Controls, FPgM, Ambassadors/Translation Sprint, Modularity Test Day and Delays

  • Allan Day: Parental Controls and Metered Data Hackfest
    This week I participated in the Parental Controls and Metered Data Hackfest, which was held at Red Hat’s London office. Parental controls and metered data already exist in Endless and/or elementary OS in some shape or form. The goal of the hackfest was to plan how to upstream the features to GNOME. It’s great to see this kind of activity from downstreams so I was very happy to contribute in my capacity as an upstream UX designer. There have been a fair few blog posts about the event already, so I’m going to try and avoid repeating what’s already been written…
  • FPgM report: 2019-12
    Fedora 30 Beta is No-Go. Another Go/No-Go meeting will be held on Thursday. I’ve set up weekly office hours in #fedora-meeting-1. Drop by if you have any questions or comments about the schedule, Changes, elections, or anything else. The Fedora 30 Beta Go/No-Go and Release Readiness meetings are next week.
  • Not posting here means not there is nothing done
    I looking with fears to this strange ideas Mindshare has for the future of the Ambassadors. You can not write reports if you not have an event, so I telling here now how hard it is in this country to organize an event. Since October 2018 I search for a place which would host the next Translation Sprint. We have tons of co-working spaces or NGO’s which have space available. But is always the same I asked e.g. Open Institute, answer we can host you just on Saturday. And I had actually to write there several times and even make calls because I got no answer for the first contact. The same on The Desk, we can host you only on Saturday. This makes no sense in Cambodia, it is a regular working day, because they have 28 holidays. So most people have to work until 2pm. What sucked on this one, I was working on it since end of January. So first meeting was setup for 11th March, I went there but nobbody there to meet me. This is normal cambodian working style I dont tell I am busy and cant meet you and give you an alternative time. Well the promised mail with an alternative time never arrived, so I had to ask for it again. Second meeting was then this Monday, I spent an hour with them with the useless result of “just Saturday”. But there is light on the horizon OpenDevelopment might host us but here just on Sunday, which is for us better then just Saturday. So six months, hundreds of mails and several meetings and achieved nothing. How easy is it to setup a Fedora Womans Day in the Pune office, compared to this and then just travel around the world to visit other events and this is then called “active”
  • Fedora 30 Modularity Test Day 2019-03-26
  • Fedora 30 Beta Won't Be Released Next Week Due To Their Arm Images Lacking A Browser

Games: Lutris, Flux Caves, Cities: Skylines

  • Lutris 0.5.1 Brings Improved GOG Integration, Various Fixes
    Released at the start of February was the big Lutris 0.5 release with an enhanced GTK interface, GOG.com support, and much more for this open-source gaming platform. Lutris 0.5.1 is now available with some much needed fixes.
  • In the puzzle game Flux Caves you will be pushing around blocks to play with large marbles
    If you like puzzle games and marbles today is your lucky day as I came across Flux Caves, which merges them into one game. It's early-on in development but it has a pretty great idea. It's like piecing together an oversized marble-run, with each level having various tubes and other special blocks missing that you need to slot into place.
  • Cities: Skylines is another game having a free weekend on Steam right now
    As a reminder, it recently turned four years old and it's showing no signs of slowing down with multiple thousands on it every day. If you do decide to give it a go, I highly recommend the Clouds & Fog Toggler mod from the Steam Workshop to give you a really clear view. That's another thing that I love about Cities: Skylines, there's a huge amount of extra content available for it like maps, mods, scenarios and more. The mod selection is incredibly varied too from simple tools to automatically bulldoze abandoned or burned down buildings to adding in entirely new ways to play.