Language Selection

English French German Italian Portuguese Spanish

LWN

Syndicate content
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Updated: 6 weeks 1 day ago

The 4.16 kernel is out

Sunday 1st of April 2018 11:48:49 PM
Linus has released the 4.16 kernel, as expected. "We had a number of fixes and cleanups elsewhere, but none of it made me go 'uhhuh, better let this soak for another week'". Some of the headline changes in this release include initial support for the Jailhouse hypervisor, the usercopy whitelisting hardening patches, some improvements to the deadline scheduler and, of course, a lot of Meltdown and Spectre mitigation work.

More stable kernel updates

Saturday 31st of March 2018 06:11:58 PM
The stable kernel update machine continues to generate releases: 4.15.15, 4.14.32, 4.9.92, and 4.4.126 are now available with another set of important fixes.

[$] A look at terminal emulators, part 1

Friday 30th of March 2018 06:12:51 PM

Terminals have a special place in computing history, surviving along with the command line in the face of the rising ubiquity of graphical interfaces. Terminal emulators have replaced hardware terminals, which themselves were upgrades from punched cards and toggle-switch inputs. Modern distributions now ship with a surprising variety of terminal emulators. While some people may be happy with the default terminal provided by their desktop environment, others take great pride at using exotic software for running their favorite shell or text editor. But as we'll see in this two-part series, not all terminals are created equal: they vary wildly in terms of functionality, size, and performance.

Security updates for Friday

Friday 30th of March 2018 03:13:44 PM
Security updates have been issued by Debian (memcached, openssl, openssl1.0, php5, thunderbird, and xerces-c), Fedora (python-notebook, slf4j, and unboundid-ldapsdk), Mageia (kernel, libvirt, mailman, and net-snmp), openSUSE (aubio, cacti, cacti-spine, firefox, krb5, LibVNCServer, links, memcached, and tomcat), Slackware (ruby), SUSE (kernel and python-paramiko), and Ubuntu (intel-microcode).

[$] An audit container ID proposal

Thursday 29th of March 2018 05:22:46 PM
The kernel development community has consistently resisted adding any formal notion of what a "container" is to the kernel. While the needed building blocks (namespaces, control groups, etc.) are provided, it is up to user space to assemble the pieces into the sort of container implementation it needs. This approach maximizes flexibility and makes it possible to implement a number of different container abstractions, but it also can make it hard to associate events in the kernel with the container that caused them. Audit container IDs are an attempt to fix that problem for one specific use case; they have not been universally well received in the past, but work on this mechanism continues regardless.

Announcing Rust 1.25

Thursday 29th of March 2018 04:15:38 PM
The Rust team has announced the release of Rust 1.25.0. "The last few releases have been relatively minor, but Rust 1.25 contains a bunch of stuff! The first one is straightforward: we’ve upgraded to LLVM 6 from LLVM 4. This has a number of effects, a major one being a step closer to AVR support." See the release notes for details.

Four new stable kernels

Thursday 29th of March 2018 02:41:56 PM
Greg Kroah-Hartman has announced the release of the 4.15.14, 4.14.31, 4.9.91, and 4.4.125 stable kernels. As usual, they contain a wide array of fixes throughout the kernel tree; users should upgrade.

Security updates for Thursday

Thursday 29th of March 2018 01:59:26 PM
Security updates have been issued by Debian (drupal7, graphicsmagick, libdatetime-timezone-perl, thunderbird, and tzdata), Fedora (gd, libtiff, mozjs52, and nmap), Gentoo (thunderbird), Red Hat (openstack-tripleo-common, openstack-tripleo-heat-templates and sensu), SUSE (kernel, libvirt, and memcached), and Ubuntu (icu, librelp, openssl, and thunderbird).

[$] LWN.net Weekly Edition for March 29, 2018

Thursday 29th of March 2018 12:00:34 AM
The LWN.net Weekly Edition for March 29, 2018 is available.

[$] DNF 3: better performance and a move to C++

Wednesday 28th of March 2018 10:17:30 PM

It has only been a few years since DNF replaced Yum as the default Fedora package-management tool; that was done for Fedora 22 in 2015, though DNF had been available for several earlier Fedora releases. Since that time, DNF development has proceeded; it started a move from Python/C to all C in 2016 and has made multiple releases over the years. From an outsider's perspective, no major changes seem necessary, which makes the announcement of DNF 3, and a move to C++, a bit surprising to some.

[$] Recent improvements to Tor

Wednesday 28th of March 2018 08:58:23 PM
We may need Tor, "the onion router", more than we ever imagined. Authoritarian states are blocking more and more web sites and snooping on their populations online—even routine tracking of our online activities can reveal information that can be used to undermine democracy. Thus, there was strong interest in the "State of the Onion" panel at the 2018 LibrePlanet conference, where four contributors to the Tor project presented a progress update covering the past few years.

Subscribers can read on for a report on the panel by guest author Andy Oram.

A serious Drupal security issue

Wednesday 28th of March 2018 07:55:35 PM
The Drupal security team has sent out a "highly critical" alert: "A remote code execution vulnerability exists within multiple subsystems of Drupal 7.x and 8.x. This potentially allows attackers to exploit multiple attack vectors on a Drupal site, which could result in the site being completely compromised." This seems worth avoiding; updating to the current version is the way to do that. There is an FAQ page with a little more information.

DomTerm 1.0 released

Wednesday 28th of March 2018 06:57:22 PM
Per Bothner has released DomTerm 1.0. Since DomTerm was covered here in January 2016, many features have been added or enhanced. (See this article on opensource.com.) DomTerm is a mostly-xterm-compatible terminal emulator, but the output can be graphics, rich text, and other html, so it is suitable as a REPL for a program like gnuplot. Other major features include screen/tmux-style tiling and detachable sessions, readline-style input editing (integrated with mouse and clipboard), and opening an editor when clicking an error message.

Qubes OS 4.0 has been released

Wednesday 28th of March 2018 06:40:12 PM
The security-focused distribution Qubes OS has released version 4.0. "This release delivers on the features we promised in our announcement of Qubes 4.0-rc1, with some course corrections along the way, such as the switch from HVM to PVH for most VMs in response to Meltdown and Spectre. For more details, please see the full Release Notes."

[$] An introduction to projectM

Wednesday 28th of March 2018 04:10:32 PM

Many people have seen music visualizations before, whether in a music player on their computer, at a live concert, or possibly on a home stereo system. Those visualizations may have been generated using the open-source music-visualization software library that is part of projectM. Software-based abstract visualizers first appeared along with early MP3 music players as a sort of nifty thing to watch along with listening to your MP3s. One of the most powerful and innovative of these was a plugin for Winamp known as MilkDrop, which was developed by a Nullsoft (and later NVIDIA) employee named Ryan Geiss. The plugin was extensible by using visualization equation scripts (also known as "presets").

Subscribers can read on for a look at projectM by guest author (and projectM maintainer) Mischa Spiegelmock.

Security updates for Wednesday

Wednesday 28th of March 2018 02:40:55 PM
Security updates have been issued by CentOS (slf4j), Debian (firefox-esr, mupdf, net-snmp, and samba), Fedora (apache-commons-compress, calibre, chromium, glpi, kernel, libvncserver, libvorbis, mozjs52, ntp, slurm, sqlite, and wireshark), openSUSE (librelp), SUSE (librelp, LibVNCServer, and qemu), and Ubuntu (firefox and zsh).

[$] Read-only dynamic data

Tuesday 27th of March 2018 11:27:20 PM
Kernel developers go to some lengths to mark read-only data so that it can be protected by the system's memory-management unit. Memory that cannot be changed cannot be altered by an attacker to corrupt the system. But the kernel's mechanisms for managing read-only memory do not work for memory that must be initialized after the initial system bootstrap has completed. A patch set from Igor Stoppa seeks to change that situation by creating a new API just for late-initialized read-only data.

Kubernetes 1.10 released

Tuesday 27th of March 2018 08:46:18 PM
Kubernetes 1.10 has been released. "This newest version stabilizes features in 3 key areas, including storage, security, and networking. Notable additions in this release include the introduction of external kubectl credential providers (alpha), the ability to switch DNS service to CoreDNS at install time (beta), and the move of Container Storage Interface (CSI) and persistent local volumes to beta."

Appeals Court Overturns Google's Fair Use Victory For Java APIs (Techdirt)

Tuesday 27th of March 2018 06:29:55 PM
Techdirt reports that the US Court of Appeals for the Federal Circuit (CAFC) has resurrected Oracle's copyright claim against Google for its use of the Java APIs in Android. "Honestly, the most concerning part of the whole thing is how much of a mess CAFC has made of the whole process. The court ruled correctly originally that APIs are not subject to copyright. CAFC threw that out and ordered the court to have a jury determine the fair use question. The jury found it to be fair use, and even though CAFC had ordered the issue be heard by a jury, it now says 'meh, we disagree with the jury.' That's... bizarre."

Security updates for Tuesday

Tuesday 27th of March 2018 03:25:39 PM
Security updates have been issued by Debian (firefox-esr, irssi, and librelp), Gentoo (busybox and plib), Mageia (exempi and jupyter-notebook), openSUSE (clamav, dhcp, nginx, python-Django, python3-Django, and thunderbird), Oracle (slf4j), Red Hat (slf4j), Scientific Linux (slf4j), Slackware (firefox), SUSE (librelp), and Ubuntu (screen-resolution-extra).

More in Tux Machines

today's leftovers

Software: Grafana, Heaptrack, Vim

  • Grafana – An Open Source Software for Analytics and Monitoring
    Grafana is an open source, feature rich, powerful, elegant and highly-extensible analytics and monitoring software that runs on Linux, Windows and MacOS. It is a de facto software for data analytics, being used at Stack Overflow, eBay, PayPal, Uber and Digital Ocean – just to mention but a few. It supports 30+ open source as well as commercial databases/data sources including MySQL, PostgreSQL, Graphite, Elasticsearch, OpenTSDB, Prometheus and InfluxDB. It allows you to dig deeply into large volumes of real-time, operational data; visualize, query, set alerts and get insights from your metrics from differen
  • Heaptrack v1.1.0 release
    Better memory profiling on Linux After more than a year of work, I’m pleased to release another version of heaptrack, the Linux memory profiler! The new version 1.1.0 comes with some new features, significant performance improvements and – most importantly – much improved stability and correctness. If you have tried version v1.0 in the past and encountered problems, update to the new v1.1 and try again!
  • Ten Years of Vim
     

    The philosophy behind Vim takes a while to sink in: While other editors focus on writing as the central part of working with text, Vim thinks it's editing.

     

    You see, most of the time I don't spend writing new text; instead, I edit existing text.

  •  

GNU/Linux: Parrot 4.0, Oregan, Containers and Linux 4.18 Plans

  • Parrot 4.0 is out
    Parrot 4.0 has been released. Parrot is a security-oriented distribution aimed at penetration tests and digital forensics analysis, with additional tools to preserve privacy.
  • Parrot 4.0 release notes
  • Oregan launches SparQ middleware for Linux and Android TV
    Oregan said that the open standards-based offering resolves the differences between the current security and performance requirements of modern-day TV services and the hardware capabilities of STBs that were deployed up to a decade ago.
  • Linux app support coming to older Chrome OS devices
    Linux apps on Chrome OS is one of the biggest developments for the OS since Android apps. Previous reports stated Chromebooks with certain kernel versions would be left in the dust, but the Chrome OS developers have older devices on the roadmap, too. When Google first broke silence on Linux app functionality, it was understood that Linux kernel 4.4 was required to run apps due to dependencies on newer kernel modules. Thanks to an issue found on Chromium’s public bugtracker, we have confirmation that containers won’t be limited to the handful of Chrome OS devices released with kernel 4.4.
  • Looking Ahead To The Linux 4.18 Kernel
    There still are several weeks to go until the Linux 4.17 kernel will be officially released and for that to initiate the Linux 4.18 merge window, but we already know some of the features coming to this next kernel cycle as well as an idea for some other work that may potentially land.

Red Hat and Fedora Leftovers