Language Selection

English French German Italian Portuguese Spanish

LWN

Syndicate content
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Updated: 2 hours 52 min ago

Security updates for Friday

Friday 12th of July 2019 01:17:53 PM
Security updates have been issued by CentOS (dbus), Debian (firefox-esr, python3.4, and redis), Mageia (ffmpeg), Oracle (firefox, libvirt, and qemu), Red Hat (firefox and virt:8.0.0), Scientific Linux (firefox), and SUSE (kernel).

[$] Bcachefs gets closer

Thursday 11th of July 2019 05:33:26 PM
When it comes to new filesystems for Linux, patience is certainly a virtue. Btrfs took years to mature and, according to some, still isn't ready yet. Tux3 has kept users waiting since at least 2008; as of 2018 its developer still said that it was progressing. By these measures, bcachefs is a relative youngster, having been first announced a mere four years ago. Development of this next-generation filesystem continues, and bcachefs developer Kent Overstreet recently proclaimed his desire to "get this sucker merged", but there are some obstacles to overcome still.

Conway: Infinite work is less work

Thursday 11th of July 2019 01:54:29 PM
Damian Conway writes about the power of infinite sequences in Perl 6.

The sequence of primes is just the sequence of positive integers, filtered (with a .grep) to keep only the ones that are prime. And, of course, Perl 6 already has a prime number tester: the built-in &is-prime function. The sequence of primes never changes, so we can declare it as a constant: constant p = [ (1..∞).grep( &is-prime ) ]; Now we need to extract just the strong and weak primes.

Security updates for Thursday

Thursday 11th of July 2019 01:52:27 PM
Security updates have been issued by Debian (dosbox and openjpeg2), Oracle (dbus and kernel), Scientific Linux (dbus), Slackware (mozilla), and SUSE (fence-agents, libqb, postgresql10, and sqlite3).

[$] LWN.net Weekly Edition for July 11, 2019

Thursday 11th of July 2019 12:12:05 AM
The LWN.net Weekly Edition for July 11, 2019 is available.

[$] The third Operating-System-Directed Power-Management summit

Wednesday 10th of July 2019 08:39:37 PM

The third edition of the Operating-System-Directed Power-Management (OSPM) summit was held May 20-22 at the ReTiS Lab of the Scuola Superiore Sant'Anna in Pisa, Italy. The summit is organized to collaborate on ways to reduce the energy consumption of Linux systems, while still meeting performance and other goals. It is attended by scheduler, power-management, and other kernel developers, as well as academics, industry representatives, and others interested in the topics.

As with previous years (2018 and 2017), LWN is happy to be able to bring our readers some extensive writeups of the talks and discussions that went on at OSPM. Subscribers can read on for the start of the writeups from the summit, which were authored by a long list of the participants.

A set of stable kernels

Wednesday 10th of July 2019 03:10:40 PM
Stable kernels 5.1.17, 4.19.58, 4.14.133, 4.9.185, and 4.4.185 have been released. They all contain important fixes throughout the tree and users should upgrade.

Security updates for Wednesday

Wednesday 10th of July 2019 02:57:20 PM
Security updates have been issued by Debian (redis), Fedora (expat), Mageia (dosbox, irssi, microcode, and postgresql11), Red Hat (bind, dbus, openstack-ironic-inspector, openstack-tripleo-common, python-novajoin, and qemu-kvm-rhev), Scientific Linux (kernel), SUSE (kernel-firmware, libdlm, libqb, and libqb), and Ubuntu (apport).

[$] Mucking about with microframeworks

Tuesday 9th of July 2019 10:29:37 PM
Python does not lack for web frameworks, from all-encompassing frameworks like Django to "nanoframeworks" such as WebCore. A recent "spare time" project caused me to look into options in the middle of this range of choices, which is where the Python "microframeworks" live. In particular, I tried out the Bottle and Flask microframeworks—and learned a lot in the process.

Subscribers can read on for the full report by Jake Edge from this week's edition.

GnuPG 2.2.17 released

Tuesday 9th of July 2019 10:07:17 PM
GnuPG 2.2.17 has been released to mitigate attacks on keyservers. In particular, GPG will now ignore all key-signatures received from keyservers by default.

Firefox 68.0 released

Tuesday 9th of July 2019 05:06:40 PM
Firefox 68.0 has been released, with an Extended Support Release (ESR) version available, in addition to the usual rapid release version. The rapid release version features a dark mode in reader view, improved extension security and discovery, and more. See the release notes for details. The ESR release notes list some additional policies and other improvements.

Software in the Public Interest board elections

Tuesday 9th of July 2019 03:13:57 PM
Software in the Public Interest (SPI) has announced that nominations are open until July 15 for 3 seats on the SPI board. "The ideal candidate will have an existing involvement in the Free and Open Source community, though this need not be with a project affiliated with SPI."

Security updates for Tuesday

Tuesday 9th of July 2019 02:47:18 PM
Security updates have been issued by Arch Linux (irssi, python-django, and python2-django), Debian (libspring-security-2.0-java and zeromq3), Red Hat (python27-python), SUSE (ImageMagick, postgresql10, python-Pillow, and zeromq), and Ubuntu (apport, Docker, glib2.0, gvfs, whoopsie, and zeromq3).

Miller: Red Hat, IBM, and Fedora

Tuesday 9th of July 2019 01:22:10 PM
Fedora project leader Matthew Miller reassures the community that IBM's acquisition of Red Hat, which just closed, will not affect Fedora. "In Fedora, our mission, governance, and objectives remain the same. Red Hat associates will continue to contribute to the upstream in the same ways they have been."

[$] Destaging ION

Tuesday 9th of July 2019 12:39:33 PM
The Android system has shipped a couple of allocators for DMA buffers over the years; first came PMEM, then its replacement ION. The ION allocator has been in use since around 2012, but it remains stuck in the kernel's staging tree. The work to add ION to the mainline started in 2013; at that time, the allocator had multiple issues that made inclusion impossible. Recently, John Stultz posted a patch set introducing DMA-BUF heaps, an evolution of ION, that is designed to do exactly that — get the Android DMA-buffer allocator to the mainline Linux kernel.

Ryabitsev: Patches carved into developer sigchains

Monday 8th of July 2019 02:51:11 PM
Konstantin Ryabitsev has posted a lengthy blog entry describing his vision for moving away from email for kernel development. "I think it's way past due time for us to come up with a solution that would offer decentralized, self-archiving, fully attestable, 'cradle-to-grave' development platform that covers all aspects of project development and not just the code. It must move us away from mailing lists, but avoid introducing single points of trust, authority, and failure."

Security updates for Monday

Monday 8th of July 2019 02:35:24 PM
Security updates have been issued by Debian (dosbox, python-django, squid3, and unzip), Fedora (filezilla, libfilezilla, and samba), openSUSE (gvfs), Oracle (kernel), Red Hat (firefox and redhat-virtualization-host), SUSE (bash and libpng16), and Ubuntu (libvirt).

The 5.2 kernel has been released

Sunday 7th of July 2019 11:32:03 PM
Linus Torvalds has released the 5.2 kernel. He originally planned for an rc8 this week, rather than 5.2, due to his travel schedule, but was pleasantly surprised at how calm things have been. "So despite a fairly late core revert, I don't see any real reason for another week of rc, and so we have a v5.2 with the normal release timing." Some of the more significant changes in 5.2 are a new CLONE_PIDFD flag to clone() to obtain a pidfd for the new process, a significant BPF verifier performance improvement that allows the maximum size of a BPF program to be raised to 1 million instructions, a BPF hook to manage sysctl knobs, a new set of system calls for filesystem mounting, case-insensitive lookups for the ext4 filesystem, a process freezer for version-2 control groups, pressure-stall monitors, and, of course, a vast number of fixes. See the KernelNewbies 5.2 page for a lot more details.

Debian 10 ("Buster") has been released

Sunday 7th of July 2019 01:06:18 AM
Debian version 10, code named "Buster", has been released. It has lots of new features, including: "In this release, GNOME defaults to using the Wayland display server instead of Xorg. Wayland has a simpler and more modern design, which has advantages for security. However, the Xorg display server is still installed by default and the default display manager allows users to choose Xorg as the display server for their next session. Thanks to the Reproducible Builds project, over 91% of the source packages included in Debian 10 will build bit-for-bit identical binary packages. This is an important verification feature which protects users against malicious attempts to tamper with compilers and build networks. Future Debian releases will include tools and metadata so that end-users can validate the provenance of packages within the archive. For those in security-sensitive environments AppArmor, a mandatory access control framework for restricting programs' capabilities, is installed and enabled by default. Furthermore, all methods provided by APT (except cdrom, gpgv, and rsh) can optionally make use of seccomp-BPF sandboxing. The https method for APT is included in the apt package and does not need to be installed separately." More information can be found in the release notes.

[$] clone3(), fchmodat4(), and fsinfo()

Friday 5th of July 2019 02:47:43 PM
The kernel development community continues to propose new system calls at a high rate. Three ideas that are currently in circulation on the mailing lists are clone3(), fchmodat4(), and fsinfo(). In some cases, developers are just trying to make more flag bits available, but there is also some significant new functionality being discussed.

More in Tux Machines

weston 7.0.0

Weston 7.0.0 is released!

ABI note: the return value of two functions introduced in this release
has been changed from void to int: weston_log_scope_printf and
weston_log_scope_vprintf. Additionally weston_binding_destroy has been
made public again.

Daniel Stone (1):
      backend-drm: Enforce content protection for hardware planes

Manuel Stoeckl (1):
      weston-terminal: Ignore SIGPIPE

Marius Vlad (2):
      weston-log: Return bytes written for 'printf()' and 'vprintf()' functions
      compositor: Return the number of bytes written as to format properly

Simon Ser (1):
      build: bump to version 7.0.0 for the official release

sichem (1):
      make weston_binding_destroy public

git tag: 7.0.0
Read more Also: Wayland's Weston 7.0 Compositor Released With PipeWire Streaming Support

today's howtos

MicroK8s Gets Powerful Add-ons

We are excited to announce new Cilium and Helm add-ons, coming to MicroK8s! These add-ons add even more power to your Kubernetes environment built on MicroK8s. The Cilium CNI plugin brings enhanced networking features, including Kubernetes NetworkPolicy support, to MicroK8s. You’ll also get direct CLI access to Cilium within MicroK8s using the microk8s.cilium wrapper. If you do not already have a version of cilium installed you can alias microk8s.cilium to cilium using the following command: snap alias microk8s.cilium cilium Helm, the package manager for Kubernetes will allow even easier management of your MicroK8s environment. Read more

Save Web Pages As Single HTML Files For Offline Use With Monolith (Console)

Monolith is a command line tool to save any web page as a single HTML file that contains everything needed to render web page locally, without needing a working Internet connection. Use this to save web pages containing documentation, wiki articles, and anything else that interests you, for local/offline use. Since the web pages are saved in plain HTML, use a tool that can search in files to quickly find the web page you're looking for. Unlike the regular "Save page as" (or Ctrl + s) option provided by web browsers to save web pages to your computer, which saves web page assets in a folder next to the saved web page, this command line tool retrieves the web page assets and converts them into base64 data URLs, using that in the document instead of the regular URLs. As a result, page assets like Javascript, CSS or images are embedded in the page HTML, so all you need is a web browser to access the locally saved web page. Read more