Post Syndicated from corbet original https://lwn.net/Articles/995490/

The LWN.net Weekly Edition for October 31, 2024 is available.

Post Syndicated from corbet original https://lwn.net/Articles/996147/

A project called Flock has announced
its existence. Flock is a fork of the Flutter user-interface toolkit
project, motivated by frustration with the resources that Google is putting
into Flutter.

We describe Flock as “Flutter+”. In other words, we do not want, or
intend, to fork the Flutter community. Flock will remain constantly
up to date with Flutter. Flock will add important bug fixes, and
popular community features, which the Flutter team either can’t, or
won’t implement.

(LWN looked at flutter in 2020).

Post Syndicated from corbet original https://lwn.net/Articles/995981/

Linus has released 6.12-rc5 for testing.

rc5 looks perfectly normal, and maybe even on the small side of
normal. The diffstat looks nice and flat too, with the exception of
the removal of the da8xx fbdev driver due to it having been
replaced by the tilcdc driver. And I’m sure we’re all thinking the
same thing: “What lovely descriptive driver names we have”.

Post Syndicated from corbet original https://lwn.net/Articles/995196/

Small objects can lead to large email threads. In this
case, the GNU C Library (glibc) community has been having an extensive
debate over the handling of zero-byte allocations. Specifically, what
should happen when a program calls realloc()
specifying a size of zero? This is, it seems, a topic about which some
people, at least, have strong feelings.

Post Syndicated from corbet original https://lwn.net/Articles/994575/

The LWN.net Weekly Edition for October 24, 2024 is available.

Post Syndicated from corbet original https://lwn.net/Articles/995186/

Perhaps one of the more surprising changes in the 6.12-rc4 development
kernel was the removal
of several entries from the kernel’s MAINTAINERS file. The patch
performing the removal was sent (by Greg Kroah-Hartman) only to the
[email protected] mailing list; the change was included in a char-misc drivers
pull request with no particular mention.

The explanation for the removal is simply “various compliance
requirements“. Given that the developers involved all appear to be of
Russian origin, it is not too hard to imagine what sort of compliance is
involved here. There has, however, been no public posting of the policy
that required the removal of these entries.

Post Syndicated from corbet original https://lwn.net/Articles/995130/

The
6.11.5,
6.6.58,
6.1.114,
5.15.169, and
5.10.228
stable kernels have all been released; each contains another set of
important fixes.

Post Syndicated from corbet original https://lwn.net/Articles/995098/

Version 3.4.0 of the OpenSSL SSL/TLS library has been released. It adds a
number of new encryption algorithms, support for “directly fetched
composite signature algorithms such as RSA-SHA2-256“, and more. See the
release notes for details.

Post Syndicated from corbet original https://lwn.net/Articles/995095/

Security updates have been issued by Debian (ffmpeg, ghostscript, libsepol, openjdk-11, openjdk-17, perl, and python-sql), Oracle (389-ds-base, buildah, containernetworking-plugins, edk2, httpd, java-1.8.0-openjdk, java-11-openjdk, java-17-openjdk, java-21-openjdk, kernel, python-setuptools, skopeo, and webkit2gtk3), Red Hat (buildah), Slackware (openssl), SUSE (apache2, firefox, libopenssl-3-devel, podman, and python310-starlette), and Ubuntu (cups-browsed, firefox, libgsf, and linux-gke).

Post Syndicated from corbet original https://lwn.net/Articles/994983/

Sasha Levin has announced a
new tree that is intended to perform continuous-integration tests of pull
requests aimed at the mainline. The plan is for this tree to hold more
finished work than sometimes ends up in linux-next; in a name that seems
destined to create typographical confusion, it is called “linus-next”.

The linus-next tree aims to provide a more stable and testable
integration point compared to linux-next, addressing the runtime
issues that make testing linux-next challenging and focusing on
code that’s about to be pulled by Linus.

Post Syndicated from corbet original https://lwn.net/Articles/994843/

Linus has released 6.12-rc4 for testing.
“I’m not happy with how big this is – it’s probably far from the biggest
rc4 ever, but it _is_ the biggest rc4 we’ve had in the 6.x series at least
in number of commits.“

Post Syndicated from corbet original https://lwn.net/Articles/994322/

The kernel’s CPU scheduler currently offers several preemption modes that
implement a range of tradeoffs between system throughput and response time.
Back in September 2023, a discussion
on scheduling led to the concept of “lazy preemption”, which could
simplify scheduling in the kernel while providing better results. Things
went quiet for a while, but lazy preemption has returned in the form of this patch series
from Peter Zijlstra. While the concept appears to work well, there is
still a fair amount of work to be done.

Post Syndicated from corbet original https://lwn.net/Articles/994654/

Version
1.82.0 of the Rust language has been released. There are a lot of new
features this time, including a cargo info command, tier-1 support
for 64-bit Apple Arm systems, a new native syntax (&raw) to create
raw pointers, changes to unsafe extern, unsafe attributes,
standardized rules around the handling of floating-point not-a-number
values, and more.

Post Syndicated from corbet original https://lwn.net/Articles/993610/

The LWN.net Weekly Edition for October 17, 2024 is available.

Post Syndicated from corbet original https://lwn.net/Articles/994515/

Version 9.0 of the
Forgejo software forge system has been released. Changes include a switch
to the GPLv3 license, the beginning of a quota system, the removal of
go-git support, and a lot of fixes.
(LWN looked at Forgejo in February).

Post Syndicated from corbet original https://lwn.net/Articles/992991/

The pidfd mechanism, which uses file descriptors to refer to processes in
an unambiguous and race-free way, was first
introduced in 2018. Since then, the interface has gained a number of new features, but
development has slowed over time as the interface has matured. There are,
however, a couple of patches in circulation that are meant to make working
with pidfds simpler in some situations.

Post Syndicated from corbet original https://lwn.net/Articles/994268/

Security updates have been issued by AlmaLinux (container-tools:rhel8, firefox, OpenIPMI, podman, and thunderbird), Debian (libapache-mod-jk, php7.4, and webkit2gtk), Fedora (edk2, koji, libgsf, rust-hyper-rustls, rust-reqwest, rust-rustls-native-certs, rust-rustls-native-certs0.7, rust-tonic, rust-tonic-build, rust-tonic-types, rust-tower, rust-tower-http, rust-tower-http0.5, and rust-tower0.4), Mageia (packages and thunderbird), Oracle (bind, container-tools:ol8, kernel, kernel-container, OpenIPMI, podman, and thunderbird), Red Hat (container-tools:rhel8, containernetworking-plugins, podman, and skopeo), SUSE (argocd-cli, bsdtar, keepalived, kernel, kyverno, libmozjs-115-0, libmozjs-128-0, libmozjs-78-0, OpenIPMI, opensc, php8, thunderbird, and xen), and Ubuntu (configobj, haproxy, imagemagick, nginx, and postgresql-10, postgresql-9.3).

Post Syndicated from corbet original https://lwn.net/Articles/993956/

The 6.12-rc3 kernel prepatch is out for
testing.

So the diffstat looks a bit odd, because one of the fixes here
caused the UTF tables to be regenerated, and an effective one-liner
change turned into 6703 lines of diff.

But if you ignore that effect, everything looks normal.

Post Syndicated from corbet original https://lwn.net/Articles/993337/

At the recently concluded Maintainers Summit, it was generally agreed that the Rust experiment would
continue, and that the path was clear for more Rust code to enter the
kernel. But the high-level view taken at such gatherings cannot always
account for the difficult details that will inevitably arise as the Rust
work proceeds. A recent discussion on the nouveau mailing list may have
escaped the notice of many, but it highlights some of the problems that
will have to be worked out as important functionality written in Rust heads
toward the mainline.

Post Syndicated from corbet original https://lwn.net/Articles/993608/

Mozilla has released Firefox versions 131.0.2, ESR 128.3.1, and ESR
115.16.1. These updates address a
severe, remotely exploitable code-execution vulnerability that is
evidently already being exploited. Updating to a fixed release seems like
a wise thing to do.