Post Syndicated from corbet original https://lwn.net/Articles/955827/

The 2024 Linux Storage, Filesystem, Memory-Management, and BPF Summit will
be held May 13 to 15 in Salt Lake City, Utah, USA. The call
for proposals has already gone out, with a deadline of March 1.
“LSF/MM/BPF is an invitation-only technical workshop to map out
improvements to the Linux storage, filesystem, BPF, and memory management
subsystems that will make their way into the mainline kernel within the
coming years.”

Post Syndicated from corbet original https://lwn.net/Articles/955812/

The
6.6.8,
6.1.69,
5.15.144,
5.10.205,
5.4.265,
4.19.303, and
4.14.334
stable kernel updates have all been released; each contains another set of
important fixes.

Note that 5.15.145
is already in the review process, with a due date of December 22. It
consists almost exclusively of ksmbd patches in a flurry of backporting
that was seemingly inspired by the recent marking
of ksmbd as broken in 5.15.

Post Syndicated from corbet original https://lwn.net/Articles/955786/

Security updates have been issued by Fedora (ansible and ansible-core), Gentoo (Minecraft Server and thunderbird), Mageia (fusiondirectory), Red Hat (gstreamer1-plugins-bad-free, opensc, and openssl), Slackware (libssh and mozilla), SUSE (avahi, firefox, ghostscript, gstreamer-plugins-bad, mariadb, openssh, openssl-1_1-livepatches, python-aiohttp, python-cryptography, xorg-x11-server, and xwayland), and Ubuntu (libssh and openssh).

Post Syndicated from corbet original https://lwn.net/Articles/955691/

Version 4.2.0 of the Qubes OS distribution has been released; changes
include a switch to Xfce for the Fedora and Debian templates, a number of
rewritten graphical applications, PipeWire support, and more. See the release
notes for details. (Qubes OS was last covered here in 2021).

Post Syndicated from corbet original https://lwn.net/Articles/955680/

OpenSSH
9.6 has been released. It includes some minor improvements and a fix
for the so-called Terrapin
attack.

While cryptographically novel, the security impact of this attack
is fortunately very limited as it only allows deletion of
consecutive messages, and deleting most messages at this stage of
the protocol prevents user authentication from proceeding and
results in a stuck connection.

Post Syndicated from corbet original https://lwn.net/Articles/955679/

Version
121.0 of the Firefox browser is out. Along with the usual pile of
security fixes, this release add the ability to force links to be rendered
with underlines and use of Wayland by default if it is available: “This
brings support for touchpad & touchscreen gestures, swipe-to-nav,
per-monitor DPI settings, better graphics performance, and more.”

Post Syndicated from corbet original https://lwn.net/Articles/955678/

Security updates have been issued by Debian (webkit2gtk), Fedora (rdiff-backup and xorg-x11-server-Xwayland), Mageia (cjose and ghostscript), Oracle (avahi), Red Hat (postgresql:10), and SUSE (avahi, freerdp, libsass, and ncurses).

Post Syndicated from corbet original https://lwn.net/Articles/955001/

The NVIDIA Mellanox ConnectX HW family of adapters is a complex beast,
supporting networking, InfiniBand, RDMA, and more. As a result, the mlx5
kernel driver that supports this hardware is also complex, as is the
interface that it provides to user space. The mlx5 developers have, for a
while now, been proposing
the addition of a new control interface, in the form of a separate virtual
device exported by the kernel, that would make vast amounts of debugging
information available. This driver has encountered some significant
opposition on its way toward the mainline, though, raising a number of
questions about appropriate interfaces and when subsystem maintainers have
veto power over submissions.

Post Syndicated from corbet original https://lwn.net/Articles/955485/

Linus has released 6.7-rc6 for testing.
“ Please do give this a test in between the last-minute xmas shopping or
whatever else is going on …”

Post Syndicated from corbet original https://lwn.net/Articles/955481/

Changwoo Min provides
an introduction to the sched_ext scheduling class:

Sched_ext was proposed to address the problems mentioned above. It
allows users to write a custom scheduling policy using BPF without
modifying the kernel code. You don’t need to struggle to maintain
the out-of-tree custom scheduler. In addition, BPF provides a safe
kernel programming environment. In particular, the BPF verifier
ensures that your custom scheduler has neither a memory bug nor an
infinite loop. Also, if your custom scheduler misbehaves — like
failing to schedule a task for too long (say 30 seconds), the
kernel portion of sched_ext kills your custom scheduler and falls
back to the default kernel scheduler (CFS or EEVDF). Last but not
least, you can update the BPF scheduler without reinstalling the
kernel and rebooting a server.

(LWN looked at sched_ext in February 2023).

Post Syndicated from corbet original https://lwn.net/Articles/955366/

In response to the expressed unhappiness over the recent logo-selection
process in the openSUSE project (covered in this article), the project has announced
that there will be a new vote:

During the community meeting this week where the results were
discussed, participants expressed the view that members of the
openSUSE Project have an opportunity to participate in the
selection of our new logo, and that SUSE, which holds the trademark
to the openSUSE logo, be involved with the process for selecting a
branding decision with regard to the results. After all, this
decision impacts the collective identity.

To facilitate this, there is a plan to organize a vote between the
current logo and the proposed new design, allowing our community to
have a say in this important decision. Furthermore, members of the
project are collaborating with SUSE on the implications of the
branding initiatives and some have expressed the desire for SUSE’s
input to ensure there is an aligned vision for the future of
openSUSE.

Post Syndicated from corbet original https://lwn.net/Articles/954787/

The gccrs project is an ambitious
effort started in 2014 to implement a Rust compiler within The GNU Compiler
Collection (GCC). Even though the task is far from complete, progress has
been made since LWN’s previous coverage,
according to reports from the project. Meanwhile, another hybrid and more
mature approach to GCC Rust code generation is available in rust_codegen_gcc.

Post Syndicated from corbet original https://lwn.net/Articles/954770/

The kernel’s stable-update process is intended to produce kernels that are,
well, stable; when that promise is lived up to, users can update to newer
stable updates without fear. By any account, a bug that corrupts data on
ext4 filesystems constitutes a failure to hold to that promise. As is so
often the case, this problem is the result of a chain of failures in a
system that works well most of the time.

Post Syndicated from corbet original https://lwn.net/Articles/953980/

The LWN.net Weekly Edition for December 14, 2023 is available.

Post Syndicated from corbet original https://lwn.net/Articles/954983/

The
6.6.7,
6.1.68,
5.15.143,
5.10.204,
5.4.264,
4.19.302, and
4.14.333
stable kernel updates have all been released; each contains another set of
important fixes.

Post Syndicated from corbet original https://lwn.net/Articles/954974/

The Rust for Linux (RFL) project may not have (yet) resulted in user-visible
changes to the Linux kernel, but it seems the wider world has taken notice.
Hongyu Li has announced
that the Rust for Linux code is now part of a satellite just launched
out of China. The satellite is running a system called RROS, which follows the old
RTLinux pattern of running a realtime kernel alongside Linux. The realtime
core is written in Rust, using the RFL groundwork.

Despite its imperfections, we still want to share RROS with the
community, showcasing our serious commitment to using RFL for
substantial projects and contributing to the community’s
growth. Our development journey with RROS has been greatly enriched
by the support and knowledge from the RFL community. We also have
received invaluable assistance from enthusiastic forks here,
especially when addressing issues related to safety abstraction

(Thanks to Dirk Behme).

Post Syndicated from corbet original https://lwn.net/Articles/954964/

A new book called OpenPGP for application
developers has been released under the Creative Commons BY-SA license.

This document is not intended for end-users or implementers of
OpenPGP libraries (or other software that directly handles internal
OpenPGP data structures).

Instead, this document is focused on the second group, application
developers, who use OpenPGP functionality in their software
projects. It describes the properties of the OpenPGP system and its
uses. It presupposes solid knowledge of software development
concepts and of general cryptographic concepts. Thus, this text
describes OpenPGP at the “library-level,” teaching concepts that
will help software developers get started as a user of any
implementation (e.g., OpenPGP.js, Sequoia-PGP).

Post Syndicated from corbet original https://lwn.net/Articles/954921/

Security updates have been issued by Debian (debian-security-support and xorg-server), Fedora (java-17-openjdk, libcmis, and libreoffice), Mageia (fish), Red Hat (buildah, containernetworking-plugins, curl, fence-agents, kernel, kpatch-patch, libxml2, pixman, podman, runc, skopeo, and tracker-miners), SUSE (kernel, SUSE Manager 4.3.10 Release Notes, and SUSE Manager Client Tools), and Ubuntu (gnome-control-center, linux-gcp, linux-kvm, linux-gkeop, linux-gkeop-5.15, linux-hwe-6.2, linux-lowlatency-hwe-6.2, linux-nvidia-6.2, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, netatalk, and pydantic).

Post Syndicated from corbet original https://lwn.net/Articles/954783/

Konstantin Ryabitsev has announced
that the movement of kernel mailing lists away from the venerable
vger.kernel.org system is nearly complete:

Over the past few months we’ve migrated all of the vger.kernel.org
mailing lists, with the exception of the Big One (linux-kernel, aka
LKML). This list alone is responsible for about 80% of all vger
mailing list traffic, so we left it for the last.

This Thursday, December 14, at 11AM Pacific (19:00 UTC), we will
switch the MX record for vger to point to the new location
(subspace.kernel.org), which will complete the mailing list
migration from the legacy vger server to the new infrastructure.

Post Syndicated from corbet original https://lwn.net/Articles/954777/

The story of Canonical’s takeover of the LXD container manager, and the
subsequent creation of the Incus fork, has been
simmering for a while. Now Incus developer Stéphane Graber reports
that Canonical has changed the license and contribution terms for LXD:

Per the commit message performing the re-licensing, all further
contributions will be under the AGPLv3 license and all
contributions from Canonical employees have been re-licensed to
AGPLv3.

However, Canonical does not own the copyright on any contribution
from non-employees, such as the many changes they have imported
from Incus over the past few months. Those therefore remain under
the Apache2 license that they were contributed under.

As a result, Canonical cannot release LXD under the AGPLv3 license
and likely never will be able to. LXD is now under a weird mix of
Apache2 and AGPLv3 with no clear metadata indicating what file or
what part of each file is under one license or the other.

He also notes that this change will put an end to the flow of patches — in
either direction — between the two projects.