Connexion
Vue normale
Reçu aujourd’hui — 17 juillet 2025LWN
Forgejo 12.0 released
17 juillet 2025 à 16:26
Version 12.0 of
the Forgejo software forge has been released. Changes include a number of
user-interface improvements, a mechanism to keep forks in sync with their
upstream, and more; see the release
notes for the full list.
[$] Scheduler medley: time-slice extension, sched_ext deadline servers, and LRU batching.
17 juillet 2025 à 14:11
Decades after its creation, the Linux CPU scheduler remains an area
of active development; it is difficult to find a time slice to cover every
interesting scheduler change. In an attempt to catch up, the time has come
to round-robin through a few patches that have been circulating recently.
The work at hand focuses on a new attempt at time-slice extension, the
creation of a deadline server for sched_ext tasks, and keeping tasks on
isolated CPUs from being surprised by LRU batching.
Security updates for Thursday
17 juillet 2025 à 05:40
Security updates have been issued by AlmaLinux (emacs, java-17-openjdk, kernel, kernel-rt, microcode_ctl, python3.11-setuptools, python3.12-setuptools, and socat), Debian (gnutls28), Fedora (vim), Red Hat (java-1.8.0-ibm), Slackware (bind), SUSE (docker, erlang, erlang26, ggml-devel-5889, gnuplot, kernel, kubernetes1.27, libQt6Concurrent6, mailman3, and transfig), and Ubuntu (apache2, bind9, linux-iot, linux-lowlatency-hwe-6.11, and linux-raspi, linux-raspi-5.4).
[$] LWN.net Weekly Edition for July 17, 2025
17 juillet 2025 à 00:45
Inside this week's LWN.net Weekly Edition:
- Front: Python JIT; Anubis; Secure Boot certificate expiration; SFrame; Exported symbols; Python packaging in Fedora.
- Briefs: Parrot 6.4; SPI report; Quotes; ...
- Announcements: Newsletters, conferences, security updates, patches, and more.
Reçu hier — 16 juillet 2025LWN
Hyprland 0.50.0 released
16 juillet 2025 à 19:01
Version 0.50.0 of Hyprland, a compositor for Wayland, has been
released. Changes include a new render-scheduling option that "
can drastically improve FPS on underpowered devices, while coming at no performance or latency cost when the system is doing alright", an option to exclude applications from screen sharing, a new test suite, and more.
[$] Linux and Secure Boot certificate expiration
16 juillet 2025 à 18:00
Linux users who have Secure Boot
enabled on their systems knowingly or unknowingly rely on a key from
Microsoft that is set to expire in September. After that point, Microsoft
will no longer use that key to sign the shim
first-stage UEFI bootloader that is used by Linux distributions to boot the
kernel with Secure Boot. But the replacement key, which has been available
since 2023, may not be installed on many systems; worse yet, it may require
the hardware vendor to issue an update for the system firmware, which may
or may not happen. It seems that the vast majority of systems will not be
lost in the shuffle, but it may require extra work from distributors and
users.
[$] Fedora SIG changes Python packaging strategy
16 juillet 2025 à 13:38
Fedora's NeuroFedora special-interest group (SIG) is considering a change of strategy when it comes to packaging Python modules. The SIG, which consists of three active members, is struggling to keep up with maintaining the hundreds of packages that it has taken on. What's more, it's not clear that the majority of packages are even being consumed by Fedora users; the group is trying to determine the right strategy to meet its goals and shed unnecessary work. If its new packaging strategy is successful, it may point the way to a more sustainable model for Linux distributions to provide value to users without trying to package everything under the sun.
Security updates for Wednesday
16 juillet 2025 à 13:33
Security updates have been issued by Oracle (cloud-init, emacs, firefox, glib2, go-toolset:rhel8, kernel, lz4, python-setuptools, python3.11-setuptools, python3.12-setuptools, and socat), Red Hat (fence-agents, glib2, glibc, java-17-openjdk, kernel, kernel-rt, python-setuptools, python3.11-setuptools, and python3.12-setuptools), Slackware (libxml2), SUSE (glib2, gpg2, kernel, libxml2, poppler, rmt-server, runc, stalld, and xen), and Ubuntu (jpeg-xl).
Reçu avant avant-hierLWN
The Software in the Public Interest 2024 annual report
15 juillet 2025 à 14:12
Software in the Public Interest has released
its annual report for 2024. It includes reports from the long list of
projects housed under the SPI umbrella, but the financial statements are
not included at this time.
[$] Enforcement (or not) for module-specific exported symbols
15 juillet 2025 à 13:59
Loadable kernel modules require access to kernel data structures and
functions to get their job done; the kernel provides this access by way of
exported symbols. Almost since this mechanism was created, there have been
debates over which symbols should be exported, and how. The 6.16 kernel
gained a new export mechanism that limits access to symbols to specific
kernel modules. That code is likely to change soon, but the addition
of an enforcement mechanism has since been backed out.
Security updates for Tuesday
15 juillet 2025 à 13:35
Security updates have been issued by Debian (ffmpeg), Fedora (gnutls, linux-firmware, mingw-djvulibre, mingw-python-requests, and salt), Mageia (qtimageformats6), Oracle (gnome-remote-desktop, golang, kernel, libxml2, and perl-File-Find-Rule), SUSE (gstreamer-plugins-base, gstreamer-plugins-good, kernel, and protobuf), and Ubuntu (apport, glibc, gnutls28, and roundcube).
Parrot 6.4 released
14 juillet 2025 à 20:29
Parrot is a Debian-based
distribution with an emphasis on security improvement and tools; the 6.4
release is now available. "
Many tools, like Metasploit, Sliver, Caido and Empire received important updates, the Linux kernel was updated to a more recent version, and the latest LTS version of Firefox was provided with all our privacy oriented patches.".
[$] Following up on the Python JIT
14 juillet 2025 à 08:49
Performance of Python
programs has been a major focus of development for the language over the last
five years or so; the Faster
CPython project has been a big part of that effort.
One of its subprojects is to add an experimental just-in-time (JIT) compiler to
the language; at last year's PyCon US, project member Brandt Bucher gave an introduction to the copy-and-patch JIT
compiler. At
PyCon US
2025, he followed that up with a talk on "What they don't tell you
about building a JIT compiler for CPython" to describe some of the things
he wishes he had known when he set out to work on that project. There
was something of an elephant in the room, however, in that
Microsoft
dropped support for the project and laid off most of its
Faster CPython
team a few days before the talk.
Security updates for Monday
14 juillet 2025 à 08:34
Security updates have been issued by Debian (redis and thunderbird), Fedora (cef, git, gnutls, httpd, linux-firmware, luajit, mingw-djvulibre, mingw-python-requests, perl, php, python-requests, python3.6, salt, and selenium-manager), Mageia (dpkg, firefox, gnupg2, and golang), Slackware (httpd and kernel), SUSE (afterburn, cmctl, git, go1.23, go1.24, k9s, liboqs-devel, libxml2, php8, python36, trivy, and xen), and Ubuntu (linux-xilinx-zynqmp and nix).
Kernel prepatch 6.16-rc6
14 juillet 2025 à 00:35
Linus has released 6.16-rc6 for testing;
it includes a fix for a somewhat scary regression that came up over the
week.
So I was flailing around blaming everybody and their pet hamster, because for a while it looked like a drm issue and then a netlink problem (it superficially coincided with separate issues with both of those subsystems).But I did eventually figure out how to trigger it reliably and then it bisected nicely, and a couple of days have passed, and I'm feeling much better about the release again. We're back on track, and despite that little scare, I think we're in good shape.
[$] SFrame-based stack unwinding for the kernel
11 juillet 2025 à 13:42
The kernel's perf
events subsystem can produce high-quality profiles, with full
function-call chains, of resource usage
within the kernel itself. Developers, however, often would like to see
profiles of the whole system in one integrated report with, for example,
call-stack information that crosses the boundary between the kernel and
user space. Support for unwinding user-space call stacks in the perf
events subsystem is currently inefficient at best. A long-running effort
to provide reliable, user-space call-stack unwinding within the kernel,
which will improve that situation considerably, appears to be reaching
fruition.
Security updates for Friday
11 juillet 2025 à 13:20
Security updates have been issued by AlmaLinux (gnome-remote-desktop, go-toolset:rhel8, golang, jq, kernel, kernel-rt, libxml2, and podman), Fedora (chromium, git, helix, pam, rust-blazesym-c, rust-clearscreen, rust-gitui, rust-nu-cli, rust-nu-command, rust-nu-test-support, rust-procs, rust-which, selenium-manager, sudo, thunderbird, and uv), SUSE (audiofile, chmlib-devel, docker, firefox, go1, libsoup, libsoup2, libssh, libxml2, tomcat, umoci, and xen), and Ubuntu (git and resteasy, resteasy3.0).
[$] Anubis sends AI scraperbots to a well-deserved fate
10 juillet 2025 à 15:39
Few, if any, web sites or web-based services have gone unscathed by the locust-like hordes of AI crawlers looking to consume (and then re-consume) all of the world's content. The Anubis project is designed to provide a first line of defense that blocks mindless bots—while granting real users access to sites without too much hassle. Anubis is a young project, not even a year old. However, its development is moving quickly, and the project seems to be enjoying rapid adoption. The most recent release of Anubis, version 1.20.0, includes a feature that many users have been interested in since the project launched: support for challenging clients without requiring users to have JavaScript turned on.
