Vue lecture
[$] Measuring and improving buffered I/O
Kali Linux 2024.2 released
Version 2024.2 of the Kali Linux penetration testing distribution has been released. This release includes an update to GNOME 46, a high-resolution (HiDPI) mode for Xfce, as well as a number of new packages such as the AutoRecon network reconnaissance tool, pspy command-line utility for snooping on Linux processes, and SploitScan tool for fetching and displaying CVE information. Kali Linux is based on Debian testing, and 2024.2 incorporates Debian's work to transition to 64-bit time_t to avoid year 2038 problems. Users with existing Kali systems should be sure to follow the documentation when upgrading.
FreeBSD 14.1 released
Version 14.1 of FreeBSD has been released. This is the second release of the 14.x stable branch. Highlights of this release include upgrades to OpenZFS 2.2.4, Clang/LLVM 18.1.5, and OpenSSH 9.7p1. FreeBSD 14.1 also features cloud-init support, sound subsystem improvements, and more. See the what's new blog post from the FreeBSD Foundation, release notes, and errata for more information.
[$] Rethinking the PostgreSQL CommitFest model
Many years ago, the PostgreSQL project started holding regular CommitFests to help tackle the work of reviewing and committing patches in a more organized fashion. That has served the project well, but some in the project are concerned that CommitFests are no longer meeting the needs of PostgreSQL or its contributors. A lengthy discussion on the pgsql-hackers mailing list turned up a number of complaints, a few suggestions for improvement, but little consensus or momentum toward a solution.
[$] Removing GFP_NOFS
The state of SourceHut
Drew DeVault has published an update about the state of the SourceHut software development platform and its plans for the coming months. This is the first update since the January post-mortem following a distributed denial-of-service (DDoS) attack that resulted in a prolonged outage:
As you can imagine, it has been a stressful time for us. However, I wish to stress that everything we've been dealing with is planned for in our models, both technical and financial. There is no existential threat to SourceHut. Nevertheless, we are grateful for your patience and support.
[...] We have been focusing on two things this year: provisioning and managing our infrastructure and getting as much rest as possible. Our situation has calmed down, and while we still have a lot of loose ends to attend to I'm happy to say that we're resuming a sense of normalcy here and preparing to resume our work on the features you need.
[$] Comparing BPF performance between implementations
Alan Jowett returned for a second remote presentation at the 2024 Linux Storage, Filesystem, Memory Management, and BPF Summit to compare the performance of different BPF runtimes. He showed the results of the MIT-licensed BPF microbenchmark suite he has been working on. The benchmark suite does not yet provide a good direct comparison between all platforms, so the results should be taken with a grain of salt. They do seem to indicate that there is some significant variation between implementations, especially for different types of BPF maps.
Security updates for Wednesday
Mike Karels has passed away
Incus 6.2 released
This release contains the second wave of changes contributed by students of the University of Texas at Austin and a few other features and improvements." The features include a new incus top command, a new API for system load information, and more.
New site feature: comment subthread hiding
Give it a try; if you have comments on the new mechanism, this is the place to put them.
[$] Handling the NFS change attribute
[$] An instruction-level BPF memory model
There are few topics as arcane as memory models, so it was a pleasant surprise when the double-length session on the BPF memory model at the Linux Storage, Filesystem, Memory Management, and BPF Summit turned out to be understandable. Paul McKenney led the session, although he was clear that the work he was presenting was also due to Puranjay Mohan, who unfortunately could not attend the summit. BPF does not actually have a formalized memory model yet; instead it has relied on a history of talks like this one and a general informal understanding. Unfortunately, ignoring memory models does not make them go away, and this has already caused at least one BPF-related bug on weakly-ordered architectures. Figuring out what a formal memory model for BPF should define was the focus of McKenney's talk.
Security updates for Tuesday
LyX 2.4.0 Released
Version 2.4.0 of the LyX document processor has been released. LyX is a "What You See Is What You Mean" (WYSIWYM) application that offers GUI editing of LaTeX documents with import and export to PDF, HTML, OpenDocument, Word, and other formats. LyX 2.4.0 is the first major release in six years, and brings support for EPUB, DocBook 5, improved table styles, and now uses Unicode (utf8) as its default encoding. See the full list of new features on the LyX wiki, and release notes for information on known issues and caveats for those upgrading from earlier versions of LyX.
[$] Debian's /tmpest in a teapot
Debian had a major discussion
about mounting /tmp as a RAM-based tmpfs in 2012 but inertia
won out in the end. Debian systems have continued to
store temporary files on disk by default. Until now. A mere
12 years later, the project will be switching to a RAM-based /tmp in the Debian
13 ("Trixie") release. Additionally, starting with Trixie, the
default will be to periodically clean up temporary files automatically in
Security updates for Monday
mini-mass-rebuild" that updated the toolchain to Rust 1.78 and picked up fixes for various pieces), Mageia (gifsicle, netatalk, openssl, python-jinja2, and unbound), Red Hat (kernel and kernel-rt), SUSE (bind, glibc, gstreamer-plugins-base, squid, and tiff), and Ubuntu (glibc).
Kernel prepatch 6.10-rc2
Nothing feels particularly odd, but rc2 is usually fairly small and people are only starting to find regressions. So please go test some more."