Next Page: 10000

          I giochi nativi per Ubuntu presenti nei repository dell’attuale versione 18.04 LTS Bionic Beaver (2a parte).      Cache   Translate Page   Web Page Cache   
Pubblicata da giochiperlinux

Recentemente abbiamo goduto di molti tra i migliori giochi a pagamento anche su Linux grazie al porting delle case produttrici. Ciò nonostante molti tra i titoli più famosi sembrano ancora restii a trasferirsi sul kernel Lunix.

Dettagli e commenti su ZicZac: "I giochi nativi per Ubuntu presenti nei repository dell’attuale versione 18.04 LTS Bionic Beaver (2a parte)."
Fonte: linuxgiochi.blogspot.com
          Canonical releases new infographic to show how Ubuntu Linux 'connects everything'      Cache   Translate Page   Web Page Cache   
Microsoft owns the desktop with Windows -- it is undeniable. You know what? That's fine. But the success of Windows is not a failure for Linux. What I mean to say is, the open source kernel is omnipresent, whether you know it or not. To highlight the ubiquitous nature of Ubuntu in particular, Canonical today releases an all-new infographic showing how this distribution "connects everything." I urge you to give it a look, as it will open your eyes to just how important Ubuntu -- and Linux overall -- really is. Apparently, this is an update to a previous infographic… [Continue Reading]
          RtlAvlRemoveNode PTE issue - Kernel driver - Windows - x64      Cache   Translate Page   Web Page Cache   
hi. require someone who have experience with EPROCESS and MMVAD struct. If no experience on x64 please do not bid and waste your time. I must solve issue with windows10 working set list corruption. (Budget: $250 - $750 USD, Jobs: C Programming, C++ Programming, x86/x64 Assembler)
          RtlAvlRemoveNode PTE issue - Kernel driver - Windows - x64      Cache   Translate Page   Web Page Cache   
hi. require someone who have experience with EPROCESS and MMVAD struct. If no experience on x64 please do not bid and waste your time. I must solve issue with windows10 working set list corruption. (Budget: $250 - $750 USD, Jobs: C Programming, C++ Programming, x86/x64 Assembler)
          Lynis 2.6.6 - Security Auditing Tool for Unix/Linux Systems      Cache   Translate Page   Web Page Cache   

We are excited to announce this major release of auditing tool Lynis. Several big changes have been made to core functions of Lynis. These changes are the next of simplification improvements we made. There is a risk of breaking your existing configuration.

Lynis is an open source security auditing tool. Used by system administrators, security professionals, and auditors, to evaluate the security defenses of their Linux and UNIX-based systems. It runs on the host itself, so it performs more extensive security scans than vulnerability scanners.

Supported operating systems

The tool has almost no dependencies, therefore it runs on almost all Unix-based systems and versions, including:
  • AIX
  • FreeBSD
  • HP-UX
  • Linux
  • Mac OS
  • NetBSD
  • OpenBSD
  • Solaris
  • and others
It even runs on systems like the Raspberry Pi and several storage devices!

Installation optional

Lynis is light-weight and easy to use. Installation is optional: just copy it to a system, and use "./lynis audit system" to start the security scan. It is written in shell script and released as open source software (GPL). 

How it works

Lynis performs hundreds of individual tests, to determine the security state of the system. The security scan itself consists of performing a set of steps, from initialization the program, up to the report.

Steps
  1. Determine operating system
  2. Search for available tools and utilities
  3. Check for Lynis update
  4. Run tests from enabled plugins
  5. Run security tests per category
  6. Report status of security scan
Besides the data displayed on the screen, all technical details about the scan are stored in a log file. Any findings (warnings, suggestions, data collection) are stored in a report file.

Opportunistic Scanning

Lynis scanning is opportunistic: it uses what it can find.
For example, if it sees you are running Apache, it will perform an initial round of Apache related tests. When during the Apache scan it also discovers an SSL/TLS configuration, it will perform additional auditing steps on that. While doing that, it then will collect discovered certificates so they can be scanned later as well.

In-depth security scans

By performing opportunistic scanning, the tool can run with almost no dependencies. The more it finds, the deeper the audit will be. In other words, Lynis will always perform scans which are customized to your system. No audit will be the same!

Use cases

Since Lynis is flexible, it is used for several different purposes. Typical use cases for Lynis include:
  • Security auditing
  • Compliance testing (e.g. PCI, HIPAA, SOx)
  • Vulnerability detection and scanning
  • System hardening

Resources used for testing

Many other tools use the same data files for performing tests. Since Lynis is not limited to a few common Linux distributions, it uses tests from standards and many custom ones not found in any other tool.
  • Best practices
  • CIS
  • NIST
  • NSA
  • OpenSCAP data
  • Vendor guides and recommendations (e.g. Debian Gentoo, Red Hat)

Lynis Plugins

Plugins enable the tool to perform additional tests. They can be seen as an extension (or add-on) to Lynis, enhancing its functionality. One example is the compliance checking plugin, which performs specific tests only applicable to some standard.

Changelog
Upgrade note
## Lynis 2.6.6

### Improvements
* New format of changelog (https://keepachangelog.com/en/1.0.0/)
* KRNL-5830 - improved log text about running kernel version

### Fixed
* Under some condition no hostid2 value was reported
* Solved 'extra operand' issue with tr command


Download Lynis 2.6.6

          Satisfy evening hunger pangs with delicious ‘Steamed Corn and Greens Popiah’ recipe      Cache   Translate Page   Web Page Cache   

Are you tempted to snack from time to time? While it may satisfy your hunger pangs for a while, the lasting impact of the oily and unhealthy food can be an expensive bargain to strike. You just need a healthy alternative and what better than corns and greens? This ‘Steamed Corn and Greens Popiah’ recipe is one such choice that you can make. Tasty and easy to cook, this recipe by executive chef Swatantra Gautam, Azaya Beach Resort Goa, can be whipped up in no time to enjoy during romantic monsoon evenings. Ingredients: 40g – Corn Kernels 150g – Shredded

The post Satisfy evening hunger pangs with delicious ‘Steamed Corn and Greens Popiah’ recipe appeared first on Pad Verts.


          EncFS 1.9.5-r1      Cache   Translate Page   Web Page Cache   
[Name] EncFS
[Summary] EncFS provides an encrypted filesystem in user-space.
[Description] As with most encrypted filesystems, Encfs is meant to provide security against off-line attacks; ie your notebook or backups fall into the wrong hands, etc. The way Encfs works is different from the "loopback" encrypted filesystem support built into the Linux kernel because it works on files at a time, not an entire block device. This is a big advantage in some ways, but does not come without a cost.
[License] GNU General Public License, version 3
[Homepage] http://www.arg0.net/encfs

          Under the Hood: “Slurping” and Streaming Files in Ruby      Cache   Translate Page   Web Page Cache   

In this edition of Ruby Magic, we'll learn about streaming files in Ruby, how the IO class handles reading files without completely loading them into memory, and how it reads files per line by buffering read bytes. Let's dive right in!

“Slurping” and Streaming Files

Ruby's File.read method reads a file and returns its full content.

irb(main):001:0> content = File.read("log/production.log")
=> "I, [2018-06-27T16:45:02.843719 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22] Started GET \"/articles\" for 127.0.0.1 at 2018-06-27 16:45:02 +0200\nI, [2018-06-27T16:45:02.846719 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22] Processing by ArticlesController#index as HTML\nI, [2018-06-27T16:45:02.848212 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22]   Rendering articles/index.html.erb within layouts/application\nD, [2018-06-27T16:45:02.850020 #9098] DEBUG -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22]   Article Load (0.3ms)  SELECT \"articles\".* FROM \"articles\"\nI, [2018-06-27T16:45:02.850901 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22]   Rendered articles/index.html.erb within layouts/application (1.7ms)\nI, [2018-06-27T16:45:02.851633 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22] Completed 200 OK in 5ms (Views: 3.4ms | ActiveRecord: 0.3ms)\n"

Internally, this opens the file, reads its content, closes the file, and returns the content as a single string. By "slurping" the file's content at once, it's kept in memory until it’s cleaned up by Ruby’s garbage collector.

As an example, let's say we'd like to uppercase all characters in a file and write it to another file. Using File.read, we can get the content, call String#upcase on the resulting string, and pass the uppercased string to File.write.

irb> upcased = File.read("log/production.log").upcase
=> "I, [2018-06-27T16:45:02.843719 #9098]  INFO -- : [86A5D18C-19DD-4CBF-9D7A-461C79E98C22] STARTED GET \"/ARTICLES\" FOR 127.0.0.1 AT 2018-06-27 16:45:02 +0200\nI, [2018-06-27T16:45:02.846719 #9098]  INFO -- : [86A5D18C-19DD-4CBF-9D7A-461C79E98C22] PROCESSING BY ARTICLESCONTROLLER#INDEX AS HTML\nI, [2018-06-27T16:45:02.848212 #9098]  INFO -- : [86A5D18C-19DD-4CBF-9D7A-461C79E98C22]   RENDERING ARTICLES/INDEX.HTML.ERB WITHIN LAYOUTS/APPLICATION\nD, [2018-06-27T16:45:02.850020 #9098] DEBUG -- : [86A5D18C-19DD-4CBF-9D7A-461C79E98C22]   ARTICLE LOAD (0.3MS)  SELECT \"ARTICLES\".* FROM \"ARTICLES\"\nI, [2018-06-27T16:45:02.850901 #9098]  INFO -- : [86A5D18C-19DD-4CBF-9D7A-461C79E98C22]   RENDERED ARTICLES/INDEX.HTML.ERB WITHIN LAYOUTS/APPLICATION (1.7MS)\nI, [2018-06-27T16:45:02.851633 #9098]  INFO -- : [86A5D18C-19DD-4CBF-9D7A-461C79E98C22] COMPLETED 200 OK IN 5MS (VIEWS: 3.4MS | ACTIVERECORD: 0.3MS)\n"
irb> File.write("log/upcased.log", upcased)
=> 896

While that works for small files, reading the whole file into memory might be problematic when dealing with larger files. For instance, when parsing a 14-gigabyte log file, reading the whole file at once would be an expensive operation. The content of the file is kept in memory, so the app's memory footprint grows considerably. This can eventually lead to memory swapping and the OS killing the app's process.

Luckily, Ruby allows reading files line by line using File.foreach. Instead of reading the file's full content at once, it will execute a passed block for each line.

Its result is enumerable, therefore it either yields a block for each line, or returns an Enumerator object if no block is passed. This enables the reading of bigger files without having to load all their content into memory at once.

irb> File.foreach("log/production.log") { |line| p line }
"I, [2018-06-27T16:45:02.843719 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22] Started GET \"/articles\" for 127.0.0.1 at 2018-06-27 16:45:02 +0200\n"
"I, [2018-06-27T16:45:02.846719 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22] Processing by ArticlesController#index as HTML\n"
"I, [2018-06-27T16:45:02.848212 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22]   Rendering articles/index.html.erb within layouts/application\n"
"D, [2018-06-27T16:45:02.850020 #9098] DEBUG -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22]   Article Load (0.3ms)  SELECT \"articles\".* FROM \"articles\"\n"
"I, [2018-06-27T16:45:02.850901 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22]   Rendered articles/index.html.erb within layouts/application (1.7ms)\n"
"I, [2018-06-27T16:45:02.851633 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22] Completed 200 OK in 5ms (Views: 3.4ms | ActiveRecord: 0.3ms)\n"

To uppercase a whole file, we read from the input file line by line, uppercase it, and append it to the output file.

irb(main):009:0> File.foreach("log/production.log") { |line| File.write("upcased.log", line.upcase, mode: 'a') }
=> nil

So, how does reading a file line by line work without having to first read the whole file? To understand that, we’ll have to peel back some of the layers around reading files. Let's take a closer look at Ruby's IO class.

I/O and Ruby's IO Class

Even though File.read and File.foreach exist, the documentation for the File class doesn’t list them. In fact, you won’t find any of the file reading or writing methods in the File class documentation, because they are inherited from the parent IO class.

I/O

An I/O device is a device that transfers data to or from a computer, for example keyboards, displays and hard drives. It performs Input/Output, or I/O, by reading or producing streams of data.

Reading and writing files from the hard drive is the most common I/O you’ll encounter. Other types of I/O include socket communication, logging output to your terminal and input from your keyboard.

The IO class in Ruby handles all input and output like reading and writing to files. Because reading files isn't different than reading from any other I/O stream, the File class directly inherits methods like IO.read and IO.foreach.

irb> IO.foreach("log/production.log") { |line| p line }
"I, [2018-06-27T16:45:02.843719 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22] Started GET \"/articles\" for 127.0.0.1 at 2018-06-27 16:45:02 +0200\n"
"I, [2018-06-27T16:45:02.846719 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22] Processing by ArticlesController#index as HTML\n"
"I, [2018-06-27T16:45:02.848212 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22]   Rendering articles/index.html.erb within layouts/application\n"
"D, [2018-06-27T16:45:02.850020 #9098] DEBUG -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22]   Article Load (0.3ms)  SELECT \"articles\".* FROM \"articles\"\n"
"I, [2018-06-27T16:45:02.850901 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22]   Rendered articles/index.html.erb within layouts/application (1.7ms)\n"
"I, [2018-06-27T16:45:02.851633 #9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22] Completed 200 OK in 5ms (Views: 3.4ms | ActiveRecord: 0.3ms)\n"

File.foreach is equivalent to IO.foreach, so the IO class version can be used to get the same result we did previously.

Reading I/O Streams Via the Kernel

Internally, Ruby's IO class' reading and writing abilities are based on abstractions around kernel system calls. The operating system's kernel takes care of reading from and writing to I/O devices.

Opening Files

IO.sysopen opens a file by asking the kernel to put a reference to the file in the file table and creating a file descriptor in the process' file descriptor table.

File Descriptors and the File Table

Opening a file returns a file descriptor — an integer used to access the I/O resource.

Each process has its own file descriptor table to keep the file descriptors in memory, and each descriptor points to an entry in the system-wide file table.

To read from or write to an I/O resource, the process passes the file descriptor to the kernel through a system call. The kernel then accesses the file on behalf of the process, as processes don’t have access to the file table.

Opening files will not keep their content in memory, but the file descriptor table can get filled up, so it’s a good practice to always close files after opening them. Methods that wrap File.open like File.read do this automatically, as well as the ones taking a block.

In this example, we'll go one step further by calling the IO.sysopen method directly. By passing a filename, the method creates a file descriptor we can use to reference the open file later.

irb> IO.sysopen("log/production.log")
=> 9

To create an IO instance for Ruby to read from and write to, we pass the file descriptor to IO.new

irb> file_descriptor = IO.sysopen("log/production.log")
=> 9
irb> io = IO.new(file_descriptor)
=> #<IO:fd 9>

To close an I/O stream and remove the reference to the file from the files table, we call IO#close on the IO instance.

irb> io.close
=> nil

Reading Bytes and Moving Cursors

IO#sysread reads a number of bytes from an IO object.

irb> io.sysread(64)
=> " [86a5d18c-19dd-4cbf-9d7a-461c79e98c22] Started GET \"/articles\" "

This example uses the IO instance we created previously by passing the file descriptor integer to IO.new. It reads and returns the first 64 bytes from the file by calling IO#sysread with 64 as its argument.

irb> io.sysread(64)
=> "for 127.0.0.1 at 2018-06-27 16:45:02 +0200\nI, [2018-06-27T16:45:"

The first time we requested bytes from the file, the cursor was moved automatically, so calling IO#sysread on the same instance again will produce the next 64 bytes of the file.

Moving the Cursor

IO.sysseek manually moves the cursor to a location in the file.

irb> io.sysseek(32)
=> 32
irb> io.sysread(64)
=> "9098]  INFO -- : [86a5d18c-19dd-4cbf-9d7a-461c79e98c22] Started "
irb> io.sysseek(0)
=> 0
irb> io.sysread(64)
=> " [86a5d18c-19dd-4cbf-9d7a-461c79e98c22] Started GET \"/articles\" "

In this example, we move to position 32, then read 64 bytes using IO#sysread. By calling IO.sysseek again with 0, we jump back to the beginning of the file, allowing us to read the first 64 bytes again.

Reading Files Line by Line

Now, we know how the IO class's convenience methods open IO streams, read bytes from them and how they move the cursor's position.

Methods like IO.foreach and IO#gets can request lines line by line instead of per number of bytes. There's no performant way of looking ahead to find the next newline and take all bytes until that position, so Ruby needs to take care of splitting the file's content.

class MyIO
  def initialize(filename)
    fd = IO.sysopen(filename)
    @io = IO.new(fd)
  end

  def each(&block)
    line = ""

    while (c = @io.sysread(1)) != $/
      line << c
    end

    block.call(line)
    each(&block)
  rescue EOFError
    @io.close
  end
end

In this example implementation, the #each method takes bytes from the file using IO#sysread one at a time, until the byte is $/, indicating a newline. When it finds a newline, it stops taking bytes and calls the passed block with that line.

This solution works but is inefficient as it calls IO.sysread for every byte in the file.

Buffering File Content

Ruby is smarter about how it does this by keeping an internal buffer of the file's content. Instead of reading the file one byte at a time, it takes 512 bytes at once and checks if there are any newlines in the returned bytes. If there are, it returns the portion before the newline and keeps the rest in memory as a buffer. If the buffer doesn't include a newline, it fetches 512 bytes more until it finds one.

class MyIO
  def initialize(filename)
    fd = IO.sysopen(filename)
    @io = IO.new(fd)
    @buffer = ""
  end

  def each(&block)
    @buffer << @io.sysread(512) until @buffer.include?($/)

    line, @buffer = @buffer.split($/, 2)

    block.call(line)
    each(&block)
  rescue EOFError
    @io.close
  end
end

In this example, the #each method adds bytes to an internal @buffer variable in chunks of 512 bytes until when the @buffer variable includes a newline. When that happens, it splits the buffer by the first newline. The first part is the line, and the second part is the new buffer.

The passed block is then called with the line and the remaining @buffer is kept for use in the next loop.

By buffering the file's content, the number of I/O calls is reduced while dividing the file in logical chunks.

Streaming Files

To summarize, streaming files works by asking the operating system's kernel to open a file, then read bytes from it bit by bit. When reading a file per line in Ruby, data is taken from the file 512 bytes at a time and split up in "lines" after that.

This concludes our overview of I/O and streaming files in Ruby. We'd love to know what you thought of this article, or if you have any questions. We're always on the lookout for topics to investigate and explain, so if there's anything magical in Ruby you'd like to read about, don't hesitate to leave a comment.


          [lubuntu] how do i add draft mode to Canon iP2700 - CUPS+Gutenprint?      Cache   Translate Page   Web Page Cache   
This is a continuation of https://ubuntuforums.org/showthread.php?t=2395967 Canon iP2700 - CUPS+Gutenprint is the driver for my printer available in the kernel, however it lacks printing features that I require, namely, printing in Draft Mode. There is a driver available in Canon website...
          Comment on Indian-Inspired Chickpea & Summer Corn Curry by Alissa Saenz      Cache   Translate Page   Web Page Cache   
Norway sounds awesome! Can you get fresh corn? I bought it fresh on the cob and just sliced the kernels off with a knife like this: https://www.youtube.com/watch?v=vLwC6l0qquA If frozen is available it would be with the other frozen veggies. Something like this: https://www.birdseye.com/product/sweet-corn/ I hope that helps!
          sagemath-jupyter 8.2-11 x86_64      Cache   Translate Page   Web Page Cache   
Jupyter kernel for SageMath
          RedHat: RHSA-2018-2164:01 Important: kernel security and bug fix update      Cache   Translate Page   Web Page Cache   
LinuxSecurity.com: An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
          RedHat: RHSA-2018-2161:01 Important: kernel security and bug fix update      Cache   Translate Page   Web Page Cache   
LinuxSecurity.com: An update for kernel is now available for Red Hat Enterprise Linux 7.3 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
          RedHat: RHSA-2018-2165:01 Moderate: kernel-rt security,      Cache   Translate Page   Web Page Cache   
LinuxSecurity.com: Updated kernel-rt packages that fix two security issues and add one enhancement are now available for Red Hat Enterprise MRG 2. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
          Microsoft Windows Kernel CVE-2018-8313 Local Privilege Escalation Vulnerability      Cache   Translate Page   Web Page Cache   
Type: Vulnerability. Microsoft Windows is prone to a local privilege-escalation vulnerability; fixes are available.
          Microsoft Windows Kernel CVE-2018-8308 Local Privilege Escalation Vulnerability      Cache   Translate Page   Web Page Cache   
Type: Vulnerability. Microsoft Windows is prone to a local privilege-escalation vulnerability; fixes are available.
          Microsoft Windows Kernel 'Win32k.sys' CVE-2018-8282 Local Privilege Escalation Vulnerability      Cache   Translate Page   Web Page Cache   
Type: Vulnerability. Microsoft Windows is prone to a local privilege-escalation vulnerability; fixes are available.
          Comment on My Mac mini, kernel_task, and dusty hardware: Bring back my mini’s zing by KenC      Cache   Translate Page   Web Page Cache   
2011 Mini, just checked, and it's clean as a whistle.
          Cara Unlock Bootloader Xiaomi Mi 8/SE/Explorer Edition      Cache   Translate Page   Web Page Cache   
Cara Unlock Bootloader Xiaomi Mi 8/SE/Explorer Edition

Sejatinya pihak Xiaomi sudah mengeluarkan 3 buah smartphone Flagship pada tahun 2018 ini dan itu adalah variant Xiaomi Mi 8 yang dari spesifikasi dan design-nya memang sangat powerful tiada banding, selain itu tidak hanya 1 variant yang di rilis, namun ada 3 variant Xiaomi Mi 8 yaitu adalah versi regulernya Xiaomi Mi 8, lalu ada variant murahnya yaitu Xiaomi Mi 8 SE dan variant paling tingginya adalah Xiaomi Mi 8 Explorer Edition.

Meski mendapat predikat sebagai smartphone flagship Xiaomi untuk tahun 2018 ini, namun faktanya cara melakukan Unlock Bootloadernya masih sama saja seperti variant device Xiaomi yang lain, barikut adalah persyaratan dan cara melakukan Unlock Bootloader tersebut.

Persyaratan yang di butuhkan :
1. PC/Laptop
2. Kabel USB
3. Xiaomi Mi 8/SE/Explorer Edition dengan kapasitas baterai lebih dari 50%
4. Koneksi Internet yang baik
5. Punya Mi Account yang sudah di Login-kan di Smartphone Xioami dan juga di web resmi MIUI (harus sama)

Cara Unlock Bootloader Xiaomi Mi 8/SE/Explorer Edition


# Tahap Request Unlock Bootloader secara resmi

1. Silahkan masuk ke halaman resmi Unlock MIUI
2. Lalu pilih menu "Unlock".
3. Selanjutnya pilih button yang berada di tengah yang bertuliskan "Unlock Now".
4. Kalian akan di bawa ke halaman baru, pada tahap ini kalian mesti memberikan informasi yang benar :
#1 Isikan nama kalian, maksimal 2 kalimat (misal : jhon boni atau teplak meja)
#2 Pilih Regional Indonesia (+62)
#3 Masukan nomor yang bisa di hubungi, wajib! jangan asal dalam mengisi, karena status approve-nya akan di kirim ke nomor yang telah kalian input!
#4 Isi alasan kalian kenapa ingin Unlock Bootloader, ingat! pakai bahasa inggris, lihat triknya disini : Cara mudah agar cepat approve unlock bootloader di device Xiaomi
#5 Centang dan Apply

Note : Proses ini bisa saja akan berlangsung hingga 10 hari lebih dalam tahap Request Unlock Bootloadernya jika kalian tidak beruntung, tetapi jika kalian beruntung maka dalam waktu 1-2 hari biasanya status permohonan Unlock Bootloader kalian sudah di penuhi.

# Tahap persiapan Unlock Bootloader

1. Download dulu aplikasi Mi Flash Unlock terbaru atau di web resminya DISINI.
2. Selanjutnya Assosisikan (Associate) Mi Account kalian dengan cara masuk Settings>>Additional settings>>Developer options, centang opsi OEM Unlocking dan masuk ke menu Mi Unlock Status dan add account and device.
jika tidak tahu caranya ikuti artikel ini : Cara terbaru dan tercepat untuk melakukan unlock bootloader Xiaomi

3. Pastikan device kalian sudah ter-asosiasi dengan sempurna, jika belum jangan coba-coba untuk melakukan Unlock Bootloader, di pastikan akan gagal pada akhirnya.
4. Jika sudah ter-asosiasi dengan sempurna, lanjut ke eksekusi-nya.


# Tahap Unlock Bootloader

1. Lakukan Disable Driver Signature Enforcement terlebih dahulu.
2. Selanjutnya install aplikasi Mi Flash Unlock yang sudah kalian download sebelumnya
3. Buka aplikasi Mi Flash Unlock, lalu Login dengan Mi Account kalian (ingat! harus sama dengan Mi Account yang kalian daftarkan untuk request Unlock Bootloader)
4. Jika sudah, segera matikan smartphone Xiaomi kalian, lalu masuk Mode Fastboot dengan cara menekan tombol Volume Down (-) dan Power berbarengan, tunggu hingga gambar kelinci memperbaiki robot error muncul.
5. Sambung device Xiaomi kalian ke PC dengan kabel USB.
6. Jika telah terhubung, lalu tekan button "Unlock"
7. Proses akan berjalan dengan singkat.
8. Jika sudah berhasil akan muncul pesan "Unlock Succesfully" lalu tekan opsi "Reboot Now"
9. Done!

Jika pada akhirnya kalian gagal dalam melakukan Unlock Bootloader, maka kalian bisa mengikuti tutorial ini : Cara atasi gagal Unlock Bootloader Xiaomi, dan perlu kalian ketahui melakukan unlock Bootloader Xiaomi itu juga memiliki beberapa resiko seperti yang sudah di jelaskan oleh pihak Xiaomi :
Add caption
Tetapi, melakukan Unlock Bootloader juga akan memberikan kalian banyak keuntungan, yang salah satunya adalah kemudahan dalam melakukan Flashing, memasang Custom ROM/Kernel, memasang Custom Recovery dan lainnya.

Semoga artikel ini bermanfaat, dan sekali lagi kami tidak bertanggung jawab atas segala kerusakan yang terjadi pada smartphone Xiaomi kalian, jadi lakukan dengan resiko sendiri, semoga berhasil.
          CleanMod      Cache   Translate Page   Web Page Cache   

Categories:

UPDATED 09.07.2018 Android 6.0 Super Lite Removed Malware Removed pre-installed applications White themed Settings   New Music Player [*] New File Manager [*] New Browser (Gello) [*] New Font (SegoeUI) [*] New Boot Animation [*] New Kernel image [*] New Ringtones and other changes to improve stability and performance Battery and Camera Patches has been already [...]

(Read more...)


          Canonical releases new infographic to show how Ubuntu Linux 'connects everything'      Cache   Translate Page   Web Page Cache   
Microsoft owns the desktop with Windows -- it is undeniable. You know what? That's fine. But the success of Windows is not a failure for Linux. What I mean to say is, the open source kernel is omnipresent, whether you know it or not. To highlight the ubiquitous nature of Ubuntu in particular, Canonical today releases an all-new infographic showing how this distribution "connects everything." I urge you to give it a look, as it will open your eyes to just how important Ubuntu -- and Linux overall -- really is. Apparently, this is an update to a previous infographic… [Continue Reading]

          食安中心跟進預先包裝冷藏蔬菜產品疑受李斯特菌污染事件最新進展      Cache   Translate Page   Web Page Cache   
  食物環境衞生署食物安全中心(中心)今日(七月十日)表示,中心一直跟進Greenyard Frozen生產的預先包裝冷藏蔬菜産品疑受李斯特菌污染的事件,並已於日前指令有關本港進口商停售及回收數款受影響産品。中心根據英國食物標準局及愛爾蘭食品安全局提供的最新回收產品清單進一步調查,發現另有以下數款涉事冷藏蔬菜産品曾進口本港。中心呼籲市民不要食用受影響的產品,業界如持有有關產品,亦應立即停止使用或出售。
    
有關產品資料如下:

(一)產品名稱:Sainsbury's Carrots, Broccoli and Sweetcorn Microwaveable steam bags
包裝:每袋四包,每包一百三十五克
進口商:牛奶有限公司
此日期前最佳:二○二○年一月或之前

(二)產品名稱:Growers Pride Supersweet Sweetcorn
包裝:每包四百五十克
進口商:百佳超級市場(香港)有限公司
此日期前最佳:二○二一年七月或之前

(三)產品名稱:Tesco Mixed Vegetables with Red Peppers
包裝:每包一公斤
進口商:華潤萬家(香港)有限公司
此日期前最佳:二○二○年一月或之前

(四)產品名稱:Tesco Classic Mixed Vegetables (Resealable)
包裝:每包一公斤
進口商:華潤萬家(香港)有限公司
此日期前最佳:二○二○年一月或之前

  中心發言人說:「中心在跟進調查時發現三間本地進口商曾進口上述受影響產品,並在旗下超級市場出售。有關進口商已按中心指令將受影響產品停售及下架,並展開回收。市民可於辦公時間致電有關進口商熱線──牛奶有限公司(電話:2299 1133)、百佳超級市場(香港)有限公司(電話:2606 8658)及華潤萬家(香港)有限公司(電話:2586 3000)查詢上述產品的回收事宜。」

  另外,中心接獲歐洲聯盟委員會食品和飼料快速預警系統(預警系統)通知,指Greenyard Frozen所生產的冷藏蔬菜産品亦因為可能受李斯特菌污染而正進行回收。根據預警系統提供的資料,一間本地進口商曾進口一批受影響産品。中心調查確認有關產品曾進口本港及已售罄。

有關產品資料如下:

產品名稱:Pinguin Sweet Corn Kernels
包裝:每包2.5公斤
進口商:果果紅有限公司
此日期前最佳:二○一九年六月二日

  發言人說:「李斯特菌可在一般烹煮溫度下輕易消滅,但能在冷藏低溫下生存和繁殖。大部分身體健康的人在感染這種細菌後不會出現病徵或只出現輕微病徵如發燒、肌肉疼痛、頭痛、噁心、嘔吐及腹瀉等。但對初生嬰兒、長者和免疫力較低的人,則可能出現嚴重的併發症如敗血症及腦膜炎,甚至死亡。孕婦感染李斯特菌一般症狀輕微,但可導致胎兒流產、夭折、早產,或引致新生嬰兒患上嚴重的感染。」

  發言人呼籲市民如購入受影響產品,應停止食用。業界如持有有關產品,亦應立即停止使用或出售。

  中心會就事件通知業界,並會繼續留意事件和採取適當的跟進行動,包括適時公布需要回收產品的最新資料。調查仍然繼續。
          Episode 75: Dell Precision 5510 Review      Cache   Translate Page   Web Page Cache   
Many have tried and failed to manufacture a laptop that stops Apple's Macbook Pro in it's tracks! Has Dell finally done it with their Precision 5510? Can you get a $2200 laptop for under $1000 brand new from Dell? We'll show you how it's done and how it stacks up to Apple in this week's episode. We talk to Brandon who wants to know how to scale his small business and of course your calls as always go to the front of the line. -- The Cliff Notes -- For links to the articles and material referenced in this week's episode check out this week's page from o our podcast dashboard! This Episode's Podcast Dashboard (http://podcast.asknoahshow.com/75) Phone Systems for Ask Noah provided by Voxtelesys (http://www.voxtelesys.com/asknoah) -- Stay In Touch -- Find all the resources for this show on the Ask Noah Dashboard Ask Noah Dashboard (http://www.asknoahshow.com) Need more help than a radio show can offer? Altispeed provides commercial IT services and they’re excited to offer you a great deal for listening to the Ask Noah Show. Call today and ask about the discount for listeners of the Ask Noah Show! Altispeed Technologies (http://www.altispeed.com/) Contact Noah asknoah [at] jupiterbroadcasting.com -- Twitter -- Noah - Kernellinux (https://twitter.com/kernellinux) Ask Noah Show (https://twitter.com/asknoahshow) Altispeed Technologies (https://twitter.com/altispeed) Jupiter Broadcasting (https://twitter.com/jbsignal)
          Harga Sawit Riau Naik Rp22,39 Perkilogram      Cache   Translate Page   Web Page Cache   

"Kenaikan harga TBS sawit Riau tersebut dipicu antara lain naiknya harga jual CPO dan kernel dari hampir seluruh perusahaan sumber data,"

Posting Harga Sawit Riau Naik Rp22,39 Perkilogram ditampilkan lebih awal di Terhangat Terpercaya.


          DuraSpace News: Core Attributes of Fedora Repository Enable Complex Modeling of Data and Objects For Re-use in a Wide Variety of Instances      Cache   Translate Page   Web Page Cache   

The name Fedora is an acronym for the Flexible Extensible Digital Object Repository Architecture. The Fedora Repository is very flexible; it is capable of serving as a digital content repository for a wide variety of use cases. Among these are digital asset management, institutional repositories, data repositories, digital archives, content management systems, scholarly publishing enterprises, and digital libraries. The Fedora Repository is able to store any sort of digital resource such as documents, videos, datasets, computer files, and images, plus it can store metadata about the content items in any format. In addition, the relationships between content items can be stored–which is often as important as the content items themselves. You can choose to store just the metadata and relationships for content which is held by another organization or system such as cloud storage, archival tape storage, databases etc.

Why Fedora?
Technological innovations occur because there is an unanswered need within a community that inspires individuals or groups to develop potential solutions to solve a problem. By 1998 early Internet users, particularly in the scholarly ecosystem, had become more sophisticated at creating and using many varieties of complex digital content. Digital repositories needed to evolve into more sophisticated storage and access containers. As digital collections grew, and were made use of in previously unconsidered ways, repository managers were faced with management tasks of increasing complexity. Collections contained multiple data types, and organizations need to archive and preserve complex objects, as well as web sites and other complex, multi-part documents. And finally, the need to establish relationships between data objects in a repository had become more and more apparent. It was in this era that core attributes of the Flexible Extensible Digital Object Repository Architecture–Fedora–were developed. But this is no mere anachronism; these core Fedora attributes remain key relevant features because community use cases of today are no less complex than they were 20 years ago.

Fedora development has been focused on whittling down the core to the most valuable kernel of abstraction around digital objects so that users and developers can access a Fedora repository to serve digital objects with even more flexibility in how they integrate surrounding services.

These original goals for Fedora’s development are still important:
• Identifiers: provision of persistent identifiers; unique names for all resources without respect for machine address
• Relationships: support for relationships between objects
• Tame Content: normalization of heterogeneous content and metadata based on an extensible object model
• Integrated Management: efficient management by repository administrators not only of the data and metadata in a repository, but also of the supporting programs, services and tools that make presentation of that data and metadata possible
• Interoperable Access: provision of interoperable access by means of a standard protocol to information about objects and for access to object content; discovery and execution of extensible service operations for digital objects
• Scalability: provision of support for >10 million objects
• Security: provision of flexible authentication and policy enforcement
• Preservation: provision of features to support longevity and archiving, including text-based serialization of objects and content versioning
• Content Recon: reuse of objects including object content being present in any number of contexts within a repository; repurposing of objects allowing dynamic content transformations to fit new presentations requirements

The Fedora digital object model offers the strengths and advantages of:
• Abstraction: The object model is the same whether the object is data, behavior definitions, or other kinds of objects. It also does not matter what kind of data the digital objects is representing—text, images, maps, audio, video, geospatial data are all the same to Fedora.
• Flexibility: Implementers of Fedora can design their content models to best represent their data and the presentation requirements of their specific use case.
• Generic: Metadata and content are tightly linked within the digital object.
• Aggregation: Fedora objects can refer to data that is stored locally or that is stored on any web accessible server.
• Extensibility: Fedora can be extended in a number of ways: event-based messaging workflows, the REST-API, and the API Extension Framework, which provides a mechanism for binding shareable services to repository resources.

Fedora continues to focus on durability as well, though this thinking has evolved over time. Fedora originally focused on XML as a preservation standard, specifically the Fedora Object XML or FOXML. While this had the advantage of making Fedora resources relatively human-readable, the use of a custom XML schema known only to the Fedora community presents its own set of long-term preservation and access challenges. The current version of Fedora focuses on modern, widely-adopted web standards as a means of avoiding the need to maintain custom schemas, and leverages RDF as the primary means of describing Fedora resources in a standardized way. An import/export utility allows Fedora users to export some or all of their resources as serialized RDF, which does not depend on a custom Fedora schema. Current efforts like the Oxford Common File Layout may be implemented in Fedora in the future to support even more preservation use cases.

Fedora repositories offer implementers the option of versioning both container (metadata) and binary resources. Versions can be created on-demand, and previous versions can be restored. The next major release of Fedora will support the Memento standard for retrieving historical versions of repository resources.
Object to Object Relationships: Relationships between objects can be stored via the metadata included in the objects. This allows implementers to link together related objects into parent/child relationships.
Event History: An audit trail can optionally be maintained for every object in a Fedora repository, which preserves a record of every change made to the object.

Fedora remains the best repository platform choice for users who need a flexible, extensible, scalable repository for complex modeling of data and objects that may be re-used in a wide variety of instances. Over 300 organizations in more than 35 countries have registered their Fedora installations. Visit the Fedora Registry to learn more about how Fedora is used by organizations and institutions.

The post Core Attributes of Fedora Repository Enable Complex Modeling of Data and Objects For Re-use in a Wide Variety of Instances appeared first on Duraspace.org.


          Wabash Valley Farms Whirley-Pop Stovetop Popcorn Popper – Just $23.99!      Cache   Translate Page   Web Page Cache   
Price drop! Are you one of those people who loves popcorn? If so, here’s a great deal! Makes 6 quarts of theater style popcorn in just three minutes. The stirring mechanism prevents sticking and burning by stirring every kernel until it pops.&n...
          Ben Hutchings: Debian LTS work, June 2018      Cache   Translate Page   Web Page Cache   

I was assigned 15 hours of work by Freexian's Debian LTS initiative and worked 12 hours, so I have carried 3 hours over to July. Since Debian 7 "wheezy" LTS ended at the end of May, I prepared for Debian 8 "jessie" to enter LTS status.

I prepared a stable update of Linux 3.16, sent it out for review, and then released it. I rebased jessie's linux package on this, but didn't yet upload it.

Since the "jessie-backports" suite is no longer accepting updates, and there are LTS users depending on the updated kernel (Linux 4.9) there, I prepared to add it to the jessie-security suite. The source package I have prepared is similar to what was in jessie-backports, but I have renamed it to "linux-4.9" and disabled building some binary packages to avoid conflicting with the standard linux source package. I also disabled building the "udeb" packages used in the installer, since I don't expect anyone to need them and building them would require updating the "kernel-wedge" package too. I didn't upload this either, since there wasn't a new linux version in "stretch" to backport yet.


          Canonical corrige regressão do Ubuntu causando falhas de inicialização com CPUs AMD      Cache   Translate Page   Web Page Cache   
No mês passado, em 20 de junho, a Canonical lançou uma atualização de firmware de microcódigo para processadores da AMD em todas as versões do Ubuntu suportadas para corrigir a conhecida vulnerabilidade Specter, descoberta por Jann Horn do Google Project Zero, que pode permitir que invasores locais exponham informações sensíveis, incluindo a memória do kernel. Infelizmente, o firmware do microcódigo para processadores da AMD (amd64-microcode) lançado pela Canonical causou falhas de inicialização em alguns PCs com o Ubuntu 14.04 LTS. A empresa pediu desculpas pelo problema e lançou um patch … Continuar Leitura
          Dolphin-Emu under openSUSE Leap 42.3      Cache   Translate Page   Web Page Cache   

A day after I formally announced my game console emulator repository, the Dolphin Emulator guys decided to merge a patch that makes Qt 5.9 mandatory. That means Dolphin is no longer compatible with openSUSE Leap 42.3 which comes with Qt 5.6.

I take pride in myself for having a high-quality product, even if it’s just free video game stuff. Therefore my plan is this instead of simply disabling 42.3 and calling it a day:

I’ll pick the last commit before that patch and build that Dolphin revision. Then I’ll disable the 42.3 target and build the most recent version for the other distributions. That way the last 42.3-compatible binaries stay on the download server until I remove the 42.3 target entirely which will be either when Leap 15.1 gets released or maybe even earlier.

I don’t think the impact will be that big, though. For gaming it’s important anyway to migrate to new base OS anyway because of all the performance improvements that come with new kernel and Mesa versions but for now the 42.3 users are covered.


          Ekiti must grow beyond Fayose's stomach infrastructure - Buhari      Cache   Translate Page   Web Page Cache   

President Muhammadu Buhari yesterday urged the people of Ekiti State to vote for the All Progressives Congress (APC) in Saturday’s governorship election.


He said the people of the Fountain of Knowledge should not allow themselves to be insulted by the stomach infrastructure policy being promoted by Governor Ayo Fayose.

The nation’s number one citizen said Ekiti should grow beyond stomach infrastructure vote APC to enjoy god governance, development, better standard of living and infrastructure development.

He expressed regrets that many politicians have been capitalising on the herdsmen crisis in some parts of the country accusing him of not doing anything because he is Fulani.

Describing the allegation as a “cheap blackmail,” Buhari said protection of life and property of Nigerians is paramount to him noting that measures are being taken to put an end to the herdsmen’s onslaught.

Buhari spoke on Tuesday at the grand finale governorship rally held at the Oluyemi Kayode Stadium, Ado-Ekiti, the state capital, where APC national leaders and governors canvassed for votes for the flag bearer, Dr. Kayode Fayemi.

The President described Fayemi as competent, capable and experienced enough to be elected governor again noting that the APC flag bearer served excellently well as Minister of Mines and Steel Development.

He said Ekiti get its fair share of resources and projects from the Federal Government despite the political difference between the government at the centre and state government.

Joining Buhari at the rally are Secretary to the Government of the Federation, Mr. Boss Mustapha; Governors Abdulazeez Yari (Zamfara), Abubakar Sani Bello (Niger), Yahaya Bello (Kogi), Abiola Ajimobi (Oyo), Rauf Aregbesola (Osun), Rotimi Akeredolu (Ondo), Ibikunle Amosun (Ogun), Atiku Bagudu (Kebbi), Kashim Shettima (Borno), Umaru Al Makura (Nasarawa) and Edo State Governor Godwin Obaseki represented by his deputy, Philip Shaibu.

Ministers who attended the rally include Rotimi Amaechi (Transportation), Babatunde Fashola (Power, Works and Housing), Chris Ngige (Labour and Employment), Ogbonnaya Onu (Science and Technology), Adebayo Shittu (Communications) and Abdulrahman Danbazzau (Interior).

Thousands of residents defied Fayose’s order to stay at home and thronged the stadium to welcome the President who first paid courtesy visit to the Ewi of Ado-Ekiti, Oba Rufus Adeyemo Adejugbe and other traditional ruler at the palace.

Commercial activities were going on at the city’s main markets while many commercial drivers and motorcycle riders plied their trade on the major roads.

Buhari, whose helicopter touched down at about 12.35 pm at Christ’s School sports field headed to the Ewi’s Palace where the monarchs were waiting to receive him.

At the palace, Oba Adejugbe, advocated for creation of cottage industries in Ekiti to generate jobs for the unemployed. He urged Fayemi to do more for the people if he wins the poll and is sworn in again.

At the stadium, Buhari said Ekiti people are dear to him which explained why many indigenes of the state got very important appointments in his administration including the most senior military officer in the land, the Chief of Defence Staff, General Abayomi Olonisakin.

The President said he and his party have not only come to campaign for the votes of Ekiti people but to key in to the change agenda and vote APC.

He disclosed that the APC-led Federal Government has carried out laudable projects including construction and rehabilitation of 13 federal roads including Ikole-Omuo Road, Efon Alaaye-Iwaraja Road, Ido-Ifaki Road, Ado-Ifaki Road, Ila-Ilale-Ekan-Otun Road and internal roads at Federal University, Oye-Ekiti (FUOYE).

Buhari said his administration also awarded contract for a Federal Secretariat which is under construction in Ekiti to ensure that federal civil servants have office accommodation.

He noted that a National Housing Project to provide accommodation for residents was extended to Ekiti State by his administration which has also generated jobs for local artisans.

The President further explained that thousands of Ekiti residents benefited from the social investment programmes of his administration including Npower for youths, School Feeding for primary school pupils, Conditional Cash Transfer and several tranches of bailout funds.

Urging Ekiti electorate to vote Fayemi, Buhari said: “Don’t allow yourself to be blackmailed by stomach infrastructure, your future is in your hand, you must grow beyond stomach infrastructure.

“Ekiti should do the right thing by voting APC and commence the journey to reclaim your land and restore your values.

“I recommend Fayemi to you, he served as Minister of Mines and Steel

Development, he is experienced. Don’t waste your vote, vote Dr. Kayode Fayemi.”

APC National Chairman, Comrade Adams Oshiomhole, urged Ekiti voters to elect Fayemi and reject PDP which he accused of inflicting hardship of non-payment of salaries on civil servants, teachers and local government workers.

Oshiomhole accused Fayose of pocketing the over N20 billion bailout funds given to him by the Buhari administration to pay arrears of workers’ salaries and dancing “kurukere” when workers are suffering.

He disclosed that he held a meeting with labour unions in Ekiti on Monday where he gave a commitment that Fayemi would pay all the outstanding arrears owed by Fayose to give relief to workers.

Oshiomhole said: “I have served as a guarantor that Fayemi will pay the arrears of workers’ salaries when elected and he will ensure that all Ekiti people get what is due to them.

“Four years ago, I was a sitting governor of Edo State and I wanted to come and campaign for Fayemi in the 2014 election but the PDP made sure that I did not have the opportunity to come and campaign for the then incumbent Fayemi.

“Mr. President, we thank you and we know that you will not do the same, we are not here for revenge. Fayose has been trying to divert attention, he abused INEC, Police and he is behaving like a typical armed robber.

“Fayose has resorted to very primitive tactics, he gave unlawful order that all shops be closed and manipulated drivers not to bring out their vehicles to convey people here.

“This boy (Fayose) is a poor student of student thuggery; nothing, absolutely nothing can stop people that are determined. The President is proud that you defied his tactics and came here today.

“You will vote freely and fairly and nothing will happen. Whoever Fayose demotes, Fayemi will promote him and whoever Fayose dismisses, Fayemi will reinstate.

“All of you go to your polling units with your PVCs and by Saturday, Fayose will cry.”

APC National Leader Asiwaju Bola Tinubu urged Ekiti electorate to reject the PDP which he described as a “party of looters.”

Tinubu described APC as a pain killer that will put an end to the pains being experienced by Ekiti people and Nigerians at large.

He said Buhari built three refineries for Nigeria but the PDP government dismantled and sold them off leaving Nigerians to suffer.

Tinubu said: “They (PDP) stole all the money, what do you have left in the treasury? PDP is a party of destruction, it is Poverty Development Party.

“When they stole your money, they stole your life, they stole your future. APC is here to rebuild what has been destroyed. We thank God for the party under the leadership of our Baba, President Buhari.

“APC is the pain killer, my mama used to give me APC when I was young.

When you vote APC, you are voting for future, you are voting for the sake of your children.

“It is not for the sake of Kayode (Fayemi), he had an appointment in Abuja but he has come back to serve you. If you want Ekiti to look like Lagos, to witness development and have your children in schools, vote APC.

“Don’t let anybody intimidate you, you will be protected, nobody can intimidate you. If you want to eat the seed inside palm kernel, it will not be easy/

“You can’t sleep at home and be expecting power, nobody serves it in a restaurant. No matter the level of their lies, propaganda and intimidation, fear has gripped them.

“Vote and stand by your vote, it will not be like that of 2014. It is your turn to get your government for your good and progress, go there on Saturday and vote APC.”

Fayemi promised return of good governance to Ekiti if the people of the state elect him. He commended the people for trooping out in large numbers for the rally to welcome the President.

He said the party is united after the primary noting that all governorship aspirants who contested for the party’s ticket with him are resolute to ensure victory for the party.

Fayemi said: “During my time, there is no community that did not benefit from our government. If we did not construct your road, we built your school, if we did not build your school, we constructed palace for your Kabiyesi, if we did not build palace for your Kabiyesi, we fixed your drains.

“We did all that, we did not owe workers a single Naira; we paid the elderly, we paid free WAEC, NECO, JAMB, NABTEB fees. We increased workers salaries (minimum wage) from N8,500 to N13,000 and then to N19,000.

“We were the first to pay Rural Teachers Allowance in Nigeria, Core Teachers Allowance. I am running on a track record of service in all constituencies, there is no single community that did not benefit from our (first) tenure.

“Why am I back? President did not sack me (as minister). My people need me for reclaiming your land and restoring our values. Your PVCs must be ready because the power of the people is greater than the people in power.”

Chairman of APC National Campaign Council for Ekiti State governorship election, Kebbi State Governor Bagudu said the magnitude of crowd that thronged the stadium was a pointer to an APC victory on Saturday.

Bagudu said Ekiti has the best potential to develop under Fayemi noting that Ekiti people appreciated what he did during his first tenure.

“Go to your polling units on Saturday and vote APC; guard your votes, don’t be intimidated. President Buhari has assured that security will be provided and your votes will count,” Bagudu said.

Yari, who is also the Chairman of Nigeria Governor’s Forum (NGF) said Fayose held its rally on the streets last week because he was afraid of an empty stadium.


          SciLinux: Important: kernel on SL6.x i386/x86_64      Cache   Translate Page   Web Page Cache   
LinuxSecurity.com: An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older v [More...]
          Cocktail 11.6.1 - General maintenance and optimization utility. (Shareware)      Cache   Translate Page   Web Page Cache   

Cocktail is a general purpose utility for macOS that lets you clean, repair and optimize your Mac. It is a powerful digital toolset that helps hundreds of thousands of Mac users around the world get the most out of their computers every day.

The application serves up a perfect mix of maintenance tools and tweaks, all accessible through a clean and easy to use interface. Cocktail's features are arranged into five categories that helps you manage various aspects of your computer. It also comes with an automatic Pilot-mode that allows you to simply press a button and relax, knowing that Cocktail will take care of the rest.



Version 11.6.1:

Note: Cocktail (High Sierra Edition) requires macOS 10.13 or later

  • Addresses minor compatibility issues with Apple File System (APFS) volumes
  • Improvements on the "Clear kernel caches" procedure
  • Improvements on the "Clear QuickLook caches" procedure
  • Improvements on the "Perform essential system maintenance" procedure
  • Fixed compatibility issues between AirPlay 2 and the "Clear audio components caches" procedure
  • Fixed compatibility issues with Safari 12
  • Fixed compatibility issues with upcoming Cocktail (Mojave Edition)
  • Addresses an issue in which "Enforce Critical Security Updates" action may not appear in Automator
  • Added macOS High Sierra 10.13.6 compatibility
  • Updated Automator actions


  • macOS 10.13 or later



More information

Download Now
          Santa 0.9.28 - Whitelisting/blacklisting system for macOS (beta). (Free)      Cache   Translate Page   Web Page Cache   

Santa is a binary whitelisting/blacklisting system for macOS. It consists of a kernel extension that monitors for executions, a userland daemon that makes execution decisions based on the contents of a SQLite database, a GUI agent that notifies the user in case of a block decision and a command-line utility for managing the system and synchronizing the database with a server. It is named Santa because it keeps track of binaries that are naughty or nice.



Version 0.9.28:
Important
  • The command santactl sync now requires root privileges. Use sudo santactl sync.
Implementation Features
  • Project: Add support for unprivileged XPC interfaces #287 


  • OS X 10.9 or later



More information

Download Now
          Updates on CFS' follow-up on incident of prepackaged frozen vegetable products suspected to be contaminated with Listeria monocytogenes      Cache   Translate Page   Web Page Cache   
     The Centre for Food Safety (CFS) of the Food and Environmental Hygiene Department said today (July 10) that the Centre has been following up on the incident of prepackaged frozen vegetable products produced by Greenyard Frozen suspected to be contaminated with Listeria monocytogenes and has earlier instructed the local importers concerned to stop sale and recall several kinds of affected products. The CFS has conducted further investigation according to the updated list of recall products provided by the United Kingdom Food Standards Agency and the Food Safety Authority of Ireland and found that the following affected frozen vegetable products have also been imported into Hong Kong. The CFS urged members of the public not to consume the affected products. The trade should also stop using or selling the products concerned immediately if they possess them.

     Details of the products are as follows:

1. Product name: Sainsbury's Carrots, Broccoli and Sweetcorn Microwaveable steam bags
Packing: Four small packs of 135 grams per pack
Importer: The Dairy Farm Company Limited
Best-before date: All codes to January 2020 inclusive

2. Product name: Growers Pride Supersweet Sweetcorn
Packing: 450g per pack
Importer: PARKnSHOP (HK) Limited
Best-before date: All codes to July 2021 inclusive

3. Product name: Tesco Mixed Vegetables with Red Peppers
Packing: 1 kilogram per pack
Importer: China Resources Vanguard (HK) Company Limited
Best-before date: All codes to January 2020 inclusive

4. Product name: Tesco Classic Mixed Vegetables (Resealable)
Packing: 1kg per pack
Importer: China Resources Vanguard (HK) Company Limited
Best-before date: All codes to January 2020 inclusive

     "The CFS' further investigation found that three local importers had imported the above affected products into Hong Kong for sale at their chain supermarkets. The importers concerned have already stopped sale and removed from shelves the affected products and initiated a recall according to the CFS' instructions. Members of the public may call the hotlines of the importers concerned, the Dairy Farm Company Limited at 2299 1133, PARKnSHOP (HK) Limited at 2606 8658 and China Resources Vanguard (HK) Company Limited at 2586 3000, during office hours for enquiries about the recall," a CFS spokesman said.

     In addition, the Centre has received a notification from the Rapid Alert System for Food and Feed (RASFF) of the European Commission that frozen vegetable products produced by Greenyard Frozen are also being recalled due to possible contamination with Listeria monocytogenes. According to the information provided by the RASFF, a local importer had imported an affected batch of product. The CFS' investigation confirmed that the product concerned had been imported and sold out.

     Product details are as follows:

Product name: Pinguin Sweet Corn Kernels
Packing: 2.5kg per pack
Importer: Buah Buahan Ltd
Best-before date: June 2, 2019

     "Listeria monocytogenes can be easily destroyed by cooking but can survive and multiply at refrigerator temperature. Most healthy individuals do not develop symptoms or only have mild symptoms like fever, muscle pain, headache, nausea, vomiting or diarrhoea when infected. However, severe complications such as septicemia, meningitis or even death may occur in newborns, the elderly and those with a weaker immune system. Although infected pregnant women may just experience mild symptoms generally, the infection of Listeria monocytogenes may cause miscarriage, infant death, preterm birth, or severe infection in newborns," the spokesman said.

     The spokesman urged consumers not to consume the affected products if they have bought any. The trade should also stop using or selling the products concerned immediately if they possess them.

     The CFS will alert the trade to the incident, and will continue to monitor the cases and take appropriate follow-up action, including making timely announcements on the latest information of the products which need to be recalled. Investigation is ongoing.
          [+]The best book of the month Practical Reverse Engineering: x86, x64, ARM, Windows Kernel, Reversing Tools, and Obfuscation [NEWS]      Cache   Translate Page   Web Page Cache   

=====>===== BOOK REVIEW : Book title: [+]The best book of the month Practical Reverse Engineering: x86, x64, ARM, Windows Kernel, Reversing Tools, and Obfuscation [NEWS] Author: Bruce Dang publisher: Bruce Dang Book thickness: 338 p Year of publication: 2007 Best Sellers Rank : #4 =====>===== BOOK DESCRIPTION : Practical Reverse Engineering download now : http://lerekansuekrooot90.blogspot.com/?book=1118787315
          Exploring the Design Space of Fair Scheduling Supports for Asymmetric Multicore Systems      Cache   Translate Page   Web Page Cache   
Although traditional CPU scheduling efficiently utilizes multiple cores with equal computing capacity, the advent of multicores with diverse capabilities pose challenges to CPU scheduling. For such asymmetric multi-core systems, scheduling is essential to exploit the efficiency of core asymmetry, by matching each application with the best core type. However, in addition to the efficiency, an important aspect of CPU scheduling is fairness in CPU provisioning. Such uneven core capability is inherently unfair to threads and causes performance variance, as applications running on fast cores receive higher capability than applications on slow cores. Depending on co-running applications and scheduling decisions, the performance of an application may vary significantly. This study investigates the fairness problem in asymmetric multi-cores, and explores the design space of OS schedulers supporting multiple fairness constraints. In this paper, we consider two fairness-oriented constraints, minimum fairness for the minimum guaranteed performance and uniformity for performance variation reduction. This study proposes four scheduling policies which guarantee a minimum performance bound while improving the overall throughput and reducing performance variation too. The proposed fairness-oriented schedulers are implemented for the Linux kernel with an online application monitoring technique. Using an emulated asymmetric multi-core with frequency scaling and a real asymmetric multi-core with the big.LITTLE architecture, the paper shows that the proposed schedulers can effectively support the specified fairness while improving overall system throughput.
          Oracle wants to improve Linux load balancing and failover      Cache   Translate Page   Web Page Cache   

Native to ordinary interfaces, Big Red reckons bonded channels are needed for RDMA

Oracle reckons Linux remote direct memory access (RDMA) implementations need features like high availability and load balancing, and hopes to sling code into the kernel to do exactly that.…


          A Look At The Windows 10 vs. Linux Power Consumption On A Dell XPS 13 Laptop      Cache   Translate Page   Web Page Cache   

With the current-generation Dell XPS 13 XPS9370-7002SLV currently being tested at Phoronix, one of the areas I was most anxious to benchmark was the power consumption... For years it has been a problem of Linux on laptops generally leading to less battery life than on Windows, but in the past ~2+ years there has been some nice improvements within the Linux kernel and a renewed effort by developers at Red Hat and elsewhere on improving the Linux laptop battery life. Here are some initial power consumption numbers for this Dell XPS 13 under Windows 10 and then various Linux distributions.

The Dell XPS 13.3-inch laptop for testing features the Intel Core i7 8550U (quad-core + HT) CPU with UHD Graphics 620, 2 x 4GB RAM, 256GB PM961 NVMe Samsung SSD, and its panel is a 1920 x 1080 resolution. For some initial basic tests I ran Windows 10 out-of-the-box and compared that to fresh installs of Ubuntu 18.04 LTS, Fedora Workstation 28, openSUSE Tumbleweed, and Clear Linux.

Read more

read more


          DHCP, Kernel, QEMU-KVM Updates for Oracle Linux      Cache   Translate Page   Web Page Cache   
The following updates has been released for Oracle Linux: ELBA-2018-2163 Oracle Linux 6 dhcp bug fix update ELBA-2018-4160 Oracle Linux 7 Unbreakable Enterprise kernel bug fix update (aarch64) ELSA-2018-2162 Important: Oracle Linux 6 qemu-kvm security update ELSA-2018-2164 Important: Oracle Linux 6 kernel security and bug fix update ELSA-2018-4161 Important: Oracle Linux 6 Unbreakable Enterprise kernel security update ELSA-2018-4161 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update ELSA-2018-4164 Important: Oracle...
          Red Hat Security Advisory 2018-2164-01      Cache   Translate Page   Web Page Cache   
Red Hat Security Advisory 2018-2164-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include bypass, denial of service, information leakage, and use-after-free vulnerabilities.
          Red Hat Security Advisory 2018-2162-01      Cache   Translate Page   Web Page Cache   
Red Hat Security Advisory 2018-2162-01 - Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Issues addressed include a bypass vulnerability.
          Red Hat Security Advisory 2018-2161-01      Cache   Translate Page   Web Page Cache   
Red Hat Security Advisory 2018-2161-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a bypass vulnerability.
          Red Hat Security Advisory 2018-2165-01      Cache   Translate Page   Web Page Cache   
Red Hat Security Advisory 2018-2165-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include an information leakage vulnerability.
          7/11/2018: BRAIN WORKOUT & RECIPE: CRYPTIC CLUES:      Cache   Translate Page   Web Page Cache   
Across 1. Without shape there’s nothing to fill in? (8) 5. Retired sailor meets newspaper boss (4) 9. Knock dizzy by throwing kernels back? (4) 10. Offsets cab lanes (8) 11. Pretend end lost from damaged finger (5) 12. No match for the unwed? (7)...
          会话“WFP-IPsec Diagnostics”未能写入日志文件      Cache   Translate Page   Web Page Cache   
日志名称: Microsoft-Windows-Kernel-EventTracing/Admin 来源: Microsoft-Windows-Kernel-EventTracing 日期: 2018/7/9 12:30:06 事件 ID: 0 任务类别: 日志记录 级别: 错误 关键字: 会话 用户: ...
          Re: [PATCH 2/2] mips: mm: Discard ioremap_uncached_accelerated() m ...      Cache   Translate Page   Web Page Cache   
Christoph Hellwig writes: __ioremap_mode((offset), (size), _CACHE_CACHABLE_COW) This isn't actually used anywhere in the kernel tree. Please remove it as well.
as well.
as well.

          [PATCH 1/2] lib: Add module for testing preemptoff/irqsoff latency ...      Cache   Translate Page   Web Page Cache   
Joel Fernandes writes: (Summary) + + For example, the following invocation forces a one-time irq-disabled + critical section for 500us: + modprobe preemptirq_delay_test test_mode=irq delay=500000 + + If unsure, say N + config TRACE_EVAL_MAP_FILE bool "Show eval mappings for trace events" depends on TRACING diff --git a/kernel/trace/Makefile b/kernel/trace/Makefile index 84a0cb222f20..677540bb1b62 100644 --- a/kernel/trace/Makefile +++ b/kernel/trace/Makefile @@ -36,6 +36,7 @@ obj-$(CONFIG_TRACING_MAP) += tracing_map.o obj-$(CONFIG_CONTEXT_SWITCH_TRACER) += trace_sched_switch.o obj-$(CONFIG_FUNCTION_TRACER) += trace_functions.o obj-$(CONFIG_PREEMPTIRQ_TRACEPOINTS) += trace_preemptirq.o +obj-$(CONFIG_PREEMPTIRQ_DELAY_TEST) += preemptirq_delay_test.o obj-$(CONFIG_IRQSOFF_TRACER) += trace_irqsoff.o obj-$(CONFIG_PREEMPT_TRACER) += trace_irqsoff.o obj-$(CONFIG_SCHED_TRACER) += trace_sched_wakeup.o diff --git a/kernel/trace/preemptirq_delay_test.c b/kernel/trace/preemptirq_delay_test.c new file mode 100644 index 0000
          [PATCH 0/2] Tests for preempt/irq disabled sections      Cache   Translate Page   Web Page Cache   
Joel Fernandes writes: (Summary) Only resending the test module and kselftest patches with minor changes as suggested by Steve.
as suggested by Steve.
Previous posting of the series is at: https://lkml.org/lkml/2018/6/7/1162 Previous posting of the series is at: https://lkml.org/lkml/2018/6/7/1162 Joel Fernandes (Google) (2):
lib: Add module for testing preemptoff/irqsoff latency tracers kselftests: Add tests for the preemptoff and irqsoff tracers kselftests: Add tests for the preemptoff and irqsoff tracers kernel/trace/Kconfig |
          Re: [PATCH v5 7/8] ima: based on policy warn about loading firmwar ...      Cache   Translate Page   Web Page Cache   
Ard Biesheuvel writes: (Summary) The point I am trying to make in this thread is that there are cases where it makes no sense for the kernel to reason about these things, given that higher privilege levels such as the TrustZone secure world own the kernel's execution context entirely already, and given that masters that are not behind an IOMMU can read and write all of memory all of the time anyway.
all of the time anyway.
The bottom line is that reality does not respect the layering that IMA assumes, and so the only meaningful way to treat some of the use cases is simply to ignore them entirely.
          Re: [RFC PATCH] perf/core: don't sample kernel regs upon skid      Cache   Translate Page   Web Page Cache   
Mark Rutland writes: On Mon, Jul 09, 2018 at 06:42:29PM -0400, Boris Ostrovsky wrote: by the hypervisor. GPRs are not part of this set.
Is that also true for Dom0?
Is that also true for Dom0?
yours?
I think this is going to become a series rather than a single patch, but I can have a go. I need to get my head around how the various cases interact with each other.
each other.
Thanks,
Mark.
Mark.
Mark.

          Re: [PATCH] clk: aspeed: Support HPLL strapping on ast2400      Cache   Translate Page   Web Page Cache   
Joel Stanley writes: (Summary) Hi Stephen,
Hi Stephen,
On 7 July 2018 at 03:55, Stephen Boyd <sboyd@kernel.org> wrote: not, so priority of this fix is not easy for me to understand. Sure, some more background:
Sure, some more background:
We did not notice this until we attempted to use the clock for the mtd driver. This affects all of the systems I have access to.
I have access to.
I suggest we merge for4.18, and keep the cc: stable so it can be backported to the stable trees.
backported to the stable trees.
Cheers,
Cheers,
Joel
Joel
Joel

          Re: [PATCH] i2c: aspeed: Add newline characters into message print ...      Cache   Translate Page   Web Page Cache   
Brendan Higgins writes: (Summary) On Mon, Jul 2, 2018 at 2:14 PM Jae Hyun Yoo
<jae.hyun.yoo@linux.intel.com> Unless something changed in the last couple versions of the kernel, this is the only line that actually changes anything. dev_* inserts a newline for every call.
call.
Admittedly, the rest of the file is pretty inconsistent, so if you really want to make all these changes, I don't feel super strongly about it. 2.17.1
Reviewed-by: Brendan Higgins <brendanhiggins@google.com>
          [PATCH v4 1/8] mm, devm_memremap_pages: Mark devm_memremap_pages() ...      Cache   Translate Page   Web Page Cache   
Dan Williams writes: (Summary) It injects an altmap argument deep into the architecture specific vmemmap implementation to allow allocating from specific reserved pages, and it has Linux specific assumptions about page structure reference counting relative to get_user_pages() and get_user_pages_fast(). 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kernel/memremap.c b/kernel/memremap.c index 5857267a4af5..4478e4688bb7 100644 --- a/kernel/memremap.c +++ b/kernel/memremap.c @@ -257,7 +257,7 @@ void *devm_memremap_pages(struct device *dev, struct dev_pagemap *pgmap) pgmap_radix_release(res, pgoff);
          [PATCH v4 8/8] mm: Fix exports that inadvertently make put_page() ...      Cache   Translate Page   Web Page Cache   
Dan Williams writes: (Summary) Now that all producers of dev_pagemap instances in the kernel are properly converted to EXPORT_SYMBOL_GPL, fix up implicit consumers that interact with dev_pagemap owners via put_page(). 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/kernel/memremap.c b/kernel/memremap.c index 16141b608b63..ecee37b44aa1 100644 --- a/kernel/memremap.c +++ b/kernel/memremap.c @@ -330,7 +330,7 @@ EXPORT_SYMBOL_GPL(get_dev_pagemap);
          [PATCH v4 7/8] mm, hmm: Mark hmm_devmem_{add, add_resource} EXPORT ...      Cache   Translate Page   Web Page Cache   
Dan Williams writes: (Summary) A cleanup to unify the implementations was discussed during the initial review: http://lkml.iu.edu/hypermail/linux/kernel/1701.2/00812.html Recent work to extend devm_memremap_pages() for the peer-to-peer-DMA facility enabled this cleanup to move forward.
facility enabled this cleanup to move forward.
In addition to the integration with devm_memremap_pages() HMM depends on other GPL-only symbols:
other GPL-only symbols:
mmu_notifier_unregister_no_release
percpu_ref
region_intersects
__class_create
__class_create
It goes further to consume / indirectly expose functionality that is not exported to any other driver:
exported to any other driver:
alloc_pages_vma
walk_page_range
walk_page_range
HMM depends upon and extends deep core-kernel fundamentals.
          Re: [PATCH] xen: setup pv irq ops vector earlier      Cache   Translate Page   Web Page Cache   
Juergen Gross writes: On 11/07/18 00:26, Boris Ostrovsky wrote:
haven't set up console.
It will print to the kernel print buffer, so the output will be available later.
available later.
am not sure "support" is the right term here. Not crashing is big plus IMO. :-)
Not crashing is big plus IMO. :-)
Not crashing is big plus IMO. :-)
Juergen
Juergen
Juergen

          tools/include/asm-generic/bitsperlong.h:14:2: error: #error Incons ...      Cache   Translate Page   Web Page Cache   
kbuild test robot writes: (Summary) Check asm/bitsperlong.h ^~~~~ vim +14 tools/include/asm-generic/bitsperlong.h bb970707 Arnaldo Carvalho de Melo 2016-07-12 12 2a00f026 Arnaldo Carvalho de Melo 2016-07-13 13 #if BITS_PER_LONG != __BITS_PER_LONG bb970707 Arnaldo Carvalho de Melo 2016-07-12 @14 #error Inconsistent word size. Check asm/bitsperlong.h bb970707 Arnaldo Carvalho de Melo 2016-07-12 15 #endif bb970707 Arnaldo Carvalho de Melo 2016-07-12 16 :::::: The code at line 14 was first introduced by commit :::::: bb9707077b4ee5f77bc9939b057ff8a0d410296f tools: Copy the bitsperlong.h files from the kernel :::::: TO: Arnaldo Carvalho de Melo <acme@redhat.com>
          Re: [PATCH 2/3] arm64: dts: qcom: sdm845-mtp: Add RPMh VRM/XOB reg ...      Cache   Translate Page   Web Page Cache   
kbuild test robot writes: (Summary) Yet something to improve:
[auto build test ERROR on agross/for-next]
[also build test ERROR on next-20180710]
[cannot apply to v4.18-rc4]
[if your patch is applied to the wrong git tree, please drop us a note to help improve the system] [if your patch is applied to the wrong git tree, please drop us a note to help improve the system] url: https://github.com/0day-ci/linux/commits/Douglas-Anderson/arm64-dts-sdm845-Add-RPMh-regulators-and-usb/20180711-061052 base: https://git.kernel.org/pub/scm/linux/kernel/git/agross/linux.git for-next config: arm64-allyesconfig (attached as .config)
compiler: aarch64-linux-gnu-gcc (Debian 7.2.0-11) 7.2.0 reproduce:
wget https://raw.githubuserco
          Palm Oil Market 2018 Global Growth, Opportunities and Industry Analysis Forecast to 2023      Cache   Translate Page   Web Page Cache   

Palm Oil -Market Demand, Growth, Opportunities and Analysis Of Top Key Player Forecast To 2023

New York, NY -- (SBWIRE) -- 07/11/2018 -- Palm Oil Industry

Description

Wiseguyreports.Com Adds "Palm Oil -Market Demand, Growth, Opportunities and Analysis Of Top Key Player Forecast To 2023" To Its Research Database

Vegetable oil is an organic and natural cooking oil, produced by removal of oil from vegetable & fruit plant components, normally seeds. As per product types, vegetable oil can be classified into soybean, sunflower seed, rapeseed and palm oil. Vegetable oils is rich in Vitamin E and is used for various purposes such as hydrogenated oils, food ingredient, pet food additive, source of fuel and as a raw material in various industries.

Palm oil is a product type of vegetable oil, extracted from the reddish pulp of palm oil fruits. For oil & gas industry, it is supplied as in the crude form that is without being refined or processed. In comparison with other types of vegetable oils, palm oil consumption provides benefits to its consumer such as improving energy levels, enhancing vision, maintaining hormonal balance and so on. It is also rich in antioxidants, beta-carotene and various nutrients including vitamin K, omega-3 & omega-6 fatty acids and several lipids. Food, cosmetic, detergents and chemical industry are the major end users of palm oil market. Two major types of palm oil are Crude Palm Oil (CPO) and Crude Palm Kernel Oil (CPKO).

Indonesia emerged as a major region for the palm oil market, due to increased consumption of palm oil by the population, growth in the regional palm oil manufacturers and increased palm oil planted area allotted by the government.

Request for Sample Report @ https://www.wiseguyreports.com/sample-request/3134078-global-palm-oil-market-industry-analysis-outlook-2018-2022

The global palm oil market is expected to grow with rising global population, increasing biofuels production, increasing fresh fruits bunches yields, accelerating economic growth and growing application in various markets. Key trends of this market includes rising demand for red palm oil, increasing sustainable palm oil production and growing shift towards palm crop transplanting. However, there are some factors which can hinder growth of the market including consumption of soybean oil in developing countries, stringent regulations, weather uncertainties and retail consolidations.

The report "Global Palm Oil Market: Industry Analysis & Outlook (2018-2022)" by Koncept Analytics provides an extensive research and detailed analysis of the present market along with future outlook. The report discusses the major growth drivers, key tends & developments and challenges of the market, covering Indonesia, Malaysia, India, Columbia and European Union along with the global market. The report profiles the key players of the market including Wilmar International Limited, PT Astra International, Tbk (AALI), Kuala Lumpur Kepong Berhad and IOI Corporation Berhad.

Table of Content

1. Market Overview

1.1 Vegetable Oil
1.2 Palm Oil

2. Vegetable Oil Market Analysis

2.1 Global Vegetable Oil Production Volume Forecast
2.2 Vegetable Oil Production Volume by Region
2.3 Vegetable Oil Production Volume by Product Types
2.4 Vegetable Oil Consumption Volume Forecast
2.5 Vegetable Oil Consumption Volume by Region
2.6 Vegetable Oil Consumption Volume by Product Types
2.7 Vegetable Oil Exports Volume Forecast
2.8 Vegetable Oil Exports Volume by Region
2.9 Vegetable Oil Imports Volume Forecast
2.10 Vegetable Oil Imports Volume by Region

3. Global Palm Oil Market Analysis

3.1 Palm Oil Production Volume Forecast
3.2 Palm Oil Production Volume by Region
3.3 Palm Oil Consumption Volume Forecast
3.4 Palm Oil Consumption Volume by Region
3.5 Palm Oil Exports Volume Forecast
3.6 Palm Oil Exports Volume by Region
3.7 Palm Oil Imports Volume Forecast
3.8 Palm Oil Imports Volume by Region
3.9 Palm Oil Production Volume by Product Type

Leave a Query @ https://www.wiseguyreports.com/enquiry/3134078-global-palm-oil-market-industry-analysis-outlook-2018-2022

4. Regional Palm Oil Market Analysis

4.1 Indonesia
4.1.1 Indonesia Palm Oil Production Volume Forecast
4.1.2 Indonesia Palm Oil Consumption Volume Forecast
4.1.3 Indonesia Palm Oil Export Volume Forecast
4.1.4 Indonesia Palm Oil Planted Area
4.1.5 Indonesia Palm Oil Planted Area Forecast
4.1.6 Indonesia Crude Palm Oil Production Volume
4.1.7 Indonesia Crude Palm Oil Production Volume Forecast

4.2 Malaysia

4.3 India

4.4 Columbia

4.5 European Union

5. Market Dynamics

5.1 Growth Drivers

5.2 Key Trends and Developments

5.3 Challenges

6. Competitive Landscape

6.1 Global Market

7. Company Profiles

7.1 PT Astra International, Tbk (AALI)
7.1.1 Business Overview
7.1.2 Financial Overview
7.1.3 Business Strategies

7.2 IOI Corporation Berhad
7.2.1 Business Overview
7.2.2 Financial Overview
7.2.3 Business Strategies

7.3 Wilmar International Limited
7.3.1 Business Overview
7.3.2 Financial Overview
7.3.3 Business Strategies

7.4 Kuala Lumpur Kepong Berhad
7.4.1 Business Overview
7.4.2 Financial Overview
7.4.3 Business Strategies

Buy Now @ https://www.wiseguyreports.com/checkout?currency=one_user-USD&report_id=3134078

Continued...

Contact Us: Sales@Wiseguyreports.Com Ph: +1-646-845-9349 (Us) Ph: +44 208 133 9349 (Uk)

For more information on this press release visit: http://www.sbwire.com/press-releases/palm-oil-market-2018-global-growth-opportunities-and-industry-analysis-forecast-to-2023-1009592.htm

Media Relations Contact

Norah Trent
Telephone: 646-845-9349
Email: Click to Email Norah Trent
Web: https://www.wiseguyreports.com/sample-request/3134078-global-palm-oil-market-industry-analysis-outlook-2018-2022

#source%3Dgooglier%2Ecom#https%3A%2F%2Fgooglier%2Ecom%2Fpage%2F%2F10000


          Production Officer at EFB Industries Limited      Cache   Translate Page   Web Page Cache   
EFB Industries Limited was incorporated on 15th day of August, 2012 to engage in the business of manufacturing and processing of all aspects of palm oil products, to develop and own palm oil plantations and estates and to manufacture all food and non-food products of palm oil industry.Location: Ohafia, Abia Job Status: Permanent Reports to: Production Manager Main Objective To ensure the achievement of Fresh Fruit Bunch (FFB) throughout, CPO and PKO recovery efficiency and product quality targets. Responsibilities Ensure daily production targets are met (FFB processing, CPO Production & Kernel Production). Check daily production yields i.e. OER (Oil Extraction Rates) and KER (Kernel Extraction Rates) and estimate FFB balance. Ensure daily processing losses for oil and kernels are below the maximum limits. Ensure prompt action is taken when processing losses exceed the standard and provide adequate explanation for any deviation from the limits. Keep records of approved and defective units or final products. Keep records of their output and compare it with the production schedule. Review cost of production with the Production Manager monthly and take appropriate action. Ensuring that health and safety regulations are met Ensure the Product Quality is in line with company and industry standards. Qualification and Skills Proven Working Experience of at least 10 years in Palm Oil Industry. Degree in Agriculture, Food Science/Technology, Agricultural Science, Agric Engineering or any related field Solid Technical Background with understanding or hands-on experience in a Palm Oil Mill. Basic Agronomic Knowledge and Farming Practices. Excellent communication skills. Interpersonal, Strong Leadership, Problem-Solving, Negotiation and Time Management Skills ICT literacy to deal with various technologies and programmes. Remuneration The successful candidate will be remunerated with an attractive package and company's benefits.
          Glary Disk Cleaner 5.0.1.146      Cache   Translate Page   Web Page Cache   
Description: Glary Disk Cleaner helps you protect your privacy, optimize system performance, and release considerable disk spaceEasy to UseGlary Disk Cleaner was designed to be as simple as possible in use. Even a novice can perform it by just several clicks.Fast Scan SpeedUsing professional rapid scanning kernel, Glary Disk Cleaner can very quickly scan all […]
          (USA-CA-Santa Clara) Embedded Software Engineer      Cache   Translate Page   Web Page Cache   
Embedded Software Engineer (Computer Vision) Embedded Software Engineer (Computer Vision) - Skills Required - C, Embedded Software, Computer Vision, Linux, Video Processing, Deep Learning If you are an Embedded Software Engineer with Video Processing,Computer Vision, or Deep Learning experience please read on! **Top Reasons to Work with Us** 1. Based in Santa Clara, we are a leading developer of low-power, high-definition and Ultra HD video compression and image processing solutions. 2. Our company has been around for over a decade, so we offer a unique balance of stability and a small, tight-knit feel. 3. You will have the chance to work on exciting new development projects with a talented team. **What You Will Be Doing** - Design, implement, and test system software, including low level firmware, RTOS and embedded Linux kernel and applications. - Board bring up and testing. - Measure the performance of the microcode system and identify ways to improve it on a multi-thread/multi-core platform. - Create test and debugging tools for both internal and external customers. - Interact with key customers to understand requirements, develop new features, and assist in debug and getting to market. - Map requirements and algorithms to DSP and system software - Develop tools to aid software development. **What You Need for this Position** - Bachelors and or Masters degree in EE, CS, or Mathematics or equivalent. - 3 to 8 years hands-on experience software development. - Experience with Linux in embedded systems. - In-depth knowledge of C. - Experience with video processing, computer vision, or deep learning - Well versed in software engineering processes and understand how to develop and debug firmware for custom ASICs. - Experience with automotive software a plus. **What's In It for You** - Competitive salary - Full Benefits - 401k - PTO - Great Place to Work So, if you are an Embedded Software Engineer with Video Processing,Computer Vision, or Deep Learning experience, please apply today! Applicants must be authorized to work in the U.S. **CyberCoders, Inc is proud to be an Equal Opportunity Employer** All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, or any other characteristic protected by law. **Your Right to Work** – In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire. *Embedded Software Engineer* *CA-Santa Clara* *PG2-1467039*
          Today in Soap Opera History (July 11)      Cache   Translate Page   Web Page Cache   
1986: Another World's Cecile refused to relent to Cass.
1986: A giant "C" fell on Santa Barbara's Mary.
1995: One Life to Live's Antonio reunited with his brother.
2002: Guiding Light's Reva disconnected Richard's life support.
"All true histories contain instruction; though, in some, the treasure may be hard to find, and when found, so trivial in quantity that the dry, shrivelled kernel scarcely compensates for the trouble of cracking the nut."
― Anne Brontë in "Agnes Grey"

"Today in Soap Opera History" is a collection of the most memorable, interesting and influential events in the history of scripted, serialized programs. From birthdays and anniversaries to scandals and controversies, every day this column celebrates the soap opera in American culture.

On this date in...

1949: The Brighter Day moved to CBS Radio after having aired its first nine months on NBC Radio. Bill Smith starred as Reverend Richard Dennis, pastor of a parish in the town of Three Rivers, where he tried to be both mother and father to daughters Elizabeth, Althea, Barbara and Patsy. The show was written by Irna Phillips with Ted Corday serving as one of the directors.

1960: Daytime soap opera The Clear Horizon premiered on CBS. The show was created and head written by Manya Starr with a cast led by Edward Kemmer and Phyllis Avery.

The show ran until March 10, 1961, then was canceled. CBS revived it from February 26 to June 15, 1962. Watch a short clip from later in the show's run below.



1968: On Another World, Dr. Clader told Russ (Sam Groom) and Alice (Jacqueline Courtney) that Rachel had lost the baby.

1969: On One Life to Live, Meredith and Victor Lord offered to help Tom Edwards (Joseph Gallison).

1975: Brooke Bundy debuted as Rebecca North on Days of our Lives.

1979: On Another World, Brian Bancroft (Paul Stevens) told Mac Cory (Douglass Watson) that he had reached the end of the line with Mac's daughter, Iris. Later, Jamie Frame introduced Cecile Depoulignac (Susan Keith) to Blaine Ewing.



1984: On General Hospital, Alan told Monica that Beatrice fell out of a gravity machine. Later, Edward (David Lewis) agreed to talk to Beatrice.



1986: On Another World, Cass Wintrhop (Stephen Schnetzer) locked a gagged Cecile Depoulignac (Nancy Frangione) in the closet but when he opened the door to show Kathleen McKinnon, she was dressed like Marie Antoinette. "You know what they say, once a queen, always a queen," Cecile announced.



1986: On Santa Barbara, a big "C" from the Capwell Hotel sign fell on Mary (Harley Kozak) during a heated confrontation with Mark (Jon Lindstrom) and Julia (Nancy Lee Grahn).



1991: On One Life to Live, Viki Buchanan (Erika Slezak) told Dorian Lord (Elaine Princi) her style was dirty innuendo and cheap journalism.



1995: On One Life to Live, Cristian Vega (Yorlin Madera) was reunited with his brother, Antonio (Kamar de los Reyes).



2002: On Guiding Light, Richard (Bradley Cole) suddenly opened his eyes and begged Reva (Kim Zimmer) to let him die. Observing Richard's unbearable pain, Reva finally turned off his life support and watched him take his final breath.



Celebrating a birthday today are:
Susan Seaforth Hayes
Susan Seaforth Hayes (Julie, Days of our Lives; Venice; ex-Joanna, The Young and the Restless; ex-Patricia, Sunset Beach) - 75
Beverly Todd (ex-Celeste, Days of our Lives; ex-Monica, Love of Life) - 72
Mindy Sterling (ex-Mitzi, Desperate Housewives) - 65
Sela Ward (ex-Hilary, Emerald Point, N.A.S.; ex-Teddy, Sisters) - 62
Lisa Rinna (ex-Billie, Days of our Lives; ex-Taylor, Melrose Place) - 55
Greg Grunberg (ex-Matt, Heroes) - 52
Robert Fontaine Jr. (ex-Rafe, Santa Barbara; ex-Ray, As the World Turns; ex-Frankie, General Hospital) - 51
Micheal Saucedo (ex-Juan, General Hospital) - 48
Justin Chambers (Alex, Grey's Anatomy; ex-Nick, Another World) - 48
Max Rhyser (ex-Jacob, In Between Men) - 36
Rachael Taylor (ex-Jane, 666 Park Avenue; ex-Lucy, Grey's Anatomy) - 34
Robert Adamson (Noah, The Young and the Restless; ex-Phil, Hollywood Heights; ex-Charles, Lincoln Heights) - 33
Connor Paolo (ex-Declan, Revenge; ex-Eric, Gossip Girl; ex-Travis, One Life to Live) - 28

EDITOR'S NOTE: If you would like to submit a soap history entry for this date or a future date, email editor@welovesoaps.com.
          Intel: Linux bekommt Displayport-Treiber für USB-C-Alternate-Mode      Cache   Translate Page   Web Page Cache   
Intel erstellt eine separate Treiberunterstützung im Linux-Kernel für die Alternate Modes von USB-C, zuerst für Displayport. Sinnvoll ist das bei fehlender oder kaputter USB-Firmware. Noch fehlt aber die Integration in die Grafiktreiber. (Linux, Linux-Kernel)
          Netfilter: Iptables 1.8 bringt bessere Werkzeuge für Nftables-Backend      Cache   Translate Page   Web Page Cache   
Die aktuelle Version 1.8 der Firewall-Userspace-Werkzeuge Iptables für Linux trennt stärker zwischen dem alten Backend und dem neuen Nftables-Backend. Für letzteres gibt es einige neue Werkzeuge, darunter auch Übersetzungsskripte für die alten Firewall-Regeln. (Linux, Linux-Kernel)
          An Empirical Approach For Probing the Definiteness of Kernels. (arXiv:1807.03555v1 [cs.LG])      Cache   Translate Page   Web Page Cache   

Authors: Martin Zaefferer, Thomas Bartz-Beielstein, Günter Rudolph

Models like support vector machines or Gaussian process regression often require positive semi-definite kernels. These kernels may be based on distance functions. While definiteness is proven for common distances and kernels, a proof for a new kernel may require too much time and effort for users who simply aim at practical usage. Furthermore, designing definite distances or kernels may be equally intricate. Finally, models can be enabled to use indefinite kernels. This may deteriorate the accuracy or computational cost of the model. Hence, an efficient method to determine definiteness is required. We propose an empirical approach. We show that sampling as well as optimization with an evolutionary algorithm may be employed to determine definiteness. We provide a proof-of-concept with 16 different distance measures for permutations. Our approach allows to disprove definiteness if a respective counter-example is found. It can also provide an estimate of how likely it is to obtain indefinite kernel matrices. This provides a simple, efficient tool to decide whether additional effort should be spent on designing/selecting a more suitable kernel or algorithm.


          Computing Kernels in Parallel: Lower and Upper Bounds. (arXiv:1807.03604v1 [cs.CC])      Cache   Translate Page   Web Page Cache   

Authors: Max Bannach, Till Tantau

Parallel fixed-parameter tractability studies how parameterized problems can be solved in parallel. A surprisingly large number of parameterized problems admit a high level of parallelization, but this does not mean that we can also efficiently compute small problem kernels in parallel: known kernelization algorithms are typically highly sequential. In the present paper, we establish a number of upper and lower bounds concerning the sizes of kernels that can be computed in parallel. An intriguing finding is that there are complex trade-offs between kernel size and the depth of the circuits needed to compute them: For the vertex cover problem, an exponential kernel can be computed by AC$^0$-circuits, a quadratic kernel by TC$^0$-circuits, and a linear kernel by randomized NC-circuits with derandomization being possible only if it is also possible for the matching problem. Other natural problems for which similar (but quantitatively different) effects can be observed include tree decomposition problems parameterized by the vertex cover number, the undirected feedback vertex set problem, the matching problem, or the point line cover problem. We also present natural problems for which computing kernels is inherently sequential.


          Efficient Decoding Algorithms for Polar Codes based on $2\times2$ Non-Binary Kernels. (arXiv:1807.03767v1 [cs.IT])      Cache   Translate Page   Web Page Cache   

Authors: Peihong Yuan, Fabian Steiner

Polar codes based on $2\times2$ non-binary kernels are discussed in this work. The kernel over $\text{GF}(q)$ is selected by maximizing the polarization effect and using Monte-Carlo simulation. Belief propagation (BP) and successive cancellation (SC) based decoding algorithms are extended to non-binary codes. Additionally, a successive cancellation list (SCL) decoding with a pruned tree is proposed. Simulation results show that the proposed decoder performs very close to a conventional SCL decoder with significantly lower complexity.


          Kernel-Based Learning for Smart Inverter Control. (arXiv:1807.03769v1 [math.OC])      Cache   Translate Page   Web Page Cache   

Authors: Aditie Garg, Mana Jalali, Vassilis Kekatos, Nikolaos Gatsis

Distribution grids are currently challenged by frequent voltage excursions induced by intermittent solar generation. Smart inverters have been advocated as a fast-responding means to regulate voltage and minimize ohmic losses. Since optimal inverter coordination may be computationally challenging and preset local control rules are subpar, the approach of customized control rules designed in a quasi-static fashion features as a golden middle. Departing from affine control rules, this work puts forth non-linear inverter control policies. Drawing analogies to multi-task learning, reactive control is posed as a kernel-based regression task. Leveraging a linearized grid model and given anticipated data scenarios, inverter rules are jointly designed at the feeder level to minimize a convex combination of voltage deviations and ohmic losses via a linearly-constrained quadratic program. Numerical tests using real-world data on a benchmark feeder demonstrate that nonlinear control rules driven also by a few non-local readings can attain near-optimal performance.


          Intrinsic Grassmann Averages for Online Linear, Robust and Nonlinear Subspace Learning. (arXiv:1702.01005v2 [cs.LG] UPDATED)      Cache   Translate Page   Web Page Cache   

Authors: Rudrasis Chakraborty, Søren Hauberg, Baba C. Vemuri

Principal Component Analysis (PCA) and Kernel Principal Component Analysis (KPCA) are fundamental methods in machine learning for dimensionality reduction. The former is a technique for finding this approximation in finite dimensions and the latter is often in an infinite dimensional Reproducing Kernel Hilbert-space (RKHS). In this paper, we present a geometric framework for computing the principal linear subspaces in both situations as well as for the robust PCA case, that amounts to computing the intrinsic average on the space of all subspaces: the Grassmann manifold. Points on this manifold are defined as the subspaces spanned by $K$-tuples of observations. The intrinsic Grassmann average of these subspaces are shown to coincide with the principal components of the observations when they are drawn from a Gaussian distribution. We show similar results in the RKHS case and provide an efficient algorithm for computing the projection onto the this average subspace. The result is a method akin to KPCA which is substantially faster. Further, we present a novel online version of the KPCA using our geometric framework. Competitive performance of all our algorithms are demonstrated on a variety of real and synthetic data sets.


          Dynamical Isometry and a Mean Field Theory of CNNs: How to Train 10,000-Layer Vanilla Convolutional Neural Networks. (arXiv:1806.05393v2 [stat.ML] UPDATED)      Cache   Translate Page   Web Page Cache   

Authors: Lechao Xiao, Yasaman Bahri, Jascha Sohl-Dickstein, Samuel S. Schoenholz, Jeffrey Pennington

In recent years, state-of-the-art methods in computer vision have utilized increasingly deep convolutional neural network architectures (CNNs), with some of the most successful models employing hundreds or even thousands of layers. A variety of pathologies such as vanishing/exploding gradients make training such deep networks challenging. While residual connections and batch normalization do enable training at these depths, it has remained unclear whether such specialized architecture designs are truly necessary to train deep CNNs. In this work, we demonstrate that it is possible to train vanilla CNNs with ten thousand layers or more simply by using an appropriate initialization scheme. We derive this initialization scheme theoretically by developing a mean field theory for signal propagation and by characterizing the conditions for dynamical isometry, the equilibration of singular values of the input-output Jacobian matrix. These conditions require that the convolution operator be an orthogonal transformation in the sense that it is norm-preserving. We present an algorithm for generating such random initial orthogonal convolution kernels and demonstrate empirically that they enable efficient training of extremely deep architectures.


          11/07/2018: BRAIN WORKOUT & RECIPE: CRYPTIC CLUES:      Cache   Translate Page   Web Page Cache   
Across 1. Without shape there’s nothing to fill in? (8) 5. Retired sailor meets newspaper boss (4) 9. Knock dizzy by throwing kernels back? (4) 10. Offsets cab lanes (8) 11. Pretend end lost from damaged finger (5) 12. No match for the unwed? (7)...
          The Doc Says...WWE Still in the Sunken Place (Extreme Rules Preview)      Cache   Translate Page   Web Page Cache   
This week, The Doc is calling it like he sees it and, the way he sees it, Extreme Rules this Sunday looks like an extremely boring pay-per-view.  For every positive such as Rusev finally getting a chance to cash-in on the popularity he has earned these past several months, there are two somethings that are considerably less engaging.  Nevertheless, Doc attempts to find the kernels of intrigue in every outing, so in this podcast you will get a thorough account of each match, looking ab
          Embedded Software Engineer - Mindstuff Innovations - Bengaluru, Karnataka      Cache   Translate Page   Web Page Cache   
Android HAL &amp; Device driver development/porting*. Skills - Linux SW development and integration experience (embedded) (uboot, kernel &amp; file system) - Expertise... ₹5,00,000 - ₹8,00,000 a year
From Indeed - Tue, 10 Jul 2018 14:11:49 GMT - View all Bengaluru, Karnataka jobs
          Comment on Chicken, Corn & Potato Chowder Recipe with Green Chiles & Cheddar Cheese by Maret      Cache   Translate Page   Web Page Cache   
Delicious soup! Have made it several times. sometimes using leftover cooked chicken. When corn was in season, I substituted the kernels of 4-5 ears of corn for both the frozen and creamed corn (I didn't have the latter on hand when I first made this). For some of the chicken broth, I cooked the cobs in water for extra flavoring then stirred in Better Than Bouillon. I added 1 stalk of celery. I didn't use all of the bacon fat...only about 1 Tbsp. Sometimes I add 1 zucchini for another vegetable. What surprises me about this soup is that it tastes delicious without all the cheese! So, I'd suggest if you are watching calories, add to taste. I've enjoyed just sprinkling the cheese on top of each serving to adding about 2/3 cup into the soup.
           Re: Bug report about KASLR and ZONE_MOVABLE      Cache   Translate Page   Web Page Cache   
Chao Fan writes: (Summary) More explanation:
More explanation:
If there is a machine with 10 nodes, and memory size in each node is 20G. Then 'kernelcore=100G' will set last 10G memory in each node as ZONE_MOVABLE.
But if KASLR put kernel to 19G position of first node, the regions can not be offlined. So we should set the last 1G of first kernel and last 11G as ZONE_MOVABLE of other 9 nodes as ZONE_MOVABLE. Thanks,
Chao Fan
Chao Fan
On Wed, Jul 11, 2018 at 05:42:44PM +0800, Chao Fan wrote: Chao Fan
Chao Fan
Chao Fan

          Re: [PATCH v3 5/7] time: Add struct __kernel_timex      Cache   Translate Page   Web Page Cache   
Arnd Bergmann writes: (Summary) /* frequency offset (scaled ppm) */ The main disadvantage here is that a a typical ntp daemon that includes this header will now call the new system call, but still see the old structure definition that no longer matches, unless one modifies it to use __kernel_timex.
modifies it to use __kernel_timex.
I checked the most important libc implementations to see how they pass this structure to user space:
they pass this structure to user space:
glibc, musl, uclibc:
sys/timex.h contains a private version of this structure, the kernel header is not included
header is not included
bionic:
sys/timex.h includes linux/timex.h, which is shipped with the libc and generated from kernel headers
and generated from kernel headers
klibc:
there is no sys/timex.h, but also no adjtimex()/clock_adjtime() syscall there is no sys/timex.h, but also no adjtimex()/clock_adjtime() syscall In short, this probably only really matters for bionic, and of course
          Re: [PATCH V2 00/19] C-SKY(csky) Linux Kernel Port      Cache   Translate Page   Web Page Cache   
David Howells writes: Can you say what the --target tuple should be so that I can add the arch to my collection of Fedora cross-binutils and cross-gcc tools built from upstream binutils and gcc sources?
binutils and gcc sources?
Thanks,
David
David
David

          Re: [PATCH 2/2] device core: Add flag to autoremove device link on ...      Cache   Translate Page   Web Page Cache   
"Rafael J. Wysocki" writes: On Thursday, July 5, 2018 6:28:16 AM CEST Vivek Gautam wrote: Sure. Fine with me. I will base the smmu patches on your branch. The patches have been applied and are available for pulling in the pm-core branch of the linux-pm.git tree:
branch of the linux-pm.git tree:
git://git.kernel.org/pub/scm/linux/kernel/git/rafael/linux-pm.git pm-core git://git.kernel.org/pub/scm/linux/kernel/git/rafael/linux-pm.git pm-core Thanks,
Rafael
Rafael
Rafael

          Bug report about KASLR and ZONE_MOVABLE      Cache   Translate Page   Web Page Cache   
Chao Fan writes: (Summary) The address for kernel is 0x000000012f000000 Here is the log of ZONE: [ 0.000000] Zone ranges: [ 0.000000] DMA [mem 0x0000000000001000-0x0000000000ffffff] [ 0.000000] DMA32 [mem 0x0000000001000000-0x00000000ffffffff] [ 0.000000] Normal [mem 0x0000000100000000-0x00000001f57fffff] [ 0.000000] Device empty [ 0.000000] Movable zone start for each node [ 0.000000] Node 0: 0x000000011b000000 [ 0.000000] Early memory node ranges [ 0.000000] node 0: [mem 0x0000000000001000-0x000000000009efff] [ 0.000000] node 0: [mem 0x0000000000100000-0x00000000bffd6fff] [ 0.000000] node 0: [mem 0x0000000100000000-0x00000001f57fffff] [ 0.000000] Initmem setup node 0 [mem 0x0000000000001000-0x00000001f57fffff] Only one node in my machine, ZONE_MOVABLE begins from 0x000000011b000000, which is lower than 0x000000012f000000.
          Re: [RFC PATCH v2 18/27] x86/cet/shstk: Introduce WRUSS instruction      Cache   Translate Page   Web Page Cache   
Peter Zijlstra writes: (Summary) On Tue, Jul 10, 2018 at 03:26:30PM -0700, Yu-cheng Yu wrote: fixup.
+ "xor %[err], %[err]\n"
this XOR is superfluous, you already cleared @err above. #define nop() asm volatile ("nop")
What happened to:
What happened to:
https://lkml.kernel.org/r/1528729376.4526.0.camel@2b52.sc.intel.com https://lkml.kernel.org/r/1528729376.4526.0.camel@2b52.sc.intel.com https://lkml.kernel.org/r/1528729376.4526.0.camel@2b52.sc.intel.com
          Re: [RESEND PATCH v2 3/9] asm-generic: Move some macros from linux ...      Cache   Translate Page   Web Page Cache   
Will Deacon writes: (Summary) Hi again, Andrew,
Hi again, Andrew,
On Mon, Jul 09, 2018 at 03:10:06PM -0700, Andrew Morton wrote: <arithmacros.h>.
Yes; pulling apart kernel.h would certainly help solve some of the fragility here.
here.
wasn't mentioned in the changelog. Deliberate?
Yes, these aren't under uapi/ so I dropped the guards now that they're not needed (my understanding is that they're only there because of the way the uapi split was originally scripted). I can also confirm that the generated user headers match exactly with and without my changes. Will
Will
Will

          [PATCH 6/8] efi/libstub/arm: add opt-in Kconfig option for the DTB ...      Cache   Translate Page   Web Page Cache   
Ard Biesheuvel writes: (Summary) There are various ways a platform can provide a device tree binary to the kernel, with different levels of sophistication: - ideally, the UEFI firmware, which is tightly coupled with the platform, provides a device tree image directly as a UEFI configuration table, and typically permits the contents to be manipulated either via menu options or via UEFI environment variables that specify a replacement image,
- GRUB for ARM has a 'devicetree' directive which allows a device tree image to be loaded from any location accessible to GRUB, and supersede the one provided by the firmware,
- the EFI stub implements a dtb= command line option that allows a device tree image to be loaded from a file residing in the same file system as the one the kernel image was loaded from.
          Re: [PATCH v4 6/6] PM / Domains: Stop deferring probe at the end o ...      Cache   Translate Page   Web Page Cache   
Ulf Hansson writes: On 10 July 2018 at 16:25, Rob Herring <robh@kernel.org> wrote: but no driver exists.
That's correct. Thanks for clarifying!
That's correct. Thanks for clarifying!
What would cause deferring in the latter cases?
To power on the PM domain for example, which often is required to be able to probe the device.
able to probe the device.
Rob
Kind regards
Uffe
Uffe
Uffe

          [GIT PULL 0/8] EFI changes for v4.19      Cache   Translate Page   Web Page Cache   
Ard Biesheuvel writes: (Summary) The following changes since commit 7daf201d7fe8334e2d2364d4e8ed3394ec9af819: The following changes since commit 7daf201d7fe8334e2d2364d4e8ed3394ec9af819: Linux 4.18-rc2 (2018-06-24 20:54:29 +0800)
Linux 4.18-rc2 (2018-06-24 20:54:29 +0800)
are available in the Git repository at:
are available in the Git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/efi/efi.git tags/efi-next git://git.kernel.org/pub/scm/linux/kernel/git/efi/efi.git tags/efi-next for you to fetch changes up to 6a3524a55f16437d210f61bbb53c7c099b18babe: for you to fetch changes up to 6a3524a55f16437d210f61bbb53c7c099b18babe: fbdev/efifb: honour UEFI memory map attributes when mapping the fb (2018-07-11 11:23:26 +0200) fbdev/efifb: honour UEFI memory map attributes when mapping the fb (2018-07-11 11:23:26 +0200) ---------------------------------------------------------------- EFI changes for v4.19, batch #1: - Perform UEFI runtime services calls from a work queue so the calls into the firmware
          [GIT PULL] ACPI fix for v4.18-rc5      Cache   Translate Page   Web Page Cache   
"Rafael J. Wysocki" writes: (Summary) Hi Linus,
Hi Linus,
Please pull from the tag
Please pull from the tag
git://git.kernel.org/pub/scm/linux/kernel/git/rafael/linux-pm.git \ acpi-4.18-rc5
acpi-4.18-rc5
with top-most commit fa85015c0d95884c8dc42f38e2f2d6137d436b67 with top-most commit fa85015c0d95884c8dc42f38e2f2d6137d436b67 ACPICA: Clear status of all events when entering S5 ACPICA: Clear status of all events when entering S5 on top of commit 1e4b044d22517cae7047c99038abb444423243ca Linux 4.18-rc4 to receive an ACPI regression fix for 4.18-rc5. Wysocki (1): ACPICA: Clear status of all events when entering S5 --------------- drivers/acpi/acpica/hwsleep.c |
          Applied "dt-bindings: regulator: add DT bindings for UniPhier regu ...      Cache   Translate Page   Web Page Cache   
Mark Brown writes: (Summary) The patch
The patch
dt-bindings: regulator: add DT bindings for UniPhier regulator dt-bindings: regulator: add DT bindings for UniPhier regulator has been applied to the regulator tree at
has been applied to the regulator tree at
https://git.kernel.org/pub/scm/linux/kernel/git/broonie/regulator.git https://git.kernel.org/pub/scm/linux/kernel/git/broonie/regulator.git All being well this means that it will be integrated into the linux-next tree (usually sometime in the next 24 hours) and sent to Linus during the next merge window (or sooner if it is a bug fix), however if problems are discovered then the patch may be dropped or reverted. + +Required properties: +- compatible: Should be + "socionext,uniphier-pro4-usb3-regulator" - for Pro4 SoC + "socionext,uniphier-pxs2-usb3-regulator" - for PXs2 SoC + "
          Re: [PATCH v3 1/3] vt: preserve unicode values corresponding to sc ...      Cache   Translate Page   Web Page Cache   
Greg Kroah-Hartman writes: On Tue, Jul 10, 2018 at 05:52:01PM -0700, Kees Cook wrote: removed from the kernel[1], and this is introducing a new one. :) This is already in my tree, sorry :(
This is already in my tree, sorry :(
greg k-h
greg k-h
greg k-h

          [GIT PULL] PHY: for 4.18 -rc      Cache   Translate Page   Web Page Cache   
Kishon Vijay Abraham I writes: (Summary) One gets xhci working after disable->enable cycle in broadcom SoC and the other fixes a compilation warning in Motorola USB PHY.
a compilation warning in Motorola USB PHY.
Consider merging it in this -rc cycle.
Consider merging it in this -rc cycle.
Thanks
Kishon
Kishon
The following changes since commit ce397d215ccd07b8ae3f71db689aedb85d56ab40: The following changes since commit ce397d215ccd07b8ae3f71db689aedb85d56ab40: Linux 4.18-rc1 (2018-06-17 08:04:49 +0900)
Linux 4.18-rc1 (2018-06-17 08:04:49 +0900)
are available in the Git repository at:
are available in the Git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/kishon/linux-phy.git tags/phy-for-4.18-rc git://git.kernel.org/pub/scm/linux/kernel/git/kishon/linux-phy.git tags/phy-for-4.18-rc for you to fetch changes up to ad5003300b077bf1af15e667097b3b1f73288177: for you to fetch changes up to ad5003300b077bf1af15e667097b3b1f73288177: phy: mapphone-mdm6600: Fix wrong enum used
          [PATCH v2 5/6] jbd2: replace current_kernel_time64 with ktime equi ...      Cache   Translate Page   Web Page Cache   
Arnd Bergmann writes: (Summary) This calls the latter directly for consistency with the rest of the kernel that is moving to the ktime_get_ family of time accessors. 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/fs/jbd2/commit.c b/fs/jbd2/commit.c index 8de0e7723316..150cc030b4d7 100644 --- a/fs/jbd2/commit.c +++ b/fs/jbd2/commit.c @@ -121,7 +121,7 @@ static int journal_submit_commit_record(journal_t *journal, struct commit_header *tmp; - struct timespec64 now = current_kernel_time64(); @@ -134,6 +134,7 @@ static int journal_submit_commit_record(journal_t *journal, return 1; tmp = (struct commit_header *)bh->b_data;
          Re: [PATCH v5 11/22] ARM: sun5i: Add support for the C1 SRAM regio ...      Cache   Translate Page   Web Page Cache   
Maxime Ripard writes: On Tue, Jul 10, 2018 at 10:56:23PM +0800, Chen-Yu Tsai wrote: But again, see discussion about SRAM compatibles.
I've fixed the SRAM C size (which is 0xd0000 and not 0x80000) and applied, thanks! Maxime -- Maxime Ripard, Bootlin (formerly Free Electrons) Embedded Linux and Kernel engineering https://bootlin.com [unhandled content-type:application/pgp-signature]
          Re: [PATCH 2/3] iio: imu: mpu6050: add support for regulator framework      Cache   Translate Page   Web Page Cache   
Brian Masney writes: (Summary) On Wed, Jul 11, 2018 at 04:50:22PM +0800, kbuild test robot wrote: ERROR: "inv_mpu_core_remove" [drivers/iio/imu/inv_mpu6050/inv-mpu6050-i2c.ko] undefined! This patch applies cleanly against the iio/testing branch. https://git.kernel.org/pub/scm/linux/kernel/git/jic23/iio.git/log/?h=testing https://git.kernel.org/pub/scm/linux/kernel/git/jic23/iio.git/log/?h=testing Brian
Brian
Brian

          [GIT PULL 0/1] EFI mixed mode fix for v4.18      Cache   Translate Page   Web Page Cache   
Ard Biesheuvel writes: (Summary) The following changes since commit 1e4b044d22517cae7047c99038abb444423243ca: Linux 4.18-rc4 (2018-07-08 16:34:02 -0700) are available in the Git repository at: git://git.kernel.org/pub/scm/linux/kernel/git/efi/efi.git tags/efi-urgent for you to fetch changes up to d7f2e972e702d329fe11d6956df99dfc31211c25: efi/x86: remove pointless call to PciIo->Attributes() (2018-07-11 10:52:46 +0200) ---------------------------------------------------------------- A single fix for the x86 PCI I/O protocol handling code that got broken for mixed mode (64-bit Linux/x86 on 32-bit UEFI) after a fix was applied in -rc2 to fix it for ordinary 64-bit Linux/x86.
          Re: [PATCH 1/2] mm/cma: remove unsupported gfp_mask parameter from ...      Cache   Translate Page   Web Page Cache   
Michal Hocko writes: (Summary) On Wed 11-07-18 16:35:28, Joonsoo Kim wrote:
much about those subsystem so I would be wrong.
The patch converts existing users and none of them really tries to use anything other than GFP_KERNEL [|__GFP_NOWARN] so this doesn't seem to be the case. Should there be a new user requiring more restricted gfp_mask we should carefuly re-evaluate and think how to support it. Until then I would simply stick with the proposed approach because my experience tells me that a wrong gfp mask usage is way too easy so the simpler the api is the less likely we will see an abuse.
          Los usuarios de Windows 10 Mobile ya pueden descargar la última actualización acumulativa: llega la Build 15254.490      Cache   Translate Page   Web Page Cache   

Build Pese a la muerte anunciada que ya está fijada para Windows en móviles, la empresa de Redmond sigue lanzando actualizaciones para Windows 10 Mobile. Política que tiene un matiz y es que el ritmo de actualizaciones para el sistema operativo móvil no tiene nada que ver con el de PC, donde la llegada de Builds es continua.

No veremos llegar nuevas funciones, eso está claro, pero al menos, los poseedores de un terminal que funcione bajo Windows 10 Mobile podrán acceder a actualizaciones que les ayudarán a mejorar la estabilidad del sistema.

Sin nuevas funciones

Microsoft libera para Windows 10 Mobile en su versión 1709 de Windows Fall Creators Update, la Build 15254.490 correspondiente al parche KB4341235. Una actualización que han comunicado en el blog de la empresa y de la que ahora despejamos las novedades que aporta:

  • Se ha solucionado un problema con el envío de formularios en Internet Explorer.
  • Se ha actualizado la función Inspeccionar Elemento de Internet Explorer para cumplir con la política que desactiva el lanzamiento de Herramientas de Desarrollo.
  • Corregido un error que puede provocar que se elija un modo IME incorrecto en un elemento IME-activo.
  • Se ha corregido el fallo que provoca que las solicitudes DNS ignoran las configuraciones de proxy en Internet Explorer y Microsoft Edge.
  • Solucionados problemas con información actualizada de zona horaria.
  • Esta actualización evalúa el ecosistema de Windows para ayudar a garantizar la compatibilidad de aplicaciones y dispositivos para todas las actualizaciones de Windows.
  • Añadidas actualizaciones de seguridad de Internet Explorer, Microsoft Edge, aplicaciones de Windows, gráficos de Windows, virtualización de Windows, kernel de Windows y Windows Server.

Si tienes un teléfono bajo Windows 10 Mobile en la versión 1709, puedes descargarla acudiendo al "Menú de Configuración" y buscar "Actualización y seguridad" para después pulsar en "Buscar actualizaciones" y esperar si detecta la Build 15254.490 para su descarga y actualización.

Fuente | Microsoft

También te recomendamos

Llega la solución a los problemas con los PDF en Edge a Windows 10 Mobile en Anniversary y Creators Update

Desafiando todos los obstáculos: los impactantes retratos y fotografías de acción del Embajador de Canon Samo Vidic

Ya pueden descargar la Build 15063.786 los equipos que aún permanecen en Windows 10 Creators Update

-
La noticia Los usuarios de Windows 10 Mobile ya pueden descargar la última actualización acumulativa: llega la Build 15254.490 fue publicada originalmente en Xataka Windows por Jose Antonio .


           Pós-instalação do Solus OS para um desktop voltado ao usuário final      Cache   Translate Page   Web Page Cache   

Solus é um sistema operacional independente, baseado no kernel Linux. Ele vem ganhando novos adeptos ao redor do mundo. Neste artigo vamos demonstrar como deixar o Solus OS preparado para atender as demandas de um usuário domestico.


          Comment on How to make Crispy Corn Kernels by anjanaskc      Cache   Translate Page   Web Page Cache   
Glad you liked it!
          Embedded Software Engineer - Mindstuff Innovations - Bengaluru, Karnataka      Cache   Translate Page   Web Page Cache   
Android HAL &amp; Device driver development/porting*. Skills - Linux SW development and integration experience (embedded) (uboot, kernel &amp; file system) - Expertise... ₹5,00,000 - ₹8,00,000 a year
From Indeed - Tue, 10 Jul 2018 14:11:49 GMT - View all Bengaluru, Karnataka jobs
          Cocktail 11.6.1 - General maintenance and optimization utility. (Shareware)      Cache   Translate Page   Web Page Cache   

Cocktail is a general purpose utility for macOS that lets you clean, repair and optimize your Mac. It is a powerful digital toolset that helps hundreds of thousands of Mac users around the world get the most out of their computers every day.

The application serves up a perfect mix of maintenance tools and tweaks, all accessible through a clean and easy to use interface. Cocktail's features are arranged into five categories that helps you manage various aspects of your computer. It also comes with an automatic Pilot-mode that allows you to simply press a button and relax, knowing that Cocktail will take care of the rest.



Version 11.6.1:

Note: Cocktail (High Sierra Edition) requires macOS 10.13 or later

  • Addresses minor compatibility issues with Apple File System (APFS) volumes
  • Improvements on the "Clear kernel caches" procedure
  • Improvements on the "Clear QuickLook caches" procedure
  • Improvements on the "Perform essential system maintenance" procedure
  • Fixed compatibility issues between AirPlay 2 and the "Clear audio components caches" procedure
  • Fixed compatibility issues with Safari 12
  • Fixed compatibility issues with upcoming Cocktail (Mojave Edition)
  • Addresses an issue in which "Enforce Critical Security Updates" action may not appear in Automator
  • Added macOS High Sierra 10.13.6 compatibility
  • Updated Automator actions


  • macOS 10.13 or later



More information

Download Now
          Little Snitch 4.1.2 - Alerts you about outgoing network connections. (Shareware)      Cache   Translate Page   Web Page Cache   

Little Snitch gives you control over your private outgoing data.

Track background activity
As soon as your computer connects to the Internet, applications often have permission to send any information wherever they need to. Little Snitch takes note of this activity and allows you to decide for yourself what happens with this data.

Control your network
Choose to allow or deny connections, or define a rule how to handle similar, future connection attempts. Little Snitch runs inconspicuously in the background and it can even detect network-related activity of viruses, trojans, and other malware.



Version 4.1.2:

This version runs on macOS Mojave (10.14). Please note that the new system-wide dark mode is not supported by Little Snitch yet.

Bug Fixes & Improvements:
  • Fixed a memory leak in the Little Snitch kernel extension that could amount to high kernel memory usage.
  • Fixed an issue that could occur when writing files to NFS network shares (“nfs send error 89” would appear in the system log).


  • OS X 10.11 or later



More information

Download Now
          Resurrection Remix 4009      Cache   Translate Page   Web Page Cache   

Categories:

Resurrection Remix 5.7.5 For the Pixi 3 3.5 Characteristics: Those of Resurrection Remix Those of Android 6.0.1 Dark Mode Adaway Included Camera works (cameringo +) Flashlight Works Kernel Adiutor Included HexoLibre Theme Included Trebuchet changed to Lineage 15.1 Fluid (does not play very heavy games) Bootanimation was changed to rr nougat Bugs: Vibration Possibly VPN [...]

(Read more...)


          Embedded Software Engineer - Mindstuff Innovations - Bengaluru, Karnataka      Cache   Translate Page   Web Page Cache   
Android HAL &amp; Device driver development/porting*. Skills - Linux SW development and integration experience (embedded) (uboot, kernel &amp; file system) - Expertise... ₹5,00,000 - ₹8,00,000 a year
From Indeed - Tue, 10 Jul 2018 14:11:49 GMT - View all Bengaluru, Karnataka jobs
          Efficient Decoding Algorithms for Polar Codes based on $2\times2$ Non-Binary Kernels. (arXiv:1807.03767v1 [cs.IT])      Cache   Translate Page   Web Page Cache   

Authors: Peihong Yuan, Fabian Steiner

Polar codes based on $2\times2$ non-binary kernels are discussed in this work. The kernel over $\text{GF}(q)$ is selected by maximizing the polarization effect and using Monte-Carlo simulation. Belief propagation (BP) and successive cancellation (SC) based decoding algorithms are extended to non-binary codes. Additionally, a successive cancellation list (SCL) decoding with a pruned tree is proposed. Simulation results show that the proposed decoder performs very close to a conventional SCL decoder with significantly lower complexity.


          Kernel-Based Learning for Smart Inverter Control. (arXiv:1807.03769v1 [math.OC])      Cache   Translate Page   Web Page Cache   

Authors: Aditie Garg, Mana Jalali, Vassilis Kekatos, Nikolaos Gatsis

Distribution grids are currently challenged by frequent voltage excursions induced by intermittent solar generation. Smart inverters have been advocated as a fast-responding means to regulate voltage and minimize ohmic losses. Since optimal inverter coordination may be computationally challenging and preset local control rules are subpar, the approach of customized control rules designed in a quasi-static fashion features as a golden middle. Departing from affine control rules, this work puts forth non-linear inverter control policies. Drawing analogies to multi-task learning, reactive control is posed as a kernel-based regression task. Leveraging a linearized grid model and given anticipated data scenarios, inverter rules are jointly designed at the feeder level to minimize a convex combination of voltage deviations and ohmic losses via a linearly-constrained quadratic program. Numerical tests using real-world data on a benchmark feeder demonstrate that nonlinear control rules driven also by a few non-local readings can attain near-optimal performance.


          Official TWRP recovery available for Sony Xperia X, X Compact and XA2      Cache   Translate Page   Web Page Cache   

Prior to the availability of custom ROMs, kernels, and mods for any device, it is paramount that users have an...

The post Official TWRP recovery available for Sony Xperia X, X Compact and XA2 appeared first on The Android Soul.


          Linux Kernel Port Revised To China's C-SKY CPU Architecture      Cache   Translate Page   Web Page Cache   
In addition to the AMD-licensed Chengdu Haiguang x86 server processors and Zhaoxin x86-compatible CPUs from VIA Centaur lineage, another CPU effort within China has been C-SKY...
          Microwaved Corn on the Cob      Cache   Translate Page   Web Page Cache   

Learn the steps to make corn on the cob in the microwave. It only takes 5 minutes and the kernels end up perfectly steamed every time.

The post Microwaved Corn on the Cob appeared first on Cook the Story.


          Linux Kernel Port Revised To China's C-SKY CPU Architecture      Cache   Translate Page   Web Page Cache   
In addition to the AMD-licensed Chengdu Haiguang x86 server processors and Zhaoxin x86-compatible CPUs from VIA Centaur lineage, another CPU effort within China has been C-SKY...
          Dreyfus Cuisine: Cheesy Corn Kernels using Jolly Whole Corn Kernels      Cache   Translate Page   Web Page Cache   

Since school is back for my youngest, I wanted to come up with a no-frills snack that she can enjoy whenever she comes home. Something that’s easy and fast to prepare, but healthy and filling as well. While I was at the mall a few weeks ago, I saw a classic snack that I used […]

The post Dreyfus Cuisine: Cheesy Corn Kernels using Jolly Whole Corn Kernels appeared first on The Tummy Traveler.


          These griddled, nubby corn cakes are the sleeper hit of summer meals      Cache   Translate Page   Web Page Cache   
It’s quite possible that the name of this recipe undersells just how good it really is. These savory cakes are chewy and chock-full of nubby corn kernels and earthy spices, with juicy deposits of spinach. Thanks to a generous amount of baking powder, they puff up more like fritters yet cook in only a slick […]
           Minimum GCC Version Likely to Jump from 3.2 to 4.8      Cache   Translate Page   Web Page Cache   

The question of the earliest GCC compiler version to support for building the Linux kernel comes up periodically. The ideal would be for Linux to compile under all GCC versions, because you never know what kind of system someone is running. Maybe their company's security team has to approve all software upgrades for their highly sensitive devices, and GCC is low on that list. Maybe they need to save as much space as possible, and recent versions of GCC are too big. There are all sorts of reasons why someone might be stuck with old software. But, they may need the latest Linux kernel because it's the foundation of their entire product, so they're stuck trying to compile it with an old compiler.

However, Linux can't really support every single GCC version. Sometimes the GCC people and the kernel people have disagreed on the manner in which GCC should produce code. Sometimes this means that the kernel really doesn't compile well on a particular version of GCC. So, there are the occasional project wars emerging from those conflicts. The GCC people will say the compiler is doing the best thing possible, and the kernel people will say the compiler is messing up their code. Sometimes the GCC people change the behavior in a later release, but that still leaves a particular GCC version that makes bad Linux code.

Read more

read more


          sysutils/devcpu-data - 1.18      Cache   Translate Page   Web Page Cache   
sysutils/devcpu-data: - Update Intel microcode to 0703 release. -- intel-ucode-with-caveats/ -- This directory holds microcode that might need special handling. BDX-ML microcode is provided in directory, because it need special commits in the Linux kernel, otherwise, updating it might result in unexpected system behavior. OS vendors must ensure that the late loader patches (provided in linux-kernel-patches\) are included in the distribution before packaging the BDX-ML microcode for late-loading. == 20180703 Release == -- Updates upon 20180425 release -- Processor Identifier Version Products Model Stepping F-MO-S/PI Old->New ---- updated platforms ------------------------------------ SNB-EP C1 6-2d-6/6d 0000061c->0000061d Xeon E5 SNB-EP C2 6-2d-7/6d 00000713->00000714 Xeon E5 IVT C0 6-3e-4/ed 0000042c->0000042d Xeon E5 v2; Core i7-4960X/4930K/4820K IVT D1 6-3e-7/ed 00000713->00000714 Xeon E5 v2 HSX-E/EP/4S C0 6-3f-2/6f 0000003c->0000003d Xeon E5 v3 HSX-EX E0 6-3f-4/80 00000011->00000012 Xeon E7 v3 SKX-SP/D/W/X H0 6-55-4/b7 02000043->0200004d Xeon Bronze 31xx, Silver 41xx, Gold 51xx/61xx Platinum 81xx, D/W-21xx; Core i9-7xxxX BDX-DE A1 6-56-5/10 0e000009->0e00000a Xeon D-15x3N ---- intel-ucode-with-caveats/ ---------------------------- BDX-ML B/M/R0 6-4f-1/ef 0b00002c->0b00002e Xeon E5/E7 v4; Core i7-69xx/68xx Reviewed by: swills Sponsored by: Limelight Networks Differential Revision: https://reviews.freebsd.org/D16209
          Comment on How to Install Linux OS on USB Drive and Run it On Any PC by totedati      Cache   Translate Page   Web Page Cache   
Why usb pendrive? Is still not so fast if you count the write cycle part! Even better, just use an external ssd! Pricey but with usb 3.0 or esata screaming fast! On driver support part is common knowledge today that auto-detection part of Linux kernel just work. On all mainstream Linux distro the kernel is configured to carry almost all drivers, some specialized distros can choose to make some trade-off, to exclude some drivers to save space and memory, but hdd space is so cheap that for years default kernel configuration is to include all drivers and this means a lot of drivers! You need to be careful on only one part, when you install the distribution usually the intended target IS NOT /dev/sda when you want to install to some external ssd or usb pendrive but something like /dev/sdb or /dev/sdc or even more
          Oracle VM VirtualBox 5.2.14 now available!      Cache   Translate Page   Web Page Cache   

Oracle has released VirtualBox 5.2 Maintenance Release 14.

Oracle VM VirtualBox 5.2.14 release includes improvements and regression fixes for Oracle VM VirtualBox 5.2.

Between them we can mention:

  • Linux guests: made vboxvideo driver build with kernel 4.17

  • Apple Host: make kernel driver load with Mac OS Mojave pre-release

  • User Interface: fixed a segmentation fault when accessing the interface through VNC

See all the details here with a complete list of bug fixes; here you can find all the links to download the software.

The Oracle VirtualBox Team


          Re: [PATCH v2 3/8] staging:rtl8192u: Correct spacing before and af ...      Cache   Translate Page   Web Page Cache   
Greg KH writes: On Wed, Jul 11, 2018 at 03:09:37PM +0100, John Whitmore wrote: https://www.kernel.org/doc/html/v4.16/process/submitting-patches.html 75 works as well :)
75 works as well :)
75 works as well :)

          [PATCH 0/6] coresight: perf: Support for tmc-etr backed buffers      Cache   Translate Page   Web Page Cache   
Suzuki K Poulose writes: (Summary) [0] - TMC ETR perf support
- http://lists.infradead.org/pipermail/linux-arm-kernel/2018-May/574875.html - http://lists.infradead.org/pipermail/linux-arm-kernel/2018-May/574875.html Suzuki K Poulose (6):
coresight: Fix handling of sinks
coresight: tmc-etr: Handle driver mode specific ETR buffers coresight: tmc-etr: Relax collection of trace from sysfs mode coresight: Convert driver messages to dev_dbg
coresight: perf: Remove reset_buffer call back for sinks coresight: etm-perf: Add support for ETR backend
coresight: etm-perf: Add support for ETR backend
.../coresight/coresight-dynamic-replicator.c |
          Re: [PATCH v2 3/8] staging:rtl8192u: Correct spacing before and af ...      Cache   Translate Page   Web Page Cache   
John Whitmore writes: (Summary) On Wed, Jul 11, 2018 at 01:13:49PM +0200, Greg KH wrote: I'll fix it up this time...
Oops sorry and thanks. I thought the magic number was 75 which I got from: Oops sorry and thanks. I thought the magic number was 75 which I got from: https://www.kernel.org/doc/html/v4.16/process/submitting-patches.html https://www.kernel.org/doc/html/v4.16/process/submitting-patches.html jwhitmore
jwhitmore
jwhitmore

          Re: [PATCH v5 01/10] i3c: Add core I3C infrastructure      Cache   Translate Page   Web Page Cache   
Arnd Bergmann writes: (Summary) On Fri, Jun 22, 2018 at 12:49 PM, Boris Brezillon
<boris.brezillon@bootlin.com> wrote:
impact the way I3C device drivers can interact with their devices.. I think most of my comments still apply, so please see https://lore.kernel.org/lkml/CAK8P3a1aZXf2sQW2mgwJScycKPhdoOAwxRjm5cQG83513uc3fg@mail.gmail.com/T/#u https://lore.kernel.org/lkml/CAK8P3a1aZXf2sQW2mgwJScycKPhdoOAwxRjm5cQG83513uc3fg@mail.gmail.com/T/#u and ignore anything that has changed in the meantime. Arnd
Arnd
Arnd

          Re: [PATCH 4.17 00/56] 4.17.6-stable review      Cache   Translate Page   Web Page Cache   
Greg Kroah-Hartman writes: On Wed, Jul 11, 2018 at 06:41:59AM -0700, Guenter Roeck wrote: Details are available at http://kerneltests.org/builders/. Wonderful, thanks for testing all of these and letting me know. Wonderful, thanks for testing all of these and letting me know. greg k-h
greg k-h
greg k-h

          Re: [PATCH v4 01/10] i3c: Add core I3C infrastructure      Cache   Translate Page   Web Page Cache   
Arnd Bergmann writes: (Summary) Do you mean multiple devices that are controlled by Linux and that each talk to other devices on the same bus, multiple operating systems that have talk to are able to own the bus with the kernel being one of them, a controller that controls multiple independent buses, or something else?
or something else?
that is not invasive.
Right, this seems like a reasonable compromise.
Right, this seems like a reasonable compromise.
shared, but most of the I3C slave framework logic will be different All of these seem ok to me for an initial version.
          [PATCHv5 01/21] arm64: consistently use unsigned long for thread flags      Cache   Translate Page   Web Page Cache   
Mark Rutland writes: (Summary) 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/arch/arm64/kernel/signal.c b/arch/arm64/kernel/signal.c index 511af13e8d8f..70287634706e 100644 --- a/arch/arm64/kernel/signal.c +++ b/arch/arm64/kernel/signal.c @@ -910,7 +910,7 @@ static void do_signal(struct pt_regs *regs) } asmlinkage void do_notify_resume(struct pt_regs *regs, - unsigned int thread_flags) + unsigned long thread_flags) { /* * The assembly code enters us with IRQs off, but it hasn't -- 2.11.0

          [PATCHv5 03/21] arm64: kill config_sctlr_el1()      Cache   Translate Page   Web Page Cache   
Mark Rutland writes: (Summary) -} - #endif #endif /* __ASM_SYSREG_H */ diff --git a/arch/arm64/kernel/armv8_deprecated.c b/arch/arm64/kernel/armv8_deprecated.c index d4707abb2f16..d01c7fc0463c 100644 --- a/arch/arm64/kernel/armv8_deprecated.c +++ b/arch/arm64/kernel/armv8_deprecated.c @@ -511,9 +511,9 @@ static int cp15barrier_handler(struct pt_regs *regs, u32 instr) static int cp15_barrier_set_hw_mode(bool enable) { if (enable) - config_sctlr_el1(0, SCTLR_EL1_CP15BEN); } diff --git a/arch/arm64/kernel/cpu_errata.c b/arch/arm64/kernel/cpu_errata.c index 1d2b6d768efe..92128ea53102 100644 --- a/arch/arm64/kernel/cpu_errata.c +++ b/arch/arm64/kernel/cpu_errata.c @@ -76,8 +76,7 @@ has_mismatched_cache_line_size(const struct arm64_cpu_capabilities *entry, static void cpu_enable_trap_ctr_access(const struct arm64_cpu_capabilities *__unused) { - /* Clear SCTLR_EL1.UCT */ - config_sctlr_el1(SCTLR_EL1_UCT, 0);
          [PATCHv5 04/21] arm64: kill change_cpacr()      Cache   Translate Page   Web Page Cache   
Mark Rutland writes: (Summary) 13 ++----------- 1 file changed, 2 insertions(+), 11 deletions(-) diff --git a/arch/arm64/kernel/fpsimd.c b/arch/arm64/kernel/fpsimd.c index 84c68b14f1b2..a98a7f96aff1 100644 --- a/arch/arm64/kernel/fpsimd.c +++ b/arch/arm64/kernel/fpsimd.c @@ -159,23 +159,14 @@ static void sve_free(struct task_struct *task) __sve_free(task); - - if (new != cpacr) - write_sysreg(new, CPACR_EL1); -} - static void sve_user_disable(void) { - change_cpacr(0, CPACR_EL1_ZEN_EL0EN); } static void sve_user_enable(void) { - change_cpacr(CPACR_EL1_ZEN_EL0EN, CPACR_EL1_ZEN_EL0EN);
          [PATCHv5 05/21] arm64: move sve_user_{enable,disable} to    Cache   Translate Page   Web Page Cache   
Mark Rutland writes: (Summary) 10 ---------- 2 files changed, 16 insertions(+), 11 deletions(-) diff --git a/arch/arm64/include/asm/fpsimd.h b/arch/arm64/include/asm/fpsimd.h index fa92747a49c8..dd1ad3950ef5 100644 --- a/arch/arm64/include/asm/fpsimd.h +++ b/arch/arm64/include/asm/fpsimd.h @@ -16,13 +16,15 @@ #ifndef __ASM_FP_H #define __ASM_FP_H -#include <asm/ptrace.h> } +static inline void sve_user_enable(void) { BUILD_BUG(); } + static inline void sve_init_vq_map(void) { } static inline void sve_update_vq_map(void) { } static inline int sve_verify_vq_map(void) { return 0; } diff --git a/arch/arm64/kernel/fpsimd.c b/arch/arm64/kernel/fpsimd.c index a98a7f96aff1..58c53bc96928 100644 --- a/arch/arm64/kernel/fpsimd.c +++ b/arch/arm64/kernel/fpsimd.c @@ -159,16 +159,6 @@ static void sve_free(struct task_struct *task) __sve_free(task);
          [PATCHv5 06/21] arm64: remove sigreturn wrappers      Cache   Translate Page   Web Page Cache   
Mark Rutland writes: (Summary) 4 ++-- 7 files changed, 11 insertions(+), 27 deletions(-) diff --git a/arch/arm64/include/asm/unistd32.h b/arch/arm64/include/asm/unistd32.h index ef292160748c..ab95554b1734 100644 --- a/arch/arm64/include/asm/unistd32.h +++ b/arch/arm64/include/asm/unistd32.h @@ -260,7 +260,7 @@ __SYSCALL(117, sys_ni_syscall) #define __NR_fsync 118 __SYSCALL(__NR_fsync, sys_fsync) #define __NR_sigreturn 119 -__SYSCALL(__NR_sigreturn, compat_sys_sigreturn_wrapper) +__SYSCALL(__NR_sigreturn, compat_sys_sigreturn) #define __NR_clone 120 __SYSCALL(__NR_clone, sys_clone) #define __NR_setdomainname 121 @@ -368,7 +368,7 @@ __SYSCALL(__NR_getresgid, sys_getresgid16) #define __NR_prctl 172 __SYSCALL(__NR_prctl, sys_prctl) #define __NR_rt_sigreturn 173 -__SYSCALL(__NR_rt_sigreturn, compat_sys_rt_sigreturn_wrapper) +__SYSCALL(__NR_rt_sigreturn, compat_sys_rt_sigreturn) #define __NR_rt_sigaction 174 __SYSCALL(__NR_rt_sigaction, compat_sys_rt_sigaction) #define __NR_rt_sigprocmask 175 diff --git a/arch/arm64/kernel/entry.
          [PATCHv5 08/21] arm64: convert raw syscall invocation to C      Cache   Translate Page   Web Page Cache   
Mark Rutland writes: (Summary) 16 --------------- 4 files changed, 59 insertions(+), 43 deletions(-) create mode 100644 arch/arm64/kernel/syscall.c diff --git a/arch/arm64/kernel/Makefile b/arch/arm64/kernel/Makefile index 0025f8691046..4e24d2244bd1 100644 --- a/arch/arm64/kernel/Makefile +++ b/arch/arm64/kernel/Makefile @@ -18,7 +18,8 @@ arm64-obj-y := debug-monitors.o entry.o irq.o fpsimd.o \ hyp-stub.o psci.o cpu_ops.o insn.o \ return_address.o cpuinfo.o cpu_errata.o \ cpufeature.o alternative.o cacheinfo.o \ - smp.o smp_spin_table.o topology.o smccc-call.o + smp.o smp_spin_table.o topology.o smccc-call.o \ + syscall.o extra-$(CONFIG_EFI) := efi-entry.o diff --git a/arch/arm64/kernel/entry.S b/arch/arm64/kernel/entry.S index 62f2876f9c63..c0392f78e392 100644 --- a/arch/arm64/kernel/entry.S +++ b/arch/arm64/kernel/entry.S @@ -903,7 +903,6 @@ ENDPROC(el0_error) */ ret_fast_syscall: disable_daif - str x0, [sp, #S_X0] // returned x0 ldr x1, [tsk, #TSK_TI_FLAGS] // re-check for sysc
          [PATCHv5 09/21] arm64: convert syscall trace logic to C      Cache   Translate Page   Web Page Cache   
Mark Rutland writes: (Summary) - b.eq __sys_trace_return_skipped - - mov x0, sp - mov w1, wscno - mov w2, wsc_nr - mov x3, stbl - bl invoke_syscall - -__sys_trace_return_skipped: - mov x0, sp - bl syscall_trace_exit + bl el0_svc_common b ret_to_user +ENDPROC(el0_svc) .popsection // .entry.text diff --git a/arch/arm64/kernel/syscall.c b/arch/arm64/kernel/syscall.c index 93d36f22647e..3e1df8ca1e79 100644 --- a/arch/arm64/kernel/syscall.c +++ b/arch/arm64/kernel/syscall.c @@ -1,11 +1,15 @@ // SPDX-License-Identifier: GPL-2.0 +#include <linux/compiler.h>
          [PATCHv5 11/21] arm64: don't restore GPRs when context tracking      Cache   Translate Page   Web Page Cache   
Mark Rutland writes: (Summary) 12 +----------- 1 file changed, 1 insertion(+), 11 deletions(-) diff --git a/arch/arm64/kernel/entry.S b/arch/arm64/kernel/entry.S index 156c4e3fd1a4..c41b84d06644 100644 --- a/arch/arm64/kernel/entry.S +++ b/arch/arm64/kernel/entry.S @@ -41,19 +41,9 @@ * Context tracking subsystem. */ - .macro ct_user_exit, syscall = 0 + .macro ct_user_exit #ifdef CONFIG_CONTEXT_TRACKING bl context_tracking_user_exit - .if \syscall == 1 - /* - * Save/restore needed during syscalls. - */ - ldp x0, x1, [sp] - ldp x2, x3, [sp, #S_X2] - ldp x4, x5, [sp, #S_X4] - ldp x6, x7, [sp, #S_X6] - .endif #endif .endm -- 2.11.0

          [PATCHv5 10/21] arm64: convert native/compat syscall entry to C      Cache   Translate Page   Web Page Cache   
Mark Rutland writes: (Summary) +#endif + static inline int syscall_get_nr(struct task_struct *task, struct pt_regs *regs) { diff --git a/arch/arm64/kernel/entry.S b/arch/arm64/kernel/entry.S index 05b9f03f3e00..156c4e3fd1a4 100644 --- a/arch/arm64/kernel/entry.S +++ b/arch/arm64/kernel/entry.S @@ -720,14 +720,9 @@ el0_sync_compat: b.ge el0_dbg b el0_inv el0_svc_compat: - /* - * AArch32 syscall handling - */ - ldr x16, [tsk, #TSK_TI_FLAGS] // load thread flags - adrp stbl, compat_sys_call_table // load compat syscall table pointer - mov wscno, w7 // syscall number in w7 (r7) - mov wsc_nr, #__NR_compat_syscalls - b el0_svc_naked + mov x0, sp + bl el0_svc_compat_handler + b ret_to_user .align 6 el0_irq_compat: @@ -925,37 +920,8 @@ ENDPROC(ret_to_user) */ .align 6 el0_svc: - ldr x16, [tsk, #TSK_TI_FLAGS] // load thread flags - adrp stbl, sys_call_table // load syscall table pointer - mov wscno, w8 // syscall number in w8 - mov wsc_nr, #__NR_syscalls - -#ifdef CONFIG_ARM64_SVE -alternative_if_not ARM64_SVE - b
          [PATCHv5 13/21] arm64: zero GPRs upon entry from EL0      Cache   Translate Page   Web Page Cache   
Mark Rutland writes: (Summary) 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/arch/arm64/kernel/entry.S b/arch/arm64/kernel/entry.S index 22b240da949b..d1440f84668b 100644 --- a/arch/arm64/kernel/entry.S +++ b/arch/arm64/kernel/entry.S @@ -53,6 +53,12 @@ #endif .endm + .macro clear_gp_regs + .irp n,0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29 + mov x\n, xzr + .endr + .endm + /* * Bad Abort numbers *----------------- @@ -169,6 +175,7 @@ alternative_cb_end stp x28, x29, [sp, #16 * 14] .if \el == 0 + clear_gp_regs mrs x21, sp_el0 ldr_this_cpu tsk, __entry_task, x20 // Ensure MDSCR_EL1.SS is clear, ldr x19, [tsk, #TSK_TI_FLAGS] // since we can unmask debug @@ -176,7 +183,6 @@ alternative_cb_end apply_ssbd 1, x22, x23 - mov x29, xzr // fp pointed to user-space .else add x21, sp, #S_FRAME_SIZE get_thread_info tsk -- 2.11.0

          [PATCHv5 14/21] arm64: drop alignment from syscall tables      Cache   Translate Page   Web Page Cache   
Mark Rutland writes: (Summary) #undef __SYSCALL #define __SYSCALL(nr, sym) [nr] = (syscall_fn_t)sym, -/* - * The sys_call_table array must be 4K aligned to be accessible from - * kernel/entry.S. - */ -const syscall_fn_t sys_call_table[__NR_syscalls] __aligned(4096) = { +const syscall_fn_t sys_call_table[__NR_syscalls] = { [0 ... - */ -const syscall_fn_t compat_sys_call_table[__NR_compat_syscalls] __aligned(4096) = { +const syscall_fn_t compat_sys_call_table[__NR_compat_syscalls] = { [0 ...
          [PATCHv5 15/21] kernel: add ksys_personality()      Cache   Translate Page   Web Page Cache   
Mark Rutland writes: (Summary) 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/include/linux/syscalls.h b/include/linux/syscalls.h index a368a68cb667..abfe12d8a9c5 100644 --- a/include/linux/syscalls.h +++ b/include/linux/syscalls.h @@ -80,6 +80,7 @@ union bpf_attr; } +static inline unsigned int ksys_personality(unsigned int personality) +{ + unsigned int old = current->personality; + + if (personality != 0xffffffff) + set_personality(personality); + + return old; +} + #endif -- 2.11.0

          [PATCHv5 16/21] kernel: add kcompat_sys_{f,}statfs64()      Cache   Translate Page   Web Page Cache   
Mark Rutland writes: (Summary) } -COMPAT_SYSCALL_DEFINE3(statfs64, const char __user *, pathname, compat_size_t, sz, struct compat_statfs64 __user *, buf) +int kcompat_sys_statfs64(const char __user * pathname, compat_size_t sz, struct compat_statfs64 __user * buf) { struct kstatfs tmp; } -COMPAT_SYSCALL_DEFINE3(fstatfs64, unsigned int, fd, compat_size_t, sz, struct compat_statfs64 __user *, buf) +COMPAT_SYSCALL_DEFINE3(statfs64, const char __user *, pathname, compat_size_t, sz, struct compat_statfs64 __user *, buf) +{ + return kcompat_sys_statfs64(pathname, sz, buf);
          [PATCHv5 17/21] arm64: remove in-kernel call to sys_personality()      Cache   Translate Page   Web Page Cache   
Mark Rutland writes: (Summary) With pt_regs syscall wrappers, the calling convention for sys_personality() will change. Use ksys_personality(), which is functionally equivalent.
functionally equivalent.
Signed-off-by: Mark Rutland <mark.rutland@arm.com> 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/arch/arm64/kernel/sys.c b/arch/arm64/kernel/sys.c index df8180175515..f4e02f6aceb8 100644 --- a/arch/arm64/kernel/sys.c +++ b/arch/arm64/kernel/sys.c @@ -44,7 +44,7 @@ SYSCALL_DEFINE1(arm64_personality, unsigned int, personality) if (personality(personality) == PER_LINUX32 &&
          Re: [PATCH v5 3/3] iio: hx711: fix spurious unit-address in example      Cache   Translate Page   Web Page Cache   
Rob Herring writes: On Tue, Jul 10, 2018 at 08:19:37PM +0200, Andreas Klinger wrote: 1 file changed, 1 insertion(+), 1 deletion(-)
Reviewed-by: Rob Herring <robh@kernel.org>
Reviewed-by: Rob Herring <robh@kernel.org>
Reviewed-by: Rob Herring <robh@kernel.org>

          Re: [PATCH v5 1/3] iio: hx711: add clock-frequency property in DT      Cache   Translate Page   Web Page Cache   
Rob Herring writes: On Tue, Jul 10, 2018 at 08:18:31PM +0200, Andreas Klinger wrote: 1 file changed, 6 insertions(+)
Reviewed-by: Rob Herring <robh@kernel.org>
Reviewed-by: Rob Herring <robh@kernel.org>
Reviewed-by: Rob Herring <robh@kernel.org>

          [PATCH RT] Revert "posix-timers: Prevent broadcast signals"      Cache   Translate Page   Web Page Cache   
Sebastian Andrzej Siewior writes: (Summary) 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/kernel/time/posix-timers.c b/kernel/time/posix-timers.c index e1c5b9b64140..0d14e044b46f 100644 --- a/kernel/time/posix-timers.c +++ b/kernel/time/posix-timers.c @@ -434,7 +434,6 @@ static enum hrtimer_restart posix_timer_fn(struct hrtimer *timer) static struct pid *good_sigevent(sigevent_t * event) { struct task_struct *rtn = current->group_leader; SIGEV_THREAD_ID: @@ -444,8 +443,7 @@ static struct pid *good_sigevent(sigevent_t * event) /* FALLTHRU */ case SIGEV_SIGNAL: case SIGEV_THREAD: - if (sig <= 0 ||
          Re: [PATCH v6 6/7] dt: thermal: tsens: Document the fallback DT pr ...      Cache   Translate Page   Web Page Cache   
Rob Herring writes: On Mon, Jul 09, 2018 at 05:13:28PM +0530, Amit Kucheria wrote: 1 file changed, 20 insertions(+), 5 deletions(-)
Reviewed-by: Rob Herring <robh@kernel.org>
Reviewed-by: Rob Herring <robh@kernel.org>
Reviewed-by: Rob Herring <robh@kernel.org>

          Re: [RFC PATCH v3] watchdog: sp805: Add clock-frequency property      Cache   Translate Page   Web Page Cache   
Guenter Roeck writes: (Summary) On 07/11/2018 06:22 AM, Srinath Mannam wrote:
patches also.
" No documentation available _in Linux_"
" No documentation available _in Linux_"
Emphasis mine. I was asking for a reference to documentation _outside_ Linux. to documentation _outside_ Linux. Guenter
Guenter
More majordomo info at http://vger.kernel.org/majordomo-info.html More majordomo info at http://vger.kernel.org/majordomo-info.html
          Re: [PATCH 4.17 00/56] 4.17.6-stable review      Cache   Translate Page   Web Page Cache   
Guenter Roeck writes: (Summary) On 07/10/2018 11:24 AM, Greg Kroah-Hartman wrote:
Anything received after that time might be too late. Build results:
total: 134 pass: 134 fail: 0
Qemu test results:
total: 158 pass: 158 fail: 0
total: 158 pass: 158 fail: 0
Details are available at http://kerneltests.org/builders/. Details are available at http://kerneltests.org/builders/. Guenter
Guenter
Guenter

          Re: [PATCH 4.14 00/53] 4.14.55-stable review      Cache   Translate Page   Web Page Cache   
Guenter Roeck writes: (Summary) On 07/10/2018 11:24 AM, Greg Kroah-Hartman wrote:
Anything received after that time might be too late. Build results:
total: 148 pass: 148 fail: 0
Qemu test results:
total: 160 pass: 160 fail: 0
total: 160 pass: 160 fail: 0
Details are available at http://kerneltests.org/builders/. Details are available at http://kerneltests.org/builders/. Guenter
Guenter
Guenter

          Re: [PATCH 4.9 00/52] 4.9.112-stable review      Cache   Translate Page   Web Page Cache   
Guenter Roeck writes: (Summary) On 07/10/2018 11:24 AM, Greg Kroah-Hartman wrote:
Anything received after that time might be too late. Build results:
total: 148 pass: 148 fail: 0
Qemu test results:
total: 153 pass: 153 fail: 0
total: 153 pass: 153 fail: 0
Details are available at http://kerneltests.org/builders/. Details are available at http://kerneltests.org/builders/. Guenter
Guenter
Guenter

          Re: [PATCH 4.4 00/47] 4.4.140-stable review      Cache   Translate Page   Web Page Cache   
Guenter Roeck writes: (Summary) On 07/10/2018 11:24 AM, Greg Kroah-Hartman wrote:
Anything received after that time might be too late. Build results:
total: 148 pass: 148 fail: 0
Qemu test results:
total: 138 pass: 138 fail: 0
total: 138 pass: 138 fail: 0
Details are available at http://kerneltests.org/builders/. Details are available at http://kerneltests.org/builders/. Guenter
Guenter
Guenter

          Re: Boot failures with "mm/sparse: Remove CONFIG_SPARSEMEM_ALLOC_M ...      Cache   Translate Page   Web Page Cache   
Oscar Salvador writes: On Wed, Jul 11, 2018 at 10:49:58PM +1000, Michael Ellerman wrote: $ make pseries_le_defconfig
Could you please share the config?
I was not able to find such config in the kernel tree.
          Re: [PATCH RT] arm64: fpsimd: use a local_lock() in addition to lo ...      Cache   Translate Page   Web Page Cache   
Sebastian Andrzej Siewior writes: On 2018-07-11 09:25:55 [-0400], Steven Rostedt wrote: kernel change?
I wanted to re-evaluate the whole situation here but didn't get to it yet.
yet.
-- Steve
Sebastian
Sebastian
Sebastian

          Re: [PATCH] tracing/kprobe: Release kprobe print_fmt properly      Cache   Translate Page   Web Page Cache   
Steven Rostedt writes: On Wed, 11 Jul 2018 22:26:37 +0900
Masami Hiramatsu <mhiramat@kernel.org> wrote: Masami Hiramatsu <mhiramat@kernel.org> wrote: Acked-by: Masami Hiramatsu <mhiramat@kernel.org> Thanks Masami!
Thanks Masami!
-- Steve
-- Steve
-- Steve

          Re: Leaving Minnesota      Cache   Translate Page   Web Page Cache   

Oh yah, you betcha!

There's a kernel of truth in many stereotypes. They become a problem when people start seeing others *only* through that lens.


          Better Admin Tabs: Error when trying to enable      Cache   Translate Page   Web Page Cache   

The website encountered an unexpected error. Please try again later.
TypeError: Argument 2 passed to better_admin_tabs_help() must be an instance of RouteMatchInterface, instance of Drupal\Core\Routing\CurrentRouteMatch given in better_admin_tabs_help() (line 78 of modules/contrib/better_admin_tabs/better_admin_tabs.module).

better_admin_tabs_help('system.modules_list', Object)
call_user_func_array('better_admin_tabs_help', Array) (Line: 391)
Drupal\Core\Extension\ModuleHandler->invoke('better_admin_tabs', 'help', Array) (Line: 102)
Drupal\help\Plugin\Block\HelpBlock->build() (Line: 203)
Drupal\block\BlockViewBuilder::preRender(Array)
call_user_func('Drupal\block\BlockViewBuilder::preRender', Array) (Line: 378)
Drupal\Core\Render\Renderer->doRender(Array) (Line: 450)
Drupal\Core\Render\Renderer->doRender(Array, ) (Line: 195)
Drupal\Core\Render\Renderer->render(Array) (Line: 490)
Drupal\Core\Template\TwigExtension->escapeFilter(Object, Array, 'html', NULL, 1) (Line: 74)
__TwigTemplate_f8a17f041581af9829850fd45db45c2b69d8b3a60b80408d416da5d23dbccb61->doDisplay(Array, Array) (Line: 432)
Twig_Template->displayWithErrorHandling(Array, Array) (Line: 403)
Twig_Template->display(Array) (Line: 411)
Twig_Template->render(Array) (Line: 64)
twig_render_template('core/themes/seven/templates/page.html.twig', Array) (Line: 384)
Drupal\Core\Theme\ThemeManager->render('page', Array) (Line: 437)
Drupal\Core\Render\Renderer->doRender(Array, ) (Line: 195)
Drupal\Core\Render\Renderer->render(Array) (Line: 490)
Drupal\Core\Template\TwigExtension->escapeFilter(Object, Array, 'html', NULL, 1) (Line: 90)
__TwigTemplate_be8c7bbb9c824f2826368d7c8da984c6279779db72a67fd8056a00bb23b816f2->doDisplay(Array, Array) (Line: 432)
Twig_Template->displayWithErrorHandling(Array, Array) (Line: 403)
Twig_Template->display(Array) (Line: 411)
Twig_Template->render(Array) (Line: 64)
twig_render_template('core/themes/classy/templates/layout/html.html.twig', Array) (Line: 384)
Drupal\Core\Theme\ThemeManager->render('html', Array) (Line: 437)
Drupal\Core\Render\Renderer->doRender(Array, ) (Line: 195)
Drupal\Core\Render\Renderer->render(Array) (Line: 147)
Drupal\Core\Render\MainContent\HtmlRenderer->Drupal\Core\Render\MainContent\{closure}() (Line: 582)
Drupal\Core\Render\Renderer->executeInRenderContext(Object, Object) (Line: 148)
Drupal\Core\Render\MainContent\HtmlRenderer->renderResponse(Array, Object, Object) (Line: 90)
Drupal\Core\EventSubscriber\MainContentViewSubscriber->onViewRenderArray(Object, 'kernel.view', Object)
call_user_func(Array, Object, 'kernel.view', Object) (Line: 111)
Drupal\Component\EventDispatcher\ContainerAwareEventDispatcher->dispatch('kernel.view', Object) (Line: 156)
Symfony\Component\HttpKernel\HttpKernel->handleRaw(Object, 1) (Line: 68)
Symfony\Component\HttpKernel\HttpKernel->handle(Object, 1, 1) (Line: 57)
Drupal\Core\StackMiddleware\Session->handle(Object, 1, 1) (Line: 47)
Drupal\Core\StackMiddleware\KernelPreHandle->handle(Object, 1, 1) (Line: 99)
Drupal\page_cache\StackMiddleware\PageCache->pass(Object, 1, 1) (Line: 78)
Drupal\page_cache\StackMiddleware\PageCache->handle(Object, 1, 1) (Line: 50)
Drupal\ban\BanMiddleware->handle(Object, 1, 1) (Line: 47)
Drupal\Core\StackMiddleware\ReverseProxyMiddleware->handle(Object, 1, 1) (Line: 52)
Drupal\Core\StackMiddleware\NegotiationMiddleware->handle(Object, 1, 1) (Line: 23)
Stack\StackedHttpKernel->handle(Object, 1, 1) (Line: 666)
Drupal\Core\DrupalKernel->handle(Object) (Line: 19)


          Forum Post: CC3220: [trigger_mode] - NORTOS example      Cache   Translate Page   Web Page Cache   
Part Number: CC3220 Hi, In the trigger_mode example for an nrtos kernel, in the mainThread(), SimpleLinkInitCallback() is called in when sl_Start() finishes. Inside SimpleLinkInitCallback, SignalEvent() is called that accesses the gSMEventQueue with mq_open() but the queue is not initialised until later in mainThread() with mq_open(). This assumes that the callback is always called after the queue has been initialised, which might not always be the case. Am I getting something wrong? Regards, Evros
          FS#59300: [linux-hardened] 4.17.x kernel panic on logout      Cache   Translate Page   Web Page Cache   
Description:
A kernel panic occurs not on every, but al least on every 3rd logout from openbox using openbox --exit. Logout via loginctl terminate-session $XDG_SESSION_ID produces the same error. I don`t know with wich kernel version this started exactly, but tried a few back and all with the same error. Regular kernel in latest version 4.17.5-1 is fine and the error does not occur.

I attached a picture as the log does not give any info about this after reboot.

Thanks for looking into it in advance.

Kind regards
          Minimum GCC Version Likely to Jump from 3.2 to 4.8      Cache   Translate Page   Web Page Cache   

The question of the earliest GCC compiler version to support for building the Linux kernel comes up periodically. The ideal would be for Linux to compile under all GCC versions, because you never know what kind of system someone is running. Maybe their company's security team has to approve all software upgrades for their highly sensitive devices, and GCC is low on that list. Maybe they need to save as much space as possible, and recent versions of GCC are too big. There are all sorts of reasons why someone might be stuck with old software. But, they may need the latest Linux kernel because it's the foundation of their entire product, so they're stuck trying to compile it with an old compiler.

However, Linux can't really support every single GCC version. Sometimes the GCC people and the kernel people have disagreed on the manner in which GCC should produce code. Sometimes this means that the kernel really doesn't compile well on a particular version of GCC. So, there are the occasional project wars emerging from those conflicts. The GCC people will say the compiler is doing the best thing possible, and the kernel people will say the compiler is messing up their code. Sometimes the GCC people change the behavior in a later release, but that still leaves a particular GCC version that makes bad Linux code.

So, the kernel people will decide programmatically to exclude a particular version of GCC from being used to compile the kernel. Any attempt to use that compiler on kernel code will produce an error.

But, sometimes the GCC people will add a new language feature that is so useful, the kernel will people decide to rely heavily on it in their source code. In that case, there may be a period of time where the kernel people maintain one branch of code for the newer, better compiler, and a separate, less-fast or more-complex branch of code for the older, worse compiler. In that case, the kernel people—or really Linus Torvalds—eventually may decide to stop supporting compilers older than a certain version, so they can rip out all those less-fast and more-complex branches of code.

For similar reasons, it's also just an easier maintenance task for the kernel folks to drop support for older compilers; so this is something they would always prefer to do, if possible.

But, it's a big decision, typically weighed against the estimated number of users that are unable to upgrade their compilers. Linus really does not want even one regular (that is, non-kernel-developer) user to be unable to build Linux because of this sort of decision. He's willing to let the kernel carry a lot of fairly dead and/or hard-to-maintain code in order to keep that from happening.


          [SOLVED] Is SMB 2/3 built in by default in the 4.14.54 kernel that's available in current?      Cache   Translate Page   Web Page Cache   
Greetings, I run slack 14.2 with the Huge kernel, but I need a kernel that supports SMB2/3. In kernel 4.4.132 the option for SMB2 is not set. In the 4.14.54 kernel there is an option for SMB311...
          Comment on Hold the Salt and Butter, This Popcorn Is For a Robot by Leithoa      Cache   Translate Page   Web Page Cache   
Yes. I don't know how (or if) the vacuum affects the force since the heat breaks down the starch before the kernel bursts. There's a bunch of different demos on youtube of pop corn in a heated vacuum chamber.
          apps-extra/vhba-module-20170610-92-x86_64      Cache   Translate Page   Web Page Cache   
VHBA module provides a Virtual (SCSI) HBA, which is the link between userspace daemon and linux kernel.
          apps-extra/acpi_call-1.1.0-169-x86_64      Cache   Translate Page   Web Page Cache   
kernel module that enables calls to ACPI methods through /proc/acpi/call
          base/kernel-4.17.6-1-x86_64      Cache   Translate Page   Web Page Cache   
The Linux Kernel and modules
          devel-core/kernel-headers-4.17.6-1-x86_64      Cache   Translate Page   Web Page Cache   
Linux kernel include files
          chroot-core/kernel-source-4.17.6-1-x86_64      Cache   Translate Page   Web Page Cache   
Linux kernel source
          Finding the other end of a pipe on Linux      Cache   Translate Page   Web Page Cache   

Originally published at https://hoelz.ro/blog/finding-the-other-end-of-a-pipe-on-linux

Have you ever been using the command line and been looking at some colored output, only to lose the coloration when you pipe the output to another command? I've often thought to myself "what if it were possible for a program to detect if the other side of the pipe were capable of handling colored output?".

As far as I know, there's no way for a program to publish this information, and even if there were, I highly doubt that many programs use it. So, let's see if we can accomplish the next best thing: detecting who's listening on the other side of standard output; if we knew that, we could check the name and command line of that program against a whitelist of programs we know to support color.

So...how do we detect who's listening?

The Naïve Approach

The rudimentary approach, which is specific to Linux (but probably not too hard to port to other OSes), is pretty simple: just crawl over /proc and look for a pipe that matches our standard output's pipe. You see, pipe file descriptors under /proc, like regular files, still have inodes, and the inode is unique to a pipe pair (this is the case for sockets too; there are other files in /proc that reference this information, such as /proc/net/tcp). So here's a quick and dumb Perl program that finds its partner:

#!/usr/bin/env perl

use strict;
use warnings;
use feature qw(say);

use File::stat;

exit unless -p STDOUT; # bail out if standard output isn't a pipe

my $stdout_stat = stat(\*STDOUT);

my $current_pid = $$;

my @other_procs = grep {
    m{/proc/(\d+)} && $1 != $current_pid
} glob('/proc/*/');

for my $proc_dir (@other_procs) {
    my $stat = stat("$proc_dir/fd/0");
    next unless $stat;

    if($stat->dev == $stdout_stat->dev && $stat->ino == $stdout_stat->ino) {
        my ( $pid ) = $proc_dir =~ m{/proc/(\d+)};

        say STDERR $pid;
        last;
    }
}

This gets the job done, but it feels a little too hacky for my tastes.
There must be a better way!

The less-than-naïve approach

As inspiration for a cleaner approach, let's consider a cousin to pipes: UNIX
sockets. Sockets work much like pipes, in that two file descriptors are bound
to one another. With a UNIX socket, we can call getsockopt(socket, SOL_SOCKET, SO_PEERCRED, &creds, sizeof(struct ucred)) to find out who we're talking to; perhaps there's an analogous call for pipes?

To find out if this functionality is available for pipes, let's get an answer straight from the source - the Linux kernel source, to be precise! (I'm looking at the source for Linux 4.5.3)

If we look for SO_PEERCRED in .c files in the kernel, we quickly come upon this case statement in the sock_getsockopt function:

case SO_PEERCRED:
{
        struct ucred peercred;
        if (len > sizeof(peercred))
                len = sizeof(peercred);
        cred_to_ucred(sk->sk_peer_pid, sk->sk_peer_cred, &peercred);
        if (copy_to_user(optval, &peercred, len))
                return -EFAULT;
        goto lenout;
}

If we follow the breadcrumbs for the sk variable, we can see earlier in the sock_getsockopt function that sk is defined as a struct sock, which is quite large, but contains the struct pid sk_peer_pid member that we're hoping to find a counterpart to in whatever struct represents a pipe.

We can find out which structure that is pretty easily if we look for an ioctl or fcntl code that's specific to pipes. If you look in the man page for pipe(7), you'll find F_GETPIPE_SZ. Doing a search on the kernel code for that leads us to pipe_fcntl in fs/pipe.c, which references struct pipe_inode_info, That struct is small enough to show you here:

struct pipe_inode_info {
    struct mutex mutex;
    wait_queue_head_t wait;
    unsigned int nrbufs, curbuf, buffers;
    unsigned int readers;
    unsigned int writers;
    unsigned int files;
    unsigned int waiting_writers;
    unsigned int r_counter;
    unsigned int w_counter;
    struct page *tmp_page;
    struct fasync_struct *fasync_readers;
    struct fasync_struct *fasync_writers;
    struct pipe_buffer *bufs;
    struct user_struct *user;
};

A cursory look at this struct shows us, sadly, that struct pipe_inode_info doesn't have the have the information we need, so we'll have to stick with our naïve approach. So we didn't get a cleaner approach, but at least we got to look at some kernel code!


          KernelShark — The Future of Trace Data Visualization      Cache   Translate Page   Web Page Cache   

KernelShark, the open source graphical user interface or tracing data that gives users a view of the events happening within the Linux kernel, has proven useful for many kernel developers—but it’s not without its limitations. That’s why we’re now in the process of completely rewriting KernelShark, rebuilding it on a more solid platform and readying it

The post KernelShark — The Future of Trace Data Visualization appeared first on VMware Open Source Blog.


           A new discrete dipole kernel for quantitative susceptibility mapping       Cache   Translate Page   Web Page Cache   
Milovic, C; Acosta-Cabronero, J; Pinto, JM; Mattern, H; Andia, M; Uribe, S; Tejos, C; (2018) A new discrete dipole kernel for quantitative susceptibility mapping. Magnetic Resonance Imaging , 51 pp. 7-13. 10.1016/j.mri.2018.04.004 .
          CVE-2016-5195: Dirty COW - Privilege escalation kernel vulnerability      Cache   Translate Page   Web Page Cache   

Thanks to TurnKey community member John Carver it has come to our attention that all existing deployments of TurnKey Linux are potentially vulnerable to CVE-2016-5195. As reported by Andrej Nemec last week on the Red Hat bugtracker "An unprivileged local user could use this flaw to gain write access to otherwise read only memory mappings and thus increase their privileges on the system."

As seems to be the trend these days it has been given the catchy moniker "Dirty COW"and has it's own website and a cute logo:

Dirty COW logo

This privilege escalation vulnerability which dates back nearly a decade was discovered by security researcher, Phil Oester. In an interview he noted that he discovered the vulnerability in the wild when "One of the sites I manage was compromised, and an exploit of this issue was uploaded and executed." The maker of the dirtycow.ninja website has also provided some further details of the vulnerability in a wiki hosted on GitHub.

Debian have pushed out a patched kernel for the stable release (Jessie - the basis of v14.x) as noted by DSA-3696-1. TurnKey's Automatic Security Updates should have already installed this for you. Note that Debian also released a patched kernel for Wheezy (TurnKey v13.x).

If auto updates fix this why do I need to know?

Whilst the TurnKey security updates mechanism auto install all relevant security updates available from Debian, users still need to reboot the server to start using the updated kernel.

To be exploited, this vulnerability requires shell access. So most TurnKey users who do not allow additional OS user accounts should be relatively safe. This is especially the case for v14.x users as service accounts (e.g. www-data) no longer have a shell by default. However, if an attacker were to daisy chain this with other exploits (e.g. a SQL injection) then they could potentially gain full control of your server!

Whilst v14.x (Debian Jessie) and v13.x (Debian Wheezy) users should be ok after a reboot, the news for users of older TurnKey servers is not so good. This vulnerability was introduced into the kernel nearly a decade ago, so all earlier version of TurnKey are vulnerable and WILL NOT be getting a security patch. I strongly urge you to upgrade to the current release ASAP!

How can I check I'm safe?

The easiest way to check that you are ok is to check the kernel version which you are running. Here's an example from a TKLDev server I have running locally:
root@tkldev ~# uname -v
#1 SMP Debian 3.16.36-1+deb8u2 (2016-10-19)
The fixed versions are noted by Debian's CVE-2016-5195 page. For v14.x you are looking for "3.16.36-1+deb8u2"; while v13.x wants "3.2.82-1". There is no fix for earlier versions other than to upgrade to a supported version.

For users wishing to use TKLBAM to migrate to a current version, please see our docs for a suggested workflow and further considerations.

Resources and further reading:

http://dirtycow.ninja/
https://github.com/dirtycow/dirtycow.github.io/wiki/VulnerabilityDetails
https://lists.debian.org/debian-security-announce/2016/msg00277.html
https://security-tracker.debian.org/tracker/DSA-3696-1
http://www.v3.co.uk/v3-uk/news/2474845/linux-users-urged-to-protect-agai...
http://arstechnica.com/security/2016/10/most-serious-linux-privilege-esc...
http://www.theregister.co.uk/2016/10/21/linux_privilege_escalation_hole/
http://www.itnews.com.au/news/attackers-exploit-ancient-dirty-cow-kernel...

Thanks again to John for bringing this to our attention!


          Comparing Debian vs Alpine for container & Docker apps      Cache   Translate Page   Web Page Cache   

Background: For TurnKey 15 (codenamed TKLX) we're evaluating a change of architecture from the current generation of monolithic systems to systems as collections of container based micro-services. Essentially the service container replaces the package as the highest level system abstraction.

There are several layers to the new architecture, but the first step is to figure out the best way to create the service containers. Alon has been quietly working on this for the last couple of months and managed to slim down Debian to 12MB compressed for the base image:

https://github.com/tklx/base

https://hub.docker.com/r/tklx/base/

With Anton's help we added PoC tklx containers for Mongodb, Nginx, Postgres, Apache, Django and others:

https://github.com/tklx

https://hub.docker.com/u/tklx/

So far the most thought provoking question we've received is: why are we using Debian for this instead of Alpine Linux, the trendy minimalist upstart blessed by the powers at Docker?

That is a very good question, and it deserves a good answer.

Alpine Linux has its roots in LEAF, an embedded router project, which was in turn forked from the Linux Router on a Floppy project.

As far as I can tell Alpine would have stayed on the lonely far fringe of Linux distributions if not for Docker. I suspect a big part of Dockers motivation for adopting Alpine was the petabytes of bandwidth they could save if people using Docker didn't default to using a fat Ubuntu base image.

Debian is superior compared to Alpine Linux with regards to:

  • quantity and quality of supported software
  • the size and maturity of its development community
  • amount of testing everything gets
  • quality and quantity of documentation
  • present and future security of its build infrastructure
  • the size and maturity of its user community, number of people who know its ins and outs
  • compatibility with existing software (libc vs musl)

Alpine Linux's advantages on the other hand:

  • it has a smaller filesystem footprint than stock Debian.
  • its slightly more memory efficient thanks to BusyBox and musl library

Alpine touts security as an advantage but aside from defaulting to a grsecurity kernel (which isn't advantage for containers) they don't really offer anything special. If anything the small size and relative immaturity of the Alpine dev community makes it much more likely that their infrastructure and build systems are compromised. Debian is also at risk but there are more eyes on the prize, and they're working to mitigate this with reproducible/deterministic builds, which isn't on Alpine's roadmap and may be beyond their resources.

Though Alpine advertises a range of benefits the thing its dev community seems to obsess about the most is size. As small as possible.

Regarding the footprint, Alon showed you can slim down Debian so the footprint advantage is small. If that isn't enough we can take it one step further and use Debian Embedded to slim things down further by using BusyBox, and smaller libc versions, just like Alpine.

Choosing Alpine over Debian for this use case trades off people-oriented advantages that increase with value over time (skilled dev labour, bug hunters, mindshare, network effects) for machine-oriented advantages (storage and memory) that devalue rapidly thanks to Moore's Law.

I can see Alpine's advantages actually mattering in the embedded space circa 2000, but these days Debian runs fine on the $5 Raspberry Pi Zero computer, while the use case Alpine is actually being promoted for are servers with huge amounts of disk space and memory by comparison.

Maybe I'm missing something but doesn't that seem awfully short sighted?

OTOH, I can see how from Docker's POV, assuming bandwidth isn't getting as cheap as fast as storage or memory, and they're subsidizing petabytes of it, swinging from the fattest image to the slimmest image could help cut down costs. I bet Docker also like that they can have much more influence over Alpine after hiring its founder than they could ever hope to have over a big established distribution like Debian.

Summary of Debian pros:

  • vastly larger dev & user community   
    • more packages   
    • more testing   
    • more derived distributions   
    • more likely to still be in robust health in 10 years
  • working towards reproducible builds
  • better documentation
  • libc more compatible than musl, less likely to trigger bugs
  • more trustworth infrastructure

Summary of Alpine pros:

  • lighter: community obsessed with footprint
  • musl: more efficient libc alternative
  • simpler init system: OpenRC instead of systemd
  • lead dev & founder is a Docker employee
  • trendy

          Reflections on PWN2Own 2016: the state and future of computer security      Cache   Translate Page   Web Page Cache   

Another year, another Pwn2Own contest.

TL;DR results for 2016:

  • Prize money: about half a million USD.
  • All major browsers successfully exploited: Chrome, Safari, Edge
  • All attacks bypassed all exploitation countermeasures (e.g., Sandboxing, address randomization) to successfully escalate all the way to root/SYSTEM level privileges
  • Nobody broke through the VM

Reflections:

  1. Kernel security sucks and will always suck.

    Security mechanisms enforced by the kernel have more holes than swiss cheese. From the point of view of an advanced attacker code running in a "sandbox" as an unprivileged user is going to escalate to root/SYSTEM level privileges 100% of the time.

    There are too many lines of code, the attack surface is too large and human programmers are too imperfect.

    The kernel is an unreliable primitive from a security standpoint. You just can't trust it.

  2. End-point security is still terrible and the same will be true 10 years from now (hello Pwn2Own 2026!) unless there is a radical change in software architecture that acknolwedges the cold hard realities of computer security over the wishy washy desires of senior executives.

    • Contests like Pwn2Own are just showing us the tip of our collective vulnerability iceberg: there are hundreds if not thousands of zero day exploitable holes lurking under the surface of all sufficiently complex software. Especially the software implemented in high-performing yet error prone low-level languages. This includes all browsers and operating systems. Quinn Norton has it exactly right: Everything is broken.

      To get a hint of what lurks beneath the surface, read up on VUPEN security, now rebranded zerodium, a 0day market which pays top dollar (up to 1 million USD) to hoard exploits and lists the NSA amongst its clients. By comparison the bug bounties offered by most vendors are chump change.

    • It gets worse. Even if a genie granted us one wish and patched all existing vulnerabilities that wouldn't help for long because software is a fast moving target. Thanks to new development, vulnerabilities are likely opening up at a faster rate than they're being detected and patched.

    • Any conventional up-to-date computer with a browser can be compromised if you're willing to make the effort to develop zero day exploits and risk sacrificing the exploit if your attack is detected.

      Speaking of detection, unless you're attacking Kaspersky or other high-value targets it usually won't be and even then the exploits you sacrifice are probably just a tiny part of your arsenal as an advanced attacker. Case in point, the attackers that went after Kaspersky sacrificed multiple zero days in their attempt. They had to know there was a high risk of detection but they took the risk anyway. Why? Kaspersky think it was hubris, but I'll bet it's because they could afford to lose a handful of zero days. There's more where those came from.

    • Nearly everyone in the world is always just one wrong click away from being totally pwned.

      Advanced attackers are unimpressed that your system is fully patched. For high risk applications being fully patched does as much good as running an antivirus. Which isn't saying much.

      What you're really achieving when you play the security patch treadmill game is that you're undemocratizing illict access to your systems. Keeping the script kiddies at bay while maybe forcing more advanced attackers to factor in the risk of sacrificing a zero day from their arsenal. That's it.

    • The probable ubiquity of hardware backdoors in Intel & AMD chipsets is in practice somewhat irrelevant, since software is by far the weakest link in the chain and will remain so for the foreseeable future.

  3. Vulnerabilities in low-level (C/C++) code are still extremely relevant and the cost of attack is pretty low for client-side and privilege escalation attacks. A few weeks of a single skilled researcher's time.

    By now all the big companies have strong security awareness and yet none of them are managing to prevent modestly motivated attackers from achieving full remote code execution with system privileges.

    This state of affairs will not change until the fundamental security architecture of our systems changes. I expect to see more hardware enforced containment baked into the operating systems of the future.

    Examples of this trend in the wild:

    • Qubes OS
    • Microsoft Windows 10 Enterprise using the hypervisor to secure the LSA. This is mostly security theatre at present, but if the trend continues it could be useful.
  4. The stats for publically released exploits don't tell the whole story

    If you look at the stats for the exploits being publically released you'll notice low-level vulnerabilities have gone way down. I used to take that as a sign that there were less of these issues to exploit, and that's probably true to a degree, but there's an important cultural and economic aspect to this as well.

    I suspect part of the reason we're not seeing more Pwn2Own level exploits being released in public is that a lucrative private market has risen to disincentivize free disclosure while simultaneously, the cost of fully weaponizing vulnerabilities has risen due to exploitation countermeasures. The people willing and capable of paying the toll have better uses for their skills than giving them away. Like selling exploits privately for up to a million dollars.

  5. Containment is the only realistic defensive strategy and hypervisors are the only semi-reliable primitive from which you can architect reasonably secured systems.

    Sure, there are likely undiscovered zero day "escape from VM" vulnerabilities in all of them, but hypervisors are a much smaller and simpler than operating systems kernels so they have much smaller attack surfaces.

    They're also not moving as fast as other targets so stamping out all the exploitable bugs should be an achievable goal eventually.

    VMs are also easy to set up as honeypots since the host has complete transparent access to all the guests resources, but not vice versa. Attackers will think long and hard before risking the sacrifice of a zero day in a hypervisor.

  6. Decentralization is a good thing because big organizations of all stripes can not be trusted to resist attack, uphold their own policies or keep our secrets.

    Their attack surface is too large and too complicated. Too many assumptions have to hold for their security not to crumble like a house of cards in the face of an advanced attack.

    Since all of the big companies are eating their own vulnerable dog food (and each others) and they're such irresistibly juicy targets we should assume they are all deeply compromised by a plethora of intelligence agencies, organized crime and clever individuals.

    The degree to which it is reasonable to let someone else safeguard your secrets is not just how much you trust them not to abuse that power themselves, but also how much you trust them not to be abused.

    That should be prime and center in the discussion regarding mass surveillance, government mandated backdoors and how much of our private information we feel safe handing over to companies like Google and Facebook. Well intentioned checks and balances at a legal level won't protect against hackers that have pwned your sysadmin's laptop.

    I believe the problem with trusting big organizations is inherently unfixable.

    Like most of us, big organizations will always prioritize getting things done over a serious attempt at closing off all avenues of attack, which is the way it should be. It's also what public opinion and public markets demand. Companies that over-prioritize security will go out of business. Governments that over-prioritize security may end up looking like North Korea.

    But in a world where we don't collectively trust big organizations to maintain our security and keep our secrets, attacks, while still possible, would be much harder to pull off. They'd have to pick us off one by one.

  7. If a true security renaissance ever takes place the driving force will not be personal computers or mobile computing but self driving cars and their like.

    Autonomous self-driving cars will give hackers the power of life and death over anyone that uses them and eventually over anyone that shares the road with these hackable computers on wheels.

    Just think about that for a moment. Plausibly deniable death from afar. An unfortunate accident or the perfect crime?

    On the other hand, so many people are killed in road accidents due to human error that society may accept/repress that risk and work to raise the bar so assassination by hacking is something only the most rich and powerful actually have to worry about. Gulp. I hope.


          LHP Jovani Moran to Fort Myers      Cache   Translate Page   Web Page Cache   
Cedar Rapids, IA - The Cedar Rapids Kernels and Minnesota Twins announce that LHP Kevin Marnon will rejoin the Kernels from Fort Myers and LHP Jovani ... - MWL Cedar Rapids Kernels
          Software Developer      Cache   Translate Page   Web Page Cache   
NJ-Princeton Township, BANC3 is a dynamically growing Product Development firm that develops Wearable Technologies and others looking for talented individuals to help grow the business. Position: Android Engineer Location: Princeton, NJ Job Type: Full-Time Responsibilities: Develop/Manage Android applications (Full Stack) from the Kernel Layer to Framework using industry standard code management tools like Bitbucket Cus
          Canonical releases new infographic to show how Ubuntu Linux 'connects everything'      Cache   Translate Page   Web Page Cache   
Microsoft owns the desktop with Windows -- it is undeniable. You know what? That's fine. But the success of Windows is not a failure for Linux. What I mean to say is, the open source kernel is omnipresent, whether you know it or not. To highlight the ubiquitous nature of Ubuntu in particular, Canonical today releases an all-new infographic showing how this distribution "connects everything." I urge you to give it a look, as it will open your eyes to just how important Ubuntu -- and Linux overall -- really is. Apparently, this is an update to a previous infographic… [Continue Reading]

          Software Developer      Cache   Translate Page   Web Page Cache   
NJ-Princeton Township, BANC3 is a dynamically growing Product Development firm that develops Wearable Technologies and others looking for talented individuals to help grow the business. Position: Android Engineer Location: Princeton, NJ Job Type: Full-Time Responsibilities: Develop/Manage Android applications (Full Stack) from the Kernel Layer to Framework using industry standard code management tools like Bitbucket Cus
          Comment on Kernels Contest ~ Win a $25 Kernels Gift Card every Monday by Irene Purdie      Cache   Translate Page   Web Page Cache   
I love popcornl
          Stable kernels 4.17.6, 4.14.55, 4.9.112, 4.4.140 and 3.18.115      Cache   Translate Page   Web Page Cache   

          Oracle wants to improve Linux load balancing and failover      Cache   Translate Page   Web Page Cache   

Oracle reckons Linux remote direct memory access (RDMA) implementations need features like high availability and load balancing, and hopes to sling code into the kernel to do exactly that.

The problem, as Oracle Linux kernel developer Sudhakar Dindukurti explained in this post, is that performance and security considerations mean RDMA adapters tie hardware to a “specific port and path”.

A standard network interface card, on the other hand, can choose which netdev (network device) to use to send a packet. Failover and load balancing is native.

Read more


          Kernel Space, Linux Foundation, and NVIDIA      Cache   Translate Page   Web Page Cache   
  • Linux Kernel Port Revised To China's C-SKY CPU Architecture

    In addition to the AMD-licensed Chengdu Haiguang x86 server processors and Zhaoxin x86-compatible CPUs from VIA Centaur lineage, another CPU effort within China has been C-SKY.

    C-SKY is a 32-bit embedded CPU core out of Hangzhou, China. C-SKY is working on RISC-V designs too, but this current C-SKY embedded processor appears to be an original CPU design. Back in March they posted the original C-SKY Linux kernel patches while this past week they sent out a revised version.

  • Another Big Pull Of Intel DRM Updates Submitted For Linux 4.19

    One month ago Intel was quick following the Linux 4.18 merge material to begin sending in new feature work for Linux 4.19 by means of the DRM-Next repository. They've already done a few rounds of updates while now another serving of Direct Rendering Manager patches were served up.

    Sent out on Tuesday is likely their last "big pull#source%3Dgooglier%2Ecom#https%3A%2F%2Fgooglier%2Ecom%2Fpage%2F%2F10000" targeting the Linux 4.19 kernel, but Intel developer Rodrigo Vivi commented that another one or two smaller pulls are still expected in the days or week ahead to DRM-Next for 4.19.

  • Xen Hypervisor 4.11 Released, New Browsh Text-Based Browser, Finney Cryptocurrency Phone, GNOME Hiring and More

    The Xen Hypervisor 4.11 was released yesterday. In this release "PVH Dom0 support is now available as experimental feature and support for running unmodified PV guests in a PVH Container has been added. In addition, significant chunks of the ARM port have been rewritten." Xen 4.11 also contains mitigations for Meltdown and Spectre vulnerabilities. For detailed download and build instructions, go here.

  • Certification Plays Big Role in Open Source Hiring

    Employers increasingly want vendor neutrality in their training providers, with 77 percent of hiring managers rating this as important, up from 68 percent last year and 63 percent in 2016. Almost all types of training have increased this year, with online/virtual courses being the most popular. Sixty-six percent of employers report offering this benefit, compared to 63 percent in 2017 and 49 percent in 2016. Forty percent of hiring managers say they are providing onsite training, up from 39 percent last year and 31 percent in 2016; and 49 percent provide individual training courses, the same as last year.

  • NVIDIA Jetson Xavier Development Kit: Under 30 Watts, 8-Core ARMv8.2, 512 Core Volta

    The NVIDIA Jetson Xavier Development Kit is pretty darn exciting with having eight ARMv8.2 cores, a 512-core Volta GPU, 16GB of LPDDR4, and under 30 Watt power use.

    Last month NVIDIA announced the Jetson Xavier with plans to ship in August at a $1,299 USD price-tag. More details on this NVIDIA Jetson Xavier Development Kit have now been announced.




Next Page: 10000

Site Map 2018_01_14
Site Map 2018_01_15
Site Map 2018_01_16
Site Map 2018_01_17
Site Map 2018_01_18
Site Map 2018_01_19
Site Map 2018_01_20
Site Map 2018_01_21
Site Map 2018_01_22
Site Map 2018_01_23
Site Map 2018_01_24
Site Map 2018_01_25
Site Map 2018_01_26
Site Map 2018_01_27
Site Map 2018_01_28
Site Map 2018_01_29
Site Map 2018_01_30
Site Map 2018_01_31
Site Map 2018_02_01
Site Map 2018_02_02
Site Map 2018_02_03
Site Map 2018_02_04
Site Map 2018_02_05
Site Map 2018_02_06
Site Map 2018_02_07
Site Map 2018_02_08
Site Map 2018_02_09
Site Map 2018_02_10
Site Map 2018_02_11
Site Map 2018_02_12
Site Map 2018_02_13
Site Map 2018_02_14
Site Map 2018_02_15
Site Map 2018_02_15
Site Map 2018_02_16
Site Map 2018_02_17
Site Map 2018_02_18
Site Map 2018_02_19
Site Map 2018_02_20
Site Map 2018_02_21
Site Map 2018_02_22
Site Map 2018_02_23
Site Map 2018_02_24
Site Map 2018_02_25
Site Map 2018_02_26
Site Map 2018_02_27
Site Map 2018_02_28
Site Map 2018_03_01
Site Map 2018_03_02
Site Map 2018_03_03
Site Map 2018_03_04
Site Map 2018_03_05
Site Map 2018_03_06
Site Map 2018_03_07
Site Map 2018_03_08
Site Map 2018_03_09
Site Map 2018_03_10
Site Map 2018_03_11
Site Map 2018_03_12
Site Map 2018_03_13
Site Map 2018_03_14
Site Map 2018_03_15
Site Map 2018_03_16
Site Map 2018_03_17
Site Map 2018_03_18
Site Map 2018_03_19
Site Map 2018_03_20
Site Map 2018_03_21
Site Map 2018_03_22
Site Map 2018_03_23
Site Map 2018_03_24
Site Map 2018_03_25
Site Map 2018_03_26
Site Map 2018_03_27
Site Map 2018_03_28
Site Map 2018_03_29
Site Map 2018_03_30
Site Map 2018_03_31
Site Map 2018_04_01
Site Map 2018_04_02
Site Map 2018_04_03
Site Map 2018_04_04
Site Map 2018_04_05
Site Map 2018_04_06
Site Map 2018_04_07
Site Map 2018_04_08
Site Map 2018_04_09
Site Map 2018_04_10
Site Map 2018_04_11
Site Map 2018_04_12
Site Map 2018_04_13
Site Map 2018_04_14
Site Map 2018_04_15
Site Map 2018_04_16
Site Map 2018_04_17
Site Map 2018_04_18
Site Map 2018_04_19
Site Map 2018_04_20
Site Map 2018_04_21
Site Map 2018_04_22
Site Map 2018_04_23
Site Map 2018_04_24
Site Map 2018_04_25
Site Map 2018_04_26
Site Map 2018_04_27
Site Map 2018_04_28
Site Map 2018_04_29
Site Map 2018_04_30
Site Map 2018_05_01
Site Map 2018_05_02
Site Map 2018_05_03
Site Map 2018_05_04
Site Map 2018_05_05
Site Map 2018_05_06
Site Map 2018_05_07
Site Map 2018_05_08
Site Map 2018_05_09
Site Map 2018_05_15
Site Map 2018_05_16
Site Map 2018_05_17
Site Map 2018_05_18
Site Map 2018_05_19
Site Map 2018_05_20
Site Map 2018_05_21
Site Map 2018_05_22
Site Map 2018_05_23
Site Map 2018_05_24
Site Map 2018_05_25
Site Map 2018_05_26
Site Map 2018_05_27
Site Map 2018_05_28
Site Map 2018_05_29
Site Map 2018_05_30
Site Map 2018_05_31
Site Map 2018_06_01
Site Map 2018_06_02
Site Map 2018_06_03
Site Map 2018_06_04
Site Map 2018_06_05
Site Map 2018_06_06
Site Map 2018_06_07
Site Map 2018_06_08
Site Map 2018_06_09
Site Map 2018_06_10
Site Map 2018_06_11
Site Map 2018_06_12
Site Map 2018_06_13
Site Map 2018_06_14
Site Map 2018_06_15
Site Map 2018_06_16
Site Map 2018_06_17
Site Map 2018_06_18
Site Map 2018_06_19
Site Map 2018_06_20
Site Map 2018_06_21
Site Map 2018_06_22
Site Map 2018_06_23
Site Map 2018_06_24
Site Map 2018_06_25
Site Map 2018_06_26
Site Map 2018_06_27
Site Map 2018_06_28
Site Map 2018_06_29
Site Map 2018_06_30
Site Map 2018_07_01
Site Map 2018_07_02
Site Map 2018_07_03
Site Map 2018_07_04
Site Map 2018_07_05
Site Map 2018_07_06
Site Map 2018_07_07
Site Map 2018_07_08
Site Map 2018_07_09
Site Map 2018_07_10
Site Map 2018_07_11