This is not psychosis.
Interesting. Though looking at the code, it does still check VM_MAYWRITE, so the mapping needs to be something you could remap as writable.
Ah thanks for clarifying.
Thank you. I was wondering about that.
Hmm, I read some of the decision, and now I'm not sure what to make of all of it. When I came to the opinion from Jackson, J., I found it extremely compelling. He says this: ... But some of TWEA’s sections delegating…
I asked about this when they presented the project at the Linux Plumbers conference. They replied that it's not really intended to be a security boundary, and that you should not let anyone malicious load these…
I have no insight into the Asahi project, but the LKML link goes to an email from James Calligeros containing code written by Hector Martin and Sven Peter. The code may have been written a long time ago.
That's an email from James Calligeros. All this patch says is that the author is Hector Martin (and Sven Peter). The code could have been written a long time ago.
Where I'm from, it probably would not be stolen by anyone.
How?
It never made it into upstream Linux, but there is already a sample implementation that Wedson wrote in 2022: https://github.com/Rust-for-Linux/linux/pull/798
It won't be different from Tokio. When you pass a future to tokio::spawn, that will also eagerly execute the future right away.
It's trivial to implement an async runtime in the kernel. The kernel's workqueue is already essentially a runtime.
> IIRC Alice from the tokio team also suggested there hasn't been much interest in pushing through these difficulties more recently, as the current performance is "good enough". Well, I think there is interest, but…
I'm quite careful to tightly control the dependencies of Tokio. All dependencies are under control by members of the Tokio team or others that I trust.
The caption for the picture says this: > The six planets orbit their central star HD 110067 in a harmonic rhythm with planets aligning every few orbits.
Regarding the review process ... one thing that I find challenging and don't know a good solution to is documentation. I've received many PRs where the change itself is fine, but the PR is dragging out because the…
It's well known that what is being stabilized today is lacking the Send bounds stuff. In fact, there was a lot of discussion about whether they should completely block this feature until the Send bounds stuff was ready.…
If you pay too much in bounties, you risk having your own red-team employees leave so that they can report bugs externally and get paid much more via bounties.
I'm surprised that CLN-003 made the list even as low severity. It's intended to make reverse engineering of the binary harder, but the code is already freely accessible (and CLN-003 also acknowledges this).
In Denmark, there's a national system for authentication used for government sites and banks. I have a small device with a single button on it that shows a 6-digit code when you press it. I enter that code along with a…
The best tool for voice-to-text for programmers is Talon. https://talonvoice.com/
Running the experiment until you have a specific pre-determined number of observations is okay. However, the deceptively similar scheme of running it until the results are statistical significant is not okay!
That's my understanding as well.
Dual licensing should be fine. (IANAL)
This is not psychosis.
Interesting. Though looking at the code, it does still check VM_MAYWRITE, so the mapping needs to be something you could remap as writable.
Ah thanks for clarifying.
Thank you. I was wondering about that.
Hmm, I read some of the decision, and now I'm not sure what to make of all of it. When I came to the opinion from Jackson, J., I found it extremely compelling. He says this: ... But some of TWEA’s sections delegating…
I asked about this when they presented the project at the Linux Plumbers conference. They replied that it's not really intended to be a security boundary, and that you should not let anyone malicious load these…
I have no insight into the Asahi project, but the LKML link goes to an email from James Calligeros containing code written by Hector Martin and Sven Peter. The code may have been written a long time ago.
That's an email from James Calligeros. All this patch says is that the author is Hector Martin (and Sven Peter). The code could have been written a long time ago.
Where I'm from, it probably would not be stolen by anyone.
How?
It never made it into upstream Linux, but there is already a sample implementation that Wedson wrote in 2022: https://github.com/Rust-for-Linux/linux/pull/798
It won't be different from Tokio. When you pass a future to tokio::spawn, that will also eagerly execute the future right away.
It's trivial to implement an async runtime in the kernel. The kernel's workqueue is already essentially a runtime.
> IIRC Alice from the tokio team also suggested there hasn't been much interest in pushing through these difficulties more recently, as the current performance is "good enough". Well, I think there is interest, but…
I'm quite careful to tightly control the dependencies of Tokio. All dependencies are under control by members of the Tokio team or others that I trust.
The caption for the picture says this: > The six planets orbit their central star HD 110067 in a harmonic rhythm with planets aligning every few orbits.
Regarding the review process ... one thing that I find challenging and don't know a good solution to is documentation. I've received many PRs where the change itself is fine, but the PR is dragging out because the…
It's well known that what is being stabilized today is lacking the Send bounds stuff. In fact, there was a lot of discussion about whether they should completely block this feature until the Send bounds stuff was ready.…
If you pay too much in bounties, you risk having your own red-team employees leave so that they can report bugs externally and get paid much more via bounties.
I'm surprised that CLN-003 made the list even as low severity. It's intended to make reverse engineering of the binary harder, but the code is already freely accessible (and CLN-003 also acknowledges this).
In Denmark, there's a national system for authentication used for government sites and banks. I have a small device with a single button on it that shows a 6-digit code when you press it. I enter that code along with a…
The best tool for voice-to-text for programmers is Talon. https://talonvoice.com/
Running the experiment until you have a specific pre-determined number of observations is okay. However, the deceptively similar scheme of running it until the results are statistical significant is not okay!
That's my understanding as well.
Dual licensing should be fine. (IANAL)