/tech/ - Technology★

>>1063766 (OP)

Reported for CP.

>apt-get install

install gentoo

>>1063766 (OP)

Gentoo doesn't have this problem, didn't even have rds module compiled.

You don't need to recompile the entire kernel to fix an issue with a single module, dumbass.

>>1063766 (OP)

>make thread about security

>uses the blobbed version of linux

Good intentions but we can do better.

https://www.fsfla.org/ikiwiki/selibre/linux-libre/

https://linux-libre.fsfla.org/pub/linux-libre/freesh/

>race condition leading to a use-after-free

C/C++ strikes again!

Or, for Ubuntu and derivatives

This https://github.com/pimlie/ubuntu-mainline-kernel.sh

Or this https://github.com/teejee2008/ukuu

>>1063805

That's a logical problem that will affect all languages. It is not a problem that's unique to C or C++.

>>1063773

Debian/Ubuntu users make up the majority of Linux users. I'd saying doing this in portage but Gentoo doesn't have this module compiled by default.

>>1063776

This!

>>1063779

I had to look this. I've never just swapped out modules and I don't know that much about Linux kernel. Hence I'm building one. What better excuse could one have? Technically what your are saying is true. People are saying it might run or might have compatibility issues between new module and older kernel. Also technically major Linux distros probably already have this patched so running update through whichever package manager you have will get it done.

Has anyone benefited from this post or is everyone on tech an advanced user?

Oh don't forget.

make modules_install
make install

>>1063770

You actually did it didn't you faggotnigger. Don't you have better shit to do than report the Linux cp command as CP. Faggotniggers everywhere.

>>1063810

>race condition and use after free

>logical problem

Cnile spotted

>>1063805

You're right that this is a C/C++ problem. Weenies will once again find some way to blame the protocol and not the weenie "programmers" and piece of shit "language" it was written in, just like they blamed the finger protocol for the Morris worm caused by a buffer overflow because some weenie used gets() for network software.

>>1063810

There are languages that are completely immune to use-after-free bugs, and not just the ones with GC. There are also languages that prevent race conditions. This idea that computer networking is inherently dangerous is bullshit. It's not the packets that are the problem, it's shitty C code.

Date: Mon, 7 Jan 91 23:09:32 EST
Subject: What you once thought was a brain-dead misimplementation is now the protocol definition!
  or, Unix Historical Revisionism At Work Again,
  or, IETF-approved RFC1196

    This whole thing is pretty sad, or pathetic, or depressing
or something.  

    Firstly, there's the rewriting of a protocol to conform
to a ubiquitous misimplementation -- the unix story over and
over.

    Then there's the growing Balkanisation (or
Multics-ification) of the net -- I remember laughing out
loud when I found that MIT-MULTICS refused finger service on
security grounds.

    Then, or course, there's the pathetic implementational
warnings about how one should be very very careful in
implementing this sensitive and dangerous protocol -- as if
this perilous protocol somehow innately offered a direct way
to shove fingers up unix' sockets.  Or something.

>>1063921

based

>>1064069

>>1064069

>it's trying to encourage itself

This is pathetic

>>1063921

based

>>1064069

based

>>1064074

unbased and gay

>>1064133

>implying I sit on /tech/ all day refreshing nonstop to see him post

>>1064069

based

>>1064074

unbased

>>1064123

based

>>1064133

unbased

>>1064141

unbased

>>1064133

lol all he did was point out unix braindamage and then act like lisp machines were the best thing ever. I'm nearly convinced he's the zoomer cnile poster and rust shill too.

>>1064123

>>1064146

At least captcha prevents low quality posts. Right? lmfao imagine /tech/ ends up as the most cucked board. hahaha

>>1064149

Nah m8. I'm the Cnile poster and the Rust shill. I'm also the LARPer poster. I'm not zoomer though, LOL.

unbased btw

>>1064149

only good mods could prevent that but they are very likely phoneposters too so its not going to happen

>>1063766 (OP)

why would you download it from some random indian botnet site instead of kernel.org?

>>1064157

>gpg --verify linux-5.1.2.tar.sign

>>1064149

>everybody i don't like is the same person

get that checked, lad

>>1064157

Because it's not 1990 anymore.

How do I make vanilla kernel work with lvm?

I never could pass this part, distros are using some initrd hackery for that.

Is there a simplier way?

Slackware had worked without initrd just fine, is it still possible?

Can I build a kernel without TCP/IP or networking support (i.e without loop interface) for being truly offline?

How can I disable all drivers and modules which is not needed by my system?

Which scheduler should I choose?

>>1064292

I can't help you with LVM. You can easily disable the networking stack in the kernel configuration though if you want Unix sockets you may need to reenable some parts. Start with a minimal kernel (maybe something like Gentoo as a base) and go through the options; maybe try a live medium and check what modules are being used to quickly check what your hardware needs. The scheduler isn't really that important, but there is one that gives more priority to programs that are taking user input. Don't quite remember the name however.

>>1064271

update your 10 year old jpeg before you die of old age, anon

>>1063846

Yes this is directly related to some stuff that I am working on right now -- I am trying to do some things with ubuntu 18.04 with PCI-E performance and some features that were added recently (Back in 4.20 iirc).

>>1064522

Rust

>>1064522

I don't think Ada is completely immune, but it eliminates the vast majority of use cases for pointers in C by not being garbage.

>kernel updates every few days

>kernel is clearly getting worse with time

>muh security

lol fine how come my gpu doesn't work properly now? How come my audiocard didn't work for 6 months? oh yeah kernel updates due to unix braindamage

>>1064525

>unix braindamage

BASED

>How come my audiocard didn't work for 6 months?

Install PulseAudio

>>1063921

>There are languages that are completely immune to use-after-free bugs

If you're going to say Ada, then you're wrong.

The Ariane V Cluster rocket disaster was caused by faulty Ada code. Ada has proven to constantly fail at branch conditions and about as brain damaged as C.

>>1064526

No anon the kernel dropped support for the hardware. They probably fucked up something, (((by accident))), for the gpu since I should be a good nigger a buy a new computer every 5 years to fucking use xterm.

>>1064528

The Cluster explosion wasn't caused by a use after free you LARPer.

>>1064528

>blaming the Ariane V clusterfuck on Ada

No, that was just the rocket designers being retarded. tl;dr they reused code designed for an older and slower rocket which made assumptions about its maximum inertia, assumed anything higher was a sign of hardware failure, and disabled security features to increase performance. They skimped on basic tests to save money and, surprise surprise, the performance hacks didn't scale up to a faster rocket and led to both redundant computers shutting down mid-flight.

The software for the Inertial Reference System (IRS) on the Ariane 5 was identical to the
software used successfully on the Ariane 4 rocket. Basically, the developers took an "Off
The Shelf" part (the IRS) that consisted of hardware and software, the design of which was
used successfully on the Ariane 4 project, and bolted it onto the Ariane 5 rocket
completely untested. The Ariane 5 rocket had a substantially different flight profile than the
Ariane 4 was capable of. When the rocket started its flight, it moved at angles that were
substantially larger than the Ariane 4 flight path would generate. The inertial data exceeded
the range limits of the Ariane 4 software.

The system was designed with a dual-redundant computer (two processor boards that are
identical, running identical software.) One part of the software in question was performing
calculations on the inertial data and needed to do so repeatedly in a very small amount of
time. The original designers needed to speed up the software so they performed an
analysis of the incoming data and concluded that within the Ariane 4 flight profile, numbers
outside of a certain range would never occur. If such numbers *did* occur, it would be most
likely that a sensor had failed and was generating wildly out of range data. Hence, it was
safe to remove any error-handling code and instead design in Failure Detection and
Accommodation (FDA) logic.

The logic went something like this: "If a number comes in over a certain size, it will trigger
a hardware overflow condition. The hardware will trap to an Interrupt Service Routine (ISR)
for handling of that condition. The ISR presumes that if it was reached, then there must be
a hardware fault. In the event of a hardware fault, the software will shut down the computer
and transfer to the 'spare' ccomputer - which is why we have a 'spare' in the first place."
All of this makes sense because the flight path of the Ariane 4 would never generate
numbers large enough to cause an overflow - unless the hardware was broke. The whole
analysis and design was in place, tested and flew successfully for the Ariane 4 rocket.

Now comes the bad part: The design team for the Ariane 5 looked at the IRS for the Ariane
4 and figured that they had a reliable piece of hardware that would work fine for the Ariane 5
and they could save money by reusing an existing design. That's what they did. Only they
started to make unwarranted assumptions - that the unit would work on the Ariane 5 flight
trajectory and that it didn't need to be tested in any way against the flight path expected.
(Thus saving more money.) Had they run even the most rudimentary tests of the unit
against the expected flight path of the Ariane 5, they would have triggered the condition
and detected that they had a problem. They never did.

When the rocket flew for the first time, both dual-redundant computers detected the
overflow condition. Both presumed that the cause was a hardware failure. Both shut down in
an attempt to leave the other side in control. They did *exactly* what they were designed to
do and in that sense behaved flawlessly.

The fact that the computers in question were programmed in Ada had absolutely nothing to
do with the reasons for the crash. It had no more to do with the crash than the fact that both
computers were using a Mil-Std-1750a microprocessor - a computer that has been used
reliably in numerous space applications. The original software designers were not to blame
either. They designed their software logic for the problem at hand and had to work within the
CPU time limitations they were given. Their FDA logic was *perfect* for the Arriane 4 rocket.

The fault lay with the designers of the Ariane 5 and their failure to test their assumptions. It
would be analogous to taking a tire that was designed to work on a Corvette and "reusing"
it in the design of a Freightliner truck. It works *fine* when the only weight it has to support is
a Corvette sports car. What would it likely do trying to support the weight of a Freightliner
truck? 

>>1064541

based

>>1064551

>gpg --verify linux-5.1.2.tar.sign

>>1064526

>install pulseaudio

Why would you wish this on anyone?