LWN Weekly Edition
Leading itemsSecurity
Kernel development
Distributions
Development
Linux in the news
Announcements
->Multipage format
This page
Previous weekFollowing week
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
LWN.net Weekly Edition for May 6, 2004The Grumpy Editor's guide to diagram editorsLet it be said up front: your editor is not an artist. He is, however, given to the creation of simple diagrams for the explanation of data structures, algorithms, etc.![[Diagram example]](http://lwn.net/images/ns/grumpy/diagram-example.png)
See, for example, the diagram to the right, which comes from the kobject introduction in the Driver Porting Series. These images
can be a useful form of hand waving when complex subjects are being
discussed.
Back in the Golden Age of Proprietary Unix (around SunOS 3 or 4, say), there weren't a whole lot of tools available for image editing. If you youngsters out there want to get a feel for how desperate those times could be, consider this: we often had to resort to tools like the LaTeX picture mode to create drawings in digital form. Happily, things have gotten better since then. Things aren't enough better, however, that your editor has stopped keeping an eye out for a better tool. This article is an attempt at summarizing the current state of the art in free drawing editors. The emphasis here is very much on the creation of diagrams and technical drawings; we'll not be looking for the best tool for the creation of birthday party invitations, pneumatic science fiction art, obnoxious animated banner ads, or beautiful but incomprehensible icons. Your editor is trying to get some work done and needs a diagram editor which doesn't drive him nuts.
idrawFor the first stop, we might as well complete the history lesson. Back in the early days of X11, there were many efforts to produce The One Toolkit which would unify the desktop. Actually, that situation hasn't changed a whole lot in 15 years. One of the early efforts was a C++ framework called InterViews. InterViews failed to change the world directly, though many of its ideas and lessons have lived on in the design patterns community and in projects like Fresco. InterViews did, however, produce a drawing tool named idraw, which, for years, was the definitive free drawing package. It combined full functionality (for the time) with a well-thought-out interface and a nice set of keyboard shortcuts. Creating drawings with idraw was a quick and painless process. idraw stored its output as PostScript files, making the drawings easy to print and the quality relatively good. One might think that idraw's day has passed, given that the InterViews team has not produced a release in over ten years. As it turns out, however, there is a project (called ivtools) which is dedicated to the maintenance and improvement of the InterViews toolkit and associated tools. Releases are rare, but ivtools-1.0.4 came out last February. That said, the simple fact is that idraw's time has passed. This program has had little in the way of development for over a decade, it can't export to interesting image file formats, it has no concept of layers, it depends on a large toolkit that nobody uses, and it is a major unpleasant pain to install. InterViews was an important step toward where we are today, but even a grumpy editor sees the need to move beyond the 1980's and look at what is being hacked on now.
XFig
On the down side, XFig can only undo the most recent operation. Its keyboard shortcuts are like those of no other application, and will take some getting used to. The interface is highly modal; XFig's window includes an area saying what the three mouse buttons will do at any given time for a reason. Grouping objects, for example, requires selecting the group "tool," selecting individual objects with the left button or picking the corners of rectangles with middle button, then completing the operation with the right button. Your editor's biggest problem with XFig, however, is the quality of its image output. He might not be an artist, but he would still rather see his work rendered with nice fonts and antialiased lines. XFig's output prints nicely, but does not work as well on the web; given that XFig is oriented toward tasks like the production of complicated circuit diagrams, that is not entirely surprising.
Tgif
Tgif boasts a release
history going back to 1990; recent releases appear to be coming about once
Tgif does not support layers, which is a major disadvantage. Actually, that is not quite true: it does have a "color layers" mode where each color is rendered into a separate layer. This mode may be useful for certain types of printed output, or for certain types of drawings (schematic diagrams, perhaps) where objects in different colors really should be separated. Tgif also allows drawings to have multiple pages; among other things, these can be used to create animated GIF images. Your editor would gladly trade both capabilities for a decent layering mechanism. Tgif has a set of image editing functions that might have been better left to the Gimp. What it does not have, alas, is antialiased image output. Actually, exporting to images is strange in general; one must set the "print format" to the desired image format, then "print" the diagram. The image will be created without prompting for a name, and without regard to any file which may have already existed with the chosen name. Documentation for Tgif is sparse as well.
OpenOffice.org
OpenOffice.org comes with a drawing
tool which has been getting more capable over time.
OpenOffice will export to an unbelievable number of formats, including (perhaps uniquely) PDF. When your editor exported to PNG, however, he got the same old jagged lines. OpenOffice also exports a full page image, while most other drawing editors will create an image which fits the drawing. All of the above notwithstanding, OpenOffice.org's editor is a worthwhile addition to the Linux desktop.
Karbon14
Once upon a time, KDE had a program called Killustrator. The name ran into
trademark problems, which were circumvented by renaming the tool "Kontour."
Karbon14 appears to be aimed at more artistic uses; it thus lacks some of the features (snap to grid, attachments, arrow drawing) which are useful for diagram creation. On the other hand, it has tools for drawing gradients and drop shadows, as well as more dubious features like the "star" and "spiral" tools. Karbon supports layers, but seems to want to put every object into its own layer. It has a multi-level undo feature. There is also a plugin mechanism for the addition of special effects. Unfortunately, what Karbon14 also has is lots of bugs. Your editor, who tried both the Fedora Core 2 Test 3 and Debian unstable builds, found the tool easy to crash. The "zoom tool" can put it into an infinite loop. Drawing polylines can produce hallucinogenic results. Text drawing was never seen to work on either system. An attempt to export to PNG yielded a solid black image - that is one way to get rid of aliasing problems, but the results are not very helpful for web publication. In all fairness, one should note that Karbon14 is currently at version 0.1. This tool has the potential to evolve into a capable, highly-featured drawing editor. But it's not yet ready for a grumpy editor's desktop.
Dia
Dia is clearly oriented toward the creation of diagrams. It has snap-to-grid, layers, attachments, and several libraries of objects for schematics, flowcharts, UML diagrams, etc. On the other hand, it lacks gradient editors, 3D swirl generators, shadows, and fancy background clip-art. Dia does beautiful antialiasing, both on-screen and in image exports. On the other hand, control of object attributes is inconsistent and sometimes hard to find. Rectangle filling is controlled by double-clicking on the rectangle tool icon; control of arrowhead dimensions is, instead, obtained by selecting "details" at the end of a long list of possible arrow types. Alignment and grouping operations require navigating through a series of cascading menus; some keyboard shortcuts would be nice here. Dia also has a reasonably comprehensive set of configuration options, which is always a nice surprise in a GNOME application. For example, it is possible to turn off the "switch back to the select tool after every operation" mode that seems to be so popular in modern interfaces, but which your editor finds obnoxious. Dia features a Gimp-style right-button menu which provides access to everything, but that menu can be replaced with a toolbar by tweaking the appropriate preference.
In conclusion...A few other packages are worth a quick mention:
As this survey shows, the free software community offers a wealth of diagram editing tools. Many of them have reached a reasonable level of maturity though, like people, they are aging in different ways. These applications are seeing substantial development and are evolving quickly. Before long, the community should have some of the best tools available anywhere. Grumpy creators of hand-waving diagrams everywhere should rejoice.
Fighting software patents: a report from Brussels"Power to the Parliament" is not a typical slogan for any demonstration, but when the demonstrators are predominantly young businessmen and programmers, you can be sure something new is happening. In response to legislation concerning software patents, hackers and entrepreneurs across the EU, and in nations just joining the EU, have come together first to convince Parliament of their cause, and now to defend Parliament against the European Commission and Council. Last week saw a demonstration and a series of conferences that mark a watershed in the political organization and awareness among the members of this new movement; GNU/Linux user groups, hackers from MPlayer, consultants from MySQL, activists from the FFII, UKCDR, APRIL, FSF Europe and more hackers, journalists and bemused bystanders met to talk not about code but about politics, and without any trolls in sight.First, a little background for context. Last year saw the Foundation for a Free Information Infrastructure's (FFII) campaign against software patents take center stage in the hacker world as the European Parliament began to debate the issue. After frenzied lobbying in late August and September, an amended piece of legislation was passed, explicitly banning software patents. But the victory was short-lived, as the European Council and Commission took the bill and published their interpretation, removing all of the amendments the anti-software patent activists fought so hard for. A lot of EU legislation goes through this sort of complex procedure, known as "co-decision", where the legislative and executive branches both develop the legislation. On the morning of Wednesday, April 14, a demonstration launched two days of protests and discussion to counter the Council and Commission's position. The demonstration itself was a visual but low-key event, with between 500 and 800 people marching around Brussels with yellow balloons, banners and a few sandwich boards. The march culminated with a pantomime outside the European Commission, satirizing the Commission's tendency to listen to big business (principally Nokia) rather than Small and Medium Enterprises and individuals; there was also a human chain and an en-mass balloon release. Almost as soon as it had finished, we entered the European Parliament for the conference on software patents, organized by the FFII and the International Institute of Infonomics. The purpose of the conference was to bring key activists, MEPs and experts together to continue the discussion of software patents in Europe, and to try to measure the effects of the two competing legislations (Parliament's and the Council's). The first panel, discussing "Recent Developments in Granting and Use of ICT Patents", gave software patent experts, business owners and activists a chance to clarify the extent of patent granting and the effects it has already had on business in Europe. The presentations were informative, though not controversial for the majority of the participants; they indicated that approximately 20,000 software patents have been granted in Europe, and that, though unenforceable, they have already done considerable damage to many small businesses. Most of the problems seemed to be caused by companies needing to file software patents as a means of defense against litigation, and to counter other companies' patent portfolios. The second panel, discussing "EU Legislation Benchmarking: Parliament's vs Council's version of Software Patent Directive" was perhaps more interesting. Sitting next to anti-software patent law scholars and activists were representatives from the European Commission and the European Patent Office (EPO). The law scholars and activists described, from an academic rather than a pragmatic point of view, why software is un-patentable, and why the software industry doesn't even need them. Then we listened to the EPO claim that they didn't file any software patents, and that they saw the legislation as a clarifying exercise, and the Commission claim, with little substantial argument or empirical evidence, that their legislation would help the industry. Commission representatives also implied, amazingly, that the legislative process in this case ought to aim to settle the issue soon rather than take the time to approach the problem more carefully. The third and final panel discussed "Competitivity of Knowledge Economies", and gave MEPs and economists the chance to present their views on where software patents lie in the broader picture of Europe's "ICT economy". Moving away from arguments about software patents per se, they presented various analyses of how European industry might lose out in the future if software patents were introduced. The next day, we attended a second conference, organized by the FFII and the Green-EFA Alliance, focusing on the place of free software in Europe in general. The day opened at 9am with a series of presentations from GNU/Linux User Groups (G/LUGs) from around Europe, explaining to the many MEPs, Parliamentary assistants and other outsiders what G/LUGs are, what they do, what free software is, and how the free software community works. In contrast to the previous day's conference, there was a good opportunity for discussion, and many activists got the opportunity to discuss how G/LUGs can improve their relationships with each other, and with the EU. Following this, there was a rather anarchic installfest. Various MEPs had Mandrake Linux installed on their PCs, while the rest of the conference's participants milled around talking to each other, and in my case, phoning more MEPs for meetings. The conference reconvened after lunch, for three more panels. The first was on "Fair Use / Copie Privée, and proved, for the geeks in the room, far more familiar. A lawyer from the EFF, Jon Lech Johansen (DeCSS) and a lawyer from Test-Achat, a Belgian civil rights group, discussed with the floor the state of "fair use" law within the EU, touching on DVDs, audio CDs and DRM in general. Aside from general discussion, we were treated to a brief exchange between the EFF and a person defending Blizzard's case against bnetd. The second and third panels continued in much the same vein, discussing free and open source software in Europe. The afternoon produced a growing consensus that we ought to be pushing for Free Software in the public sector across Europe far harder, and seemed to bolster the support from MEPs. By the end of the conference, most seemed considerably more excited by the future than before. But aside from the many discussions, it is important to ask: what did the two days achieve? We cannot defeat the European Commission and Council over software patents, and place Free Software at the heart of Europe's ICT economy, with words alone. Fortunately, though no major tangible breakthroughs were made, the community came away with a lot of substantial work done, and some good plans for the future. G/LUGs across Europe, through Eurolinux and the FFII's mailing lists, will be drafting strategies to work together to promote Free Software more effectively, drawing on each others' successes. A first draft of such a document was written during the conference, and translated into two or three languages by willing hackers. The FFII is now leading a project tentatively called the MEP Toolbox, to develop a comprehensive database of MEP's positions on important digital rights issues, and an accompanying lobbying guide for inexperienced hackers. And, as a personal measure of its success, during the recent Linux User & Developer Expo in London, the FFII-UK, the UKCDR and the AFFS got their heads together (one of which being mine) to work out a more effective strategy of cooperation and campaigning. So long as the enthusiasm can be maintained, and promises and ideas developed in Brussels can be turned into concrete deeds, the future in Europe certainly looks a lot brighter than it did a few weeks ago. We may have the beginnings of a Europe-wide movement that can effectively tackle digital rights issues, and push Free Software. We just need to ensure we don't renege on our promises.
Security 82% of email is spamAccording to this eSecurity Planet article, 82% of all email which was sent in April was spam. That is the highest level ever measured - so far. Informal measurements here at LWN suggest that the 82% figure could even be a little low; some of our accounts here are receiving well over 1200 spams per day.The cost of this endless stream of garbage is eventually going to push some part of the system to the breaking point. And the results may not be good. As the spam problem gets worse, most email users will be willing to accept almost anything from their ISPs or legislators which promises to improve things. It would not be surprising to see power grabs coming from several directions as the usual cynical forces try to take advantage of the situation. Are we ready for a world of centralized email systems, proprietary protocols which limit bulk mailing to "authorized" merchants, and new laws giving governments power to monitor and restrict email content? If we're not ready for those things, we're going to have to think again about how to fight this problem. Filtering can be highly effective, but it does little for many of the costs of spam, including bandwidth usage and compromised servers. Filtering also does not work for all users. Somehow, a way must be found to keep spammers and their output off the net. If we can't come up with a way to do that which preserves the freedoms that have made the net what it is, we're likely to see rather less palatable attempted solutions imposed by others.
New vulnerabilities eterm: command execution
flim: insecure file creation
kolab: password disclosure
LHA: stack buffer overflows and directory traversal flaws
libpng: denial of service vulnerability.
mc: multiple vulnerabilities
proftpd privilege escalation
rsync remote file write attack
samba: local root and symlink vulnerabilities
sysklogd: heap overflow
xine-lib: malicious code execution
Updated vulnerabilities apache - denial of service in mod_ssl
cvs: client-side file overwrite vulnerability
ethereal - multiple vulnerabilities
Filename disclosure vulnerability in fam
gtkhtml: malformed messages cause crash
ident2 buffer overflow
iproute: local denial of service
racoon: failure to verify signatures
racoon: denial of service vulnerability
kdelibs: cookie disclosure
kdepim: VCF file information reader vulnerability
kernel: symlink overflow in the iso9660 filessytem
kernel - root exploit in MCAST_MSFILTER
Linux kernel 2.2.10 failing function and TLB flush vulnerability
kernel-utils: setuid vulnerability
LCDproc: Buffer overflows and format string vulnerabilities
libpng, libpng3: buffer overflow
libxml2 - arbitrary code execution
logcheck: symlink vulnerability
mailman denial of service
metamail: integer and buffer overflows
mikmod: buffer overflow
mod_python: denial of service vulnerability
mozilla: multiple vulnerabilties
mpg321: format string vulnerability
MySQL: temporary file vulnerabilities
neon: format string vulnerabilities
Nessus NASL scripting engine security issues
netpbm: insecure temporary files
openssh: timing attack leads to information disclosure
OpenSSL: denial of service vulnerabilities
postfix: denial of service vulnerabilities
python: buffer overflow
ssmtp format string vulnerability
sysstat: temporary file vulnerability
File overwrite vulnerability in tar and unzip
tcpdump: ISAKMP payload handling denial-of-service vulnerabilities
Multiple vendor telnetd vulnerability
utempter problems with symlink and strncpy
XChat 2.0.x SOCKS5 Vulnerability
XFree86 minor DoS vulnerability
xine-ui - insecure temporary file creation
Events SummerCon 2004 - Official AnnouncementSummerCon 2004 is happening June 11 to 13 in Pittsburgh, PA. The call for papers is out; submissions are due by May 15.
Page editor: Jonathan Corbet Kernel development Brief items Kernel release statusThe current 2.6 prepatch is 2.6.6-rc3, unchanged from last week.Linus's BitKeeper tree contains, as of this writing, an important workqueue fix (it seems nobody had actually tried to use cancel_delayed_work() until now...), an updated MTD concatenating driver, several architecture updates, and lots of fixes. The current tree from Andrew Morton is 2.6.6-rc3-mm2. Recent additions to the -mm tree include another set of reverse mapping VM patches from Hugh Dickins, a new ia_64 hotplug CPU patch set, a patch to enable interrupts while waiting on spinlocks, the permanent abolition of 8K stacks on the x86 architecture, a new /proc/sys/kernel/vermagic file to enable package installers to figure out how the kernel was built, filtered sleeps and wakeups (see below), a new NUMA API, and, of course, lots of fixes. Andrew indicates that the scheduling domains patches are being fixed up and prepared for merging once 2.6.6 is released. He also plans to merge a number of the reverse mapping VM patches, including the anonmm work, even though the final decision on whether to go that way or with the rival anon_vma technique has not yet been made. The current 2.4 prepatch is 2.4.27-pre2, which was released by Marcelo on May 3. Changes this time include some crypto updates, some XFS fixes, various networking updates, and a handful of other fixes.
Kernel development news Quote of the week
"screwed"
-- Alexander Viro's alternative for a less alarming replacement for the term "tainted," applied to kernels which have had non-free modules loaded into them.
2.6 swapping behaviorThere has, recently, been a new round of complaints about how the 2.6 kernel swaps out memory. Some users have been very vocal in their belief that, if they have sufficient physical memory, their applications should never be swapped out. These people get annoyed when they sit down at their display in the morning and find that their office suite or web browser is unresponsive, and stays that way for some time. They get even more annoyed when they look and see how much memory the kernel is using for caching file contents rather than process memory. The obvious question to ask is: couldn't the kernel cut back a bit on the file caches and keep applications in memory?The answer is that the kernel can be made to behave that way by tweaking a runtime parameter, but it is not necessarily a good idea. Before getting into that, however, it's worth noting that recent 2.6 kernels have a memory management problem which can cause serious problems after an application which reads through entire filesystems (updatedb, say, or a backup) has run. The problem is the slab cache's tendency to request allocations of multiple, contiguous pages; these allocations, when done at the behest of filesystem code, can bring the system to a halt. A patch has been merged which fixes this particular problem for 2.6.6. The bigger issue remains, however: should the kernel swap out user applications in order to cache more file contents? There are plenty of arguments in favor of this behavior. Quite a few large applications set up big areas of memory which they rarely, if ever use. If application memory is occasionally forced to disk, the unused parts will remain there, and that much physical memory will be freed for more useful contents. Without swapping application memory to disk and seeing what gets faulted back in, it is almost impossible to figure out which pages are not really needed. A large file cache is also a performance enhancer. The speedups that come from having frequently-accessed data in memory are harder to see than the slowdowns caused by having to fault in a large application, but they can lead to better system throughput overall. Still, there are users who insist that, for example, a system backup should never force OpenOffice out to disk. They don't care how quickly a system maintenance application runs at 3:00 in the morning, but they care a lot about how the system responds when they are at the keyboard. This wish was expressed repeatedly until Andrew Morton exclaimed:
I'm gonna stick my fingers in my ears and sing "la la la" until
people tell me "I set swappiness to zero and it didn't do what I
wanted it to do".
This helped quiet the debate as the parties involved looked more closely at this particular parameter. Or, perhaps, it was just fear of Andrew's singing. Either way, it has become clear that most people are unaware of what the "swappiness" parameter does; the fact that it has never been documented may have something to do with that. So... swappiness, which is exported to /proc/sys/vm/swappiness, is a parameter which sets the kernel's balance between reclaiming pages from the page cache and swapping out process memory. The reclaim code works (in a very simplified way) by calculating a few numbers:
With those numbers in hand, the kernel calculates its "swap tendency":
swap_tendency = mapped_ratio/2 + distress + vm_swappiness; If swap_tendency is below 100, the kernel will only reclaim page cache pages. Once it goes above that value, however, pages which are part of some process's address space will also be considered for reclaim. So, if life is easy, swappiness is set to 60, and distress is zero, the system will not swap process memory until it reaches 80% of the total. Users who would like to never see application memory swapped out can set swappiness to zero; that setting will cause the kernel to ignore process memory until the distress value gets quite high. The swappiness parameter should do what a lot of users want, but it does not solve the whole problem. Swappiness is a global parameter; it affects every process on the system in the same way. What a number of people would like to see, however, is a way to single out individual applications for special treatment. Possible approaches include using the process's "nice" value to control memory behavior; a low-priority process would not be able to push out significant amounts of a high-priority process's memory. Alternatively, the VM subsystem and the scheduler could become more tightly integrated. The scheduler already makes an effort to detect "interactive" processes; those processes could be given the benefit of a larger working set in memory. That sort of thing is 2.7 work, however; in the mean time, people who are unhappy with the kernel's swap behavior may want to try playing with the knobs which have been provided.
Filtered wakeupsKernel code often finds itself having to wait for a particular physical page; if, for example, a page is currently under I/O, prospective users must wait until that operation has completed. In the early days of 2.4 (and before), the struct page structure (which the kernel uses to track physical memory) contained a wait queue head for this purpose. This technique worked, but adding a wait queue for every page in the system was not a particularly efficient use of memory. At any given time, only a tiny percentage of those wait queues are actually in use.To recover some of the memory used by wait queues, the kernel developers added the concept of hashed wait queues. The per-page queues were replaced with a much smaller number of shared queues; when a thread needs to wait on a particular page, it hashes the page address to pick the appropriate queue. When the page becomes available, all processes waiting on that queue will be awakened. The use of this technique has since been extended to other parts of the kernel as well. Hashed wait queues have achieved the desired space savings, but, as it turns out, at a certain computational cost. William Lee Irwin did some research, and found that hash queue collisions are fairly common. So, when a wakeup is performed on one of the hashed wait queues, it is likely that unrelated processes are being awakened. Each of those processes must run, determine that the event they are waiting for has not yet occurred, and go back to sleep. This variant on the "thundering herd" problem can hurt performance. One possible solution to this problem would be to expand the number of wait queues to make collisions less likely. That approach is simple, but it also would bring back the original problem by expanding the amount of memory dedicated to wait queues. So William came up with another approach, which he calls "filtered wakeups." The idea behind a filtered wakeup is fairly simple. When a process goes to sleep on a (shared) filtered wait queue, it provides a "key" value, which will typically be the address of the resource being waited for. The wakeup call is made with a key value as well; as the wait queue is traversed, only the processes waiting for the given key are awakened. The patch which implements filtered waits is fairly simple, and includes an example of their use. It creates a new filtered_wait_queue structure:
struct filtered_wait_queue {
void *key;
wait_queue_t wait;
};
A process which is about to go into a filtered wait will use code which looks something like the following to create an use a filtered queue entry:
DEFINE_FILTERED_WAIT(wait, key);
do {
prepare_to_wait(queue, &wait.wait, TASK_INTERRUPTIBLE);
if (not_ready_yet(key))
schedule();
} while(not_ready_yet(key));
finish_wait_(queue, &wait.wait);
Awakening a process in this sort of sleep is a simple matter of calling:
void wake_up_filtered(wait_queue_head_t *queue, void *key);
William claims some significant performance improvements from his changes, including large reductions in CPU usage and a near tripling of the peak I/O rates in some situations.
Patches and updates Kernel trees
Core kernel code
Device drivers
Filesystems and block I/O
Memory management
Architecture-specific
Miscellaneous
Page editor: Jonathan Corbet Distributions News and Editorials OpenBSD 3.5: a peek at another free UnixAfter reading LWN's recent coverage of SELinux and its implementation in the development releases of Fedora Core 2, several readers expressed disappointment about the complexity associated with this new security model: "SELinux may give administrators extra flexibility, and add some extra 'layers' of protection for critical files, but security pros usually consider complexity to be the enemy of good security - and this system is nothing if not complex," wrote one reader. Still, with several attacks on high-profile Linux servers during 2003, many system administrators are evaluating various security solutions for their mission-critical servers and firewalls. Those of them who are prepared to look beyond Linux might find that OpenBSD is exactly what they need.Initiated by Theo de Raadt back in 1996, OpenBSD's primary goal is to build a free and highly secure operating system. The developers pride themselves for a remarkable achievement of eight years with only a single remote hole in the default install. Although OpenBSD doesn't support nearly as many processor architectures as NetBSD, its original parent, the latest release of OpenBSD is available for 13 platforms, including Alpha, AMD64, PowerPC, SPARC, as well as i386. But despite fundamental technical differences between Linux and BSD, a system administrator familiar with Linux will find it relatively easy to administer an OpenBSD box, especially after reading the project's online manual (which includes a section about migrating from Linux to OpenBSD), or the superb Absolute OpenBSD by Michael W. Lucas. How is security in OpenBSD better than in other UNIXes? Let's take a look at some of the more interesting features found this BSD flavor: file flags, securelevels and systrace.
In many ways, OpenBSD is one of the most remarkable projects in the history of UNIX. With support for 13 architectures and its emphasis on security and integrated cryptography, any system administrator that overlooks OpenBSD where server security is of paramount importance is not doing a proper job. Even if most of us prefer to run Linux on our servers and desktop, there is no doubt that OpenBSD has a rightful place in the OS ecosystem, and a rightful place in every UNIX sysadmin's toolbox.
Distribution News OpenBSD 3.5 releasedOpenBSD 3.5 is available; click below for the release announcement. This version includes, of course, more security work, along with x86_64 support, ARM support, a number of new device drivers, a reworked packet filter, and much more; see the announcement for details.
Mandrake LinuxMandrakeSoft has announced the release of Mandrakelinux 10.0 for the x86_64 architecture. "Mandrakelinux 10.0 for AMD64 delivers all the features and robustness of Mandrakelinux 10.0 Official to the 64-bit platform from AMD, with an average performance gain of 20% compared to the IA32 version."Mandrakelinux 10.0 update advisories:
Debian GNU/LinuxThe Debian Weekly News for May 4, 2004 is out. This week's topics include the discussions about releasing sarge in light of recent editorial changes to the social contract and the proposed amendments that have followed; a short howto on installing Debian stable using Knoppix; and several others.The Debian-Installer team has announced the fourth beta release of the Debian sarge installer. Improvements in this release include support for arm, hppa, and mipsel architectures bringing the total up to nine supported architectures; experimental support for the 2.6 kernel on i386; detection of existing operating systems; new translations; plus many bug fixes and user interface improvements. This Bits from the DPL (Debian and OASIS) features a report from Mark Johnson, Debian's representative at OASIS (Organization for the Advancement of Structured Information Standards). "Through our membership we have direct influence into the process of standards development. This benefit has proved particularly beneficial in the development of the XML Catalogs specification. During a key period of work on this specification, two of the seven committee members were from the Debian project. As a result, the final specification will be more easily implementable on Debian than it otherwise might've been." A DebConf4 schedule has been posted. A small budget was found to provide needy Debian developers with some help for their DebConf travel expenses. Here's a brief guide on Migrating to Linux Kernel 2.6 in Debian. (Found on Debian Planet)
Security Takes Lead in Red Hat Enterprise LinuxRed Hat, Inc. has announced a two-year roadmap for security in Red Hat Enterprise Linux. This press release highlights the work done by Red Hat to achieve government security standards, security certifications and with the NSA-developed SELinux.
Revealed: how Fedora and the community interactSince the announcement of the Fedora project, many developers in the community have wondered just how they can participate in this project and influence its direction. For the most part they are still wondering. For your amusement, we recommend reading the following transcript, unearthed by Konstantin Ryabitsev and posted to fedora-devel, which describes those interactions in detail.
Gentoo Weekly Newsletter - Volume 3, Issue 18The Gentoo Weekly Newsletter for the week of May 3, 2004 is out. This week's topics include an article by Grant Goodyear on Daniel Robbins' contribution to Gentoo, an article by Bryan Ostergaard on the tenth BugDay, and more.
Slackware LinuxSlackware current has upgraded Xrender to 0.8.4 and Xcursor to 1.1.2 in XFree86 4.4.0, and qt-3.3.2 and x11-devel-6.7.0 are now in testing. There were also several security issues fixed in both -stable and -current.
New Distributions APAWS Linux with GalleryAPAWS Linux with Gallery is a customized mini Linux distribution that runs mostly in RAM and includes everything you need to run a personal photo repository using Gallery. It is about 40MB in size and is configured with defaults to let you upload photos straight after booting it. A demo version of APAWS 1.0.0, that runs on Windows 2000 or XP, became available May 4, 2004.
arianeariane is a console-only Linux system. It boots from CD-ROM into RAM and does not require a hard disk. It can also be booted from PXE or USB. It can be used for everything a minimal Linux system could be used for. ariane joins the list at version 434/51, released May 1, 2004.
EwrtEwrt is a Linux distribution for the Linksys WRT54G that was forked from the Linksys and Sveasoft code bases. It is designed to meet the needs of open wireless network operators by providing a captive portal based on NoCatSplash and large-scale management functionality on a stable and low-cost platform. The first public release, version 0.2 beta1, became available April 27, 2004.
tinysofatinysofa is an enterprise grade operating system based on the Linux kernel. Optimized for i586 and up, tinysofa aims to be stable, secure, well-supported, easily managed and free. Trustix Secure Linux was used as a base for tinysofa. Version 1.0 was released April 29, 2004. (Thanks to Joe Klemmer)
Tkfp Live ISO! Uploaded to Sourceforge (LinuxMedNews)LinuxMedNews reports the release of a Tkfp Live! .iso image file. This bootable CD contains a configured and working copy of Tkfp running on Slackware 9.0 using WindowMaker as the window manager. Tkfp is an electronic medical record information system suitable for a solo or small group Physician's office for storing clinical information on patients.
Minor distribution updates Astaro Security LinuxAstaro Security Linux has released v5.004 with major bugfixes. "Changes: This Up2Date added functionality to configure the WebAdmin packetfilter logging. It also fixed a DHCP client issue, a DSL reconnect problem, and a POP3 mail retrieving/deleting issue with Outlook Express 6, and corrected problems where the WebAdmin clock always showed GMT, the HTTP proxy restarted too often, and that WebAdmin needed a lot of RAM for large packetfilter rulesets."
Aurox LinuxAurox Linux has released v9.3.1 with minor bugfixes. "Changes: This version is an update release. Some bugs that were found in 9.3 were fixed. The distribution is contained in only two CDs, and it lacks localizations in languages other than English and Polish. The packages of this release are also available via FTP (yum and apt-get)."
BasicLinuxBasicLinux has released v3.20 with major feature enhancements. "Changes: Several enhancements for old laptops, including PCMCIA capability and MagicPoint (similar to PowerPoint)."
Buffalo LinuxBuffalo Linux has released v1.2.1 with minor feature enhancements. "Changes: Ximian Evolution (in the GNOME bundle), GIMP 2.0.1, MySQL 4.0.18, and a Buffalo version of 'swaret-1.6.2' are included. This release includes 55 minor package upgrades to synchronize with Slackware-Current (as of 24 Apr 2004). A 56MB upgrade (upgrade-1.2.1-buff-1.bz2) from 1.2.0 to 1.2.1 is available."
Feather LinuxFeather Linux has released v0.4.1 with major feature enhancements. "Changes: The list of documentation was updated, and the scripts were organized. bcrypt and xmms-cdread were added. Scripts were added to download Audacity and to remove the dpkg structure. A serial mouse option was added to X setup. Monkey was updated to 0.8.2, and the daemon script was changed accordingly. Memory checks were added to some scripts. An error with /opt on bootup was fixed. The dillo homepage was changed. The "xdef" boot option was added. XCDRoast was replaced with Gcombust. libpcap and tcpdump were added. wdict was updated."
Fli4lFli4l (Floppy ISDN/DSL) has released v2.1.7 with minor feature enhancements. "Changes: Kernel 2.4.26 and uClibc 0.9.26 are now used. The RAM disks were replaced by tmpfs. The SSHD now supports TCP forwarding once again. Multiple W-LAN cards are supported, and WEP keys can be entered in a Windows-compatible form. raw-up/raw-down scripts similar to ip-up/ip-down were provided for raw ISDN circuits, and some minor fixes and changes were made."
Franki/Earlgrey LinuxFranki/Earlgrey Linux has released v0.4.11pre1 with minor feature enhancements. "Changes: This disk release is built with latest Scripts (0.4.11) and previews changes in the forthcoming release's init scripts (in particular, a mount point for UMSDOS-formatted floppies in addition to VFAT)."
Linux From ScratchLinux From Scratch has released v5.1-pre2.
Linux LiveCDLinux LiveCD has released v1.9.3 with minor bugfixes. "Changes: This release has a new Webmin Web interface (version 1.140), new Web modules for network configuration and log rotation, and an ndiswrapper driver to use wifi Windows drivers in /opt/drivers. There are minor dbdif config bugfixes."
Linux Netwosix Call for participationLinux Netwosix is seeking additional developers to help maintain and improve its security oriented distribution.
Sentry FirewallSentry Firewall has released v1.5.0-rc12 with major security fixes. "Changes: The Linux kernel was updated to version 2.4.26-ow1. The vsftp and SUSE Proxy-Suite (ftp-proxy) packages were added, and Snort was updated to version 2.1.2. There were also several changes to the rc.inet2 init script, and rc.inet2.conf was added."
Trustix Secure LinuxTrustix Secure Linux has a bug fix advisory for apache, cyrus-imapd, fcron, libpcap, and squid. Updated packages are available for TSL 2.1 and TSEL 2.
Distribution reviews College Linux 2.5 Reviewed (Mad Penguin)Here's a Mad Penguin review of College Linux 2.5. "With a simple setup of username/password at configuration time, Apache, MySQL, PHP, Webmin, SQLite, and phpmyadmin have been installed and configured. This is something that I always set up when I install a new distribution, and it always takes more time than I expect it to (and a lot more time than I'd like it to). College Linux did all the hard work for me, and it was clear sailing for development from that point. I can't stress enough how useful this is to me (and many others) - web development is a very common practice among people who use Linux, especially college students. This, coupled with the inclusion of Quanta Plus, makes a complete web development environment simple for anyone."
Getting Linux into Windows (P2P.net)P2P.net takes a look at Turbolinux 10 F, especially its ability to read Windows Media files its Apple iPod player support. "Among Linux distributors as Linspire (ex-Lindows) or Xandros Inc, Turbolinux emerges as the first to ship a media player that accepts proprietary formats."
Page editor: Rebecca Sobol Development Eclipse brings WebTools back to lifeWith the great help of the Project Proposal Shepherds of Eclipse, the ObjectWeb Consortium has kicked off a new Web Tools Platform Project proposal. The goal of this proposal is to apply the Eclipse standards of technical excellence, functional innovation and overall extensibility to the Web/J2EE application-tooling domain. The full proposal is available online.Following the Eclipse development process, based on the principles of openness and frequent review, the community is invited to join the discussions on the Eclipse Web Tools Platform Project Proposal. During the 30 calendar day review period, the community is invited to comment on, critique, contribute to, and join the project. At the end of the review period (May 27th, 2004), the feedback will be gathered and presented to the Board of Directors. A positive vote by the Eclipse Board will officially launch the project. Web Standard ToolsThe Web Standard Tools subproject aims to provide a common infrastructure to any Eclipse-based development environment, targeting Web-enabled applications. Within its scope will be tools for the development of three-tier (presentation, business and data logic), and server publication of corresponding system artifacts. Outside of its scope will be server-side Java technology, which will be left to the J2EE Web Tools subproject.Tools provided will include editors, validators and document generators for artifacts developed in a wide range of standard languages (for example, HTML/xHMTL, Web services, XQueries, SQL, etc.) Supporting infrastructure will likely comprise a specialized workbench supporting actions such as publish, run, and start/stop of Web application code across target server environments. By providing an integrated set of capabilities, the Web Standard Tools would support use cases such as:
J2EE Standard ToolsThe initial goal of the J2EE Standard Tools subproject will be to provide a basic Eclipse plug-in for developing applications based on J2EE 1.4. The subproject will target J2EE-compliant application servers as well as a generic J2EE tooling infrastructure for other Eclipse-based development products.The J2EE Standard Tools will include an integrated workbench that will provide a framework for developing, deploying, testing and debugging J2EE applications on standards-compliant server environments. It will also provide an exemplary implementation for an open source J2EE Server. Included will be a range of tools for simplifying development with J2EE APIs, including EJB, Servlet, JSP, JCA, JDBC, JTA, JMS, JMX, JNDI, and Web Services. This infrastructure will be architected for extensibility of higher-level development constructs, providing architectural separations of concern and technical abstraction above the level of the J2EE specifications The integrated workbench would support use cases such as:
System Applications Audio Projects ALSA 1.04 releasedVersion 1.04 of the ALSA Sound Driver has been released with this description: "mostly bug-fixes and cleanups".
libfishsound 0.6.1 is outVersion 0.6.1 of libfishsound, a programming interface for the Vorbis and Speex audio codecs, is out. This release features new functions, new test features, and bug fixes.
Planet CCRMA ChangesThe latest changes from the Planet CCRMA audio utility packaging project include new versions of VCO Plugins, the Alsa Modular Synth, MCP Plugins, and Qjackctl.
Database Software PostgreSQL Weekly NewsThe PostgreSQL Weekly News for May 3, 2004 is available.
Filesystem Utilities libgsf 1.9.0 releasedVersion 1.9.0 of libgsf is out. "It's goal is to provide a simple i/o library that can read and write common file types and to handle structured formats that provide file-system-in-a-file semantics (Eg OLE2 or zip)." This high priority release fixes a corruption problem that happens when using gzip and bzip2.
Interoperability Samba 3.0.3 Available for DownloadStable version 3.0.3 of Samba has been released. "There have been several issues fixes since the 3.0.2a release and new features have been added as well."
Networking Tools Firestarter 0.9.3 announcedVersion 0.9.3 of Firestarter, a visual firewall tool for GNOME, is available with lots of changes and bug fixes.
Printing gnome-u2ps 0.0.3 is availableVersion 0.0.3 of gnome-u2ps, a text to postscript converter, is out. "It aims to handle modern codesets and mails that a2ps does not support, and more internationalized than ever."
Web Site Development Rapid Web Application Deployment with MaypoleSimon Cozens has written part two of his O'Reilly series on Maypole. "When we last left our intrepid web developer, he had successfully set up an online sales catalogue in 11 lines of code. Now, however, he has to move on to turning this into a sales site with a shopping cart and all the usual trimmings. It's time to see some of that flexibility we talked about last week; unfortunately this means we're going to have to write some more code, but we can't have everything."You may want to start with part one first.
MediaWiki 1.2.5 released (SourceForge)Version 1.2.5 of MediaWiki is available, and features a number of bug fixes. "MediaWiki is the collaborative editing software that runs Wikipedia, the free encyclopedia, and other projects."
Desktop Applications Accessibility gnopernicus 0.9.1Version 0.91 of gnopernicus, a GNOME desktop screen reader for the blind and visually impaired, is out with a variety of new features.
Audio Applications Rhythmbox 0.8.2 is outVersion 0.8.2 of Rhythmbox, a music playing application, is available, here are the changes: "A number of bug fixes in this release. In particular if you're in a RTL locale you'll really want to upgrade. Also if you like the previous button to work in playlists :)"
Sweep 0.8.3 ReleasedVersion 0.8.3 of Sweep, an audio editor and playback tool, is out. "This is a maintainance release, including a new Spanish translation, various bugfixes and no new functionality."
CAD PythonCAD Release Number 13Release number 13 of PythonCAD is available. "The thirteenth release of PythonCAD is the first release to offer undo/redo abilities. The undo/redo work is in its initial stage, and upcoming releases will enhance the robustness of the code. The long term goal with undo/redo work is to make both as unlimited as possible, but for the first release the functionality works best if only the last action is undone or redone."
Data Visualization JGraph Paris (v3.4) released (SourceForge)Version 3.4 of JGraph, a cross-platform graph component for Java, has been released. JGraph is used for plotting networks of objects. "This release can handle overlapping edges, and has static inner handles for better subclassing. Among other minor API changes some control methods were moved to the handles."
Desktop Environments COnfigurator for Gnome 0.7.1Version 0.7.1 of COnfigurator for Gnome is out with several minor improvements.
KDE-CVS-Digest (KDE.News)The April 30, 2004 edition of the KDE-CVS-Digest is available. Here's the content summary: "KDE Bluetooth improves Device Discovery Service. Kopete has a new history browser. Optimizations in K-menu drawing and Kmail POP fetching. Kdebindings adds a graphical tool with wizards for generating bindings. KMail adds support for Annoyance-Filter anti-spam tool."
Kexi 0.1 Beta 3 AnnouncementVersion 0.1 beta 3 of Kexi, an integrated data management environment for KDE, has been announced. "New features include improved table designer and data table view, more consistent GUI features, and more."
Games GNOME Music Quiz 0.1 announcedVersion 0.1 of GNOME Music Quiz is available. "GNOME Music Quiz is a game similar to the television show 'Name That Tune' where players hear part of a song from their Rhythmbox music library and have to identify it by title/artist or album. The faster they identify a song the more points they recieve."
GNOME War Pad 0.2.13 releasedVersion 0.2.13 of GNOME War Pad, a multi-player VGA Planets space strategy game client, is out.
Graphics Dia 0.93 released (GnomeDesktop)Version 0.93 of Dia, the diagram creation program, has been announced. "Of major importance in this release are improvements in text rendering speed by caching PangoContexts, and the use of font-config on the Win32 side, allowing unified font handling across platforms and antialiases rendering on Win32."
GUI Packages gtkmm and glibmm 2.4.1 announcedVersions 2.4.1 of gtkmm and glibmm are available with support for gcc 3.4.0 and bug fixes.
GTK+-2.4.1 releasedVersion 2.4.1 of GTK+, a toolkit for creating graphical user interfaces, is out. "This is a bug fix release and is source and binary compatible with 2.4.0. There are a considerable number of fixes in this release as compared to 2.4.0, especially in the areas of GtkFileChooser, GtkComboBox and GtkEntryCompletion."
GLib-2.4.1 releasedGLib version 2.4.1 is available. This release features bug fixes, new documentation, and updated translations.
Glade 2.5.0 releasedVersion 2.5.0 of Glade, a gtk-based GUI generator, is available with bug fixes, initial support for gtkmm 2.4, and more.
Bakery 2.3.3 announcedVersion 2.3.3 of Bakery, a C++ Framework for creating document-based GNOME applications, is out with code cleanups and bug fixes.
Imaging Applications GIMP Animation Package version 2.0.1 ReleasedVersion 2.0.1 of gimp-gap, the GIMP Animation Package, has been announced. "gimp-gap 2.0.1 is a bug-fix release of the GIMP Animation Package, a collection of plug-ins to extend GIMP with capabilities to edit and create animations."
Instant Messaging xchat-gnome-0.1 ''Doctors are Standing By'' (GnomeDesktop)Version 0.1 of xchat-gnome-0.1, an IRC Client, has been announced. This is the first preview release. "xchat-gnome is a new branch of the xchat IRC client, aiming toward a revised and GNOME HIG-compliant UI while still taking advantage of robust and powerful xchat core. The most obvious change awaiting users familiar with the venerable Gtk+ frontend will be the new tree-based navigation".
Mail Clients Mozilla Thunderbird 0.6 RC2 Now Available (MozillaZine)Release candidate 2 for Thunderbird 0.6 has been announced. "Our hopefully final set of Thunderbird 0.6 candidate builds are available for testing on all platforms. We could use help testing these bits to help find any last minute issues as we come down the final stretch for this release."
Mozilla Thunderbird 0.6 Released (MozillaZine)Version 0.6 of the Mozilla Thunderbird email and newsgroup application is available. "Thunderbird 0.6 has taken flight! Some of the more promiment features include a new Windows installer, Pinstripe theme for Mac OS X, new artwork, improved junk mail controls, new mail notification in the system dock for Mac OS X, server-wide news filters and a slew of other new features."
Music Applications MusE release 0.7pre2Release 0.7pre2 of MusE, the Linux Music Editor, is out with lots of new features and some bug fixes.
Office Applications eGroupWare 1.0 RC5 released (SourceForge)Version 1.0 RC5 of eGroupWare, a multi-user, web-based groupware suite, is available. "Currently available modules include: email, addressbook, calendar, infolog (notes, to-do's, phone calls), content management, forum, bookmarks, wiki. eGroupWare RC5 is the next step to the final 1.0 release. Many people wait for the upcoming 1.0. The developers work hard to fix the last bugs."
Gnumeric 1.2.12 releasedGnumeric 1.2.12 has been released. The announcement describes 1.2.12 as a "high priority" release; it seems that earlier versions can create .xls files which crash Excel.
Office Suites KOffice 1.3.1 Released (KDE.News)Version 1.3.1 of KOffice has been announced. "The KOffice team is happy to bring you the first bugfix package that builds upon the successful 1.3 version, adding even more enhanced OpenOffice.org import and export filters, improved spellchecking with ispell, fixes in hyphenation and many more."
ooo-build 1.1.54 releasedbuild 1.1.54 of OpenOffice.org is available. "This package contains the Gnome integration work for OpenOffice.org, and a much simplified build wrapper, making an OO.o build / install possible for the common man. It is a staging ground for up-streaming patches to OO.o. This release is mostly a snapshot of the (in-progress) merge of the SuSE patch-set, and adding a SuSE build target / distro etc."
Web Browsers Epiphany 1.2.5 ReleasedVersion 1.2.5 of Epiphany, a browser for GNOME, is out. This release has bug fixes, more translations, and improved documentation.
Mozilla Links NewsletterThe May 3, 2004 edition of the Mozilla Links Newsletter is available with the latest news of the Mozilla browser and related software.
Miscellaneous gnubiff 1.2.0 is outVersion 1.2.0 of the gnubiff mail notification program is out with bug fixes and support for multiple mail boxes.
IMDbPY 1.2 releasedVersion 1.2 of IMDbPY, a Python package that can retrieve and manage information from the IMDb movie database, is out. "With this release it's possible to retrieve almost every available information about movies and persons. Many bugs where fixed. Introduced a test suite."
Languages and Tools C# The first Mono beta releaseThe first beta version of Novell/Ximian's Mono .NET implementation is available; see the release notes for the details. There's a lot of stuff there, including a C# compiler, the runtime virtual machine, support for several architectures, various database adaptors, a "complete cryptography stack," Apache integration, and more. Regardless of whether one agrees with Mono's goals, it looks like an impressive body of work.
Caml Caml Weekly NewsThe April 27 - May 4, 2004 Caml Weekly News is available for the week's roundup of Caml language discussions.
CamlmixA Caml language project called Camlmix has been launched. "Camlmix is a command-line tool for preprocessing any kind of file using Objective Caml as an embedded language for inline expansion."
Java Seven Low-Cost Ways to Improve Legacy Code (O'ReillyNet)Robert Simmons, Jr. explains some techniques for dealing with legacy Java code on O'Reilly. "This article presents seven techniques I've developed and used in my consulting work that are designed to improve legacy code. You can apply some of these techniques using either freely available tools or with scripts. You'll apply the others manually, but they shouldn't represent a significant investment in time. Be forewarned, however, that all of these techniques may reveal other issues in the code base, such as hidden bugs, which could take a significant amount of time to fix."
gnome-gcj 0.18.0 releasedversion 0.17.0 of Gnome-GCJ, an alternative set of Java bindings for GNOME, is available. "Gnome-GCJ 0.18.0 introduces a small demo application (to become extended) and both wrappers for libglade and gsf."
Java authorization internals (IBM developerWorks)Abhijit Belapurkar explains Java authorization on IBM's devloperWorks. "If you're the type who needs to know how a technology works from the inside out in order to use it effectively, you'll jump on this guided tour of the Java platform's authorization architectures. Follow along as Java architect Abhijit Belapurkar leads this detailed, behind-the-scenes introduction to two distinctly different (yet related) models of authorization: the code-centric model of the Java 2 platform security architecture and the user-centric model of the Java Authentication and Authorization Service."
Lisp SLIME project status reportA status report is available from the SLIME (Superior Lisp Interaction Mode for Emacs) project.
Perl This Week on perl5-porters (use Perl)The April 26 - May 2, 2004 edition of This Week on perl5-porters is online. "This week, our p5p summary will describe a lot of little bugs, some of which were fixed, some of which weren't, in a lot of different areas of the perl interpreter."
This Week on Perl 6 (O'Reilly)The April 29, 2004 edition of This Week on Perl 6 has been published. "And we're back on a weekly schedule again (unless the Mayday bank holiday knocks me for six next week). As I expected, the Apocalypse has brought out a rash of prophets and prognosticators in perl6-language, but perl6-internals is still ahead on number of messages per week."
Python Dr. Dobb's Python-URL!The May 3, 2004 edition of Dr. Dobb's Python-URL! is available with a new round of Python article links.
Imagine Python (Dev Shed)Mark Lee Smith explores image manipulation with Python in a Dev Shed article. "Quite a cryptic title, but if you havent guessed, were talking about Images. This being a Python article thats what we're using! If youve never thought about it, or -- even better -- if you didnt know it was possible then youre in for a nice surprise; not only can Python do this but its pretty good at it, too. Actually, Python works well with graphics in general, but for now were sticking to the 2D kind."
Tcl/Tk Dr. Dobb's Tcl-URL!The May 3, 2004 edition of Dr. Dobb's Tcl-URL! is available with more Tcl/Tk information and news.
XML Practical data binding: Get your feet wet in the real world (IBM developerWorks)Brett McLaughlin discusses data binding on IBM's developerWorks. "Data binding, although commonplace in today's world of Java technology and XML programming, is still largely misunderstood. This column throws out all the theoretical claptrap and focuses on the concepts you need to get started with data binding. You will understand the differences between general data binding and data binding in the XML world, as well as round-tripping, semantic equivalence, and what to look for in a data binding package."
UBL: A Lingua Franca for Common Business Information (O'Reilly)Dale Waldt introduces UBL on O'Reilly. "The Universal Business Language ( UBL) is a language for capturing business information for use in integrating business systems and sharing data with trading partners. UBL was designed from the beginning to leverage the many vocabularies and experiences available in existing systems using EDI (Electronic Data Interchange), ebXML (Electronic Business XML), and other XML and Web-based e-commerce systems."
Test Suites STAF V2.6.2 is now available (SourceForge)Version 2.6.2 of STAF, the Software Testing Automation Framework, is out with several bug fixes. Version 3.0.0 Beta 2 is also available. "The Software Testing Automation Framework (STAF) is a framework designed to improve the level of reuse and automation in test cases and test environments. The goal of STAF is to provide a complete end-to-end automation solution for testers."
Miscellaneous Do As They Need, Not As They Say (O'Reilly)Jeff Lowery writes about software transition issues on O'Reilly. "In this article, I would like to address some of the difficulties involved in replacing an existing client system with a completely new one. Having gone through this process several times in my career, there are some lessons I have learned that can make this transition easier for the end user. The key is not to take an initial set of requirements at face value, but to work with the future users of the new system (in conjunction with their management) to make sure what's delivered is what's needed."
Page editor: Forrest Cook Linux in the news Recommended Reading Linux lacks testing methodologies (NewsForge)NewsForge covers efforts at OSDL to get application vendors to test their products, and to share both methods and results. "OSDL lab manager and open source test-giver Tim Witham is on a mission to push Linux performance testing to higher-level, real-world applications, to produce reliable, retestable, comparable data that will let users compare the operating systems or open source applications in a transparent fashion."
Plugging the Linux holes (News.com)News.com perceives a lack of applications for desktop Linux. "Linux applications are a "which came first, chicken or egg" situation for most major application sellers. There's not enough of a user base now to justify development of Linux products, but the absence of familiar applications slows growth of the Linux user base."
The Importance of Linux (linux.com)Linux.com presents an article by the author of Advanced UNIX Programming. "Of course readers of a book learn from it, but authors learn from writing it, too. One of the most surprising things I learned from writing the second edition of Advanced UNIX Programming was how good Linux really is."
The SCO Problem SCO's answer to IBM's second amended counterclaims (Groklaw)Groklaw has a text version of SCO's answer to IBM's second amended counterclaims, along with some commentary from PJ. "This is the happy day that SCO acknowledges by its actions -- although it failed to put out a press release -- that the GPL isn't unconstitutional after all.... They do still claim the GPL is void or voidable, that it is unenforceable, and that the FSF selectively enforces it, so not all the silliness is gone. But they have tucked tail and begun to back down. They are getting their PhD in the GPL, and in time it will gradually dawn on them that they are wrong about all the rest too."
DaimlerChrysler's response to SCO (Groklaw)Groklaw has posted a text version of DaimlerChrysler's response to SCO's complaint. It is short and sweet, as these things go. "Defendant DaimlerChrysler Corporation respectfully requests that this Court dismiss Plaintiff's Complaint with prejudice, award DCC its costs and attorney's fees as may be permitted by law, and grant such other relief as may be appropriate." (See also: this table which puts the complaint and the responses side by side).
SCO cuts jobs to reach product profit (News.com)News.com reports that the SCO Group has laid off a batch of employees. "The cuts took place at the end of the company's second fiscal quarter and were part of its goal 'of trying to be profitable within our core business'--selling the UnixWare and OpenServer Unix products..."
Companies Google files for unusual $2.7 billion IPO (News.com)News.com takes a look at Google's IPO plans. "In an unusual provision for a technology company, Google will create two classes of shares with different voting rights, a move that aims to guarantee that founders Sergey Brin and Larry Page will maintain decision-making authority. Such structures have proved beneficial in media companies such as The New York Times, the filing states."
Google Prepares Very Creatively to IPO (Groklaw)Here's Groklaw's take on the Google IPO. "If you think they are dewy-eyed innocents, consider that last year, "Google made almost a billion dollars in revenues in 2003, and earned about $100 million on those revenues. It looks like the technology is yielding significant returns on investments that have gotten them to the point where they are sitting on almost half a billion dollars in cash.""
Microsoft's Ballmer: "Linux Requires Our Concentrated Focus and Attention" (LinuxWorld.com)LinuxWorld.com reports on a memo sent to Microsoft employees by CEO Steve Ballmer. "In this environment of lean budgets and concerns about Microsoft's attention to customers, noncommercial software such as Linux and OpenOffice is seen as an interesting, 'good enough' or 'free' alternative."
Red Hat gains security certification (News.com)News.com reports on the EAL2 security certification of Red Hat Enterprise Linux 3. "Version 3 of Red Hat Enterprise Linux has been certified to meet Evaluation Assurance Level 2 (EAL2) of the Common Criteria certification, Red Hat said Thursday. The internationally recognized Common Criteria certification is a typical requirement for government customers. However, Red Hat still lags its main rival, Novell, whose SuSE Linux has been certified to the more stringent EAL3. It also trails versions of Unix and Windows that have EAL4 certification."
Business Red Hat Introduces Desktop Linux Competitor (eWeek)eWeek looks forward to Red Hat's upcoming desktop announcement. "Pricing for the new desktop will take two forms: for $2,500 a year, customers will receive a Red Hat Network Proxy starter pack that contains a Red Hat Network Proxy server, including Red Hat Enterprise Linux Advanced Server Premium, and 10 kits each of desktops and desktop management modules. It will include 30 days of phone support and one year of Web-based support." There's also an expensive option.
Interviews Analyst Stacey Quandt on the future of Linux (IBM)The IBM Linux Portal has an interview with industry analyst Stacy Quandt. "Within the next three years I believe Linux will overtake Windows as the number one operating system based on new server shipments. Another milestone to watch for is when Linux gains enough momentum on the desktop to pull in more ISVs. Theres the potential for a lot of innovation that could take place in user space applications on Linux. The desktop is Microsofts last stronghold in the market. So theres a lot of potential for Linux to become a much stronger play there."
Sun considers GPL license for Solaris (InfoWorld)InfoWorld talks to Jonathan Schwartz, president and COO of Sun. "Though Sun executives have been cool on the GPL in the past, Schwartz said there was "not a lot" preventing Sun from releasing Solaris under the GPL. It would offer support contracts as an option, in a model similar to that of Red Hat Inc. "We view the GPL as a friend. Remember, (Sun) was built off of BSD and the BSD license," he said, referring to the open-source Berkeley Software Distribution license." (Thanks to Jingmin (Jimmy) Zhou)
Red Hat's Szulik sees desktop Linux take off (ComputerWorld)ComputerWorld interviews Red Hat CEO Matthew Szulik. "And when you look at the computing you and I will be using over the next 10 years, we won't have software resident on our hard drive. You'll go to somebody -- it may well be Red Hat -- and you'll get an e-mail package, a calendaring function, and it will be a subscription-based Web service. It's not that far away; look at what people do with their cellular phones today."
Resources Switching from Internet Explorer to Mozilla for Enterprises (MozillaZine)MozillaZine points to an article on changing from Microsoft's IE browser to Mozilla. "Nigel McFarlane, SearchEnterpriseLinux.com's resident Mozilla specialist, offers advice on how to avoid potential pitfalls and discusses whether businesses should migrate to the Mozilla Application Suite or Mozilla Firefox and Mozilla Thunderbird."
Zap Annoyances on the Web (Linux Journal)Linux Journal takes a look at how to make web browsing more fun and less annoying in a two part article. Part 1 shows how to configure the Mozilla browser and set up squid as a proxy server to get rid of some annoyances. Then in part 2 see how AdZapper can be used to block many ads and Web bugs.
Reviews CinePaint: The GIMP Goes Hollywood (O'ReillyNet)O'ReillyNet examines CinePaint. "CinePaint started as a development version of The GIMP, sponsored by the film industry in 1998. The GIMP evolved in a different direction, though, and The GIMP team abandoned the code to languish in CVS. As an example of what CinePaint developers call the "Lazarus effect," useful open source projects never need to die. Though Film GIMP never saw a public release, the current CinePaint team came together, resurrecting and renaming the project. Development continues to this day."
coLinux: Linux for Windows Without Rebooting (O'ReillyNet)O'ReillyNet explores coLinux. "What if you want to run GNU/Linux atop a Windows platform or try Linux without installing it on a partition itself, thereby preserving -- and not even rebooting -- your Windows system? Don't worry; VMware and Virtual PC are not your only choices. A new free software project called coLinux, or Cooperative Linux, lets you do nearly everything User-mode Linux does on Windows 2000 or XP."
Free Software's new audio heir apparent (NewsForge)NewsForge takes a look at Rhythmbox. "Rhythmbox is comparable to Apple's iTunes in that it concentrates on organizing your music collection and making it easier to navigate through it. It is not intended to be an eye-candy skinnable player that goes hand in hand with dark rooms, black lights, and glow sticks. The program has advanced playlist functionality which reads the identification tags of MP3, OGG, and other formats playable by the up-and-coming GStreamer -- a powerful open source multimedia framework multimedia framework."
Star Office, Ready For the Big Time? (IT-Director)IT-Director.com reviews version 7 of StarOffice. "Star Office is already very popular and has become something of a standard on Linux PCs often in the guise of Open Office, its open source brother. Sun acquired Star Division GmbH 5 years ago, with the clear intention of competing directly with Microsoft. It has taken time for Sun to establish a competitive position though. Star Office never got strong reviews until version 6, which debuted in early 2002. It is just now in version 7, which is attracting even more attention because of the quality of the release."
Cooking with Linux does SuperKaramba (Linux Journal)Linux Journal's Cooking with Linux series looks at SuperKaramba. "Desktop wallpaper is interesting enough, but dynamic applications can be put on the desktop as well. For instance, imagine a monitor for CPU usage, disk space and network activity floating transparently on your desktop, constantly being updated. If this sounds interesting, get your hands on Adam Geitgey's SuperKaramba. " (Found on KDE.News)
First Geronimo code released, cert tests set for May (NewsForge)NewsForge covers the release of Geronimo Milestone 1.0, an open source J2EE project from Apache. "Geronimo's milestone release is a wakeup call for Java/J2EE devs who thought Geronimo's open source J2EE 1.4 stack was a far-off dream. The release is also a signal to J2EE CIOs/devs who are concerned about the high cost and complexity of commercial J2EE app servers, that open source options may be closer than they thought."
Miscellaneous Reboot Linux faster using kexec (developerWorks)developerWorks looks at the kexec patch. "Kexec is a patch to the Linux kernel that allows you to boot directly to a new kernel from the currently running one. In the boot sequence described above, kexec skips the entire bootloader stage (the first part) and directly jumps into the kernel that we want to boot to. There is no hardware reset, no firmware operation, and no bootloader involved. The weakest link in the boot sequence -- that is, the firmware -- is completely avoided. The big gain from this feature is that system reboots are now extremely fast." (LWN also looked at kexec in November, 2002).
Page editor: Forrest Cook Announcements Non-Commercial announcements Customize.org Invites the KDE Community (KDE.News)KDE.News has announced an invitation for KDE to join Customize.org. "Recently Customize.org, one of the original desktop customization sites on the Web, has added some sections for KDE skins, themes and art such as cursors for general X11. We'd like to invite the KDE art community to submit their work to our site. By attempting to bring GNOME, KDE, and Windows artists together under one roof, we hope that we can increase porting and cooperation among all the communities."
Free search engine software gains popularityA press release promotes the Xapian search engine: "Xapian, licensed under the GNU General Public License (GPL), is free software originally developed at Brightstation PLC as a replacement for Muscat, the first commercial probabilistic search engine. When Brightstation ceased trading in 2001 some of the team that created Xapian decided to continue developing the software and it is available for free download at www.xapian.org. After three years of subsequent development Xapian is now available for Solaris, Unix, Linux and Windows platforms and is mature and stable with a highly active developer community."
OpenEMR - An IBM Global Partner (LinuxMedNews)OpenEMR, an open source electronic medical record and practice management application, has been accepted into IBM's Global Solutions Directory. "IBM's Global Solutions Directory is an online directory containing thousands of applications, tools and services from IBM and IBM Business Partners."
Commercial announcements Concurrent Announces iHawk Real-Time Linux Systems Powered By AMD Opteron Processor-Based Servers From CelesticaConcurrent Computer Corporation has announced the availability of 64 bit versions of its iHawk Series 870 systems running Linux.
Green Hills Software strikes againGreen Hills Software continues its FUD campaign with a "white paper" entitled "Linux Security: Unfit for Retrofit." It's a piece of work. "Publishing the source code for the operating systems used in our most critical defense systems is analogous to publishing the wiring diagrams for our military base security systems. Our enemies will be able to study the vulnerabilites [sic] of the software controlling our defense systems at their leisure.... Many people argue that open source programs are inherently more secure than 'proprietary' programs because publishing the source code for the program enables many people to look at the source code and find any vulnerabilities in it. This is based on the misconception that looking at the source code is an effective means of finding vulnerabilities, which it is not."
National Retail Federation trashes SCO suitThe National Retail Federation, "the world's largest retail trade association," has put out a press release stating its belief that SCO's lawsuits are unfounded. "NRF expects that retailers who use Linux will survive the current litigation."
New Books Python Success Stories, volume IIO'Reilly & Associates has agreed to print a second volume of Python Success Stories and the search is on for new stories.
"Linux Unwired" Released by O'ReillyO'Reilly has published the book Linux Unwired by Roger Weeks, Edd Dumbill, and Brian Jepson.
"Learning Red Hat Enterprise Linux & Fedora, Fourth Edition" Released by O'ReillyO'Reilly has published the fourth edition of Learning Red Hat Enterprise Linux and Fedora by Bill McCarty.
Resources 2004 Posix 1003.1 Standard PublishedThe 2004 Posix 1003.1 Standard has been published. "This latest edition incorporates the recently published Technical Corrigendum 2. The specifications are freely available in html."
Contests and Awards LinuxUser & Developers Expo Awards Recognize Arkeia as Top Data Storage SolutionArkeia Network Backup was selected Best Data Storage Solution at the prestigious LinuxUser & Developer Awards announced in London last week.
Event Reports open source and health informatics thinktank report (LinuxMedNews)LinuxMedNews has announced the publication of a report from the Open Steps thinktank meeting that was held on February 2004 in Winchester, UK. "The main purpose of the Marwell Open Steps meeting was - to identify key issues, opportunities, obstacles, areas of work and research that may be needed, and other relevant aspects, around the potential for using open source software, solutions and approaches within health care, and in particular within health informatics, in the UK and Europe."
X Developer's Meeting (GnomeDesktop)Federico Mena-Quintero's web log has ongoing coverage of the X Developer's Meeting in Cambridge, Massachusetts. ( Found on GnomeDesktop.org.)
Upcoming Events KDE Community World Summit Registration Now Opened! (KDE.News)Registration has been announced for the KDE Community World Summit. The event will take place from August 21-19, 2004 in Ludwigsburg, Germany.
LinuxWorld Conference & Expo Keynotes to Spotlight Customer Success StoriesIDG World Expo has announced the keynote line-up for LinuxWorld Conference & Expo, which will take place August 2-5, 2004 at the Moscone Center in San Francisco. Executives from Red Hat, HP, Oracle, IBM and BEA Systems will be joined by customers who will provide examples and describe the real-world benefits of Linux and open source.
Opensource Software in Health Care Symposium (LinuxMedNews)Linux Med News has an announcement for the Opensource Software in Health Care Symposium. "On Tuesday morning May 11/2004 opensource developers and enthusiasts in health care will convene at the University of Toronto for a 1/2 day workshop on Opensource Systems in Health Care. The workshop is part of a 3-day conference entitled Opensource and Free Software: Concepts, Controversies and Solutions presented by the Knowledge Media Design Institute at the University."
OLS early registration deadlineA reminder has been sent out from the folks at the Ottawa Linux Symposium, early registration discounts are ending soon.
Software Patents in Europe - action weekThe Free Software Foundation Europe and the Foundation for a Free Informational Infrastructure are endorsing an action week from May 10th to 14th to inform citizens, economy and politics about the harmful consequences of software patents.
Events: May 6 - July 1, 2004
Web sites MozillaZine Update (MozillaZine)The folks at MozillaZine have posted a site update. "First, we're proud to announce that the forums, which are roughly a year and a half old, have now reached 40,000 members, and over 500,000 posts. They have become the main venue for users and developers alike, and have also become one of the more valuable support resources in the community."
OldLinux.orgHere's a website for history buffs. OldLinux.org seeks to collect all the materials related to the ancient Linux for historic testimony and rebuild the oldest Linux systems. You'll also find an ebook (in Chinese), A Heavily Commented Linux kernel Source Code - (Kernel 0.11). [Thanks to Jingmin (Jimmy) Zhou]
Software announcements This week's software announcementsHere are the software announcements, courtesy of Freshmeat.net. They are available in two formats:
Page editor: Forrest Cook
|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
![[XFig]](/images/ns/grumpy/xfig-sm.png)
![[Tgif]](/images/ns/grumpy/tgif-sm.png)
![[OpenOffice]](/images/ns/grumpy/ooffice-sm.png)
![[Karbon14]](/images/ns/grumpy/karbon2-sm.png)
![[Dia]](/images/ns/grumpy/dia-sm.png)