Notices by Jarkko Sakkinen (jarkko@social.kernel.org)
-
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Wednesday, 20-Nov-2024 18:36:38 JST 
Jarkko Sakkinen
@krzk lol did not know i was a "tested-by regular" ;-) not in this stats but looked few older and seems to be that it is my the most common list. -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Tuesday, 29-Oct-2024 09:08:24 JST
Jarkko Sakkinen
I need to visit local museum and go to see the first IRC server and ask for guidance in this misguided world (the first ever is 400 m away from my home door, i.e. living at a holy place). -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Tuesday, 29-Oct-2024 09:08:23 JST
Jarkko Sakkinen
E.g. I get room keys as a security feature. I did read the Matrix spec. But IRL I find myself carrying USB stick from computer to another in order to have anything readable if a room is encrypted. I.e. I can either use recovery key or authorization request to activate a client but it gets you only hafl-way there.
This makes me feel that UX was designed to fit the security features and not other way around. And if you talk to a Matrix cult member they will say to you that you're not getting it. -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Tuesday, 29-Oct-2024 09:08:23 JST
Jarkko Sakkinen
I miss the 90s, IRC and Polish hacking groups bombing IRCNet with regular netsplits :-) And who needs security when you have OTR (innovation from 2004).
In software security a protocol built without security is easier to guard than a protocol with "security features". IRC has this right too. I feel that this some annual thing to praise the IRC and hate the world 🤷 -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Tuesday, 29-Oct-2024 09:07:49 JST
Jarkko Sakkinen
After having to use Matrix for a while and seeing how bad Slack and Discord are, I wish there was a criminal law that would allow IRC only for IM. Steady performer, zero fucks. #IRC -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Thursday, 05-Sep-2024 02:46:27 JST
Jarkko Sakkinen
@hgfernan I'm not going to agree on anything since you are talking about stuff that can be plain observed. There is no topic to debate here. -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Thursday, 05-Sep-2024 00:40:49 JST
Jarkko Sakkinen
@hgfernan So for example:
https://openhub.net/p/firefox/analyses/latest/languages_summary
Native ("non-XUL") code covers 49.1% so Rust's share is slightly better but I think I got it roughly correct ;-) -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Thursday, 05-Sep-2024 00:40:48 JST
Jarkko Sakkinen
@hgfernan Openhub from Synopsys is super useful for doing this type of comparisons. -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Thursday, 05-Sep-2024 00:05:36 JST
Jarkko Sakkinen
Firefox has been using Rust since 2017 and about fifth of its code that was previously in C/C++ has been written in Rust (see Oxidation sub-project).
I'd expect slower cycle for Linux than Firefox. I think this would be likely truth for operating system with decades of legacy (e.g. BSD derivatives).
This makes me think that making any conclusions after two years is simply not a pragmatic mindset.
#rust #linux #kernel -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Thursday, 16-May-2024 03:22:08 JST
Jarkko Sakkinen
"No Arduino! If you aim to master embedded systems, Arduino won’t cut it. It’s a playground for hobbyists, not the battleground for engineers. The purpose is not to scare you — It’s to help you out. It is to give you a proper direction." -https://medium.com/@umerfarooqai/embedded-engineering-roadmap-say-no-to-arduino-a0eed8e1bf10
Well, that at least scares me. How I think is that one should take the simplest possible tool to get a PoC.
Otherwise, all energy might be consumed in useless and pointless battles. Conserving energy, prioritizing and picking the right battles is what engineers IMHO do.
#arduino #engineer -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Saturday, 11-May-2024 03:52:54 JST
Jarkko Sakkinen
@jmorris https://rme-audio.de/babyface-pro-fs.html -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Saturday, 11-May-2024 03:52:54 JST
Jarkko Sakkinen
@jmorris off-topic but i have this sound card called "RME BabyFace Pro FS". it has pretty cool idea for FPGA's: the mixer is an FPGA. With this topology it can reach 1 ms latency for audio. And i.e. a firmware update contains also potentially update for the FPGA. Pretty clever hybrid approach IMHO.
Before I got this sound card I was not really sure where application wise it would make sense to have e.g. a SoC combined with FPGA but this product made me understand it a bit better.
I also own one small lattice FPGA. As soon as I get an idea how to use it e.g. with RPi for similar hybrid thing I'll definitely will PoC something. Lattice's have the benefit of having open source FPGA stack and since I also have a SoC FPGA does not have to have too many logic ports. -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Wednesday, 01-May-2024 13:08:54 JST
Jarkko Sakkinen
Rust performance book: https://nnethercote.github.io/perf-book/
#rustlang -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Monday, 04-Dec-2023 13:22:45 JST
Jarkko Sakkinen
James Bottomley posted new version of the #HMAC encryption patches for #TPM2: https://lore.kernel.org/linux-integrity/20231127190854.13310-1-James.Bottomley@HansenPartnership.com/T/#t
I spent some time refactoring the tpm_buf changes because they were the major glitch for me in the earlier versions, and those patches have been included now to this series, which is of course great. The series is probably rather sooner than later ready for inclusion to the mainline.
This adds up to the TPM2 sealed hard drive encryption by mitigating bus interposers by a factor. An interposer anything interface the traffic between the CPU and a discrete TPM chip (i.e. not firmware TPM).
A bus interposer can reset a TPM and replay PCR’s as the chip returns to its initial state including PCRS. To mitigate this, kernel creates HMAC session for each TPM transaction and derives session key from the so.called null hierarchy, which essentially provides a new random seed per TPM reset.
Therefore, interposer’s ability to reset TPM decreases because kernel will not be able to communicate with the TPM and that way indirectly a malicious act can be detected by far better chances than ever before.
IMHO, this fits quite nicely to the stuff that #OpenSUSE and #Ubuntu have been working on lately.
-
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Monday, 04-Dec-2023 13:22:44 JST
Jarkko Sakkinen
Hope everyone noted that I used words "mitigate" and "decrease", not e.g. "address" or "protect from" :-) Security is (and always has been) all about making breaking in expensive and visible enough to the level that the price is too high than the value of the asset protected. It is not that much different from physical world where you decide which sort of locks, doors etc. your house needs so that no one wants to rob your property. -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Monday, 04-Dec-2023 10:29:06 JST
Jarkko Sakkinen
I switched to #helix editor because three advantages weight me more than disadvantage of having to learn away for #vim shortcuts:
- Too much legacy.
- Too many plugins.
- It is a varying challenge to install the latest version #neovim, which anyway needs to be done in order not to break init.lua (and that big pile of plugins).
So for the price of few weeks inconvenience I can stop spending time on text editor configuration and/or figuring out on how to install it.
I used #vim and later on neovim fo the period 1998-2023, even before using Linux. I switched to vim in MS-DOS from text editor called #QEDIT :-)
-
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Friday, 17-Nov-2023 01:37:14 JST
Jarkko Sakkinen
Installing #rustup:
alias rustup="curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | bash -s --"E.g.
rustup --no-modify-pathJust though that good to write this up since I see some distributions packaging rustup, which makes no sense (for #rustc and #cargo it does for obvious reasons).
It is also totally safe to run rustup this way kudos to the amazing #TLS 1.2.
-
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Friday, 10-Nov-2023 03:05:53 JST
Jarkko Sakkinen
@jmorris My inital guess was no but then I googled a bit and found https://dev.to/kgrech/five-simple-steps-to-use-any-arduino-c-library-in-a-rust-project-1k78 -
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Friday, 10-Nov-2023 02:40:44 JST
Jarkko Sakkinen
I’d consider rewriting it with Rust and adr-hal.
-
Embed this notice
Jarkko Sakkinen (jarkko@social.kernel.org)'s status on Friday, 15-Sep-2023 02:20:53 JST
Jarkko Sakkinen
#TPM backed full disk #encryption in #Ubuntu: https://ubuntu.com/blog/tpm-backed-full-disk-encryption-is-coming-to-ubuntu #Linux
All GNU social JP content and data are available under the