Tux Machines

Do you waddle the waddle?

Other Sites

LinuxGizmos.com

Shuttle XB860G2 and XH810 Slim Systems Arrive with Intel Core Ultra 200 CPUs

Both models use the LGA1851 socket and support Intel Core Ultra 200 series processors (Arrow Lake-S) with up to 65 W TDP. Each system supports up to 96 GB of DDR5-5600 memory across two SO-DIMM slots and includes integrated Intel Xe graphics with multi-display support.

ELM11-Feather Board with 70 MHz MCU, Lua, and Hardware Overlay Support

The system is built around a microcontroller operating at up to 70 MHz and includes 1 MB of RAM. Programs are stored in internal flash memory, with the architecture supporting configurable hardware elements through a hardware overlay mechanism that defines CPU behavior, timers, and peripheral routing.

PiDP-1 Replica Recreates PDP-1 Computer Using Raspberry Pi

The system is part of the PiDP series of historical replicas, which includes earlier PDP-8, PDP-10, and PDP-11 recreations. Unlike previous models, the PiDP-1 places more emphasis on interactive graphics, early video games, and hands-on programming.

9to5Linux

GStreamer 1.30 to Support HDR10+ Metadata Parsing from H.265 & AV1 Bitstreams

GStreamer 1.30 promises support for parsing HDR10+ metadata from H.265 and AV1 bitstreams, Opus audio support for F32 and S24_32 samples and 96kHz sample rate, rtspsrc2 authentication support, a new VA-API overlay compositor, and Bayer support for the QuickTime demuxer.

Systemd-Free antiX 26 Linux Distro Is Here Based on Debian 13 “Trixie”

Based on the latest and greatest Debian 13 “Trixie” operating system series, antiX 26 is powered by the long-term supported Linux 6.6 LTS kernel series and features the IceWM (default), Fluxbox, JWM, and herbstluftwm window managers, and the runit (default), SysVinit, dinit, s6-rc, and s6-66 init systems.

mimmutable() for OpenBSD

posted by Roy Schestowitz on Dec 22, 2022

Virtual-memory systems provide a great deal of flexibility in how memory can be mapped and protected. Unfortunately, memory-management flexibility can also be useful to attackers bent on compromising a system. In the OpenBSD world, a new system call is being added to reduce this flexibility; it is, though, a system call that almost no code is expected to use.

[...]

A call to mimmutable() will render the mapping of the len bytes of memory starting at addr immutable, meaning that the kernel will not allow any changes to either the memory protections or the mapping in that range. As a result, system calls like mmap() or mprotect() that would affect that range will, instead, fail.

At first glance, mimmutable() looks similar in spirit to OpenBSD's pledge(), which restricts the system calls that the calling process may use. But, while pledge() calls appear in numerous programs in the OpenBSD repository, mimmutable() calls will be rare indeed. Most developers lack a detailed understanding of the memory layout of their programs and are not well placed to render portions of their address space immutable, but the kernel and the linker are a different story.

The details of how mimmutable() will be used are described in detail in this email from De Raadt. In simplified form, it starts when the kernel loads a new executable image; once the text, stack, and data areas have been mapped, they will be made immutable before the program even starts running. For static binaries, the C runtime will do a bit of fixup and then use mimmutable() to make most of the rest of the mapped address space immutable as well. For dynamically linked binaries, the shared-library linker (ld.so) performs a similar set of tasks, mapping each library into the address space, then making most of those mappings immutable.

Read on

Also: Valuable News – 2022/12/19 ["The Valuable News weekly series is dedicated to provide summary about news, articles and other interesting stuff mostly but not always related to the UNIX or BSD systems."]

Other Recent Tux Machines' Posts

Systemd-Free antiX 26 Linux Distro Is Here Based on Debian 13 “Trixie”
The developers of the antiX Linux distribution announced today the release of antiX 26 as a new major version of this lightweight Debian-based distro without the systemd init system.
 
9to5Linux Weekly Roundup: March 22nd, 2026
The 284th installment of the 9to5Linux Weekly Roundup is here for the week ending March 22nd, 2026.
Today in Techrights
Some of the latest articles
GStreamer 1.30 to Support HDR10+ Metadata Parsing from H.265 & AV1 Bitstreams
GStreamer 1.30 has entered development for this popular open-source and cross-platform multimedia framework, with a first development milestone now available for public testing. Let’s take a look at the new features.
today's leftovers
software, development, and more
Kernel and E.E.E. (Windows, WSL)
Linux and more
Audiocasts/Shows: Linux Saloon and This Week in Linux
a pair of new episodes
Free, Libre, and Open Source Software Leftovers
FOSS stories
Programming Leftovers
Development stories
Open Hardware/Modding: OpenWrt, Raspberry Pi, and GNU/Linux-Friendly Devices
hardware stories
Games: Benchmark, Old PC Games, and More
gaming picks
today's howtos
Instructionals/Technical posts
Android Leftovers
These Android sync settings are wasting battery and data on things you'll never use
I've used Linux KDE Plasma for 10 years—here are 5 advanced features nobody talks about
If you've been using KDE Plasma for a while
This is the most underrated Linux desktop environment of all time
If you spend enough time around Linux users
Free and Open Source Software
This is free and open source software
GNU/Linux Leftovers: Daily Driver, LibreOffice Writer, Red Hat/Fedora Pushing Restricted Boot (Opposite of Real Security)
today's leftovers
Ageless Linux and systemd-censord
systemd-censord concept
Maintenance Done [original]
Yesterday our server served over 5 million Web requests
Today in Techrights
Some of the latest articles
Videos/Shows About GNU/Linux
Recently, via Invidious
Zentyal Server 8.1 Development Now Available
Zentyal Development Team today announced the availability of Zentyal Server Development Edition 8.1
Richard Stallman at Georgia Tech, and Some of My Thoughts about Free Software
Of course, I don’t live like Stallman, even though I live closer to that life than most people
BSD: FreeBSD and OpenBSD Updates (OpenZFS Also)
Some FreeBSD news
GNU/Linux, systemd trouble, and "Clown" Computing
today's leftovers
Wayland set the Linux Desktop back by 10 years
Desktop Environments regressing, Window Managers (WM) woes
Mozilla and Firefox: Nightly, Emojis, and More
mostly Firefox news
Android 'Safeguards', RISC-V, and the War on Hardware Its Owner Can Control
hardware leftovers
SUSE/OpenSUSE: Tumbleweed Review, Planet News Roundup, and Agama 19 Released
SUSE/OpenSUSE leftovers
GNOME: This Week in GNOME, GNOME Foundation Update, and Play a Video as Lock Screen Wallpaper in GNOME
GNOME picks/updates
KDE: Krita Monthly Report and Marknote 1.5.1
KDE picks
Application Releases: b4 v0.15.0, DeadBeef 1.10.2, and virtnbdbackup 2.46
Applications in the news
Applications: Common Picks, Simple Tools, and Tiagolr Sirial
some new suggestions
today's howtos
Instructionals/Technical leftovers
IBM Red Hat Selling Slop, Microsoft and GAFAM Surveillance; Fedora Update (IBM-Run Faux Community)
Red Hat leftovers
Games: Godot 4.6.2 RC 2, Terra Nil, OpenTTD, and More
many gaming picks for today
Programming Leftovers
Development with R and Rust
Standards: Open Document Format (ODF) Mandatory in Germany, Messing With Apple’s Webloc Format
Standards/Consortia leftovers
Security Leftovers
Security patches and more
Linux Kernel Security: Slop, "an already-flawed CVE system", and more
Linux security picks
CVE-2026-3888 Allows Local Users Gain Root Via Snapd
Canonical mistake
Games: Nightmare Reaper, Lucky Tower Ultimate, and More
7 articles from GamingOnLinux
Wine 11.5
The Wine development release 11.5 is now available
Huge Growth This Year [original]
The more messy the Web becomes, the more people will need to rely on strict curation services which cull the slop and cluster together the real news
The Value of a Human Does Not Exceed an Elephant's [original]
she was put down despite being healthy
Android Leftovers
Google reverses one of Android’s most annoying UI changes
Programming Leftovers
Development - a handful of picks
These 5 settings are making your Linux PC less secure
Think your Linux PC is secure just because it’s Linux
GNOME 50 “Tokyo” Desktop Environment Officially Released, This Is What’s New
The GNOME Project released today GNOME 50 (codename Tokyo) as the latest stable version of this widely used desktop environment for GNU/Linux distributions, a major release that introduces exciting new features.
OpenShot 3.5 Open-Source Video Editor Released with New Default Timeline
OpenShot 3.5 has been released today as yet another stable update to this powerful open-source, free, and cross-platform video editing software written in Qt for GNU/Linux, macOS, and Windows.
Best Free and Open Source Software, howtos and Installations
Only free and open source software is eligible for inclusion here
This Week in Plasma: Time Zone Offsets and Type-Ahead on the Desktop
This week several new features landed, in addition to a number of user interface improvements and some nice performance improvements and bug fixes
Germany’s Sovereign Digital Stack Mandates ODF: a Landmark Validation of Open Document Standards
The Document Foundation (TDF), the non-profit entity behind LibreOffice
System76 Launches New COSMIC-Powered Thelio Mira High-Performance Linux PC
Linux hardware vendor System76 launched today the next generation of the Thelio Mira Linux desktop computer, redesigned to boost performance and improve repairability.
Mageia 10 Enters Public Beta Testing with Linux Kernel 6.18 LTS and Mesa 26.0
Mageia 10 Linux distribution is now available for public beta testing, bringing various upgraded components, bug fixes, and other changes for those who want to help the devs ensure a stable and reliable release ahead of the scheduled launch in April 2026.
Today in Techrights
Some of the latest articles