neobrain (u/neobrain)

neobrain commented on Asahi Linux with Sway on the MacBook Air M2 (2024) daniel.lawrence.lu/blog/2... · Posted by u/andsoitis

bjackman · 2 days ago

> main devs have moved on

How confident are you in this statement? I have no particular knowledge of Asahi. But I do know this narrative emerged about Rust-for-Linux after a couple of high-profile individuals quit.

In that case it was plainly bogus but this was only obvious if you were somewhat adjacent to the relevant community. So now I'm curious if it could be the same thing.

(Hopefully by now it's clear to everyone that R4L is a healthy project, since the official announcement that Rust is no longer "experimental" in the kernel tree).

I know Asahi is a much smaller project than R4L so it's naturally at higher risk of losing momentum.

I would really love Asahi to succeed. I recently bought a Framework and, while I am pretty happy with it in isolation... when I use my partner's M4 Macbook Air I just think... damn. The quality of this thing is head and shoulders above the rest of the field. And it doesn't even cost more than the competition. If you could run Linux on it, it would be completely insane to use anything else.

neobrain · 2 days ago

It's similarly bogus here. Early Asahi development tried to upstream as much as possible but ultimately still maintained a gigantic pile of downsteam patches, which wasn't a sustainable model.

Most of current development is focused on reducing that pile to zero to get things into a tractable state again. So things continue to be active, but the progress has become much less visible.

neobrain commented on Backing up Spotify annas-archive.li/blog/bac... · Posted by u/vitplister

lmm · 7 days ago

Is that still the case? The option to do that quietly disappeared from Amazon Music a couple of months ago, for example, and they were one of the last few holdouts where you still could. It might be only Apple now?

neobrain · 7 days ago

There's still plenty of options around, Qobuz and 7digital in particular offer drm-free flac downloads.

neobrain commented on Firefox will have an option to disable all AI features mastodon.social/@firefoxw... · Posted by u/twapi

jamesgill · 10 days ago

He said there would be both an "AI kill switch" but that it's also "opt-in". Taken together, his two statements seem a little...odd.

neobrain · 9 days ago

People are already getting worked up about being prompted to opt into a new feature on update (even if that prompt is hidden behind an icon that doesn't do anything until the user clicks it), so it's not inconceivable that the kill switch just disables those opt-in prompts for AI-related features.

neobrain commented on Same-day upstream Linux support for Snapdragon 8 Elite Gen 5 qualcomm.com/developer/bl... · Posted by u/mfilion

E39M5S62 · a month ago

The Lenovo x13s works pretty nicely these days, EL2 support aside. What problems have you faced?

neobrain · a month ago

Just in case anyone's tempted to buy one of these now: Support is alright after heroic (and continuing) efforts to improve platform support, but it's flaky. M1/M2 devices offer better performance and the state of Asahi drivers is much better, particularly around audio.

neobrain commented on Same-day upstream Linux support for Snapdragon 8 Elite Gen 5 qualcomm.com/developer/bl... · Posted by u/mfilion

noname120 · a month ago

Those that are implemented have been very reliable in my experience, I think that labeling them “alpha-quality by Linux standards” is a ridiculous claim

neobrain · a month ago

+1. Been running Asahi Linux for half a year now. Everything that's advertized as working is working great.

neobrain commented on FEX-emu – Run x86 applications on ARM64 Linux devices fex-emu.com/... · Posted by u/open-paren

stevefan1999 · a month ago

It would be cool if we can use LLVM to lift the x86 code into LLVM bitcode and go to different platforms easily with ostate of the art optimizations, won't it?

neobrain · a month ago

Sadly compile times of LLVM-based recompilers make it impractical for competitive x86 emulation. We're not just talking a few single-frame stutters here and there, but considerable startup delays and pauses in-game.

LLVM's optimization passes also are less useful than you might think, since the vast majority of them is motivated by source->binary translation (like clang). They don't have much effect when recompiling an already optimized binary to another architecture.

neobrain commented on Run Nix Based Environments in Kubernetes flox.dev/kubernetes/... · Posted by u/kelseyhightower

d3Xt3r · a month ago

There's still leftovers. For me, it's not about space problem, but more of wanting to run a tight ship. Most recently, I tried running all the stuff on the wiki[1] but I still had leftovers that wouldn't go away no matter what (these were some CUDA dependencies, if it makes a difference). In the end I ended up blowing away my entire Nix install, manually deleting the store and reinstalling Nix - which isn't exactly ideal - considering that the whole point of Nix is to be deterministic and reproducible and all that jazz... so to me it doesn't make sense that it dirties the host and doesn't clean up after itself. Since then I've gone back to using containers as at least they don't pollute the host, and I feel like I'm in greater control over the entire environment.

[1] https://nixos.wiki/wiki/Cleaning_the_nix_store

neobrain · a month ago

I feel your pain on this one despite being fairly comfortable with nix by now. This is 100% an issue either the documentation or the nix CLI should do a better job at.

The wiki rightfully points towards "roots", i.e. references produced by nix-build or similar. Additionally, there are other places that will keep references and hence block garbage collection though:

1. Your nix profile (`nix profile list` / `nix profile remove`) and its old generations (`nix profile (wipe-)history`)

2. Your NixOS configuration (configuration.nix) and its old generations (`nixos-rebuild list-generations`)

It doesn't help that there's no discoverable way to tell why a particular nix store path is not being garbage collected either.

neobrain commented on Using bubblewrap to add sandboxing to NetBSD blog.netbsd.org/tnf/entry... · Posted by u/jaypatelani

aborsy · 2 months ago

Yeah, I meant the same thing! If you run it under your non-root user, and there is a vulnerability in firejail, the jailed process could run as root, right?

Complexity referred to large code base and attack surface.

I haven’t tried it myself. I would be interested knowing, whether it might lower the security in some cases. Maybe it’s useful to sandbox apps that don’t have flatpaks.

neobrain · 2 months ago

SUID by itself is not a security liability. Typically, programs using SUID quickly drop their additional privileges during startup to avoid the scenario you're describing. So the vulnerability in firejail would have to be early during startup before any of that.

Still, it can happen of course, particularly with memory-unsafe languages. Conversely without root privileges you have to sacrifice strength of your sandbox, widening the vulnerability window in the app you were trying to constrain to begin with.

Meanwhile bubblewrap relies on user namespaces, which come with their own set of security problems. They are disabled by default in many distributions for that reason.

neobrain commented on Two billion email addresses were exposed troyhunt.com/2-billion-em... · Posted by u/esnard

willvarfar · 2 months ago

I'd be really surprised if Gmail's + behaviour isn't so well known by spammers that they just strip them off?

neobrain · 2 months ago

Conversely, I'd assume this pattern is used rarely enough for spammers to even bother fighting it.