What really is changing in these xorg releases?

Tony0945

Split from Why is our xorg-server setuid, again? --pjp

What really is changing in these xorg releases? Since 1.16 all I've noticed is problems installing (went OK this time) like blockers and needing to rebuild stuff, then when it's over it's the same. No speed increase, no noticeable difference. Are the upstream developers, like so many projects, just rearranging the code because they personally don't like it? Why is there clang and rust when gcc was all anyone needed for how many years?

Hu · Moderator Joined: 06 Mar 2007 Posts: 21627

Clang was needed because Apple couldn't stand the licensing on gcc. Rust was needed because there weren't enough projects bundling private copies of llvm.

pjp · Administrator Joined: 16 Apr 2002 Posts: 20067

mv · Watchman Joined: 20 Apr 2005 Posts: 6747

proteusx · Guru Joined: 21 Jan 2008 Posts: 338

It is like irrigating the crops with "Browndo" in the film Idiocracy.

Tony0945 · Posted: Sat Nov 03, 2018 2:15 pm Post subject:

Ralphred · Guru Joined: 31 Dec 2013 Posts: 499

It's the naming that makes me cringe, it may just be due to idioms, but rust is what you get when you fail at care and maintenance of motor vehicles, clang is what you get when you really fail at care and maintenance of motor vehicles. I find myself subconsciously asking what these people did that made rust and clang the answer?

dmpogo · Advocate Joined: 02 Sep 2004 Posts: 3267 Location: Canada

Hu · Moderator Joined: 06 Mar 2007 Posts: 21627

clang isn't too bad, aside from its tendency to warn-by-default on things that are a pain to clean up in old code, and its fondness for claiming to be gcc, but not actually implementing gcc extensions. I've had several places where I have to write a preprocessor guard as #if !defined(__clang__) && defined(__GNUC__) because clang defines __GNUC__. If they don't want to implement gcc extensions, that's fine, but they shouldn't mislead the program into thinking that it can use those extensions.

I just can't take rust seriously. Any project where the recommended install instructions are (as root) curl URL | sh shows such a blatant disregard for security and sanity that I run screaming before evaluating it further.

Tony0945 · Posted: Sun Nov 04, 2018 4:50 pm Post subject:

Zucca · Posted: Sun Nov 04, 2018 5:37 pm Post subject:

Naib · Posted: Sun Nov 04, 2018 5:41 pm Post subject:

Hu · Moderator Joined: 06 Mar 2007 Posts: 21627

Ant P. · Watchman Joined: 18 Apr 2009 Posts: 6920

Zucca · Posted: Sun Nov 04, 2018 7:41 pm Post subject:

A little OT but:

Hu · Moderator Joined: 06 Mar 2007 Posts: 21627

Yes, many packages do not play well with a noexec build directory. This is unfortunate, but hard to fix in general. My point above was that the rust authors assume the system /tmp is not noexec. Everyone should have the commonly known and world writable areas mounted as noexec, reserving exec for those areas specifically intended to permit execution by people trusted with write access to those directories. Using noexec on well known areas is a very cheap, and at least moderately effective, way of crippling some types of exploit. It doesn't stop everything, though.

To directly answer the question: you should expect Portage to need a exec PORTAGE_TMPDIR. You can achieve this with a separate tmpfs, or using a bind mount to make part of the main tmpfs be exec. Filing bugs for packages that fail with PORTAGE_TMPDIR mounted noexec is probably a waste of time.

Tony0945 · Posted: Sun Nov 04, 2018 9:36 pm Post subject:

Like this?

Hu · Moderator Joined: 06 Mar 2007 Posts: 21627

Your /dev/shm looks fine. I like having those same options on all my world writable areas.