Do you mind sharing the script?

We are pretty much on the same page here. I am quite pleased with the way the discussion on the kernel mailing list progresses. However, I have lost quite a bit of my trust in the Linux Foundation since they introduced their "inclusivity stance".

I consider these contributions to be good too, in some way.

Every bad piece of code merged contributes on improving code review and not make the same mistakes again.

It is about China because it comes from China. You are correct that it is not always "just China". But China has it's issues and we're not discussing Microsoft or Intel here.
I consider ignoring the intent after not understanding the use case as recklessness.


This was a reply to RejectModernity 's claim that all commits are checked 10 times before merging. You correctly say: "it wasn't" (past tense). The late insight that only two people have actually verified the Heartbleed commit came only *after* the hearts were bleeding.


I don't doubt the quality of Chinese programmers. I think I was pretty explicit about assuming malice.
Ignoring possible malice *after* seeing that the code has no or very little real world value is, again, recklessness. Things like that *have* happened in the past. However, mistakes happen (for Heartbleed at least two times).


No, this is different.

In general I would agree that rebooting on the fly is important. I am one of the most annoyed and impatient persons when booting up. But kexec reboot seems to be only a thing on servers. On servers nobody really cares about hours of rebooting time since it happens so seldom.


I already gave one in the picture I posted along my first post in this thread.



I am pleased about the discussion over this pull request on the kernel mailing list. It's about possible savings of max 500ms (half a second) at the expense of eventually rebooting into an already failed (or tainted, or ...) kernel. At the same time, I notice that Albert Huangtjie just ignored the question about embedded systems.

Well, - agreed. - No. Nope. Most definitely not.

The current observable efforts in the industry all move towards preventing to write a "bad piece of code" in the first place (static code analysis). Before being merged.

I am with you that bad code can stir up "more effort". But with the linux kernel we should be past that phase. Such mistakes have happened in the past. We should not aim to repeat them.

Only tested on Fedora... 35. Initramfs and kernel paths may have to be corrected for other distros.

Wowzers! Just tried it on Debian and it works!

Just had to adjust the initramfs filename and install missing package kexec-tools.
Nice trick


(won't repeat often... fear sits deep)

Fair enough. I just don't consider the origin as reason enough to reject something. The lack of use case may be a different story.

But that claim wasn't for open source in general, but for the Linux kernel. While whether or not that's true depends mostly on the subsystem it affects (only two people reviewed a patch I sent about 5 years ago, but it was for a rather niche case that doesn't affect the general population), stuff affecting the core tend to have many more eyeballs for the Linux kernel. OpenSSL was much much different.

Again, Heartbleed, different project with different implications and a different community involved. Regarding assuming malice, I will assume many other things before, such as:
- The misconception from the author that its use is obvious;
- Sheer incompetence in proper communication.

Only after questioning and a refusal to explain will I assume malice.

Need I remind you of Facebook, Amazon and IBM actually clearly caring? Besides, that doesn't sound true if we consider there are at least three competing solutions for live patching around, all from western companies. Security updates happen and redundancy is an extra cost, so reducing downtime by other means is an interesting case.

I just checked the tiny image and I get nothing out of it.

I'll check that one later, I should be working right now.

The Phoronix forums software started defaulting to storing a cached version of embedded images, a while ago. Seems like a useful feature, except the images tend to get downsampled and the total amount of disk space per user is quite limited.

... and the other comments

Why is it these days not enough to say what you mean? Why is it necessary to *always* emphasize what you *did not mean*? (are you assuming malice?)

• Ignoring the origin is recklessness. It's only prudent to look a little bit closer, given the track record of China. (I'm getting criticized for assuming malice)
• I don't buy the stance that "oh - on linux *everything* is different and better". Linux has its own share of very similar issues. coder mentioned the UMN students.
• This *does not* mean that all other reasons are not worth looking at. The reasons you mention are spot on!
• Albert did already not answer one explicit question. Could be an oversight. Could be a language issue. But could also be a ...

Shaving off less than 500ms is not what the big companies are looking for. Live patching is a technique that *avoids* going through a reboot. And which security patch needs a reboot in rapid succession? This does not negate that shorter boot times are a good thing! I never said something like that.


A hint is the title of the image: "Click Farm".

Another hint is in the last line of my previous post: