HackerLangs
TopNewTrendsCommentsPastAskShowJobs

kokada

2,392 karmajoined hace 12 años

Submissions

PostmarketOS v26.06 (Alpen Avocado) released

postmarketos.org
9 points·by kokada·hace 19 días·1 comments

Show HN: A lightweight Git history explorer written in Go

github.com
3 points·by kokada·hace 7 meses·0 comments

Go Proposal: architecture-specific SIMD intrinsics

github.com
3 points·by kokada·hace 9 meses·0 comments

comments

kokada
·hace 5 días·discuss
> which violates the security model that Windows has and Linux needs to uphold to continue to get signed by Microsoft.

Oh ok, thanks for clarifying why this is a thing.
kokada
·hace 8 días·discuss
Thanks for the explanation, I am really not that familiar with `cryptsetup luksSuspend` and it is the first time I ever heard it exists.

Like other people in this thread I first got confused "wait, how would this work since if you cleanup the keys from the disk during suspend you couldn't access the disk anymore after resuming", but after reading your thread in Mastodon plus other comments here it eventually became clear that this is a special case that you need both the correct patches plus the correct setup to use `cryptsetup luksSuspend` in place of the normal suspend.

Can I ask one question? Why not use hibernation at that point? The reason I generally suspend to RAM is exactly because my password is long and annoying to type enough that if I know I am going to use the device soon I prefer to suspend instead of hibernation. Yes, technically resuming from suspend is faster, but it is also less secure (there are other interesting things in memory besides the LUKS keys) and also it uses more power.
kokada
·hace 9 días·discuss
While it is certainly an interesting bug, I kinda feel that the title is click bait? Because this `cryptsetup luksSuspend` from what I understood is not really officially supported but an extension done in Debian, so if anything this regression only affected Debian? I am not sure if you can blame the kernel for something that is not supported or even widely tested.

I still find this impressive, and it is nice that we now have a test (NixOSTests BTW are awesome, I agree with OP) to avoid this regression from coming back. But from the title it seems to be a widespread issue, not something that affects only one Distro.
kokada
·hace 19 días·discuss
Not that Claude Code is much better, I just hit this issue[1] because it seems setting DO_NOT_TRACK=1 seems enough to get a really strange behavior in the newest versions of CC.

[1]: https://github.com/anthropics/claude-code/issues/69238#issue...

Edit: I think I misunderstood OP, they're saying that CC is even worse and not better than Codex CLI.
kokada
·hace 26 días·discuss
I think it is fair to encrypt the user hard drive since the majority of users are unaware that they're even leaking secrets and PII when e.g., they sell a laptop without wiping the disk first.

But I think it is also fair if the user was opening a CMD during install just to type `oobe /bypassnro` the user is advanced enough to understand the risks of not encrypting the hard drive (it is really easy to activate the BitLocker afterwards anyway, and for example in my case instead of storing the secret key in Microsoft I decided to store it in my password manager). So I really don't buy the excuses of this article.

Also WTH Microsoft, why it is so easy to reset the TPM key during e.g., a bios update and lose access to all your TPM keys (so you need to type your BitLocker key again). It should be a requirement from Microsoft laptops that the TPM contents are never lost unless the user explicitly asks for it.
kokada
·hace 26 días·discuss
> Haha, yes. Track cyclists are a different breed.

Lost the opportunity to say "bread".
kokada
·el mes pasado·discuss
NVIDIA ended support for their 10xx series [1]. To be clear, AMD also moved support for their equivalent 5xxx series to legacy drivers [2], but "supports their cards for many years" doesn't hold value if both companies stopped their respective GPUs at basically the same time.

Also remember that one of those 2 companies has opensource drivers for Linux for their old GPUs, while the other doesn't (newer NVIDIA GPUs have an opensource driver but this isn't the case for the 10xx series). Users of legacy NVIDIA cards needs on Linux needs to use their old driver branches, with results that are less than optimal to say the least.

[1]: https://videocardz.com/newz/nvidia-officially-ends-geforce-g...

[2]: https://arstechnica.com/gadgets/2025/11/amd-says-that-its-no...
kokada
·el mes pasado·discuss
> It's better that everything be a bit too big that requires tinkering than everything being way too small (where you can't read the text on the screen). The 2x scale is pretty usable for even 150PPI.

I think it depends. 2x in my 14' 1080p laptop makes text and UI elements so huge that I can barely interact with the screen, so it is unusable either way.
kokada
·hace 2 meses·discuss
> A 14 inch laptop with a 1080p display is already at close to 160PPI.

I have one of those, this kinda of screen is uncomfortable at 2x scale (everything gets too big), so I generally set up to 1.25x or 1.5x. This is not what is being set by default by Omarchy though.

> A huge portion of the pc laptop market has high PPI displays and it's becoming increasingly rare to see anything that'd comfortably display at 1x scaling.

That is true, but you're moving the goal posts. This thread was talking about the 2x scale set by Omarchy by default, that is really only good if you have 200+ DPI.

This is still the minority of users even nowadays, and definitely not "98% of the user base" of the distro.
kokada
·hace 2 meses·discuss
> Why go through the ceremony of `public static void main(String[] args)` when Python just executes the script line by line at the top level? Oh wait, now you have things like `import` actually executing code instead of simply being a compile-time namespace convenience, and you need weird techniques like `if __name__ == "__main__"`.

I don't think this is a fair criticism. Python is a scripting language, it makes sense that the code is executed line by line at the top level. This is also how other programming languages from its time like Perl or Bash does it. Even newer scripting languages like Ruby does something similar.

> Why `System.out.println()` when `print()` is so much more concise? But now you're polluting the global namespace, and `print(file=sys.stderr)` isn't that elegant either.

Another criticism that I don't think it is fair. Lots of other languages "polutes" the global namespace. I actually can't think another language other than Java that doesn't. Python at least still allow you to manually `import builtins`, but Go for example AFAIK has no mechanism for you to reference builtins if you end up shadowing them.

Also I find `print(file=sys.stderr)` pretty much elegant, it works exactly how I would expect, it also means I can open a file and write to it using `print`.

> And so Python 3 enabled static type hints... which, like I said before, Java had from day zero.

Again, I don't think this is fair. I find Python 3 type-hints much more powerful than whatever type system Java has, especially because Python has Option types that actually make the type system useful (Java is infamous for its NullPointerException for a reason).
kokada
·hace 2 meses·discuss
> If they have a mac laptop or iMac they have a >200 PPI monitor.

Almost no-one is running Linux in a MacBook or iMac though.

Even Omarchy itself only supports Intel Macs: https://learn.omacom.io/2/the-omarchy-manual/97/mac-support. So the point is moot.
kokada
·hace 2 meses·discuss
Would like to know where are you getting this information. I don't know a single person that has a >200PPI monitor, and most of them are Mac users and also programmers.
kokada
·hace 2 meses·discuss
The author of the blog post makes valid criticisms, I remember when Ubuntu had a shortcut for Amazon in the default desktop installation because they had a sponsorship with Amazon and people rightfully criticized the distro for it. The author is doing the same for DHH promoting things like Grok/Hey/X. Also I am sure if any distro started shipping things like NordVPN in the default installation people would complain.

> and _why_ does it have a conference, sponsors, and merchandise? especially when longstanding distros like Debian have struggled with funding and sponsorship for decades?

I agree with the author that this is the thing that mostly gets me about Omarchy: yes, it is fine for you to use Omarchy, but in the end this is just a collection of dotfiles from DHH. We should be investing this money in some other distro that is actually doing some actual work (like packaging programs, maintaining infrastructure, etc.), instead of a hobby project from a millionaire.
kokada
·hace 2 meses·discuss
> it seems pretty common for dynamically typed languages and pretty much entirely absent from statically typed ones

Counter-example is Go and init() function.
kokada
·hace 2 meses·discuss
From this example:

    lazy from typing import Iterator

    def stream_events(...) -> Iterator[str]:
        while True:
            yield blocking_get_event(...)

    events = stream_events(...)

    for event in events:
        consume(event)
Do we finally have "lazy imports" in Python? I think I missed this change. Is this also something from Python 3.15 or earlier?
kokada
·hace 2 meses·discuss
That is also my dream, iPads Pro are very expensive but the hardware is so good (that is including the Magic Keyboard).

BTW OP, have you ever tried a hybrid Chromebook tablet like Lenovo Duet 3? This is my favorite device for travel exactly because it is so good as a small Linux machine. Crostini fits the "I want to run a Linux VM". You can even use postmarketOS if you want an even more "traditional" Linux experience.

I wrote about it here :

- https://kokada.dev/blog/my-favorite-device-is-a-chromebook/

- https://kokada.dev/blog/my-favorite-device-is-a-chromebook-w...
kokada
·hace 2 meses·discuss
Yes, this is why I am saying your idea of just reinventing the FS doesn't make sense. You don't get neither the wider ecosystem you get by having an OS compatible with e.g., POSIX semantics nor all the benefits you could get if you reinvent the whole OS.
kokada
·hace 2 meses·discuss
But it is also rare cases where a a few percent points actually make a huge difference. Remember when reviewers are doing benchmarks they're generally using a standardised test suite with uncapped framerates. For most people they would be perfectly happy to hit a target framerate, or if they really want to play uncapped they would first reduce a few graphical setting to archive good performance (most of time with imperceptible changes in the graphics). It is rare when the performance of the game is so tight in a hardware that a few percent points actually matter.

To give a particular example, I started playing GTAV on Windows after building a new PC since I had no spare drives. After finally installing Linux I decided to try GTAV on Linux just to see how well it would run. And it runs amazingly well, and yes, it runs a few percent points slower than Windows, but the only tradeoff I did was slightly increase FSR4 and the game still looks amazing. I didn't really notice any graphics issues, especially not during actual gameplay (if I stayed at the same place and started to nitpick I could notice differences).
kokada
·hace 2 meses·discuss
If we are going so far to only guarantee correctness if we are using a FS that implements ACID semantics, why not just reinvent the whole kernel and remove all footguns, including memory safety? We could have a OS that each syscall to memory allocation can only be done through safe API.

Otherwise, it doesn't really make sense. The only reason we have things like Rust and other memory safe languages is because we want to create safer programs in the existing imperfect OSes that we have currently.
kokada
·hace 2 meses·discuss
Not sure how reliable this site is, but if it is correct it looks like 10: https://www.cvedetails.com/vulnerability-list/vendor_id-72/p....

Maybe coreutils is so old that most security vulnerabilities was solved before CVE even existed. But I think this is also a good argument why we are replacing a solid piece of C code to Rust just because it is "memory safe" and then have lots of CVEs related to things like TOCTOUs (that Rust will not save you).