Oxidizing Ubuntu: adopting Rust utilities by default

You should probably use something like https://docs.rs/generational-arena/latest/generational_arena... when you want to do this.

I understand the problem isn’t that the tools exist, it’s that there are Rust users who are not aware of the concept and its evolution over the years, which I’d argue is not a uniquely Rust issue.

I don't know where you got this idea but this is wrong.

> you use the item longer, you have a longer implicit lifetime. The memory it references will also be claimed for longer

This is only true at the stack frame level, you cannot extend a variable beyond that, and there's no difference with a GC in that particular case (a GC will never remove an element for which there's a variable on the stack pointing towards it)

> You only fix that by explicitly considering lifetimes as you write your code

Lifetime parameters don't alter the the behavior, and their are either mandatory if the situation is ambiguous or entirely redundant. And it only works at the function boundaries, where lifetime extension cannot happen anyway. (See above)

Please stop spreading bullshit criticism that have no grounding in reality (Rust has real defects like everything else, but spreading nonesense isn't OK).

> drops items when you're done with them.

That is what GC languages do. Too

You can get serious resource leaks in any language if you are careless

What Rust guarantees is you cannot derefernce a null pointer

It's also better in just about every way I can think of, except maturity.

I think leaks are indeed harder to code by accident in non-async Rust, which was the original setting Rust was developed on. I wouldn't say it is absolutely hard (that really depends on the architectural complexity), but there seems some truth in that claim.

Leaks are as hard to do in Rust as with a GC though.

That is, they aren't impossible and you'll eventually have to fight against one nasty one in your job, but it's far better than without a GC or borrowck.

When a type is 'static, it doesn’t mean it’s leaked for the lifetime of the program. It just means it owns everything it needs and doesn’t borrow anything. It will still free everything it owns when it is freed.

> There's no confusion between what a borrow checker and a GC do

There is, with Rust you cannot extend the lifetime of an object by keeping a reference to it, when this is exactly the kind of things that will happen (and cause leaks) with GC.

> this looks like hand-rolled pointers using vecs as one option fairly frequently

Emphasis mine. Idk where you got the idea that was something frequent, but while it is an option that's on the table in order to manage data with cyclic references and is indeed used by a bunch of crate doing this kind of stuff, it's never something you'd have to use in practice.

(I say that as someone who's been writing Rust for ten years in every possible set-up, from embedded to front-end web, and who's been teaching Rust at university).

The borrow checker does not change when things are dropped.

>Whatever happened to the whole debate around Ubuntu including ZFS modules by default in Ubuntu? At the time it originally got proposed, I feel like I remember basically everyone other than Canonical agreeing that this wasn't allowed by the licenses of Linux and ZFS

I think your recollection here is pretty colored, or else you were only reading stuff from one particular bubble. My own recollection is that there were very compelling arguments to the contrary, ones that I agreed with. Like, foundational to the concept of civil court cases is "standing" which is almost invariably down to a party suffering damages. Courts aren't a venue (at least in the US in general) for solving debates of abstract philosophy, that's what civil society is about, they're for applying the state's general monopoly on violence in order to rectify harms. Party A claims they were damaged by Party B (statutory, actual or both) in a way that violates the law. The remedy if they win is generally that they are made whole via money as best as possible or, rarely, via actual performance by Party B.

But if open source license GPL code is distributed with open source license CDDL code, with full access the source of both available, who is losing money on that? Who is getting damaged? What rights are being lost? Who has standing to sue over it? The idea that it's banned at all isn't tested legally anyway afaik, but more fundamentally if there is no harm then there simply isn't any court case. Say you saghm decided tomorrow that you were really steamed about ZFS being included with Ubuntu and decided to get going on your lawsuit on Monday, when the court asks "how much money did that cost you and what do you want us to do about it" what would your answer be, even putting aside "what's your theory of law on this one".

>and from what I can tell, they basically got away with it?

Well, that would be expected if there just isn't any case there right?

> from what I can tell, they basically got away with it?

Or they correctly interpreted the law?

Few of us care to admit how this "legal consensus" is mostly BS. Lots of evidence to the contrary, but, like politics these days, it sure is an appealing fantasy?

No systemd really limits the options (including that OpenSUSE uses it, so I'm not sure how to read your comment). Maybe Artix Linux? That's rolling release systemd-free, though I don't know about graphics drivers. I would have suggested Pop!_OS, with has an awful name but is basically like Ubuntu without the bad stuff and excellent graphics drivers, but it has systemd and isn't rolling so YMMV.

You can run Trisquel Mate, but you need to set the propietary kernel and CUDA on your own. You can use the Xanmod kernel, the headers and the prop NV installer, but you will be less free on freedoom. With Intel and OpenCL (or whatever intel uses today), you might loss performance, but you gain compatibility and you are not bound to Intel X86, in case you want to try further Power9 based stations.

I don't know about the good GPU support and is not a rolling release, but Devuan is a systemd-free Debian derivative you might be interested with

I use Nonguix with a RTX2080 and am very happy with that. Similarly to Nix it's marvellous, but not for the faint of heart.

Yeah I was being tongue in cheek. (Or just overly dismissive I guess.)

I know people do care about licensing, but it's also plausible that it isn't what any given project is most focused on.

You mean the Microsoft which not that long ago releases the proprietary .Net code under mit? It's not all going one way, even in large corps. Windows also ships with wsl now - what would they even gain now from non-gnu Linux?

Red Hat is probably the biggest single provider of GPL software in the world. They consistently choose the GPL for software they author and release. They founded and fund the Fedora Project themselves explicitly to be a community driven distro independent of their commercial efforts. They provide the full source to their products even though a huge percentage of the code is MIT, BSD, or Apache and does not require them to. They provide everything required to produce the "aggregate" full product even though the GPL does not require them to.

I will go on record now with the prediction that, if uutils catches on, Red Hat will be one of the last companies to move away from GNU. They are probably the largest contributor to glibc and GCC.

What evidence do you have that they would have "preferred not to provide source at all"? Because their is a mountain of evidence otherwise.

As an individual user, Red Hat will give you a free license to their flagship product. Then they will tell you how to download every line of code for it. I don't have a license. I do not use Red Hat (other than occasionally using the also totally free RHEL9 container).

"Remember when Red Hat tried to lock away the source code to subscribers only?"

I do not remember them changing the policy you are talking about. If you think they did, it highlights how overblown the response was at the time. The biggest impact of the Red Hat change is that Alma Linux is now a better project that can actually innovate and contribute.

Everything in uutils is under the MIT license. The only thing you're missing is the "viral" nature of the GPL. Nobody in the BSD world seems to be particularly suffering under the thumb of unreleased forks of `chown` and `mkdir`.

Red Hat has been more consistently pro GPL and pro open source and invests more money into it than any other company.

Them putting the downloads of their enterprise OS behind a login screen (student and solo developer licenses can STILL be got for free) is something I 100% understand and am kind of sympathetic about.

I know that's out of like with how some people define free software, but I've always had ethical issues with the way people would redistribute Red Hats work for free. Just because it's legal doesn't make it ethical.

The last 2 paragraphs of this interview with David Chisnall really made me think differently about that: https://lobste.rs/s/ttr8op/lobsters_interview_with_david_chi...

In particular:

> I think the GPL has led to fairly noticeable increase in the amount of proprietary software in the world as companies that would happily adopt a BSDL component decide to create an in-house proprietary version rather than adopt a GPL’d component.

It also aligns with my experience: my company couldn’t find an LZO compression library that wasn’t GPL’d, so the decision was between implementing one in-house or cutting the feature. We ended up restricting use of the feature to in-house use only, but opening up our core source code was never an option.

If there had been a permissive license option available, we would’ve likely donated (as we do to several other dependencies), and would’ve contributed any fixes back (because that’s easier to explain to customers than “here’s our patched version”).

That isn't something Canonical could do just because the software has a permissive license instead of a copyleft license. They can do that if they own the copyright (which I can't imagine they do), but if they own the copyright they can do anything they want and nobody has a say in it. So again it has nothing to do with license.

The absolute most that Canonical can do is start making a fork of the software where they don't distribute the source code. But in that case, the original code is still right there. No freedom is lost at any point.

> when they seem eager to follow whatever the most current thing is?

Rust hit 1.0 *10 years ago*. How many more years will it take for people to stop constantly insinuating that people only use it because of the hype, and not simply because it's a vastly better language than C?

> if you were to try to "exploit" it the only thing that would happen is you get a different error message

Can't reproduce this. If I do

    sudo strace -e inject=stat:delay_exit=30s:when=2 ./coreutils more foo

    rm foo
    ln -s /etc/passwd foo

Could you elaborate? What were those lines doing?

I think one issue is less extant Rust code to train on. As more Rust is written and published, LLMs should in theory get better.

While I'm lucky enough not to ever have had to spend a while trying to refactor/fix LLM-produced code, I've definitely had a much easier time trying to do major refactors to fix larger issues with human-written Rust code than any other language I've tried it with. The compiler obviously doesn't catch everything, but the types of things it _can_ catch seem to be very common to encounter when trying to make cascading changes to a codebase to fix the types of issues I've seen refactors attempt to address, and my instinct is that these might also be the types of things that end up needing to be fixed in LLM-produced code.

Elsewhere in this thread someone mentioned LLMs producing poor performing code that does stuff like collect iterators far too often and pointed out that fixing this sort of thing often requires significant Rust expertise, and I don't disagree with that. However, my impression is that it still ends up being less work for an experienced Rust programmer to claw back some memory from poor code than for someone similarly experienced in something other than Rust working in a code base in their own language. I've seen issues when three or four Go engineers spend weeks trying to track down and reduce memory overhead of slices due to the fact that it's not always easy to tell whether a given slice owns its own memory on the heap or is referencing a different one; looking for everywhere that `collect` is called (or another type known to heap allocate) is comparatively a lot simpler. Maybe Go being a lot simpler than Rust could make LLMs produce code that's so much better that it makes it easier for humans to debug and fix, but at least for some types of issues, my experience has been the opposite with Go code written by humans, so I wouldn't feel particularly confident about making that prediction at this point in time.

same here. I think rust + llm combo is unbeatable.

If you look a bit deeper, this project actually cares deeply about its license, and is going out of its way to choose the license it is using, ignore complaints, and avoid ending up GPL.

https://www.youtube.com/watch?v=5qTyyMyU2hQ

In an interview with FOSS Weekly, Sylvestre Ledru (the main developer, who curiously has a background working on Debian and Firefox, before ending up getting seduced by the clang/LLVM ecosystem), firmly states "it is not about security".

To clarify, you think the obvious benefit that is something several organizations obviously want isn't the motivation, but improvements to 3 things that probably won't be improved are the real motivations?

How much maintenance do the tools need currently, and how does it compare to the effort?

i am surprised by the implication

They do, but they're minimal versions, not one-for-one compatible with the GNU versions.

Every proprietary Linux OS (such as most Android phones) uses busybox, at a slight disadvantage to them, because they can't handle using GPL3 coreutils. Now they'll use the MIT-licensed drop-in replacement coreutils.

They trivially can: "aims to be" means "in the future they will be this way," not "they are presently this way." That's what "differences are bugs" means, that you may currently experience incorrect behavior, but that it is intended to be fixed in the future.

If you have an argument to make, make it. This isn't a classroom and you're not an instructor, assigning homework to people who disagree with you isn't an effective argumentation technique.

What is the fallacy, specifically?

It already adds a couple new features, like a progress bar to a few utilities.

> Desktop applications are inherently more trustworthy

Why? If 30 years of Windows being the most internet connected OS has proven anything, it's that 99% of desktop executable should be deleted before they make it through the disk write cache.

Mobile platforms show that mandatory sandboxes are a massive bonus to preventing malware. Desktop operating systems refuse to go that route because of the risk of breaking existing tools, which is why nobody bothers to actually use sandboxing APIs, which is why many third party sandboxing attempts keep breaking.

There's no reason why desktops can't exchange files through virtual file systems or dedicated sharing APIs like on mobile. My calculator doesn't need camera access and my music player can do without biometrics. The desktop is stuck in the 1990's permission model (or 1970s, for Unix-likes) because that's what people have gotten used to.

My experience with the Steam Deck is that Flatpak sandboxing on a read-only system image works absolutely fine. Things would work better if desktop applications would bother standardising and following existing standards, but the technology works. Sure, it's not good enough if you're a Linux kernel developer, but the 0.01% of users who are affected by those limitations shouldn't limit everyone else.

Some desktop users may think themselves to be too smart to get hacked, especially on Linux, but their desktops are not that different from smartphones.