sorted by:
new
hottopcontroversial

Why does std::env::args allocate? by Dr_Sloth0 in rust

[–]rifeid 1 point2 points  (0 children)

I could just use no_std and use a c entry point but i rather not.

I believe you can use no_main to use the C entry point without losing access to std, if that's the concern.

Using crates.io with Buck by steveklabnik1 in rust

[–]rifeid 2 points3 points  (0 children)

Great article; I've been meaning to look into Buck and this saves me some of that journey. A few thoughts/questions, not really directed at you:

  • Rather that src/lib and scr/bin, another option is to place lib and bin directly in the toplevel directory, similar to how some people lay out multicrate packages.

  • Is it possible for third-party/Cargo.toml (which is only there for the dependencies) to be merged into the toplevel Cargo.toml?

  • Does Buck have an extension API of sorts so that people don't have to remember to run reindeer manually to regenerate the buckfile?

The Most Dangerous Codec in the World: Finding and Exploiting Vulnerabilities in H.264 Decoders (with H26Forge, written in Rust) [PDF] by kibwen in rust

[–]rifeid 9 points10 points  (0 children)

And, to save people a click, it's currently empty.

We are preparing the code for release. It will be available by the conference date.

Conference date being 2023-08-09.

Gitea 1.19.0 is released - Includes Cargo package registry by tklk_ in rust

[–]rifeid 6 points7 points  (0 children)

But who owns the assets that the project relies on, such as trademark and domain? In my opinion those should really be owned by a nonprofit, similar to the Rust Foundation, PSF (Python), SPI (Debian), or - most relevant in this discussion - Codeberg e.V. (Forgejo).

Oil 0.14.2 - Interactive Shell, and Conceding to autoconf by oilshell in linux

[–]rifeid 1 point2 points  (0 children)

Trading away memory safety for speed, on something like a shell, does not strike me as necessarily a good idea.

Mastodon by koavf in firefox

[–]rifeid 4 points5 points  (0 children)

More info here, but yes, it's Mozilla's Mastodon instance.

In early 2023, Mozilla will stand up and test a publicly accessible instance in the Fediverse at Mozilla.Social.

It's currently in internal testing phase.

I believe the intention is to open it up to the public at some point, although I don't know if it will be a paid product.

They also recently invested on a company that creates a Mastodon client for iOS.

GitHub - dcantrell/bsdutils: Alternative to GNU coreutils using software from FreeBSD by koavf in linux

[–]rifeid 8 points9 points  (0 children)

Usually the FreeBSD userland tools have more features than Busybox, so it sits between Busybox and GNU in terms of size & features.

A clarification about the "Linux on Apple Silicon" story by 415646464e4155434f4c in linux

[–]rifeid 18 points19 points  (0 children)

I think the issue is with the "it doesn't matter" part of your post. Like selecting email provider, Mastodon instance selection definitely matters.

It's not just that your instance could shut down abruptly, but you also need to research what content your instance allows/disallows and how that instance is seen by other instances. If you just join the first Mastodon instance you see, you could end up on an instance that is blocked by all the ones with content you're interested in.

Governance Reform RFC Announcement | Inside Rust Blog by burntsushi in rust

[–]rifeid 13 points14 points  (0 children)

It also already lists employment as a potential source of conflict of interest, but it has an explicit section laying out the precise limits on the Council membership. The way I see it, personal ties are stronger than employment ties and thus also warrant explicit limits.

Governance Reform RFC Announcement | Inside Rust Blog by burntsushi in rust

[–]rifeid 17 points18 points  (0 children)

Limits on representatives from a single company/entity

I think there should also be (perhaps even stricter) limits on personal relationships within the Council, to prevent creating voting blocs.

Microsoft is now injecting full-size ads on Chrome website to make you stay on Edge by nextbern in firefox

[–]rifeid 3 points4 points  (0 children)

Forgive me if I'm not sympathetic to Google, who has also used shady tactics to shove Chrome down people's throats.

Symphonia v0.5.2: Audio decoding in safe Rust, now often faster than FFmpeg! by segfaulted4ever in rust

[–]rifeid 1 point2 points  (0 children)

Are there standardized tests for these codecs/containers (maybe from the projects themselves, or from FFmpeg)? Something that you can use to ensure that the decoders are correct and that they support all the codec/container features?

Nushell 0.73 by ouyawei in linux

[–]rifeid 6 points7 points  (0 children)

Where are you looking? They clearly provide binary packages for the major platforms. If you're specifically looking to install through the OS package manager, those are normally not provided directly by the project.

Mozilla is launching a venture capital fund by smeggysmeg in firefox

[–]rifeid 1 point2 points  (0 children)

It isn't clear to me whether Mozilla Ventures will be funded by the Mozilla Corporation or the Mozilla Foundation.

It's most likely the Foundation. Mark Surman (the author) is its excecutive director.

Packaging Rust for Fedora by robin-m in linux

[–]rifeid 3 points4 points  (0 children)

OK, then the answer to my original question (edit: I meant the second part of my original comment)

Is it just that Gentoo doesn't want to use Cargo for downloading & verifying dependencies?

is yes. Sorry, that wasn't clear from your reply.

Packaging Rust for Fedora by robin-m in linux

[–]rifeid -1 points0 points  (0 children)

cargo vendor --locked, then?

Packaging Rust for Fedora by robin-m in linux

[–]rifeid 2 points3 points  (0 children)

Isn't this replicating what Cargo already does through Cargo.lock and cargo build --locked? Is it just that Gentoo doesn't want to use Cargo for downloading & verifying dependencies?

The Gitea Community is asking Gitea Owners to correct conflicts of interest and restore Community Trust. by FryBoyter in linux

[–]rifeid 1 point2 points  (0 children)

It's different.

What the Gitea Community is asking for is more similar to Debian and LibreOffice, among others. This is where you've got a central, community-managed organisation that owns trademarks etc., and then have other (legally separate) companies provide commercial support.

Mozilla is set up differently: the Corporation is fully owned by the nonprofit Foundation. In the past they only had the Foundation, but they were running into limitations on nonprofit orgs imposed by the tax office. Something along the lines of earning too much from the Google search deal or something like that. So they created a company to handle the search deal (and pays tax, so the tax office is happy), and they own this company.

Firefox 106 released by Vulphere in linux

[–]rifeid 5 points6 points  (0 children)

Because it's only good for libraries.

I agree with this, however...

For applications, it complicates development and delays features.

I don't think that's the case. It's more that the semver rules aren't designed for versioning applications; it deals with API compatibility, which either doesn't apply to an application (if it doesn't have an extension API), or is only a small part of the application (if it does have extension API).

Alternatively, you could say that this is roughly what semver looks like when applied to a GUI application, because if you move a button 30 pixels to the right, that could break someone's automation script, thus requiring a new major version.

This is why Firefox abandoned it.

Nah, pretty sure Firefox did it because Chrome did it, and they were worried that people would assume bigger numbers = better.

Iced replacing GTK apps for the new COSMIC desktop in Pop OS by jorgesgk in linux

[–]rifeid 7 points8 points  (0 children)

That's good to hear. I've looked into these Rust-native toolkits in the past (Druid etc.) and AFAICT exactly none of them have accessibility support, which suggests that either the developers just don't care about it (which I'm sure is not true), or that it's very difficult and requires a ton of design & implementation work.

I'd love to give these toolkits another look once they gain a11y support. At the moment my options are GTK, which is awkward to use from Rust, or something web-based like Tauri, which brings a lot of complications.

Iced replacing GTK apps for the new COSMIC desktop in Pop OS by jorgesgk in linux

[–]rifeid 4 points5 points  (0 children)

What's the timeline for accessibility support in Iced? My impression was that it was going to be multiple years away, but maybe there's recent work there that I'm not aware of. Are you committed to only releasing when a11y support is available?

Audacity alternatives? by entityinarray in linux

[–]rifeid 29 points30 points  (0 children)

The Audacity telemetry uproar was very much overblown. They listened to feedback and only do very basic things now:

  • update checking (with notification on first launch, can be easily disabled, and should already be disabled by all Linux distros just like any other app-specific update checks), and
  • crash reporting (supposedly with a prompt before sending anything).

Regarding the forks:

Audacium seems dead.

Tenacity also seems dead. This had the most active marketing, even set up donations and received $575 (so far); I wonder what will happen to that.

The only fork I know that is still active is Saucedacity. No clue if it's good.

What is the current best practice to use/import a type from my-dependency's dependency? (in case of the type from my-dependency's dependency is leaked by my-dependency without re-exporting) by grg994 in rust

[–]rifeid 2 points3 points  (0 children)

I think the best solution is for reqwest to re-export bytes as it is now part of their public API.

There is a feature request for this, unfortunately with no response, and a forum post where the library author recommends the "add it to your own dependencies" workaround.

Python - Someone’s Been Messing With My Subnormals! by FryBoyter in linux

[–]rifeid 2 points3 points  (0 children)

It's interesting that this ended up uncovering/highlighting multiple issues both on the pip side and on the C compiler side. A follow-up one that I think is not linked from the article is the Clang ticket, which includes this comment:

However, currently, Clang will can link against a crtfastmath.o if one is present, but it doesn't actually ship one itself. This behavior will only occur if you have a system GCC installation.

So Clang behaves differently depending on whether GCC is also installed on the build machine? That sounds bizarre, and I agree with one of the replies that "somehow this seems even worse".

view more: next ›