Youtube comments of (@grokitall).

  1. The fundamental issue here is that you have an important maintainer (linus) slightly advocating for rust for linux, and blocking c only code which breaks the rust build, and a less important maintainer (christoph) basically saying he wants to burn that whole project to the ground. This basic incompatibility affects the basic survival of not just the rust for linux project, but also those c coders who for reasons compile the kernel with the rust flag set to off. Calling for a definitive answer to what the truth is is a long overdue request, and the faliure of linus ang greg to address that issue will continue to cause problems until it is resolved. As was said in the thread, it is a basic survival issue for the rust for linux project, and for those getting their c code bounced for rust incompatibility. Stating that in the end, the only solution in the absence of such an answer from linus is to try and submit directly to linus and get the answer that way is basically just stating the truth about how to deal with a maintainer who is just obstructing code for personal reasons. Given that the maintainer has publically stated he would like to burn the entire project to the ground, when breaking code in the project is already getting c code patches bounced, it just strikes me that refering this to the code of conduct guys seems fairly obvious, as this level of hostility towards other contributers, the late nacking for non technical reasons, and so on seem like the sort of thing they should have an opinion on if they are to be of any relevance. While there are valid issues about the inclusion of rust code, that is not what is happening here. It is not about the quality of rust code in the kernel, but the existence of such code, which by now seems to at least have implicit support from linus. The technical question of not having the wrapper duplicated in every driver is basic programming, and the undesirability of this has been accepted practice for well over a decade. Having such code exist was responded to by christoph basically telling the contributer to go pound sand, rather than giving a constructive suggestion as to an alternative location which would be acceptable. Almost nobody came out of this looking good. The maintainer got away with being toxic about a decision which in theory at least seems to have already been made by linus. The code of conduct guys got away with ignoring at the very least a request as to if the behaviour of the maintainer was in scope for them to consider. Linus and greg got away with refusing to address the core question of what is the status of rust code in the kernel. Either it is a first class citizen, and christoph should not be blocking it, or it is not, and linus should not be blocking pure c code for breaking it. You can't have it both ways.
    69
  2. the problem here is not just them, but also you. by allowing them to merge broken code and then fixing it for them, repeatedly, you are enabling their bad behaviour. it is literally their job as a coder on a project with version control to get their code merged. if you take away their pain from merging broken code, you remove their need to do better. this is not to say that you should not train them how to do better when they don't know what they are doing wrong, only that you should do it for them.
    17
  3. The biggest problem i have spotted is distribution managers who can't do the job, especially when package managers go off on their own thing. This happened on red hat when pottering decided to hijack the debugging flag from kernel developers. This is happening on debian with the idiot breaking userspace with package name choices. There are lots of other examples where the managers should step in an tell them off, but won't do it. I have yet to spot an example of maintainer overreach that has not been ignored by their managers.
    16
  4. ​ @darukutsu what happened is that it is owned by Oracle, who like to sue, and do not like to change course. So you can't get them to put it under a compatible license, and even a complete rewrite from scratch is not safe from litigation, as seen by the drama over the Android usage of a subset of the java apis and register based jvm which is needed for mobile and Oracle still don't have. These were all written from scratch, and they still sued, so linus and the kernel lawyers basically say it is an out of tree fs until Oracle makes a move as they cannot take the risk.
    12
  5. the reason for the lack of backward compatability is simple. if you develop a windows library, when you need to break backwards compatability, you create the library 2.0 binary. on linux, they don't keep the abi working, so at some point you have to choose between version 1 and version 2. this breaks things a lot. for old unix software, it mostly still works, as they don't make that mistake. wine does this the right way, by having the old windows libraries translate to the new ones internally, so you only end up maintaining the api and a small amount of glue logic, and the rest is current code.
    11
  6. this is the y2k / centos 8 mentality. in this scenario you get 3 choices. 1, start fixing your snowflake code early, and suffer low levels of pain for a long time. 2, leave it till the last minute, and scramble around with lots of pain and expense. 3, wait till the environment breaks, then have to fix it in panic mode when you might not be able to do it before it kills the company. too many places default towards 3 simply because they can delay it another quarter of a year, until they realise they can't.
    11
  7. looks a lot like rust in the kernel, not playing well with others. the solution for both is simple. do the work by themselves outside the mainline, and as bits stabilise or need to update other parts of the kernel you get someone who can play nice specifically to work on getting that code from where it works and is stable to where it is in a shape that upstream is happy with. thats how the real-time branch got upstreamed, so it can work just as well for rust and bcachefs.
    10
  8. Looks like they are doing a red hat. 1, adopt positive discrimination policies 2, focus on them over the purpose of the organisation 3, implement them in potentiallly illegal ways 4, create a wishlist of what you would like to do with unlimited funds 5, take steps to implement the wishlist ignoring everything else due to being so distracted over your dei policies 6, get called out about it 7, rather than trying to fix it, complain that people are being unkind and not paying you enough while failing to take any actions that effectively adress the problem. Have i missed any steps from the playbook?
    10
  9. Live patching has its uses, but most problems can be run as sharded clusters, where you take one shard out of service, update, and reboot, then do the same for the next one. This preserves system uptime, but not machine uptime. The problem with live patching is that you end up with long running code still running the old library version except when you patch the kernel.
    10
  10.  @KoopstaKlicca  they are two sides of the same coin. in the case of kent and his codevelopers it is exactly as you describe. in the case of rust in the kernel, there is a set of work to be done, and major disputes as to the cost and who is going to pay it, with the rust developers thinking it is minimal and wanting the maintainers to pay, while the maintainers think it is significant, and want the rust guys to do it. in both cases it is some project which on the kernel scale is relatively minor thinking that most of the playing well with others should be done by the kernel maintainers adapting to the needs of their project, with the maintainers resisting. note: i am not saying all the rust in the kernel developers are like this, just enough of them to be harming their own case.
    9
  11. of course they are. llms are based on statistical models, and only provides something plausible. it contains zero feedback in the model to try and improve the likelihood that it has any connection to reality. for that you need white box ai systems, which statistical systems can never be. white box systems require a different level of quality in the input data, which is then kept so you can trace where the rules came from. you also need to quality check the output to make sure it is not producing garbage, and then you need to find out what created the crap. the biggest problem with using llms is that they are currently automated copyright infringement machines, leaving both the creator of the llm and the user legally exposed, which is why most open source projects are looking at an outright ban on ai generated content. also you are left with no defense, as the user just says i trusted the output of the ai, and the owner cannot track back to exclude it from being an exact copy. keep an eye out for the masses of lawsuits currently being planned.
    8
  12. Your comment demonstrates some of the reasons people don't get tdd. First, you are equating the module in your code as a unit, and then equating the module test suite as the unit test, and then positing that you have to write the entire test suite before you write the code. This just is not how modern testing defines a unit test. An example of a modern unit test would be a simple test that when given the number to enter into the cell perform a check to see if the number is between 1 and the product of the grid sizes and returns a true or false value. For example your common sudoku uses a 3 x 3 grid, requiring that the number be less than or equal to 9, so it would take the grid parameters, cache the product, check the value was between 1 and 9, and return true or false based on the result. This would all be hidden behind an API, and you would test that given a valid number it would return true. You would then run the test, and prove that it fails. A large number of tests written after the fact can pass not only when you run the test, but also then you either invert the condition, or comment out the code which supplies the result. You would then write the first simple code that provided the correct result, run the test, see it pass, and then you have validated your regression test in both the passing and failing mode, giving you an executable specification of the code covered by that test. You would also have a piece of code which implements that specification, and also a documented example of how to call that module and what it's parameters are for use when writing the documentation. Assuming that it was not your first line of code you would then look to see if the code could be generalized, and if it could you would then refactor the code, which is now easier to do because it already has the regression tests for the implemented code. You would then add another unit test, which might check that the number you want to add isn't already used in a different position, and go through the same routine again, and then another bit of test and another bit of code, all the while growing your test suite until you have covered the whole module. This is where test first wins, by rapidly producing the test suite, and the code it tests, and making sure that the next change doesn't break something you have already written. This does require you to write the tests first, which some people regard as slowing you down, but if you want to know that your code works before you give it to someone else, you either have to take the risk that it is full of bugs, or you have to write the tests anyway for continuous integration, so doing it first does not actually cost you anything. It does however gain you a lot. First, you know your tests will fail. Second you know that when the code is right they will pass. third, you can use your tests as examples when you write your documentation. fourth, you know that the code you wrote is testable, as you already tested it. fifth, you can now easily refactor, as the code you wrote is covered by tests. sixth, it discourages the use of various anti patterns which produce hard to test code. there are other positives, like making debugging fairly easy, but you get my point. as your codebase gets bigger and more complex, or your problem domain gets less well understood initially, the advantages rapidly expand, while the disadvantages largely evaporate. the test suite is needed for ci and refactoring, and the refactoring step is needed to handle technical debt.
    8
  13. a broken kernel patch can crash any kernel, due to the lack of safeguards inherent in running in kernel space. the problem here is the inept recovery method in windows which kept the machines rebooting in the hope that the buggy driver would somehow magically fix itself.
    7
  14. cloudflare have data centers in the us, and others here have said that trying to force a contract is clearly illegal in all 50 states. not being allowed to talk to anyone except sales, and 24 hours notice from saying it is mandatory to cutting you off while refusing to provide any information as to any issues and why and how the upgrade will mitigate those issues leaves them on shaky legal grounds. retaliating early for saying you are also looking for alternatives in case a solution cannot be found removes any realistic hope of a defense that cloudflare were operating in good faith. as has been pointed out elsewhere here, you can put whatever you like in the contract, but it does not make it legal until it has been successfully defended in court, as trump found out in his new york fraud case.
    7
  15. no, it was anti competitive because they did not want defender to have to play by the same rules. they could just have had defender use the same apis that they wanted to force on everyone else, but chose to remove them instead. this choice was made by microsoft, not the eu.
    6
  16. obviously you did not watch the video you are commenting on, where it clearly stated that alma actively support an architecture not supported by red hat
    5
  17. the insecurity is not down to the speed, but about how hard it is to do the clever tricks required to get the speed. this is why clever code is discouraged in all modern software outside of embedded applications. clever code is expensive to debug and fix, when it moves into kernel mode it is much worse, and once it moves into hardware, the fixes only occur when you replace the hardware, which can be decades depending on the use cases.
    5
  18.  @irql2  according to retired microsoft engineer dave plumer, they had it marked as boot critical according to his sources. i have no reason to doubt his statement. despite how unimpressed i am with various choices Microsoft has made, i have no reason to doubt the quality of their engineers. that is why i am sure they are capable of determining if it is actually boot critical when the driver is being signed. i am also sure that they are capable of writing code which will use that determination to down grade the driver and disable it if it is too broken to boot, and to check if it is stuck in a boot loop. for any os, as long as you can get to startup, and use the net, you can fix the driver with an update without having to manually login to all the locked down machines. the fact that they have not bothered to implement such a measure when this has happened before is disappointing.
    5
  19. to be fair to the companies, a lot of them were shocked that the n-1 and n-2 policies provided by the configuration tool did not also apply to the live update definition files.
    4
  20. one of the main reasons for the dislike of systemd is the mentality of the developers, starting with leonard and continuing through his fanboys. first, he identifies potentially valid problems. he did this with avahi, with pulseaudio and then with systemd. then he get the bit he is working on to be "dev complete", where it works on his machine (in a way that is deliberately incompatable with the alternatives) , and doesn't care if it works on anyone elses machine, and relies on his fanboys to get it to work on anything else, while he completely loses interest in it. this bit is then excused as being optional, and thus it doesn't matter that is incompatable, until one of the higher levels of stuff has a hard dependency on it, and suddenly the alternatives are squeezed out of the mainstream ecosystem, making it harder to remove it when it needs replacing. also, when they do something that causes problems for some other project, well that is ok, because we won't fix it because it in our code. these and other behaviours are just some of the reasons that people don't trust the systemd developers and the fact that redhat has not made any efforts to tone down these bad behaviours is why people don't trust redhat about systemd
    4
  21. ​ @oshochso I'm sure there was a lot of rubbish software claiming "just run me and i will make you feel better", but the actual problem was much harder. i had a gps device where the hardware had this fault, even though the 2 byte window could just as easily been set to start from the date of first manufacture. lots of embedded hardware had the same software issue. not all of it could be updated as we were still using roms and eproms. the bigger issue was all the legacy software which used a date anywhere and had to be audited so it did not fail by surprise when a y2k date was needed. and some of it did still fail. the first warnings about y2k were raised in the 1950s, and they just kept ignoring it until it had to be done as an emergency.
    4
  22.  @tfemby  just because it is working c code, does not make it good code, and even good code is possibly not done in the best way to be compatible. i can think of a number of patch sets written in c which had further work done on top of them out of tree, where it took up to 20 reworks to get to the point where it was right and good enough to merge, and even then they had to then start working to get the extra stuff they built on top upstreamed. just because you wrote something that you think is great (and you might even be right) does not give you the automatic right to have it merged into someone else's project. the real time kernel work was out of tree for 20 years, working to move code from their patched fork into the main line, and every small patch that made it in made the fork easier to maintain. but it did take time and rework to get it in. this is a point kent at bcachefs does not seem to get, and he expects every change to just be accepted right away, turning main line into an experimental kernel, which is why he has the current problems.
    4
  23. this issue of a broken kernel module causing a crash can happen to any non trivial os. the question is why microsoft or crowdstrike did not have anything in place to prevent the boot loop.
    4
  24. the 8ssue with patchguard was that it created a 2 tier system, effectively handing the antivirus market to microsoft. the eu said no have another go. microsoft could have kept patchguard and undertook to have everyone including windows defender move to it by service pack 1, but chose not to.
    4
  25. except this is exactly when you cannot use online for it, as your secret client document is then fed into the model, and might get presented back to your opponent when they do the same. book authors have already spotted this happening a lot, and lawsuits are already on their way.
    4
  26.  @drno87  nothing. this is how linus develops the linux kernel. he applies the pull, and if it breaks, he reverts it, and sends a message saying that it did not apply cleanly, please fix and send a new pull request. the problem is social, and to do with management buy in. testing only works if they all agree that breaking the tests for the stable api is a nono. distributed development only works if the same people accept that breaking the merge is as big a nono. but to enforce it you need someone high enough up the food chain or the community making sure that if you broke it, it is your problem.
    4
  27. python 2 to python 3 has the issue that it makes breaking changes, so the old code won't work anymore. most language updates just release a new version which is a superset of the old version, so they don't have this problem the other way this is avoided is how adding oop to c did it, where there were enough differences to make it a new language, but with minor code tweaks for the compiler, it could still use the old code. this is how we got c, c++ and objective c. python did neither, hence the mess. add to that big monolithic codebases, and the usual y2k ish procrastination, and we get to where we are today.
    4
  28. robert hienlien has a character in the moon is a harsh mistress who says "you make whatever rules make you feel comfortable, and if i need to break them i will do my best not to get caught". paraphrasing here as i don't remember the exact wording.
    4
  29. Testing is hard, because to teach something you have to think about how to get the student to get it right, but to test you need to not only think about how they will get it wrong, but also make sure that the test as a whole covers a good subset of the subject matter. That last point is a real pain.
    4
  30. ​ @DustinRodriguez1_0 then the judge was wrong, and it should have been appealed. it is a clear case of willful blindness leading to deaths, which has lots of precedent.
    4
  31. ​ @julianbrown1331 if as you accept, it is a nightmare to maintain by hand, and it is not suitable for version control, it is almost certainly bad code. most reasons for code to be hard to,maintain are due to breaking good practice, and the code which was generated based on largely untested training data is almost certain to be a testability nightmare are well. not to mention the security issues, copyright problems, etc.
    3
  32.  @guiorgy  yes they could do it tomorrow, but the point is that they have not done so. Also, remember that a lot of these companies are now run by accountants, who upon seeing the money signs from the lawyers, do not bother looking at the costs if it goes wrong. Mostly it is not about making a balanced judgement call, if it was the sgi vs the world case would not have gone ahead, and neither would the Oracle vs Google case.
    3
  33. the fact is that mandatory automatic updates is in breach of any sensible security, stability or resilience policy. they should be able to say there is an update available, and you should be able to say that it does not get installed until it has been triggered by you.
    3
  34. This is the actual reason for the regulation. Unlike the us, the EU recognises that climate change is a thing, and that most power is currently generated from fossil fuels. The best way and the cheapest is to not waste the power in the first place. Using a TV as an example, cheap tvs used to just turn off the tube when you put it on standby, wheras expensive ones did it properly, leaving just the remote control unit turned on, so it could turn the TV back on. The difference in power usage could sometimes be as high as 80% of the peak usage when using the TV, which is a lot of wasted power you have to generate. The same types of mistake were made with multiple generations of devices, including satellite TV boxes, fridges, home automation tech, etc, and to fix this they made this series of regulations basically saying that when you don't need to be wasting power, you should not do it if you do not need to. The issue with the kde and gnome suspend flag seems to come from conflating 2 different use cases under the same flag. The first case is the one relating to power usage and sleep, hibernate and power off. The default should be to reduce power usage when it is not needed, but is currently used as a flag to turn autosuspend on and off. The second use case is where no matter what you are doing, you need to force power off due to running low on battery power. This applies both to laptops and to any desktop or server running with a decent ups, and gradually degrading functionality can extend the time needed until forced shutdown is needed. An example would be to disable windows whole drive indexing on battery power, thus extending battery life. This second use case should have the default be forced shutdown for laptops and for desktops and servers on battery power, and is irrelevant to both on mains power. By conflating the 2 different use cases, you just end up with the currently broken understanding of what the flag should do, and the related arguments about the defaults.
    3
  35. the issue here was not the update, but live patching a kernel driver without bothering to do any testing. previously, they just got lucky.
    3
  36. what is the likelihood that judge cannon will need to get her own cipa clearance so she can make rulings about the classified documents, and if so could she be forced off the case by not being granted such clearance due to her previous bad behaviour in this case?
    3
  37. we have know how to do this since windows 3.11, and it is simple. do not ship untested code! of course we have got better at testing since then.
    3
  38. Actually the digital test can be much better. With the paper test, you are selecting a minute subset of the subject matter, printing lots of copies, and getting them all tested at the same time. With the digital test, you can still do that, and it has the same weaknesses as seen here that you cannot do a resit because now everyone knows the questions. However having done this time's test, you have a new capability, as you now have the next six months to enter the tests from previous times. Now if there is a problem, you can just have the resit use one of the prior tests, which people still won't know which questions are on it. Even better, you can have which test people get better randomly assigned, so that two people sitting the test at the same time get different exams. Later, you can randomise in an even more fine grained manner, selecting a subset of the questions which appeared across all the versions of the exam, so each person gets a unique test. You just can't do that on a paper exam.
    3
  39. but that assumes that they have a decent testing and deployment strategy, despite all the evidence to the contrary. to paraphrase terry pratchett, in the book raising steam, you can engineer around stupid, but nothing stops bloody stupid! 😊
    3
  40. this applies not only to llms, but to the entire field of black box statistical ai. sometimes good enough answers will work for your use case, but a lot of the time you not only need to know that you got the right answer, but also how you got that answer, and why it is right. legal and man critical uses spring to mind, but there are many others. the only answer to this is to use white box symbolic ai, where you can drill down and find those answers.
    3
  41. ​ @usaturnuranus the titan submarine disaster has nothing to do with not knowing the science, bit has everything to do with not bothering to hire any experts in the subject, followed by firing anyone who raised any concerns. Man rated tech has a higher personal integrity requirement than other stuff.
    3
  42.  @kuhluhOG  yes lifetimes exist in every language, but rust seems to need them to be known at api definition time for every variable mentioned in those apis, unlike just about every other language. when you put this constraint on another language just to get your type system to work, it does not come for free. i do not doubt that it is possible to write kernel code in rust, nor do the c maintainers, in fact some people are writing a kernel in rust, and good luck to them. people are also writing code for the kernel, but when you can't even get a stable compiler to work and need to download the nightly builds to get the code to even compile (according to one of the compiler devs st a rust conference), and you need an unspecified amount of extra work to even be able to start doing work on the unstable internal apis, there naturally arises the question of how much work and who has to do it. as to the problem with the drm subsystem, i've not seen the thread, so i don't know if it was done as a discussion around "this variable is used this way here and an incompatible way there", or if they just went and fixed the more problematical one for them to work in the way that made it easier for the rust developers, and then did a big code dump with little prior discussion. if it is the second case, it is the same issue of not playing well with others except on your own terms, and the resulting problems are deserved. if it is the first, then the issue should be raised on the usual channels, and initial patches proposed, with ongoing work to figure out if those patches are the best fix to the identified problems, just like with any other c developer. i just don't have enough context to determine if it was the rust devs, the c maintainers, or both talking past each other, and thus do not have a right to an opinion on the details i do not know.
    3
  43. ​ @ChrisWijtmans they don't take it away from you that way, they deactivate your hosting then demand large fees to get control of the dns entries away from them. there is a similar problem of such disreputable practices with limited company formations in the uk.
    3
  44. a lot of commentators have said that they were running it because their insurance company insisted, and the cloudstrike ceo said the all at once rollout was company policy, which makes the need for the testing they did not do even greater. i find your comment about improved battery life funny, as i have yet to see a laptop which does not waste all the extra capacity.
    3
  45. The devaluing of the money is because they are happy with 2% inflation every year, indefinitely. This devalues what the money will buy, and savings and pensions and benefits, etc. You compound that interest over decades, and it makes savings literally worthless, as well as worth less, even before you get punished for not frittering it all away when you are young.
    3
  46. But if you have to do mocking, because you cannot do unit testing, this is itself a sign that you are writing hard to test code, and is usually a sign that the idea of writing tests was not acted upon until after the code was written. If you write the tests first, you don't write the code in this way, and tend to produce code which is better. But of course you have to break your bad coding habits first, often before you see the design advantages of doing test first design.
    3
  47. ​ @echorises I would argue that while there is a component of tenure which is about generating new knowledge, if you are so dense that you cannot pass the surrounding context on to your students, you are not really competent to get tenure in the first place. it is also a well known and well documented fact that understanding a problem can be hard, but helping someone else understand it is even harder and more importantly a different skill set involved.
    3
  48. it should not make a major difference, as it is basically being set up to return us to the situation before the dissolution of centos. as far as i know, all significant enterprise linux offerings are based of rhel, as this was the position of red hat until recently, and why reinvent the wheel when you do not have to. as to the involvement of oracle, they are just one of the companies getting hosed by the actions of red hat, so this idea makes perfect sense for them to restore a proper upstream.
    3
  49. ​ @Monaleenian as others have pointed out, microsoft has form, so as a monopoly they have to work within the regs designed to prevent monopoly abuse. we used to live with regulations which said who cares about safety, then we discovered that we did, and changed them to restrain companies from ignoring it in certain ways. we used to live in a world where monopolies could do whatever they liked, including using the monopoly in one field to extend it into another, then we realised that also caused problems, and added constraints to make monopolies play well with others. any government regulating business has to balance the needs of investors, workers, and consumers. some places do aspects of that better than others.
    3
  50. the only reason it is not an easy fix is because microsoft did not learn the lesson when mccaffey did the same thing years ago. just track which driver you are starting, and after the reboot disable it. for the rest of it, we already know how not to ship broken code, they just did not do what any junior developer knows how to do.
    3
  51. third party mandatory automated updates that you cannot turn off have no place in any security policy for corporate use. these types of updates are basically saying that your system is so unimportant that you can let someone you don't know decide that the system can be shutdown now, and it does not matter if it needs a complete reinstall to fix it. that is why every half way competent engineer here is saying wtf. it has been known bad practice for systems which matter for decades.
    3
  52. interestingly the only scientist i am aware of to become the leader of their country was margaret thatcher, who had to deal,with the newly discovered phenomena of pollution induced acid rain. with low levels of data about severity and mitigation, she tasked the scientists to improve the data, determine which places needed the most work, and rank the mitigation measures according to cost and effectiveness. it worked. we could do with some more of this type of thinking around some of the other science based problems that we face.
    2
  53. as an aside, it is easy to spot which companies are good and which companies are bad. bad companies go for policies like adopt, extend, extinguish, and part of the extend includes making it slow and costly to migrate. good companies look to industry standards and best practice, and their unique selling point is around making using those things easy to attract customers, and making migrating away as close to trivial as possible to keep customers. if you have made it easy to leave you have a vested interest in making sure your service is so good nobody wants to.
    2
  54. there are a number of people in these comment making statements that are wrong in this case. first, he is a us citizen due to being born of 2 us parents. he has the document to prove it, his birth certificate. the problem here is that they are not accepting it due to the 77 year old valid document not being a modern canadian birth certificate. then there are all the people saying they had the citizen born abroad paperwork. when he came to the us 76 years ago, it was not required, and definitely not proactively encouraged, so it was not granted. getting such documents after you leave is a nightmare. people also suggest that they should not legally have cancelled his driving license, but some here have pointed out that some states require real id for driving licenses, and others don't. some suggest he fly to canada to get things resolved, but as has already been pointed out, he can't even fly within the us, and in any case he does not have a passport. this makes it impossible. on the comments on the original news report, it is pointed out that due to backlogs and the same sort of beaurocratic nonsense, the delay can be over a year, even with all the right documents, and he has no guarantee that he won't have the same issues there. the main problem here is that there are 2 types of beurocrat, one looks for a reason to deny you your entitlements, and having found one either refuses to reconsider, or doubles down on their decision. the other looks hard for any way to help sort out the problem within the rules, often going above and beyond what their job needs to do so. most of the other solutions suggested either require papers he never needed before, or driving out of state to get something done.
    2
  55. one point which everyone seems to be missing is that the test haters seem to conflate which level you test at (end to end, integration, or unit tests) with regression testing, and then say that because they implement their tests after coding when the code is already hard to test, that testing is bad. regression testing is a special type of testing which exists to tell you if you broke your public api before your users tell you that you broke your api. it is implemented with a combination of unit tests and a smaller number of integration tests, and the test suite exists tell the programmer that the code does what he intended it to do, and that later changes didn't break it. literally any other testing is not regression testing, but seems to be all that the test haters are complaining about.
    2
  56.  @julianbrown1331  partly it is down to the training data, but the nature of how they work does not filter them by quality either before, during, or after training, so lots of these systems are producing code which is as bad as that produced in the average training data, most of which is produced by newbies learning either the languages or the tools. also, you misrepresent how copyright law works in practice. when someone claims you are using their code, they only have to show that it is a close match. to avoid summary judgement against you, you have to show that it is a convergent solution from the constraints of the problem space, and that there was no opportunity to copy the code. given that there have been studies showing that for edge cases with very few examples they have produced identical code snippets right down to the comments in the code, good luck proving no chance to copy the code. just saying i got it from microsoft copilot does not relieve you of the responsibility to audit the origins of the code. even worse, microsoft cannot prove it was not copied either, as the nature of statistical ai obfuscates how got from the source data to the code they gave you. even worse, the training data does not even flag up which license the original code was under, so you could find yourself with gpl code with matching comments leaving you with your only choice being to release your proprietary code under the gpl to avoid triple damages and comply with the license. on top of that, the original code is usually not written to be security or testability aware, so it has security holes, is hard to test, and you can't fix it.
    2
  57. that is a gen 1 smart meter. gen 2 meters don't have that specific problem, just lots of others.
    2
  58. ​ @flamingscar5263 microsoft did backwards compatibility because they had to, not because they chose to. when the new version won't run the majority of existing code, or is a pain to use, you are stuck maintaining the old version. this is why xp hung around for so long, the replacement was both worse, and incompatible, so people just stuck with xp. the same issue is going to hit with 11 and 12, because they are full of anti features people don't want, and the increased cost of the base hardware is just not worth the antifeatures that are being forced on you.
    2
  59. don't forget that for 12 you require the ai chip as well, so the more tech aware will price up for hardware that is 12 compatible, which is way more expensive. this is only going to speed up the move away from windows. more stuff will move to phone and tablet apps. as the extra price of apple becomes less, there will be more moving there, and those who cannot afford to do either will be pushed into sticking with unsupported 10, or moving to linux, as is already happening outside western countries. the 10 hardware mostly won't go to landfill, it will be saved, and redirected to other countries as affordable linux machines.
    2
  60. ​ @-_James_- I would agree, but most large functions I have seen are doing multiple things. Either they don't have separation of concerns and do more than one thing at once, or they do a sequence of multi part steps, which are better split up.
    2
  61. if your refactoring is breaking lots of tests, your unit test are testing implementation and are therefore not regression tests, or you are breaking your public api, in which case breaking your tests is the least of your problems.
    2
  62. it did not become a brick. both microsoft and crowdfire released kernel updates. one of them broke everything. microsoft had no means to automatically block them on next reboot. therefore microsoft is not fit for locked down corporate use. unfortunately nobody else is either.
    2
  63. The old tired "deserving poor" arguament again. Almost all people on ill health related benefits are actually ill, and do not choose to be so. Like many of the long term sick, my conditions will not just heal up and go away, but they do have good months and bad months. During a good month you might see me at shops, or the occasional meal. During a bad month you just won't see me at all. Then on the good month people say that there cannot be anything wrong with me because they see me out and about, ignoring the fact that the rest of the time they just don't see me.
    2
  64. ​ @thedoctor16 I think some ofmtheir politicians qualify as jokes 😂
    2
  65. Absolutely right. Unit tests do automated regression testing of the public API of your code, asserting io combinations to provide an executable specification of the public API. When well named, the value of these tests are as follows: 1, Because they test only one thing, generally they are individually blindingly fast. 2, when named well, they are the equivalent of executable specifications of the API, so when it breaks you know what broke, and what it did wrong. 3, they are designed to black box test a stable public API, even if you just started writing it. Anything that relies on private API's are not unit tests. 4, they prove that you are actually writing code that can be tested, and when written before the code, also proves that the test can fail. 5, they give you examples of code use for your documentation. 6, they tell you about changes that break the API before your users have to. Points 4 and 6 are actually why people like tdd. Point 2 is why people working in large teams like lots of unit tests. Everyone I have encountered who does not like tests, thinks they are fragile, hard to maintain, and otherwise a pain, and who was willing to talk to me about why usually ended up to be writing hard to test code, with tests at to high a level, and often had code with one of many bad smells about it. Examples included constantly changing public API's, over use of global variables, brain functions or non deterministic code. the main output of unit testing are code that you know is testable, tests that you know can fail, and knowing that your API is stable. As a side effect of this, it pushes you away from coding styles which makes testing hard, and discourages constantly changing published public API's. A good suite of unit tests will let you completely throw away the implementation of the API, while letting your users continue to use it without problems. It will also tell you how much of the reimplemented code has been completed. A small point about automated regression tests. Like trunk based development, they are a foundational technology for continuous integration, which in turn is foundational to continuous delivery and Dev ops, so not writing regression tests fundamentally limits quality on big, fast moving projects with lots of contributes.
    2
  66. however they try to implement it, it won't work in this case. for this type of software to work, it needs its grubby little fingers everywhere. for containers to work, it needs to limit where those fingers can go, so the 2 solutions are fundamentally incompatible.
    2
  67. ​ @MichaelDeHaven you are right. the reason this was news was because a lot of these systems were either locked down, or where you could not get to them. the only solution to avoid the boot loop is for the os vendor to spot a new driver update blocking boot, disable it, and reboot without it. and that applies to any os.
    2
  68. dave farley looked at how the report was done because it did not make sense, and totally ripped it to shreds for bad methodology. it was a report done to produce selling points for the book.
    2
  69. it is not about using gpus or not. llms have doubled in size every generation, requiring exponential growth in the training data, and in the number of independent variables needing to be tuned. this takes massively more resources to operate, and that is to produce something which has very limited understanding of the problem space. statistical ai is about what is plausible, not what is right, and is thus completely unfit for any safety critical job, which requires the answers not only to be good enough, but also fast enough, and easy to fix if something goes wrong. without a model of the problem space, it is hard to do any of them.
    2
  70.  @Pentium100MHz  if your car is relatively modern, it it is already computerised. The engine has a computer managing it, and most after market and a lot of built in entertainment systems run on android based embedded computers. As to your set top box shutting down during recordings, the word for that is broken. It should wake up when the recording is due to start, and stay awake during the recording, because it is doing something. However a lot of people here in the UK leave their tvs on in multiple rooms even when there is nobody there, or when they go out, and if the prompt comes up asking to verify you want to keep the TV on is not responded to, it goes into standby.
    2
  71. except that another commentator pointed out that writing a compiler was the keystone project for their cs degree, and how can you do that well without understanding and using version control, libraries and api's.
    2
  72. ​​ @mikkpal the after action independent report is in, and confirmed what most developers expected must have happened for this to escape into the wild. the crowdstrike software consists of 3 parts, the core kernel module, the template file which is loaded into kernel space, and a signature file which uses the parameters collected by the template file to identify threats. as per company policy mentioned by the ceo, the channel file updates get run against a verifier program, then shipped directly to every customer, which is not what the companies using it were lead to believe. even worse, the template file does not get tested at all, as it is replaced by a mock. so when the signature file was updated to check specific values in the last parameter, it triggered a bug where the template file did not collect and data for that field. by mocking it, this was not detected prior to release. this broken template file was bundled up with the signature file to produce the channel file which was then shipped to everyone. by skipping integration testing with the main kernel module, it was never run, so not only did it not detect this bug, it did not spot the failure of the kernel module to recover from the bad update either. by failing to canary release, they missed the chance to spot these bugs before they were shipped to customers.
    2
  73. the main point i would pick you up on is your use of advanced cisc instructions vs single core risc, which is largely a straw man argument but useful as an illustration in some circumstances. the real battle now is between a small number of fast but power hungry cisc processors which need lots of cooling, and much higher core count risc processors which are cheaper to design, build, and run. this is why your average smartphone already has at least 10 cores, while your average desktop does not. yes, i know multithreading inflates the thread count, but the results are in, and the downsides are enough that it is starting to go away.
    2
  74. with the amount of money lost, i am sure plenty will try, and bear in mind that a lot of the companies hit were fortune 500 companies with their own teams of lawyers, it just depends if they can find a venue which will exclude their choice of venue and other weasel clauses.
    2
  75. no, waterfall was not a thought experiment, it was something that emerged by discovering that we also need to do x, then just tacking it on the end. the original paper said "this is what people are doing, and here is why it is a really bad idea". people then took the diagram from the original paper and used it as a how to document. the problem with it is that it cannot work for 60% of projects, and does not work very well for a lot of the others. they tried fixing it by making it nearly impossible to change the specs after the initial stage, and while it made sure projects got built, it ended up with a lot of stuff which was delivered obsolete due to the world changing and the specs staying the same. the agile manifesto occurred in direct response to this saying here is what we currently do, but if we do this instead, it works better, making incremental development work for the other 60%.
    2
  76. Actually if you look at the mandatory filings for trump media group, it is a lot higher than six. That is not counting the number of companies which he forced into chapter 11 bankruptcy protection.
    2
  77. It's called redistributive taxation, and is based on the idea that it is better to help those in need, than to force them into crime and all of the social and other costs incurred by turning them into criminals. If you remove it, you go back to the system we had before social security, with high crime levels, prison populations even higher than those in America, and all the problems that go with it.
    2
  78. i think he is mainly wrong about just about everything here. there is a lot of reimplimentation in open source, as people want open source usage of preexisting filetypes and apis, but this is useful. technical quality matters, otherwise you end up with bit rot. people who can do cool things is not the same as people who can explain cool things and otherwise communicate well. most of the rest of it sounds like someone who sends in a 90k pull request then feels but hurt that nobody is willing to take it without review, and it is just too big to review. 20 years ago we had open source developed with authorised contributers, and it just caused way to many problems, which is why we now do it with distributed version control, and very small pull requests. this also removes most of the "how dare he criticise me" attitude due to being less invested in a 10 line patch than a 10k patch. also, text does not transmit subtle very well, and when it does, most people miss it. this leads to unsubtle code criticism, to maintain the engineering value.
    2
  79. This is because all of the car companies except the American ones design for the world market, which includes the USA, Europe, etc wheras the us makers design for the home market conditions only, which result in gas guzzling tanks that nobody else wants or can afford which have to be extensively modified to sell outside the us which makes the price even higher.
    2
  80. this is a non trivial task, as all major enterprise distributions have been rhel derived, so all software for enterprise uses the rhel assumption set. it does not matter if this is just assuming being rpm based, or lots more of the rhel options, every source of divergence needs to be addressed to make the code debian compatible. from a simple point of engineering, this takes both time, and actually being bothered about debian compatibility, and we currently have a bunch of rhel alternatives which do not need such major work, so third party suppliers will address those first.
    2
  81. it is worse than that, statements from the eula and red hat employees make it clear that even if you have a valid reason for having a developer license, they reserve the right to decide that even using one of the machines as a print server as part of that purpose gives the authority to decide you do not qualify, and come in and audit you for how many licenses they think they deserve paying for. this makes the value of the dev license almost zero due to future liability risks.
    2
  82. all that needs to happen for zfs to be ok in the kernel is for the other members of open ela to ship it in open ela. at that point you have an oracle backed organisation releasing the code under the gpl. this was what tripped up sco, as they were still shipping caldera linux gpl while trying to sue people for stuff in the kernel.
    2
  83. ​​ @diogotrindade444 every binary file type developed by microsoft includes an id type signature at the beginning, which can be checked so the file won't load if it is wrong. that would have stopped this. canary releasing from cloudstrike would have minimised the scope of this. proper ci and cd would have stopped this. a proper bad driver detector which just checks if it updated and crashed windows would have made the fix just turn it off and on again. not installing software which stopped you from checking it internally before updating every machine would have stopped this. plenty of blame to go around.
    2
  84.  @ChristianWagner888  they did do something unusual. their installer downloaded an update which it then did not sanity check prior to putting it in the right place to use. then their driver basically assumed that all updates would be sane, and further failed to have any mitigations in place to stop it causing problems if it was not. their are additional mistakes they made to even let this get out into the wild, but that is a separate issue.
    2
  85.  @ChristianWagner888  i agree, but antivirus companies in general live patch their signature files, so you don't get the luxury of waiting. and being on the previous version only works for the driver if it has the problem. this hit the live update, and so affected every version of the driver.
    2
  86. so will a lot of government desktops, and financial services desktops, and anywhere else where privacy is mandated either by policy, or by law. it is even possible the eu will ban recall outright, as all that lovely info will be being shipped outside the eu in contravention of current eu law.
    2
  87. Everything is taught using easy examples. The reason is simple. If you try and teach using real world large problem examples then it becomes less about what you are trying to teach, and more about the detailed understanding of the large problem you are using as your example. So what a good teacher will do is look for the simplest example possible which still allows you to demonstrate as many details as possible of the thing you are trying to teach. If it turns out a specific aspect doesn't work with that example, look for another one that covers as many of the remaining details as possible. It is for just this reason that every new way of doing AI in games starts by examining how it works with tic tac toe and moves on to harder examples as needed. Because you already know the problem space, you can spend all of your time looking at the potential solution and trying to understand the techniques involved.
    2
  88. he is not comming from small systems, he was on the team which developed the code which runs the london stock exchange, and had to deal with lots of trades per second, and they deveĺoped using an aproach which was basically continuous integration
    2
  89. the point is that you use fedora if you want red hat tooling in a non enterprise distro so you can use the same it staff to support both. the problem with red hat and their scorched earth policies towards existing classes of customers that they do not see the value of is that not only does it diminish the value of rhel, but also of non enterprise upstream.
    2
  90. as a mattter of procedure, could a fedaral judge ignoring the law get removed by losing her licence?
    2
  91. people have been looking for ways to reduce the cost of microkernels in terms of context switching and message passing since the 1970s. so far, everything tried which speeds up microkernels also speeds up monolithic kernels as well, which is why no mainstream os vendor ships a pure microkernel.
    2
  92.  @marcogenovesi8570  no, i mean the subset of rust developers who think that searching for things like lifetimes and other things not a part of c is trivial, but are unwilling to do it themselves, then want to throw the code over the wall into the kernel and then want the kernel maintainers to do the work maintaining it (even th9se who don't know rust). very like the way that the kdbus people could not be bothered to do the work to speed up dbus, and just expected to throw the existing api into the kernel and hand the problem over to the kernel folks. this is not just about kent, but is a bigger problem of relatively minor developers thinking that they can work in their sandbox, and when they think the code 8s ready, just dump it on the kernel maintainers, who also have to do the work to make the kernel ready for their code dump and maintain it later.
    2
  93.  @roundduckkira  kent is a major problem for kent, but not all code that works gets accepted. what is the reason for rejections? not accepting that there is a problem. not liking the proposed solution? a large set of patches all dropping in o e big merge? the patches arriving late in the merge cycle? none of these is the maintainer being deliberately awkward, and all can have valid reasons for not accepting the merge. they all have responses which can be made to get them merged eventually. not having seen the threads, i can't tell if it is problems with the maintainers, if the developers are just feeling entitled and then butthurt because their code was not just immediately taken without comment, or if it is members of the two communities talking past each other.
    2
  94. The people making those arguments are just proving that they don't understand testing, and can't figure out how to do continuous integration. Tdd only pushes towards lots of abstraction when trying to get legacy code under control. The rest of the time it drives towards writing testable modular code with io pushed to the edges of the system, producing self testing code with a thin and thus easily replaceable user interface. While this does move the regression tests to the front of the process, it makes the debugging phase nearly non-existent and what little is left becomes fairly trivial, as does expanding the codebase. The data is already in about which approach between no test, test after and test first produces better results in the form of the dora reports, and it says do more testing earlier and at the right level and get more, better and easier to expand code faster in the long term. It also points to the long term not being that long.
    2
  95. ​ @lordgarion514 but lots of people who were hit used release n-1 on their production systems and n-2 on their backups. unfortunately the crowdstrike rapid release process gives the impression that this applies to that as well, when it does not, so what was expected by their customers was that the release process would be engineered to quickly stop a problem and recover, and that this would be spotted on the customers test machines. this then would not be applied to the n-1 systems in production, and if it took long enough to hit them, it would not hit the n-2 backus machines. what actually happened is that this flag only applied to the core kernel update, not the two files in the channel update, so when it was shipped untested, it kept shipping for 90 minutes, taking down the test machines and production machines at the same time, and then when it shifted to the backups it killed them too. the only thing that crowdstrike got right about this was saying yes it was us.
    2
  96. The context switching is actually one of the points of tdd. You are constantly validating that your regression test fail, then pass with passing code, then using the refactoring step which is now easy as you have the tests to handle the technical debt. All the while you are discouraging habits which produce hard to test, coupled and in other ways legacy code. As a side effect you end up with a validated test suite for continuous integration, code which you know passes, new code going into version control which you know works and so do the tests that go in with it, and debugging becomes easier due to the smaller changes. You also end up with high code coverage, testable code, a starting set of examples for writing your documentation, and lots of other benefits.
    2
  97. but the machines staying down is directly due to microsoft. if they had looked past safe mode and implemented something to detect and recover from bad driver updates, then it would have been a simple case of turning the machine of then on again and letting it recover.
    2
  98. i cannot agree with the blanket assertion that ms windows was a net good. as terry pratchett pointed out in the book "raising steam", when it is time for trains,, you get trains. similarly, the dreadful design of the pc came about because everyone else was building a comparable product and ibm did not spot this disruptive technology coming. even desktop gui designs date back to xerox parc back in the 80s, and only needed the hardware capabilities to catch up. in the mean time, you gradually had a diversity of manufacturers converging on standards for interoperability, which microsoft deliberately killed to force the windows virus platform into existence. there is lots of evidence of lots of harm caused by microsoft in their relentless abuse of monopoly power which undercuts your blanket assertion. note: i am not saying that it did no good, just that the balance is a lot finer than the fan boys think, and that a case can be made for a net harm.
    2
  99. ​ @VoicesInDark i would strongly disagree with the idea that kernel developers are replaceable, as most of the are doing critical work in important but obscure areas of development. as for them getting paid, so what if some company wants to pay them, with the idea of basically putting bug bounties on problems affecting their company. you still have a number of kernel contributors who are not tied to big companies. as to it being a community or not, i don't see any way you can define that word which would not cover 15,000 people trying to not get in each others way for years. if you mean the kernel project not being community driven like centos used to be and rocky is now, very few large projects or distributions fit that model. it certainly does not fit how systemd is developed, nor the kernel, and not gnome either.
    2
  100.  @MikkoRantalainen  kent obviously has an out of tree fork of the kernel where he does the development work, which is fine, and is where his current behaviour is heading. what he needs is someone else to work on upstreaming the code in small patches, doing rework to make the working code compatible with the rest of the code in the kernel. if he runs it like the real time patches project did, improvements can be made on his tree, while someone else manages reducing the delta between his tree and upstream, eventually getting his code into mainline. note: linus did not say no more bcachefs, only no more kent, and whoever takes over upstreaming needs to play well with the rest of the kernel developers..
    2
  101. yes, you moved, but only because you had already built your infrastructure to cope with not being on aws. not doing that was the casinos mistake, so they could not move at first lies, and had significant downtime after they were shut down reimplimenting everything.
    2
  102. They said the same thing about the idea of having a minimum wage, where in reality it exists to prevent bad businesses being subsidies by social security. The basic idea of ubi is to replace existing means tested benefits with cheap easy to administer benefits which are paid to everyone in the qualifying group equally, like child benefits. Most children have not ceased being living children one week after qualifying, so you do not need to change the amount every week. Same with pensioners, the disabled, the elderly or veterans. In each case the criteria are simple, slow to change, and usually obvious to everyone. Because everyone that qualifies gets it, you get rid of this nonsense of "the deserving poor" which infests discussions around means testing, and also get rid of over paying and underpaying which are rampant with means testing. You also stop politicians from claiming that everyone overpaid is a fraudster. Just like any other benefit, you still pay taxes if you earn enough, so make it taxable, and adjust tax free entitlement levels to make it revenue neutral for those on above average incomes, while adjusting general taxation to provide total benefit levels that everyone is mostly comfortable with.
    2
  103. risc came about because we did not know how to write compilers properly. to get around some people looked at one of the currently available machines, and went through the instruction set, looking at each instruction and checking if it was worth the silicon used to implement it. how they did this was they took the instruction set as an api, and looked to see if they could replace the instruction in the assembler with a macro implementing that instruction using a subset of the instructions on the processor, and what that did to speed and space considerations for the final program. if the results turned out to be better, they stopped generating the instruction, and used the macro instead, hence reducing the size of the instruction set. these complex instructions had a number of issues, which give risc architectures an advantage. first, they are no easier to implement in hardware than in software. if you don't believe me you only have to look at the fact of how many intel processor versions you identify by recognising which instruction on the chip is in some way broken. second, they take up a lot of silicon, which could be being used for something better. this has a massive opportunity cost, even before you go multicore. third, they slow down your processor. not only do they typically take multiple clock cycles to run, but also due to the current emphasis on a global system clock, they slow every instruction down to the clock speed of the slowest part of any instruction. for these and many other reasons, there is great interest in moving from cisc to risc. in fact the advantages are so high that most cisc processors are actually implemented like a virtual machine running on an internal risc processor. it also turns out that risc designs can do the same work using less energy, which is extremely important for mobile (where the issue is battery life) and for data center (where cooling is the issue). luckily, the abusive wintel duopoly doesn't control most of computing any more, only the desktop, so it is not really slowing things down too much.
    2
  104. you mean an argument for continuous delivery. ci and cd are designed to block deployments of broken systems.
    2
  105. sorry, but with broken kernel drivers for any operating system for locked down corporate use you either need automated roll back after a failed reboot, or you need automated bad driver detection and isolation. nobody implements the latter, and windows safe mode does not qualify as the former.
    2
  106. Most large functions I have seen are multiple parts mashed together all in one function. If you split them, name them we'll, and use them sensibly, the whole thing ends up more understandable and smaller.
    2
  107. that is so wrong. the purpose of the tests is to guard against regressions. writing them first proves that they fail when you need them to. if you don't care if your code other people use breaks, then you don't need to keep the tests. otherwise, that is the entire point of having them, so that you feel the pain before you shop broken code yo your users.
    2
  108. the issue of what makes code bad is important, and has to do with how much of the complexity of the code is essential vs accidental. obviously some code has more essential complexity than others, but this is exactly when you need to get a handle on that complexity. we have known since brooks wrote the mythical man month back in the 1970s that information hiding matters, and every new development in coding has reinforced the importance of this, which is why abstraction is important, as it enables this information hiding. oop, functional programming, tdd, and refactoring all build on top of this basic idea of hiding the information, but in different ways, and they all bring something valuable to the table. when you have been in the industry for a short while, you soon encounter a couple of very familiar anti patterns, spaghetti code, the big ball of mud, and the worst one is the piece of snowflake code that everyone is afraid to touch because it will break. all of these are obviously bad code, and are full of technical debt, and the way to deal with them is abstraction, refactoring, and thus testing. given your previously stated experience with heavily ui dependant untestable frameworks, therefore requiring heavy mocking, i can understand your dislike of testing, but that is due to the fact that you are dealing with badly designed legacy code, and fragile mocking is often the only way to start getting a handle on legacy code. i think we can all agree that trying to test legacy code sucks, as it was never designed with testing or lots of other useful things in mind. lots of the more advanced ideas in programming start indirectly from languages where testing was easier, and looked at what made testing harder than it needed to be, then adopted a solution to that particular part of the problem. right from the start of structured programming, it became clear that naming mattered, and that code reuse makes things easier, first by using subroutines more, then by giving them names, and letting them accept and return parameters. you often ended up with a lot of new named predicates, which were used throughout the program. these were easy to test, and by moving them into well named functions it made the code more readable. later this code could be extracted out into libraries for reuse across multiple programs. this lead directly to the ideas of functional programming and extending the core language to also contain domain specific language code. later, the realisation that adding an extra field broke apis a lot lead to the idea of structs, where there is a primary key field, and multiple additional field. when passed to functions, adding a new field made no difference to the api, which made them really popular. often these functions were so simple that they could be fully tested, and because they were moved to external libraries, those tests could be kept and reused. this eventually lead to opdyke and others finding ways to handle technical debt which should not break good tests. this came to be known as refactoring. when the test breaks under refactoring, it usually means one of 2 things: 1, you were testing how it did it, breaking information hiding. 2, your tools refactoring implementation is broken, as a refactoring by definition does not change the functional nature of the code, and thus does not break the test. when oop came along, instead of working from the program structure end of the problem, it worked on the data structure side, specifically by taking the structs, adding in the struct specific functions, and calling them classes and method calls. again when done right, this should not break the tests. with the rise of big code bases, and recognition of the importance of handling technical debt, we end up with continuous integration handling the large number of tests and yelling at us when doing something over here broke something over there. ci is just running all of the tests after you make a change to demonstrate that you did not break any of the code under test when you made a seemingly unrelated test. tdd just adds an extra refactoring step to the code and test cycle, to handle technical debt, and make sure your tests deal with what is being tested, rather than how it works. cd just goes one step further and adds acceptance testing on top of the functional testing from ci to make sure that your code not only still does what it did before, but has not made any of the non functional requirements worse. testing has changed a lot since the introduction of ci, and code developed using test first is much harder to write containing a number of prominent anti patterns.
    2
  109.  @nexovec  financially, absolutely, you just need to spot early when to abandon the sinking ship.
    2
  110. You can still do that. The thing theo was referring to was that not having known about the special case of 0.minor.patch having minor be both the api breaking and api non breaking, he now cannot go back and take advantage of it now he does know about it. If you want to continue maintaining version 2 code after moving to version 3, this is no problem, you just cannot add api breaking changes to it. And yes, global state variables having the default changed is an api change, it is just a very bad way of defining the api.
    2
  111.  @ShawnFumo  these systems were mostly locked down, and mostly for good reasons. this is why the boot loop caused so many problems for so many people. the only way to fix this was to turn up, change all sorts of settings so that the system was unlocked and insecure, then do a trivial fix, then secure it and lock it down again, and that is in the cases where access was easy. try doing that to airport flight status screens 20 feet in the air. this is almost impossible to outsource to local staff, unlike the "reboot into safe mode and delete this file" advice from cloudstrike.
    2
  112. I think llvm did not do itself any favours. Originally it used gcc as its backend to provide support for multiple triples, but later defined them in an incompatible way. Seems silly to me. It has long been possible for compiler writers to define int64 and int32 for when it matters and let the programmer use int when it does not matter for portability. The compiler writer should then use the default sizes for the architecture, rather than just using int. At abi implementation time, it matters, so there should not be any it depends values in any abi implementation. Of course that case mentioned is not the only time the glibc people broke the abi. I think it was the version 5 to 6 update, where they left the parts that worked like c the same, but broke the parts that worked like c++, but did not declare it as a major version bump, so every c program still worked, but every c++ library had to be recompiled, as did anything which used the c++ abis. Another instance of full recompile required, and it has become obvious that the glibc authors don't care about breaking users programs.
    2
  113. only if kernel level code is already compromised.
    2
  114. no, the regs say which documents they will accept for real id. this is what started the problem. then they over extended it to deny his standard license.
    2
  115.  @williammkydde  not really. the way government works in the uk mirrors the us in some respects. the cabinet decides stuff, then issues instructions to the civil service telling them what needs to be achieved. they then look at if they can do it within the current legislation, and formulate detailed policy which is then reported back to the minister for approval before it is implemented. if it can't be done, they instead propose changes to the law that would then eventually be put before the legislature to approve and or amend. the civil service then implements administrative government within the constraints provided by the law, with most choices never getting as high as the minister. same as america and most democracies.
    2
  116. the idea goes back further than that, back to when audio recordings were first being made, and the term for it is replicative fading. but it is still the same phenomena that over time the models become dominated by the error data unless extreme steps are taken to correct for it.
    2
  117.  @noblebearaw  actually, the bigger problem is that black box statistical ai has the issue that even though it might give you the right answer, it might do so for the wrong reason. there was an early example where they took photos of a forest with and without tanks hiding in it, and it worked. they then went back and took more photos of camouflaged tanks, and it didn't work at all. they managed to find out why, and the system had learned that the tank photos were taken on a sunny day, and the no tank photos were taken on a cloudy day, so the model learned how to spot sunny vs cloudy forest pics. while the tech has improved massively, because statistical ai has no model except likelihood, it has no way to know why the answer was right, or to fix it when it is found to get the answers wrong. white box symbolic ai works differently, creating a model, and using the knowledge graph to figure out why the answer is right.
    2
  118. The arguments you just made apply equally to any form of social security, and to other policies as well, but they don't work. We have social security to stop the people fallen on hard times from being forced into criminality. We have a minimum wage to prevent bad employers from paying a wage so low you cannot afford to live on it, and so are forced onto social security. Where they work, we have anti monopoly abuse rules so that bad capitalists cannot set prices high just because you cannot go anywhere else. And we are all looking non means tested benefits and how to introduce them as an alternative to the problems that come from means testing
    2
  119.  @jose-lael  certainly the move to produce some chip designs which dump x86 support should help them reduce transistor counts a lot, which should reduce some of the risc chip advantage for multicore designs. a fundamental own goal by cisc chip companies is their systematic failure to work closely with compiler designers. if they worked to move some of the custom logic into external chips like we did in the 8bit days, and looked to find software improvements to replace the extra instructions, which could be released to compiler writers under something like a bsd licence, they could significantly reduce the amount of legacy stuff they had to support on chip, reducing transistor counts a lot and possibly having other advantages. as it is, instead we get legacy cruft in the processor design, the need for soft microcode updates to fix cpu bugs and other similar garbage.
    2
  120. The problem with calling the public / private split fake is that it ignores what it is actually for. When publishing code, the public stuff goes into your header files, and the promise is that this stuff won't break without a good reason, and not very often. While you can access the private code using reflection, it is not even guaranteed to work across individual patches, let alone be consistent across major releases. Your private code is then tested by calling your public API's and if it is not called then either you don't have enough tests, or it is dead code you can delete and the solution Is to either add tests or delete code.
    2
  121. it was not j7st graphics where performance stunk, but was inherent in the microkernel model. when you add a separate user space to the model, context switching kills performance so you try and do it as Little as possible. when everything but the microkernel is in user space context switching is everywhere.
    2
  122. ci came from the realisation that the original paper from the 70s saying that the waterfall development model, while common was fundamentaĺly broken, and agile realised that to fix it, you had to move things that appear late in the process to an earlier point, hence the meme about shift left. the first big change was to impliment continuouse backups, now refered to as version control. another big change was to move tests earlier, and ci takes this to the extreme by making them the first thing you do after a commit. these two things together mean that your fast unit tests find bugs very quickly, and the version control lets you figure out where you broke it. this promotes the use of small changes to minimise the differences in patches, and results in your builds being green most of the time. long lived feature branches subvert this process, especially when you have multiple of them, and they go a long time between merges to the mainline (which you say you rebase from). specifically, you create a pattern of megamerges, which get bigger the longer the delay. also, when you rebase, you are only merging the completed features into your branch, while leaving all the stuff in the other megamerges in their own branch. this means when you finally do your megamerge, while you probably don't break mainline, you have the potential to seriously break any and all other branches when they rebase, causing each of them to have to dive into your megamerge to find out what broke them. as a matter of practice it has been observed time and again that to avoid this you cannot delay merging all branches for much longer than a day, as it gives the other braches time to break something else resulting in the continual red build problem.
    2
  123. because a lot of these machines are locked down, it would not help. you cannot stop buggy kernel drivers from crashing the kernel, but you can put things in place to automatically disable them next time you boot, meaning no boot loop, just power cycle the machine and it is back up and running, and able to check for another update.
    2
  124. ​ @ITSecNEO bull, android is basically the linux kernel, with a few android specific tweaks. the linux kernel is huge with a lot of push back against rust for anything the rest of the kernel might need to depend on. the advantages for rust in a mixed codebase are vastly overstated, as it is hard to call rust from c, and calling c from rust is inherently limited due to the differences in language design.
    2
  125.  @ITSecNEO  according to the android website, the android kernel is a modified lts linux kernel with some extra patches which have not been upstreamed yet. given the size of the linux kernel, and the resistance of upstream to take rust code for anything other code might depend on, the amount of rust in the kernel has to be minimal compared to its size.
    2
  126. the point here is that there are a set of core technologies which are essential for being able to work on code in a modern context, most of which can e taught the basics of in less than an afternoon. structured programming used to be controversial, so was version control, and so is continuous integration. i would argue that you should not be able to graduate without being able to submit code, which implies knowing a language, producing a program, checking it into version control, and having it pass continuous integration. all of that can be taught in an afternoon using fizbuzz and the idea that you can spend four years learning advanced techniques without learning the basics of working in a modern high end environment should not be acceptable.
    2
  127. ​ @Ensue85A i used a satellite tv card, but same basic idea. when i needed ordinary tv, i used an old video recorder to decode it, then passed the output to a standard video capture card.
    2
  128. ​ @AK-vx4dy infrastructure is any person, device or service without which your business stops trading and starts losing money. resilience planning requires you to ask what parts of your business does this cover, and what plans do you need to put in place to cope with it. chaos engineering then goes one step further, and deliberately blocks that infrastructure to see if your plans are good enough.
    2
  129. ​ @gloin10 I have !not seen any polling that compares going back to what we had before, which can't happen, and the reality going forward of requiring joining the Eurozone, none of the opt outs we had, and all of the other requirements for new members which we never had to comply with before. Given that, it is hard to draw any conclusion other than that a large number of people at this relatively early stage regret losing what we had before. Because we left to deal with long term structural problems that membership prevented us from addressing, the benefits will only show up over decades. Given that, it is hardly surprising that the emphasis is on what we lost, rather than on what we could gain. It is also true that no major politician has handled brexit properly since Cameron agreed to the referendum, either in the UK, or in Europe.
    2
  130. actually there have been multiple cases in multiple jurisdictions, which pretty much all agree that if you are guilty of negligence, willful blindness gross negligence or various specific types of illegality, the insurance company does not have to pay.
    2
  131. llms and statistical ai in general work by having the user tweak the input until the output becomes good enough. unfortunately, work on refactoring demonstrates that relatively minor tweaks cause the input code to become completely different code rather than modified code, making version control largely broken for that change. lots of different work implies that without a good model, you don't produce good updates, hence the doubt, as statistical ai has no model of what is right, and how it might be wrong.
    2
  132.  @alst4817  no, i am assuming that due to the model being black box, it does what it does, but you don't know and often can't know that it is not coincidentally giving answer that happen to match what useful answers would be. even worse, due to the lack of modeling the problem space involved in this type of ai, it cannot make use of all sorts of useful feedback about why that particular answer would be garbage, and most black box ai is unfixable if a problem is encountered. the only solution to that is to use white box symbolic ai methods, which actively model the problem space and have multiple feedback loops to stop whole classes of wrong answers from occurring, making them patchable.
    2
  133.  @alst4817  my point about black box ai is not that it cannot be useful, but due to the black box nature, it is hard to have confidence that the answer is right, that this is anything more than coincidence, and the most you can get from it is a possibility value for how plausible the answer is. this is fine in some domains where that is good enough, but completely rules it out for others where the answer needs to be right, and the reasoning chain needs to be available. i am also not against the use of statistical methods in the right place. probabilistic expert systems have a long history, as do fuzzy logic expert systems. my issue is the way these systems are actually implemented. the first problem is that lots of them work in a generative manner. using the yast config tool of suse linux as an example, it is a very good tool, but only for the parameters it understands. at one point in time, if you made made any change using this tool, it regenerated every file it knew about from its internal database, so if you needed to set any unmanaged parameters in any of those files, you then could not use yast at all, or your manual change would disappear. this has the additional disadvantage that now those managed config files are not the source of truth, this is hidden in yasts internal binary database. it also means that using version control on any of those files is pointless as the source of truth is hidden, and they are now generated files. as the code is managed by those options in the config file, that should be in text format, version controlled, and any tools that manipulate them should update only the fields it understands, and only for files which have changed parameters. similarly, these systems are not modular, instead being implimented as one big monolithic black box, which cannot be easily updated. this project is being discussed in a way that suggests that they will just throw lots of data at it and see what sticks. this approach is inherently limited. when you train something like chatgpt, where you do not organise the data, and let it figure out which of the 84000 free variables it is going to use to hallucinate a plausible answer, you are throwing away most of the value in that data, which never makes it into the system. you then have examples like copilot, where having trained on crap code, it on average outputs crap code. some of the copilot like coding assistants actually are worse, where they replace the entire code block with a completely different one, rather than just fixing the bug, making a mockery of version control, and a .ot of tne time this code then does nit even pass the tests the previous code passed. then we have the semantic mismatch between the two languages. in any two languages either natural or synthetic, there is not an identity of function beteeen the two languages. somethings can't be done at all in the language, and some stuff which is simple in one language can be really hard in another one. only symbolic ai has the rich model needed to understand this. my scepticism about this is well earned, with lots of ai being ever optimistic to begin with, and then plateauing with no idea what to do next. i expect this to be no different, with it being the wrong problem, with a bad design, badly implemented. i wish them luck, but am not optimistic about their chances.
    2
  134. ​ @piotrc966 i saw primes coverage, and a lot of the commentators ignored the video and just used it as an excuse to hate on windows, ci, cd and anything else they did not like in modern software. lots more claimed it was a windows only problem ignoring the fact that it can happen to any os that allows third party kernel drivers.
    2
  135. the data and power scaling issues are a real feature of the large language statistical ai models which are currently hallucinating very well to give us better bad guesses at things. unfortunately for the guy who wrote the paper, sabine is right, and the current best models have only gotten better by scaling by orders of magnitude. that is fundamentally limited, and his idea of using a perpetual motion system of robots created from resources mined by robots using the improved ai from these end product robots can't fix it. to get around this you need symbolic ai like expert systems, where the rules are known, and tie back to the specific training data that generated them. then you need every new level,of output to work by generating new data, with emphasis on how to recognise garbage and feed it back to improve the models. you just can't do that with statistical ai, as its models are not about being correct, only plausible, and only work in fields where it does not matter that you cannot tell which 20%+ of the output is garbage. the cyc project started generating the rules needed to read the internet and have common sense about 40 years ago, after about a decade, they realised their size estimates for the rule set were off by 3 or 4 orders of magnitude. 30 years after that, and it has finally got to the point where it can finally read all the information that isn't on the page to understand the text, and still it needs 10s of humans working to clarify what it does not understand about specific fields of knowledge., it then needs 10s more figuring out how to go from getting the right answer, to getting it fast enough to be useful. to get to agi or ultra intelligent machines, we need multiple breakthroughs to get their. trying to predict the timings of breakthroughs has always been a fools game, and there are only a few general rules about futurology: 1, prediction is difficult, especially when it concerns the future. 2, you cannot predict the timings of technological breakthroughs. the best you can do in hindsight is to say this revolution was waiting to happen from when these core technologies were good enough. it does not say when the person with the right need, knowledge and resources will come along. 3, we are totally crap at predicting the social consequences of disruptive changes. people predicted the rise of the car, but no one predicted the near total elimination of all the industries around horses in only 20 years. 4,you cannot predict technology accurately further ahead than about 50 years, due to the extra knowledge needed to extend the prediction being the same knowledge you need to do it faster. you also cannot know what you do not know that you do not know. 5,a knowledgeable scientist saying something is possible is more likely to be right than a similar scientist saying it is impossible. the latter do not look beyond their assumptions which lead them to their initial conclusions. it does not stop there from being some form of hidden limit you don't know like the speed of light or the second law of thermodynamics.
    2
  136.  @irql2  yes it was, but the decision as to if it can be downgraded should be Microsofts. just because they want it to prevent booting if it cannot start does not mean that windows cannot start without it.
    2
  137. The 45 minute delay each way makes remote debugging not an option. It's like asking why jagger and Bowie did not do a live intercontinental broadcast for live aid, the physics gets in the way.
    2
  138.  @amyshoneye5455  the problem with doctors, nurses, and dentist was down to tony blair removing all the profitable stuff from nhs dentistry, not doing enough advanced training for doctors and nurses once they have their basic qualifications, and not updating the way they measure population causing under reporting, and thus under funding, which affects health, policing, education, and lots of other things.
    2
  139. just say for the sake of argument that you are right (you are not). this decision gets upheld. at that point, everyone currently being prosecuted by a special council will try and use it to get their case dismissed, and every case which has already been decided will use it to try and get their case appealed, and then dismissed with prejudice. the chance of no appeals court anywhere ever looking at this case is thus zero. even more importantly, every other federal judge, and the supreme court itself (but not this one) have already ruled on this in the other direction, and written much better decisions. cannons decision on the other hand is so full of holes and inaccuracies that it would be like trying to use a deep sea fishing net to keep out mosquitos. there is zero chance that this decision will no be challenged, and due to the experience of the judges and the quality of their decisions it is unthinkable that no other judge will decide that for their case she is not talking rubbish, so it will head straight for the supreme court. as they are already the most unpopular supreme court in history, the only question is how much bad press they can stomach, and how corrupt the six conservatives want to appear, with case after case com8ng to them for decades if she is not overturned.
    2
  140.  @totoroben  even if you do test, it can still bite you. that is what resilience planning is for. then you do chaos engineering to see how badly you plan went.
    2
  141.  @totoroben  remember, this thing is in the kernel, and they ship it to everyone at once as company policy. more importantly, the ceo was at mccafee when they basically did the identical thing. for this to have made it out of the door, they must have had lower levels of safeguards on their release than junior developers put on their phone apps. for something i kernel space, which ships all at once, that is nowhere near good enough.
    2
  142. But in safety critical systems, not crashing the code matters, so you are strict about what you accept, so that you don't have to handle garbage input.
    2
  143. the buggy code was downloaded, but did not break anything until it rebooted. at that point windows should have stepped in and on next reboot it would just be disabled. then to fix the machine, just turn it off then back on.
    2
  144. ​ @Keepthepeacesharethelove i think they are referring to to things. her first involvement in this case was her putting herself in between the search warrant and the justice department with the appointment of a special master. when this was appealed it was determined that she held no legal authority to do so. given that in the same appeal, she said that former presidents should receive special treatment, and was told that it was not how the law worked, when she had this appear on her docket she should have immediately recused herself due to having already admitting bias, as the law does not grant her the option not to.
    2
  145. risc processors like arm have a lot smaller component counts and instruction sets, making it a lot easier to check everything, but they still implement a lot of the same tricks to speed up the hardware. it is the lack of understanding of the risks of those tricks which lead to spectre and friends, with the lag to replace the hardware causing the need for kernel space mitigations and the slowdown which goes with it.
    2
  146. the value of maintainence is not in speed of change, but in the fact that when done well, it produces ever improving code which is easier to change. this requires minor updates which make specific changes to make particular types of improvements, which requires understanding why the code is less than optimal, and which change is the better one to make. this is fundamentally at odds with how statistical ai in general works, and when you regenerate sections of code in big blocks, you have no reason to believe that what it guessed this time is any better than what it guessed last time, or that it is not throwing away better code to replace it with something worse. it also fundamentally screws up the whole idea of version control, as it is impossible to create good commit messages, and you are repeatedly just bulk replacing large chunks of code rather than evolving it.
    2
  147.  @keithsquawk  not defending anything else she did, just her handling of the one problem as a scientist.
    1
  148. Uncle Bob often does a disservice to the thing he is promoting, as he is more interested in winning the argument with the person he is debating than in educating the audience. he does produce some good stuff, but you have to filter it for snake oil sales techniques. Dave Farley on the continuous delivery channel does a lot better, but is so far into advanced uses that he can sometimes fail to realize that not everyone use the same terminology the same way, and fails to clarify which definition he is using which can confuse those new to unit testing and the whole raft of technologies built on top of comprehensive automated regression testing with unit tests. Start by learning the testing pyramid to learn how the terminology is used, then listen to videos of jez humble on continuous integration to get you used to the way the terminology should be used, then move on to Dave Farley.
    1
  149. you can't, low level drivers need to be there to work. the only solution to that is to force all driver code to be given to the os vendor, which would have a major backlash from some very big companies. failing that, you can do a much better job of sandboxing the third party code in the driver, because except for certain specific drivers, it is not core kernel code. the exception is for your network drivers, but even then you can keep the old one and roll back.
    1
  150. because ken thomson's paper "on trusting trust" was the first to highlight a new way of hacking the supply chain, and fixing it is hard and expensive. the purpose is to make it so that you not only believe linus can be trusted when you get your kernel from him, but you know that you got the same kernel as you got from him. in his tech talk at google, he talked about how due to using cryptographic hashes, as long as he knows the hash, he can download the repository from anyone, and verify it is an exact copy of the one he put up which they copied. that verifies the audit trail for the sourde code. the way nixos uses semantically versioned bill of materials verifies the audit trail for the dependencies. reproducible builds verify the audit trail from source to binary files. different tools for different parts of the job.
    1
  151. That one is actually quite easy to answer if you look at how GUI code has been historically developed. First, you write too much of the UI which does nothing. Second, you write some code which does something but you embed it in the UI code. Third, you don't do any testing. Fourth, due to the lack of testing, you don't do any refactoring. Fifth, you eventually throw the whole mess over the wall to the q & a department, who moan that it is an untestable piece of garbage. Sixth, you don't require the original author to fix up this mess before allowing it to be used. When you eventually decide that you need to start doing continuous integration, they then have no experience of how to write good code how to test it, or why it matters. So they fight back against it. Unfortunately for them, professional programmers working for big companies need continuous integration, so they then need to learn how to do unit testing to develope regression tests, or they will risk being unproductive and risk being fired.
    1
  152. I think there is also an issue with how tdd is presented, partly preaching to the choir. A lot of those opposing tdd do not have the same definitions as the ci and tdd community. They oppose unit testing because to them a unit is a complete module, and the unit test is every test in the suite to test the module. Similarly they write the entire module, and only write regression tests when they have to, and adding tests or security or portability after the fact is always a nightmare. Because they don't write tests first, their code coverage is minimal, often consisting of UI tests and end to end tests which are fragile, and invert the testing pyramid. A lot of them come from the windows ecosystem or from the object orientation community, where the definitions don't match.
    1
  153. obd is a common protocol mandated by law in the us and the eu for many years. you can get access to it using commonly available plugins for the obd port on your vehicle which can provide access either over usb or bluetooth, and there is open source software which decodes the api, knowing which data to send, and what the returned values mean. generally this api is decoded either by sniffing the signals another device sends down the wires, or by sending unknown signals down the wire and mapping the responses to get an idea as to what information is returned. some of this mapping is available from standards bodies. once you know the mapping, it just needs some boiler plate code to tell it to send this, read that reply, and display it like this.
    1
  154. ​ @ChrisWijtmans i think this should be viewed by the courts with scepticism, as the story clearly states that there was only one potential tos violation, explained by needing to do it due to differing regulatory environments and the blocking policies of differing countries around the stuff not targeted at those countries, thereby providing a valid reason for the behaviour bad actors also engage in. other than that, they refused to clarify what other potential breach was involved while trying to illegally force a contract. all their other bad acts were in furtherance of that illegal act. they also refused to provide any clarification of anything provided by the new contract which would make them not be in breach of the tos under the new contract. all the casino asked for was clarification of what the problem was, which was denied, and longer than 24 hours to move away after being informed that the new contract was mandatory, which after being informed of them also looking at other options resulted in what look like a clearly retaliatory early takedown of the sites. when they are clearly acting in bad faith, trying to say trust us does not come across as very credible.
    1
  155. no it does not. the issue here is that the code runs in kernel space, and had a bug. rust does not prevent all bugs unless it is so limiting that it can't be used to write most programs, so you are either saying that rust is crap, ir don't use it for kernels.
    1
  156. ​ @jimsteinmanfan80 standard practice has been to have ci create the install file and sign it, then cd takes it and deploys it to test machines, and only after cd does it get deployed, preferably using canary deployment. the fact that it got deployed says they did not do this, because it would have caught it before deploying. then you check your pcode or signature file before using it to crash the kernel. the fact that it entered the boot loop says that they did not do this. the fact that the microsoft fallback code was so weak did not help. the fact that it continued to boot loop until someone manually came out to fix it demonstrates this.
    1
  157. the comments contain a bunch of common fallacies. energy too cheap to meter has been promised ever since we started building national energy grids. always from the latest new and shiny energy source, and it has never arrived. the next new and shiny energy source (not just fusion) is always 30 years away, because that is how long it takes to go from proof of concept to commercial product, but only if you actually bother to properly fund the development stages to get there and get old regulations for other industries out of the way. we do not do this, so progress is slow. nobody has bothered to mention this, but it is always cheaper to not waste a kilowatt than it is to generate it. we have known this to be true since at least the 1980s, but i don't know of any country who has even seriously discussed putting rules in place to regulate the removal of the least efficient devices, let alone done it. energy storage is great, but again nobody sets the regulations up in such a way as to make the market make sense. you need the right rules and feed in tariffs to make it work. if you cannot plug a battery into the grid when there is a surplus, charge it up, and release it when there is a shortage, and still make financial sense, the rules are wrong. also funding for storage research has basically been on life support for decades. renewable energy is usually far cheaper than megagenerators simply because with distributed generation you get many more chances to reduce the cost of the equipment, but in the uk the national grid has been optimised for a small number of large generating sites in the middle of nowhere, making combined heat and power not an option. redeveloping the grid to rectify this takes a long time and the will to do it. small modular fission reactors make sense, but again regulation based on large reactors gets in the way. also in this context molten salt reactors have a good potential, but again old regulations for large reactors means all of the development work is being pushed to less regulated countries. another unmentioned technology is radio thermal generators, where you basically put safely stored nuclear waste in a container, and use the same techniques for harvesting solar to harvest the energy from the radiation. again this could be done on sites suitable for modular reactors, and the ame security concerns would apply, but neither the research nor the regulation are being properly addressed. fusion has a lot of potential, and purely from a cost benefit point of view it makes sense to continue the research, but again we have a silly policy on funding and regulation. as for the others like wave, tidal, ocean thermal energy conversion and space solar satellites, again the funding and regulatory challenges are not being addressed. for fossil fuels, the research and regulations on carbon capture and storage are not being done properly either. this all feeds into the failure to address the issue of global warming, with the cheaper option of prevention being ignored, with the more expensive option of dealing with the consequences being the only option being seriously left on the table.
    1
  158. ​ @annoyedaussie3942 yes, they have a deficit, but if you cut off electricity, fossil fuels, and minerals, they would not be buying so much stuff from Canada, and they would have had a surplus, until the orange buffoon decided to insult the entire country and trigger the boycott America movement. Of course they also would not be buying stuff due to the extra inflation, the job losses, etc but that is due to trump not understanding how to use tarrifs, and what the consequences are, but what do you expect from someone who can even lose money from owning a casino.
    1
  159. there are 2 separate issues with anti malware software. one is driver updates, the other is signature file updates. you can stage the driver updates, but the software auto updates the signature files, which don't really change format between updates. this was caused by the bad driver not verifying the broken signature file, so it would not help.
    1
  160. no, it is there because as research proves, nearly 60% of projects cannot know the exact specifications until after they start trying to build it and find that it does not fit what they thought they needed. that is not incompetence, it is reality, and you need some way to adapt as you discover these differences.
    1
  161. ​ @sarcasticnews1195 you are m8xing up a couple of things here. for lighter than air craft, it was a matter of scaling. you needed bigger balloons to be able to lift the weight of the engines, which were relatively big and heavy. it was solved by the germans by making the engines lighter and more powerful, and by using hydrogen to get 4 times the lift. and it still took a couple of decades from the article to make it economically viable. for heavier than air craft, there was a much bigger problem. not only did they need an engine with more power per size than any previously built, but the weight was a serious issue as well. on top of that, they needed a technological breakthrough in order to e strong enough to lift the engine without collapsing under their own weight. even with that breakthrough, it took them a long time to up the range and the safety factors enough to commercialise. gliders had shown the basic idea as practical in the late 1800s, but only as a curiosity. so yes he turned out to be wrong, but all the data available to the general public at the time said that he was more likely to be right than the other side.
    1
  162. he specifically said that because git usage is endemic, not knowing it was a red flag, then went on to say that knowing a different vcs was ok, but not knowing any vcs and needing to be told everything not just about how to vcs, but also about why to vcs would basically push you to the bottom of the candidates list, with almost anyone else being better. a case can also be made that the same thing should be true for continuous integration.
    1
  163.  @silberwolfSR71  i wouldn't disagree in general, but it tends to coexist with lots of other red flags. for example, there are a large number of "qualified" programmers out there who not only cannot use any vcs, but also could not do fizzbuz without an ide, and have no idea if the build system generated by the ide can be used without the ide. i would suggest that a good programmer should be able to write a small program with only a text editor, create the automated build file, store it in a version control system, and then have the interviewer be able to check it out and build it on another machine. if the program was something small and simple like fizzbuz, this should only take about 15 minutes prior to the interview, and for most interviews you are waiting longer than that. think about the Israel passenger security vetting system as a comparison. anybody wanting to be able to go airside at any airport goes through security vetting. each level is designed to either determine you are not a risk, or moves you up another level for a more strict screening. by the time you are stopped at the airport for questioning you have already raised yourself to about level 15, and they are primarily asking to clear up points they could not dismiss without your active involvement. if you pass, you can then get on the plane. i had to help fill a post, and we got over 100 applicants, with full training given. most were completely unsuitable, but the top few still needed filtering, and things like attitude, and prior experience goes into that filtering. as theo said, if you get to that point and it is between an industry veteran with experience, and a new college grad with no knowledge of version control, you can guess who is higher up the list.
    1
  164.  @mikicerise6250  not quite, someone on the team need to know version control. if so they can become familiar enough with git in about an hour. most version control differences are under the hood, and mostly are not need to know, except after a major screw up, at which point you need an expert in whatever version control is used by your project. you cannot assume git, because some projects are old enough to be using something else.
    1
  165. was it ci which was the problem, or the need to start writing tests for hard to test legacy code and bad managers making things worse?
    1
  166.  @julianbrown1331  yes, you can treat it as a black box, only doing version control on the tests, but as soon as you do you are relying on the ai to get it right 100% of the time, which even the best symbolic ai systems cannot do. also, the further your requirements get away from the ones defining the training data, the worse the results get. also the copyright issues are non trivial. when your black box creates infringing code, then by design you are not aware of it, and have no defence against it. even worse, if someone infringes your code, you again do not know by design, cannot prove it, as you are not saving every version, and if you shout about how you work, there is nothing stopping a bad actor copying the code, saving the current version, letting you generate something else, then suing you for infringement, which you cannot defend against because you are not saving your history. it is the wrong answer to the wrong problem, with the potential legal liabilities being huge.
    1
  167. ​ @alphabetaxenonzzzcat except the price to move from gas to induction is 4 times as much as gas to gas plus a new set of pots and pans that work with it, so the poor won't be able to shift to it.
    1
  168.  @MelodySmith-rp7hq  green gas is a great idea, and there are some good examples of it worth shouting about. i cannot comment on how bad induction is vs an ordinary electric hob, as i do not have induction, but the issue of cooking stopping in a power cut applies to every system except gas, and so is not really a good case against induction, and is more of a support for not moving away from gas. if you do not want that problem, either stick with gas, or move to fast electric systems like microwaves.
    1
  169. it is not hard to get there at all. first you write a minimal program. then you write tests so you don't commit broken code to version control. then you write some more tests to stop you deploying broken code to production. then you do canary releasing to stop everyone getting broken at once. at each level, you start by adding 1 test, designed to block it if it fails, then later add another one. not really that hard, is it?
    1
  170. we have known how to write software so this does not happen since the moon landings. we have even better tools now. the only way for this to happen is for everyone including microsoft to ignore those lessons.
    1
  171.  @JamesTSmirk87  of couse if you canary release to the test servers first, then to your own machines, and only then to the rest of the world, it would have been caught.
    1
  172. ada was commissioned because lots of government projects were being written in niche or domain specific languages, resulting in lots of mission critical software which was in effect write only code, but still had to be maintained for decades. the idea was to produce one language which all the code could be written in, killing the maintainability problem, and it worked. unfortunately exactly the thing which made it work for the government kept it from more widespread adoption. first, it had to cover everything from embedded to ai, and literally everything else. this required the same functions to be implimented in multiple ways as something that works on a huge and powerful ai workstation with few time constraints needs to be different from a similar function in an embedded, resource limited and time critical usage. this makes the language huge, inconsistent, and unfocused. it also made it a pain to implement the compiler, as you could not release it until absolutely everything had been finalised, and your only customers were government contractors, meaning the only way to recover costs was to sell it at a very high price, and due to the compiler size, it would only run on the most capable machines. and yes, it had to be designed by committee, due to the kitchen sink design requirement. the different use cases needed to fulfil its design goal of being good enough for coding all projects required experts on the requirements for all the different problem types, stating that x needs this function to be implemented like this, but y needs it to be implemented like that, and the two use cases were incompatible for these reasons. rather than implementing the language definition so you could code a compiler for ada embedded, and a different on for ada ai, they put it all in one badly written document which really did not distinguish the use case specific elements, making it hard to compile, hard to learn, and just generally a pain to work with. it also was not written with the needs of compiler writers in mind either. also, because of the scope of the multiple language encodings in the language design, it took way too long to define, and due to the above mentioned problems, even longer to implement. other simpler languages had already come along in the interim, and taken over a lot of the markets the language would cover, making it an also ran for those areas outside of mandated government work.
    1
  173. it could if nvidia screws up the video driver update. this is not mainly a microsoft issue, it is a kernel update issue which applies to every kernel.
    1
  174. There is a reason people use simple coding katas to demonstrate automated regression testing, tdd, and every other new method of working. Every new AI game technology starts with tic tac toe, moves on to checkers, and ends up at chess or go. It does this because the problems start out simple and get progressively harder, so you don't need to understand a new complex problem as well as a new approach to solving it. Also, the attempt to use large and complex problems as examples has been proven not to work, as you have so much attention going on the problem that you muddy attempts to understand the proposed solution. Also, there is a problem within a lot of communities that they use a lot of terminology in specific ways that differ from general usage, and different communities use that terminology to mean different things, but to explain new approaches you need to understand how both communities use the terms and address the differences, which a lot of people are really bad at.
    1
  175.  @chudchadanstud  like ci, unit testing is simple in principle. when i first started doing it i did not have access to a framework, and every test was basically a stand alone program with main and a call, which then just returned a pass or fail, stored in either unittest or integrationtest directories, with a meaningful name so when it failed the name told me how it failed, all run from a makefile. each test was a functional test, and was run against the public api. i even got the return values i did not know by running the test to always fail printing the result, and then verifying that it matched the result next time. when a new library was being created because the code would be useful in other projects, it then had the public api in the header file, and all of the tests were compiled and linked against the library, and all had to pass for the library to be used. all of this done with nothing more than a text editor, a compiler, and the make program. this was even before version control took off. version control and a framework can help, but the important part is to test first, then add code to pass the test, then if something breaks, fix it before you do anything else. remember, you are calling your public api, and checking that it returns the same thing it did last time you passed it the same parameters. you are testing what it does, not how fast, or how much memory it uses, or any other non functional property.what you get in return is a set of self testing code which you know works the same, because it still returns the same values. you also get for free an executable specification using the tests and the header file, so if you wished you could throw away the library code and use the tests to drive the rewrite to the same api. but it all starts with test first, so that you don't write untestable code in the first place.
    1
  176. you cannot create an intermediate mode, or prevent a kernel crash as long as external companies can install stuff outside the main os delivery channel. what you can do is have better broken driver detection and isolation methods following the reboot.
    1
  177. actually that should be don't deploy an update before you are sure it won't break something. skipping testing does not make anything faster.
    1
  178. every os which allows third party kernel level drivers could do this. the only solution for locked down systems is to detect updates and block those drivers when the reboot fails.
    1
  179. @Silver-eb7zm yes, canonical consulted their lawyers and decided it was a risk worth taking. This was based upon the benefits they could receive from shipping it, the low likelyhood of being sued, and the odds of being able to settle or fund fighting it. This does not make it license compatible, which a lot of other top lawyers say it is not. Canonical is largely a newbie distro, which is not where the money is. Both the linux foundation and redhat are well funded, so the return from sueing and winning is high, so the risk for them shipping it is also high, which is why they don't.
    1
  180. ​ @talicopow i'm afraid that is an implementation detail which varies by operating system, language, and data type. in some languages, especially interpreted ones, the only thing special about global variables is their scope, and the variables are placed on the heap, just like for any other routine. the difference being that the function in question is the main function, which does not get released until the program ends, and otherwise is managed just like any function. when the language uses compilation, and the operating system allows shared libraries, you end up with the code getting one section of immutable memory which can then be declared read only and shared between programs so you don't need to have multiple copies. in modern compilers, like llvm, it was realised that there is a subclass of global variables that also share this dynamic, and thus can be stored in another block treated the same way. this needs support in the operating system to be able to handle this immutable data block in shared libraries in this way. not every global variable is immutable, and in interpreted languages, the ability to determine this may be undecidable unless the language specifically supports declaring the variable to be this way. the same also applies to local variables. this becomes even worse if one of the main advantages of interpreted languages, the access to the evaluation function, is provided to the programmer, as at that point all memory access not declared to e immutable becomes dynamic, so the size of this block when you cannot declare a variable this way becomes zero. you then also have an additional problem that garbage collection has to be either on demand, or incremental. on demand halts all program execution until a fairly full sweep of memory has bean completed, which causes issues for real time programming, which requires the timings to be deterministic. the only solution to this is to do it incrementally, but the problem,with that is we have not been doing it for long, so the solutions are still at a fairly simplistic level in most implementations. also, while reflections and other methods of looking at internal detail of object oriented programs adds lots to the power of debugging in a language, it does so by breaking a lot of the guarantees needed to allocate the global variables to the immutable block. automated memory management is brilliant, but even when the programmer is granted the ability to tell the language to do things differently, it is very complicated. it requires systematic support at all levels from the bios up to the runtime execution of the specific program, or it does not work as well as the proponents hype it up to work. in the end, it it the programmer who knows best how the code is intended to be used, while the language should enable them to clarify that intent and enforce it with the help of lower level parts of the system.
    1
  181. variable handling in programs is complicated, and in functions it is even harder. this has to do with two key properties of a variable, scope and mutability. when you declare a global variable in the main function, you know the scope is going to be global. if it is a value like pi, you also know it is not supposed to change, so in a compiled language you can allocate it to an immutable data block with global scope, and hope that the library management code supports and enforces this being a single copy of read only data. when you then pass pi to your function, it can either be as a global variable, or as a parameter to thar function. if the language uses call by value, you then know that it will have a scope of the function lifetime, and it will not be returned to the same variable. as it is a copy of the data, any changes will only last the lifetime of the function, so you can store it on the stack. even better if nothing in the function writes to it, you can also decide at analysis time it is immutable. the same also applies with any other variable you explicitly declare to be local or immutable, so it can also go on the stack.anything that has to survive the termination of the function has to be treated by the function as global, but can be explicitly local to any calling function, or can be local to the library. depending on support within the language and the operating system, knowledge that something is global and immutable can be used to minimise total memory usage, and language support should be provided to enable the programmer to explicitly declare both scope and mutability, but most languages don't support that functionality. to the extent that this is not supported, the language has to guess, but currently the algorithms which exist to support such guessing are fairly primitive. also the way the guessing is done tends to be both language and implementation specific. the guessing gets even harder if the language is interpreted, and even more so if you have complex objects with variable length data types in them. in some languages like the original implementation of lisp, even the program code is not guaranteed to remain the same for the duration of the program, as a function is just another piece of data which can be changed by another function. anything which is correctly guessed to be read only and of fixed scope can go on the stack, which includes some global variables. literally everything else must go on the heap, at which point the problems of garbage collecting the heap get further complicated by the same problems. you can only remove something from the heap if you know it is not needed anymore. for simple but advanced data structures you can use reference counting to determine that it has no users, and rapidly collect that part of the heap back into free space. if you know that in the first part of the program you are going to load in some data, use it to build another data structure used by the second part, and is then no longer needed by the rest of the program, you could free off that part of the heap at that point, but only if you can tell the language it is safe to do so. otherwise it is back to guessing, and if you cannot be sure you have to keep it around. at the operating system level it is even worse, because it has to deal with every heap and every stack for every running program, and handle virtual memory for when you run out. memory management is not simple, and won^t be for a long time, and comes with large costs whatever solution you choose.
    1
  182. The american civil war was actual6 a massive own goal by the south. Prior to this, slavery was a state issue. They then decided with typical southern arrogance that it should approved at a federal scale, and managed to convince ever6one that there should be one rule, but not that it should be theirs. The problem was no-one could figure out how to pay for abolishing it, so it was going nowhere fast. Then the south split over other issues, so he signed the abolishing proclamation due to the cost in the north being trivial. Then the south lost the war, and under jim crow tried to retain slavery under different rules so it technically was not covered by the law.
    1
  183. if you watch the video, he says indirectly, that they start of with pure logic programming, which is slowish, then cache the results into lookup tables, which makes them trivial to turn into pure functions, which can then be refactored to extract more predicates and better data structures, which are then turned into an imperative programming language for efficiency, which happens to be in java. it is not that java byte code is fast, but that long chains of implicit inference are slow, and the multiple steps caching those inferences speed things up, not the java byte code. turning it into functions in a common imperative language just makes the results easier for non lisp programmers to use.
    1
  184. no, the major question is can they do anything about it without shooting themselves in the head. all a backup checker needs to do is checksum every file, and export that audit report to a non rhel machine. this is a good idea for security auditing anyway, so banning it would be very difficult. so would banning any non rhel machine from the network. once you have this audit database, you can do the same for any other distribution, and instantly flag up any differences, which from a technical viewpoint is no different from comparing todays and yesterdays reports, so they cannot easily ban that either. once you have the list of files which is different, you can decide if it matters, and just tweak your patch list until you get the same checksum. as this bit is not being done on rhel, they have no say in the matter.
    1
  185. ​ @__S__435 it depends on how you do it. for example boot start permission in the certification could require all non certified data used by the driver to need screening in userspsce prior to passing it to the kernel module. this has zero effect on efficiency as the act of downloading the update kills all performance anyway. the boot loop problem could be dealt with by making that mode a request, rather than a mandate, and downgrading it if it boot loops too many times. at that point it is just another driver, and can be blocked next loop, and the boot loop problem is gone. then the user space code used for updates can phone home and report that the driver broke, and stop the roll out. it can also look for a new update. in the meantime the driver signature can be revoked for shipping garbage.
    1
  186. but they could be. the issue here us that someone shipped a broken kernel driver and the os on reboot did not disable it, leaving everyone down for ages. this could happen on any os that allows third party kernel drivers, then they will crash, then they will try and recover on next boot.
    1
  187.  @kirishima638  i just don't believe you when you imply that there are no actual third party kernel modules. the only time that works is with a true microkernel, which takes a massive performance hit for the privilege. if you are wrong, then the mac is just as vulnerable.
    1
  188. there are things microsoft could have done after the mcafee incident, but did not. first, have the kernel save state as it boots up so it can tell who broke it, and disable it on next boot. they obviously did not do this either at all, or well enough. during driver signing tests, when a driver claims boot critical, replace the driver with one that just returns. if it breaks the boot add it to a small list of required drivers, else treat the flag as a request. this let's you disable most drivers because they are not on the mandatory list and you know who broke it. at the same time, randomly replace configuration files with random files, or null ones. if the driver does not recover ignore the boot critical flag, and potentially refuse to sign the driver. after a few refusals costing thousands per time, they will eventually get the message. they have not done this.
    1
  189. ​ @TimothyWhiteheadzm for airlines it is the knock on effects which kill you. say you cannot have the passengers board the plane. at this point, you need to take care of the passengers until you can get them on another flight. this might involve a couple of days staying at a hotel. then the flight does not leave. at this point neither the plane or the pilots are going to be in the right place for the next flights they are due to take. as some of these pilots will be relief crew for planes where the crew are nearing their flight time limit, that plane now cannot leave either, so now you have to do the same with their passengers as well. in the case of delta, airlines it went one step further, actually killing the database of which pilots were where, and you could not start rebuilding it from scratch until all the needed machines were back up and running. the lawsuit from delta alone is claiming 500 million in damages, targeting crowdstrike for taking down the machines, and microsoft for not fixing the boot loop issue which caused them to stay down. i know of 5 star hotels which could not check guests in and out, and of public house chains where no food or drinks could be sold for the entire day, as the ordering and payment systems were both down, and they had no on site technical support. i am sure the damages quoted will turn out to be under estimates.
    1
  190.  @LuluTheCorgi  because the reason oracle linux exists in the first place was that red hat did not want to support their needs, so just paying them does not get them support, and requires them to sign the dodgy eula which stops them from getting support any other way. in this case using the lawyers would actually cost less.
    1
  191.  @richardsauer1667  you missed the point. this was a kernel level update, so they could not prevent it crashing. however they could have created something to stop it from boot looping after the similar incident caused by mccaffee, where the current cloudstrike ceo was working at the time.
    1
  192. ​ @BigWhoopZH no, e-gate happened because it was delivering software updates over the same capped internet connection used to do live testing, but it should not have been connecting to head office for every check anyway, it should have been using a local mirror of the data for resilience.
    1
  193. An example of the difference would be to keep the screen turned on when playing a movie, but turning it off if doing computation or drive indexing without the need for a display. This lets the monitor go into standby, and also stops the graphics card from burning energy it does not need to use. Screensavers used to be about avoiding screen burn on tube based displays, but are now either about inactivity wallpaper or power saving depending on your option settings. Similarly, cpus have different power levels, depending on what level of usage is needed. You can step those levels down if you are barely doing anything, stepping things back up if you start a cpu intensive task. This means you could walk away from the computer when it started to do a task which was a cpu hog, but did not need the screen, and after a wait, it would blank the screen and let the monitor go into standby, and then when the task finishes, it can move the processor into a lower power mode. When you come back and move the mouse, it can turn the screen back on, waking up the monitor, and you can check if it is finished. You could even have it automatically power off when it is done.
    1
  194. the author of that video is an idiot. he claims being adware makes it a scam, when it was a common way to get funding from freely available software at the time. he claims being nagware to update to the full version makes it a scam. he uses his ignorance of the well known problems with the registry to claim it makes a registry cleaner a scam by definition. crud left behind leaves a raft of problems. he claims that a common shareware antivirus was a scam, just because it was adware. he admits that dave was running a shareware market place, but then says all of the shareware was by dave, and his previously misidentified scams make dave a scammer, despite that not being how a market place works. finally, dave got a nuisance lawsuit, and like most companies, it was cheaper to settle than to fight. but he claims that by settling dave admitted to everything in the claim, despite the settlement agreement which ended the lawsuit not saying that, and then claims that because of that when he says the lawsuit was mostly meritless in his autobiography, which agrees with the settlement agreement, he is trying to hide being a scammer. i am nit saying he could not be a scammer, but literally none of the claims in the video actually pass basic fact checking.
    1
  195. this is why you should investigate smart devices before fitting, and do not fit the bad ones. this leaves you with a choice of a more expensive device, or a stupid one. and do not forget that most smart devices are small embedded servers, which never get a software fix for the security holes found after first installing the software, thus giving bad hackers a backdoor onto your network. if you watch csi cyber, it will scare the hell out of you, despite understating just how bad it really is.
    1
  196. ​ @Haydatsanime boxed distros were killed by being able to ask Ubuntu to send you a free cd.
    1
  197. there are some minor misunderstandings of somethings in the threads which need to be a little clearer, so here goes. to produce an operating system from scratch, you need to either 1, write everything yourself, or 2, go online and download a bunch of stuff from people you don't know and hope you can trust the code. 1 does not work very well, apple and microsoft did not do it, neither did google or steam. it is slow and expensive. look at how long it took reactos to get to the point where people who were not kernel developers could work on it. (not criticising them, this stuff is hard). this only leaves you with the second option, which you solve by going to conferences and establishing a network of trust through key signing parties. as this requires the person to show the other person id, it is moderately secure against everyone but state actors who can just issue an id, and id thieves. all the network of trust does is produce a lot of people who can assert that the person you just met has been verified to them as being the person they say they are (for a certain level of verified). these people then commit code to version control, and once you get to centralised and distributed version control, you also have the person signing that they produced the work. this means if it later turns out that they were a problem, you can easily go back, and track what they touched and audit it if needed. it does not stop a bad actor like the xz maintainer, you need other processes for that. this gets you to the point were you can confirm the code you got was the same as the code they distributed (at least if it does cryptographic hashing like git) and the network of trust identifies all of the contributers. then you need to link the code together with libraries it depends on. the original paper that started the nix package manager, which lead to nixos, described the purpose to be to declaratively manage the exact version dependencies so that you could be confident that what you used to build it last time is the same as what you used to build it this time. effectively semantically versioning the build dependencies. it appears that the people behind nixos have extended this a bit, but the principle remains the same. if the dependencies change, then the key for the dependent packages will also change. guix did not like the nonclomenture, and thus decided to declare it using scheme, but otherwise they do the same thing. this gets you to the point where you can compile stuff and be confident where all the code came from, as you have a complete audit trail. reproducible builds go one step further, validating that the stuff you then compile will always produce the same patterns of bits in storage. this is non trivial for various reasons mentioned by others, and many others. declarative dependency management systems might also give you reproducible builds, but it is not what they were designed for. then you take the output of the reproducible build, put it in a package, and sign it. this gets you to the point where you as the person installing it can be confident that the binary packages you just installed are exactly the same as the stuff the original upstream contributers intended with a few tweaks from your distribution maintainers to make it work better together. and you can audit this all the way back to the original contributer to the upstream project if needed. none of this says anything about the quality of the code, or about the character of the contributers, you need other steps for that. as the sysadmin for your business, you can go one step further, and create versioned ansible install scripts to do infrastructure as code, but it does not add to the model, as your ansible scripts are just another repository you use. i hope this clarifies things a bit.
    1
  198. it was this severe because it was kernel level driver code. but we just test it the same way as any other important code, with ci, cd, and canary deployments.
    1
  199. And yet every technique has this same issue. You cannot explain the new technique without working on small, manageable demonstrations. If you try anything else, you quickly get bogged down in the problem details, and obfuscate how the method is actually supposed to work, You can only move on to your example when you have a clear understanding of the method, to try and get better understanding of how and why it works, but first you have to understand how to do it.
    1
  200. ​ @Artoooooor the only problem with that test is the wait instruction. What happens if you are running on the latest, blindingly fast, machine, and your user is running on an older, slower machine. In that case you need to either make the wait longer, and if so by how much, or you have to make the prior function synchronous so that it doesn't return until the write finishes. Personally I would favour the second approach unless you are specifically trying to emulate the timing as well, in which case I would move the wait inside the function call and bookend the function with a timing function to force the wait to be at least however long it needed to be.
    1
  201. but we have known how to catch such bad drivers before they ship for decades.
    1
  202. while it seems that systems which constrain, analyse and debug your system seem to have some value, the current systems have a fundamental flaw. they are black box systems, which means it is entirely up to you to figure out if their hallucinations make any sense. because most black box ai is statistical in nature, it has a basic flaw which makes it unsuitable for a lot of workloads. it has absolutely no idea what it is talking about, and only produces statistically plausible guesses that it can't explain. even worse, it is susceptible to poisoning the output, as most providers do not bother to filter their training data for quality. this is why code assistants produce such bad code, which means that the people who can get the best use out of them are the ones who need them the least. in fact, due to how they are trained, and how they work, most code assistants are actually automated copyright infringement machines, which is why most open source projects are actively considering a total ban on all ai based contributions. for a lot of use cases, where creativity or liability are involved, black box systems are completely wrong for the job, as they cannot tell you why they suggested something. unfortunately white box systems are currently fairly primitive, rendering them unsuitable as well.
    1
  203. legacy code almost by definition is code where testing is at best an afterthought, so retrofitting it to be testable is a pain. luckily, you don't have too. not all code is created equal, so you write new code using tdd, and as part of the refactoring step, you move duplicate code out of the legacy section, modifying and writing just enough tests to make sure it continues to work. this results in a code base where the amount of untestable code keeps reducing, while the code under test keeps increasing. more importantly, you only modify the legacy code when it needs changing. the rest stays the same. working any other way is basically chasing code coverage for a system not designed to be tested, which is why dave says trying to force it under tdd style tests is a bad idea. over time, more and more code needs modifying, and thus comes under test.
    1
  204. this is just garbage from the lobbyist. whitelists blacklists and greylists are not new technology. if you can send a comment saying probably spam, you can send a comment at the end of the call asking if it was genuine and getting the customer to report yes, no, don't know, and based on that add them to the correct list. you can then feed these lists to the ai, providing feedback for every call. you can also mandate that internal us calls need to report the phone number to the carrier, and just do not show it to the customer if it is id withheld. combined with the national register of customer details (held by the carriers of origin) lets you trace any call originator within the us, leaving the carrier on the hook if they do not comply with lawfull detail requests about their customers, just like safeharbour provisions work for isps and illegal downloaders.
    1
  205. You call them requirements, which generally implies big upfront design, but if you call them specifications it makes things clearer. Tdd has three phases. In the first phase, you write a simple and fast test to document the specifications of the next bit of code you are going to write. Because you know what that is you should understand the specification well enough to write a test that is going to fail, and then it fails. This gives you an executable specification of that piece of code. If it doesn't fail you fix the test. Then you write just enough code to meet the specification, and it passes, proving the test good because it works as expected and the code good because it meets the specification. If it still fails you fix the code. Finally you refactor the code, reducing technical debt, and proving that the test you wrote is testing the API, not an implementation detail. If the valid refactoring breaks the test you fix the test, and keep fixing it until you get it right. At any point you can spot another test, make a note of it, and carry on, and when you have completed the cycle you can pick another test from your notes, or write a different one. In this way you grow your specification with your code, and is it incrementally to feed back into the higher level design of your code. Nothing stops you from using A.I. tools to produce higher level documentation from your code to give hints at the direction your design is going in. This is the value of test first, and even more so of tdd. It encourages the creation of an executable specification of the entirety of your covered codebase, which you can then throw out and reimplement if you wish. Because test after, or worse, does not produce this implementation independent executable specification it is inherently weaker. The biggest win from tdd is that people doing classical tdd well do not generally write any new legacy code, which is not something you can generally say about those who don't practice it. If you are generally doing any form of incremental development, you should have a good idea as to the specifications of the next bits of code you want to add. If you don't you have much bigger problems than testing. This is different from knowing all of the requirements for the entire system upfront, you just need to know enough to do the next bit. As to the issue of multi threading and micro services, don't do it until you have to and then do just enough. Anything else multiplies the problems massively before you need to.
    1
  206. ​ @PolarBearPredator you mean a car you can drive down our streets and park over one which makes it hard to do both? Absolutely. If you had to pay realistic prices for fuel, the cars you buy would be different as well, but don't worry, Donald is working on that for you.
    1
  207. ​ @christianamaral-c3l delta took longer because they had a wider exposure than everyone else. because this required hands on fixes by skilled tech guys to fix, it took a while.
    1
  208. Despite doubling the number of programmers every five years, the need for them is going up even faster. This means that the demand exceeds supply and therefore if the development environment is not good and relies on getting crappy code out of the door fast, you should start looking for a better job as soon as you can. Just make sure in your interview that you ask the right questions to ensure that you are moving to somewhere better before taking the job. A good interviewer will let you ask questions to get a good fit between your needs and theirs, as they won't retain staff if they don't.
    1
  209.  @davidvernon3119  the success rate isn't great, but the point was mainly that there are more job vacancies than programmers, so you don't need to keep working for a bad employer. obviously being invited to join another company is better, but you don't need to wait for the invite.
    1
  210. the power increase has to do with the exponential growth in the size of the models and the nubmer of parameters needing to be tuned. computing resources in terms of compute clusters cannot grow exponentially at the same rate, and thus are getting further and further behind. it is then being used to train black box ai, which means even when it gets something wrong, you do not know either how or why, and thus cannot easily fix it.
    1
  211. if as intended it is bit compatible, not only the build dependencies can be hashed like in nixos, but so can the output binaries.
    1
  212. ​ @CallousCoder this is not a os fanboy issue. every operating system could easily start by loading just enough modules to be able to read and write a file on pemenent storage. it could the load a signature list of modules loaded last time. when the module asks to be loaded, it can check if it is changed, and if so add it to a block next time list which it writes to storage immediately. if was already there, don't load it. when the kernel finishes booting, it can clear the block list, and save it to storage. at that point, the kernel can recover on next reboot simply by disabling all the updated drivers on the blocked list, and this incident never happens.
    1
  213.  @CallousCoder  sorry, responded to the wrong post
    1
  214. ​ @Aleks-fp1kq because they see it as paying 30% extra. The same management will probably also really dislike refactoring, and will probably like the feature treadmill, while not getting that ignoring all the things mentioned slows down the ability to implement features. In all of these cases you are just moving stuff you will have to do anyway in any codebase above a certain size to the front of the process where it will make the biggest difference, which is why you do it first.
    1
  215. ​ @benjamink8448 on the contrary, microsoft has had multiple instances of boot loop problems over the last decade, and have not done enough to prevent it. yes crowdstrike took 8.5 million mostly mission critical systems down, but it was microsoft not fixing the boot loop problem for a decade which kept them down.
    1
  216. There is a lot of talking past each other and marketing inspired misunderstanding of terminology going on here, so I will try and clarify some of it. When windows 95 was being written in 1992, every developer had a fork of the code, and developed their part of windows 95 in total isolation. Due to networking not really being a thing on desktop computers at the time, this was the standard way of working. After 18 months of independent work, they finally started trying to merge this mess together, and as you can image the integration hell was something that had to be seen to be believed. Amongst other things, you had multiple cases where the developer needed some code, and wrote it for his fork, while another developer did the same, but in an incompatible way. This lead to their being multiple incompatible implementations of the same basic code in the operating system. At the same time, they did not notice either the rise of networking, or the importance, so it had no networking stack, until somebody asked Bill Gates about networking in windows 95 at which point he basically took the open source networking stack from bsd Unix and put it into windows. This release of a network enabled version of windows and the endemic use of networking on every other os enabled the development of centralised version control, and feature branches were just putting these forks into the same repository, without dealing with the long times between integrations, and leaving all the resulting problems unaddressed. If you only have one or two developers working in their own branches this is an easily mitigated problem, but as the numbers go up, it does not scale. These are the long lived feature branches which both Dave and primagen dislike. It is worth noting that the hp laser jet division was spending 5 times more time integrating branches than it was spending developing new features. Gitflow was one attempt to deal with the problem, which largely works by slowing down the integration of code, and making sure that when you develop your large forks, they do not get merged until all the code is compatible with trunk. This leads to races to get your large chunk of code into trunk before someone else does, forcing them to suffer merge hell instead of you. It also promotes rushing to get the code merged when you hear that someone else is close to merging. Merging from trunk helps a bit, but fundamentally the issue is with the chunks being too big, and there being too many of them, all existing only in their own fork. With the rise in the recognition of legacy code being a problem, and the need for refactoring to deal with technical debt, it was realised that this did not work, especially as any refactoring work which was more than trivial made it more likely that the merge could not be done at all. One project set up a refactoring branch which had 7 people working on it for months, and when it was time to merge it, the change was so big that it could not be done. An alternative approach was developed called continuous integration, which instead of slowing down merges was designed to speed them up. It recognised that the cause of merge hell was the size of the divergence, and thus advocated for the reduction in size of the patches, and merging them more often. It was observed that as contributions got faster, manual testing did not work, requiring a move from the ice cream cone model of testing used by a lot of Web developers towards the testing pyramid model. Even so, it was initially found that the test suite spent most of its time failing, due to the amount of legacy code, and the fragility of code to test legacy code, which lead to a more test required and test first mode of working, which moves the shape of the code away from being shaped like legacy code, and into a shape which is designed to be testable. One rule introduced was that if the build breaks, the number one job of everyone is to get it back to passing all of the automated tests. Code coverage being good enough was also found to be important. Another thing that was found is that one you started down the route to keeping the tests green, there was a maximal delay you could have which did not adversely affect this, which turned out to be about once per day. Testing because increasingly important, and slow test times were deal with the same way slow build times were, by making the testing incremental. So you made a change, only built the bit which it changed, ran only those unit tests which were directly related to it, and one it passed, built and tested the bits that depended on it. Because the code was all in trunk, refactoring did not usually break the merge any more, which is the single most important benefit of continuous integration, it let's you much more easily deal with technical debt. Once all of the functional tests (both unit tests and integration tests), which shoukd happen within no more than 10 minutes, and preferably less than 5 minutes, you now have a release candidate which can then be handed over for further testing. The idea is that every change should ideally be able to go into this release candidate, but for some bigger features it is not ready yet, which is where feature flags come in. They replace branches with long lived unmerged code by a flag which hides the feature from the end user. Because your patch takes less than 15 minutes from creation to integration, this is not a problem. The entire purpose of continuous integration is to prove that the patch you submitted is not fit for release, and if so, it gets rejected and you get to have another try, but as it is very small, this also is not really a problem. The goal is to make integration problems basically a non event, and it works, The functional tests show that the code does what the programmer intended it to do. At this point it enters the deployment pipeline described in continuous delivery. The job of this is to run every other test need, including acceptance tests, whose job is to show that what the customer intended and what the programmer intended match. Again the aim is to prove that the release candidate is not fit to be released. In the same way that continuous delivery takes the output from continuous integration, continuous deployment takes the output from continuous delivery and puts it into a further pipeline designed to take the rolling release product of continuous delivery and put it through things like canary releasing so that it eventually ends up in the hands of the end users. Again it is designed to try it out, and if problems are found, stop them from being deployed further. This is where cloudstrike got it wrong so spectacularly. In the worst case, you just roll back to the previous version, but at all stages you do the fix on trunk, and start the process again, so the next release is only a short time away, and most of your customers will never even see the bug. This process works even at the level of doing infrastructure as a service, so if you think that your project is somehow unique, and it cannot work for you, you are probably wrong. Just because it can be released, delivered, and deployed, it does not mean it has to be. That is a business decision, but that comes back to the feature flags. In the meantime you are using feature flags to do dark launching, branch by abstraction to move between different solutions, and enabling the exact same code to go to beta testers and top tier users, just without some of the features being turned on.
    1
  217. ​ @jedipadawan7023 not quite. bsd was licensed from at&t, so was xenix. linux is a unix workalike, which is just api compatible so it can run unix programs this means that it does not need a license.
    1
  218.  @cybervigilante  this is not a vendor issue, it is a kernel space issue. nvidia could do this to linux tomorrow for people with nvidia cards. also, cloudstrike did the same thing to debian and rocky recently.
    1
  219. The correct response to that is not only to have a ratchet on your code coverage, but to make the test author responsible for fixing every fragile test they committed before they can work on new code, thereby pushing the pain of their crappy tests back onto them. If it still doesn't work, add them to the list of people who have to fix the broken tests which no longer have a maintainer. Eventually they will figure out how bad crappy tests are, and stop writing as many. Also crappy tests are usually a product of crappy code, so their code should gradually improve as well.
    1
  220. ​ @nicejungle but the linux solution does not help in this case. most of the machines in use were locked down. this requires the kernel to spot a problem, flag up the driver to not run on next boot, and be able to trigger that by just turning the machine off and on again. not having this is why every machine needs a personal visit to do the trivial fix.
    1
  221. ​ @keithjohnson6510 it was a kernel bug, but if they had been testing against either linuses nightly build, or gkh's next kernel, they would have found it before it even shipped.
    1
  222. go to the regulator
    1
  223. except that arm was developed at acorn in the 1980s, so its old is the wrong argument. actually, the idea behind cuda also goes back to the 1980s as well, as does the work on multicore processor systems.
    1
  224. because it was one of the services taken out.
    1
  225. ​ @rukhsanalenherr9904 no, make it a 100% tariff on fossil fuels, while you look for other customers, and the American consumers can find out what it is like to have to pay real world prices for fuel.😮
    1
  226. you cannot recover from the initial crash, you can recover from the boot loop which kept all the machines down. as to the disclaimer, leonard french covered it on youtube, and it is invalid in the case of negligence, which this clearly is.
    1
  227. simple, cloudstrike did not bother to put the patch through testing.
    1
  228. ​ @gppsoftware the linux kernel gets a new patch every 30 seconds on average, so there are cases where multiple updates per day make sense. netflix do this quite well. good ci and cd act to stop you releasing if there is a problem, so a snafu this bad would not make it out the door. even if it got out, canary releasing to your own computers would quickly stop the roll out of the patch.
    1
  229.  @vladimirpopov2373  that sounds like a similar buggy driver issue, but that is just normal windows problems, as the driver just broke, but did not crash the kernel.
    1
  230.  @zed5129  someone made comments about how multiple releases per day do not make any sense under any circumstances. i was using the linux kernel development process as one example where that is obviously not the case. virus recognition signature files at the heart of the problem here is another. in response to this need we have over many years developed methods to avoid exactly the issue that happened here and mitigate the extra risks involved, but the evidence clearly indicates that despite these methods being common knowledge, either they do not use them, or in this instance they chose to subvert them.
    1
  231. In this country we have a problem of believing that simplistic solutions can solve complex problems, but complex problems usually have complex causes, and thus a simplistic solution which ignores the causes at best does not work, and at worst makes the problem much harder. We had a catchphrase of tough on crime, tough on the causes of crime, and then spent decades not even looking at the causes of crime. Now it looks like we are following the old trope of the deserving poor ans the benefits scammers. This has been adopted many times, and never works, and labour are equally guilty of it, so the idea of just vote labour and that will fix everything won't work. This whole problem is made harder by the move away from simple universal benefits like working tax credit whih you can work out how to make revenue neutral, in favour of badly implemented means tested benefits which generate benefits traps. We need a cross party agreement to actually have grown up discussions on why the system is not working well, and how to reform it in constructive ways, rather than having jingoistic point scoring discussions which don't make a difference.
    1
  232. but the problem with statistical ai is that you have no idea how it got the answer, or even if it is answering the question you think you are asking it. you literally only know that with this input it gave you that output, nothing more. symbolic ai takes those connections you are so proud of in statistical ai, makes them explicit, and then does multiple levels of additional error checking to try and determine if the answer was a load of rubbish. this fundamentally means that it will give fewer rubbish answers, and can even tell you why the answers were rubbish. statistical ai cannot do that. it also keeps the training data, and to some extent maps that data to the rules that it found, whereas statistical ai has no use for the training data after it starts giving the right answers to the problems the data included, and in any case, cannot figure out any relationship between its inputs, outputs, and internals.
    1
  233. this sort of thing was standard practice in a lot of the companies that got hit, but cloudstrike shipped this as a live patch, which updates immediately without caring which driver version you are using. this basically overrode every security policy their customers had in place to prevent this. then they shipped the update to 8.5 million mission critical machines without doing any testing. we have known not to do that since windows 3.11.
    1
  234. nobody ships a pure microkernel design as a mainstream operating system. a case can be made that apple has a microkernel, but lots of stuff online disputes that, and in any case they don't support the enterprise market, so it probably does not fit the people who got hit. any kernel level code can read or write anywhere, and can thus crash any kernel if it has a bug. the issue here is that microsoft did not detect and disable the buggy driver.
    1
  235.  @donpalmera  like the eu ban lies, the enclave thing is just pr. to the extent that it works, it is incompatible with this sort of software. what microsoft needed to do was make it so that the boot start flag told the kernel that it wanted to force the kernel not to finish booting if there was a problem, then let the kernel override it if the driver was buggy. they did not do this despite having boot loop issues in 2016, 2018, 2022, 2023, and now this time.
    1
  236. Civil service pensions are higher as a means of paying lower wages. If you want to cut those pensions, you need to up the wages so you can retain the people who can get better paying jobs elsewhere.
    1
  237. Lower wages than whom?, the people you are trying to retain. Civil servants get paid well below market rate for their services in return for better pensions and a measure of job security. If you break that deal for new hires in order to save on future pensions, you go back to having to pay the much higher market rate for people of this ability level. If you are even stupider and try to change the pensions of those already working in the civil service, you will see a mass Exodus of staff as they scramble to take their existing pension contributions and try and get better jobs to make up the. Shortfall in expected pension returns.
    1
  238. @hardywatkins7737 no, I am talking about all levels of employee. If you take someone from accounts, they can leave tomorrow and work for an insurance underwriter and get an immediate pay rise of 20%. Admin is the same. You pay below market price plus generous holidays and pensions. This already does not apply to executive level jobs, as the pay cut would be too high, so you have to pay market rate and they do their own pensions.
    1
  239. ​ @phillipsusi1791 this is only true as long as the code changes in the new feature does not touch any code used by any other new feature. In it's own long lived feature branch. As the feature gets bigger, lives longer, and requires more modifications to pre-existing code this assumption becomes increasingly invalid, and that is before you consider any of the other fundamental problems with long living feature branches in actively changing code based.
    1
  240.  @phillipsusi1791  it is entirely about code churn. every branch is basically a fork of upstream (the main branch in centralised version control). the problem with forks is that the code in them diverges, and this causes all sorts of problems with incompatible changes. one proposed solution to this is to rebase from upstream, which is intended to sort out the problem of your branch not being mergable with upstream, and to an extent this works if the implicit preconditions for doing so are met. where it falls over is with multiple long lived feature branches which don't get merged until the entire feature is done..during the lifetime of each branch, you have the potential for code in any of the branches to produce incompatible changes with any other branch. the longer the code isn't merged and the bigger the size of the changes, the higher the risk that the next merge will break something in another branch. The only method found to mitigate this risk is continuous integration, and the only way this works is by having the code guarded by regression tests, and having everybody merge at least once a day. without the tests you are just hoping nobody broke anything, and if the merge is less often than every day, the build from running all the tests has been observed to be mostly broken, thus defeating the purpose of trying to minimise the risks. the problem is not with the existence of the branch for a long period of time, but with the risk profile of many branches which don't merge for a long time. also, because every branch is a fork of upstream, any large scale changes like refactoring the code by definition is not fully applied to the unmerged code, potentially breaking the completeness and correctness of the refactoring. this is why people doing continuous integration insist on at worst daily merges with tests which always pass. anything else just does not mitigate the risk that someone in one fork will somehow break things for either another fork, or for upstream refactorings. it also prevents code sharing between the new code in the unmerged branches, increasing technical debt, and as projects get bigger, move faster, and have more contributers, this problem of unaddressed technical debt grows extremely fast. the only way to address it is with refactoring, which is the additional step added to test driven development, which is broken by long lived branches full of unmerged code. this is why all the tech giants have moved to continuous integration, to handle the technical debt in large codebases worked on by lots of people, and it is why feature branching 8s being phased out in favour of merging and hiding the new feature behind a feature flag until it is done.
    1
  241. any os can be shutdown by a buggy kernel level driver, the question is how well does it recover when you reboot. in this case the answer is that it did not recover, which is firmly Microsofts fault.
    1
  242. any os kernel module can bsod a system. there are only two ways to stop it. 1 require every module to be submitted to os vendor for intensive testing prior to release. microsoft tried it and nobody wanted to pay them them thousands to sign every minor patch. 2, have the os catch bad drivers, and automatically block them next reboot. nobody does this. a poor approximation is windows safe mode, which does not work in a corporate environment. so every kernel driver update can hose your system with a need for a full reinstall.
    1
  243. ​ @Storytelless first, you separate out the code that does the search, as it is not part of the ui, and write tests for it. Then you have some ideas as to what parameters you want to pass to the search, which are also not part of the ui, and add tests for those. Finally, you know what those parameters are going to be, which hints at the ui, but you have the ui build the search query, and test that that query is valid. Only after all of this is it necessary to finalise the shape of the ui, which is a lot easier to test due to all of the other stuff you have already removed. The ui should be a thin shim at the edge of the code which just interacts with the user to get the parameters. This was it is easier to replace it with a different one if your ui design changes, because you have already removed all of the other stuff which is ui dependent. You can then test the ui using one of the guides test frameworks, just looking to see if the automated step you have recorded actually selects what you expected it to and returns the correct value.
    1
  244. Yes, the European coal commission, whose stated aim was to prevent Germany and France from ever going to war again. This then morphed into the European economic community, whose stated aim was ever closer union. Now we have the European Union, whose unstated aim is the united States of Europe, but has no idea how to get from here to there within the current agreements.
    1
  245. no, microsoft wanted to let defender be a first class citizen, and force everyone else to use the patchguard api. the eu said no, think again. microsoft could have shipped patchguard, but not enforced it until service pack 1, at which time defender would also have to use it, but they chose not to.
    1
  246. This is to do with the terminology mismatch between different developer communities. As testing became better understood, it defined the term "unit test" to refer to a simple test which follows one path through the code and returns one deterministic answer. In the meantime, and especially in object oriented communities, "unit tests" came to be used to refer to the entire test suite used to test an entire class or module. Not the same thing at all, but then add testing enthusiasts not defining their terms and you end up with people outside the testing community understandably not believing that "unit testing" is.not fragile because they are used to their tests suites breaking, especially when they write tests after the fact and have to do lots of fragile tricks like mocks to get around the fact that their code was not written with testing in mind.
    1
  247. The best way to answer is to look how it works with linus Torvalds branch for developing the Linux kernel. Because you are using version control, your local copy is essentially a branch, so you don't need to create a feature branch. You make your changes in main, which is essentially a branch of Linus's branch, add your tests, and run all of the tests. If this fails, fix the bug. If it works rebase and quickly rerun the tests, then push to your online repository. This then uses hooks to automatically submit a pull request, and linus will getting a whole queue of them, which is then applied in the order in which they came in. When it is your turn, either it merges ok and becomes part of everyone else's next rebase, or it doesn't the pull is reverted, linus moves on to the next request, and you get to go back, do another rebase and test, and push your new fixes back up to your remote copy which will then automatically generate another pull request. Repeat the process until it merges successfully, and then your local system is a rebased local copy of upstream. Because you are writing small patches, rather than full features, the chances of a merge conflict are greatly reduced, often to zero if nobody else is working on the code you changed. It is this which allows the kernel to get new changes every 30 seconds all day every day. Having lots of small fast regression tests is the key to this workflow, combined with committing every time the tests pass, upstreaming with every commit, and having upstream do ci on the master branch.
    1
  248. but the state of measurement in software stinks. with the exception of the dora metrics, they are all equally bad, leading to a situation similar to the drunk looking for his keys undrr the street light, even though that is not where they dropped them. while i don't dispute the value of good measurement, we have not done enough work on large version control repositories to develop good measurements.
    1
  249. The reason for function size limitations is because most long functions are badly conceptualised. Either they do multiple things, in which case multiple things are better, or they do multiple stages, in which case splitting each stage into its own function is better. Only after you have dealt with those problems do you come to the human factors problem that code longer than a page is harder to remember and reason about.
    1
  250.  @fuseteam  no, the distributors are not just just rebrands, they are supporting customers who red hat have decided they do not want to support, and thus are not costing red hat anything. it is the same broken argument that every customer not paying us for stuff that we do not do would just start paying us if only we could find a way of forcing them. also, when these companies produce a fix for a problem red hat does not support, it gets pushed upstream, either to stream, or the original project, or both.
    1
  251.  @fuseteam  you seem very set on the idea that every provider downstream of redhat is just a rebrand, which just is not true. there were whole classes of people who were only using redhat and their derivatives because redhat as part of their marketing said that if you need enterprise timescales, then use us as your stable base and do respins and derivatives based on us. that is what centos was. people are annoyed because redhat promissed 10 year support for centos 8, then ended it after only 1 year, while people were still migrating to it. even worse, they gave almost no warning. as to the derivatives, each exists for a specific reason, and supports customers redhat no longer wishes to support. clear linux is for an all intel hardware stack. rocky linux is for centos users where the move to rhel is not an option. scientific linux was a cantos derivative with extra software which was needed mainly in places like fermilab and cern. oracle linux needed specific optimisations which made running their databases better. others were used for embedded systems and infrastructure, or for alternative architectures. pretty much all of these use cases were at one time actively supported by redhat or centos, and are now prohibited under their dodgy eula. even the case where the city of Munich needed to create a respin specifically for their 15000 seat council rollout to include extra software only they needed is now banned. redhat used an opencore approach in order to grow, and a use us as upstream approach to enter markets that were not otherwise open to them. it had the added benefit of not fragmenting the enterprise linux market much. unfortunately for them, not everyone can suddenly switch to paying them lots of money on short notice, and even more cannot afford the rat on your boss tactic made disreputable by microsoft and their enforcement arm the business software alliance. when you run a business, you make a profit, and then decide how much of it to invest in research and innovation. the current management at redhat seems to think that it should work the other way around, where they decide what needs doing and how fast, and then tries to force people who never needed to pay with their blessing to make up the shortfall. the current fracturing of the enterprise market is a direct consequence of this attitude, as is the percentage of redhat customers looking for ways not to be held hostage by the next silly move they make. these people who have forked rhel had a total right to do so as redhat had encouraged them to do it. lots of them do testing for scenarios redhat does not support, and then pushes those changes both to stream, and to the primary upstream developers so that they do not have to keep large patchsets supported out of tree. these patches and extra bug finding are then made available to rhel from either upstream directly, through fedora, centos, or derectly as patches to redhat. this is fundamentally how open source works, someone finds a problem, develops a fix, and sends it upstream, and then the downstream users get to us it without necessarily having a need for support. when support is needed, then they find a company who is responsive to their support needs, which redhat increasingly is not. redhat has now become just another entitled proprietary software company who happens to use lots of open source software to try and keep the costs down, while the management has forgotten this fact and decided to stop playing well with others. this has already come back to bite them, and will continue to do so.
    1
  252. sandboxing won't help in this case, as the 2 needs are not compatible.
    1
  253. it does not work that way. you either need the capabilities of kernel mode, or you don't. if you need them, you are stuck in kernel space, and can do this. if you don't, you should stay in user space where you only kill yourself. there is no ring 1 space where you get the advantages of kernel space but not the risks. ring 0-n is a processor feature which gives you increasingly guarded access to the machines capabilities. in the old 8 bit days, everything was basically kernel space. everything could write everywhere. it is only with the development of multi user operating systems on mainframes that the idea of user space actually came to exist, and the idea of processor level access restrictions made any sense.
    1
  254. In principle, I agree that all code should be that clean, but that means that there are a bunch of string functions you must not use because msvc uses a different function than gcc for the same functionality. In practice, people write most code on a specific machine with a specific tool chain, and have a lot of it. Having to go and fix every error right away because the compiler writer has made a breaking change is a bug. So is an optimisation where the test breaks because optimisation is turned on. In this case, what happened is that a minor version update introduced a breaking change to existing code, and instead of having it as an option you could enable, made it the default. How most compilers do this is they wrap these changes in a feature flag, which you can then enable. On the next major version, they enable it by default when you do the equivalent of -Wall, but let you disable it. On the one after that it becomes the default, but you can still override it for legacy code which has not been fixed yet. Most programmers live in this later world where you only expect the compiler to break stuff on a major version bump, and you expect there to be a way to revert to the old behavior for legacy code.
    1
  255. the trap is actually making an appealable decision, at which point she will have three overturned major rulings related to this case (two from her prior illegal obstruction of the search evidence) which even if smith does not ask for her removal would normally automatically get the appeals court to remove her.
    1
  256. using c as an example, anything in the header file is part of the public api, which is the part you test. anything in the c source code file is implementation specific. you should be able to rename this c file and replace it with a completely new one, and all the tests should still pass once you have a complete implementation. to the extent it does not, you were testing internal details of the previous implementation. that is what is meant by do not test the implementation, that you should be able to do this, and to some extent get full code coverage just using the public api. any code not covered is dead code and can be deleted if your test suite is complete.
    1
  257. Of course the real value of lots of public API unit tests Is that it pushes a lot of code to be outside of the UI, and thus testable. The rest is just a thin skin that is wrapped around the rest of your program, which is then much easier to test and to change.
    1
  258. Actually, they expect semantic versioning of major tools like compilers, interpreters, and other types of analysers. This means that they expect all breaking changes to be in a major version update, and choose when to change over to the new version. Having it change on what was effectively a bug fix update goes completely against expectations, so while the compiler writer was technically right, it goes against the expectations people have been given from how decades of updates to major tools have worked in practice.
    1
  259. people feel nostalgia for it because it was what they learned first, and because if you only work on the 40% of projects it can work for, it can be good enough. people don't like it because it does not work at all for 60% of projects, and for the rest it often is not good enough.
    1
  260. the problem with pure communism, shared by pure capitalism, is that they don't work. in any practical system you have to balance the needs of the investors, the workers, and the customers. the customers want stuff as cheap as possible, the workers want higher pay for easier or reduced work, and the investors want the best profit from the investment. there is an idea not often taught called the principal of enlightened self interest, where you set the price at the highest price which does not harm sales, and then split the profits between the investors and the workers. this gives you a sweet spot, where everyone gets the optimal deal. any deviation from that sweet spot harms the interest of at least one of the three groups.
    1
  261. ​ @Fractal_32 yes, there is a reason why "may you live in interesting times" was regarded as a nasty curse. just look how interesting cloudstrike just made things.
    1
  262. ​ @kayakMike1000 this is exactly what the rust maintainer who just quit suggested, with them doing the maintenance, but the c maintainer tried insisting that the code was not in his part of the kernel tree, hence suggesting getting others involved to resolve the impasse. You need consistent project wide rules saying what goes where, which we do not have yet for the kernel.
    1
  263. ​ @verolawson3898 which is the wrong law to cite as it had a sunset clause and has expired and been replaced by something else.
    1
  264. the reason this matters is that in modern synchronous designs, all of the instructions are slowed down to fit the time needed for the slowest part, which is slower on cisc. by dumping some of the slower instructions, risc gets a speedup for free. when the research was done on asynchronous arm chips in the 90s, an improvement was seen, but the funding went away and we never got to find out if synchronous clocks were fundamentally a bad idea, or just a simplification which was not expensive enough to dump.
    1
  265.  @jasonbuffalo6845  if it was just logically equivalent to having a firmware x86 / x86-64 to risc microcode jit, then i would agree with you, but even some of the cisc processor designers say that the larger instruction set increases complexity, which in turn increases transistor counts. that is before you consider the failure of these people to work with compiler writers to make some of these more complex instructions into compiler macros instead, reducing the need to keep them on the chip. this is also a problem for testing, which is historically why you can recognise which intel x86 cpu you are running on by spotting which hardware bugs need working around.
    1
  266.  @jasonbuffalo6845  not sure i agree with that. because the extra hardware does not report its presence, it is hard for the os to detect, and thus use automatically, which can cause all sorts of issues. i agree intel got complacent, they do that every so often.
    1
  267. but from your usage you disparage experts, but part of the definition of an expert is that they know more and for most of it all agree. codification it is not the problem, self proclaimed experts are.
    1
  268. Both disasters were caused because management did not understand risk, even after feynmann shoved that fact down their throat after the first one.
    1
  269. windows defender is basically just an antivirus, like norton or macafee. edr software is an order of magnitude more comprehensive in the types of malware it can work against, even before you consider the proactive nature of most of the companies involved.
    1
  270. ​ @__S__435 slight mismatch here. signing the file tests if it gets corrupted in flight. running tests from the same update file checks if it is garbage. they claim it passed all the tests, then got corrupted which does not add up.
    1
  271. then you are lucky. this affected lots of stuff worldwide, including doctors surgeries, emergency rooms, operating theaters, ambulance operators, epos terminals in lots of shops, lots of places who took card payments, cash machines, banks, airlines, hotels, petrol stations, and the list goes on. this was a massive cock up, and it was 100% avoidable using methods learned starting with the moon landings, going through y2k, 9/11 and right up till today. not having this happen is trivial, they just did not bother to do it.
    1
  272. does the misdeeds of cannon in this and her previous illegal insertion into the search warrant part of the case rise to the level of malfeasance in office, and if so what are the potential consequences for her?
    1
  273. yes it is. have a modular kernel, flag up which modules have changed on shutdown, when rebooted clear the list, and if the reboot did not complete, block those modules on next reboot.
    1
  274. a lot of the comments made about universal basic income mirror those made about having a minimum wage. it is perfectly possible to have a universal benefit paid to everyone in the qualifying demografic, in fact we already have 2 of them, child benefit paid to the primary carer, and basic state pension paid to anyone over retirement age. in both cases it is a trivial test to see if you fit the demografic, and then the payment continues until you don't. the suggestion is that it might make sense to roll it out to other groups, and the evidence is already in that benefits that are not means tested are spectacularly cheaper to administer, so it makes a lot of sense to look at what other benefits could follow this route. we even have the universal credit single payment system already in place to make payments cheaper to administer. it is also true that it is harder to set up a universal basic income in countries where you have already got a raft of means tested social security benefits, but there has been lots of research done on the practicalities of such systems, and again, the evidence is already there to say that they are almost impossible to run in a way that doesn't result in numerous different types of counterintuitive outcomes including: irrecoverable overpayment - for example tax credits to pay for childcare underpayment - just look at how the disabled are not being paid what they are supposed to get massive beurocrasy to adm8nister all the paperwork required by means testing benefits traps - where you earn a little extra, and you lose huge amounts of benefits in response so you have to work within those limits ongoing benefits reform - trying to deal with all the other problems of means tested benefits and lots of other problems. in countries where it has been tried properly, especially those without massive social security systems, it was found that there were a lot of possitive outcomes as a direct result of not having other problems: the ill and carers saw lots of improvements due to not having to fight poverty resulting in better physical and mental health partners in couples who were not the primary breadwinner found it easier to escape from negative relationships, as they had their own independant source of income. people found it easier to start businesses, as they don't have to go from zero to a living wage almost instantly the elderly could cut back on the hours at jobs they liked, and still be in work, as any shortfall is covered there are a number of others as well. the stupidest objection here is about the unworthy poor. if you have not been caught as a criminal, there is no legal or moral reason to exclude you from benefits. if you have hard to prove medical conditions like backpain, it doesn't stop it from limiting what work you can do, so also should not limit your benefits. as to affordability, it can be brought in the same way minimum wage was, start at a pittance, and have above inflation raises until that catagory of people achieve the apropriate level. you can also bring it in like the right to vote was brought in, extending the franchise gradually as you work out who should be entitled, and at what level. remember, this does not stop you from taxing people. tax credits for the employed have a taper which gets gets deductions taken from your wages as part of paye according to recorded earnings. people who have to put in a tax return have limits above which they get taxed according to their reported incomes. both can be worked out by existing government departments as they are every year, they just have to take the new income into account like every other source of income. the remaining questions are who should be eligable, and at what rate, which can be determined in the same ways benefits reformers already do it. don't throw away the idea just because some idiot comes up with a specific scheme which is overgenerous and which has not yet had any thought as to how to fund it. universal does not have to mean everyone is entitled to the same amount, it just means that everyone in some qualifying and trivial to test catagory is entitled to some specific amount. basic just means that it is not means tested, and gets paid to you as of right. and of course income in this sense just means that if you fit the criteria, (like being a child or a pensioner) you actually get some money. none of this means it has to be non taxable. if i remember rightly, when child benefits go up, they just do not increase your tax limits by the same amount, so that if your family earns enough to pay tax, it is already revenue neutral. same with basic state pension.
    1
  275. because nobody implements any type of bad driver detection and isolation system in any os. and no, windows safe mode does not count. it just lets you boot up and then its your problem, but it does not work for locked down corporate machines.
    1
  276.  @h4ktbtw  agreed, but it matters a lot more on windows due to you having thousands of drivers written badly by untrusted third parties with varying levels of quality control and are hoping that none of those drivers have a cloudstrike level bug. mac is less affected due to them all being a preapproved all in one board with the drivers mainly written by apple. linux is less affected by the fact that most drivers go through the kernel development path before being shipped in the mail kernel, thereby getting lots of testing.
    1
  277. by definition you cannot be bug compatible with rhel when working from stream. that is the entire point about the problem. centos used rhel sources minus branding. stream is rhel-next, which might be up to 1.5 years from being ready.
    1
  278. because rust is basically c with constraints, so it can be done incrementally. most valid alternatives are not, so you would have to translate everything at once.
    1
  279. ​ @GoogleDoesEvil rubbish. every major kernel at the moment has ended up functionally as a modular monolith for efficiency reasons. they just came to it from different directions.
    1
  280.  @GoogleDoesEvil  i think i need to clarify the terms here. a micro kernel has just enough code in the kernel, and literally everything else is user space modules. linux uses this model for some services like the ftp server where they are referred to as demons. a monolithic kernel on the other hand has the same sort of modules, but they run in kernel space, and its usually all the modules actively loaded even if you don't use them. a modular monolithic kernel has the modules in kernel space, but most of them are only loaded at runtime if they are needed. most operating systems now use this model. in windows, these modules are called drivers, on other os families they have different names, but they all do the same job. the main difference is that the windows drivers are written to a provider defined standard, and some have been found to be shockingly bad. this is also why bad driver identification matters more on windows.
    1
  281.  @GoogleDoesEvil  everywhere i see it referred to they use the term modular monolith to make clear what they are referring to. hybrid kernel includes modular monoliths, but other things as well. as to windows starting as a mainly microkernel, yes they did, but then lots of code got pulled from user space into the kernel device drivers to deal with the context switching lag. linux started out monolithic, for speed of development, then made most of the drivers external kernel space drivers, to make the driver development speed faster. basically, can the drivers only be provided by the os developer, if so it it is not modular. does the driver work in user space, if yes, it is acting as a microkernel, with massive context switching costs when you switch between the two. if like the ftp server it never needs to have a separate driver, then which mode the driver works in is irrelevant.
    1
  282. ​ @Pentium100MHz we have this rule because EU citizens care about climate change, but have not yet got the mindset of actively looking at power usage, and if things are actually required to be using the levels they are now. There is also the issue that people on low incomes have to buy the cheap tech, where the search for sensible defaults has not been done, and are thus a lot more wasteful. As an example a free view box last time I looked could be bought for £15 or £40, with the more expensive one using 20% of the power in standby mode, which is often triggered by default after a few hours in the EU. The only way to force manufacturers to get a clue was to introduce these regulations and make these considerations mandatory. Similar regulations for emissions is why EU cars use half the fuel of American ones.
    1
  283.  @audiolatroushearetic1822  as famously noted, common sense is not that common, especially if someone else is paying the bill.
    1
  284.  @rockets4kids  actually it is. anything executable goes through testing including canary releasing. if it crashes the machine during phased rollout you stop shipping it. then it does not end up on the customers machines. where is the difficulty in that?.
    1
  285.  @rockets4kids  obviously it did not work in this case
    1
  286. actually you are wrong. if the processors get much higher clock rates, you have to stop sending the signals down wires, and start sending them down plumbing, which is why they stopped chasing clock numbers and moved to something else. the main thing keeping the x86 & x86-64 alive is the wintel duopoly, which is slowly dying. data centers need cooler less power hungry processors, which they can move to now that linux is getting better risc support. the desktop is being eaten by smartphones and tablets on one end, and by web apps on the other, neither of which need windows. the windows market will get further punished due to the hardware requirements for 11 and 12 making it so that developing countries cannot even use pirated versions, as they cannot afford the hardware. the writing is on the wall for both windows and cisc, as cisc is only being kept alive due to windows. i hope they get a plan b before it is too late.
    1
  287. both microsoft and crowdstrike are on the hook for some negligence claims from some big people with lots of lawyers who like to sue. microsoft for the boot loop issue, which they could have fixed after any of the previous times it happened, but did not. cloudstrike has a bigger problem, as their own descriptions arguably reach the definition of gross negligence, at which point the amount of money lost, the cost of fixing it, and lawyers bills all come into play. some customers have already announced that they are preparing lawsuits.
    1
  288. it is almost a certainty. this hit hospital emergency wards and operating theaters. if nobody died due to lack of necessary data it will be a miracle.
    1
  289. Not only is there the issue of not testing the private api, but there is also the issue that people from the oop community regard a unit as equivalent to the module, and thus the unit test to them is the entire test suite for that module, which is not what a unit test actually is.
    1
  290. a lot of the arguments against agi are based either directly or indirectly on the basis of god says we are unique and special. every single aspect of us that has been looked at seriously has come to the conclusion that this is just not true. the pro agi argument has one assumption, that there is nothing unique about human level intelligence, and thus if we can get close, why can we not do better. the simulation problem makes a similar assumption, that there is something unique about an explanation written by a human compared to exactly the same text written by a computer with the same knowledge about the case. it the text is the same, where is the Fakeness?
    1
  291.  @RawrxDev  i would like to agree with you, but when i ask why they are sceptical, they don't have valid reasons, and just end up saying "because humans are special", and those who claim fake intelligence basically say "because there is something special about it when done by a human". i generally find that those people effectively remove themselves from the conversation, basically amounting to just the level,of noise from some random fool. i would love to discuss with genuine sceptics with actual reasons what mechanisms could get in the way of agi and asi, but they don't seem to show up. one example could be that when humans think, something in the underlying machinery does something quantum, but then you have the question of what is it about wetware which makes it the only viable method for getting the result, and anyway, how come these pesky expert systems can also get the same result and show the same chain of reas9iing as the expert. i would tend to say that llms and all other statistical ai and block box ai have the issue that they are basically blind alleys for anything but toy problems. there are a whole range of fields where even if they could be shown to produce the right results, their underlying model and the impossibility of fixing wrong answers and security holes just make them unsuitable for the job. agi needs symbolic ai, combined with multiple feedback cycles to figure out not only that the answer given was wrong, but why it was wrong, and what dan be done differently to avoid making the same mistake next time. generally i tend to believe that ai will get smarter, using symbolic ai, and that there is no predefined upper limit for how good it can get, but i would like those who turn up with opposing views to actually have some basis for them, and to actually be bothered to voice them so that actual discussion can occur, rather than just saying "because", and thinking that makes them automatically right.
    1
  292. what would be really interesting is if intel joins, and bases clear linux on it, as this would then make all intel contributions either upstream first or open ela first, instead of rhel first, and that could cause big problems for red hat.
    1
  293.  @John_Smith__  i largely agree, but it is not just mobile where risc wins due to power, but the data center too. the issue here is that cisc uses a lot of power, and produces a lot of heat. moving to a larger number of slower processors which use less power overall, and do not produce anywhere near as much heat saves the data center a fortune. as most of these loads are platform neutral, and you can just recompile linux for arm on the server, it does not have the windows lock in. even worse, as more devices go risc, the software moves to apps and websites, further killing the need for windows. and of course for a lot of tasks, the linux desktop is already good enough, so you have a triple threat. i cannot wait to see the companies panic as they realise that people outside the west cannot upgrade to 11 and 12 due to costs being too high, and scramble to find some other solution.
    1
  294. most companies cannot cope with cowboy developers doing things which actively undermine your resiliency planning. lots of people got caught after 9 11 as their backup was in the other tower. same happened with the big european data center fire, when the provider had the backup literally next door, so it caught fire as well.
    1
  295. yes, but your validator and driver both use code from the same library. the validator just puts a cli wrapper around it which lets it return true or false, so you can call it from a script or test runner.
    1
  296.  @ПётрБ-с2ц  i just said how we have known to do it for decades. given all the other basics they ignored, i agree they probably ignored this one as well, but it does not matter, as they wrote it to pass unless it recognised a fault, as opposed to failing unless it recognised correct code.
    1
  297. i think the point about development speed is due to the fact that one of the basic ideas in lisp is that it is easy to create new functions and data types, which makes it trivially easier to turn lisp into a system containing a superset of the language in the form of domain specific language extensions which get you progressively closer to the problem domain. this in general makes hard problems a lot easier, and near impossible problems plausible. this simply is not part of the mindset used with imperative programming languages, although it can be done in them. it is much faster to work in dsl's closer to the problem space.
    1
  298. that would not have saved you this time. what was in the patch was supposed to be a new threat definition, which is done as a live patch, making which version of the driver irrelevant.
    1
  299. that is because a lot of the smart meter fitters are not properly trained.
    1
  300. A lot of people are getting the law wrong here. First, copyright is created automatically for anything which does not fall under some very narrow restrictions as to what can be copyrighted. Second, the copyright automatically goes to the author unless you have a naff clause in your employment contract giving it to your boss, or you are allowed to sign a contributer license agreement and do so. Third, when you contribute to a project without a contributer license agreement, you retain your copyright, but license the project to distribute your code under the applicable license at the time you contributed. This cannot be changed without your consent. Fourth, this has been tested in court. In the usa it was found that the author and copyright holder retained copyright, and granted permission to use it under the applicable license. By rejecting the license by trying to change it, you are not complying with the license, and are distributing it without permssion, which is piracy. In a seperate case, it was found that when the company tried to enforce its copyright, and included code it did not own without an appropriate license grant, they had unclean hands, and therefore were not allowed to enforce their copyright until after they had cleaned up their own act. This leaves any company not complying with previous licenses with a serious problem unless all contributions are under a copyright licence agreement transfering the copyright to the company, and always has been unless they track down every contributer and get consent for the license chenge for every single contributer. If they cannot get that consent for any reason, then they have to remove the code of that contribute in order to distribute the software nder the new license.
    1
  301. ​ @knghtbrd but it is exactly his decision to break functionality silently and then double down on it that should trigger a process that should take weeks and require trying to work with upstream.
    1
  302. i am not aware of a single processor design since the 80s that does not have the ability to have a countdown timer trigger a non maskable interrupt. the very fast code then triggered would then typically change a very small amount of stuff which most modern operating systems could check using their own code. on a side point, a number of 80s microcomputers could use this technique to flag a crash, and either just restart the computer or make it so it started in a safe mode, keeping your data. at least one design i know of would reset the countdown timer to a user selectable value of minutes or even seconds and the when it crashed, the timer would finally reach zero, triggering a reboot.
    1
  303. jack smith has done nothing because she has used paperless orders to avoid making an appealable decision. that is no longer the case, and even if he did not appeal, which he must, every other defendant being prosecuted or convicted by a special prosecutor will have to try and use this case to get rid of their own cases. as there are much better rulings by much more competent judges, even if he did not appeal, there is zero chance of this ruling failing to reach the supreme court multiple times.
    1
  304. surely the same bill would also catch hunter biden if he gets a felony conviction for his crimes and he gets ss protection as a family member of the sitting president. that should muffle the credibility of the republicans who will claim that this is a partisan bill.
    1
  305. on the other hand, the statistical ai cannot tell you anything about anything, and only gives you plausable answers, not correct ones. as such there are many fields of work where they will never be allowed to be used. think in terms of why did my vehicle crash, nuclear power station explode, etc
    1
  306. yes you can ask it about peoples views, but only people it knows about, and only for views it knows that they have publically expressed. this gets easier once it starts reading news articles.
    1
  307. ​ @wwkw4992 actually, it is not a good idea to create the tests for your own code under two conditions. The first is when the company demands that all testing is done after the code is thrown over the wall to the testing silo.This not only produces worse tests, but makes those tests flakey and fragile. The other time is for writing acceptance tests, when the developer is rubbish at talking with the customer, where you need someone with a clue to extract that information for the developer. In all other cases test first works better.
    1
  308. debian, mint, manjaro spring to mind.
    1
  309. Not quite. Battery farming has just been redefined to have a higher minimum standard, while those who could not meet it went out of the business.
    1
  310. The reason it says do it more often is that a lot of the pain depends on the size of the change, and thus the difficulty in finding what to fix. By increasing the frequency you reduce the size of the change, and thus find the bit that caused the problem in a much smaller change. Doing version control more often reduces the size of the change, but having long lived feature branches causes merge hell. Integrating at least daily to mainline gets rid of merge hell, but amplifies the problem of lack of regression tests. Specifically that you tend to write hard to test code. Adding the regression tests with the new code, and having a ratchet on the code coverage so you cannot commit if it drops the percentage gradually fixes the regression test problem. This also gives you continuous integration if you run all the tests with every commit. However it increases your vulnerability to worthless and flaky tests and to the test suite being slow. By writing the tests first, you prove that they fail, and then when you add the new code, you prove that they pass, getting rid of worthless tests. Because this speeds up your progress, you have a bigger problem with technical debt. By adding regression testing to the cycle, you deal with the technical debt, which gives you the red, green, refactor cycle of test driven development. When most people start writing regression tests, they start with a codebase with one test, does it compile? Then they tend to work from user interface and end to end tests, having lots of trouble because such legacy code is not designed with testing in mind, and thus is often either hard, fragile or just plain impossible to add. This leads to a lot of opposition to testing. The solution to this is to teach people what real unit tests are before you add the regression testing requirement.
    1
  311. ​ @Songfugel because microsoft decided that safe mode was good enough and did not bother to implement a bad driver detection and disabler. not that any other os does either, but they don't outsource kernel driver development to all and sundry.
    1
  312.  @Songfugel  i agree, when the driver screws up, you have to panic and reboot. microsoft chose to allow lots of third parties to have full kernel access for their drivers, and then have minimal support for fixing it after the reboot. even more so for locked down machines which operate like embedded systems. as a major os vendor, microsoft have some responsibility for how their system behaves when broken drivers are installed, and the boot loop issue was entirely of their making.
    1
  313. how this happened is now out. first they generated the signature file, which was broken, then they ran it through a validator program which was so broken that it said it was ok, then they shipped it straight to 8.5 million mission critical machines all at once as a live update you cannot override and caused most of them to go into a boot loop. any testing at all could have caught these problems before they even got out of the door.
    1
  314. ​ @theswordslay3542 except safemode does not work for locked down systems. this is why every tech support is having to go out, unlock the system, do the trivial fix, and then relock the system. for locked down systems you cannot stop a bad kernel driver update causing a panic, but you can easily add something to spot an update, and something else to spot the reboot crashed, and disable all updated drivers so it recovers just by turning it of and then back on. this is a problem for any os who allows third party kernel driver updates.
    1
  315. ​ @JoeMarler58 micro kernel designs have been known since before linux was written to have a better security and stability model. unfortunately their performance stunk, and every trick thought of to fix this has also been found to improve monolithic kernels as well. this is why every major os now uses a modular monolith design.
    1
  316. ​​ @travisSimon365 hurd would not have won if history was different. i was around at the rime, and everyone was looking to work from bsd code, but the at&t vs berkley case had a chilling effect. the other possibility was that lots of people wanted to extend minix to be more useful, but andrew tenenbaum not only wanted to keep it simple as a teaching tool, but also refused to allow others to maintain a set of patches in the same way as was done for the ntsc mosaic server, wjh8ch was h9w we got apache, literally a patchy servrr due the sequence of patches on patches on patches which were maintained at the time. also remember that it was not until someone wanted to support a third architecture that the default changed from forking the codebase, then getting it to work on the new architecture and instead got the code needed for arch architecture to be brought into the mainline kernel, managed with configuration flags. so you had 386bsd being slowed down by at&t, minix expansi9n being actively opposed by tenenbaum, gnu's kernel being delayed by indecisiveness over how it should work, and multiple commercial unixes just being too expensive for students. then along comes linus, who like a lot of students wanted a unix workalike and happened to be going to university 8n a country with a funding model that did not exist anywhere else. he even used the monolithic design which he thought was worse, for speed. it was not that linus was cleverer, withmsomemgrand plan, just that everyone else could not stop shooting themselves in the foot. also your alternatives at the time were either a primitive version if dos, or cpm.
    1
  317. ​@nezbrun872 it was not a staged push according to the ceo as it is company policy to push pcode or virus signature files to everyone at once. that just means that your pre release testing needs to be better, and you post install validation needs to make sure a borked file does not kill the driver, and thus the kernel. but they did not do this.
    1
  318. To quote from babylon 5, only an idiot starts a war on 2 fronts, only the head of the kingdom of idiots starts a war on twelve fronts. So far trump has started a trade war with all the countries in the EU, with Canada and Mexico (his closest trading allies), with China, and has threatened to sieze Canada, Greenland, Panama, Mexico, and a number of others. He is also trying to sell out Ukraine to Russia over the interests of the EU. He has also declared war on the poor and ill in the us, as well as anyone who is not white, male, straight and evangelical Christian fanatics, as well as the educated, who actually generate the wealth in modern America. Oh and also the us military, legal profession, law enforcement, and the civil service. Not to mention anyone who has ever had any dealings with the us government. Not a bad level of idiocrasy for his first month in office.
    1
  319. he was referring to the way antivirus software signature files do not have time to go through driver certification, and the same applies even if the files can spot a lot more. this is the whole justification cloudstrike uses for live updating the files in the first place, so it is relevant. he also states he is a web developer, which should give him a little wiggle room for not getting some of the subtleties which were irrelevant to what caused the outage.
    1
  320.  @Xehlwan  the truth has now come out as to what happened. they created a file with a proprietary binary format. they ran it through a validator designed to pass and only to fail known bad versions, then when it passed, immediately pushed it to everyone with no further testing. what should have happened it this: create a readable file in a text format which can be version controlled, test it, and commit it to version control. generate the binary file from the text file, with a text header at the start (like everyone has been doing since windows 3.11), and immediately create a signature file to go with it. have the validator compiled as a command line front end around the code used in the driver, designed to fail unless it is known to be good. this checks the signature, then looks for the text header (like in a gif file), then uses that header to decide which tests to run on the file, only passing it if all,of the tests pass. run the validator as part of your continuous integration system. this tells you the signature matches, the file is good, and all,other tests of the file and the driver passed, so it is ready for more testing. build the deliverable, and sign it. this pair of files is what gets sent to the customer. check the signature again, as part of continuous delivery, which deploys it to some test machines, which report back a successful full windows start. if it does not report back, it is not releasable. then do a release to your own machines. if it screw up there, you find out before your customers see it and you stop the release. finally, after it passes all tests, release it. when installing on a new machine, ask if it can be hot fixed by local staff. use the answer to split your deployment into two groups. when updating only let the fixable machines install it. the updater should again check the signature file. then it should phone home. if any of the machines don't phone home, stop the release. only when enough machines have phoned home does the unfixable list get added, as it is more important they stay up than that they get the update a few minutes earlier. if any of this had happened, we would not have even heard about it.
    1
  321. you don't get that option. the only meters available now are smart meters, and your old one won't last forever. most suppliers require you to have a smart metrr as a new customer, so rental properties are even worse.
    1
  322. and the ceo was at mccafee when they did the same thing.
    1
  323. swap is the underlying technology, a page file also called a swap file stores the pages in a specific file on the filesystem. as drives got bigger, this was replaced by using a dedicated swap partition on the hard drive, thereby cutting out the filesystem overhead. with modern systems, a lot of them have so much more memory than your typical user needs that some systems do not even bother using swap unless you get unusual usage.
    1
  324. one of the reasons git won was due to tools like git-svn and the cvs equivalent, which made those horrible tools usable for doing merges, and providing git mirroring. this made the git ui standard, and made migrating to git as the vcs easy.
    1
  325. no he did not. he was charged with manslaughter due to one of the prosecutors deciding to only present evidence to their own colleagues which supported the charge. this then skewed the presentation of the case, and denied the defense the opportunity to choose their best defense. it also produced a great deal of prejudicial publicity which could cause problems with a retrial. dismissing the case due to failing to provide all the evidence to the defense was the right call, as the defense could argue for a mistrial on appeal. the prosecutor withholding the evidence should then go through sanctions procedures, and b3 referred to the bar to see if they are still fit to be a lawyer. in any case, it raises the possibility for the need to review every case she has been involved in to see if something similar happened, and every defence going forward will rightly challenge their presence and behaviour on any future prosecution the only remaining question is if the prejudicial coverage precludes a fair trial if they decide to retry the case, in which case no new trial should happen. he is not guilty of murder as there was no intent to kill. he is not guilty of manslaughter as any results of the case were invalid due to misconduct, and any conclusions based on that are dismissed. the only people looking good in this case are the prosecutor who resigned, and the judge who dismissed the case.
    1
  326. ​ @BenLewisE i am sure someone will make that argument, but the real tradeoff today is between more, faster cache, and more cores. due to the relatively huge die sizes for cisc, they have to optimise for cache, whereas risc designs also get the option of having more cores and less cache. as this option is only available on risc, we need to wait and see which will be better in practice, but risc has a lot of other advantages, so in the long term, risc is going to win, the same way x86-64 beat x86.
    1
  327. No, by definition you are wrong. In tdd the developer writes a failing test, writes just enough code to pass the test, and then uses the combination of the passing test and refactoring to incrementally decrease the amount of technical debt. This is then fed into your continuous integration system, which proves that the code does what the developer expected. What you are talking about are acceptance tests which plug into your continuous delivery system to prove that what your developer expected was what the customer needed, which can either be done by the developer, or by the system designer. Of course one of the advantages of tdd is that it does incremental development of the system giving you something to present to the customer regularly which enables exploratory testing of the developing system to identify such mismatches against working code.
    1
  328. but you did not have to fix 40,000 mostly locked down servers, then spend extra time recovering from the logistics problems of pilots and aircraft not being where they were planned to be.
    1
  329. the problem with deep learning models is garbage in, garbage out. good symbolic ai starts by collecting the cases which caused extra rules to be added, and keeps the trace of how that rule became needed, and what the wrong answer was. this gives it a collection of good data which is tagged, and thus useful as input to supervised learning systems. statistical systems on the other hand, only look at the output, and train until it is plausible. this is what causes the hallucinations, and more importantly, leaves you with a whole set of hard problems due to the black box nature of the system. specifically: is the right answer coming out at all? is the answer right by coincidence? if the system makes a mistake, how can we make sure it does not make the same one again? if the software is vulnerable, how do you patch it to fix the problem? if it tells someone to do something, who is liable when it causes legal problems? how do you stop the arbitrarily bad examples in your training set from giving plausible but bad output? and many more issues.
    1
  330. ​ @ernstoud all the lessons needing to be learned for this to have not happened have been known for many years. if they have not learned it yet when it is common knowledge for junior developers, i do not see them rushing to implement it now.
    1
  331. ​ @CodingAbroad tdd indeed does test first, for the simple reason that if you don't do regression testing that way, you don't know that your test will fail. then when you write your code, you know that the test will pass, so the test has been validated for both cases. you also know that the code you wrote was testable, which is way more important. then when you refactor you test that it is actually a regression rest. if it breaks, you are testing implementation, not the stable public api, so it is not a regression test. as to code coverage, you can get near 100% when testing api's as long as you write testable code. the purpose of the regression tests is so that you spot you broke the api before its users do, which is why it matters.
    1
  332. No, they see unit testing as cumbersome because they don't write the tests first, then write legacy code which is not designed to be tested, and then write implementation dependent tests which are fragile against the newly written legacy code. All testing of legacy code is cumbersome, a total pain, and an exercise in frustration. This is why you write the test first, so you do not write the legacy code in the first place. However this is a skill, and as Dave pointed out, when you first try it you try and write the test for the imaginary legacy code, and find you are not getting the advantages.
    1
  333. that is basically the xz hack, and other steps caught that. however you can mitigate that one by having multiple tools from different providers to do the same job. gcc got hacked? switch to llvm and recompile everything.😊 it is all about auditability, and not having single points of failure.
    1
  334. ​ @manuelgurrola basically your functional tests check that your code does what you expect it to do, and belong in the ci system. thing like memory footprint, speed of response, etc are acceptance tests, and go in the cd system.
    1
  335. no, mccaffee did the same thing while the crowdstrike ceo was working there causing similar problems. all any os needs to do to not have the boot loop which caused this problem to be severe is as each kernel driver is started flag up that it started, and when it returns clear the flag. as long as the flag is stored in a way that survives rebooting, it can just disable the driver next boot, and no boot loop. then it can just update as normal by just turning the machine of and back on. nobody does it though.
    1
  336.  @throwaway6478  it should not matter. boot critical should be aspirational. microsoft should be able to downgrade it if it borks the kernel. once it has been downgraded, it can just not be loaded if it does it again, so the third time the kernel boots without the driver, and their user land software can detect it has been disabled, phone home, and upgrade. no need to have thousands of tech support guys manually visiting machines all day. or at least it could work like that if they had implemented it After mccaffee basically did the same thing when the ceo used to work there.
    1
  337.  @RoelandJansen  you are mistaken. while it is true that sles is not a modern fork of rhel, the fact remains that in the same way clear linux forked to optimise for intel hardware, and oracle linux forked to be better optimised for database workloads, suse originally forked from red hat linux to optimise for german language speakers. while it was a long time ago, and they use a different installer and config system, they still maintain compatability with a lot more of the red hat choices than the debian choices, and that is before you add in the new red hat derivative and any convergence that happens between it and suse linux. this means that it is much easier to support software developed for red hat on suse than it is to do the same on debian.
    1
  338.  @RoelandJansen  you are right about it being slackware derived, but even the wikipedia entry says that it scoops up lots of red hat features, so the point about it being a lot closer to red hat than debian still applies, especially as regards red hat assumptions being baked into various code. the point about potential convergence between sles and their new red hat compatible system is also still valid.
    1
  339. it is not business ethics which require the shift your company policy, but the resiliency lessons learned after 9/11 which dictate it. many businesses with what were thought to be good enough plans had them fail dramatically when faced with the loss of the data centers duplicated between the twin towers, the loss of the main telephone exchange covering a large part of the city, and being locked out of their buildings until the area was safe while their backup diesel generators had their air intake filters clog and thus the generator fail due to the dust. the recovery times for these businesses for those it did not kill were often on the order of weeks to get access to their equipment, and months to get back to the levels they were at previously, directly leading to the rise of chaos engineering to identify and test systems for single points of failure and graceful degradation and recovery, as seen with the simian army of tools at netflix. load balancing against multiple suppliers across multiple areas is just a mitigation strategy against single points of failure, and in this case the bad actors at cloudflare were clearly a single point of failure. with a good domain name registrar, you can not only add new nameservers, which i would have done as part of looking for new providers, but you can shorten the time that other people looking up your domain cache the name server entries to under an hour, which i would have also done as soon as potential new hosting was being explored and trialed. as long as your domain registrar is trustworthy, and you practice resiliency, the mitigation could have been really fast. changing the name server ordering could have been done as soon as they received the 24 hour ransom demand, giving time for the caches to move and making the move invisible for most people. not only did they not do that, or have any obvious resiliency policy, but they also built critical infrastructure around products from external suppliers without any plan for what to do if there was a problem. clearly cloudflare's behaviour was dodgy, but the casino shares some of the blame for being an online business with insufficient plans for how to stay online.
    1
  340. ​ @MrSnivvel yes there will be rework, but you are talking the difference between preventative maintainence and emergency rework. the first is always cheaper a d performed better. its like the arguments about test first development, where you trade regression tests against bug hunting after the fact. same applies in many other fields of endeavor. there are often tradeoffs, which you then need to make a deliberate proactive choice about, rather than waiting until you are about to go over the cliff and only then thinking about what happens next.
    1
  341.  @MrSnivvel  what you are talking about is called resiliency planning, which a lot of people regard as making sure nothing can go wrong. unfortunately for them, it actually means planning for everything that can go wrong and putting preferably automated plans in place for gradual degradation and rapid recovery when it does. the way this is achieved is using something called chaos engineering, the most well known example of which is the simian army of tools at netflix. it has been rendered much more important due to the realisation of just how expensive not having it was in the aftermath of 9/11.
    1
  342.  @MrSnivvel  it did not seem to me like it was taking the import of the issue seriously enough. nothing you said was exactly wrong, but to me it came across more as "yeah its a good idea, but whenever is fine" and to me it is more like making sure that you have enough insurance on you billion dollar factory, or having a will when you have major assets. the but whenever approach is far to prevalent and tends to push my buttons.
    1
  343. Ubi is just social security benefits which are not means tested, and pay universally to anyone who meets the criteria. As such, the UK already implements ubi for children, the elderly, and some of the disabled, and has done for many years. Basic state pension was brought in after world war two, child benefit dates back to at least the seventies, and while the implementation is a mess, the idea of disability benefits because you are restricted in what you can do and therefore need some help has been in place as a benefit dor at least 40 years. Quite a record for something you claim cannot work.
    1
  344. no it would not. it solves a different issue. think of it as creating a bill of materials which contains the semantic version number of every dependency, and then hash it. that hash is unique, and says that this version of the package uses these exact versions of the dependencies. this is how nixos works. as soon as you change from the default upstream configuration, at the very least the patch number changes, and this happens for every package in the system which deviates from upstream. if it is a fairly core package like gcc, the bill of materials for most packages will have changed, meaning they almost all have completely different keys. so your semantically versioned dependency list says that it has these exact versions all the way down the dependency tree, and the reproducible build says that it always generates the same binaries for the given dependency list. different tools to verify different aspects of the job. to go further and audit across distributions, you would need some way to determine every code and configuration patch for every upstream package applied in every distribution, which is even more work.
    1
  345.  @jamesross3939  by its nature, diverse software stacks have some level of source incompatibility. just look at the problems in making the same program work across multiple versions of windows. as regards multiple distributions, we don't live in a world where everyone has identical needs so naturally at some point you start to get divergence. this even applies with windows where you have different releases for servers, desktops, oems, embedded, and others. these divergences naturally make it so that you cannot guarantee that a given program will work the same way, or at all on the different platforms, and the only way to deal with that is lots of testing. true binary compatibility requires a level of control by the vendor which results in large groups of people being ignored (causing divergence through making new systems which address their needs), or severe levels of bloat (to accommodate needs most users do not have). often it does both. in particular, you would need every variant to use exactly the same versions of every library on exactly the same compiler, all the way down. good luck getting blind people to move to wayland which currently has no support for them. the best mitigation we have at the moment is flatpacks, which package non interacting code with their needed library versions to produce cross distribution packages of user space applications. most distributions get created because their users have a need not covered by the mainstream ones, and a lot of them are extremely niche. their use case often will never become part of mainstream distributions, and their effect on the ecosystem as a whole is negligible. for others, the minority use case gradually becomes more important getting mainstream adoption as the work by these niche distributions becomes available in software used outside those distributions, and the niche distribution either becomes irrelevant, or remains as a testbed which feeds back into the wider ecosystem. this is what happened with the real time linux distroibutions, and as more of their work made it upstream, less of their users needed the full real time systems.
    1
  346. ​ @christianamaral-c3l the guy from delta pointed out that they had some of the highest exposure, with 40,000 machines affected. if you ignore traveling time, and assume there are enough techs on site, and a repair time of ten minutes per machine, working 24 hours per day, you are still talking about 277 man days to get them all back up, even before you add in the time to fix machines which were not designed to cope with being crashed. when you add in the restore time for broken machines, travel time, and not being able to get techs in the right place to fix machines, those numbers can go up very fast.
    1
  347. ​ @nosbig98 i actually remember when you got the nightly dev zip file, created your patches, submitted them by email, and reviewed them using either mailing lists or irc. i also remember version control using rcs, before cvs came out. things are much easier now.
    1
  348. the problem with current ai, is that it is statistical ai. this leads to the equivalent of " but my nuclear reactor only melts down one in ten thousand runs", which is fine for a chat bot. for more important applications, you need to be able to fix it when it gets it wrong, and as you have no clue as to the exact problem it has solved, or how it did it, you cannot fix it. for that you need symbolic ai like expert systems, which model the world, and can be taught why they got it wrong.
    1
  349. we already have them, and they are called end to end tests. they are particularly prone to being used by ui developers, but are also generally disliked by all testers, as they often depend on hidden implementation details in code that was never designed with testing in mind, and thus are both hard to do, and prone to breaking. this is why the testing pyramid was developed, regression tests lower down the pyramid depend on fewer hidden implementation details, and thus don't break as often. tdd was then developed on top of regression testing to get people to write testable code.
    1
  350. this time, they crashed debian and rocky linux a few months ago, but they recovered better.
    1
  351. wind farms and solar have lots of advantages. the unit price for both are amongst the cheapest, and getting cheaper. the time between first getting planning permission and starting to generate power is by far the best. for solar it is 6 months, for wind it is 18 months, and for nuclear, it is about 15 years.
    1
  352. ​ @glennbobey6332 not according to the suppliers who do not currently force you to upgrade. having said that, the only meters being made now are gen 2 smart meters, so when your old one fails, you do not get a choice.
    1
  353.  @JeanPierreWhite  as a malware mitigation company, new threat updates are necessary often, so there is implicit consent when you install the software. as to having the software, some commentators have said that this was not optional due to either their insurance companies, or their regulators. their only choice would be to use a different supplier, who you might not be able to determine is any better.
    1
  354. ​ @373323 there are a number of companies who were running n-1 or n-2 versions of the driver, which crowdstrike support, but the issue here is that it was company policy as stated by the ceo to immediately push the signature files out to everyone in one go, without further testing. the information from crowdstrike is that the engineer in question picked up an untested template, modified it for the case in hand, ran a validator program against it which had not been updated to cover that template (and thus should have failed it), and once that passed, picked up the files, and shipped them out to everyone with no further testing, as per company policy. it then took them 90 minutes to spot that there was a problem, and do a 2 minute fix to roll back the update to stop the rollout and fix any machines with the bad update that had not yet rebooted. it took them 6 hours from the rollout to have a solution to the problem of how to fix the rebooted machines, but it only really worked on basic desktops which did not need security. at least one company reported spending 15 hours manually rebooting and fixing 40,000 machines. some were worse.
    1
  355. if microsoft had undertook to make defender use patchguard as well, and to not restrict everyone until service pack 1, they could have implemented it. they chose not to. edr software does way more than just antivirus, so defender 8s irrelevant.
    1
  356. being on linux is no defense. your nvidia driver could do the same thing if buggy and untested.
    1
  357. actually it was getting 2 cores to work right, then getting os support for it which took forever. it only really took off when they started hitting clock speed limits, so going dual core was the only option.
    1
  358. As it should be. Every book I have ever read on optimisations for compilers has made the point that compiler optimisations should change the speed and or memory usage, but not the behaviour of the program. This is explicitly stated when it comes to refactoring, where you optimise for readability and making the code more maintainable, but applies equally to every other form of optimisation as well.
    1
  359. Targeted and well thought out tarrifs can work in the short term to provide breathing room for local industries struggling to adapt quickly enough to changing conditions, which need to be stated from day one to have specific end conditions. These tarrifs have nothing in common with the trump tarrifs except the name, as trumps tarrifs are pure protectionism, which has never worked.
    1
  360. the whole area of a.i. generated content is a minefield for everyone involved, especially with the way the current crop of a.i. tools work. at the moment, the best systems work by using absolutely huge amounts of data with no quality filtering to produce large statistical models with tens to hundreds of thousands of parameters to do what is in effect the same type of predictive word completion as is done when typing a text message on your mobile phone. there are a number of issues with this. first, it has no model of the underlying information that the sentences are based on, so it cannot use this missing model to check that it is not producing statistically plausible garbage, so to make use of the output, you need to fact check it yourself. second, nobody knows how it came up with the answer, not the user, programmer, or even the program, so if you get sued, you cannot use how it works in detail to defend yourself against the claims, because for all you know, the system could be using statistical methods to do exactly what is claimed. third, as you narrow down the context, the information it was trained on becomes less of a creative work, and closer and closer to only having one or only a few examples upon which to train for that specific output, leading to extremely close approximations to the original text as the hallucinated output. the extreme example of this is git copilot, trained on a massive collection of open source projects, which regularly produces code which is of dubious quality, due to being at no more than the average quality of all the code in all the software put into git by every programmer who ever used github to store the code they used to learn to program. even worse, code is so constrained that when you get it to create the code for you it will often come up with the exact text that it was trained upon, which you then add to your code with no idea as to if it had a compatible licence, potentially leaving you liable to infringement claims. even worse, the programmer using it will not have given the blame to the program, leaving him to have to remember years later if a particular modification he added to the code was written by him, or by some tool, and the more productive the programmer, the more modifications he will have made. even worse, both the amount of data you need to feed in, and the length of time you need to train these models scale exponentially, meaning that as currently imagined, these systems are interesting, but a dead end as far as continuing to improve the output is concerned. to make significant progress in improving a.i., you need it to actually model the knowledge, not just the form, and be able to tell you what steps it took in order to give you the information it gave, and what steps it took to avoid generating plausible garbage. the current state of a.i. is such that there are some things it can do better than human experts, but we cannot find out how, or which corner cases were not in its training data, and thus where it will get things wrong. imagine a self driving car that will happily drive you of the end of a dock, into a river, or over a cliff, or even into a crowd of people. who then has the legal and financial liability for the consequences?
    1
  361. it is easy to test, they just did not do it.
    1
  362. ​ @darukutsu  the zfs story is simple. the people writing it for linux are doing a from scratch reimplimentation, so from that point of view the oracle licence only matters if those people have seen the original source code. where the issue comes for the kernel is that oracle has a history of suing people for look and feel and for work a likes, so the kernel people will not include it without a statement from oracle that they won't sue. for reiser fs, yhe issue is that it is version 3 in the kernel, it is barely used, and has some fundamental bugs around the 2038 date problem. as most of the developers moved on to other things, and the remaining ones have moved on to version 4 which has not been upstreamed, and version 5 which is a wor, i progress, the bugs in version 3 wi.l not be fixed, leaving the only choice being to remove it. as for kent, and bcachfs, he does not play well with others, so he needs someone else handling upstreaminb the code.
    1
  363.  @qwesx  sorry, but that is just wrong. the licence gives you the right to modify, distribute, and run the code. what compiling locally does is moves the legal liability from the distribution to individual user, who is usually not worth going after. as regards testing in court, the options are relatively few, and apply the same no matter what the license is. if you claim not to agree to the license, then the code defaults back to proprietary, and you just admitted in court to using proprietary code without a license. if the licences are incompatible, your only choice is to get one side or the other to relicense their code under a compatible license for your usage, which us usually somewhere between unlikely and nearly impossible with most projects, meaning that again you do not have a valid license for the derivative work, and you just admitted to it in court. with zfs, the problem is even worse, as you have oracle who sued google for having a compatible api, which was then resolved to be fair use, but only after costing millions to defend, and taking many years. because of this the linux kernel community will not take code providing any oracle apis without a signed statement from oracle that they will not sue, not because they do not think they will win, but because they cannot afford the problems that will occur if they do sue. individual distributions shipping zfs would face the same potential consequences, which is why most do not ship it. this leaves you back at moving the liability from the kernel, to the distribution, to the end user, where the benefits to suing most of them are just not worth it. as to trying it in court, there are lots of licenses, and lots of people either being too silly to check the licenses properly, or trying clever things to skirt the edges of legality because they think they have found a loophole. there are also lots of places to sue, and as floss is a worldwide effort, you have to consider all of them at once, which is why it is a really bad idea to try and write your own license. in america, people have tried the trick of not accepting the license, and have failed every time. the same is true in germany under a mix of european and german law. this covers the two biggest markets, and can thus be considered settled. what happens in every case, is that the license forms a contract for you to use the otherwise proprietary code under more liberal terms, and when you reject it it reverts back to the proprietary case, where you then have to prove why you are not using the software without a license. trying to be clever has also been tried, and while the law is less settled than for rejecting the license, you need every judge in every venue to agree with your interpretation of the license, which normally does not happen, so you are back at being in breach of the license, and hoping to get a friendly judge who does not look to give punitive damages for trying to be too clever. the insurance risk usually is not worth it. the only other option is to try and comply with the license, but when you have multiple incompatible licenses this is not a valid option.
    1
  364. When they ask questions about local issues, they should get answers. If they don't they should make a stink about it. But if the party are still answering the press as if she was still alive, that is on the campaign manager for the party who should be communicating every day with the candidate.
    1
  365. ​ @lapis.lazuli. from what little info has leaked out, a number of things can be said about what went wrong. first, the file seems to have had a big block replaced with zeros. if it was in the driver, it would be found with testing on the first machine you tried it on, as lots of tests would just fail, which should block the deployment. if it was a config file, or a signature file, lots of very good programmers will write a checker so that a broken file will not even be allowed to be checked in to version control. in either case, basic good practice testing should have caught it, and then stopped it before it even went out of the door. as that did not happen, we can tell that their testing regime was not good. then they were not running this thing in house. if it was, the release would have been blocked almost immediately. then they did not do canary releasing, and specifically the software did not include smoke tests to ensure it even got to the point of allowing the system to boot. if it had, the system would have disabled itself when the machine rebooted the second time and had not set a simple flag to say yes it worked. it could then have also phoned home, flagging up the problem and blocking the deployment. according to some reports, they also made this particular update ignore customer upgrade policies. if so, they deserve everything thrown at them. some reports even go as far as to say that some manager specifically said to ship without bothering to do any tests. in either case, a mandatory automatic update policy for anything, let alone some kernel module is really stupid.
    1
  366. end to end tests are not usually integration tests, but are instead acceptance tests, which serve a different purpose. unit tests and integration tests are used by continuous integration to regression test your public api. they tell you if you built what you intended to build. acceptance tests are done after continuous integration is done, and tell you if what you intended to build is what the customer wanted. as most typical projects have 60% of the requirements being unknowable until you start building it, knowing this difference matters. i tend not to see many tests which have high utility which are end to end or ui tests. they are needed for regression testing, but tend to be both slow and fragile.
    1
  367. no, this dismissal was always on the way to the supreme court, and the number of cases involved in upholding her decision is such that they will have no cho8ce but to take it. if they don't, then every other person who has ever been prosecuted in this way, instead of directly by the doj will immediately use it as grounds to appeal, and as most cases already have jeopardy attached, almost all of them with be granted with prejudice unless she is reversed. i don't think that even this corrupt supreme court will be prepared to take the flack for the number of major criminals being released that any other decision would produce. even if it were, every case would then be appealed to the supreme court, giving them masses of cases, all of which would stick them straight back into the mess they tried to avoid by not reversing in the initial case, and the only way out would be to very publicly admit they were incompetent in not reversing in the first place. i cannot think of a single supreme who is blind enough not to realise this, with a small enough ego to be prepared to accept that outcome.
    1
  368. not really, we all know how hard it is to fix bad attitudes in bosses. in the end it comes down to the question of which sort of bad boss you have. if it is someone who makes bad choices because they don't know any better, train them by ramming home the points they are missing at every oportinity until they start to get it. for example if they want to get a feature out the door quick, point out that by not letting you test, future changes will be slower. if they still don't let you test, point out that now it is done, we need to spend the time to test, and to get it right, or the next change will be slower. if they still did not let you test, when the next change comes along, point out how it will now take longer to do, as you still ha e to do all the work you were not allowed to do before, to get it into a shape where it is easy to add the new stuff. if after doing that for a while, there is still no willingness to let you test, then you have a black boss. with a black boss, their only interest is climbing the company ladder, and they will do anything to make themselves look good in the short term to get the promotion. the way to deal with this is simply to get a paper trail of every time you advise him of why something is a bad idea, and him forcing you to do it anyway. encourage your colleagues to do the same. eventually one of the inevitable failures will get looked into, and his constantly ignoring advice and trying to shift blame to other will come to light. in the worst case, you won't be able to put up with his crap any more, and will look for another job. when you do, make sure that you put all his behaviour in the resignation letter, and make sure copies go directly to hr and the ceo, who then will wonder what is going on and in a good company will look to find out.
    1
  369.  @jimhumelsine9187  because testing is not really taught, and people don't design with testing in mind, having to test the legacy code can be a pain, so some developers don't like it, but it still comes back to management. either the company cares about tests, or it does not, and if you do care, then everyone needs to write and not break tests. testing is like version control, it only works if everyone does it, and you cannot do continuous integration without it.
    1
  370. there are plenty of cases of management by metrics where it only leads to 2 outcomes. 1, managers valuing fast workers who produce buggy features that nobody likes over careful workers who produce quality features a bit slower. 2, clever programmers gaming the system to subvert the metrics. both of these just annoy the good developers, which is why it has never worked in software and other creative industries.
    1
  371. the issue here is that the public domain has a very specific meaning. it says that the author allows you to do literally a anything with it, and renounces their copyright to it. proprietary software like windows has the owner say "it is mine, and i will control how it is used". they then produce a license with those terms. lots of cases especially for open source have tried to claim open code is public domain, and then ignore the license, but every case i know of has ended up saying "you refused the license, and did not get a different agreement, so you cannot use it. pay up". all licensed software falls back to the default of proprietary code if you either don't include a license, or the user does not accept it, legally speaking, and this understanding is embedded in lots of international treaties for intellectual property.
    1
  372.  @h7hj59fh3f  you are just wrong about this, the following link even explains how to do it. https://en.m.wikipedia.org/wiki/Wikipedia:Granting_work_into_the_public_domain
    1
  373.  @h7hj59fh3f  upon doing a little more research, the us and uk maintain your position, but many other countries don't. so putting the grant of public domain statement makes it public domain in all countries which recognise it, and including the cc0 license grants the closest equivalent in those countries which don't. intellectual property rules are country specific, and follow a pattern in how they are introduced. first, they don't exist, as the country has no domestic industries which need them, this allows domestic industries to form, copying the ip from other countries. the most obvious example of this is book publishing, where foreign books are copied on an industrial scale to develop a local consumer base for the ip. second, local ip starts being produced, so rules get introduced to protect the creator and licensee from other local (and later foreign) companies from continuing to do what has been standard practice, as the local market needs enough revenue to help the local creators to be able to continue to create. third, they want to sell and license to foreign companies, so they have to sign up to international treaties providing either mutual recognition of each others rules, or a standard set of working practices. the first is way better for too many reasons to go into right now. fourth, at some point in this ip recognition process, 2 things happen as the country realises that ip protection needs to be time limited. the idea of public domain ip is accepted, with recognition upon what terms cause it to expire, providing massive bonuses to the public from company abuses of old ip content, and they realise that different industries and different forms of ip have different timescales for return on investment for ip, and need different expiry rules, after which it returns to the public domain. this pr9tects the companies from other companies. 5rade dress (does it look like a mcdonalds) needs instant protection, for the duration of existence of the company to prevent anyone else from pretending to be them. drug manufacturing can take 20 years and a lot of money to get to market, with a lot of products failing before it gets here, so it needs relatively long timescales for exclusivity to recoup those expenses. books on the other hand make most of their income in the first few years, and almost never get a second round of popularity after their initial release, so much smaller timescales should be involved.. and of course, sometimes creators create something for the public good, and want to put it straight into the public domain. due to the american political system being particularly vulnerable to lobbying, they are still not very far along with the public protection side of this, while being very aggressive with the company protecti9n side. however these two sides need to balance for the good of everyone. some other countries are further along or better balanced than others, due to local circumstances. this difference in speed of evolution of the rules is just the most obvious reason why mutual recognition is better than forcing standard rules, but there are many others.
    1
  374. at the very least, there should have been some sort of smoke test to see if it even got as far as completing booting, and disabled itself if that failed.
    1
  375. If the change had occurred between major versions of the compiler, I would have agreed with you, but the user basically did the nightly update from the package repository to do bugfixes, and suddenly working programs broke. That is a bug. When a major version change occurs, you expect things like -Wall to throw lots more warnings, which is why people make a deliberate choice as to when in their workflow to make that move. If you are for example 3 days before the release of a 1 million lines of code piece of software you do not expect some clever programmer to do something dumb and break it silently when you are getting ready for release, potentially causing weeks worth of extra work. This is what the user was unclearly complaining about, and the compiler writer was ignoring the point that changes which break running code should not become the default as a surprise.
    1
  376. we now know what should have happened, and what actually happened, and they acted like amateurs. first, they generated the file, which went wrong. then they did the right thing, and ran a home built validator against it, but not as part of ci. then after passing the validation test they built the deliverable. then they shipped it out to 8.5 million mission critical systems with no further testing whatsoever which is a level of stupid which has to be seen to be believed. this then triggered some really poor code in the driver, crashing windows, and their setting it into boot critical mode caused the whole thing to go into the boot loop. this all could have been stopped before it even left the building. after validating the file, you should then continue on with the other testing just like if you had changed the file. this would have caught it. having done some tests, and created the deployment script, you could have installed it on test machines. this also would have caught it. finally, you start a canary release process, starting with putting it on the machines in your own company. this also would have caught it. if any of these steps had been done it would never have got out the door, and they would have learned a few things. 1, their driver was rubbish and boot looped if certain things went wrong. this could then have been fixed so it will never boot loop again. 2, their validator was broken. this could then have been fixed. 3, whatever created the file was broken. this could also have been fixed. instead they learned different lessons. 1, they are a bunch of unprofessional amateurs. 2, their release methodology stinks. 3, shipping without testing is really bad, and causes huge reputational damage. 4, that damage makes the share price drop of a cliff. 5, it harms a lot of your customers, some with very big legal departments and a will to sue. some lawsuits are already announced as pending. 6, lawsuits hurt profits. we just don't know how bad yet. 7, hurting profits makes the share price drop even further. not a good day to be cloudstrike. some of those lawsuits could also target microsoft for letting the boot loop disaster happen, as this has happened before, and they still have not fixed it.
    1
  377. small point you seem to have missed is that a lot of the affected machines were locked down machines which might not even have a keyboard. this means the technique of just go into safe mode and fix it yourself does not work. your comment reminds me of the old pcs who by default ship with the bios setting which resulted in the error "keyboard not found, press f12 to continue booting".
    1
  378.  @bzuidgeest  some systems with this system installed fit those requirements, but commentators who were on the front lines handling this have said that in practice these are locked down systems with a lot of security, and to implement the trivial fix they actually had to turn up, plug in a keyboard, use secret keys to downgrade security, go into safe mode, do the trivial fix, and do the same thing in reverse to make it secure and locked down again. there are major security issues with the idea of handing those security keys to the very people it was implemented to keep out.
    1
  379. rubbish. this is kernel level code, and the wrong type of bug will crash the kernel on any operating system. the problem is it should never have been deployed, should have immediately stopped deployment when the machines started crashing, and windows needed a better response to a broken driver than just put your locked down machine into safe mode and fix it yourself.
    1
  380. microsoft allowing a bad driver update to stop you from doing a full reboot, no, nothing to do with microsoft.
    1
  381.  @marcogenovesi8570  if you mean the rust developers expecting the maintainers to go and hunt up a lot of extra semantic information not neded in c just to comply with rusts expensive typing system, and calling it documentation, that is one aspect of it. when you choose to work in a different language, which has tighter requirements, you make building the language api bindings harder. that is fine, but then you have to be prepared to do the work to find that estraminformation, and only after you think you have got it right do you get to call requesting confirmation documentation. this happened with the ssl project in debian, where the person who initially wrote the code was not the person who provided the clarification, resulting in a major security hole, but the patch developers did the work and asked is it case a or case b, and got the wrong answer back because the answer is not always obvious. this is why the c maintainers push back at the claims that it is just documenting the api, and it is cheap, when it is neither. like with kent, and some of the systemd developers, the issue is not the language the code is being developed in, but the semantic mismatch between the information needed by the existing work, and potential ambiguities relating to how people want to use the existing apis in a different way to how they are currently being used, which might require disambiguation, which might require digging around in the code base and mailing lists to see if a close enough use case came up in potentially thousands of posts in the discussion to clarify the new semantics for the previously unconsidered use case. the time for them to do this is at merge time if there is an issue, not all upfront because it is just documentatiron. the general principal in most code bases is that if you want to create new code, go for it, but when you want to merge it with the existing mainline code base, do it in small separate chunks and be prepared to do the extra work to not just get it working, but to move it to a shape that is compatible with the main code base, and if it is more than a drive by bug fix, expect to stick around and be prepared to do a lot of the maintainance yourself. this goes double if you are working in a different language than the maintainers. otherwise, it eventually gets treated as unmaintained code, and deprecated prior to removal. again, it comes down to respecting the existing development process, being willing to work within it, and if you need minor changes to that process to make the work easier for both sides, working within the existing change process to gradually move the standard way of doing things in the desired direction, while bearing in mind that in the kernel there are 15000 other people whose direction does not necessarily match yours. kent does not get this, so i see his code getting booted unless someone who does steps up to maintain it. the systemd guys did not get it either, which is why kdbus went nowhere, after getting a lot of push back from lots of kernel maintainers. a significant subset of the rust in the kernel developers don't seem to get it either, harming their case and making things harder for their codevelopers. this problem is not confined to the kernel. middleware developers like systemd, gtk, wayland, and others seem to forget that it is not just their pet project, and that in the case of middleware they not only have the same problems as the kernel, with new developers having to play nice with their rules, but as someone with other communities involved, they also need to play nice with those below them, and not cause too many problems for those above them in the stack.
    1
  382.  @alexisdumas84  i am not suggesting that every rust dev wants the maintainers to do everything, only that those who don't are being conspicuous in their absense with dissenting opinions or are failing to see how their additional semantic requirements to get the type system to work cause a semantic mismatch between what information is needed to do the work, and when. for c, it comes when the patch is finished and you try and upstream it, at which time any such problems result in considerable rework to get from working code to compatible code. this is why the real time patch set took nearly 20 years to get fully integrated into the mainline. for rust, all this work seems to need to be done upfront to get the type system to work in the first place. this is a major mismatch, and the language is too new and unstable for the true costs of this to be well known and understood. rust might indeed be as great as the early adopters think, with minimal costs for doing everything through the type system as some suggest, but there is an element of jumping the gun in the claims due to how new the language is. python 3 did not become good enough for a lot of people until the .4 release, and for others until the .6 release. as you maintain your out of tree rust kernel, with any c patches needed to make it work, have fun, just make sure that when it comes time to upstream the maintainers need to be able to turn on a fresh install of whatever distro they use, do the equivalent of apt get install kernel tools, and then just build the kernel with your patches applied. it is not there yet, and thus some code will stay in your out of tree branch until it is.
    1
  383.  @marcogenovesi8570  they do document them to the extent needed to do development work in c (in most cases), but the rust developers need even more information which the c developers don't need until it is time to upstream a patch, and an actual problem occurs, not just the potential problems the rust compiler finds. its like having ai find bugs. yes it can do it, but it cannot work out if it is a bug, a threat, or an exploit.
    1
  384. ​ @Storytelless so you write a test tool to run all of your cross platform stuff against which reports when some piece of code will cause a problem in a particular supported browser. This linter will initially just parse the code, but as you find nasty browser specific corner cases, you flag them up, and run this linter over your code before checking in the change. I've done this with html since windows 95, reporting browser specific problems, so the code just does not get checked in in the first place.
    1
  385.  @LTPottenger  good, the last thing we need is the return of the unix incompatability wars from commercial vendors. however library providers could do a much better job than they do now.
    1
  386.  @robertasm20  the unix wars were not about minor incompatibilities between vendors, but were about lots of mutually incompatible extentions to "differentiate" the products to the extent that it made it impossible to write programs on one system which would even compile properly on other vendors products. on linux the situation is completely different. most programs you can download and compile on any distribution, and be confident you will get working software. while we do have some issues with different basic tooling around packaging and the extent to which not every distribution is in thrall to systemd, most of that can be engineered around with the use of tools like ansible. this is because most of the tools in question were trying to solve near identical problems, and thus came up with very similar solutions, but with different tool names and flag names. this makes translation between them fairly easy. most of the desktop level issues are resolvable using flatpack packages. most of the remaining issues are due to library providers not doing versioning properly, and to things like the timings and support for switching over from one major subsystem to its replacement, where some distributions ship it before it is ready, and others are forced to wait too long, as the maintainers of the new subsystem cannot seem to understand that while it is done for them, it is somewhere between unusable and dev complete for whole other categories of users. i don't really have a good solution to either problem, but that does not make the issue go away.
    1
  387.  @robertasm20  The only system where the measure of compatability is binary compatability is windows, as that was often the only choice. even there, you have the issue that backward compatability is often only supported for a few years, requiring the programmer to do a significant rewrite to get a new version working on the next version of windows, which because it needs to use the new framework, often won't work on the previous version of the os. pretty much every other operating system in modern times has been based upon source code compatability, often requiring just copying it across and recompiling. on these systems, binary fiĺes and packages are usually either about efficiency, or caching. in any event, this is usually done by your distribution maintainers, and is thus not an issue unless you want something unusual, in which case you probably have to compile it yourself anyway. as to the size of flatpacks, the issue there is that not every program is packaged by either the developer or the distributor for every specific distribution. flatpacks, snaps, and appimages were designed to overcome this problem until the distributions could get their act together and make things mostly work for most packages. The usual approach for all of these systems is to bundle the specific library versions needed in with the applications. for most people, neither the bandwidth nor the disk space are in short enough supply to force the distribution maintainers to fix the library versioning problem, so you just have to put up with it. this has been the standard for apple binaries for decades, storing every library in the same directory as the application. windows ships the same way, but ends up dumping the libraries in a common windows library directory, with mandatory library versioning, so that you can have version 1 for the programs that need it, and later add version 2 for programs that need that without breaking all the programs which need version 1. unfortunately, most library programmers on linux have not got that message, so lots of programs break when you break semantic versioning, with major versions keeping the same name, so you have to choose which programs to dump. until you fix that, the windows solution is not an option, so you have to fall back to the apple solution.
    1
  388. you are wrong. a lot of companies were required to install this type of software by their insurance companies, and are required by law to have insurance.
    1
  389. If the code you have been inflicted with has no tests, read "working effectively with legacy code by Michael feathers", as it is the definitive work on how to deal with the problem.
    1
  390. ​ @notsojharedtroll23 arpa proposed the arpa net for two reasons. 1, incompatible machine conventions meant that having to pass data between incompatible systems was a real pain. 2, literally everything else on the books was taken away from them and shoved into nasa, leaving them scrambling around trying to prevent congress from declaring them irrelevant and killing their funding. with this, and a few other similarly big projects, they managed to stay afloat long enough to get back on track.
    1
  391.  @ChrisWijtmans  i think it should not be legal, but know of multiple cases where having become your authorised agent they charge very large fees to hand control back to you. with limited company formations, it is by delaying your ability to file your tax returns and company accounts, with domain management it is done by blocking you from updating the dns info. in both cases it is trying to use the nuisance value to extract wildly overinflated fees. most people either pay, or aband9n it and get a new one from a reputable company.
    1
  392. yes it would. if it compiles to kernel mode, and it can have a bug, it can trigger this problem. whatever the os and language you use.
    1
  393. no they were not. the information was clear. the initial proposal was to make every other vendor of antivirus except microsoft have to use a different procedure, giving microsoft an unfair advantage in that market. the eu said no, then microsoft chose to remove the method instead of using it themselves. it was entirely up to microsoft how they resolved the issue.
    1
  394.  @TreeLuvBurdpu  windows defender is not an alternative to crowdstrike, it does a lot less. it is more of an alternative to norton or mcafee. as to the eu, they said you cannot have one set of rules for everyone else, and a better set for you, especially when we are already having issues with your monopoly abuse. microsoft could have made windows defender use the same apis as everyone else, but instead chose to rip out the entire subsystem and keep everyone in kernel space. that was Microsofts choice, not the eus.
    1
  395.  @TreeLuvBurdpu  sorry, but apple did not try and implement a 2 tier system to get an unfair advantage over their partners, so were not blocked. the regulations in this case exist to protect against the abuse of unfair power structures being abused, which is why apple is being investigated for taking a 30% cut of the sales price from all partners in the app store while also blocking the use of side loading and alternative payment methods. note: i am not saying that the regulations are good, only that they said you can't do that, and microsoft made a free choice of what to do instead. they could even have said that they were making their proposed api available at launch, but not mandatory until service pack 1, at which time defender would also use it, but they chose not to.
    1
  396. we have known not to put backups too close since the backups for the data centres in building 1 of the twin towers were in building 2, and both got taken out on 9-11.
    1
  397. microsoft made a proposal which gave them an illegal and unfair advantage over their competitors in the security space. the eu said no, do it in a fair way. microsoft then chose to do nothing for a couple of decades, and also chose to not fix the boot loop problem for a decade as well. they do not come out of this with clean hands.
    1
  398. ​ @erosgritti5171 the us and UK have a first past the post system which has a number of vulnerabilities. Other countries have some form of proportional representation and coalition government, which has different vulnerabilities. Others have dictatorships which have their own issues. None of them are fundamentally better in principle, but in practice, dictatorships tend to not work very well. As to the other two, the jury is still out as to if one is fundamentally better than the other in practice, but we are getting better data as to where these systems get it wrong so that the question can be looked at properly.
    1
  399.  @vallejomach6721  yes they have multi party systems, and with it they have weak coalition government which is apt to fall apart at any time is someone raises the wrong issue. The UK has a 2 party first past the post system, which is vulnerable to weak oppositions, and really sidelines the votes of any group trying to become the third party, and if it successfully transitions to a three party system, it would change to have the above mentioned problems of coalition government's. Benign dictatorships tend to be the most stable, with strong government, right up until they are not, and all dictatorships tend to get really unstable at transition time, due to the lack of a good system for choosing the next dictator. This applies to pure monarchies as well. Constitutional monarchies tend to have evolved from pure monarchies, with a gradual devolution of power, but have the advantage when done well of preventing the slide into becoming a banana Republic. As I say, each system has it's flaws, and it's strengths, but currently we don't have the evidence to determine which is best, only some evidence from history which clearly states that some systems especially dictatorships are much worse than others. Yes America currently has a part of it's population trying to subvert the system, but all systems are subject to this in one form or another, and it will either get a lot better or a lot worse in the next decade or so, but it is too early to tell which way it will go. What we do know is that the actions of trump and maga have made it a lot weaker than it used to be. I am not particularly promoting or defending any particular system, and am mainly only criticising dictatorships for their catastrophic failure modes. This alone I think makes them one of the weakest and least suitable systems out there, but for the rest it is swings and roundabouts.
    1
  400. I think that what we need here is a test like jez humble's continuous integration test, but for tdd. Most of the criticisms I see can be sumerised as "I write legacy code and don't get the testing pyramid, unit testing or regression tests, so why would test first regression testing make sense". As they don't get regression testing, they also fundamentally don't get refactoring, continuous integration or technical debt. Time for them to learn some of the basics of the industry wouldn't you say?
    1
  401. ​ @mikechappell4156 because it was obvious from the announcement of python 3 that 2 was on life support as far as the developers were concerned.
    1
  402.  @mikechappell4156  totally agree, but once it was clear that the developers were going to treat it the way x11 is now being treated, it should immediately stop people from starting new big projects in it, and should have them start getting proactive about splitting the big code up so it can become less of a roadblock later when you cannot replace any code without replacing all of the code.
    1
  403. ​ @SteveBurnap have fun with flags. set a flag when you download the update. if the flag is not update or booted, leave the driver and have it disable itself if it is updated change the flag to say it started if it has started do the minimum work to show it boots, then change the flag to say it booted at this point, either it worked, or it got out of the way next reboot. suddenly the problem did not occur in production, and everything else is solved by testing and canary releasing.
    1
  404. Yet another video rehashing someone elses misunderstanding of what universal basic income is, but with a nice section dealing with the problems of advanced automation. Every video and speech dealing with ubi covers the silly idea of replacing all social security benefits with one single payment made to every adult at a large value, then fails to deal with how you would pay for it. Unfortunately while this simplistic model makes it easy to talk about, it does so at the price of ignoring what ubi actually is, and just discredits the whole idea due to not thinking about how to fund it. What ubi actually is, is an alternative to means tested benefits in the social security system. Means tested benefits can be complicated to work out, difficult to comply with the qualification criteria, and subject to lots of variability in personal circumstances resulting in an expensive to run system with significant levels of over and under payments, vilification of the poor who make innocent mistakes, and heavy handed efforts to claw back any overpayment. In contrast, a basic state pension is easy to work out. Have you reached retirement age, and are you still alive? If yes, then pay the money. It doesn't need rechecking every few weeks like means tested benefits do, only when the circumstances change, ie you reach retirement age or you die, so cheap to administer. If you don't like paying it to the rich, use the money you save from administration costs to do a one time evaluation of how much you would have to move the starting points for the tax brackets to make it revenue neutral and make it taxable. If you then decide to pay another ubi, like child benefit, it also has simple qualifying criteria. Are you between the ages of zero and when you decide to cease entitlement, alive and resident in the country? If yes then pay the custodial parent. Also make it taxable and raise the tax levels by the amount needed to make it revenue neutral like we already do in the uk. However nothing says you have to pay the child the same figure as the pensioner. If you then decide that you want to pay everyone a fixed amount on top of other benefits, you can make it payable either to every resident, or every citizen, and bring it in like we brought in minimum wage in the uk, start it at pathetically low amounts, and then give above inflation increments until it reaches the level you can afford. Again make it taxable and revenue neutral and set it to be at an increasing percentage of the total tax take as and when you can afford it. So you could take the usa population of 200 million, and give them all a social security number from birth. Then each individual gets a government bank account where the benefit is paid into, and you pay them 1 dollar per year at a cost of 200 million taxable dollars per year. Every other benefit either ubi or means tested can then be paid into the account keyed to the social security number, saving administration costs for other benefits. If the individual is vulnerable, then their registered primary carer can draw on it for that person. Now you have your model implemented, for what is basically a rounding error on your multi trillion dollar usa budget. Going back to child benefit, you can reduce it by the general ubi amount, and once it reaches zero, just delete it. Same with basic state pension, or unemployment benefit, or disability benefits. You get an even bigger benefit with means tested benefits, as every time you increase the general ubi amount, you move more people out of needing them, but more importantly it makes it easier to find a generic qualifying criteria for those who are left to move to another cheaper ubi, saving another fortune in admin costs.
    1
  405. ​​ @FutureAzA I just rewatched the video, and your funding proposal is basically to either live in a country with a massive resource dividend, which is not most countries, or use some combination of cost reduction through automation combined with some form of robot tax. Even worse, you expect a government which is by your own statements so dysfunctional that it took ages to decide to implement something as easy as a do not call list to suddenly get their act together to organise a pump priming robot innovation scheme and corresponding bot tax system. You asked in the video what did you get wrong, and please tell you in the comments, so that is what I did. First, like everyone else doing videos about ubi, you had a fundamental misunderstanding as to what ubi actually is, and confused that with the proposals for a generalised ubi. I therefore clarified what it is, and why the general understanding of ubi used in videos is not the right way to talk about ubi. You then proposed a funding model for this misunderstood version of ubi which was not politically practical, so I proposed an alternative way of doing it which is viable, and how to implement it. You also overestimated both the competence and speed of roll out of artificial intelligence which is at the heart of your "let bots do it" model. The speed of innovation needed for your model just is not there. We have been working on A.I. since the 50s, and while the progress is finally getting worth talking about, it is nowhere near the level needed to implement your bots plan, and that is just on the technical level. Using copilot as an example, technically it is little more than a slightly more advanced version of autocorrect as seen on mobile phones. Even worse, the model was made with a data set which did not include any tagging as to how good or bad the code was, it just slurped up the entirety of all open source software, ignoring that a lot of the stuff is written by people learning the languages and the tools, so the quality of what is produced is generally pretty dreadful. Finally, you have its biggest problem, it did not take into account the fact that all of that code used to train it belongs to other people, so what it outputs is usually in breach of both the software license, and the copyright of the originating author, so anyone using it and writing it is just asking to get sued back to the stone age. That is just the problems with creative A.I., if you then move on to safety critical A.I. you then get the additional problem of when it gets it wrong and someone gets injured or dies, who is liable for paying compensation? using your self driving car example, if it kills a kid, is it the driver for not overriding the software, the car maker for including the software, the software company for it not avoiding the kid, or someone else? All of those legal questions matter, and it will take decades of law suits to get to a position where the answers are matters of settled law, and it will be settled on expensive law suit at a time, because as you pointed out the politicians have neither the competence to figure it out, nor the will to even look at it. So yes, the previous post was long, because your approach provided a simplistic and impractical solution to a complex problem, and was riddled with bad assumptions, and that always requires complex answers. But in my defense, you did ask us to tell you if you got anything wrong, so I did. I also targeted you as the original author of the video as the intended audience, while trying to keep the explanations simple enough that other interested individuals can still understand it. As to do I expect people to read a long post, it is social media, which means that because the audience of all social media is below average, you cannot expect people to read anything more complex than click bait on simple subjects, and have to have even lower expectations as to their levels of understanding of complex problems. Having said that the only solution to that problem is to try and provide them with the tools and information so that they can get better with time, and who knows, the person reading it might actually be able to understand it and get some value from it. As to the specific post, I only expect 1 person to read it, the person who asked to be educated as to any mistakes he made. I also expect that as someone deciding to provide an opinion on the subject you will have done enough background research to at least be able to comprehend the feedback at a level that is slightly higher than your average netizen, due to having already got that background information. However I do not expect you to accept that I am any more right in my views than you are, only that you consider the possibility that some of what I said might be useful when you decide to do your next video on the subject, and then only because you ask for corrections for any mistakes. If anyone else finds it useful and informative and possibly thought provoking, that is just a bonus.
    1
  406. While it might make sense to test the internals of functions in systems programming languages, it still makes more sense to write functional tests of the function API until you absolutely need to test the internals, and then only test those bits you absolutely must test.
    1
  407. as these were locked down enterprise machines, the solution should have been a simple power cycling of the machine, but due to the nature of the crowdstrike bug, and the microsoft kernel bug, it required you to have a trusted tech guy turn up, unlock the systems, go into safe mode, and then lock the machine down again. think of it like the counter staff at your bank not being able to install random code on the cash machine.
    1
  408. That is just wrong. C was created for writing low level of code in a higher level language. It just happened to be used for teaching because of how well written the k&r c language book was compared to other languages of the time, and the prevalence of Unix and thus c in universities. It was also designed to be easy to write a compiler for. Pascal was the language written for teaching, and the difficulty of writing good compilers for it is a direct result of this being the only design consideration. The problem with Trying to write good c++ compilers is a different one, due to the huge size of the language definition.
    1
  409. ​ @kriz5652 they mean microsoft is responsible for not having fixed the boot loop problem after any if the previous occasions when it happened. any kernel of any os is vulnerable to broken driver updates. the question is how hard is it to recover afterwards. this should have been a case if wait the 90 minutes until the fix was available, then switch it off and back on again. microsoft dropped the ball on that one.
    1
  410. the use of the term curated data refers to the fact that if the data is not tagged, lots of learning algorithms won't work at all. this is what is meant by supervised learning. the problem with getting a black box statistical ai to generate those tags is that the basics of the tech is about stacking plausible guesses on plausible guesses, eliminating almost all of the feedback loops needed to generate correct answers. this is the compounded with the overfiting problem. every statistical ai works by getting more and more data, shovelling it into a system that tries to best fit a statistical model with every higher numbers of free parameters, which takes ever longer to train. this is where the model generally fails. there is a limit to how many times you can double the size of the dataset used to train the model. there is a limit to how many extra free variables you can add to the model. there are limits to how fast the model stabilises as the number of variables goes up. this results in the compute requirements to do the training having an exponential growth term in the costs, to produce answers that are only a little better and only produce likely answers, not correct ones. then there is the general problem with all intelligence, that you can only solve new problems you can almost solve already.
    1
  411. ​​ @sylviam6535 as they get closer to the core, not only will the existing costs increase, due to the larger interface between the two languages, but more and more code can only be extended in the second language, so as it moves closer to the core the risk of having to duplicate the code in the original language so the rest of the kernel can use it goes up a lot, making the benefits of those patches more doubtful, and increasing the push back against the encroachment into core kernel space.
    1
  412. their own report says that they only ran the validator, and one it passed, immediately pushed to everyone. this bypassed all the other testing they do when they update the driver.
    1
  413. just curious, but are constitutional ammendments forever and unchangeable, and if not how hard is it to change or remove them?
    1
  414. ​ @sdrc92126 if we were still doing what we used to, the improvements in cpu and numa memory would indeed offset the lag introduced by having a microkernel, but modern systems do a lot more than they used to. this increase in requirements is increasing faster than the improvements in hardware, making microkernels relatively more expensive than it used to be. the critical difference is how much context switching a task has to do. ftp, email, and web clients and servers all do relatively little kernel calling, so they tend to exist in user mode with all the advantages. 4k video on the other hand is passing lots of data across the boundary all the time, so relatively big video card drivers tend to live in kernel mode. the other stuff in kernel mode is the stuff that can't do its job if it was in user space like security modules.
    1
  415. the main problem here is that prime and his followers are responding to the wrong video. this video is aimed at people who already understand 10+ textbooks worth of stuff with lots of agreed upon terminology, and is aimed at explaining to them why the tdd haters don't get it, most of which comes down to the fact that the multiple fields involved build on top of each other, and the haters don't actually share the same definitions for many of the terms, or of the processes involved. in fact in a lot of cases, especially within this thread, the definitions the commentators use directly contradict the standard usage within the field. in the field of testing, testing is split into lots of different types, including unit testing, integration testing, acceptance testing, regression testing, exploratory testing, and lots of others, if you read any textbook on testing, a unit test is very small, blindingly fast, does not usually include io in any form, and does not usually include state across calls or long involved setup and teardown stages. typically a unit test will only address one line of code, and will be a single assert that when given a particular input, it will respond with the same output every time. everything else is usually an integration test. you will then have a set of unit tests that provide complete coverage for a function. this set of unit tests is then used as regression tests to determine if the latest change to the codebase has broken the function by virtue of asserting as a group that the change to the codebase has not changed the behaviour of the function. pretty much all of the available research says that the only way to scale this is to automate it. tdd uses this understanding by asserting that the regression test for the next line of code should be written before you write that line of code, and because the tests are very simple and very fast, you can run them against the file at every change and still work fast. because you keep them around, and they are fast, you can quickly determine if a change in behaviour in one place broke behaviour somewhere else, as soon as you make the change. this makes debugging trivial, as you know exactly what you just changed, and because you gave your tests meaningful names, you know exactly what that broke. continuous integration reruns the tests on every change, and runs both unit tests and integration tests to show that the code continues to do what it did before, nothing more. this is designed to run fast, and fail faster. when all the tests pass, the build is described as being green. when you add the new test, but not the code, you now have a failing test, and the entire build fails, showing that the system as a whole is not ready to release, nothing more. the build is then described as being red. this is where the red-green terminology comes from, and it is used to show that the green build is ready to check in to version control, which is an integral part of continuous integration. this combination of unit and integration tests is used to show that the system does what the programmer believes the code should do. if this is all you do, you still accumulate technical debt, so tdd adds the refactoring step to manage and reduce technical debt. refactoring is defined as changing the code in such a way that the functional requirements do not change, and this is tested by rerunning the regression tests to demonstrate that indeed the changes to the code have improved the structure without changing the functional behaviour of the code. this can be deleting dead code, merging duplicate code so you only need to maintain it in one place, or one of hundreds of different behaviour preserving changes in the code which improves it. during the refactoring step, no functional changes to the code are allowed. adding a test for a bug, or to make the code do something more happens at the stsrt of the next cycle. continuous delivery then builds on top of this by adding acceptance tests which confirm that the code does what the customer thinks it should be doing. continuous deployment builds on top of continuous delivery to make it so that the whole system can be deployed with a single push of a button, and this is what is used by netflix for software, hp for printer development, tesla and spacex for their assembly lines, and lots of other companies for lots of things. the people in this thread have conflated unit tests, integration tests and acceptance tests all under the heading of unit tests, which is not how the wider testing community uses the term. they have also advocated for the deletion of all regression tests based on unit tests. a lot of the talk about needing to know about the requirements in advance is based upon this idea that a unit test is a massive, slow, complex thing with large setup and teardown, but it is not how it is used in tdd. there you are only required to understand how to write the next line of code well enough that you can write a unit test for that line what will act as a regression test. this appears to be where a lot of the confusion seems to be coming from. in short, in tdd you have three steps: 1, understand the needs of the next line of code well enough that you can write a regression test for it, write the test, and confirm that it fails. 2, write enough of that line that it makes the test pass. 3, use functionally preserving refactorings to improve the organisation of the codebase. then go around the loop again. if during stages 2 and 3 you think of any other changes to make to the code, add them to a todo list, and then you can pick one to do on the next cycle. this expanding todo list is what causes the tests to drive the design. you do something extra for flakey tests, but that is ouside the scope off tdd, and is part of continuous integration. it should be pointed out that both android and chromeos both use the ideas of continuous integration with extremely high levels of unit testing. tdd fits naturally in this process, which is why so many companies using ci also use tdd, and why so many users of tdd do not want to go back to the old methods.
    1
  416. ​ @JeanPierreWhite the issue is not that they had no recovery mechanism in place, it is that go into safe mode and fix it yourself does not work with locked down machines.
    1
  417. Tdd came about as a consequence of doing deliberate test first automated regression testing, and adding refactoring to the cycle. Comprehensive automated regression testing then forms part of the foundations of continuous integration. It works very well for exploratory design when you understand what you need the API to do, but are less sure about how the internals need to work, but does encourage early stabilisation of the public API of the code. If it is not public, it will either be exercised by your public API tests, or will be dead code to be deleted. In either case the implementation is not constrained by the API. Of course you are still free to break your public API right up to the point when you publish it for other code to use, at which point you are explicitly saying that the API documented in your header files won't break, supported by tests to make sure. If you break your API after this point, your users will rightly shout at you for it. Note: you do not have to add all of your functions and variables to your header files, making them public.
    1
  418. As to the EU not buying American products, there are valid reasons. The EU and others don't want gm food grown there because as of yet there is not enough data to show that it is safe, and they know that once it is released, you cannot put it back in the bottle. They don't buy us cars because unlike every other manufacturer in the world the us car industry only designs cars for the local market rather than for the world market. If you had European conditions, you would not want to pay a lot more (due to the level of changes needed to meet EU standards) for something that you cannot park, and which is too big to go through a lot of European streets. This is before you consider that us engines have not improved fuel consumption since just after ww2, while everyone else has basically halved it. Also us engines are inherently bigger capacities, and thus would use more fuel in any case. All this before you even get to the point that unlike in the us, the cost of fuel is not kept artificially low in the rest of the world. There are other us products which don't sell well in the EU, either due to not reaching EU quality standards, or because they want to shove American products onto other markets without considering if those other markets have the same values. If you do not make what your potential customers want, of course they are not going to buy it, and thus you will have a trade deficit.
    1
  419. but as the systems could be rebooted, all you need is for the os vender to block drivers which were updated prior to the reboot, and the os boots and can start recovery procedures.
    1
  420. It is alright saying get rid of capitalism, but every other system that has been tried has problems at least as big. Centralized planning systems tend to remove incentives from people to do extra stuff, and to make people devalue state provided facilities like parks. Systems based on slavery or serfdom disconnect the person with the need from the person who can provide it, discouraging innovation and promoting stagnation This is why most counties use some form of capitalism, it encourages people to put in extra effort, generate new solutions to problems, and let's them keep most of the profit made from doing so. It is not perfect, and is prone to try and push wages as low as possible, so we added laws to constrain how far that could go. It is also prone to producing monopolies and cartels, which is why we have laws that try and minimize the abuses they can cause. As Churchill said about democracy, it is the worst system out there, except for everything else.
    1
  421. no, capitalism has one effect, to reward and incentivise people to take existing ideas, combine them with new ideas to add value and solve problems, and get some benefit from the added value. getting rich is only one consequence of adding the value. free software also exists in within the framework of capitalism, but in that case benefit is not profit and getting rich, but better software and reduced costs for those who cannot afford the commercial alternatives. it is so successful that nearly 90 percent of all software systems out there use free software in their systems to an ever increasing extent, thereby increasing the capabilities and reducing the cost of entry into new markets and products. in fact there is a little publicised idea in economics called the value line, where anything below that line is required, but does not provide added value to the product, like spellchecking in a word processor, you cannot charge extra to include it, and would not have users if you did not. a lot of free software is part of commercial systems for exactly that reason. in fact the basic idea of crowdsourcing and the commons is an integral part of most implementations of capitalist systems.
    1
  422. learn the way us older guys did, but easier. find open source project in the area you are interested in and learn how the code evolved using the gui to the version control system. especially concentrate on any commits that include bug fix in the comment, as the diff will show you what was wrong in the first version and how it was fixed in the second, then try and figure out why the first version was wrong and why the second version was better.
    1
  423. no, if you are corporate scale, you have on call tech support whenever your business is open.
    1
  424. there is potential to get training data, feed it into statistical ai, and then such the answers out of the statistical ai to generate some rules, but you need to heavily constrain the size of the problem space that type of ai operates on, and it is very vulnerable to bad training data. cyc has been proving that you can do the same thing explicitly just as well, but with lots more benefits. the problem is that to get good data out of the statistical ai, you need to be able to map the inputs to the correct answer, and once you have done that you don't need the statistical ai any more.
    1
  425. the point is that in an enterprise setting, just moving away is not a question of just reinstalling one machine, it can be a multi year job covering thousands of machines. this is why rocky came into existence, to support centos 8 customers screwed over by red hat deciding to cut short the support period. be assured that a lot of rhel customers are saying internally that given the failures of trustworthiness and predictability, can we afford to use red hat for our next project rollout.
    1
  426. ​ @Mooooov0815 the sort of people this is targeted at will definitely be doing incremental development with continuous integration, where unit tests are not just good, but are essential.
    1
  427. No cognitive load, except for the fact that it stripes all the information contained in the semantic versioning.
    1
  428. ​ @pauldunecat if it is 19 years old, why does it need the nightly buildm9f the compiler to work with the rust in linux code?
    1
  429. ​@NoNonsense316 not quite. with the move to agile, the development of ci and cd pipelines made the friday problem a non event. but they obviously did not do that, or it would not have made it out of the door.
    1
  430.  @NoNonsense316  they don't allegedly do it, they actually do it. ci uses functional regression testing against the public api to try and prove that the system just broke. the more tests, the harder for a break to get through. it demonstrates that the system does what the developer believed it should do. cd starts from there, with the deliverable product, and does more test to check if it broke what the customer believed it should do, again stopping the deployment if it broke. canary releases start from there, and do a gradual deployment, reporting back if it did not succeed so the deployment can be stopped and rolled back.
    1
  431.  @scifirealism5943  as opposed to means tested benefits which creates massive problems for the poor even if they want to work. stories abound about disabled people who cannot try going back to work to see if they can cope with it because they would immediately lose their benefits, and would then have to fight to get them back if they could not cope. similar stories exist about parents who get an extra couple of hours work, and lose their help with childcare, meaning that they would have to pay for their childcare in full, more than offsetting any benefit they would gain from doing the extra work. even worse, often it is up to the person to notice that they have gone over the arbitrary limit in a timely fashion, which can result in thousands of pounds being clawed back from people who already spent it on childcare, and thus do not have it to repay, any then might have a fraud investigation for a simple mistake. similar issues exist with most means tested benefits, and the only way to mitigate this is to introduce further complicate the system with taper reliefs which needs even more micromanaging of the benefit requirements, often on a monthly or even weekly basis, which further raises the administration costs. this is why most developing countries are looking at means testing as a last resort when it comes to implementing social security systems. are you suggesting that we should deliberately disempower the poor, even when they are trying to do the right thing and then raise their standard of living? we have tried that, and it is called the social security system, and comes under constant criticism for not helping those it was designed to help, massive levels of overpayment, which is not split up between deliberate fraud and innocent mistakes causing massive missrepresentation of the levels of fraud in the system. due to this it is then much more expensive to run, and looks like it is being milked by fraudsters, causing demands for almost continuous reform which then needs additional costs and complexity to not make it look like they are trying to punish the existing claimants. as to the problem of looking like it rewards the lazy, most people do something constructive when they are no longer under time and financial pressure. fathers might be able to see their young children more, rather than having to spend all their time at work. the disabled might be able to try helping in a charity shop for a few hours a week to see how much they can do, or actually have free time and money to take better care of their health. others use the free time to learn, either hobbies or skills which make them morem employable. at the same time you are not spending lots of money on administering the benefits, or doing fraud investigations for innocent mistakes. also, most of the discussion seems to revolve around the idea that you would implement it as a single universal benefit, but we do not do that with means testing, so why would we for benefits which remove means testing.
    1
  432. Yes doing tdd slows down the initial delivery speed, but unless you absolutely need first move advantage to capitalize on the network effect, not doing it usually comes with a much crappier result, and becomes increasingly slower until you move to a test first design. So in that specific use case, you can get some advantage from being first to market, but you are usually better served even in this case doing test first with a minimal viable product and incrementally adding more features.
    1
  433. that obviously did not happen when he was sharing classified maps of invasion plans to his friends while being recorded, but perhaps it smould have.
    1
  434. there are a number of use cases where some form of automatic update is an anti feature. the classic example is the medical specialist remote working, who opened up his laptop to review a diagnostic image which needed immediate feedback, only to have windows trigger an immediate automatic update blocking use of the system for over half an hour. having systems where downloads are slow or expensive also need the option to defer downloading until you have a better connection. then you have laptops, where you might have to defer installation until you can plug it in to prevent partial updates from breaking things. finally, you need the update system to be pull based, as push based update systems add a whole extra set of problems if the push did not work. and all of that assumes that the update itself is not broken.
    1
  435. ​ @keithdenton8386 i'm in the same boat. a bath is not affordable at all, heating and hot showers are tricky, so you end up washing most of the time with a single sink full of warm water and a flannel. heating is tricky because most homes in this country are so inefficient that a heat pump would cost you more and not work as well due to the amount of heat loss, which can only usually be fixed when the house is completely empty like when selling a home or changing tenents.
    1
  436. microsoft has had boot loop issues before and not fixed it, so when the lawsuits come in, it will be their problem.
    1
  437. ​ @evgenyamorozov no, it won't compile, but you are designing the public api, so it does not need to. Once you have an api call which is good enough, you have your failing test, which fails by not compiling, so you create a function definition which meets that api, and a minimal implementation which returns whatever value your test requires, thereby compiling and passing the test. Then you come up with another example which returns a different result, which then fails, and make just enough changes to the implementation to pass both tests. Then keep doing the same thing.
    1
  438. Code coverage is a measure of how happy you are to push crap to your users. The lower the percentage, the less you care about quality. Anyone writing a test just to up the numbers will write a bad and fragile test, which they will then be required to debug and fix when it breaks. Good testing only exercises the public API and tests it for stability. Everything else is either already covered by the API tests, is a sign of a missing test, or is dead code. As to coverage vs code review, code review doesn't scale, especially in agile workflows, like continuous integration and trunk based development. At that point you need automated regression testing, which you can combine with a ratchet test to take advantage of improvements while not allowing regressions in your coverage numbers. Remember you always start out with two guaranteed tests. 1, does it build without failing the build. 2, does it run the successfully built code without crashing. Anything better than that is an advantage you can build on top of.
    1
  439.  @jfftck  not quite right, great tests are self documenting executable specifications for the public api of the internal libraries of the code. while pair programming is demonstrably the best approach, it is not an option in a lot of use cases. in those cases, continuous integration is the only way to take up the slack. as regards the problem of bosses being idiots about pushing for ever more features, the dora metrics prove that features and tests when done well are a virtuous circle which increases both feature speed and test coverage. poor quality tests are trivially easy to spot, as it is non trivial to fix them when they break. the way to deal,with them is to force the guy who wrote them to fix them before they can write any new code. as the original code was usually written by the same guy, it then makes the guy feel the pain that they caused everyone else by writing such crappy code and tests. if they still don't want to fix their bad habits then they can be added to a group forced to fix all the broken tests with no current owners. of course to make it work you need to get buy in from the bosses, but you need that anyway to do testing properly.
    1
  440. just do it right the first time is the best approach, but only when you have precise knowledge of the inputs, outputs, and the transforms you need to use in order to get from one to the other, and what other constraints like speed and memory usage apply. unfortunately while this may work for things like low level drivers, over 60% of projects don't know this stuff until you try and write it, and find out it was exactly what the customer did not want. tdd and ci work by having the developer write functional unit and integration regression tests to determine if the developer wrote what they thought was needed. acceptance tests are typically written when it is presented to the customer to confirm that the developer actually had a clue what the customer requirements were, and as the customer does not know this on 60% of projects, it cannot be done at tdd and ci time. instead, they are written when the customer is available, and then executed as part of the deployment pipeline which checks that it provides both the functional and non functional aspects needed by the customer. a few of these tests can be added to the ci system, but mostly they do a different job. tdd creates relatively clean testable code with tests that you know can fail. ci takes these tests and highlights any code which no longer meets the executable specification provided by the tests and thus does not do what was needed. cd and acceptance tests deal with how it works, is it fast enough, uses a small enough set of resources, anything which should stop you deploying the code. monitoring and chaos engineering checks things that can only be discovered in production, ie how does it scale under load.
    1
  441. If you need two tests, write two separate tests, but remember that their purpose is different. Unit tests and integration tests are part of the continuous integration stage, and check that the code does what the programmer understood was needed. Acceptance tests are part of the continuous delivery pipeline, and check that the code does what the user actually intended. They tend to be written at different times and sometimes by different people for different purposes.
    1
  442. ​ @k98killer not quite. Continuous integration attempts to find the foot guns before main testing using lots of fast automated unit and integration regression tests. This allows you to get something suitable for detailed long termed testing while at the same time attempting to spot any breakages with the regression tests before you even make the commit, and which results in tested code with no obvious regressions which does what the programmer understood it needed to do. The output of continuous integration is then used by the deployment pipeline to further prove that the code is not fit for purpose by running longer lasting tests which try and discover regression in performance, memory usage, etc. These additional foot guns are not always discovered at this point, but the end result is something which has already been deployed to testing, and which looks as fit as possible for deployment to production. Continuous deployment goes further and rolls out this new release to the load balanced server with the oldest codebase deployed, and gradually takes over the load from the next oldest, either succeeding, or discovering additional foot guns which don't show up until under heavy load, in which cae it is rolled back.
    1
  443. yes your typical symbolic ai will have a fragile system, because it is only using shallow knowledge in the rules. as pointed out in this interview, statistical systems like chat gpt have an even bigger problem with this issue, as they only know what statistically plausible, with nothing constraining that, and as also pointed out in the interview, when looking at the statistical data in the hospital example, most of it was coincidence, and thus noise, which is why such systems produce hallucinations so often. the shallow knowledge problem was the reason that the cyc project was set up, as lenat kept encountering problems where after the initial sucess, you needed to be able to drill down to the deeper underlying reasons for something to make further progress, and that extra, deeper level knowledge was not just lying about in order to be able to just dump it into the system so you could make more progress, so he decided to start collecting it. current ai, especially black box statistical ai, excels in areas where good enough most of the time is beneficial, and total garbage the rest of the time does not really matter. for literally every other type of ai problem you need layer on layer of feedback telling the lower levels that the answer it contributed was wrong, and preferably what the right answer was so that it can get it right next time. this requires white box symbolic ai, as do various legal issues like copilot being an automated copyright infringement machine, or the issues of who is legally liable when the ai kills someone.
    1
  444. Every branch is essentially forking the entire codebase for the project, with all of the negative connotations implied by that statement. In distributed version control systems, this fork is moved from being implicit in centralized version control to being explicit. When two forks exist (for simplicity call them upstream and branch), there are only two ways to avoid having them become permanently incompatible. Either you slow everything down and make it so that nothing moves from the branch to upstream until it is perfect, which results in long lived branches with big patches, or you speed things up by merging every change as soon as it does something useful, which leads to continuous integration. When doing the fast approach, you need a way to show that you have not broken anything with your new small patch. The way this is done is with small fast unit test which act as regression tests against the new code, and you write them before you commit the code for the new patch and commit them at the same time, which is why people using continuous integration end up with a codebase which has extremely high levels of code coverage. What happens next is you run all the tests, and when they pass, it tells you it is safe to commit the change, this can then be rebased, and pushed upstream, which then runs all the new tests against any new changes, and you end up producing a testing candidate which could be deployed, and it becomes the new master. When you want to make the next change, as you have already rebased before pushing upstream, you can trivially rebased again before you start, and make new changes. This makes the cycle very fast, and ensures that everyone stays in sync, and works even at the scale of the Linux kernel, which has new changes upstreamed every 30 seconds. In contrast, the slow version works not by having small changes guarded by tests, but by having nothing moved to upstream until it is both complete and as perfect as can be detected. As it is not guarded by tests, it is not designed with testing in mind, which makes any testing slow and fragile, further discouraging testing, and is why followers of the slow method dislike testing. It also leads to merge hell, as features without tests get delivered with a big code dump all in one go, which may then cause problems for those on other branches which have incompatible changes. You then have to spend a lot of time finding which part of this large patch with no tests broke your branch. This is avoided with the fast approach as all of the changes are small. Even worse, all of the code in all of the long lived braches is invisible to anyone taking upstream and trying to do refactoring to reduce technical debt, adding another source of breaking your branch with the next rebase. Pull requests with peer review add yet another source of delay, as you cannot submit your change upstream until someone else approves your changes, which can take tens to hundreds of minutes depending on the size of your patch. The fast approach replaces manual peer review with comprehensive automated regression testing which is both faster, and more reliable. In return they get to spend a lot less time bug hunting. The unit tests and integration tests in continuous integration get you to a point where you have a release candidate which does all of the functions the programmer understood was wanted. This does not require all of the features to be enabled by default, only that the code is in the main codebase, and this is usually done by replacing the idea of the long lived feature branch with short lived (in the sense of between code merges) branches with code shipped but hidden behind feature flags, which also allows the people on other branches to reuse the code from your branch rather than having to duplicate it in their own branch. Continuous delivery goes one step further, and takes the release candidate output from continuous integration and does all of the non functional tests to demonstrate a lack of regressions for performance, memory usage, etc and then adds on top of this a set of acceptance tests that confirm that what the programmer understood matches what the user wanted. The output from this is a deployable set of code which has already been packaged and deployed to testing, and can thus be deployed to production. Continuous deployment goes one step further and automatically deploys it to your oldest load sharing server, and uses the ideas of chaos engineering and canary deployments to gradually increase the load taken by this server while reducing the load to the next oldest server until either it has moved all of the load from the oldest to the newest, or a new unspotted problem is observed, and the rollout is reversed. Basically though all of this starts with replacing the slow long lived feature branches with short lived branches which causes the continuous integration build to almost always have lots of regression tests always passing, which by definition cannot be done against code hidden away on a long lived feature branch which does not get committed until the entire feature is finished.
    1
  445. most insurance has exclusions for negligence, as do the liability exclusions in eulas. this means that when it gets to court, the get out of jail free card won't work, and the insurance won't pay.
    1
  446. ​ @havokgames8297 not sure i would agree. the purpose of the higher level tests is to make a stable public api, after which you can change anything underneath even to the extent of keeping the header file and throwing everything else away. you can also test your private code, but it should already be covered by the high level tests, or be dead code which is never used.
    1
  447. yes, every case would then be appealed, and with jeopardy already attached, and most cases being extremely serious, their cases would have to be dismissed with prejudice, and mass8ve public condemnation. this would result in the prosecutors having to immediately appeal, on the bases of cannon being flat out wrong, and every case would then be on its way to the supreme court.
    1
  448. or you could actually do some testing. we have known how to build deployment systems so that this cannot happen for decades, they either did not do it, or overrode it, in either case court cases incoming for gross negligence and damages (and we know some companies are already preparing their lawsuits form information already released).
    1
  449.  @jalvo2004  we now know from their own statements that all they did prior to shipping was apply a badly written validator program. nothing else. this evaded their testing system for when the driver was updated, which should not be possible, as it is the complete system you need to test. they also cannot have signed the file prior to trying the validator, else the file corruption could have been detected when downloaded. as windows has also had multiple high profile boot loop issues, they could also be in the cross hairs for damages.
    1
  450. ​ @monad_tcp micro kernels are clearly a better design, apart from one small problem, the message passing model is painfully slow in practice. numerous tricks were tried to find ways to speed up micro kernels, unfortunately the same tricks also seem to work just as well with monolithic kernels, so soon after a speedup occurs in micro kernels, the same speedup is also applied to the monolithic kernels, meaning that the gains were quickly negated. almost all kernels now are modularised monolithic kernels.
    1
  451. The reason the disabled are scepticalis because we have seen it before and it always goes the same way. They start of declaring a war on fraud and benefits scroungers, when the combined fraud and error overpayment is only a couple of percent (currently 3.6% combined). They then do nothing to identify the 1.8% of fraud and error underpayment, or the 3.6% overpayment, and instead just start looking for excuses to slash the benefits budget, resulting in lots of people who need help getting thrown under the bus. Then because these people who genuinely need help end up struggling, they either get forced into illegality, or end up getting mental health problems. Because of the increase in these problems, and in the scandals comming out about stopping benefits for people in genuine need, they have to try and patch up the system, but because they never have joined up thinking just make the problems worse. Finally they end up having to move back towards something similar to what that had before, but vastly inferior, causing more distress and suffering. Then they wait a couple of decades and start it all over again. You already have quaraplegics.being thrown of benefits because they don't need any help, and double amputees being told they don't have any problem walking, even while they are on the waiting list for some legs. And it will get worse before it gets better. You do not fix a system with problems due to error by adding extra causes of error on top of them. You fix them by identifying the causes of the errors, engineering improvements to the system to spot the errors early not punishing people for genuine errors, and only then do you use the information gathered during this process to improve the process to catch fraud earlier. Adding people with lower levels of training to override health care specialists does not stop the people being ill. Also this country does suck at retraining the unemployed.
    1
  452. yes we would. this killed locked down machines, and with some specific systemd exceptions almost nobody uses, it requires administrator access to get them to reboot. this is why it took so long to get them back up. only high level technical support have the access to these systems to reboot them.
    1
  453. this seems to me to be an attempt to thow evrrything at the wall and see what sticks in order to maximise the possibilities in discovery, but the obvious question is then why did they not do the same regarding every possible claim to maximise posibilities for having claims not thrown out?
    1
  454. The big mistake I see in all ubi videos is that they don't actually understand the idea, and constrain it to mean a benefit paid to everyone in the country equally, which while being one definition of ubi is not the only one. If you look at the UK, you will see enough examples of variation to blow most of the criticism out of the water. If you take the idea of a national minimum wage as an example, all the same arguments were made about how to bring it in, but it was done. They did it by reframing the definitions to ones that make sense. First, they realized that you do not have to make it the same for everyone, so young people who would be better served by getting higher education are paid a lower rate. The other thing they did was to bring it in at poverty pay levels, and then have above inflation increases until it helped make work pay. This gave employers time to react. Ubi has the same misunderstandings. You could have a national income paid equally to everyone, and linking it to gdp seems like a good way of managing it, but it is not the only way to do it. This is due to a basic misinterpretation of the word universal. It means applying to every qualifying individual, not that every individual needs to qualify equally. In the UK we have a number of benefits which qualify. Child benefit is paid for qualifying children, to the custodial parent. Basic state pension is paid to every elderly person. But these benefits are paid at different rates. The things they have in common are that the criteria are easy to assess, are not rapidly changing like with mean tested benefits and thus can be checked occasionally, and they pay the same amount to everyone who qualifies. If you split your ubi this way you get all of the benefits mentioned, but without the major downsides covered in these videos.
    1
  455. we have known how to do man rated systems since the moon landings, and this is not how. the last time the nhs in the uk was brought down, it was embedded medical devices using windows xp years after end of life mixing with current machines.
    1
  456. right in principle but the practice is only just a little bit harder.
    1
  457. it clearly stated that the first email was saying there was a problem affecting the network, and when they turned up it was a meeting with a completely d8fferent department, sales, and that there was no problem. also no mention as to the enterprise offering being mandatory. at that point i would return to my company and start putting resiliency measures in place with the intent to min8mise exposure to cloudflare with the intent to migrate, but the option to stay if they were not complete dicks. the second contact was about was about potential issues with multiple national domains, with a clear response that it is due to differing national regulations requiring that. the only other issue mentioned was a potential tos violation which they refused to name, and an immedia5e attempt to force a contract with a 120k price tag with only 24 hours notice and a threat to kill your websites if you did not comply. at this point i would then have immediately triggered the move. on the legal view, they are obviously trying to force a contract, which others have said is illegal in the us where cloudflare has its hardware based. it is thus subject to those laws. by only giving 24 hours from the time that they were informed it was mandatory, they are clearly guilty of trying to force the contract, and thus likely to win. if they can win on that, then their threat to pull the plug on their business on short notice in pursuit of an illegal act also probably makes them guilty of tortuous interference, for which they would definitely get actual damages, which would cover loss of business earnings, probably get reputational damages, probably get to include all the costs for having to migrate to new providers, and legal costs. when i sued them, i would also go after not only cloudflare, but the entire board individually, seeking to make them jointly and severally liable, so that when they tried to delay payment, you could go after them personally. the lesson is clear, for resiliency, always have a second supplier in the wings which you can move to on short notice, and have that move be a simple yes or no decision that can be acted upon immediately. by virtue of this, don't get overly relient on external tools to allow the business to continue to be able to work to mitigate the disaster if it happens. also keep onsite backups of any business critical information. m9st importantly, make sure you test the backups. at least one major business i know of did everything right including testing the backup rec9very process, but kept the only copy of the recovery key file on the desktop of one machine in one office, with the only backup of this key being inside the encrypted backups. th8s killed the business.
    1
  458.  @NicoJuicy  while that might be plausible, the point is that cloudflare did not make that arguament until after shutdown, only offering it as one of the undeeded selling points of the upgraded offering. remember the whole flow was around trying to upsell while refusing to state that there was a specific problem with their existing service, which is why the potentially illegal forced contract come up.
    1
  459.  @NicoJuicy  yes they did, but not until the final day, and not as a requirement, only as an advantage to the upgrade.
    1
  460. because they all develope using ci, as do spacex, and most of the big name software companies. when hp implimented it for their printer division, they went from spending 5% of their time on new features to 45%, while merging all of their printer branches into 1 codebase, and using feature flags to enable funcions on specific printers
    1
  461. ​ @keithjohnson6510 the ceo said that all at once was company policy.
    1
  462. that is just not true. the agile manifesto was a response to persistently failing projects. those there were very experienced, and identified a small set of practices which the failures had in common, and basically said if you do this instead, it often works better, but tailor the specific things to what works best for you. the problem comes when someone takes that short list of things that often work better, and turn it into 300 page books, without even thinking about if or when it works better, and why it works when it does. that is not a problem with the manifesto.
    1
  463. you are fundamentally wrong about cloud. while cloud dumped x86 in favour of x86-64 well before the desktop did, it was because we could see well in advance the problems that would kill it. the problem facing x86-64 is it is only relatively cheap due to economies of scale due to windows, and for the data center it uses too much power, and needs too much cooling. windows is gradually going away, which is obvious to everyone outside the usa, and to microsoft which will shrink the market even further. the data centers have already decided to move to risc with linux to solve the power and cooling problems, and the only major question is how fast.
    1
  464.  @ChristianWagner888  i was not aware that the efforts in mac os and linux were further progressed than capabilities and potentialities. thanks for the information. you cannot stop bugs in kernel level code from taking down the kernel. the issue here is how the os responds to it after a reboot. boot looping until someone comes along and manually fixes it shows that in this case the answer is not well. having as little code in kernel space as possible is obviously the best answer, which is why the idea of microkernels was so popular, but in practice there are some things you need to do which must be done in kernel space. the key there is to do as little as possible, and expect things to break, planing to mitigate the side effects.
    1
  465. One of the points of test first is that it gradually migrates the code you write into a more testable format, which naturally produces a more functional design, especially when you can make them pure functions with no side effects. Dave made the point in other videos that testable code and legacy code look very different. This is because the legacy code is not designed to be testable, and thus is a total pain to test. It is like trying to retrofit security into an insecure application, you can do it, but it is not pleasant.
    1
  466. if you really want people to leave you alone, then you do not want their money either. nor their labour. are you sure you can afford that?
    1
  467.  @beautymadzvamuse7640  if you wish total isolation, that is your choice, but can africa afford to lose all tourism, trade and aid from the rest of the world? russia can't, nor can china, we will see how well that works out for you.
    1
  468. because the term predates the ideas behind the nix package manager, which tries to solve a different problem. its like saying lets just rename the make program to be called fred. yes you can do it, but the amount of issues it would cause is just not worth it.
    1
  469. If you watched the video, when you download it from upstream, everything is compiled in but turned off, so just recompile the upgrade and don't turn anything on.
    1
  470. ​ @vanivari359 what you described is no more tdd than long lived feature branches which are seldom integrated are Ci. What you are describing is a lot of mandatory testing of the internal api's of internal functions, whereas tdd works in an implementation independent method against the public api's of public functions. You then get the code coverage that your system needs not by testing the internal functions, but by using them from the public api, and having them return results that make sense. The bits which do not get used are then either potential dead code, or part of a more general implementation of a library that you only need some of the functions provided. In either case, as you are working at the public api, you are completely free to totally change how the stuff behind the curtain works. If it is a problem, either you are testing implementation, or you are not coding to pass the tests, in which case you are not doing tdd.
    1
  471. ​ @raygernon9686 no it does not. windows xp was being used in embedded stuff in hospitals years after end of life, while windows xp embedded was still getting updates. just because people shoehorn it into a use case does not make it a good fit for it.
    1
  472. Some things have to just work, and degrade and recover sensibly. An example prime would know about is Netflix, which when it gets overloaded starts gradually dropping functions like the recommendation engine so that the rest can keep working, just like the lunar lander did.
    1
  473. ​ @tongobong1 I would say you can have multiple assets if it is defining a complex precondition, but that this is the only time, and should be discouraged, as this is usually the code smell that you have not done enough upfront thinking about the testing. It is usually better to move all of those assets into separate tests with clear error messages. This is one of the benefits of tdd, in that it naturally moves the logic of the code under test to a more modular form so it ends up easier to test. You only have to test the logic of the module rather than having to muck about testing all of the surrounding glue logic describing where and how to get your test data. It also makes your code more functional, and makes more of it into pure functions which are easy to test.
    1
  474. no, this is what happens when you push a kernel module to everyone at once without any testing. code review or push to master was not relevant to the failure mode. a simple test deployment and canary releasing would have caught this even if you were doing waterfall development.
    1
  475.  @ansismaleckis1296  the problem with branching is that when you take more than a day between merges, it becomes very hard to keep the build green and pushes you towards merge hell. the problem with code review and pull requests is that when you issue the pull request and then have to wait for code review before the merge, it slows everything down. this in turn makes it more likely that the patches will get bigger, which take longer to review, making the process slower and harder, and thus more likely to miss your 1 day merge window. the whole problem comes from the question of what is the purpose of version control, and it is to do a continuous backup against every change. however this soon turned out to be of less use than expected because most backups ended up in a broken state, sometimes going months between releasable builds. this made most of the backups to be of very little value. the solution to this turned out to be smaller patches merged more often, but the pre merge manual review was found not to scale well, so a different solution was needed, which turned out to be automated regression tests against the public api, which guard against the next change breaking existing code. this is what continuous integration is, running all those tests to make sure nothing broke. the best time to write the tests was before you wrote the code, as then you have tested that the test can fail and pass. this tells us that the code does what the developer intended it to do. tdd adds refactoring into the cycle, which further checks the test to make sure it does not depend on the implementation. the problem with not merging often enough is that it breaks refactoring. either you cannot do it, or the merge for the huge patch needs to manually apply the refactoring to the unmerged code. continuous delivery takes the output from continuous integration, which is all the deployable items, and runs every other sort of test against it trying to prove it unfit for release.if it fails to find any issues, then it can then be deployed. the deployment can then be done using canary releasing, with chaos engineering being used to test the resilience of the system, performing a roll back if needed. it looks too good to be true, but is what is actually done by most of the top companies in the dora state of devops report.
    1
  476. nothing wrong with being a hypocrite when money is involved. i dumped intel in the 90s due to every new processor having a different hardware bug, but was forced to stick with amd due to insufficient hardware alternatives. just make sure to jump ship before the windows 11 and 12 hardware requirements disaster, and third world forced linux migration, and server power and cooling problems kicks the windows crutches out from under intel and amd.
    1
  477. alpha beta and releasable date back to the old days of pressed physical media, and their meanings have changed somewhat in the modern world of online updates. originally, alpha software was not feature complete, and was also buggy as hell, and thus was only usable for testing what parts worked, and which parts didn't. beta software occurred when your alpha software became feature complete, and the emphasis moved from adding features to bug fixing and optimisation, but it was usable for non business critical purposes. when beta software was optimised enough, with few enough bugs, it was then deemed releasable, and sent out for pressing in the expensive factory. later, as more bugs were found by users and more optimisations were done you might get service packs. this is how windows 95 was developed, and it shipped with 4 known bugs, which hit bill gates at the product announcement demo to the press, after the release had already been printed. after customers got their hands on it the number of known bugs in the original release eventually went up to 15,000. now that online updates are a thing, especially when you do continuous delivery, the meanings are completely different. alpha software on its initial release is the same as it ever was, but now the code is updated using semantic versioning. after the initial release, both the separate features and the project as a whole have the software levels mentioned above. on the second release, the completed features of version 1 have already moved into a beta software mode, with ongoing bug fixes and optimisations. the software as a whole remains in alpha state, until it is feature complete, and the previous recommendations still apply, with one exception. if you write code yourself that runs on top of it, you can make sure you don't use any alpha level features. if someone else is writing the code, there is no guarantee that the next update to their code will not depend on a feature that is not yet mature, or even implemented if the code is a compatability library being reimplemented. as you continue to update the software, you get more features, and your minor version number goes up. bug fixes don't increase the minor number, only the patch number. in general, the project is moving closer to being feature complete, but in the meantime, the underlying code moves from alpha to beta, to maintainance mode, where it only needs bug fixes as new bugs are found. thus you can end up with things like reactos, where it takes the stable wine code, removes 5 core libraries which are os specific, and which it implements itself, and produces something which can run a lot of older windows programs at least as well as current wine, and current windows. however it is still alpha software because it does not fully implement the total current windows api. wine on the other hand is regarded as stable, as can be seen from the fact that its proton variant used by steam can run thousands of games, including some that are quite new. this is because those 5 core os specific libraries do not need to implement those features, only translate them from the windows call to the underlying os calls. the software is released as soon as that feature is complete, so releasable now does not mean ready for for an expensive release process, but instead means that it does not have any major regressions as found by your ci and cd processes. the software as a whole can remain alpha until feature complete, which can take a while, or if you are writing something new, it can move to beta as soon as you decide that enough of it is good enough, and when those features enter maintainance mode, it can be given a major version increment. this is how most projects now reach their next major version, unless they are a compatability library. so now code is split into 2 branches, stable and experimental, which then has code moved to stable when ci is run, but it is not turned on until it is good enough, so you are releasing the code at every release, but not enabling every feature. so now the project is alpha (which can suddenly crash or lose data), beta (which should not crash but might be slow and buggy) or stable (where it should not be slow, should not crash, and should have as few bugs as possible). with the new way of working, alpha software often is stable as long as you don't do something unusual, in which case it might lose data or crash. beta software now does not usually crash, but can still be buggy, and the stable parts are ok for non business critical use, and stable software should not crash, lose data or otherwise misbehave, and should have as few known bugs as possible, thus making it usable for business critical use. a different way of working with very different results.
    1
  478. one additional point i failed to mention. when someone looked at 5 releases of red hat linux and the thousands of packages on it, they found that 70% of the code had not changed over the multiple years covered by the study. that code was so stable that it had not even needed a bug fix. most features in modern projects follow a similar dynamic, where most of the churn happens in a small amount of the code, with an increasingly stable long tail on the graph. this graph looks exactly the same whatever language the project is written in.
    1
  479. it matters because the defense could use the lack of clear marking of live and dummy ammunition could lead to live rounds being in a box of dummy ammunition. then the inexperience of the armourer could lead to those live rounds being in a gun which was said to be safe. then the inexperience of baldwin in handling live weapons could be used by the defense to present a case that he should not have been expected to know that a safe gun might not be. this is why the military in most countries has different loads being colour coded so you can tell at a glance what load you are using.
    1
  480. don't he can make a lot of money doing this sort of thing how it should be done, which we already have known for many years.
    1
  481. ​ @RoxyRebel actually, it is not just in the EU and UK you can't insure it. There has recently been coverage of a guy in the us who bought one, only for the insurance company to stop doing cybertruck insurance. He can't sell it easily because he has not had it a year, and musk imposes a penalty for selling too soon. He can't drive it because no insurance company will provide insurance for it in his state, so he just has this large metal brick which is a liability.
    1
  482. most kernels will not be rewritten, they are just too big. moving unix from assembler to c was an anomaly, as it would need to be ported, and c was written as a research project, so rewriting in c tested the design of c and made a lot of the code portable.
    1
  483. Actually they are mostly complaining about having to start writing regression tests and having to write testable code when they could previously write untestable garbage and force q & a to have to deal with it. Regression testing shines a light on how bad your code is, and they don't like it as they like to think that due to spending some time programming they must be good at it. Test first they hits you in the face with how bad you are at testing, which is not taught, and tdd's refactoring step shows just how much copy past coding is in your code base. Understandably a lot of people who never had to do testing don't like it and push back, mostly with comments which can be paraphrased as "I only know how to write legacy garbage, so it doesn't work for me", not realizing that this is what they are saying.
    1
  484. but that was not the eu issue. microsoft wanted to push everyone else onto an api which they had no intention of using, making everyone else a second class citizen. if they had been prepared to use it themselves, it would have gone through unopposed.
    1
  485. There are a lot of unrelated issues being mixed up in this thread, some of which have simple but politically unpopular, some of which are complex but the politicians want simplistic solutions, which don't work. First is migration. You can solve this in an easy but unpopular way, just let everyone into the country, except those on criminal databases shared with other countries. At that point you have got rid of all of the visa beaurocracy and dealt with most of the illegals, who will now be legal. Totally unpopular, but proven to work as part of a broader system. Then you have legal migrants, of which you have many more. If they want come for a holiday for six months or a year and can afford it, they can already do that now. You just make them give details of their country of origin when entering the country, and bounce them if they cannot, just as you do now. At this point you have a database of every legal migrant in the country, and where they came from. If they commit crimes, and get convicted, they get deported, the same as now, but easier, as you know where they came from. This deals with the foreign crooks. At this point your database has a list of foreign nationals in good standing, and they can start earning entitlements. You start with emergency care, for all people in the country, which gets rid of the need to ask silly questions about their insurance status while you are trying to save their life. It doesn't work anyway. If they are just being tourists, they pay vat, tax on fuel either for a hire car, or indirectly through the use of taxis, and other services, so they are contributing. If they decide they want to work in the service industry for extra spending money to help pay for luxuries, let them, but force their boss to register them for a national insurance number, and let them have one. They will start on the emergency rate, which is high, and gradually migrate to a rate correct for the work they are doing, and in the meantime can be getting national insurance contributions to entitle them for gp care. Their contributions can be used to decide which services they can get free, and which they need to pay for, and can go towards their right to become a citizen. After ten years of work, you should have built up enough good standing that you can just become a citizen by passing the language requirements and a few other necessary things. At this point you have converted all the migrants both legal and illegal into productive members of the community and deported the crooks who got caught, and most crooks get caught eventually. As for people already living here, you can give them points for spending years here as a child which will then entitle them to services. If you make it clear in their national insurance communications that they are on a tempory foreign national insurance number and let them apply to convert to citizenship at any time after they have built up enough points, you automatically eliminate scandals like the windrush deportations where they just did not know they were not citizens. If you are foreign and become out of work, and do not have enough points, you have to go home,nand in the mean time you can deduct money from their emergency national insurance contributions to build up a bond to pay for them to get sent home even if they run out of money. If they go home by themselves, it reverts to a fund to top up the bonds of those who have not yet been here long enough. This also means that crooks with a job end up paying for their own deportation. As to health tourists, you can get them to go home as soon as they are well enough to travel. At this point, no illegals, any illegals are crooks by definition, but can convert to residents in good standing simply by getting a job, and can become a citizen simply by having a job for long enough. You can deal with foreign wives by changing national insurance from the employee, to the couple, and both partners contributions pay for both partners entitlements. This also fixes the problem of the high paid husbands divorcing the wives near retirement and leaving the wife with no entitlements. Now you get to those people who become ill. Let doctors make the decsions, as they have to in order to provide treatment, but deal with it differently. At the moment, if i come down with something which affects my ability to drive, the doctor has to notify the dvla, who then make a choice based upon the real data. Just extend it to cover conditions which affect your ability to work and notify the dwp. This gets rid of firms like atos milking the system so the government can punish the ill. You can then implement a system like working tax credit, but done properly, where you get the points as your circumstances change, and then they pay you the right amount. This gets rid of the 1.8% of underpayments due to fraud and error. It also can get rid of overpayments if you require the person on benefit to notify of a change in curcumstance like you have to with most benefits now. The overpayments are at 3.6%, due to fraud and error, and as you have half that amount gettting underpayed, you can assume that have of the over payment is due to error, as most poeple will not commit fraud to get less money. At this point you are getting most of your benefits without means testing, which is provably a lot cheaper. At this point you have implemented universal basic income, as a side effect of dealing with the mess that migration and benefits is currently in, and it is affordable, as you can make it taxable like basic state pension and child benefit, and just adjust the allowances to make it revenue neutral, just like was the case with working tax credit. By this point, people accrue entitlements by working or being in education, married couples end up with fair contributions to their pensions, sickness benefits are decided fairly by medical need and awarded automatically, and you have entitlements accruing gradually based on contributions. Of course you do have to fund health care properly, so that people get treated in a timely fashion and don't just keep getting sicker, and you have to fund reeducation for meaningfull local skills shortages for the unemployed and those being released from prison, but the whole thing will work better then the current system, without the stigma,mand mostly for less money.
    1
  486. ​ @JeffBartlett-kj6sq actually they ran a validator on the file, it just was not up to the job. you design a validator to fail, but allow it to pass if it determines that the file was good. they wrote it to pass, and only fail if you can determine the file is bad, which does not work. then having run the validator, they just shipped it straight out to everyone with no more testing. we new how to do better in the 1990s, and have got even better at it since then.
    1
  487. mac and linux promote a better mindset, as they are designed from the ground up to be multi user. nt has fhis capability as well, but microsoft put compatability and usability ahead of security for decades, so the mindset has not really improved since the dos days. the Windows malware industry is a result of this insecurity model. unix based systems are inherently less vulnerable, as the scope for abuse is less unless you do a long chain of attacks to circumvent the security in the system. unfortunately the malware industry outside of windows is growing as more people escape the need to be stuckmwith windows.
    1
  488.  @meneldal  if they did, they would not still be rebooting 14 hours later.
    1
  489. really, everything i read says they ripped it out of vista, and nothing else mentions it.
    1
  490. so is yours. in a mature process, the driver is signed, then put through a validator designed to fail it as part of the ci process leading to a release, which includes installing it on test machines. the signature says that the file the validator checked is the one you are about to ship. they can't have done that, as the zero file would not match the result in the signature file, and the client side update program would not have installed it if it did not match. then your validator should be designed to fail unless everything is found to be ok. then a new template like the one used could not even have been put where it could be used until the validator could pass it. this validator was designed to pass unless it spotted a known failure, which is not how you write them. then their custom binary file format did not contain a signature block at the start, despite this being standard practice since windows 3.11, and before the first web browser. then having passed the broken validator, they bypassed all other testing and shipped straight to everyone. obviously nothing can go wrong, which misses the entire point of testing, which exists not to prove you got it right, but to catch you when you get it wrong.
    1
  491. ​ @bzuidgeest i wish people would stop giving microsoft a get out of jail free card on this one. every os is vulnerable to this, as long as they can load third party kernel drivers. the problem for microsoft is that nearly every driver is provided by someone else, that is why they had to introduce safe mode in the first place. it just does not work with locked down devices, which is why you have lots of people having to manually go around and fix every machine. an os writer could easily implement a system where it does a simple test to see if and drivers were updated, and if so skip to special updated driver code. that code could then on the first go around flag up the updated drivers, and on the second boot, disable any driver that was part of the incomplete boot attempt. if they had done that, the system would have gone down, and tech support could just say to turn it of and on again and it could boot. the cloudstrike user land process could then phone home and sound alarm bells over the broken driver, and look for a later update to fix it. then none of this would have been newsworthy.
    1
  492. apple is not comparable, as they don't sell into the enterprise space, so most of the users would not be using apple.
    1
  493.  @whatcouldgowrong7914  i mean apple don't do servers for mission critical jobs, not that apple do not have any products used by people working for businesses. the needs are different. also an apple machine is basically an all in one computer, and they only provide a few designs at once. this is different from a general purpose platform like linux or windows which has to support anything that can be plugged into a suitable slot.
    1
  494. i have already had it confirmed by more than one supplier that this type of differential pricing for those without smart meters is on the way. also confirmed is that the only meters being made now are gen 2 smart meters, so when yours fails, that is what you will get.
    1
  495. no, but emergency rooms, operating theaters, pharmacies and ambulance services do, to name just a few.
    1
  496. wrong lesson learned. these are locked down machines. some with additional security. the only way this does not happen is for the kernel to have a means of spotting the crash, disabling the driver, and then rebooting without the driver running. and that is irrelevant of who makes the kernel. it could be microsoft with windows, google with android, apple with macos, or various with linux or bsd, the only available solution for this scenario is the same.
    1
  497.  @NoEgg4u  it was replying to your comment. there were a few of the 8.5 million boxes where the operator could go into safe mode, do the trivial fix, and restart the machine. after the machine was restarted, standard recovery options would work, and even cloudstrike would autoupdate with the correct fix, once they started shipping it after 90 minutes. when there is no operator because your arrivals board is 20 feet in the air, the system has to spot the buggy driver, disable it, and reboot without it. windows generally does not do this. to fix it, you have to get someone there to fix it, they have to be capable and trustworthy enough to undo the security which is there for a reason, do the trivial fix, and then put all the security back. this is why the disaster took so long to fix. this patch went out as a live patch to the configuration files of every version of this software, with minimal testing which then did not work. this means running 1 or two releases behind won't stop it. the only way to stop it is for os vendors to put something in place to catch and isolate buggy kernel drivers, so it won't boot loop, and for corporate to insist on the vendor not doing a mandatory live push of configuration updates, often over the complaints of their insurance companies. the lesson you learned in your post was that the machines were down because they had no backups, but this was not the issue. they were down because the update crashed the kernel, and then got stuck in a boot loop. the crash was down to crowdstrike. the boot loop was down to microsoft not doing something to prevent it even after having seen it happen in the wild multiple times.
    1
  498.  @NoEgg4u  three quarters of the first post was going on about making backups, but they were not relevant to most of the machines affected.
    1
  499.  @NoEgg4u  you were responding to the video @16:35 saying that the problem would not have occurred if only they had proper backups. however other commenters have said the follow about their experiences. 1, the machines entered the boot loop. 2, the machines could not auto recover because of it and required manual intervention. 3, the on site personnel could not do it because either the machine was inaccessible, locked down with bit locker, or required things like keyboards and monitors not stored locally to be able to escape the loop. 4, when escaped from the loop, the fix was trivial, with no damage to the machine in most cases, with the fix being to delete the file, and redo the update. during none of this was there data loss for most machines. the sort of data issues incurred are more like the ones faced by delta airlines, where the locations of all the pilots don't match where they were supposed to be, so they have to rebuild the database of where they now are due to cancelled flights. this is not helped by backups.
    1
  500.  @NoEgg4u  again, which you do not seem to be hearing, these were locked down and or inaccessible machines. their defense plan, often a the insistence 9f their insurance companies was to have a competent company use best practice procedures to do antivirus style protection of their machines without shipping garbage. a lot of them even had these machines running the previous versions of the driver on these machines until testing and live operations proved the driver was not rubbish. what cloudstrike did was ship a binary signature file with no effective testing done prior to release, as a live patch to all versions which then did not test them either, thereby subverting all the mitigation policies the companies had in place. as this is contrary to even standard practice in the 1990s, nobody expected a company operating at kernel level to do this. hence the outrage. when machines have to either be locked down, or are inaccessible, for which there are multiple use cases, the problem is getting out of the boot loop. after 90 minutes, the corrected patch was available which fixed it, if you could get the machine to boot. they discovered how to manually fix it a while later, but that only worked on standard desktops and servers, where "just boot into safe mode" was an option. your preferred choice of restore from a backup has two problems. 1, it ignores the fact that boot to safe mode just does not work with these types of use cases. 2, it is massive overkill which does not address any of the issues arising out of failing to be able to address 1 for hours, like united airlines planes and pilots not being where they needed to be for the next scheduled flights due to the cancelled flights. these machines are locked down for a reason. the amount of wilful blindness and basic lack of care needed at cloudstrike to even get to this point probably meets the level of gross negligence, let alone the lower standard of negligence to make their weasel words in the terms of service invalid. there is a case that as this was not the first instance of a boot loop problem reported to microsoft, but they did not fix it then they too could be on the hook for damages. the comparison for your stance is like going to a resteraunt and expecting the customers to check that the chef did not pee on the fish just before handing it to the waiter. customers at this level of service and the prices involved have a reasonable expectation of a minimum standard of care prior to shipping a patch. cloudstrike, by their own statements had less care than someone shipping a free web app, which is a level which leaves everyone with even a minor claim to competence saying what the ####.
    1
  501.  @NoEgg4u  so you are saying that machine like the airport flight information screens high in the air so that people can see them, and card payments readers like in my local pub should need to have a keyboard and mouse to hand so that some random person can take them into safe mode. what about the e-passport machines at the airport, the car parking machines in the street, the hole in the wall cash machines, all the embedded windows devices at the hospital, etc for all of these there are valid reasons why you won't or cannot plug in a keyboard, video and mouse (where would you even do it on a card reader), or why you want to limit access (health and safety for the flight information screens, security for the hole in the wall cash machines and where do you even start for embedded medical devices). saying that they should just be a globally accessible windows desktop just does not work in those cases (who is going to walk around with a windows desktop under their arm for 24 hours to monitor their heart condition for diagnostics). the examples i have given are just some of the cases i have personally seen information about being hit with this problem, but there are many more equally valid cases if you go looking for them. while i question the suitability of windows for some of these applications given its well documented list of broken updates, the fact is that it is what the manufacturers of those devices have decided to provide. then in a lot of cases the insurance company has mandated the use of software like cloudstrike due to the sector they are working in. for a lot of the companies involved, the entire reason for using someone like cloudstrike is so that these machines do not go down. they also run the previous driver version on these machines as a means of implementing a n-1 or n-2 update policy. by pushing a completely untested mandatory live update which crashed the kernel, cloudstrike subverted and bypassed many of the defense policies these companies use to prevent exactly such problems. by running the previous driver so you don't get killed by a bad update, not deploying the next driver until it has gone through testing, and been run by others for a while, only doing updates in times and places where it makes sense to do so, all these policies serve to maximise resilience, and by pushing an untested broken mandatory live update, cloudstrike broke all of them. this is why there will be lots of lawsuits incoming, and given what they have already said publically, i am sure that they will lose a lot of them for gross negligence, which their terms of service cannot exempt them from. as for the idea you have that you should just keep around enough skilled, and vetted engineers doing nothing just in case someone decides to act as stupidly as cloudstrike, resulting in taking down 40,000 machine networks that are designed to not go down, that is just not economically viable. no business can afford to keep around more than a few percent of expensive experts who are in limited supply just on the off-chance that you might need them for a day or two once every few years. you have to manage your business for the average day, planning to minimise the need for extra services. lots of these companies did, and cloudstrike invalidated those plans with their mandatory broken live update.
    1
  502. on your point about live updates, every customer understood from crowdstrike that the n-1 and n-2 settings in the software applied to the live patching as well, and that the live patches received comprehensive testing prior to shipping, and that the kernel driver caught bugs and automatically rolled back the live update. none of this information was true, so when the testing machines at companies got hit by the buggy patch, they crashed, but so did the live production machines runn8ng n-1 driver versions. these then fell over to the n-2 machines, which also applied the live update and fell over, which then hit a microsoft kernel boot loop bug which has not been fixed in the decade it has been known, which caused every machine to need manual intervention to restore. when people with your supplier give you the wrong information, and then actively subvert your resiliency planning, most companies cannot cope.
    1
  503. this is because the driver, while rubbish, was not broken. as soon as the broken file was deleted it worked fine. the signature file was designed to live update, so driver versioning does not help in this case.
    1
  504. not transferable was a bug in the 1st gen smart meter design. all new installs are gen 2, and no other meters are available, so when your existing meter gets to old, first they will charge you a higher rate, and then they will force a mandatory replacement, which will be a smart meter.
    1
  505. No, the problem is that dispite a number of user complaints, it was ever promoted out of sid, which raises wider concerns as to what sid is for if not to stop this sort of breakage getting though to unstable.
    1
  506. the issue here is not if trump will go to trial, but that if it is allowed to stand then every major criminal ever tried using special council will try and use this to get their cases throw out for the use of an illegally appointed prosecutor, and every case will head back to the supreme court with the defense quoting cannon, and the prosecution quoting every other judge who has ever looked at the decision with the justices taking the rap for it until they reverse. there is zero chance that no case involving this decision will reach the supreme court, and every new justice will not want their names attached to this decision. the three liberals will definitely vote to overturn, so they only need 2 others from this aging court or their replacements to vote to overturn, and if they don't, this mess will drag on for decades, awaiting the correct decision.
    1
  507. the update released contained nothing but zeros. the ceo said that it had nothing to do with the problem. he then said the fix was to delete the file, proving himself to be either incompetent, a liar, or both.
    1
  508. ​ @ShootingUtah there is a reason why the compiler matters. most of the work in advancing programming in the last 50 years or so has shown that domain specific languages are key to problem solving. this is basically what you do when you create an api, you extend the language to be better able to talk about your problem. the compiler part gives you an idea of how your bad api's can make that solution harder to implement, and more importantly, why. as a side effect it also n3eds proficiency in so many other types of programming that you would be hard pressed to find an alternative which still gave a framework for teaching all of those other aspects.
    1
  509. I do know that when they write the code for the space shuttle they used the fact that they had multiple machines that had to agree to put the contract out with multiple companies. When they got it back they analyzed it, and found that a lot of the code had the same assumptions and blindspots in them, which just goes to show that it is much harder to get completely redundant implementations of the same specifications than you think. I'm sorry, but I don't remember the names of the reports and papers which covered it in detail.
    1
  510.  @Isaac-wl6wu  but to prepare the case, you are not feeding the publicly disclosed and filed court documents, especially if you are the defense. you have a whole stack of documents you do not have to disclose until you use them in defense at trial. these may contain information which would benefit your opponent, but which as defense council you have a duty to not disclose under client confidentiality rules. a case could be made that you could use such a system in an offline only mode, but only if you can be certain that it does not phone home and share the confidential data. in any event, statistical ai still only creates a plausible response, not a correct one. that needs symbolic ai, with lots of manual work to populate it.
    1
  511. waterfall can work as described under exactly one scenario, when you know exactly what you need the specs to be, like in the nasa case mentioned in the video. the problem is that this is amazingly expensive when you can do it, and evidence going all the way back to the original paper point out that for something like 60% of projects even the customer does not know what they need, so it fails miserably. also, it cannot cope well with changing requirements. this lead to the myth of change control as a way to deal with those cases. this resulted in product being built, but they were increasingly wrong, as you could not react to the changing needs. when the manifesto was created, it was realised that it was not working, and that you needed to do incremental development, and the manifesto was a writeup of why it does not work, and what to do instead to work incrementally. if you do it properly like the companies in the dora state of devops report, agile works, but too many companies don't even learn enough about agile to be able to tell if they are really doing it, resulting in some sort of mangled waterfall process.
    1
  512. There is a reason that the testing pyramid was developed. The lower level you are, the smaller and faster your tests, and the less implementation details your test relies on. As you move higher up the pyramid, the more implementation details you are trying to infer, and hoping don't break your test when the code changes. The worst examples of this are end to end tests and UI tests, both of which tend to be rigid to get them to work at all, and thus brittle when the implementation details change. Using the testing pyramid answers your question. You should only use end to end and user tests for things which you cannot test with lower level tests, and the same applies for every other level of the pyramid. As a side effect of using the pyramid, you end up with more of your code being easier to test, and more modular.
    1
  513.  @dominikvonlavante6113  i don't know of anyone seriously doing continuous integration who does not use the testing pyramid with high levels of code coverage. as to tests higher up the pyramid, the testing pyramid being better, it depends how you define better. years of testing research have told us conclusively a number of things: 1, the higher you go, the slower you get, often by orders of magnitude. 2, the higher you go, the more setup and tear down you need around the actual test to be able to do it. 3, the higher you go, the more levels of indirection between the fact that the test broke, and why it broke. for example if you are testing the middle module in a three module chain in an end to end fashion, and the test broke, was it because module 1 broke its output to module 2, that module 2 broke its transform code, or did module three break its input api? as a consequence of these points, it is better to do thousands of unit tests against the stable api of your functions with known inputs and outputs than dozens of end to end tests which don't give you anything like as detailed feedback as the answer 'the change you just made caused this function to stop returning this value when give these parameters" this is before you even consider the fragility of end to end tests and the difficulty of testing new legacy code which was not designed with testability in mind.
    1
  514. the point is that it is not about you trusting your distribution, but them being able to audit the trust for everyone upstream of them so they know that the stuff they built has identical source and output as what was got from upstream. it does not stop the xz hack, you need other methods for that.
    1
  515. Over inflated rents are not new, new york has them, as does london, and in both places people are fleeing, and the cost to employ those that need to live outside the area change to reflect the added commuting costs. Some london bus drivers need to live over 100 miles away, as do others such as teachers and nurses.
    1
  516. every airline is booking right up to capacity. after lockdown, lots of airlines had to mothball parts of their fleets, and like turning a tanker, it takes a while to get back up to your previous capacity, and across the industry, most airlines are well below pre lockdown capacity, while demand is up.
    1
  517. labour did not win anything, everyone else had their votes catastrophically collapse. any other viewpoint from labour will just get them kicked out when everyone else gets their acts together. labour heartlands are cities and areas normally controlled by nationalist parties, and their failure to address this, combined with toxic policies and politicians is what gave us 14 years o tory government. nationalist parties have over promised and under delivered, combined with some corruption scandals, leading them to unelectability. similar problems doomed the tories in this election. changing the electoral system won't fix anything, as all governmental systems suffer from major issues and occasional perverse results, which occur when the situation is exactly wrong. you just change which problem you prefer to tollerate. first past the post gives strong government, but under represents minority views, and is weak when the second party is weak. proportional representation better reflects the popular vote, but in practice produces shorttermist coalition governments which often collapse before the term ends. single transferable vote makes every vote count, but tends to give power to the least disliked. everything else breaks the link with the constituencies, giving power to party lists, and making politicians even more removed from the electorate. that does not even cover the problem of getting enough people to agree as to what to move to, as opposed to just agreeing what they dislike about the current system.
    1
  518. the smart monitor is custom hardware, which typically lasts less than a year, and which no company will replace. this mostly invalidates most of the arguments in favour of smart meters for the customers.
    1
  519. @guymontag5084 of course you have. statistical ai fundamentally works by producing something plausible, not something correct. to go for correct you need symbolic ai, which can not only give you the output, but can tell you why and how it came to have that form, and can be taught what it got wrong if you disagree with it.
    1
  520. ​ @katieadams5860 but the boot loop problem is specifically a windows bug, and some linux systems are build using capabilities which just roll back to an earlier install on power cycling, which can be done by unskilled people. it was the boot loop problem which kept machines down for so long.
    1
  521.  @noblebearaw  it used all the points in all the images to come up with a set of weighted values which together enabled a curve to be drawn with all the images in one set on one side of the curve, and all the images in the other set on the other side of the curve. that is the nature of statistical ai, it does not care about why it comes to the answer, only that the answer fits the training data. the problem with this approach is that you are creating a problem space with as many dimensions as you have free variables, and then trying to draw a curve in that phase space, but there are many curves that fit the historical data, and you only find out which is the right one when you provide additional data which varies from the training data. symbolic ai works in a completely different way. because it is a white box system, it can still use the same statistical techniques to determine the category which the image falls into, but this acts as the starting point. you then use this classification as a basis to start looking for why it is in that category, wrapping the statistical ai inside another process, which takes the images fed into it, and uses humans to spot where it got it wrong, and look for patterns of wrong answers which help identify features within that multi dimensional problem space which are likely to match one side of the line or the other. this builds up a knowledge graph analogous to the structure of the statistical ai, but as each feature is recognised, named, and added to the model, it adds new data points to the model, with the difference being that you can drill down from the result to query which features are important, and why. this also provides extra chances for extra feedback loops not found in statistical ai. if we look at compiled computer programs as an example, using c and makefiles to keep it simple, you would start of by feeding the statistical ai with the code and makefile, and feed it the result of the ci / cd pipeline, determining if the change just made was releasable or not. eventually, it might get good at predicting the answer, but you would not know why. the code contains additional data implicit within it which provides more useful answers. each step in the process gives usable additional data which can be queried later. was it a change in the makefile which stopped it building Correctly? did it build ok, but segfault when it was run? how good is the code coverage of the tests on the code which was changed? does some test fail, and is it well enough named that it tells you why it failed? and so on. also a lot of these failures will give you line numbers and positions within specific files as part of the error message. if you are using version control, you also know what the code was before and after the change, and if the error report is not good enough, you can feed the difference into a tool to improve the tests so that it can identify not only where the error is, but how to spot it next time. basically, you are using a human to encode information from the tools into an explicit knowledge graph which ends up detecting that the code got it wrong because the change in line 75 of query.c returns the wrong answer to a specific function when passed specific data because a branch which should have been taken to return the right answer was not taken because the test on that line had 1 less = sign than was needed ad position 12, making it an assignment statement rather than a test, making the test never pass. it could then also suggest replacing the = with == in the new code, thus fixing the problem. none of that information could be got from the statistical ai, as any features in the code used to find the problem are implicit in the internal model, but it contains none of the feedback loops needed to do more than identify that there is a problem. going back to the tank example, the symbolic ai would not only be able to identify that there was a camouflaged tank, but point out where it was hiding, using the fact that trees don't have straight edges, and then push the identified parts of the tank through a classification system to try and recognise the make and model of the tank, this providing you with the capabilities and limitations of the identified vehicle as well as the presence and location. often when it gets stuck, it resorts to the fallback option of presenting the data to the human and saying "what do you know in this case which i don't", adding that information explicitly into the know,edge graph, and trying again to see if it altered the result.
    1
  522. ​ @cleverlyblonde which microsoft could make mandatory for driver signing. but it would not help in this case. the driver loaded an additional file outside the signed code, which it then did not check for being broken. you would have to also remove the file, and revert the configuration to roll back.
    1
  523. the problem with the idea of using statistical ai for refactoring is that the entire method is about producing plausible hallucinations that conform to very superficial correlations. to automate refactoring, you need to understand why the current code is wrong in this context. this is fundamentally outside the scope of how these systems are designed to work, and no minor tweaking can remove the lack of understanding from the underlying technology. the only way around this is to use symbolic ai, like expert systems or the cyc project, but that is not where the current money is going. given the current known problems with llm generated code, lots of projects are banning it completely. these issues include: exact copies of the training data right down to the comments, leaving you open to copyright infringement. producing code with massive security bugs due to the training data not being written to be security aware. producing hard to test code, due to the training data not being written with testing in mind. the code being suggested being identical to code under a different license, leaving you open to infringement claims. when the code is identified as generated, it is not copyrightable, but if you don't flag it up it moves the liability for infringement to the programmer. the only way to fix generating bad code is to completely retrain from scratch, which does not guarantee fixing the problem and risks introducing more errors. these are just some of the issues of statistical methods, there are many more.
    1
  524.  @ThomasTomiczek  i do not underestimate the potential of ai to help with all sorts of programing tasks, only the implausability of getting there using the currently popular statistical ai systems, the whole point of which is that you throw a lot of data at them and they do not create a model of the system, just a bunch of plausible corellations each of which could be noise. you could have a swarm of symbolic ai's each looking at the code base and figuring things out which other parts could then make use of, which in turn could help take legacy code from an untestable big ball of mud to a much better design, but to do that, it needs to have some clue as to what the existing code is doing, why, and how to move it in the direction of something better.
    1
  525.  @ThomasTomiczek  the whole approach is based on not modeling the problem and looking for ever larger numbers of low level correlations, which be purely coincidental and hoping it can come up with something which is good enough. when you point out this problem, the suggested solution is just to throw more of the same at the issues, which will somehow magically solve problems caused by how the tech works. turtles all the way down does not work in philosophy, and it does not work in software.
    1
  526. There is some confusion about branches. Every branch is essentially a fork of the entire codebase from upstream. In centralized version control, upstream is the main branch, and everyone working on different features has their own branch which eventually merges back into the main branch. In decentralized version control who is the main branch is a matter of convention, not a feature of the tool, but the process works the same. When you clone upstream, you still get a copy of the entire codebase, but you do not have to bother creating a name for your branch, so people work in the local copy of master. They then write their next small commit, add tests, run them, rebase, and assuming the tests pass push to an online copy of their local repository and generate a pull request. If the merge succeeds, when they next rebase the local copy will match upstream which will have all of their completed work in it. At this point, you have no unsynchronized code in your branch, and you can delete the named branch, or if distributed, the entire local copy, and you don't have to worry about it. If later you need to make new changes you can either respawn the branch from main / upstream, or clone from upstream and you are ready to go with every upstream change. If you leave the branch inactive for a while, you have to remember to do a rebase before you start your new work to get to the same position. It is having lots of unsynchronized code living for a long time in the branch which causes all of the problems, because by definition anything living in a branch is not integrated and so does not enjoy the benefits granted by being merged. This includes not having multiple branches making incompatible changes, and finding out that things broke because someone did a refactoring and your code was not covered, so you now get to fix that problem.
    1
  527. there are various reasons some driver code might need to be run in kernel mode, on pretty much any kernel for any os. it was not the fact it was kernel code which did this, it was the fact they shipped untested code, which nobody serious has done since windows 3.11.
    1
  528.  @ibrahim-tech  microsoft and the companies had various measures in place, cloudstrike subverted them. the file they shipped was either supposed to contain rules which a driver resident engine was supposed to apply, or contained executable pcode, both of which bypassed Microsofts driver signing process. then they shipped it as a live update, without doing any tests worth mentioning, which bypassed the companies n-1 driver update policies.
    1
  529. ​ @ContinuousDelivery this is exactly the correct analogy to use. In science what you are doing is crowd sourcing the tests based upon existing theories and data, and using the results to create new tests, data and theories. Peer review is then equivalent of running the same test suite on different machines with different operating systems and library versions to see what breaks due to unspecified assumptions and sensitivity to initial conditions. This then demonstrates that the testing is robust, and any new data can be fed back into improving the theory. And like with science, the goal is falsifiability of the initial assumptions. Of course the other problem is that there is a big difference between writing code and explaining it, and people are crap at explaining things they are perfectly good at doing. Testing is just explaining it with tests, and the worst code to learn the skill on is legacy code with no tests. So people come along and try to fit tests to legacy code only to find that the tests can only be implemented as flaky and fragile tests due to the code under test not being designed for testability, which just convinces them that testing is not worth it. What they actually need is to take some tdd project which evolved as bugs we're found, delete the tests, and compare how many and what types of bugs they find as they step through the commit history. If someone was being really nasty they could delete the code, and reimplement it with a bug for every test until they got code with zero passes, and then see what percentage of bugs they found when they implemented their own test suite.
    1
  530. ​ @sarthakdash3798 it might be, but the point it makes comes straight from the 1970s ibm research on how most cisc chips contain instructions which are often both slow and buggy, and how optimising the compiler to generate fewer of these instructions and thereby only use a smaller part of the instruction set actually produced better, faster and less buggy code. cisc came about because we did not have either the knowledge to build, or the resources to run such advanced compilers. risc came about because cisc is a nightmare from so many different angles that people thought it a good idea to try a different approach, and it worked. the gpu issue is different. both cisc and risc use a single stream of instructions working on a single stream of date. sisd for short. gpus still use the single stream of instructions, but every point has different data, or simd, which has advantages for some workloads. then you have the third case, multiple instruction streams with multiple data streams, which was researched by danny hillis and others in the 1980s. this is basically multicore with advanced inter core communications, and cisc is really bad at it compared to risc just due to the extra size and power needs per core, which is why things like thread rippers need something that sounds like a jet engine on top to stop it overheating. again, smp works well for some workloads, not so well for others, which is why cisc designers are making chips with a mixture of slow efficient cores and fast power hungry ones, an approach not needed with risc.
    1
  531.  @henryyoung7184  not exactly, the insurance company insists you have this type of software, or sign an insurance waiver. it does not mandate this company. not like when microsoft were blackmailing oems to only provide windows on their hardware or lose their bulk discounts.
    1
  532. And with the broken ideas of how to implement it. Ubi does not have to be a single benefit paid to every citizen at some high amount straight away. While that is a form of ubi, it is not the only one. At its heart, ubi is about replacing expensive means tested social security with cheaper to administer benefits which have simpler to work out if qualify benefits which are not means tested. An example would be child benefit. You can check if the individual is still a living child occasionally, and then pay the benefit universally to everyone with a child. You then increase tax free allowances by the equivalent amount so that for people over a certain income it is revenue neutral. This saves all the expense of checking if the parents earned too much money this week, and adjusting the benefit down, only to have to do it again next week when they did not earn overtime. This saves a lot of money. It also removes perverse incentives as you do not notice the recalculation process for setting the amount, or for setting the level of general taxation, as it happens in the background on a much longer timescale.
    1
  533. Think of it another way. I started programming when spaghetti code and waterfall development were the norm, and waterfall was even taught as good design. Then it was noticed that if you moved to structured programming with meaningful names, proper loops, and procedural and functional code got rid of the spaghetti code problem, but it changed how you wrote programs. The problem is now writing a big ball of mud full of technical debt and breaking regularly resulting in new legacy code which is often a snowflake. The solution is to envelope it in lots of small deterministic and fast unit tests, which move the code structure away from writing hard to test code, especially if you do it test first, and even more so if you move to tdd as the design methodology. When you only test the public API of your internal libraries, you still maintain the benefits of being able to do rapid prototyping of your code as long as you don't break that API.
    1
  534. it was shipped on a friday because it was supposed tomcontain virus signatures but it was not caught in testing because they did not do any, else it would have been caught.
    1
  535. ​ @dominikdoom also, the eu just said "that is monopoly abuse and does not fly here, have another go". microsoft then decided to roll back the change rather than keep it and play on a level playing field. not the eu's fault.
    1
  536. ​ @nezbrun872 this could still have better fallback behaviour. first it is signed, and run in boot start mode. you can make fallback better by making the semantics of boot start mode be a request for all non microsoft code. then when it boot loops, after a few times, you can downgrade it to not having that option. at that point it is no more privileged than any other kernel mode driver. this then should allow the now downgraded driver to be flagged as broken, allowing it to be disabled on next reboot. then Windows starts up, an a couple of things can happen. first, microsoft can revoke the certificate and authorisation for boot start mode due to not having any resilience handling in the driver. second the user space code from cloudstrike can spot that the driver is not dunning and phone home, and request the next update. at this point, the system stops book looping, the auto update has fixed it, and the company is punished by microsoft for shipping garbage in kernel mode.
    1
  537. Tdd comes with a number of costs and benefits, and so does not doing tdd or continuous integration. The cost of doing tdd is that you move your regression tests to the front of the process, and refactor as you go and it can cost up to 35 percent extra in time to market.. What you get back is an executable specification anyone can run to reimplement the code in the form of tests, a set of code designed to be testable with very few bugs, and the combination is optimized for doing continuous integration. You also spend very little time on bug hunting. it also helps with areas that are heavily regulated as you can demonstrate on an ongoing basis that it meets the regulations. All of this helps with getting customers to come back for support, and for repeat business. Not doing tdd also comes with benefits and costs. The benefit Is mainly that your initial code dump comes fast, giving a fast time to market. The costs are significant. As you are not doing incremental testing, the code tends to be hard to test and modify. It also tends to be riddled with bugs which take a long time to find and fix. Due to the problem of being hard to modify, it is also hard to extend, and if they have to get someone else to fix it it can sometimes be quicker to just reimplement the whole thing from scratch. This tends to work against getting support work and repeat business. As for the snowflake code no one will touch, it will eventually break, at which point you end up having to do the same work anyway, but on an emergency basis with all the costs that implies. Testing is like planting a tree, the best time to do it is a number of years ago, the second best time is now. The evidence for incremental development with testing is in, in the dora reports. Not testing is a disaster. Test after gives some advantages initially, while costing more, but rapidly plataus. Test first cost a very little more than comprehensive test after, but as more code I covered you get an ever accelerating speed of improvements and ease of implementation of those improvements, and it is very easy for others to come along and maintain and expand the code, assuming they don't ask you to do the maintenance and extensions.
    1
  538. @Vegemeister1  restarting a cluster is a solved problem. You can use wake on lan to wake up a machine from powered down, and doing update and reboot works if the kernel or core libraries change. If they don't, you can just shut down the service and restart it. Bearing in mind the only time it makes sense to live patch is for high throughput systems, sharding gives much better scalability. In this sort of throughput scenario, you are basically talking about high availability systems, so having multiple machines as part of the system is already a given for reliability and resilience reasons, so sharing does not add much load at all. Tools like ansible even make this whole process relatively easy. I think it was Netflix who intended to reboot a specific machine and accidentally rebooted their entire data center instead, which only took a couple of minutes to come back up.
    1
  539. due to the way reactos is developed, stating if it is in beta or not does not really make sense. in conventional development, it follows a big bang model, where you rush to get it feature complete, then move to beta, where you rush to make it stable, then release it as version 1.0. in open source development it works differently, with this process going on at the patch level, not the kernel level. this means reactos is technically alpha, as it is not yet feature complete, and against the moving target that is windows, it might remain that way. however the code that has been implemented is usually very stable. most crashes are caused by a software update trying to use an unimplimented feature it did not use before.
    1
  540. I think the other guy has it more right. You do not expect a major breaking change to become the new default on a minor version bump, and it is thus a bug in the compiler. The bug is not adding the code, nor giving it a flag to make it usable, but making it the new default silently against user expectations or a minor version update, and this is what he did not seem to understand.
    1
  541.  @aaaa1953  good question. i wish there was a good answer. we know enough about writing software that such a broken driver should not be able to ship, and enough about writing kernels that if it shipped, it should not be able to boot loop and keep the kernels down like it did, so both microsoft and cloudstrike have some serious questions to answer, potentially in court.
    1
  542.  @ITSecNEO  according to the android website, the android kernel is a linux lts kernel with some patches which have not been upstreamed yet. given the resistance from the kernel community to take anything but c code for things c must depend on, the percentage of non c in the kernel must be minimal. while you can call c code from c++, and from rust, i am not sure how well it works the other way around.
    1
  543. The book "A practical approach to large-scale agile development" describes exactly how and why hp introduced systematic testing for their entire laser jet printer line, including their prior problems and how it got rid of them, including the testing of the embedded hardware involved. Well worth a read.
    1
  544. ​​ @coversine479 there are ways to do such research which protect both the subject and the researchers. they ignored all of them, acting like bad actors. upon discovery, they got roasted for it, and so did every chain in their supervision. in the meantime, the kernel was left with the only choice being to block every submission from them, until they could audit the credibility of the contributers. the reason the maintainers were pissed is that maintainer time is always less than what is needed, and they wasted a lot of it. if they had done the study properly they could have said upon being discovered, so and so knew, and here is the list of patches from only these email addresses, but that process took way too long.
    1
  545.  @coversine479  no, he meant both. the idea of doing the study was fine, but there are a number of ethical and technical steps that should be taken prior to starting it which they completely failed to even consider. the first of which is should we even do it, and if so what rules should we set up? the standard way to do this is for the university to look at the size of the project, and see if it is big enough to absorb any potential harm caused by the study, and to document the potential harm prior to beginning the study so as to minimise it when setting the rules of engagement for the study. they did not do this. as this was a code study, the next step should have been to find someone connected to the project who did not do code review who could be a point of contact and potentially could have a full audit trail of all the submissions. they did not take either step as far as i have been able to discern. this is what pissed off the devs, because having discovered someone looking like a bad actor, and tracing them back to the university, it was then impossible for a while to determine if it was student or faculty, and if this was a one off or systematic. this is what caused the fallout. yes they blocked the gmail account, but they should then have been able to ask the developer what was going on, and got a reply of here is what we were doing, these people knew about it, and here is every patch involved. they could not do any of that, so that got the university blocked until that information could be independently created and confirmed, at which time the University got unblocked. they implemented the study protocols so badly that they were not only technically bad, end ethically questionable, but due to hacking being illegal to some extent in most countries their behaviour skirted around being criminal. all of these problems would have been caught if a proper review was done by the university legal and ethics board prior to starting the project. not doing so not only slimed themselves, but brought the University into disrepute for allowing it to happen.
    1
  546. ​ @BillyBobDingledorf because the driver was a completely unchanged piece of garbage that worked before and after the mess. it was the malware signature or configuration file which got hosed, and is independant of driver version.
    1
  547.  @Gameboygenius  not just in an ideal world. i don't know of any software company of any size except cloudstrike, and before them mccaffey who ship mass installed products to customers without testing, and very basic testing would have caught this.
    1
  548. I doubt it, but you do not need them. If you look at history you can see multitudes of examples of new tech disrupting industries, and project that onto what effect real ai will have. Specialisation lead us away from being surfs, automation removed horses as primary power sources, and changed us from working near 18 hour days seven days per week towards the current 40 hour 5 day standard. Mechanisation also stopped us using 98 percent of the population for agriculture, moving most of them to easier, lower hour, better paying work. This lead to more office work, where wordprocessors and then computers killed both the typing pool and the secretarial pool, as bosses became empowered to do work that used to have to be devolved to secretaries. As computers have become more capable they have spawned multiple new industries with higher creative input, and that trend will continue, with both ai and,additive manufacturing only speeding up the process. The tricky bit is not having the industrial and work background change, but having the social, legal and ethical background move fast enough to keep up. When my grandfather was born, the majority of people still worked on the land with horses, we did not have powered flight, and the control systems for complex mechanical systems were cam shafts and simple feedback systems. When I was born, we had just stepped on the moon, computers had less power than a modern scientific calculator app on your smartphone, and everyone was trained at school on the assumption of a job for life. By the time I left school, it became obvious that the job for life assumption was on it's way out from the early seventies, and we needed to train people in school for lifelong learning instead, which a lot of countries still do not do. By the year 2000, it became clear that low wage low skilled work was not something to map your career around, and that you needed to continually work to upgrade your skills so that when you had to change career after less than 20 years, you had options for other, higher skilled and thus higher paid employment. Current ai is hamstrung by the fact that companies developing it are so pleased by the quantity of available data to train them with that they ignore all other considerations, and so the output is absolutely dreadful. If you take the gramarly app or plug in, it can be very good at spotting when you have typed in something which is garbage, but it can be hilariously bad at suggesting valid alternatives which don't mangle the meaning. It also is rubbish at the task given to schoolchildren to determine things like if you should use which or witch, or their, there or the're. Copilot makes even worse mistakes, as you use it wanting quality code, but the codebases it was trained upon have programmers with less than 5 years experience, due to the exponential growth of programming giving a doubling of the number of programmers every 5 years. It also does nothing to determine the license the code was released under, thereby encouraging piracy and similar legal problems, and even if you could get away with claiming that it was generated by copilot and approved by you, it is not usually committed to version control that way, leaving you without an audit trail to defend yourself. To the extent you do commit it that way, it is not copyrightable in the us, so your companies lawyers should be screaming at you not to use it for legal reasons. Because no attempt was made as a first step to create an ai to quantify how bad the code was, the output is typically at the level of the average inexperienced programmer, so again, it should not be accepted uncritically, as you would not do so from a new hire, so why let the ai contribute equally bad code? The potential of ai is enormous, but the current commercial methodology would get your project laughed out of any genuinely peer reviewed journal as anything but a proof of concept, and until they start using better methods with their ai projects there are a lot of good reasons to not let them near anything you care about in anything but a trivial manner. Also as long as a significant percentage of lawmakers are as incompetent as you typical magazine republican representative we have no chance of producing a legal framework which has any relationship to the needs of the industry, pushing development to less regulated and less desirable locations, just like is currently done with alternative nuclear power innovations.
    1
  549. Ubi is not the Star Trek economy. Ubi is the use of simple to qualify for benefits paid to every qualifying individual at the same rate. Examples include old age pension and child benefit. Note that the children and the pensioners get different amounts. This is in contrast to complex means tested benefits which are expensive to administer and need to be reassessed very often. In contrast, the Star Trek economy is based upon a post scarcity economy. An example in current usage is taking the existing plastic bonet catch, scanning it in to a model, and then 3d printing a replacement. The original component costs 15 pounds for my vehicle. The scanner is basically a lazy Susan with the component on it, combined with an x-box multi camera tracker. This produces a computer model which can be distributed basically for free. It is then downloaded, and printed and the price is in pence. this is basically how replicators are used in Star Trek, and the cost is low enough to be basically free. This contrasts with how it was in the seventies, where everything you used had to be provided physically, with all of the costs that go with it.
    1
  550. ​ @robertbutsch1802 yes it is called having a windows installer program so you can install your driver.
    1
  551. when it triggers a well known pre existing bug in the kernel which has not been fixed after a decade, yes microsoft has some share in the blame. it was crowdstrike which crashed the machines, but it was microsofts failure to fix the bug which kept them down and required on site repair and remediation from tech support.
    1
  552. put some small amount of time into helping open source projects, then you can show your commit log as evidence of experience.
    1
  553. ​ @nezbrun872 says the guy who does not get how ci and cd work. the purpose of both is to use tests to block the release if there is a problem in the code. if you don't use it you are just hoping that when you do release it has none of the issues the tests could have caught. ci and cd would definitely have caught this one, as would canary releasing.
    1
  554. that is what caused the boot loop. the correct answer is on error disable what broke, retry.
    1
  555. like any country, they have the right to make their own decisions based on their own values, along with the need to take responsibility for the consequences of those choices. you want to lock people up for 6 years for refusing to deny their sexual orientation, that is fine, but then you have to cope with the more developed countries warning their own citizens about it not being safe to go there. on top of that you have to cope with the fact that at least 10 percent of the population in the parts of the world where it is safe to talk about are open about it. these 10 percent will then not come to your country to be doctors, nurses, teachers, engineers, or to do any of the jobs that you want them to do to develope your country, and neither will their family members who might face 6 years in jail for not denying the status of a family member. this will affect your speed of development which is the price for your choice. it might not be the priority of your politicians now to deal with the problems caused those from abroad who have expertise you need, but how long will it be before the side effects of these choices come back to bite you in your wallets? how much slower than your neighbours can you afford to be and for how long before you are forced by need to be a little less strict about those born abroad. if you need convincing of the price of not playing well with others, just look at the financial impact of russia trying to say we can continue perfectly well without everyone else. look at the cost to china because their courts bend over backwards to favour locals over foreign businesses. we live in an interconnected world, and it is no longer possible to ignore this fact.
    1
  556.  @gruntaxeman3740  because you cannot run the flight arrival status system an a desktop, it has to be where you can see it, which makes it hard to reach. same with kiosk type systems, and any type of system where you do not want the operator to have full access to the machine. anything working like an autopilot, where it matters that it does not fail while in use, and many other use cases.
    1
  557. you are all getting the timescales wrong. it took 20 years to go from everyone using horses to everyone using cars. it has taken 50 years to go from everyone being in low skilled low pay jobs to the point where most people can't even find such a job, and most of those jobs are things like being serving staff. yes we need to have the conversations about taxation, social security, upskilling those whose industries have been automated out of existence, how to cope with major disruptions like automation and global warming, but we need to start by asking where are we now, where are we going, do we want to and can we go somewhere else instead, and how do we change things to get to the right place
    1
  558. The reason the British were viewed as obstructionists is that a lot of others were happy to have the UK take the heat for voicing their own concerns. Now that the UK is out, they have to be their own voices. Also there has been a major problem with migration to the UK for decades, and only hard brexit gave the UK the option of addressing the problem, not that the current minor changes have made much difference.
    1
  559.  @CHALETARCADE  hi, lots of people like to believe that there are lots of ways you can control migration in the eu, but the free movement regulations seriously curtails them in practice. basically you can only expell someone if they are poor and have not had a job for 3 months, or if they get convicted of a criminal offense resulting in jail time. as far as i am aware, under every other circumstance they can just come back, and those who have to leave due to no job can come back as soon as they find a new one. i should also point out i am pro migration, i was just pointing out why the constraints of free movement forced a hard brexit.
    1
  560. If you have a form of ubi which is paid identically to every citizen, then it would allow for a reduction in the minimum wage, but people would be able to afford to not take these jobs, at the expense of higher taxes. While having a non zero form of such a benefit is of value, having other variants of ubi are of more value. Paying one for all qualifying children another for the disabled, another for veterans, and another for the elderly all give similar benefits, while being able to be trailered to the needs of those groups individually. A child does not need the same income as a pensioner, so they can have different levels.
    1
  561. ​ @AndrewSmithDev what you are doing there is exploratory testing to understand the external library. A well written library will separate the core functionality from the user interface, so you can write a test providing your input with your guess as to the output, and correct the test if the result does not match. If the same input gives different outputs to the same input, use a different library because the non-deterministic nature of the library code responses will cause nothing but problems. How will you know if your code using the returned value is correct if you don't know what the returned value will be? The only way around this is to log the input to the library and every respone, and then create lots of tests covering every response to make sure it does not return something daft, and then expect previously unreported values to be returned in production. For most tasks that is a level of risk that is just not worth the costs involved for the value provided.
    1
  562. only the first time when the build does not match, and you can automate some of that. you are basically having to debug what is different in the builds. once it builds reproducibly, the tooling stops you having to do all of the work again.
    1
  563.  @MaxusR  which is the entire point of reproducible builds. if you cross compile gcc using llvm, and then use that on a machine with another architecture to cross compile llvm using gcc, you can be fairly sure that your new llvm install has not been hacked by the compiler. if i can then do the same thing, and get a bit perfect copy, we can both be sure that the same source code produces the same output. it does not stop the xz attack, but there are other parts of the supply chain testing which help catch that.
    1
  564. ​ @ProfessorThock using the calculator example, if you have a test called two times two equals four, and it fails, you know what you are testing, what the answer should be, and what code you just changed which broke it. After that, it is fairly easy to find the bug. If you write code using test first, first you prove the test fails, then you prove the code makes it pass. If you do tdd, you also prove that your refactoring didn't break it. Finally, when a new change breaks it, you know right away, how it broke, and the new code that did it. Much easier than having 18 months spent doing waterfall development, throwing the code over the wall, and hoping integration or testing departments can find all the bugs.
    1
  565. one point, while i don't disagree about the racists, the example you used for riggers is clearly talking about prosecutors going after those investigating the people trying to find evidence that the election was rigged, rather than going after those suspected by maga of rigging the election, hence riggers in this example.
    1
  566. There were machines at the time which did not even have a keyboard, and some systems worked using the ansi or ebdic character set, rather than ascii. Also, the querty keyboard layout is only standard in English speaking countries. My amiga in the 1980s had a German keyboard which was not querty.
    1
  567. most of the people saying didn't it do well are ignoring the nature of statistical ai. first, it only checks what is plausible, not what is right. second, you ask it to distinguish these two sets of photos, and it accurately sorts them into those with tanks hiding in the woods, and those without. when you give it another set of hidden tanks, it fails miserably. this happened. what it had learned was that the tanks appeared on sunny days, and they were not there on cloudy ones. this is why they hallucinate, you do not know what they do, only what you wanted them to do. third, to get past a certain point, you need an increasingly good model of the problem space. this is not how statistical ai works, and thus is a major limitation in how good black box ai can ever be.
    1
  568.  @Me__Myself__and__I  no, i was not using it to show my ignorance, but to give a clear example of how the black box nature of the system leaves you vulnerable to the problem that you cannot know how it got the result, and that functional equivalents of the same issue are inherent to the black box nature of the solution. almost by definition, llms specifically, and black box ai more generally have the issue that literally the only way to handle the system getting wrong answers is to surround it with another system designed to recognise previous wrong answers, and return the result it should have returned in the first place, thereby bypassing the whole system for known queries with bad answers, but removing all mechanisms to update the system to get smarter so as to not only avoid the known bad, but reduce the number of unknown bad. it also has an issue of the results being poisoned by bad training data, but my point is the difficulty of detecting when this has happened, combined with the inability to fix the issues fundamentally compromises the usefulness of such systems for any problems which really matter, as in those problems typically you need to know no only that it is right, but why it is right, and you need to know it fast enough for it to make a difference. while i am a fan of ai done well, too often it is not. not only do you need the right type of ai for the right problem, but for non trivial problems it needs to be able to give and receive feedback about what worked and what did not. black box ai leaves you with the only answer to why being because the authority in the form of the ai said so. i don't think that is a good enough answer for most problems, and it really is not for any number of jobs where you might later need to justify not only what you did, but why.
    1
  569.  @TheArtificialDragon  while there are a number of places where a plausible answer is good enough, this is vastly outweighed by the number of places where you need correct answers, and for those jobs statistical black box ai just isn't up to the job for any number of reasons.
    1
  570. ​ @sirseven3 they are also reliant on electricity, but that does not make it an electrical problem.
    1
  571.  @sirseven3  i did not. to get out of the boot loop, you have to go into safe mode, but on locked down machines the local users have no way to do that. pxe boot would solve that issue, but would create a raft of new ones which is why a lot of these companies have chosen not to use it. others are just not aware of it.
    1
  572.  @sirseven3  i was not advocating it, only saying it was an alternative which changes one set of issues for another one. it might work for your use case or not, but if you don't know it exists you cannot make the informed choice about using it or not.
    1
  573.  @sirseven3  pxe boot only needs to get you from boot to the root shell, after that you can manage it with ansible to make it as user specific as it needs to be. still not recommending it, just saying it is an option which might fit, so you need to know about it. as to scaling, i have seen systems where it clears the memory on startup, and does a full reboot on every logout for hotdesking. this system did not even have persistent drive partitions, as it recreated them on reboot, loaded the operating system, let you login using remote authentication, installed any additional programs your user name required, and then stopped you from saving stuff on the local drive. a few of the machines actually powered down when you logout, so it did not even have persistent memory. your files were required to be stored on the network drive, which was then redundantly merged with the remote site, so the site could burn down and you would not lose your data. it worked for them, and the only issue they had was new users complaining either that they could not save locally, or moaning if it could but did not survive the reboot. they soon stopped trying to save locally.
    1
  574. ​ @warpedgeoid black box statistical ai has the issue that while it might give you the same results, you have a lot of trouble knowing how it got those results. this is due to the fact that it does not model the problem space, so is inherently about plausible results, not correct results. there is an example from early usage where they took photos of a forest, and later took photos of the same forest with tanks in it, and trained the system. it perfectly managed to split the two sets. then they took some more photos with tanks, and it failed miserably. it turned out it had learned to tell the difference between photos taken on a cloudy day, and photos taken on a sunny day. while this story is old, the point still applies. the nature of this sort of ai is inherently black box, so you by definition don't know how it gets its results, which makes all such systems not suitable for man rated and safety critical systems. symbolic ai like expert systems on the other hand have a fully auditable model of the problem space as part of how they work. this makes them just as checkable as any other software where you can access the source code. this is referred to as white box ai, as you can actually look inside and determine not just that it produces the right result, but why and how it does it. this sort of system should be compatible with aviation standards.
    1
  575. yes they do. this issue has been litigated a number of times before, both by federal judges and by the supreme court (contrary to cannons assertions in decision). every single one of them has been judged to be legal. even worse for cannon, every current defendant will have their lawyers try and use this to get the case dismissed, and every past defendant will use this to try and appeal their case. in both cases you will have the defense using a badly thought out ruling by inexperienced and potentially corrupt judge cannon verses every prosecutor using well thought out rulings by very experienced federal judges and supreme court rulings against her. this will put it in the supreme court again and again until they get fed up of taking the flack for not overturning and releasing lots of very bad people. as they have already abolished the principle of binding precedent, they have given the green light for every lower court to ignore them.
    1
  576.  @chrisflores5705  sourced from https://youtube.com/watch?v=YP-dEUeo5S8&si=R_-83uVRrbEr0bJq us vs nixon supreme court case about the nixon tapes dc judge dabney freidrick confirming mueler in the trump russia investigation dc judge amy burman jackson in us vs paul manfor virginia judge t s ellis in us vs paul manfor
    1
  577. don't forget the cyc project. it is much fu4ther along than you think, but still has a long way to go.
    1
  578. the problem is not with the learning. if it was using the same input to generate rules for a symbolic ai like an expert system, then used the rules to write code that would be fine. that is not how it works. with statistical ai, it creates plausible generated code, and as your specification gets close enough, the training set approximates towards a single sample. this results in a 1 to 1 copy. if you think this is a spurious argument, multiple book authors are suing for exactly this case. the problem with violation is that it applies everywhere, and the ai has no audit trail to prove it is not guilty. this leaves both the user and the ai owner with potentially huge liabilities which they cannot defend, where they could be sued anywhere. the only significant defense for software is the obviousness defense, where near identical code implements basically the same function, but it is not collecting that data either. in the end, the ai copyright infringement issue will not generally be solved with software, but with books, audio, and video, and then the licencing issue will be an addition on top of all that. think of it like how microsoft got away with blatant monopoly abuse in the us, but then had to mitigate their behaviour expensively in the eu because they did not implement rules as silly as the ones in the us. also, remember that the movie alien nearly could not be released due to the script being almost an exact copy of one of the stories in a e van vogt's voyage of the space beagle. it was only able to be released because the author liked the way the director made the film, and both sides w3re willing to talk in good faith.
    1
  579. ​ @nschoem that perception definitely exists, and is based upon intuitive feelings that writing tests with your code takes longer, which is true but not really relevant. What happens with feature addicted managers is that they start off saying get the feature to work and we can write the tests later. Then they prioritize the next feature over testing, resulting in no tests, and what few tests do get written are fragile because the only way to test most code that was not designed with tests in mind tend to rely on implementation details to work at all. This results in code with increasing levels of technical debt which gets harder and harder to debug and extend, making everything slower. The only way to fix this is by refactoring your way out of the problem, which needs tests, and test after tests are harder to write and fragile, so you end up writing tdd style tests for the refactored code so you can just delete those original tests as they cease being helpful. You still have to write the tests in either case if you have a long lived or large code base, but tdd style tests first tests tend to be API tests which don't depend on internal implementation details, and thus don't break much.
    1
  580. the rules have been changed, so now they at least have to follow lawful processes and get permission.
    1
  581. agile technology has found a number of things which make programming slower and harder. every piece of research says that the higher your level of technical debt, the more tricky it becomes to add a simple change, as you often have to fix that debt first. ci, tdd, and cd all build on top of that research to provide demonstrable ways that it can be handled, which speeds up development. i watched both of his crowdstrike reviews, and read everything from crowdstrike about how it happened. this basically comes down to them shipping the code without sufficient testing and monitoring. the response of everyone to this has been to say how it could have been detected before it even shipped, and shock that they did not do what even app developers do by default. he literally wrote the book on continuous delivery, so of course his channel is going to cover related issues.
    1
  582. How it works is that America always claims the maximum it can in scope, with the intent that not all of the overreach will be corrected by the courts, and the people making the rules fundamentally do not understand how science and technology works, resulting in rules which might have mostly worked when remote working was nearly impossible, but do not work now.
    1
  583. no this is a not doing ci or cd failure.
    1
  584.  @klafbang  what they are admitting is looking for ways to get the code without signing the eula, and this not breaching the rules of the eula. every business big enough to need a legal department looks for the cheapest way to do this sort of thing, and then looks for alternatives, and that is legal.
    1
  585. the Chinese room problem is largely pretentious garbage by those who cannot cope with the idea that the reasoning produced by symbolic ai is just as valid if it was produced by a human as if it was produced by a machine. their main premise is that the identical chain of reasoning from the initial data to the output, annotated at every step to produce an identical document with the correct answer and explanation is somehow only valid when a human does it, which is total bull. it is basically saying that it can only be implemented using human brain matter, but if you did, they would then only look for another reason to not accept the result, based upon their insecurity over not being as special as they used to think they were. white supremacists share the same issue for much the same reason.
    1
  586. unfortunately, for all but trivial cases you have to tell it the problem, and it has to tell you the solution, both of which require the use of language.
    1
  587.  @mandy2tomtube  true, life started out with no language, and no models of the environment, and really rubbish decision making. which is all irrelevant. black box ai has a number of fatal flaws in the basic design, which fundamentally cap the level to which it can go, and the rolls where it can be applied. this is due to the facts that it has no model of the problem space it is working on, and thus gets minimal feedback, and the fact that for man rated systems, you need to be able to ask not just if it got it wrong, but how it got it wrong, so you can determine how to fix it, and apply the patch. at the moment we cannot know how, we can only wrap the system in a conventional program, spot examples it has got wrong in the past, and return the right answer. unfortunately this does not stop it getting nearly identical cases wrong. you also have no method with which to fix it, which is especially important as the latest research has found the majority of the models to be full of security holes. the only way to resolve that is to stop using statistical ai as anything but a learning accelerator, and move to white box symbolic ai instead, which is what cyc does. we don't limit the options for flight to man powered flight, nor transport in general to how fast your horse can run, so how we got here does not matter much, it is how we get from just before here to just after here that matters, and statistical ai is just not up to the job. for anything else, you need models, which are either mathematical, or expressed in language.
    1
  588.  @mandy2tomtube  i understand what you are suggesting, i just find that with black box and statistical ai, the fact that you cannot know the question it is answering (as opposed to the one you are asking) fundamentally limits how useful it can actually be, and that is even before you get to the problems of how to fix wrong answers and security vulnerabilities. fundamentally, there is a difference between white box symbolic ai and black box statistical ai. black box concentrates on giving you plausible results, but you don't know how it derived them. white box concentrates on giving you correct results, and you can drill down and figure out why it gave the answer it did. that fundamental difference makes black box ai very risky 8n any application dealing with safety, or legal liability. as an example, if you use it for judging university admissions, is it refusing the black man entry because he is likely to fail, or is it just picking a white man because the university who has not really had any black students has a historic trend that most of the students who succeeded were white? this could matter if the excluded student decides to sue, but with black box ai, you just cannot know which one is true (there are ways, but they are both hard and expensive), and thus cannot prove that you are not discriminating.
    1
  589.  @MarkusEicher70  people have different needs, which leads to different choices. red hat built it's business on the basis of always open, and base yourself on us. later the accountants started to complain, and instead of reducing the developer headcount through natural churn, they decided to go on a money hunt, closing source access to a lot of people who believed them, thus causing the current problems. rocky, alma, parts of suse, oracle linux and clear linux exist to provide support to people left high and dry after red hat decided not to support the needs of those customers. as red hat is an enterprise platform, the support needs can be up to 10 years if you get a problem at the right part of the cycle. third party software is often only tested against red hat, so you either have to pay them the money and sign up to their dodgy eula, or use one of the derivatives. the open source mentality views access restrictions as damage and looks for ways around it. moving to other non derived distributions comes with added costs, as not all the choices are the same and the software you need might not be tested against those choices, so you have to do a lot of testing to make sure it works, then either fix it if you can get the source, or find alternatives. this adds costs, hence people getting annoyed.
    1
  590. ​ @lucashowell7653 the tests in tdd are unit tests and integration tests that assert that the code does what it did the last time the test was run. These are called regression tests, but unless they have high coverage and are run automatically with every commit you have large areas of code where you don't know when something broke. If the code was written before the tests, especially if the author isn't good at testing, it is hard to retrofit regression tests, and to the extent you succeed they tend to be flakier and more fragile. This is why it is better to write them first. Assuming that the code was written by someone who understands how to write testable code, you could use A.I. to create tests automatically, but then you probably would not have tests where you could understand easily what the test failing meant due to poor naming. When you get as far as doing continuous integration the problem is even worse, as the point of the tests is to prove that the code still does what the programmer understood was needed and document this, but software cannot understand this yet. If you go on to continuous delivery, you have additional acceptance tests whose purpose is prove that the programmer has the same understanding of what is needed as the customer, which requires an even higher level of understanding of the problem space, and software just does not understand either the customer or the programmer that well either now or in the near future. This means that to do the job well, the tests need to be written by humans to be easily understood, and the time which makes this easiest is to write one test, followed by the code to pass the test. For acceptance tests the easiest time is as soon as the code is ready for the customer to test, adding tests where the current version does not match customer needs. Remember customers don't even know what they need over 60% of the time.
    1
  591. ​ @shining_cross the point of a multi core server is that unlike in the old 8bit days, your computer is not just doing one thing. If you want your code to go fast on multi core, shard it, just like is done with databases. This is what microservices were invented for.
    1
  592. ​ @ameer6168 the only way to deal with such a client is to do continuous delivery based on incremental development, where you get sign off on acceptance tests with each new test cycle, combined with penalty fees for rework that needs to be done for excessive changes to already approved acceptance tests. This is what acceptance tests are designed for, and like with any customer, you have to make a choice about the value of working for them. If your rework fee is high enough then either you will stop them from keeping changing them, makes enough extra cash to be worth keeping them as a client, or you will know they are not worth the cost of keeping them.
    1
  593. It is in the nature of means tested benefits to create such benefit traps and disincentives to work. This is why everyone is looking at non means tested benefits paid equally to everyone who qualifies as an alternative system. What people forget is that universal does not mean paid equally to every citizen, but means paid equally to everyone who qualifies for it, like one amount for children, a different amount for the retired, etc
    1
  594.  @meibing4912  i specifically was talking about the entirety of social security benefits, which usually contain a significant part which is means tested. these are usually fairly intrusive, expensive to administer, and usually get things wrong both ways due to the complexity involved. this leads to lots of issues and perverse incentives, which is why developing countries don't like them, and why everyone is looking at alternatives.
    1
  595. which is why continuous integration uses regression testing of the public api, admittedly implemented with unit tests, rather than a unit test everywhere approach. it is also why it ends up with near 100% coverage, as the public api should be stable between major versions.
    1
  596. this is why continuous integration uses automated regression testing of the public api, rather than a simplistic cover everything with unit tests approach. as your public api should be stable between major versions, the tests don't break, or if they do, you find out before your users. because your public api is stable and does not expose internal details, you do not need to write tests for your private code, as it already gets called with yhe existing tests or it is dead code and can just be deleted.
    1
  597. the reason a lot of mainstream media is rubbish is that it is greenlit by accountants trying to cash in on the next last big thing, then micromanaging the story to try and justify their jobs. this does not produce quality in creative industries.
    1
  598. which is why gen 2 meters had to be developed, because the security services were screaming about all that lovely data being transmitted unencrypted. this is before you get to the problems of companies not being able to stop their data leaking.
    1
  599. Ada was not used because it did not exist. Having the compiler be a few years old and using multiple compilers is to catch compiler bugs. Also, c++, ada, and a lot of other kitchen sink style languages are too big to compiler, test, and understand easily, which is why there is so much bugger c++ code out there.
    1
  600.  @isodoublet  ada is basically 7 different special case languages shoe horned intl a common syntax. As to c++, I'm quoting some of the compiler writers when I say that the language is huge and complex, which does not really affect the standard cases, but makes all the odd corner cases a complete pain to locate, find the definitive documentation for, and test if the compiler gets it right for those odd cases. Also, it includes additional problems to do with how classes and inheritance interact which are not present in the c languages, which stops at abstract data types. And that is before you get into some of the funky ways core libraries have been implemented which make c++ badly suited for embedded and safety critical uses.
    1
  601. ​ @everyhandletaken the guy who shot the video makes a lot of allegations that things he does not like or does not understand makes everything on a shareware market place dave used to run a scam. the then goes on to say that everything hosted there was therefore dave being a scammer due to this, and that dave settling a nuisance lawsuit rather than fighting it al, the way makes him guilty of covering up being a scammer, despite that having nothing to do with what the settlement agreement actually says. the whole video was total bs from someone with a total lack of understanding of the subject he claims to be an expert on.
    1
  602. ​ @temper8281 this is the argument I've heard from everyone who can't write good tests, as well as from those who don't understand why testing matters. If you are just doing a little hobby project which nobody else is ever going to use, and is never going to be extended, then you can mostly get away with not having tests. As the project gets bigger, or more popular, or has more developers you need the tests to stop regressions, communicate between developers, spot coupling, and numerous other things, most notably to deal with technical debt. The more any of those factors rise, the higher the cost of shipping broken code, and thus the more the tests matter. By the time you need continuous integration you cannot do without the tests, but the harder it is to retrofit them to your existing legacy code base, so it is better to learn how to do testing earlier and add it to the project sooner.
    1
  603. risc vs cisc is not being talked about directly, but is fundamental to if the future is cisc with bigger caches, or risc with way more cores with smaller caches. and the answer to that is we don't have the data yet to know which way thecfuture will jump, but the answer will come from smartphones and risc in the data center.
    1
  604.  @echorises  i agree version control is to important and useful to only be used for programming. i would much rather have a repository of useful txt files handled with version control, instead of having microsoft word trying to mishandle multiple copies of a binary word document which has been modified by multiple people. git is just the best version control client we have. unfortunately, higher education has little to do with generating new knowledge. it is mostly a certificate mill used to generate enough income to pay for teachers and administrators to have a job. even worse, in higher level education a certain amount of teaching is forced upon post doctoral students without them being g8ven any teacher training, while professors are jumping through hoops trying to get external funding to pay for a very limited amount of research, with most of the time being used with students and funding hunts. worse still, until you get tenure, and thus don't need to worry about having a job next year, your actual research wil be constrained by the university to those non controversial bits of the subject that will help you get tenure. only after getting tenure are you free within the funding constraints to actually do any research you want in what little free time you are given. with the possible exception of japan, no country has yet produced a system where there is a part of the university which takes the pure research, funds getting it to the point where it is usable by industry, and then licenses the technology to industry to generate revenue to fund the part which takes the pure research and develops it. at that point, your tenured professors would actually be being paid to do pure research combined with developing existing research into stuff usable by industry, while the untenured ones could use the university development fund to find research which would be funded by the university, would help towards tenure, and would be passing knowledge to students. the post doctoral students would still split the time doing work which the professors had got funded combined with teaching. i would say it should not be possible to get your degree without having to get a teaching qualification as part of it, as so much of the time of professors and post docs is forced to be spent on teaching. as to producing students fit for industry, that has never been part of the goals of universities. with the exception of Germany, no country has a system of general education which is not designed with the intent of filtering out those not fit for an academic career, and basicaly throwing away the rest. germany does actually have a second path, dealing with some vocational qualifications. however most education is designed to take those unsuitable for academia and turn them into nice quiet sheeple, which we just cannot afford any longer.
    1
  605.  @NihongoWakannai  i think the point he was making is that free education applies to an increasingly small number of people in an increasingly small number of places, especially as you move to higher levels of education. outside of that context, you do incur debt or at least costs, so the degree in question needs to provide some value outside the road to tenure, which most degrees are not constructed to take into account.
    1
  606. they did not validate, that was part of the problem.
    1
  607.  @carfo  sorry, let me clarify. when you ship kernel level code with configuration files, (and for most other code as well) you write a validator to catch misconfiguration. they obviously did not do this well, as it passed a file it should not have. this is then tested by putting the validator usage at the start of the continuous integration tests, so that if it fails the file, the file does not get shipped. they did not do that, they just ran the validator by itself, and when it passed, built the deployment file and shipped it with no further testing. that is almost exactly what i thought happened, and what i meant when i said they did not validate it. having passed ci, you then deploy locally to test, and if it breaks there, you track down what broke, and don't ship it. they subverted this step, but it would have caught the broken validator. after that, you run a canary release system to do a gradual rollout. if it had gone first to test, then internally to the company, and only then to the world, it would still have been caught before it escaped into the wild. After that, the microsoft driver signing process could have taken steps to make it so that very few drivers which are actually boot critical could put the kernel into a boot loop, but despite having had this happen more than once, it does not do so. only with all of these failures in place do you get to the point of having it deployed and boot looping on locked down machines.
    1
  608. I find that to be an easy question to answer. Write the test at the next level up only when you have tried to write it at the lower level and found it too hard. More importantly, if you later find that you can test the code using new lower level tests, remove those higher level tests that are redundant and therefore provide no added value. As you will perform new work using tdd,, the refactored new code will be more testable, moving the tests down the levels of the pyramid, until you end up with code using the higher lever tests which is little more than a translation layer to the new functions which exists only to support older code not moved to the newer, more testable API. At this point you can add development comments reporting that the API is deprecated and use whatever the new API is instead, further pushing refactoring of older code.
    1
  609. anyone not self employed, and earning is paying national insurance contributions, which just go into the general pot. with very few minor exceptions it is no different than having a second set of income tax. everyone with a vehicle pays road tax which does not go to roads, and fuel duty which also has nothing to do with transport, everyone also pays vat on everything except stuff in a few restricted categories. your average person on minimum wage needing a vehicle for work pays a lot of tax, and a heck of a lot more as a percentage of their income. this country needs a comprehensive review of the tax and benefits system with an aim of moving anyone on benefits away from having to pay tax at all. it also need to look at how to get the better off to actually pay a fair amount of tax, but that is a much harder problem.
    1
  610. As the promotions procedures are required by the constitution, and tuberville is forcing a procedure which cannot work, surely this falls under the same insurrection against the constitution provision that trumps refusal to leave office makes him intelligible to hold office. If so, then surely someone in his home state could start a legal case to have him removed as intelligible under 14.3 like with Trump.
    1
  611. just not true. we are actually producing less children than the adults we currently have in the uk, and in scotland it is even worse. when we need extra workers, we have to import them, as we do not have enough, and those we do have are under qualified.
    1
  612.  @amyshoneye5455  partly, but mostly it is due to improved education. in the early 1800s we produced typically 8 kids per family, and most of them died. when the nhs was introduced, most of those deaths became preventable. as more kids survived, and contraception became available, the number of children per couple produced went down. when full employment, a job for life, and the ubiquity of unskilled jobs died in the 1970s, we needed to start upskilling the workforce, which we did not even start doing till the 1990s. this lead to a skills gap, with the only option being to import skilled workers a d their families. as your level of education goes up, you tend to have fewer children, which results in the current problem of lots of people too unskilled to keep full time employment, too few people with the skills we need leading to higher skilled immigration, not enough training of the unskilled to make them fill the skills shortage, and rising levels of education leading to below replacement levels of childbirth in local populations.
    1
  613.  @amyshoneye5455  i am not claiming that the immigration levels, and this countries failure to address them properly are not causing issues, they are. most notably, the act of some minorities to self ghettoise by only working for, shop at, rent property from,and get entertainment from people of the same community. we actually ended up with riots due to that, and the cause was people moving here for money, and then trying to live exactly like they did in the old country. migration only works well if you integrate with the people in the new country, whether that is the windrush generation moving to britain, or brits moving to spain. that is a different problem than if we are full, as regards that, there are a number of western countries with higher population densities than ours, so it is not down to density, but down to distribution and provisioning. provisioning is a major problem. for a lot of services, the level of provisioning is determined by the returned figures from the uk census, only taken every 10 years, and widely recognised as not being fit for this purpose. there are a number of things that could be done to replace this, like requiring you to submit the essential information in order to register at doctors, dentists, and schools, but no government has bothered to do it. the other major problem is housing. we have not been building enough houses, and definitely not the right sort. we have known this since the falklands war, and no government has bothered to change the planning rules enough to make a difference, which needs fixing. the other issue is where the migrants go, and how they are treated. skilled economic migrants have to go where they are needed, but hit the provisioning problems mentioned above. this group always ends up being of benefit to the country, and the local economy, but too many politicians treat them like illegal migrants so they can score short term political points, which helps no-one, not even their own party. low skilled economic migrants are largely getting excluded now that eu free movement does not apply, and we move to a more australian points based system, so this is a problem which will be self correcting over time, but mostly they also are of value, just not as much as the skilled economic migrants, and rule changes are helping here a lot. genuine asylum seekers eventually end up going into one of the two above categories, but the rules and the people treat them all like illegals, which seriously hurts their interactions with everyone else, and encourages the sort of ghetto forming mentioned above due to nobody else giving a dam to help them. lastly, you have the illegal asylum seekers and other illegals. the only policy we have seems to be "illegals bad, boo", and basically we need to actually come up with some policies which look at the problems surrounding asylums seekers and illegals, actually come up with some policies which address those problems. at the moment, we don't, and until we do, this will continue to cause massive problems. first we need to deal with the provisioning issue. i gave some possibilities earlier for how to address that. then we need to stop requiring asylum seekers to cluster at the point of arrival, and allow them to work. this will spread out their populations, and remove most of the artificially induced stress points for these communities, easing integration. it will also ease their integration into the legal migrants groups during the long time it takes to deal with their eventual status. as for the true illegals, they need to live somewhere, and work somewhere, so we need to improve how the rules make landlords and employers interact with them, while being flexible enough to accept that nobody is perfect and sometimes they will genuinely get it wrong. the rules need to be about compliance, and the penalties need to be about persistent non compliance.. this will not solve all the problems, but will make a major difference, and the remaining problems will become clearer, and can also be addressed.
    1
  614. no the crash was crowdstrike, the recovery disaster was microsoft.
    1
  615. while i don't usually defend microsoft, their only issue was not fixing the boot loop problem after any of the previous times it happened. the rest is about kernel level drivers and what you do when they fail, which is largely os neutral. everything else is firmly down to cloudstrike.
    1
  616. Testing works best for code which has no side effects, and ui work is basically founded on top of side effects, so you have to already have some skill at testing to even consider writing tests for ui stuff and expecting them to work as well as they do for pure functions. Learn tdd against some non ui coding project, and then apply what you learned to the ui work. This will encourage you to separate the true ui stuff from everything else, and make both easier to test. This is not to say don't test ui stuff, only that you need to get above a certain level of skill in testing to do it well.
    1
  617.  @geroffmilan3328  or any other kernel mode drivers like networking, sound, video, etc. oh wait, you do. any kernel mode driver can crash it like this, and if you are lucky you have both the knowledge and the access to fix it, if not you have the next case of the same thing.
    1
  618. This is just another case of the diamond dependency problem seen with objects, and should be solved the same way. Make the base abi definitions include semantic versioning info, and resolve it at link time or load time. If it cannot be resolved at that time, don't let the code run. C has always been defined as a source portable language, not an abi portable language, but some system and low level library developers don't help.
    1
  619. yes it will start out with cultural bias, simply because the sources used to start populating its knowledge come from drive by issues in a particular cultural environment, but the solution to that is the same one as for the paradigm shift accelerator. a paradigm becomes popular when it accumulates enough cases where it provides a simpler explanation to a set of complicated examples. it starts to fail as further examples come in which don't fit it well, or at all. at this point you start using the correct answers from the old system to validate the rules you generated to try and explain the problem cases. so, first you encode the existing paradigm. this gives you the ability to answer a lot of questions correctly. then you start accumulating cases it cannot answer, which shows you how it is weak. you then find out what the answers should be for those cases. you then use those cases to come up with new rules, and gradually prune away systems that don't work. then you try and generalise the now correct rules to cover the cases the existing system covers. if it fails here, you prune further, until you get rules that can cope. at this point, you have a new paradigm, and you just have to wait for it to become popular, and for the hold outs to die off.
    1
  620. Buy to let was made a problem in the last rent reform bill. If you own a house and need to move for work, you now need to either bring it up to the current rental codes in order to rent it out, or pay extra tax for not renting it out. This applies to anyone buying the property, which forces the house prices down for legacy housing stock, quite a bit of which cannot easily be upgraded to modern standards. It also forces the prices up for modern upgradable housing stock, pricing a lot of people out of that market. This will have the same effect as the 1970's reforms which basically forced a mass Exodus of landlords until the balance swung back.
    1
  621. @mydogeatspuke the purpose of a tenancy agreement is nothing to do with benefits. It is about predictability and consequences. Also commercial settings have to have a deposit guaranteed by someone other than the landlord. These things were brought in over time in order to protect tenants from bad landlords who would decide to just force you out, or massively raise the rent with no warning, or just decide to make something up to keep the deposit. Similarly it provides the landlord with a basis upon which to extract bad tenants from the property, and get financial judgement against them to be able to recover costs incurred from the bad tenants. As an aside, when you then try and rent from someone else, you have to state any problems, and if you lie then you have instant grounds for eviction. Even with being a documented bad council tenant you lose the ability to get. Council property in another area and make getting a commercial rental much harder.
    1
  622.  @mydogeatspuke  home ownership peaked in the uk under margaret thatcher with the right to buy, and was destroyed under tony blair with the move to outsourcing the provisioning of social housing to housing associations. add to that the above inflation rises in house prices, and most people have to rent. due to scandals over dodgy landlords, these commercial lettings through estate agents have to have contracts, and deposit guarantee schemes. with the latest changes it is even worse, as if you do own a house, if you move for work you either have to pay double Council tax after 6 months for it being empty (introduced to deal with properties abandoned by absentee landlords), or have to bring the property up to the current code for commercial letting, or sell it quick to avoid having to pay in either way thereby reducing your sale price for a quick sale. even worse, every time you have a tenant leave you have to upgrade to the latest standards before you can rent it out to someone new. this leaves the market with a perfect storm. people cannot afford to buy, home owners cannot afford to keep unused homes and rent them out, and nobody is building enough new rental properties and social housing for those without a home that they own. a lot of this was offset by buy to let, but now the compulsory upgrade regulations are killing that option as well. looks like the uk in in for interesting times.
    1
  623.  @shkhamd  partly it is mandatory safety paranoia, but in more general programming if you make sure you check the parameters at the start, you don't need the checking in the sub modules to be as strict, as you know it is engineered to not pass down garbage which you will then have to deal with later.
    1
  624. Too big a subject for a comment. It is covered extremely well in Michael feathers book "working effectively with legacy code". However in general, you write just enough of a test wrapper around the code you need to update, use that wrapper to refactor the code to make it easier to update while writing lower level tests for the changes, then do tdd for the new stuff. This takes you from just having a test that asks does it compile and run, to having a set of high level tests of the old stuff with a small but growing tdd base where you can gradually move the tests down the testing pyramid. Remember the code took a long time to get into it's current mess, and it will take a long time to refactor your way out of it.
    1
  625. if you are happy to pay 4 times as much for your house insurance if you can get it, then you are right, but the poor do not have that choice. with global warming, the choice is between reducing the ongoing contributions to the problem, which costs a lot, or paying even more to recover from the consequences, like back to back huge hurricanes in florida. that is why the aim of net zero, to reduce future costs of dealing with the consequences. same for on demand metering. if you can even out the humps in demand, it makes the entire infrastructure cheaper. having more efficient devices also saves expense all along the line. the problem is that none of these policies consider the poor, who cannot afford the higher upfront costs connected with each of these options. as an example, your primary school child will not wait until bedtime for dinner, so it just costs more. your freeview box wastes 60% of its energy usage on standby unless you can afford to pay the extra 65 pounds for the efficient one. heat pumps don't work unless you have an insulated house, which most people don't, and the poor certainly won't. i could go on, but you get my point. the poor cannot be part of the solution.
    1
  626. ibm have a history of dumb moves, and still have corporate memory of the debacle of giving the pc market to microsoft. however it is clear from statements from red hat employees that the decisions are coming from the current management whose every action and statement shows that despite being in the linux ecosystem for over a decade, they have no idea how it works, or what it means to be an enterprise distro. talk about failing upwards.
    1
  627. ​ @DaniEles-rc7ij sorry, but apple is based on the darwin bsd kernel, which while sharing lots of apis with linux due to the common unix history is not linux.
    1
  628.  @DaniEles-rc7ij  no, osx is based on the permissively licensed mach kernel from the darwin project, a bsd design, with the openstep gui built on top. linux on the other hand is a unix workalike built independently of the original at&t source code, with lots of different guis built on top. however they both use the core unix design philosophy, and being designed to be multiuser from the start have a much better security design than a standard windows install.
    1
  629. remember she has already stated that she believed former presidents were special under the law, and was told this was illegal, as part of her getting in the way of this case illegally and being removed from that part of the case. there is plenty of evidence that she is incapable of being unbiased in any case involving trump, and thus should not only be removed from this case but barred from taking any other trump case.
    1
  630.  @Keepthepeacesharethelove  i agree with you, but to do so she would have to have admitted that there were any rulings which were not perfect, which she seem not to be capable of. her previous statements however show demonstrable bias from her own mouth. i agree she is not competent to be a judge.
    1
  631. x86-64 is being kept in power by windows, which is only relevant on the decreasingly used desktop. netbooks died because smartphones and tablets increasingly displaced the form factor, and chips got good enough that entry level laptops crashed in price. x86-64 is in a similar position. linux has killed windows in the data center, which are now moving to risc because of power and cooling. it never got anywhere in smartphones, which are all risc, and because of this more things are moving to web apps in data centers. then you have the excessive hardware needs of windows 11 and 12, which mean that developing countries will not be able to afford even pirated copies of windows, accelerating the existing trend to ditch it in favour of linux. nobody ever got fired for buying ibm, until they lost the market to the pc they helped create. microsoft are diversifying away from windows as they can see which way the wind is blowing, so the only remaining question is how amd and intel pivot when the wintel duopoly dies.
    1
  632.  @zalnars7847  so you are seriously claiming that the addition of the tpm chip for windows 11 and the ai chip for 12 are not increasing the price for the base windows hardware, and that this will not be an issue for anyone needing to replace multiple machines, nor for all of the people outside the west, who mainly run pirated windows as they currently cannot pay more than a months wages for the existing machines, and thus will not be able to run even pirated versions of 11 and 12. india already has 15% linux desktop usage for these reasons, and 11 and 12 will make this grow faster. just because some wintel fanboys in the west can afford the latest microsoft tax does not mean everyone can. the other points have similar supporting reasons.
    1
  633. ​ @algernon69 but the idea of being at the edge still applies. Generally you have the stuff you write, the glue logic to ask what they write for the data, and the stuff at the edge. With the stuff you write, write the code in a tdd way so that your stuff is testable. This naturally moves the logic into separate functions which you can easily figure out the test data for, and thus init test. The rest is just how you ask their code for the data you need, which you then pass to your nice testable function, and thus you have moved their stuff to the edge, and in the process produced a much cleaner design.
    1
  634.  @algernon69  mocks are not easy and are usually a sign that the code was not designed with testing in mind, but splitting your code up this way means that you end up with a lot less code having to be tested inside the mock, which makes the mock easier.
    1
  635. the reason they say your only choice is a smart meter is because the only ones being built is a gen 2 smart meters, so that is all they can get.
    1
  636. If you expect your first draft to be crap, still do tdd to evolve a good API, and use your tests to provide an executable specification of the API. At that point you can either throw away the code, in which case the.number of passing and failing tests gives you a measure of how far you are from fully reimplementing the API, or if your editor or ide can highlight dead code you just put your new code at the start of the function and delete the dead code as it gets made redundant. Because you are testing to the API, there is no reason to implement it using the same set of private functions you used in your first draft, and can refactor the new functions to be better as you generalise your new code.
    1
  637. ​ @georganatoly6646 this is where the ci and cd distinction comes in useful. using c for illustrative purposes, you decide to write mylibrary. this gives you mylibrary.h which contains your public api, and mylibrary.c which contains your code which provides an implementation of that public api. to the extent your tests break this separation, they become fragile and implementation dependant. this is usually very bad. by implementing your unit and integration tests against the public api in mylibrary.h, you gain a number of benefits, including: 1, you can throw away mylibrary.c and replace it with a total rewrite, and the tests still work. to the extent it does not, you have either broken that separation, or you have not written the code to pass the test that failed. 2, you provide an executable specification of what you think the code should be doing. if the test then breaks, your change to mylibrary.c changed the behaviour of the code, breaking the specification. this lets you be the first one to find out if you do something wrong. 3, your suite of tests gives lots of useful examples of how to use the public api. this makes it easier for your users to figure out how to use the code, and provides you with detailed examples for when you write documentation. finally, you use the code in myprogram.c, and you have only added the functions you need to the library (until someone else starts using it in theirprogram.c, where the two programs might each have extra functions the other does not need, which should be pushed down into the library when it becomes obvious that the code should be there instead of in the program). you then use ci to compile and test the program, at which point you know that the code behaves as you understand it should. this is then passed to cd, where further acceptance tests are run, which determine if what you understood the behaviour matches what your customer understood the behaviour to be. if there is a mismatch found, you add more acceptance tests until it is well enough documented, and go back and fix the code until it passes the acceptance tests as well. at this point not only do you know that the code does what you expect it to do, but that this matches with what the customer expected it to do, in a way that immediately complains if you get a regression which causes any of the tests to fail. in your example, you failed because you did not have a program being implemented to use the code, so it was only at the acceptance test point that it was determined that there were undocumented requirements.
    1
  638. ​ @deanschulze3129 there are reasons behind the answers to some of your questions, and I will try and address them here. First, the reason tdd followers take automated regression testing seriously is that a lot of the early advocates came from experience with large teams writing complex software which needed long development times. in that context, regression tests are not optional, as lots of people are making lots of changes to different parts of the code that they don't know very well. This led to the development of continuous integration, where code coverage for regression testing was essential. Tdd later came along after the development of continuous integration, with the added awareness of technical debt to add refactoring to the continuous integration cycle. You don't seem to understand just how recent the understanding of how to do regression testing is. Even the idea of what a unit test is was not present in the 2012 version of the book "the art of software testing", but it forms the base of the testing pyramid at the heart of regression testing. Also, automated regression testing cannot work unless you get management buy in to the idea that code needs tests, and broken tests are the most important code to fix, which is even harder to get quickly, but all of the tech giants do exactly that. You cannot do continuous integration without it. Even worse, you cannot learn good test practices trying to fit tests to code written without being tested in mind. The resulting tests tend to have to depend on implementation details and are often flakey and fragile, further pushing against the adoption of regression testing. As to statistics, the dora metrics produced from the annual state of Dev ops report clearly indicated that no testing produces the worst results, test after initially provides better results than no testing, but only up to a certain point due to the previously mentioned problems with retrofitting regression tests to code not designed for it, and test first produces ever faster production of code of higher quality than either of the other two. The methodology surrounding the report is given in detail in the accelerate book, by the authors of the state of Dev ops report as they got fed up of having to explain in detail to every new reader they encountered. Bear in mind, the number of programmers doubles every five years, so by definition most programmers have less than five years experience in any software development methodology, let alone advanced techniques. Those techniques are often not covered in training courses for new programmers, and sometimes are not even well covered in all degree level courses.
    1
  639.  @aheendwhz1  about halfway through the thread, he said that he was not only opposed to rust in his part of the kernel, even though by this point it had been made clear that he literally had to nothing but get out of the way, but that he was going to do everything he could to kill the whole project. That sounds like wanting to burn it to the ground to me.
    1
  640. there are a lot of moves microsoft could have taken over the decades which could have stopped it, they just did not do it, hence the boot loop.
    1
  641.  @trignals  not really. the history of programming has been to migrate away from hard to understand, untestable, clever code which almost nobody can understand, towards code which better models the problem space and the design goals needed to get something good to do the job, which is easier to maintain due to the costs moving away from the hardware, then the initial construction, till most of the cost is now in the multi year maintainence mode. there are lots of people in lots of threads on lots of videos about the subject who seem to buy the hype that you can just throw statistical ai at legacy code, it will suddenly create massive amounts of easy to understand tests, which you can then throw at another ai which can just trivially create wonderful code which will replace that big ball of mud with optimum code behind optimum tests, where the whole system is basically ai generated tests and code, but built by systems which fundamentally can never reach the point of knowing the problem space and the design options as they fundamentally do not work that way. as some of those problems are analogous to the halting problem, i am fundamentally sceptical of the hype which goes on to suggest that if there is not enough data to create enough superficial correlations, then we can just go ahead and use ai to fake up some more data to improve the training of the other ai systems. as you can guess, a lot of these assumptions just do not make sense. a system which cannot model the software cannot then use the model it does not have to make high level design choices to make the code testable, it cannot then go on to use the analysis of the code it does not do to figure out the difference between bad code and good code, or to figure out how to partition the problem. finally, it cannot use that understanding it does not have to decide how big a chunk to regenerate, and if the new code is better than the old code. for green field projects, it is barely plausible that you might be able to figure out the right tests to give it to get it to generate something which does not totally stink, but i have my doubts. for legacy code, everything depends on understanding what is already there, and figuring out how to make it better, which is something these systems basically are not designed to be able to do.
    1
  642. ​ @alangarde2928 i agree, the process should be validate and test before building the deployment file which you sign. test the deployment file, only release if it passed the test.
    1
  643. ​ @trevordennis even easier, make the note when you first run, so you only do it once. change the note after successful startup, and check the note does not contain the wrong value next reboot.
    1
  644. Not only that, but when you break the API you feel the pain before your users even find out about it, which just goes to show that a lot of framework and core library developers are not doing regression testing and continuous integration.😂
    1
  645. ​ @Jadestonk sure they do, but eventually someone else has to come along and fix up their legacy code mess to keep it working. This is one reason not allowing check in of code without tests generally improves the code base, but of course the same people will also produce rubbish tests because they never leared how to test.
    1
  646. there is nothing you can do to stop a bad driver from causing the kernel to crash. there are lots of things you can do to stop the boot loop, which is what might leave microsoft on the hook as well. first you have windows write a flag to storage as soon as it is able to say it started booting. then you have it write over that flag which driver it is starting. then when it finishes booting, you write over the flag that it finished booting. then the kernel crashes and the system reboots. the windows system then knows that it crashed because the flag does not say it completed. it also knows which driver broke it, and can disable it. it can also treat the boot start flag as a request, and have an internal table of the few drivers like the filesystem which can't be disabled. after the crash it can downgrade the boot start flag internally so that when it crashes again, it can be disabled. if the driver recovers, it can be re-enabled on next boot. this gives the driver the chance to recover on reboot. they can automatically add drivers to the internal essential drivers list during certification by simply replacing the driver with a return statement, and seeing if it fails to boot. if it does, it cannot be blocked and is added to the list. they can then disable the driver on reboot, or second reboot if it is boot start, and put i huge warning on the screen that the broken driver was disabled, causing the customer to question why the broken driver was released. this could have been done by microsoft or any other os vendor after any of the previous high profile boot loop issues, but they did not. and the eu thing is just more microsoft misinformation.
    1
  647.  @tma2001  if the channel file was different on different machines, it tells us something. they did not bother to sign it, or ship a signature, nor check such a signature when it was deployed before putting it into place. an update should be deterministic. it also tells us something else. they only had one deployment server, which the result implies got some sort of disk fault. with 8.5 million machines affected (according to microsoft), you should be using more than 1 for load balancing, and the one with the faulty update would be ignored after the checksum failed. the update client could even phone home and report it.
    1
  648.  @tma2001  cloudstrike have made a number of dubious statements, some of which are obvious lies or the person saying them is clueless. take your statement about the update file. cloudstrike said it basically had nothing to do with the issue, but if you remove it, the problem goes away. both cannot be true. then there is the issue of it not containing all zeros, but lots of it guys have looked at the contents before deleting it and found it only had zeros. giving them the benefit of the doubt which their own statements say they don't deserve, even if the file contained a header, they obviously were not bothering to have the updater validate it prior to putting the file in place, nor having the kernel driver do so before blindly trying to read it. both are standard practice. similarly, their own statements make it clear that their only filter to shipping was running it against an obviously badly designed validator, and then skipping any other testing. for something running in kernel mode, every change should go through the entire test suite every time, and shipping it how they did should not even have been possible. even their public statement of what they intend to do to make it less likely in the future basically left people saying why were you shipping at all if you were not doing those things already. nothing about the information coming from cloudstrike makes them look good, from a single developer being able to live patch 8.5 million machines without testing, to a validator which is designed to pass everything unless it recognises specific things to be broken, to a minimal testing environment for the full driver, to not doing canary releasing. non of it makes them look good, and then having their idea of compensation for causing millions in damages being a generic 10 dollar gift voucher with uber eats, which promptly got cancelled because it looked like fraud because they did not talk to uber eats, it just makes you ask how much longer until they do anything right.
    1
  649. microsoft have been dealing with crappy drivers since at least windows 3. they even have some code to protect against them, they just let cloudstrike override these methods.
    1
  650.  @barmalini  every os is vulnerable to any kernel driver. if you buy a device to plug into your apple it could do the same.
    1
  651.  @barmalini  for that to be true, they must be running a pure microkernel design, and the performance hit would be massive.
    1
  652.  @barmalini  everything i can find online says that it has pulled parts back in, and thus is more of a hybrid, just like everyone else.
    1
  653. the probe was one of the voyagers and was designed to last 5 years, still going strong 45 years later. dave farley looked at this study, and found it to mostly be biased bull designed to create talking points to help sell the book, just before it was released.
    1
  654. it is just a tool, like an axe. this can be used to give you firewood, defend yourself, or any of a number of other positive purposes. or it can be used by a madman to try and kill you. most tools have this duality in their usages, and you just have to accept that if it is only available to the bad people it will not make you any safer, while actively reducing the quality of life of innumerable innocent people. however ai has an almost unique potential for improving things if its introduction is done well.
    1
  655. some software needs kernel space to do its job. the issue is microsoft letting third parties tell microsoft how to run their recovery software.
    1
  656.  @filipepinho3319  no, nvidia does external kernel drivers on linux, and add on devices do it on apple. this is not an os vender issue mainly (although not fixing the boot loop problem after it triggered on other incidents is down to microsoft). the fact is that stuff has a reason it needs to be in the kernel. if its buggy the kernel will crash. its up to the os vendor to handle how it recovers from the crash.
    1
  657.  @filipepinho3319  but once you install and enable it, as far as i am aware it auto updates, thereby having the same risk. i know there are issues around having to reinstall after a kernel update though.
    1
  658. the best answer to your question is to read the book "working effectively with legacy code" by michael feathers, which covers from starting with a big ball of mud, through to getting it under tests.
    1
  659. they already do. they just let cloudstrike set the boot start flag, and then did not override it and disable the driver on reboot, causing the boot loop.
    1
  660. the problem with component tests is that they are often written as a highly coupled suite of tests which are implementation dependent, instead of using unit tests, and only integration testing the stuff not already covered by unit tests. this approach comes from the oop community, where their idea of a unit is the entire module, and their idea of unit testing is the entire suite of tests needed to test the module, which is not what a unit test actually is, therefore i find the unit & integration test split to be a much better and 100% replacement for the idea of component tests.
    1
  661. people depended on python 2 because it wasn't perl 6, and it was the new and shiny. then they built huge monolithic apps in it in a way that was hard to split up, requiring a major rewrite of the entire application to move to the new version. really bad design, but that is the history, and they are making the same mistakes with ruby as well.
    1
  662. Windows is already dying, as Linux has already killed it. A lot of tasks that used to be done on only windows have moved to new platforms not run by Microsoft. The only place windows is not dead is the desktop, but most things are either moving down the tech stack to smartphones and tablets using apps, up the stack to be web apps, or are open source and open standards cross platform programs. In all of these cases the underlying os is either not windows, or not relevant. This process is accelerating, and once it has gone far enough windows will go the way of the horse and cart, only a lot faster.
    1
  663. as a general point, some code cannot do what it needs to do unless it is in the kernel. this can be because of speed (video divers) or access (security drivers), or for some other reason. when it does, if it breaks it can crash the system. you cannot stop that. the problem was that despite having this problem again, the kernel vendor has done nothing to prevent it.
    1
  664. Having to start unit testing legacy code looks like it costs productivity, as it shifts your regression testing to the front of the process, but if you ensure that new code has tests, you gradually pick up speed until you are going faster than you would have before. Your only other option in this case is to refuse to test and end up with snowflake code nobody wants to touch, which will eventually break anyway at which point you are trying to fix it during an emergency. I would rather melt the snowflake a piece at a time until it is gone, resulting in any breakage either being covered by tests, or in a much smaller snowflake.
    1
  665. Because zig is expected to stabilise soon. Rust is even worse, as some code will not even compile properly without the nightly build ofmthe compiler chain. Sometimes those problems rule the language out of consideration.
    1