Skip Navigation

InitialsDiceBearhttps://github.com/dicebear/dicebearhttps://creativecommons.org/publicdomain/zero/1.0/„Initials” (https://github.com/dicebear/dicebear) by „DiceBear”, licensed under „CC0 1.0” (https://creativecommons.org/publicdomain/zero/1.0/)V

Vorpal

@ Vorpal @programming.dev

Posts
2
Comments
44
Joined
2 yr. ago

  • Decreasing Certificate Lifetimes to 45 Days

    Jump

  • The solution is to not use Http based validation of the cert, but use dns based validation. Possibly combined with a wildcard cert for your whole domain. This is what I do for internal services on my LAN, along with split DNS so that the internal services aren't even listed in public DNS.

  • Have clankers visited my blog one hundred twenty-one sexagintillion eight hundred ten novemquinquagintillion times so far in November??

    Jump

  • What is that log analysis tool you are using in the picture? Looks pretty neat.

  • Have clankers visited my blog one hundred twenty-one sexagintillion eight hundred ten novemquinquagintillion times so far in November??

    Jump

  • It is common custom to indicate quotes, with either "quotes" or for a longer quote a

    block quote

    The latter can be done by prefixing the line with a > here on lemmy (uses the common markdown syntax).

    Doing either of this help avoid ambiguity.

  • Removed Deleted

    Permanently Deleted

    Jump

  • Agreed, I run arch on my desktop and laptop, because it is more stable (in the sense of fewer bugs, things like suspend/resume works reliably for example) than any other distro I have used.

    But on my VPS and my Pi I run Debian because it is more stable (in the sense of fewer upgrades that could break things). I can enable unattended upgrades there, which I would never do on my Arch system (though it is incredibly rare for those to break).

    Also: if someone said they were a (self proclaimed) "semi noob" I would not recommend Arch. I have used Linux since 2002, and as my main OS since 2006. (Furthermore I'm a software developer in C/C++/Rust.) While Arch is a great distro, don't start with Arch.

  • Advice for an EU (and in any case non-spying) Dynamic DNS provider?

    Jump

  • That seems to be for dns resolving, not for ddns? Or am I missing something?

  • Advice for an EU (and in any case non-spying) Dynamic DNS provider?

    Jump

  • Most registrars also run DNS servers as part of the fee you pay for the domain. Usually they have an API. You can just use that to implement Dynamic DNS, there are even often tools for it. Do a search for your DNS registrar and dyndns.

  • Advice for an EU (and in any case non-spying) Dynamic DNS provider?

    Jump

  • Afraid.org is better than DuckDNS. (DuckDNS is not reliable and have been slow or down a lot.)

    But it is still American.

  • Heapless (data structures for embedded) v0.9.1 has been released!

    Jump

  • 12th verse: I’m sane, I promise

    Hmm...

    As to LLVM and alloca, it doesn't optimise or even work well in practise. Some basic cases work, others are less well tested. There are lots of "should" that "doesn't" in practice in LLVM.

    I have not looked at alloca in LLVM myself but from what I have heard from those who are experts on this, it is quite brittle.

    Second of all: sub is my favourite allocator

    https://docs.rs/bumpalo/latest/bumpalo/ (and bump allocators in general).

    Fourth of all: second point is literally a skill issue idk, especially if your compiler is already proving bounds anyway.

    In general proving bounds for stack growth is very difficult. With recursion it is undecidable. This follows directly from Rice's Theorem. (This is my favourite theorem, it is nice to know that something is impossible rather than a skill issue.)

    (Of course you could have a static analyser that instead of yes/no returns yes/no/don't know, and then you assign don't know to be either of the other classes depending on if you care more about false positives or false negatives. This is how the rust borrow checker works: forbid if it can't prove it is safe, but there will be safe code that it doesn't allow.)

  • Heapless (data structures for embedded) v0.9.1 has been released!

    Jump

  • Alloca for buffers is generally a bad idea:

    • If you have an upper known bound, just use that. If you don't you risk stack overflow. Especially on a malicious input.
    • Alloca optimises poorly (especially with LLVM) since the compiler can't really see how large the stack frame is.

    The only reasonable usage I have seen is in the Swift ABI. See this blog post on the topic by a rust compiler developer: https://faultlore.com/blah/swift-abi/ (and even there it is only for some cases that it can be used).

  • Heapless (data structures for embedded) v0.9.1 has been released!

    Jump

  • Not really. Heapless uses compile time sized backing buffers to implement Vec, string etc with a max upper size. You would typically use heapless with a statically allocated variable, but it is possible to use it on the stack too.

    Alloca is different and allocates a dynamically sized block on the stack. Rust doesn't really support alloca, but there is a crate for it that works by calling through a helper function in C: https://lib.rs/crates/alloca

  • Heapless (data structures for embedded) v0.9.1 has been released!

    Jump

  • Also worth noting is smallvec and compact_str crates. These are useful when you most of the time have small data that you want inline, but are OK with falling back to heap allocation for the occasional outlier.

    I have used both inside structs to optimise cache usage. For these uses i tend to use rather short smallvec.

    And smallvec in particular is also useful on the stack in a larger variant in hot functions where you might have a Vec that almost always is less than (say) 32 elements, but the program should gracefully handle the occasional long case. I found this offered a small speed up in some batch data processing code I wrote.

  • Volumetric 3D Printing Is REALLY FAST

    Jump

  • What about the UV cured polymer that dentists use? Surely that is relatively safe, though probably way too high viscosity. (Note: While I know a fair bit about FDM, I'm not at all read up on SLA, so I may be completely wrong here.)

  • Let’s Encrypt Begins Supporting IP Address Certificates

    Jump

  • Let's Encrypt is meant yo be used with automated certificate renewal using the ACME protocol. There are many clients for this. Both standalone and built into e.g. Caddy, Traefik and other software that does SSL termination.

    So this specific concern doesn't really make sense. But that doesn't mean I really see a use case for it either, since it usually makes more sense to access resources via a host name.

  • 3D printing with unconventional vase mode

    Jump

  • Thanks, didn't think about that. Two reasons I can think of:

    • Vase mode should reduce stringing on TPU as it avoids retractions. Though I have found that just drying TPU + enabling "avoid crossing perimeters" usually hides most stringing.
    • Additionally, it would let you have more precise control over how squishy/firm the TPU part is by adjusting the number of perimeters. Though you can use modifier volumes in the slicer to adjust infill and number of perimeters locally in a part.

    Is there any other reason why this is good for TPU that I missed?

  • Incremental backups to optical media: tar, dar, or something else?

    Jump

  • Unless they are in different cities they wouldn't be safe from a fire, lightning strike, earth quake/flood/tsunami/typhon/hurricane/etc (remove whichever ones are not relevant to where you live).

  • How To: Automate version update for your selfhosted Docker containers with Gitea, Renovate, and Komodo

    Jump

  • That seems like a really big downside to me. The whole point of locking down your dependencies and using something like renovate is that you can know exactly what version was used of everything at any given point in time.

    If you work in a team in software, being able to exactly reproduce any prior version is both very useful and consider basically required in modern development. NixOS can be used to that that to the entire system for a Linux distro (it is an interesting project but there are parts of it I dislike, I hope someone takes those ideas and make it better). Circling back to the original topic: I don't see why deploying images should be any different.

    I do want to give Komodo a try though, hadn't heard about it. Need to check if it supports podman though.

  • How To: Automate version update for your selfhosted Docker containers with Gitea, Renovate, and Komodo

    Jump

  • I haven't used Komodo, but would it commit to the updated docker files to git? Or just use the "latest" tag and follow that? In the latter case you can't easily roll back, nor do you have a reproducible setup.

  • Making a "snapshot" of a fresh install so i know what to remove yrs later?

    Jump

  • I would go with the Arch specific https://aur.archlinux.org/packages/aconfmgr-git instead of ansible, since it can save current system state as well. I use it and love it. See another reply on this post for a slightly deeper discussion on it.

  • Making a "snapshot" of a fresh install so i know what to remove yrs later?

    Jump

  • I can second this, I use aconfmgr and love it. Especially useful to manage multiple computers (desktop, laptop, old computer doing other things etc).

    Though I'm currently planning to rewrite it since it doesn't seem maintained any more, and I want a multi-distro solution (because I also want to use it on my Pis where I run Raspbians). The rewrite will be in Rust, and I'm currently deciding on what configuration language to use. I'm leaning towards rhai (because it seems easy to integrate from the rust side, and I'm not getting too angry at the language when reading the docs for it). Oh and one component for it is already written and published: https://github.com/VorpalBlade/paketkoll is a fast rust replacement for paccheck (that is used internally by aconfmgr to find files that differ).