Posts by Lipdorn

"It already exists. They aren't increasing the memory on it."

Spreading the cost of the new purchases. Otherwise the new customer would likely be paying more than 100% more. Now everyone only pays 50% more.

Re: Pass* Options

The geniuses behind some TPM implementations didn't encrypt the communications to and from the TPM.

https://www.covertswarm.com/post/how-secure-are-tpm-chips

"Using publicly accessible tools which included a custom high-level analyser and a script to enable the parsing of the captured data, it was possible to decode and extract TPM transactions from the SPI stream. This resulted in a data dump that we were then able to use as a search repository."

Re: This problem existed long before Clippy

<q>..."static volatile" and "register" keywords were, shall we say, suspect, at least initially. They were deliberately excluded from our coding standard because of that.</q>

Well, if you're purposefully excluding the very keyword that is there to indicate to the compiler to not omit read/writes to a variable...don't be surprised that it does, in fact, omit those read/writes.

Re: Sounds awful because it is

LLM are deterministic in nature. The end products most of us use are not simply because they use a different seed for the random number generator each time. Were the same seed used, the LLM will produce the same output.

Re: Not a Trump thing.

Very safe. According to the WHO, ten times safer than Tylenol or Aspirin. Both probably do nothing for Covid. Immense wasted effort on banning it forcing desperate people to drink horse de-wormer that as other not safe for humans anti-helminthics.

Imagine all of the drama that would have been saved if people could get something that the WHO considers safer than tylenol or aspirin in a form fit for humans with decent dosing instructions.

Re: Calculators

HP 49G+ keys weren't that great either. Broke easily, though mostly kept working.

Because C is such a simple language, there are tools available to prove whether the C code is memory safe, free from undefined behaviour and other bugs. Possibly a lot safer to simply run these tools on the existing C code and fix the bugs than to rewrite the whole program in a new language.

Re: As if we needed another reason

I haven't done any maths to know what the possible impact is on AMD, arising from their recent deal with OpenAI, should the AI bubble burst. So I am a little concerned for AMD at the moment. Might end up being the last x86 decade...

Re: Really!

"Renewables can provide 80% of energy requirements therefore we must not use them at all. Truely unassailable logic."

Because for the other 20% you need 100% hard dispatchable supply. To illustrate. Load requires say 1 MW. Renewables can supply 80% of that. With how renewables function, that usually means that 80% of the time renewables can supply 100% of the load. Thus, renewables only make sense if the fuel costs of the hard dispatchables are enormous. Othwerwise why pay the capital costs for two generation systems and both their maintenance costs? At present, the options one have is 100% hard dispatchable, or 100% renewable (used 80% of the time) and 100% hard dispatchable (only used 20% of the time).

The maths might still work out in favour of renewables, but Germany and the UK appear to show otherwise with their electricity prices.

PS. Yes, fine the assumption that 20% of the time renewables supply 0% is flawed. But for 2% of the year both wind and solar tend to supply 0% for about a week thus one still needs 100% backup. For households solar is different. Easier to reduce consumption ahead of inclement weather and maybe visit friends and families that do still have power. Or just sit in the dark with flash lights for a while.

The size of the hardware timer would depend on the speed at which it increments as well as the duration before overflow. Not hard to calculate. Additionally, it isn't hard to combine the overflow of the timer with a software counter that would extend the duration even further. Lastly, as long as the "sleep" duration is less than the overflow duration, this would point to an incorrect code implementation of the test for whether the sleep duration has expired. So definitely a skill issue and a lack of adequate testing.

Though it also points to how a seemingly trivial function, is_timedout(t_now, t_start, duration), can pose significant challenges to organisations (Airbus, ESA and Boeing) that ought to know better and ought to have rigorous tests to detect counter timer overflow errors. Especially since it is a well-known and predicable problem.

Also why when beancounters get into executive positions companies tend to go downhill.

Re: "Canada’s government will stop using any Hikvision products it finds"

"On top of which, it's CCTV. It's not supposed to communicate with anything but the computer of the security guard that is supposed to check it between coffee and donuts."

True. Though, since the cameras use Ethernet (PoE probably as well) the contractors installing it probably just hook it up to the existing LAN infrastructure. Perhaps the recording server is also connected to the internet and the the cameras not fire-walled appropriately. Bit of an overreaction since you want the "closed-circuit" part for your CCTV. Or have we learned nothing from the Mirai botnet?

Re: "Understanding"

Reminds me of the following video... https://www.youtube.com/watch?v=NMS2VnDveP8

Re: CAN

FYI CAN the bit stuffing (to aid in clock recovery) can destroy the CRC characteristics such that what was supposed to be something that detects all 5 bit error can only detect all single bit errors. Slide 56 https://users.ece.cmu.edu/~koopman/pubs/koopman14_crc_faa_conference_presentation.pdf

So CAN is not a great example as it is arguably inferior to RS-485 with parity detection. CAN does have advantages in terms of acknowledgement and bus arbitration.

I believe that it isn't quite an apples to apples comparison comparing so-called nanometres to nanometres. Apparently has very little to do these days with feature widths. Seeing that TSMC is the leader, though, I'm inclined to believe that Intel's process will be a couple of TCMS nodes behind. Will be interesting to see.

Re: Back of the envelope

"But the newer or cleaner ones will just go from running 24x7 to running less, to being on "standby" where they can be spun up if there's a really cloudy or still week..."

That is the issue. The standby station will only be used roughly 10% of the time. Thus, they will have a capacity factor of 10% making their energy costs very expensive. One will have to pay for all the maintenance and personnel costs for something that just idles 90% of the time. One will have to have as much of the idle capacity as there is demand in the country since the output of both both wind and solar can fall by a factor of a 100 for a the duration of a week.

Of course, if one is willing to suffer some form of blackout for 10% of the time (for up to week at a time) then one might not need the same dispatchable capacity and it wouldn't be as expensive. Perhaps only hospitals and other critical infrastructure (e.g. some minister's dog house /s) can be connected to the "reliable" sources.

Re: Lilliput, Blefuscu & boiled eggs

In Rust, you would create page table entries and track them as objects, with each row being a structure of a given length; if your code is mathematically capable of writing past the end, it doesn't compile.

It seems that is the case for simple bounds calculations. Some would be run-time checks. The same static analysis that Rust uses to give a compile warning, and similar to what a compiler uses to eliminate run-time bound checks, can be used for C/C++. Linux already uses things like smatch. There is also the Linux Driver Validation process. So, most of the bound checks that Rust does at compile time can be done for C/C++ at compile time as well. I think an exception could be where arrays have decayed to pointers. Perhaps one of the reasons MISRA does not like arrays being decayed to pointers. Something akin to std::span from C++ might help. Void pointers might also complicate things.

Re: Why a new language?

There is a C17 standard with C23 in the works yes. But as of now (2024/09/10) Linux itself uses GNU C11.

https://www.kernel.org/doc/html/latest/process/programming-language.html

Re: the average journey

Wait until EVs have to pay something similar to the fuel levy. Think government is going to permanently forgo a tax?

Re: In the embedded world...

"My point is that most HALs are poorly written and inefficient."

On the ST side I find the reason is because they want, or need, to support as many of the various use case for the peripherals. They do often allow one to start an example project faster. Then if performance is an issue one simply implements the functionality one needs using the HAL as an example. It usually isn't difficult with most peripherals.

Though I'd agree that I'm not a fan of the C coding techniques typically used by hardware coders.

Re: A brilliant testament to analysis

Issues that have been mostly adequately addressed in most businesses. There will always be some way past, but at least it wouldn't be quite as trivial.

Re: If there was....

Feels like you missed the entire point of the article.

If the Govt. set the specification such that there is no requirement for portability between providers and the chosen provider implements the specification using proprietary methods, then the renegotiation fees will include the cost of porting the proprietary bits to the new provider.

Thus, the current provider can charge the Govt. min(cloud competition) + porting costs. As long as the provider correctly judges what the Govt. considers to be the porting costs, then that is what they can charge. The cost of porting is likely to increase as a function of time as the Govt. becomes more ingrained.

If the Govt. required portability, then they'd basically only be paying min(cloud competition) since the porting costs ought to be negligible (at least in theory).

The article basically describes how Govt. has failed in keeping porting costs low and now has less negotiation headroom since rationally any vendor can logically increase their prices to the Govt. as long as the total price is still lower that the cost of porting to the lowest priced competitor.

Re: GitHub CoPoilot…

The attack was embedded in two binaries and a build script. The actual GitHub source was clean.

I can wholeheartedly support moving from C to Rust or C++. Moving from C++ to Rust? Meh. Just stop doing C style C++ and learn how to use it properly. C is great compared to assembly.

Re: The title was too long.

From experience I would say change will have to start at the top. Culture, to a large degree, trickles down. The top may not necessarily be the CEO.

That is how the free-market works. Increase prices until profits starts to drop. Price discovery. Of course, the price may change at any moment depending on the the state of your competitor(s) or the client business.

Now one can argue that new businesses would rather go for something else more affordable. The new businesses might then stay with their choice and never migrate to VMWare. Old customers might decide that the long term savings justify switching from VMWare to something else. So VMWare might have significant short to medium term profit gains, but the long term outlook might be less rosy. Probably perfect for all the MBAs. I guess we'll find out.

I actually know a decent lawyer. Mostly worked pro-bono for 20 years. Living expenses was via charity donations. Not quite coining it now, but is now working at a fairly prestigious university.

Re: Linux's moment

I think the general portability of Linux would mean that there is a decent chance that older processors will be supported for quite a while. With compiled code one could support most of the various SSE, AVX CPUs at the cost of extra binary bloat. The hand rolled assembly would likely be the biggest obstacle.

Those wanting the most performant Linux have tended to compile their own kernel at least for quite some time. Not that I noticed a massive improvement when I last did it.

Re: Sometimes, you should listen to your supplier

Have the same issues with a SAP based system.

Re: Alternate headline

Had a server at work. 7 years old. Still more than enough to run what was needed. New IT policy is no hardware servers. The yearly VM rental exceeds the cost of replacing the server.

Re: Monies

...but by how hard they are to replace

Exactly! Supply and demand.

... [perceived] value they bring...

I wish more would understand this.

Bit different from walking into a building. I think one can reasonable expect the local community to adhere to the principle that they shouldn't enter unauthorized areas. One can also, obviously, apprehend and prosecute such people easier if they're in your jurisdiction.

With the internet you are exposed to all walks of life. Including those from enemy countries over whom you might have no jurisdiction. Not like anyone can do much about North Korean hackers. In this case, one should reward people that identify vulnerabilities in your systems (assuming they did not exploit those vulnerabilities).

In my opinion, this is how one can identify companies that actually care about security and those that just do the bare minimum required by law.

Re: The impending win11 downgrade approaches...

I'm not moving to Windows 11 until I can move the taskbar (I like mine on the right). I've moved my father to Linux (Mint). I guess my mom and I are also moving sometime around early 2026. Maybe I'll get Win 11 for gaming...hopefully Linux gaming will make that unnecessary.

Re: Yikes.

Shouldn't have much trouble running FreeRTOS. Just need to port it to the particular processor. Shouldn't take too long. There is a generic port for RISC-V already.

Re: predicts increasing hybridisation between classic supercomputers and AI

Usually extending a regression model past the data used to fit the regression is a bad idea. Extrapolation vs interpolation. Can be done for things where the general model is known and rather simplistic...but that is usually not the case where ML is employed.

Deal breaker

"Can you move the taskbar to the side of the screen?

No."

Oh. That is a deal breaker for me.

One can hope.

Re: ambition comes at a price on the desktop

Perhaps. But teams takes that to a ridiculous level of terribleness. Teams just seems to "ooze". The only thing as bad is windows search...

Re: I wonder

The weight of the storage container for the aviation fuel on an airplane is, for all intents and purposes, negligible. Mostly just the sealant for the void spaces in the airframe. Maybe some structural members are heavier than if they would have been if the voids weren't filled with fuel. The fuel storage weight decreases significantly as the fuel is used.

This is not the same with batteries which have no change in weight. Nor with hydrogen. Currently 5Kg of hydrogen requires a container of around 80 Kg. Batteries, or compressed, hydrogen will reduce the payload capabilities of the airplane significantly.

Cryogenic hydrogen might be better, insulation is typically quite light, though does take up more space. Though I believe cryogenic hydrogen is volumetrically about a third as energy dense as kerosene...so you need three times as much space excluding thermal insulation.

Thus, I don't expect to see a battery or compressed hydrogen Airbus A320 equivalent plane in my life. Cessna equivalent yes. Though it will probably be inferior to a hydrocarbon burning aircraft in distance and payload weight. Might have other advantages that would make it worthwhile.

Re: Good read

"Covid's killed just about more people in the UK thant he whole of the EU combined. Who's fault is that?"

Not sure what your sources are. According to https://www.worldometers.info/coronavirus/#countries you have the following number of deaths:

UK: 117,166

Italy: 93,577

France: 81,814

Germany: 65,566

Spain: 64,747

Clearly your statements is "clownishly" false.

"I for one would rather have Brussels fucking it all up instead of Boris and his clown cabinet"

With, ironically Brussel (meaning Belgium) having the highest (of the populous nations) death rate in Europe. Granted it is only about 8% higher than the death rate of the UK, 1,864 vs 1,720.

"Well how about replacing one layer of grossly incompetent with another?" Well, you had two layers of incompetence. Now you only have the one. Not sure why you would want the extra one as well...

Re: Test Your Model

Backwards prediction is all fine and dandy, but what happens is that after a while you start tweaking your model to actually give good backwards prediction results. Or stated alternatively, you're effectively running a genetic algorithm where only models that do give good backward prediction survive. This is another form of "curve fitting". Thus by continuously using the same "validation" data, you're effectively using fitting the model to that data.

That still doesn't mean that they'll be any good with predicting was is going to happen. Interpolation is good, extrapolation is evil. Effectively fitting observed data to a model to obtain the "actual" forcing values becomes hazardous the more model parameters there are. The problem being that there may not be a unique solution and you can't determine beforehand whether the solution, "fitting", you've found is the correct one. (Most likely it isn't.)

Another thing to bear in mind is that many of the "constants" used in the model were obtained by fitting historic data to a model of some sort, the more data, the better the fit. Therefore models should be able to "predict" the past quite well since they are based on the historic data.

Unfortunately, only time will tell whether the models were/are correct/incorrect and by that time it may be too late.