Erling (Alf) Ellingsen

@[email protected]
141 Followers
339 Following
70 Posts
🕸https://alf.nu/
🍗https://twitter.com/steike
[object Object]https://true.alf.nu/
Erling (Alf) EllingsenDec 20

Why don't we have standardized macaroons yet?

I want to shut down some cloud resource when I'm done with it, but the same API key that lets me do that can also spend my money, so now the thing that does the shutdown has to live in a trusted place.

I could wait for the provider to implement their own permission system which I don't want to learn, or I could just pre-bottle a "I agree to running /shutdown with these parameters between these dates" message and have a dumb thing fire that off.

(This message brought to you by [expensive gadget vendor] hard-coding an API token so their device could send emails, but accidentally letting everyone read all emails sent by the company, including password-reset emails and user documents.)

Erling (Alf) EllingsenSep 13, 2025
Terence TaoSep 13, 2025

Any complex project tends to have both explicitly stated and implicitly unstated target goals. For instance, a Lean formalization project may have as its explicit goal the task of obtaining a formal proof of some mathematical claim X; but there are often unstated goals, such as also formalizing key subclaims and definitions X_1, X_2, ... to X in a fashion that would be suitable for upstreaming to the Mathlib library; learning how to use various collaboration tools and distribute tasks; organically discovering insights to the finer structure of the proof of X that might not be emphasized in previous informal proofs; giving real-world training and experience to novice formalizers; and more generally building a community of humans expert in the art of formalization.

In the past, it has generally not been necessary to state these implicit goals because of a strong empirical correlation between the achievement of these goals and the achievement of the explicit goals. In the example of the formalization project, pretty much any human-centric effort to accomplish the explicit goal will end up naturally also achieving most of the implicit goals stated above. So the explicit goal effectively becomes a viable proxy for the broader range of actual goals. (1/2)

Erling (Alf) EllingsenJul 12, 2025
Simon TathamJul 11, 2025

If anyone tells you that a string (like a command-line argument) contains a list of smaller strings with a specific separator character in between them, immediately ask "In that case, what happens if the separator character needs to appear in one of the list items?" Instant knee-jerk reflex.

There's more than one good answer. Like "you can escape the separator with this other character" (in which case you know what question #2 is). Or "here is a specific reason why it _can't possibly_ be necessary to put the separator in a list item" (maybe list items are something like numbers or C identifiers which already have a restricted character set).

But if they just say it doesn't seem _likely_, or worse still, demand you justify why you need to, run a mile from whatever software is under discussion.

Erling (Alf) EllingsenJul 10, 2025
cigixJul 9, 2025

@thephd I come to you with a cursed finding from a colleague and I: in N3220, and still in N3550, section 6.4.4.2 "Integer constants" is using U+2019 RIGHT SINGLE QUOTATION MARK everywhere, and never specifies otherwise, so it is _technically_ the standard digit separator in C and not U+0027 APOSTROPHE

https://github.com/cigix/cstdtohtml/issues/18

Render single quotes in code blocks as ASCII quotes `'`, not typographic quotes `’` · Issue #18 · cigix/cstdtohtml

See e.g., https://cigix.me/c23#6.4.4.2.p3: 0b11’10’11’01 /* 0b11101101 */ ’1’2 /* character constant ’1’ followed by integer constant 2, not the integer constant 12 */ 11’22 /* 1122 */ 0x’FFFF’FFFF...

GitHub
Erling (Alf) EllingsenJul 4, 2025
760ceb3b9c0ba4872cadf3ce35a7a4Jun 24, 2025
few better distillations of the technodystopia we live in than patent art (courtesy https://www.tumblr.com/contextfreepatentart)
Erling (Alf) EllingsenJun 6, 2025
GlyphJun 6, 2025

how far off do we think this is from being the default shell startup on every platform

https://thepit.social/@peter/114601765045842916

Erling (Alf) EllingsenMay 21, 2025
Show threadFabian GiesenMay 21, 2025

This instruction:
mov [rDest + <index>], ch

under these conditions, when overclocked a bit, once the machine has "warmed up", seems to have around a 1/10000 chance of actually storing the contents of CL instead of CH to memory.

(this was "fun" to debug.)

The workaround: when we detect Raptor Lake CPUs, we now do

shr ecx, 8
mov [rDest + <index>], cl

instead. This takes more FE and uop bandwidth, but this loop is mainly latency-limited, and this is off the critical path.

Erling (Alf) EllingsenMar 29, 2025
Zhuowei ZhangMar 29, 2025
Oh, hey. the `Atop` patch is out:
https://github.com/Atoptool/atop/issues/334#issuecomment-2763856664
Heap issues resulting in heap corruption and segmentation fault (CVE-2025-31160) · Issue #334 · Atoptool/atop

Atop experiences issues related to corruption of the heap as described here. Today I looked into the issue and a fix is being worked on.

GitHub
Erling (Alf) EllingsenMar 24, 2025
joernchen Mar 24, 2025
Digitalisierung, Symbolbild.
Erling (Alf) EllingsenNov 6, 2024
Endless ScreamingNov 6, 2024
AAAAAAAAAAAAAAAAAAAAAHHHHHHHHHHHHHH