Slashdot Mirror

← Back to Stories (view on slashdot.org)

2.4 Kernel Maintainer Marcelo Tosatti Interviewed

Posted by CmdrTaco on from the stuff-to-read dept.

Jeremy Andrews writes "KernelTrap has an interview with Marcelo Tosatti. Marcelo became the maintainer of the 2.4 stable kernel when he was 18 years old, releasing his first kernel, 2.4.16, on November 26'th of 2001. Two years later, he recently released 2.4.23 and plans to soon put the 2.4 stable kernel tree into maintenance mode, only addressing bugs and security issues. Living in Brazil, Marcelo currently works for Cyclades Corporation. In this interview he looks at how he became the 2.4 maintainer, the challenges involved, and brings us up to date with the current status of the 2.4 kernel."

18 of 105 comments (clear)

  1. Young guy with dreadlocks by fruey · · Score: 5, Insightful

    Don't show his photo to your boss as you talk about the 2.4 kernels you're probably still running. The kernel maintainer for your corporate servers is a 20 year old guy who was 18 when he started maintaining. Whoah.

    In the corporate world, even if there was some kind of genius kid really running the show, he'd be hidden behind grey haired puppets so that it didn't look like some genius kid was really running the show.

    Kudos to Marcello, even though child labour laws (if he was paid to work with the ISP in Brazil when he was 13 years old) and human rights issues might get a mention if the press could ever see beyond Linus as a Linux hacker.

    --
    Conversion Rate Optimisation French / English consultant
    1. Re:Young guy with dreadlocks by koekepeer · · Score: 4, Funny

      18 or not, dreadlocks or not, i think he did a great job! i have a big respect for this guy.

      and the dreadlocks: well, look at alan cox. maybe kernel maintainers *should* look a bit different as compared to "ordinary" people :)

      i mean, they're not exactly salesmen or lawyers or anything, right?

    2. Re:Young guy with dreadlocks by gustgr · · Score: 3, Informative

      Here in Brazil you can work are as a "pupil" or "apprentice" until you are 16, the law project is calles "Pupil's Law". You can work up to 20 hours per weak if I recall so the kid can dedicate the rest of the time to school.

  2. He's the maintainer. by chipster · · Score: 3, Insightful
    He maintains the kernel. There is a lot more of what he does that the interview clearly does not touch upon. It's demanding to be a maintainer. It requires a lot of time, good communication, and motivation.

    Lets' see if you can do this. Better yet, let's see if you are even asked to do this.

    1. Re:He's the maintainer. by telekon · · Score: 4, Funny
      Lets see if he has time to get his hair cut now the pressure on 2.4 is off

      Are you kidding? Do you know how much time and effort it takes to maintain dreadlocks like that?

      That's probably where he developed the persistence, dedication and attention to detail necessary to maintain the Linux kernel.

      --

      To understand recursion, you must first understand recursion.

  3. How is this line not getting mroe attention? by Anonymous Coward · · Score: 5, Interesting

    JA: During the 2.4.23 release cycle, a bug was fixed in the do_brk() function. This bug was recently exploited in a high profile break-in of four Debian Project Linux servers. Why was 2.4.23 not released sooner when this bug was first fixed?

    Marcelo Tosatti: When I first applied the fix (sent from Andrew Morton), I didn't realize it was an exploitable bug (I understood it could crash the box).

    This guy just took responsibility for sitting on a known fix, which directly led to Debian compromise.

    It also led to a rapid patch cycle all over the place, as opposed to a more stable and controlled cycle, since everyone who saw Andrew Morton's patch could research the vuln and create the exploit.

    This delay gave blackhats a lot more time than whitehats.

    Perhaps this argues strongly for closed security bug reporting a la OIS' "responsible disclosure" model.

  4. When I was 18.... by Anonymous Coward · · Score: 5, Funny

    I became the official maintainer of my brother's Playboy collection.

    During my stewardship, I too put the collection in maintenance mode, had to deal with security problems, and I certainly issued several...er..releases.

  5. I'm jealous by Anonymous Coward · · Score: 5, Funny

    20 years old, wife, kernel maintainer, kernel job, and the hair... damn him!

  6. Re:How is this line not getting more attention? by bizcoach · · Score: 5, Insightful
    This guy just took responsibility

    I hope you'll do the same when something goes wrong in your area of responsibility.

    This delay gave blackhats a lot more time than whitehats.

    Not true. Blame the whitehats for not looking at the patches closely enough.

    Perhaps this argues strongly for closed security bug reporting a la OIS' "responsible disclosure" mode

    No. That doesn't help in cases like this where the security impact of a bug isn't recognized at the time of bug reporting.

  7. The dreadlocks are new for me by agoliveira · · Score: 5, Interesting

    I worked with Marcelo at Conectiva (man, I missed that place but...) and that's *not* his real hair :)
    He probably just went to a hair stylist and made that... thing :-D
    I swear I never imagined Marcelo doing this kind of stuff but he's a kernel developer so you can expect anything!

    --
    Scientia est Potentia
    1. Re:The dreadlocks are new for me by CraigV · · Score: 3, Insightful
      Unfortunately, he's not the right person to talk in public, he seemed to be really nervous and didn't tell anything very new. Nobody can do everything though. I'm really happy with how the 2.4 kernel evolved.

      In my physics days, I had a one-on-one lunch with a guy whose work at a young age was clearly going to give him a Nobel Prize. He spoke so softly and hesitantly that I didn't get much out of the meeting. Yet 15 years later, several years after he won the Nobel Prize, I heard him talk and he was eloquent and passionate. Practice makes perfect.

      Linux is a great example of the power of a meritocracy.
  8. Re:But...??? by galbro · · Score: 3, Insightful

    You appear to be unaware that 3.51 was considered the most reliable version of NT, and that in going to 4.0 there was a major and long lasting drop in reliability. Perhaps the biggest source of bsod was moving video drivers into kernel space.

    Thank goodness Microsoft has none of those nasty high profile bugs and exploits you speak sooooo ill informedly about. If you are so worried about going out of business if you go down for a SECOND, why is it only now you are considering replacing a dusty old 1995 box, and don't even appear have a plan on how to proceed yet? PS, nine 9's reliability means that your pathetic old machine needs to be about 10000 time more reliable than the Verizon switching center down the street from me. Please tell us more how you accomplish this feat.. Multiple power feeds, hot swappable power supplies and drives?

    On the outside chance that you are actually sincere (uh yeah, right) please take a look at http://www.securityfocus.com/microsoft

  9. Re:Child Labor by AKnightCowboy · · Score: 4, Funny
    He's working at an ISP, not a sweat shop or factory floor

    You've never done tech support for an ISP have you? Give me the machine press anyday over clueless users.

  10. Too early for maintenance mode by EggSausageBaconAndSp · · Score: 3, Insightful

    Not a Linux expert, but it sounds weird to put 2.4 in a feature freeze mode "soon" (whatever that means), with 2.6 just released days ago ... was the timeframe similar between 2.2 and 2.4?

    1. Re:Too early for maintenance mode by The+One+KEA · · Score: 3, Informative

      It's not too early - Marcelo understands that 2.6 is where all of the new development should be taking place. 2.4 needs to become what 2.2 and 2.0 have become - the ultra-stable, thoroughly tested kernel that you use on boxes that simply cannot go down.

      I think 2.2 was also closed down pretty fast when 2.4 was released. Then it was reopened, IIRC, for a while because early 2.4 was so horrible. Check the linux-kernel archives for more info.

      --
      SCREW THE ADS! http://adblock.mozdev.org/ Proud user of teh Fox of Fire - Registered Linux User #289618
  11. Dreadlocks by RevMike · · Score: 4, Funny

    I'm in the final stages of the recruitment and hiring process for a silicon valley startup. I live in NY, and I'd be doing "Professional Services" for their NY clients.

    After a series of phone interviews, they told me "Our founder and CTO is going to be in NYC. We'll set up a face to face meeting."

    My hair is closely cropped - mostly because I'm quite bald on top, and if I let it grow at all I look like Krusty the Clown. I put on my best navy blue interview suit, iron a really nice shirt, have my wife pick a tie, etc. I hop the train to Manhattan and meet my (hopefully) future boss.

    He's got dreadlocks and a goattee!

    During the interview we were chatting about some of the people that I had spoken with on the phone. He mention someone as having very long hair. That gave me the opportunity to say "And here I am wearing my best interview suit!" that got a good laugh from him. "That is East Coast vs West Coast, I guess." was his reply.

  12. 2.4 VM problem with big machines still there by Anonymous Coward · · Score: 5, Informative
    For most people (read: desktop, small server stuff) the 2.4 kernel might be the right thing and having no problems. If have highmem-machines (>= 1GB RAM) things look very different.
    I run a very big (2 HT CPUs, 4GB RAM, 620 GB RAID5, 2x 1GBit links) file-server and all 2.4 kernels (.19-.22) weren't able to run the thing stably for more than 1 week, under heavy I/O load not more that 2 days.
    Changing to the -aa tree helped and that thing is now up, stable and fast for past 4 months.

    The problem lies in still unmerged code for highmem and slabcache reclaim (check /proc/slabinfo or use slabtop), which is in the -aa tree for ages.
    I reported that to Marcello, but he seemed very uninterested in tracking down (many, many thanks to Andrea and Rik, who helped) and applying those particular fixes in the -aa tree.

  13. Re:But...??? by mr_z_beeblebrox · · Score: 5, Insightful

    When will he fix the critical bugs in the system so we can actually use it?

    If you were serious on that you would have someone in your company participating in kernel development. Seriously, if something is imperative to fix in the kernel to you. If you bring up to the kernel community in the appropriate manner it will likely get addressed. Microsoft, Sco and Sun won't give that kind of a nod to someone who is still running NT3.5.

    We are now concidering wether to get a Windows 2003 server, Solaris 10 or a Linux Enterprise server. Concidering the high profile bugs that exploited key Linux websites, and the increasing ligitation against it, we do not think we should use Linux in such an environment where we need uninterrupted operation. We do not need kernel panics, root exploits, and we ceraintley don't want to put our precious source code at risk of espenage because of the Legal bindings of Linux.

    Considering your unfounded (thus ill informed) paranoia of Linux you should not go with Linux, due to frequent typos you should stick with GUI. I would say Win 2003 is a right fit for you and it is a very solid platform. There is probably no reason for your company to switch. BTW, if your business will die in one second minus a server...look closely at your business procedures they need tweaked.