Slashdot Mirror
Linux Apps Are Not Coming To Many Still-Supported Chromebooks (betanews.com)
While we know that Linux app support is coming to a range of Chromebooks from Lenovo, Acer, Dell and others, a post on the Chromium Gerrit reveals that devices running Linux 3.14 or older will miss out. BetaNews: Chrome OS is able to run Linux apps through the use of containers which help to keep the rest of the operating system safe from harm. As container support requires features that are only found in more recent versions of the Linux kernel, it means that many Chromebooks -- whose kernels are usually not updated -- will not be able to run Linux apps.
Here's the full list of Chromebooks that won't be getting the Linux love: AOpen Chromebase Mini (Feb 2017; tiger, veyron_pinky), AOpen Chromebox Mini (Feb 2017; fievel, veyron_pinky), ASUS Chromebook C201 (May 2015; speedy, veyron_pinky), Acer C670 Chromebook 11 (Feb 2015; paine, auron), Acer Chromebase 24 (Apr 2016; buddy, auron), Acer Chromebook 15 (Apr 2015; yuna, auron), Acer Chromebox CXI2 (May 2015; rikku, jecht), Asus Chromebit CS10 (Nov 2015; mickey, veyron_pinky), Asus Chromebook Flip C100PA (Jul 2015; minnie, veyron_pinky), Asus Chromebox CN62 (Aug 2015; guado, jecht), Dell Chromebook 13 7310 (Aug 2015; lulu, auron), Google Chromebook Pixel (Mar 2015; samus), Lenovo ThinkCentre Chromebook (May 2015; tidus, jecht), Toshiba Chromebookk 2 (Sep 2015; gandof, auron).
Here's the full list of Chromebooks that won't be getting the Linux love: AOpen Chromebase Mini (Feb 2017; tiger, veyron_pinky), AOpen Chromebox Mini (Feb 2017; fievel, veyron_pinky), ASUS Chromebook C201 (May 2015; speedy, veyron_pinky), Acer C670 Chromebook 11 (Feb 2015; paine, auron), Acer Chromebase 24 (Apr 2016; buddy, auron), Acer Chromebook 15 (Apr 2015; yuna, auron), Acer Chromebox CXI2 (May 2015; rikku, jecht), Asus Chromebit CS10 (Nov 2015; mickey, veyron_pinky), Asus Chromebook Flip C100PA (Jul 2015; minnie, veyron_pinky), Asus Chromebox CN62 (Aug 2015; guado, jecht), Dell Chromebook 13 7310 (Aug 2015; lulu, auron), Google Chromebook Pixel (Mar 2015; samus), Lenovo ThinkCentre Chromebook (May 2015; tidus, jecht), Toshiba Chromebookk 2 (Sep 2015; gandof, auron).
So? Why would not you just download the source-code and compile it yourself?
Was not this ability the point of Linux — and the rallying cry for its fans — for 20+ years?
Lrf, V'z gebyyvat. Gunax lbh sbe znxvat na rssbeg gb ernq guvf.
In Soviet Washington the swamp drains you.
Drumpf prefers his piss frosty.
I had suggested they use containers to add .NET support instead of straight Linux apps. Linux needs a whole underlying support system in a VM; .NET can inherit that from the local system and the .NET runtime.
Stuff .NET Core or Mono in there and provide a /home/$USER directory. Mount /home/$USER, mount local Documents to /home/$USER/Documents, and mount the Google Drive folder to /home/$USER/Drive.
When you install a .NET application, it would mount all of those things, as well as a .NET runtime for the app. The runtime could include a modification to call for additional libraries: if it tries to load an assembly, it calls through a socket to tell ChromeOS to add that library to the container (additional mount), and ChromeOS may fetch the library via nuget.
The container would expose a Chrome browser stub which also calls on ChromeOS to open the browser. It could do the same for opening various files. A ChromeOS file dialogue would display the mounted paths the same way ChromeOS exposes them, unifying the UI.
Now you have native .NET applications. You can get a Python and Java VM running on .NET, which may allow extending this to other types of native applications using the same runtime. You can isolate those applications from the system so they only have access to their own configuration and specific paths, rather than the whole of your files.
It's less reach than a whole Linux VM; it's also less overhead and tighter integration.
Support my political activism on Patreon.
Do these actually provide security, or do they ALWAYS end up with so many holes to the point where their security is only an illusion?
I'm outraged that my $200 Chromebook only supports the same features it was sold with. I bought it specifically to get features that I wasn't aware existed yet.
W..w..W - Willy Waterloo washes Warren Wiggins who is washing Waldo Woo.
Current version of GalliumOS supports most Chromebooks. It's an Ubuntu 16.04 base with adjustments for specific chromebook models (media key customization, other hardware configurations, etc. Doesn't seem to support ARM chipsets or Intel Pineview boards.
Systems that are supported by GalliumOS
and the newer version based on Ubuntu 18.04 LTS is in the works
version 3.0 alpha
Inheritance is the sincerest form of nepotism.
So? Why would not you just download the source-code and compile it yourself?
Because you would have to put a Chromebook into developer mode to install an unofficial kernel. A security feature in the Chromebook firmware allows anybody who turns on a Chromebook in developer mode to powerwash it by turning it on, pressing Space as prompted, and pressing Enter as prompted. This causes you to lose the day's work that you haven't yet been able to back up remotely and lose the use of the modified Chrome OS until you have a chance to reinstall it. (See "Chromebook Developer Mode Warning".)
So? Why would not you just download the source-code and compile it yourself?
Was not this ability the point of Linux — and the rallying cry for its fans — for 20+ years?
Yes, that was the point, but it looks like most of the chipset manufacturer completely missed the point and only provide blob drivers.
Thus, on hardware like smartphone, tablet and chromebook, you're basically stuck with whatever the company that made the SoC decided to use (and never to update there after).
--
Well, in theory.
In practice, *YOU CAN* actually recompile it your self, but you might have some problems :
- You might not have working graphics (and maybe a few other proprietary stuff like touch screen) missing.
(e.g.: the poor guys who have some PowerVR GPU in their machine).
- Or maybe you're lucky and the chipset manufacturer has decided to release more recent drivers for more recent kernel : that's a bit more likely nowadays that Google insists on requiring kernel version 4.4 for Android. Maybe the manufacturer of the chipset could have a workable driver for a more recent kernel, and maybe you could find a way to put it into your chromebook (or maybe you could straight up try the android driver and use something like libhybris).
- Or maybe you're even more lucky and there's an opensource driver for your chipset. That should be the case of most intel-based one which tend to use intel GPUs and Intel is paying opensource drivers development themselves. Some Qualcomm ARM chipset uses Adreno GPU for which the Freedreno driver might be working. In these case, YOU CAN almost recompile nearly everything, you'd be missing only some functions (like touch screen).
On regular PC, AMD hardware is about the best you can get for Linux (they put lots of efforts into their opensource drivers), but sadly they're very seldom seen in that form factor (usually only in desktop, at most inside some budget laptop)
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
By the way, you should have used double-ROT13, I've heard it's more secure :-P
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
"Keep the operating safe from harm". That's both hilariousand fucked up. It needs to be the other way around. Run a sandboxed chrome OS inside of a linux container that is under the OWNERS control. Is security. The definition of malware is software not under the owners control, so by definition chromeOS is a security risk to the owner of the device.
Digital is, by definition, imperfect. Analog is the way to go.
The *default* firmware requires dev mode.
But because the firmware is coreboot based, it should be possible to find an alternate firmware,
file the hardware switch to enable flashing (usually a screw I've heard) and get yourself a full blown linux laptop that doesn't complain and risk self-destructing on each single boot.
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
When you install a .NET application, it would mount all of those things, as well as a .NET runtime for the app.
Would this .NET runtime allow use of mixed assemblies (which contain both native and CIL code) or other unsafe CIL? If not, read on:
You can get a Python and Java VM running on .NET, which may allow extending this to other types of native applications using the same runtime.
I read years back about something called C++/CLI, which extends ISO C++ with .NET-specific syntax for pointers and references in verifiably type-safe code. ISO C++ uses * to declare pointers and & to declare references, but C++/CLI uses those to mean unsafe pointers and references. Use of these causes verification of type safety at load time to fail. To declare pointers and references to managed objects, C++/CLI instead uses ^ for a pointer and % for a reference. (Source: "Component Extensions for Runtime Platforms")
Can ISO C or ISO C++ be compiled to verifiably type-safe .NET bytecode? Or is there a useful subset that can be automatically translated both to ISO C++ and to verifiably type-safe subset of C++/CLI? I don't think so given Microsoft's attitude in the following document: "If your code needs to be safe or verifiable, then we recommend that you port it to C#." (Source: "Pure and verifiable code (C++/CLI)")
"unofficial" kernel? Does not that imply, there is also an "official" kernel? What is that
The official kernel for a device is the one that stock firmware loads without having to be put into developer mode.
and just how "open source" is that very concept?
It's the phenomenon that Free Software Foundation has referred to as Tivoization: the user has the legal right to modify a computer program, but the hardware it's shipped on has technical measures to block use of a modified version. A Chromebook's stock firmware is partially Tivoized in the sense that though the blocking can be disabled, disabling it puts the user at risk of accidental data loss every time the machine starts.
1. Jailbreak it by installing new firmware.
2. (Optional) Set it up to multi-boot with rEFInd, if you still want to be able to use ChromeOS.
3. Put any distro you want on it. GalliumOS is particularly tailored for Chromebooks, but Ubuntu and Mint also both work fine on mine.
You can also install Windows 8.1 or 10 (64-bit only) if you want. I haven't retained ChromeOS, but I do have both W10 and Gallium installed. Mostly I just use Gallium for those times Windows shits the bed and then refuses to let me clean up after it.
How is the Riemann zeta function like Trump rallies? Both have an endless number of trivial zeros.
If you make a container by mounting your host libraries as writable into the container, you can of course modify code that runs as root on the host.
Actually, nope. Doesn't work.
That's partly the reason why they need a recent enough version of Linux kernel.
There's a sort of advanced setting where you map users so e.g. UID 0 is really UID 90,000. The user ID of the process creating the user namespace has all capabilities within the namespace, but none outside: it becomes root inside the container, and can't do root things outside the container. Generally, the process can only switch to another namespace if it has CAP_SYS_ADMIN in that namespace as well.
Yup, UID namespace.
Means that from the point of view of the kernel, it would be UID 90000 trying to overwrite files that belong to UID0, thus nope, can't take over root files.
But you need a recent kernel enough. The feature was introduced in 3.8 and the various filesystem started supporting it over the next few version. Hence probably the reason why Google requires 3.14
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
Say someone wants to carry a computing device but wants that device to prevent an evil maid with physical access from installing a boot-time rootkit. How would that protection measure work while keeping the owner's control?
I read somewhere that no 32 bit Chromebooks will support Linux apps. Is that true or my wrong memory?
If so, I'm out of luck, because my shiny new (...) Asus Chromebook R13 (elm) only runs a 32 bit version of Chrome OS. For... reasons, I guess.
wtf is going on here? There are similarly named, different-branded chromebooks, and a lot of them have FF9 (and other game characters) device names.
I run Debian with Crouton. That way I have a native Linux and if I want it, Chromebook stuff.
[Crouton] stands for ChRomium Os Universal chrooT envirONment ...or something like that. Do capitals really matter if caps-lock has been (mostly) banished, and the keycaps are all lower-case?
Don't fight for your country, if your country does not fight for you.
The google five year clock seems to start at introduction.
With a production run of at least three years many only get software updates for two years. Samsung does this too. Buy a Sammie about the time that battery and out of the box bugs are addressed and after the first update cycle you have all the (2) updates you are entitled to for an end user software update window of less than 36 hours.
is why i would rather just buy a x86_84 laptop and wipe windows off and put Linux on it, i dont want to have to depend on google for software, and can choose any distro i want
Politics is Treachery, Religion is Brainwashing
That’s what happens, when we let corporations like Google, Apple, etc, the Content Mafia, NSA, etc, brainwash our children with "nothing more" than mere infinitely repeated propaganda. No big conspiracy needed. "Only" an asshole repeating shit over and over and over again, until the old ones have died and the kids never knew any better.
Just like in the early 2002, *everyone* here knew that Copyright is a crime, and there is no such thing as "intellectual property", and that the whole thing harms, not helps, artists. Nowadays you'd get modded to -1, Troll, just for daring to contradict the Content Mafia propaganda.
This seems to be a common pattern since forever. "Christians" today would nail Jesus to the cross for his views. "Republicans" of today would call Reagan a socialist and shoot Lincoln for their views. And it's not that I'm taking sides here. This seems to be the case with every group. So I really wonder, how many generations of Chinese whispers I’m removed from what my own core philosophies used to be, before they were FUBAR. ...
But wasn't one of the main selling points of ChromeOS the fact that it's seamlessly self-updating?
Chrome OS seamlessly updates its userland. For comparison, Android has been working toward this since version 8 "knOckoff of Hydrox". Just as Android 4.x largely separated Google Play Services from AOSP to update the former faster, Android 8 introduced a frozen kernel and device driver ABI called Project Treble to separate AOSP from the hardware support to update the former faster.
Why does that not include the kernel? [...] I guess the OEM's would have to get involved to do a kernel upgrade
Bingo.
The following applies to both Chrome OS and post-Treble Android: Because hardware manufacturers customize the kernel with custom device drivers, kernel upgrades require more cooperation from each hardware manufacturer than userland upgrades. Manufacturers would prefer to sell a new device. And in markets where cellular ISPs use different mutually incompatible cellular air interfaces, such as CDMA2000 vs. GSM/UMTS in the United States, kernel upgrades on devices with a cellular radio additionally require cooperation from each cellular ISP. Cellular ISPs would prefer to sell a new device with a new 24-month service commitment.
Break out of jail?
Why would you deliberately buy a prison for yourself in the first place?
That sounds insanely dumb.
Then again, what of the things considered normal these days, isn't *insanely, mind-bogginly* retarded?
FYI - there is a linux distribution called GalliumOS which is tailored to support Chromebook hardware. I've been running it for years on my Chromebooks. If you want linux apps, why not just install linux?