Top
Best
New

Posted by pantalaimon 8 hours ago

Asahi Linux 7.1 Progress Report(asahilinux.org)
460 points | 156 comments
eqvinox 6 hours ago|
> The defacto industry standard for audio ICs is I²S, an I²C-based bus optimised for audio data.

Nit: I²S has nothing to do with I²C.

(Most I²S chips also have an I²C interface since I²S only carries raw audio data, no sideband like volume control or clock configuration. But that's a separate interface and can also be SPI rather than I²C. In fact, SPI is more closely related to I²S than I²C is.)

phire 4 hours ago||
Yeah, it's much closer to SPI.

The reason why they both follow the same naming scheme is that Philips Semiconductor (now NXP) made both.

jessienark 1 hour ago||
[flagged]
a1o 5 hours ago||
Thanks for this comment, it lead me to look into I2S and I learned something new!
JSR_FDED 7 hours ago||
I’m in absolute awe that a handful of motivated people can crack these problems
bigyabai 1 hour ago||
Many of the problems aren't cracked whatsoever. For instance, Apple Silicon's PSCI power management interface is a mystery. PSCI code exists in other Linux devicetrees, but nobody knows how Apple implements theirs. So for the better half of a decade, Asahi users have relied on a hack to prevent their battery from draining constantly. We still don't have any prospective solutions, to my knowledge.

This is the weal-and-woe of reverse engineering. It's awesome that these machines now have native Vulkan 1.2 drivers, but it took years to get there. There are still unsolved problems 7 years after Apple Silicon hit shelves, and most newer hardware is broadly unsupported. The lesson here is a reiteration of what Linux users have always said - proprietary drivers suck.

amelius 5 hours ago||
[flagged]
simonh 4 hours ago|||
marcan addressed this early on in the project, arguing that Intel platforms including some of those advocated for by the FSF are less open and more at risk of upstream abuse in some very significant ways.

https://news.ycombinator.com/item?id=29684585

For example intel systems (and Android) run resident supervisor code you can't get rid of, and that can do remotely initiated updates you have no control over. That's not so on Apple silicon.

>In fact I'm much more sure about that than I would be with the laptops the FSF peddles as "respects your freedom"; last time I looked at the schematics for one of those, it had over a half dozen chips running secret blobs, and at least two or three of them had full access to all system RAM via a DMA capable bus. You'd have to be insane to trust that over an M1, which is designed to sandbox all coprocessors from the main CPU and RAM via IOMMUs, such that even if all firmware is backdoored it can't take over your main CPU.

Also these comments are worth considering.

https://news.ycombinator.com/item?id=29307836

https://news.ycombinator.com/item?id=29307377

amelius 3 hours ago|||
What good does that bring if Apple shuts down the project?

Also, I don't believe Apple has no backdoors and such. They basically made it impossible to be root on your iPhone, so you don't think they have a almighty-super-superuser mode on their laptops that only they can use? Wishful thinking if you ask me.

cosmic_cheese 3 hours ago|||
What good would it do Apple to shut down the project?

There’s no IP misuse and the ability to boot an arbitrary OS is an intentional part of the design of M-series Macs. The built in lag time of the current situation ensures that macOS will never have its position as the dominant OS for Mac hardware challenged. Further, doing this would stoke the flames of the already red-hot internet Apple haters and unnecessarily burn goodwill. It’d be a loss across the board.

jagged-chisel 2 hours ago||
> … the ability to boot an arbitrary OS is an intentional part of the design of M-series Macs.

What? Where do you get that?

drbawb 2 hours ago|||
The Apple Platform Security[1] white paper describes the secure boot process for Apple silicon. The Mac boot process is significantly more configurable than the iOS boot process, and it allows operating in reduced security modes. (Including running locally signed operating systems.)

Apple knows how to build an iPhone: if they wanted to lock down a Mac they would have simply done that. There's something like nine pages detailing the differences. What word describes that other than "intentional" design? The fact that you can sign and boot a third party OS isn't an "accident" if it's documented, and there's no "exploit" because this is functionality the platform supports; anyone can do it with tools already present on the (Apple-signed) recovery OS.

They certainly don't provide great support for people wanting to develop [drivers for] these operating systems, but the platform was very clearly engineered to support booting them.

[1]: https://help.apple.com/pdf/security/en_US/apple-platform-sec...

jagged-chisel 1 hour ago||
I guess I'm missing something then. The Asahi blog says "Apple’s boot tooling will only work with what it considers to be a “valid” macOS installation inside an APFS container." Sounds very adversarial to "the ability to boot an arbitrary OS."
simonh 1 hour ago||
It basically just has to look like macOS in some trivial sense, it doesn't have to be macOS, there are no obstacles. The system is designed specifically to enable booting custom compiled kernels and former members of the Apple team have said booting other OSes was intentionally left open. The company just doesn't make any guarantees about that.
boarush 2 hours ago||||
marcan mentioned in a few of his livestreams that the design seems very much intentional, plus a few of the tweets by Xeno Kovah who worked on the bootloader: https://x.com/XenoKovah/status/1339914716454526979.
fl0id 2 hours ago|||
Because it explicitly has tooling for custom boot objects etc, and stated by asahi developers, maybe also apple people they know.
wpm 2 hours ago||||
Why would Apple do that?

If they did, I still have macOS, an OS I can easily disable all runtime protections and security on, rig up into a kernel debugger, arbitrarily dump memory of other processes and so on. If Apple takes away our ability to easily boot alternative kernels, the tools are readily available to find...alternative ways around iBoot security, which is not ideal for Apple since iOS iBoot is mostly the same as it is on macOS.

I find it hard to believe that Apple would purposefully shoot themselves in their own feet, unless you also believe that they would lock down the Mac as much as an iPad, ever.

simonh 3 hours ago|||
>What good does that bring if Apple shuts down the project?

How could they do that? They could cease providing the facilities the project relies on in newer chips, but the existing chips, er, exist. They could stop making chips all together and go back to intel. It's not a useful hypothetical.

>Also, I don't believe Apple has no backdoors and such. They basically made it impossible to be root on your iPhone, so you don't think they have a almighty-super-superuser mode on their laptops that only they can use?

It's possible such a thing exists, of course, it's possible on intel, or AMD, or any ARM chips, or any chip at all. However such a back door, if discovered, would not be accessible only to them. It would have the same problem that all such backdoors have, in that if Apple can exploit it, others can exploit it. Apple very heavily relies on the claim that they have no such back door, and they have relied on this as a legal defence, and frankly it's hard to see how they would benefit from having such a back door. A chunk of their business model and legal liability protection depends on not having such a back door.

>Wishful thinking if you ask me.

If you say so, this is all about relative risk. However what reason might anyone have for thinking that any other platform, such as Intel with it's proprietary supervisor code with remote updatability, is more under the control of the user? There may be platforms that have a better security architecture that's more under the control of the user, but I can't think of any of the major ones that does. Which would you suggest?

thewebguyd 2 hours ago|||
> Apple very heavily relies on the claim that they have no such back door

And, at least in the case of their private cloud compute, they encourage third party audit of their claims and even provide a virtual research environment running an instance of their PCC on your mac.

The UK explicitly requesting a backdoor to iCloud's advanced data protection forcing Apple to pull the service instead also tells me their claims are legit.

It's certainly possible a backdoor exists in hardware instead, or elsewhere in the stack but given Apple's surprising relative openness for how they implement their privacy products & the research papers they put out I'm inclined to believe them for now. (I say relative because its not open source, which is the only way to be 100% certain, but their research papers are surprisingly in depth).

bigyabai 2 hours ago|||
> How could they do that?

iBoot? Asahi needs iBoot to boot third-party volumes for Linux to run properly. Apple controls iBoot; if they burn an eFuse and disable third-party volumes in a "Security" update, Asahi cannot fight back.

You cannot boot macOS with an unsigned iBoot firmware, so writing your own bootloader isn't an option. If a fuse is burned, you also cannot downgrade to older firmwares. The entire system is designed to give Apple the ability to disable other OSes in a macOS update if they ever decided to.

simonh 1 hour ago||
iBoot firmware exists and is already in our hands.

Any manufacturer could put an eFuse in any of their hardware and lock it. No hardware can be proven not to have such exploits. That's the first point marcan makes in that post.

bigyabai 45 minutes ago||
> Any manufacturer could put an eFuse in any of their hardware and lock it.

This is my point too, though. Do we trust Apple to not burn a hardware fuse if their community one-ups them? They've already done it on iPad and iPhone hardware when users find a boot ROM exploit. All that they'd need to do is push an update for "security" purposes, and then the new boot flow could refuse to boot into unsigned volumes or deny running unsigned bootloaders. There would be no way to downgrade.

This is basic ARM security architecture stuff, I'm a little shocked that people can't imagine how this type of lockout is possible. There are tons of commodity ARM boards that are effectively bricked and eFused to user-hostile security epochs.

throw0101d 2 hours ago||||
> For example intel systems (and Android) run resident supervisor code you can't get rid of, and that can do remotely initiated updates you have no control over. That's not so on Apple silicon.

The Oxide Computer folks wrote their own AMD boot loader and have an entire chain of trust and apparently (?) basically got rid of the supervisor code (Ring -2 and -3). They also have custom motherboards with third-party BMCs.

Could something similar be done on Intel?

simonh 2 hours ago||
I suppose it's possible, after all if the thing can phone home and update itself, that could be spoofed so it updates itself with your code.

However if that phone home feature is read only, it could always just re-root itself.

WD-42 3 hours ago|||
> last time I looked at the schematics for one of those

When was the last time they looked at the schematics for one of the Apple machines? Oh, wait.

lopis 5 hours ago||||
These efforts will also save a lot of old macbooks from the landfill in the future.
rbits 5 hours ago||||
What do you mean? You mean not on Apple hardware? That exists, that's basically every other Linux distro in existence.
preisschild 4 hours ago||
Apple could also support open standards like UEFI/dt/acpi. Asahi uses lots of workarounds (including pretending to be MacOS) to be even able to boot the linux kernel. This would projects such as Asahi a lot easier and more reliable.

And I'm not even talking about drivers

bzzzt 4 hours ago|||
UEFI or its predecessor ACPI are complicated and support a long list of legacy stuff that has absolutely no value to Apple at all so why should they do the development? It's like asking Tesla for a fuel tank so it would be easier to install a gasoline engine.
preisschild 4 hours ago||
You don't have to support "legacy stuff", just make sure a modern linux kernel can boot without apple-specific workarounds
smith7018 4 hours ago||
Why should Apple care if a modern Linux kernel boots without workarounds on their hardware? Should they also ensure Windows and Android can boot on the hardware easily?
outadoc 3 hours ago||
> Why should Apple care if a modern Linux kernel boots without workarounds on their hardware?

To sell more hardware?

Obviously I get your point, but there's a bunch of customers who would like good ARM hardware but can't accomplish their work with macOS. It's not like Apple needs this tiny market, but it wouldn't hurt them either.

t-3 3 hours ago||
> Obviously I get your point, but there's a bunch of customers who would like good ARM hardware but can't accomplish their work with macOS.

Citation needed.

wpm 1 hour ago||
Apple still ships a copy of Boot Camp Assistant in macOS Tahoe. It was great to be able to dual boot on Intel Macs and licensing BS aside it would be nice to be able to boot Win11 ARM on an M1.
mschuster91 4 hours ago|||
> Asahi uses lots of workarounds (including pretending to be MacOS) to be even able to boot the linux kernel.

In the x86 sphere it isn't that much better either, most ACPI tables are thoroughly broken if Linux announces itself as Linux and not as Windows. In fact, a lot of machines' ACPI tables barely work on Windows.

smith7018 4 hours ago||||
These people are singlehandedly saving _millions_ of laptops from going to the landfill one day. That's a valiant effort and they're doing it wonderfully. Regardless, one of the points of Linux is to install it on as much hardware as possible. Do you think people that managed to get it installed on iPods, PS5s, Wiis, Chromebooks, routers, Nintendo Switches, etc. should all stop just because they're doing something unsupported? Most of those cases were met with friction by the original OEM. If anything, Apple has been pretty laissez faire about the whole thing compared to Nintendo and Sony who will ban your console if you hack it.
bzzzt 4 hours ago||
Those laptops don't need to go to any landfill. They are much too precious to not recycle the metals and other materials and will be taken care of if you return them to the manufacturer. (by law, at least in the EU)
dml2135 4 hours ago|||
Still, reuse > recycling
coldtea 2 hours ago|||
Recycling the metals is obviously far less useful than being able to still operate them even if Apple stops macOS updates for them!
panick21_ 3 hours ago|||
Yeah should they design their own computer chips? And do literally everything need for such a platform. That is literally 10000x the effort. There is no change the same group of people could create such an open solution. Hardware is just much harder in so many ways and no comparable OpenPlatform exists.
GeekyBear 59 minutes ago||
It's nice to see M3 support progressing well.

They first mentioned that efforts to add M3 support were starting in February:

> For quite some time, m1n1 has had basic support for the M3 series machines. What has been missing are Devicetrees for each machine, as well as patches to our Linux kernel drivers to support M3-specific hardware quirks and changes from M2. Our intent was always to get to fleshing this out once our existing patchset became more manageable

https://asahilinux.org/2026/02/progress-report-6-19/

simonmales 7 hours ago||
Will this forever exist as a Fedora "remix". Or will we find the support in upstream so I can one day run Debian-based distro?

I think the last time I used an RPM-based distro was almost 2 decades ago.

mort96 7 hours ago||
They are upstreaming their patches, so upstream Linux will eventually get the necessary drivers.

Though their kernel fork is (obviously) open source, so there's nothing stopping you from taking a Debian aarch64 roots, build your own Asahi kernel (or take the build from Fedora), and set up Debian on these machines with Debian yourself. Just requires some elbow grease.

Or, if you find Ubuntu acceptable, there's Ubuntu Asahi: https://ubuntuasahi.org/

EDIT: After some googling I found this wiki article: https://wiki.debian.org/InstallingDebianOn/Apple/M1

jasoneckert 4 hours ago|||
This comment made me smile, as my preference is opposite - I prefer RPM-based distros and primarily use Fedora on everything (including Fedora Asahi Remix on an M1 Ultra Mac Studio), but occasionally use Ubuntu and Debian on some of my cloud instances.

As a result, I understand the desire to stick with a particular distribution that we're already familiar with - it's less work, and less having to remember subtle differences in structure. But when there is a time where I'm forced to use a new distro (e.g., when Asahi was first released exclusively as an Arch Linux ARM distro), I never regret the small learning experiences involved :-)

thewebguyd 2 hours ago||
And at least Fedora is rock solid these days, which is more than I can say about Ubuntu. Its really a great distro.
weikju 7 hours ago|||
You can still run Arch, and Ubuntu Asahi also exists. (1)

They’re working hard on upstreaming everything exactly so it’s easier for any distribution to be ported.

1- https://ubuntuasahi.org/

hparadiz 3 hours ago||
I wish more people on HN learned how to build their own kernel and run it.

A distro is just window dressing and flavor.

MYEUHD 7 hours ago|||
linux-asahi is available in Void Linux:

https://voidlinux.org/download/#arm%20platforms

It's a regular package of linux in the distro: https://github.com/void-linux/void-packages/tree/master/srcp...

tuna74 2 hours ago|||
You will probably always need a "fork" because Asahi needs a custom installer and bootloader. It is also probably a good idea to recompile everything for the Apple ARM architecture.
matrss 4 hours ago|||
There is an effort by the Bananas Team to get standard Debian working on Apple silicon, and they have installation instructions for how to get it running now with an additional unofficial repository: https://wiki.debian.org/InstallingDebianOn/Apple/M1#The_Bana...

I haven't actually tried to install it yet, though.

leenixx 6 hours ago|||
The founder of asahi linux famously quit due to how hard it was to upstream patches. It’s not easy to deal with linus’ project.
Grombobulous 6 hours ago||
I can’t see that being a bad thing considering that the kernel is mandatory software in the Linux world. You would want to have high standards for what gets added.
nosioptar 4 hours ago|||
You should have high standards.

Torvalds often crosses that line into outright toxicity. I've written a few kernel patches that I never tried to upstream for that reason.

dandellion 2 hours ago||
You'll never be able to agree on where that line should go. First because there's a cultural component to it. I'm from Spain so I can only talk for myself, but while he uses rude language, nothing I've ever read from him ever seemed particularly offensive. And second because any activity involving a large group of people will need some amount of toxicity if only to prevent other toxic people from derailing it, and since nobody thinks of themselves as the one that is being toxic to the project, there will always be some friction. You might not like fevers either, but they are necessary for a functioning immune system.
nosioptar 1 hour ago|||
What a ridiculous comment. Here's a small sample of Torvalds being an ass.

https://github.com/corollari/linusrants/blob/master/table.md

Someone who doesnt see a problem with this is probably one of those toxic people who dont realize they're toxic you mentioned. Nobody wants to be treated how Torvalds treated people.

Also, coming from an orchestral background, I'm well aware of situations where the leader needs to be gruff. A gentle conductor will never get the idiot violists playing in tune. (A harsh one won't either, but at least the violists will be too scared to make any noise.) That said, it's still unacceptable for a conductor to cross the line from gruff to personal attacks.

debugnik 1 hour ago|||
> nothing I've ever read from him ever seemed particularly offensive

You may have missed the "retroactively aborted" one.

https://lkml.org/lkml/2012/7/6/495

To be fair, he's got much more self-control now.

gjvc 5 hours ago|||
"Disgusting" Linux sched_ext Source Code Restructured Following Complaint By Linus Torvalds - Phoronix https://www.phoronix.com/news/Linux-Sched-Ext-Restructured
realusername 6 hours ago|||
Upstreaming something like this is a monumental task, even small changes can take ages. It will take a while.
smith7018 4 hours ago||
They've actually been focusing on upstreaming for what feels like 2 years now. It's really slowed down progress but it's important for the longevity of the project. They still have so much left to upstream but little by little it's happening
tensegrist 6 hours ago||
i've been using nixos on an m2 air for a year now, the kernel is enough
shvarr 4 hours ago||
Asahi could be a viable alternative, however, with this amount of funding, small manpower pool pace of development is doomed to be too slow.

There's groundwork that's already been done, as mentioned in the article, which brings some dividends, but, ultimately, there is a new mac every year that comes with a new chip, a plethora of microcontrollers and gpu changes, impossible to keep up with, that is why asahi team is focused more on m1 and m2 models. Even so, to this day both of them have issues with idle power management and alt-dp implementation, preventing many to switch, by the time they will have been ironed out the value of machines would be significantly diminished.

It is a miracle how much so few can do, but in the end, despite ubiquitous media coverage it looks like team's enthusiasm and passion have dwindled to the point that even m1 air will never be ready.

torben-friis 3 hours ago|
If they can set a single machine as target every few years and make it work, that would be a lot better than having no alternative.

M1 support is pretty usable nowadays, and I would imagine at least a fraction of the work translates to future devices... It's not sunshine and rainbows, but it isn't a project doomed to fail either.

shvarr 2 hours ago||
M1 support is barely usable, at least on m1 air last time I checked idle battery drain was about 7-8% per hour (in macos battery health is still at 96%). Alt DP mode doesn't operate under kde wayland plasma due to inherent incompatability between implementation design and kwin, everything else is surprisingly good, albeit battery was really hard to ignore to fully switch.

Hopefully, they will manage to get it done someday.

rowanG077 58 minutes ago|||
That's simply not true. I have been daily driving asahi for 2.5 years or so now on an M2 Max macbook. In it's been one of the most reliable and smooth experiences I have had ever using linux. DP alt made is working fine for me. I'm not sure about battery, I never measured.
cromka 2 hours ago|||
[dead]
noveltyaccount 52 minutes ago||
I really wish Apple would fund a small team to open source some documentation and drivers to help Asahi along. I know they won't, but I can dream. It would be a drop in the bucket for Apple but would cement their hardware as de facto for silicon valley engineers (even more so than today).
CafeRacer 7 hours ago||
It is exciting that they are working on AVD driver.
brcmthrowaway 2 hours ago|
if i use ffmpeg or VLC on a M1+ Mac, does it use AVD?
rowanG077 49 minutes ago||
not on asahi, no clue about macos.
KolmogorovComp 2 hours ago||
I wonder how much LLMs have been leveraged to help Asahi lately, there’s extremely powerful for reverse-engineering. Have they written about it?
johnwalkr 1 hour ago|
They forbid their use.

https://asahilinux.org/docs/project/policies/slop/

coxmi 7 hours ago||
I wonder what the dev/CI process looks like on this.

Will it ultimately be manually loading a build into specific hardware each time, or is there a level of automation that can be done here?

viraptor 6 hours ago||
m1n1 does a lot of fun stuff here: https://asahilinux.org/docs/sw/tethered-boot/

It allows you to do some remote control and automation for kernel loading and debugging where you get a very thin layer in between the real hardware and the kernel, without affecting the hardware I/O behaviour.

Gigachad 6 hours ago|
Is the github sponsors link a 404 for everyone else?
zamadatix 5 hours ago|
Not for me, perhaps fixed in the last hour already.
More comments...