Since last Friday, five openSUSE Tumbleweed snapshots have been released.

GNOME 40, btrfs, Mesa, Wireshark and several other package updates landed this week in the rolling release.

The last snapshot posted to the openSUSE-Factory mailing list was 20210721. The snapshot contained updates for both GNOME 40 and the userspace utility to manage the btrfs file system; the btrfsprogs 5.13 package improved documentation, made some fixes and added preparations for the 5.14 Linux Kernel. GNOME 40 on the other hand had a slew of updates that focused on updating translations and bug fixing. A regression was fixed in the 40.3 gnome-maps package and the 40.3 gnome-software package fixed a crash that sometimes happened when clicking on a website button on a details page. Another crash that was fixed in gnome-terminal 3.40.3 affected the loading of the reference schema source, which failed. The 4.4.14 autoyast2 package now copies files to a correct location based on details listed at bsc#1188357. The text-sharpening package known as harfbuzz updated to version 2.8.2 and made various fixes and improvements to the subsetter. Other notable packages to update in the snapshot were yast2-users 4.4.4, text rendering package pango 1.48.7, system call tracer strace 5.13 and many others.

Just three packages were updated in snapshot 20210720. The cpupower 5.14 version included an upstream patch and made a speed select modification for Intel hardware. The other two packages to update were ibus-table-others 1.3.12, which updated some function keys, and the library openblas_pthreads 0.3.16, which had some architecture fixes and improvements for RISC-V.

Five packages updated in snapshot 20210718. Wireshark 3.4.7 fixed a Distributed Network Protocol dissector crash and a Common Vulnerability and Exposure. The mdevctl utility for managing devices updated to version 0.81 and fixed a defined aspect in the json file. A crash was fixed as well as an initialization error in the video codec library libaom 3.1.1. Both libslirp 4.6.0 and polkit-default-privs were also updated.

The 5.13.2 Linux Kernel has some bluetooth and Advanced Linux Sound Architecture fixes in snapshot 20210717. Mesa had a version bump to 21.1.5 in the snapshot, which was a minor bugfix release. The yast2 packages that were updated focused on security and the User Interface. Mozilla Firefox went CVE hunting and closed about nine vulnerabilities with its brand new 90 version; one of those was a memory safety bug. GTK2 support, which was used for a Flash plugin, was removed in the update of the browser. Mozilla also had an update of Thunderbird in the Tumbleweed snapshot. Just four CVEs were closed d in the release, which also fixed the memory safety bug that affected the release candidate for Firefox 90 and Firefox Extended Support Release 78.12.

The week started off with snapshot 20210716, which had more than a handful of Python Package Index updates; python-setuptools updated from version 44.1.1 to 57.0.0. A patch in the new major version was added to remove a dependency cycle for one simple function. There is no python2 support in the setuptools with the new version, according to the changelog. Ethernet device management tool ethtool 5.13 added some upstream features like a netlink handler for module and xwayland 21.1.2.

According to the review of week 29 systemd 249 and rpmlint 2.0 are in staging will be released soon.

Certificate Auto Enrollment allows devices to enroll for certificates from Active Directory Certificate Services. As of Samba 4.16, Linux clients can now auto enroll for certificates just like a Windows client.

Samba’s Certificate Auto Enrollment uses the certmonger service to keep track of certificates. It also uses the cepces plugin to certmonger. The sscep command is also used to download the trust chain.

Certificate Auto Enrollment is compatible with both Winbind and SSSD.

Certificate Auto Enrollment is initiated using Samba’s Group Policy client, samba-gpupdate. The Samba wiki has more details on how to setup Group Policy, and how to configure Certificate Auto Enrollment.

The recent release of openSUSE Leap 15.3 has gained some maintenance improvements from a new repository setup.

Maintenance efforts for Leap related to Closing the Leap Gap expands to having three separate repository groups instead of one.

The openSUSE specific package repositories called oss and non-oss repositories changed. While these two repositories contained all the content of Leap 15.2 and older, they now contain only the branding and related setup packages.

The shared PackageHub and openSUSE packages known as the backports repository contains all the packages not in SUSE Linux Enterprise nor in the openSUSE specific packages. Previously, PackageHub was specific to SLE, which duplicated packages between openSUSE and PackageHub; now this single project is shared between both PackageHub and openSUSE Leap 15.3. This single repository will improve the quality of delivering updates and avoid package conflicts like zypper patch for openSUSE Leap 15.3.

There is a single repository with the SLE imported packages that contain the base packages and other packages from SLE. A single channel regenerated through a script will not need to be adjusted manually and will be good for the openSUSE setup in aarch64, s390x, x86_64/i586 and ppc64le architectures.

The first method used to export the SLE imported package repository for Leap was not working well in the current repository system, which led to several dependency issues, package version overlaps and other related instabilities.

Last week, the new export method was deployed using regular SLES module technology. This resolved all the current problems and also made handling and debugging the repository easier for the coordination teams.

The topic recieved various feedback from the Leap retrospective.

Linux audio has been considered a sore-spot with some audiophiles. Personally, I have been very happy with Linux Audio since about 2009 or 2010 or so and enjoyed its continual improvements as the project has matured. The high point for PulseAudio has been the intuitive, input / output switching. The downside has been the latency […]

Episode 30 | Packing up the Vintage - LeoCAD 21.06 - SUSE Academic Program - BDLL Follow Up - openSUSE Corner - Computer History Retrospective on Computer Games (1984) Website - https://CubicleNate.com Mastodon - https://social.tchncs.de/@CubicleNate Twitter - https://twitter.com/CubicleNate YouTube - https://www.youtube.com/channel/UCY6KdxWFOlKaIPand7ROwvw https://open.lbry.com/@cubiclenate:9 Music: "Pixelland" by Kevin MacLeod

Dear Tumbleweed users and hackers,

This week I can’t but hope everybody is safe – at least here in Europe, water keeps falling from the sky. That bad weather has a positive side effect on Tumbleweed though: I prefer hiding inside, doing some Tumbleweed stuff instead of going outside. This has been visible during this week with a full 7 snapshots being published (0708…0714)

The most relevant updates included:

• linux-glibc-devel 5.13
• Linux kernel 5.13.1
• KDE Gear 21.04.3
• KDE Plasma 5.22.3
• vsftpd 3.0.4: Disable TLS prior to v1.2 by default
• grub2 2.0.6
• bluez 5.60
• fmt 8.0.0 together with ceph 16.2.5

Despite all this, the staging projects are not empty at all. You awesome maintainers keep things coming. Currently, we’re testing integration of these parts:

• KDE Frameworks 5.84.0
• Mozilla Firefox 90.0 & Thunderbird 78.12.0
• Mesa 21.1.5
• Linux kernel 5.13.2
• libxcrypt 4.4.23: addition of CRYPT_SALT_METHOD_LEGACY
• meson 0.58.1
• rpmlint 2.0

pasta is a stupid simple pastebin service for self-hosting. I started this project months ago because I was missing an easy, simple and no pain self-hosting solution. This is what pasta is about. You just throw a file at it via it’s archaic web interface, a simple POST request or with its stupid simple CLI tool:

You are being constantly tracked, surreptitiously, through the web. Various sites are tracking you with the intent of selling you products or selling your information. It’s one thing if a website inquires basic information when you are visiting, it is another thing when a website stalks you across the internet. I believe this to be, … Continue reading Ad-Blocking and Why You Should →

Dear Tumbleweed users and hackers,

From the feeling, I probably have to say, the Summer holiday is upon us. Tumbleweed is still rolling of course: it’s not warm enough to have melted our rubber tires to make them sticky glue. During the last week, we have released 5 snapshots (0702, 0703, 0704, 0706, and 0707)

The main changes included:

• sendmail 8.17.0.3
• Mesa 21.1.4
• PHP 7.4.21
• nodejs 16.4.1
• Linux kernel 5.13.0
• NetworkManager 1.32.2
• bluez 5.59
• MOTD (mot of the day) handing moved from login.defs to pam_motd
• Rust 1.53

Changes planned for the next few weeks:

• linux-glibc-devel 5.13
• KDE Gear 21.04.1
• KDE Plasma 5.22.2
• Linux kernel 5.13.1
• libxcrypt 4.4.23: addition of CRYPT_SALT_METHOD_LEGACY; needs a fix in pam
• fmt 8.0.0

I have espoused the glorious wonders of LeoCAD on openSUSE before. This is a fantastic application to work with Lego bricks and components in a virtual, safe for your feet, environment. Building with Lego bricks is a lot of fun, using it virtually can help to refine ideas. Although the title of this post mentions […]