Dear Tumbleweed users and hackers,

It seems the holidays are over and people are submitting more things to Factory again. There were even days were I was almost running out of free staging projects (almost – I still had some spare). In total, we have published another round of 7 snapshots this week (0414…0420)

The main changes released this week were:

• Ruby 3.1 plus all ruby3.1-rubygem-* packages have been removed from Tumbleweed
• zypper 1.14.60 / libzypp 17.31.10: support for x86-64-vX architecture packages
• Mesa 23.0.2
• GStreamer 1.22.2
• OpenLDAP 2.6.4
• python-setuptools 67.6.1
• libyui 4.5.1: changes in the way icons are loaded. In some cases, we’d seen the icon missing (boo#1210712)

Most relevant updates that are currently being tested in stagings:

• Rust 1.69
• grep 3.10
• libxml2 2.10.4
• Boost 1.82.0
• Mozilla Firefox 112.0.1
• KDE Gear 23.04.0
• Linux kernel 6.2.12
• ICU 73.1: breaks libqt5-qtwebengine
• gcc 13.1 RC2
• Wayland 1.22.0: crashes Firefox (https://bugzilla.mozilla.org/show_bug.cgi?id=1826583, fixed for FF 113)
• openSSL 3.1: still broken are nodejs19, perl-Protocol-HTTP2, python-aiohttp, python-tornado6

Thank you to the package maintainers for keeping things going and looking after the build failures in openSUSE:Factory. We’re actually down to 69 failed builds out of 15600 packages. Can we get those fixed too? See https://tinyurl.com/ysy4nnnz

The April syslog-ng newsletter is now on-line:

• Installing a syslog-ng 4 development snapshot on FreeBSD
• Getting data to Splunk
• Streaming deduplication in syslog-ng

It is available at https://www.syslog-ng.com/community/b/blog/posts/the-syslog-ng-insider-2023-04-freebsd-splunk-deduplication

Are you ready for this year’s openSUSE Conference? It will once again take place at the Z Bau, which was converted into a cultural center in 2014.

The conference schedule is now online abd live every year, and is packed with tons of great talks. It’s a great place to do some hacking, socializing and learning new things about openSUSE and open-source software.

System administrators, developers, Information Technology managers, startups, IT students and professors are welcome to attend.

Here is a bit of information about Nuremberg. Nuremberg is a German town located in Bavaria. It is the second most populated city in Bavaria behind Munich. Nuremberg is located 170km north of Munich and 224km southeast of Frankfurt. Nuremberg is distinguished by its medieval architecture, including the fortifications and stone towers of its Altstadt (Old Town). At the northern edge of the Altstadt, surrounded by red-roofed buildings, stands Kaiserburg Castle.

People who take the train will arrive in downtown Nuremberg. People coming in on a flight can go downtown using the subway (U-Bahn) from the airport. U2 is the train that goes too and from downtown (Hauptbahnhof). To get to the Z-Bau, you can take the U1 to Frankenstrasse. You’ll see the new building for SUSE as you leave the subway.

We are looking forward to seeing every at the conference next month. Please remember that there will be a preparty on May 25 at the Kater Murr. Cya there!

We would like to thank our sponsors for this year’s conference. Thank you to arm, SUSE, the Geeko Foundation, Fedora, FOSSlife and Linux Pro Magazine.

Dear Tumbleweed users and hackers,

This week we have seen quite a low number of submit requests coming to Tumbleweed, which resulted in the snapshots being built and tested rather quickly and us thus managing to release 8 snapshots in the day (usually the Thursday snapshot is only published later on Friday evening, this week it was all built and tested before lunch). So the 8 snapshots are not something really special. The versioning for snapshots limits us to one snapshot per day after all (and I doubt anybody would ask for more than that).

The snapshots covered in this review are 0406…0413 and contain these changes:

• Poppler 23.04.0
• Libvirt 9.2.0
• Apache 2.4.57
• mutter 44.0 git snapshot (44 commits after 44.0: avoid some crashes on gnome-shell)
• systemd 253.3
• LLVM 16.0.1
• KDE Frameworks 5.105.0
• Pipewire 0.3.68
• 389-ds 2.3.2
• gnutls 3.8.0
• Mozilla Firefox 112.0
• Linux kernel 6.2.10

Staging projects are not overwhelmed at the moment, so if you have anything that you want to be integrated into Tumbleweed, now is a good time (as ever): we will; find staging space for your needs. The current updates being tested include the following:

• GStreamer 1.22.2
• openSSL 3.1
• Zypper 1.14.60 / libzypp 17.31.9: support for x86-64-vN sub-architectures
• Wayland 1.22.0: crashes Firefox (https://bugzilla.mozilla.org/show_bug.cgi?id=1826583, fixed for FF 113)

And that’s already all the interesting things I could find in staging…

Six openSUSE Tumbleweed snapshots have been released since last Friday updating some GNOME applications, KDE’s Frameworks, the LLVM compiler and several other packages.

The rolling release updated several new and some older software packages.

GNOME webcam application cheese updated from version 43.0 to 44.0 in snapshot 20230412. The photo and video program updates translations and avoids creating duplicate camera devices, which was related to GStreamer emitting a call. GNOME’s widow manager Mutter 44 had some changes to make it more resilient and avoid a type of crash on gnome-shell. An update of the development library SDL2 2.26.5 fixed a crash on Linux Kernel if dbus can’t be initialized. It also added mapping for the DualSense Edge Wireless Controller on Linux. An update of apache2 2.4.57 and its subpackages fixed regressions introduced in the previous version. An updated version of yast2-storage-ng 4.6.5 adjusted detection of Dell BOSS devices. AV1 encoder rav1e 0.6.4+0 had the most changes of all the packages that arrived in the snapshot. The package enables AVX2 12-bit Inverse Transform x86 assembly as well as a new SSE4.1 HBD Inverse Transform x86 assembly.

An update of hxtools and Japanese Dictionary edict each had a matching 20230411 version, which also matched the 20230411 snapshot. While hxtools removed an option and changed an option behavior, edict had no changelog recorded. The lightweight directory access protocol 389-ds updated to a 2.3.2 version update. The package added tests for WebUI, fixed a memory leak and applied upstream fix for setuptools. An update of user-level packet capture package libpcap 1.10.4 fixed the name of the launch daemon service. An update of gnutls 3.8.0 took care of CVE-2023-0361. The vulnerability for the Transport Layer Security library could have allowed for a side-channel to be sufficient enough to recover the key encrypted RSA ciphertext. There was also an update of the keyring with https://gnutls.org/gnutls-release-keyring.gpg. Seven translation were updated with a newer version of yast2-trans and dracut removed a mkinitrd wrapper.

The 20230410 snapshot updated just two packages. GNOME personal photo manager application shotwell updated to version 0.31.90. The new version fixed issues with images that continuously shifted by a time zone offset and it fixed issues with unset exposure times. The photo manager also enabled face recognition. The other package to update was the video driver package xf86-video-savage; the 2.4.0 version had a small change that improves support for building with Xorg 1.19 and later.

KDE Frameworks 5.105.0 updated in snapshot 20230409. The 5.105.0 version that has addon libraries to Qt had some minor indentation fixes for the text editor KTextEditor. The Breeze Icons added some missing semi-transparency and a new breeze-dark representation for Redshift icons. Kirigami, which is used for computers, phones, TVs and other devices, fixed a header with invisible content that was taking up space and adjusted the default page categorized settings. An update of the audio- and video-handling package pipewire 0.3.68 adds a new Real-Time Transport Protocol session module and adds a new runtime debug property for streams and nodes to trigger a save of raw samples to a wav file. Music player amarok had a small adjustment and several translations were made with the manpages-l10n 4.18.0 update.

The compiler and toolchain package llvm16 had its first minor release of the version in snapshot 20230408. The 16.0.1 added a rebase patch and some bug fixes for the major release. An update of libreoffice 7.5.2.2 fixed seven bugs. One of those returned the heading style label that vanished in the Chinese, Japanese and Korean interfaces. Another heading navigator that caused Writer to crash was fixed. Other packages to update in the snapshot were ibus-table 1.17.0, yast2-packager 4.6.1 and yast2-ruby-bindings 4.6.2.

The snapshot from last Friday, 20230407, was small, but it updated systemd to version 253.3. Fixes that are not part of the stable release were merged for this snapshot release like a github workflow concerning release tags. The updated version also merged tag ‘v253.3’ into SUSE/v253 and had a continuous integration action related to mkosi dependencies. An update of libstorage-ng 4.5.95 disabled some NVMe detection and added a GitHub action using Fedora. GNU Compiler Collection 13 had some small enablements and added cross-bpf packages.

openSUSE.Asia Summit 2023: Call for Host

Photo by rania: https://raniaamina.id/opensuse-asia-summit-2019-we-re-asia/

Last offline opensuse Asia Summit is 2019 held at Information Technology Department, Faculty of Engineering, Udayana University, Bali, Indonesia, 3 years ago.

The openSUSE.Asia Summit is the largest annual openSUSE conference in Asia, attended by contributors and enthusiasts from all over Asia. The event focuses primarily on the openSUSE distribution, its applications for personal and enterprise use, and open source culture.

This year, we call for hosts to you who are interested in hosting the next openSUSE.Asia Summit.

Here is the date you need take notes:

• April. 30: Deadline of application
• May. 15: Announcement of the next host

How to Submit ?

Please send an email which contains an introduction of your team/community and proposal to both opensuse-summit@opensuse.org and opensuseasia-summit@googlegroups.com. Proposal should contain minimum of:

• Venue and capacity (we prefer using campus building, but any alternative can be discuss later)
• How to reach your city and venue
• Budget Estimation
  • Conference Venue
  • Tea break, Lunch, Dinner
  • Accommodation: location and price
• How to reach your community

Please help to spread the words and we are looking forward to hearing from you soon!

Further information about openSUSE.Asia Summit is available at: https://en.opensuse.org/Portal:Asia_Summit

After implementing the feature that allows the users to comment on specific lines in the changes of a request, we also introduced the possibility to notify about them. However, there was a corner case which caused the notifications to fail, so our reference server did not send any web notifications or emails during the Easter holidays (from 6th to 11th April). Impact Our reference server did not send any notifications (web or email) for round...

As I have been enjoying this well-built, hand held computer / gaming console, I have had to do some problem solving to get things to work. I am building a resource that, I hope will be beneficial to more than just me. it is something I do refer back to from time to time but […]

Dear Tumbleweed users and hackers,

Despite some people celebrating Easter, and a typical tradition is to hide stuff around, we don’t do that to you: we publish the 7 snapshots this week all at the same place – exactly where you know how to find them.

The 7 snapshots were numbered 0330…0405 and contained these changes:

• Mesa-demo 9.0.0
• Ruby 3.2.2
• Coreutils 9.2
• Linux kernel 6.2.9
• Samba 4.18.1
• libnvme 1.4 / nvme-cli 2.4
• Mozilla Firefox 111.0.1
• KDE Plasma 5.27.4
• Qt 6.5.0
• TeXLive 2023
• systemd-rpm-macros: Drop support for -n/-f options in %service_del_postun
• python-setuptools 67.6.0

Despite the long weekend ahead, I’ll try to keep OBS and openQA busy (assuming there are submit requests in the queue). In any case, the following things are already in the queue and are being worked on:

• Poppler 23.04.0
• Libvirt 9.2.0
• systemd 253.3
• LLVM 16.0.1
• Zypper 1.14.60 / libzypp 17.31.9
• openSSL 3.1
• gnutls 3.8.0

Snapshots of openSUSE Tumbleweed are continuously rolling forward.

Several medium sized snapshots this week provided an array of system component updates for rolling release users.

Snapshot 20230404 provided an update of systemd 253.2; this update moved the file system checker logic systemd-fsck items to a udev userspace sub-package. The spec file also added files coredump. Mozilla Firefox squashed 13 Common Vulnerabilities and Exposures. One of those was CVE-2023-28176 that has important severity and was described as a memory safety bug. The Web Service Discovery host daemon updated to version 0.7.1. This wsdd new version fixes regression due to changed Application Programming Interfaces in Python 3.10 and it also makes a point to force the use of this Python version for openSUSE Leap. The hardware identification and configuration data package hwdata updates Peripheral Component Interconnect, USB and vendor identities in its 0.369 version.The yast2-storage-ng 4.6.4 version exports thin Logical Volume Manage volumes when being cloned. A few more YaST packages had updates in the snapshot.

Snapshot 20230403 had just a few packages update. The aaa_base package added back a conditional glibc requirement and made it a fixed requirement. The libcap 2.68 update forced some internal functions to be hidden outside the library. The package also cleaned up and added support for documentation and manpages respectively. A major version update of systemd-rpm-macros 20 deprecated some support options and makes sure to restart services if /etc/sysconfig/service is not present.

The command line interface utility for NVMe storage was updated in snapshot 20230402. The nvme-cli 2.4 version added a smart cloud log plugin, and enabled a few options to include --tls_key and --tls. Another NVMe related package to update in the snapshot was libnvme 1.4, which added define for Direct Media Interface (DMI) sysinfo and filters out invalid UUIDs from DMI. CVE-2023-1393 was fixed with the xwayland 23.1.1 and xorg-x11-server 21.1.8; it could have lead to an escalation of local privileges. Brazilian Portuguese translations were made with the libstorage-ng 4.5.92 andyast2-storage-ng 4.6.3 updates.

The 20230401 snapshot starting off the month updated the Linux Kernel; kernel-source 6.2.9 disabled hibernation mode of Atheros’ 4th generation AR8031. Multiple fixes related to arm architectures were resolved. A few GNOME packages were updated in the snapshot. Both gnome-shell 44.0+42 and gnome-control-center 44.0+20 updated. The latter fixed a Network Time Protocol switch that was out of sync. GNOME’s wayland display server and window manager mutter 44.0+18 cleaned up the spec file and makes use of a more interoperable path for bash. Xen had an update to 4.17.0_06. There were multiple patches for the virtualization package related to GNU Compiler Collection 13 issues. Text editor vim 9.0.1392, xfce4-panel 4.18.3, coreutils 9.2 and several other packages updated in the snapshot.

Both snapshot 20230331 and 20230330 has a smaller amount of packages to update in the snapshot. Some of the key packages to update in it were ImageMagick 7.1.1.5, which eliminated a memory leak when writing the JPS image format, and ruby3.2 3.2.2, which took care of two CVEs. CVE-2023-28755 fixed the URI parser that mishandles invalid URLs and CVE-2023-28756 fixed the time parser that mishandled invalid strings. Graphics library gegl 0.4.44 fixed a crash unmasked by glib 2.75.3 and yast2 4.6.2 replaced modules calls to mkinitrd with dracut.