There is an openSUSE and open source track. There are three talks that can be submitted for the summit. One is a short talk with a 15-minute limit;a normal talk with a with a 30-minute limit and a long talk with a 45-minute limit.
Attendees of SUSECON are welcome to attend and submit talks. openSUSE Summit Dublin is a free community event that will take place on the last day of SUSECON and the Saturday that follows SUSECON.
Contact ddemaio (@) opensuse.org if you have any questions concerning the summit.
Three openSUSETumbleweed snapshots released this week brought about two dozen new versions of software.
The snapshots brought one new major version update for pulseaudio and an updated version of bash.
The major version update to pulseaudio 13.0 came in Snapshot 20190921. The sound server program improved the initial card profile selection for Advanced Linux Sound Architecture (ALSA) cards and improved the play 5.1 surround audio that now treats both “side” or “rear” channels identically when the user has a 5.1 speaker setup; the 7.1 setup still has a difference which channel pair gets used. The libreoffice 22.214.171.124 package had some stability tweaks and addressed two Common Vulnerabilities and Exposures (CVE), which one had an unsafe URL assembly flaw. The cabextract program that un-archives files in the Microsoft cabinet file format modernized the spec file in its 1.9.1 version. Another package updated in the snapshot was osinfo-db, which is a package that provides a database of information about operating systems for virtualization provisioning tools. The snapshot is trending at a stable rating of 95, according to the Tumbleweed snapshot reviewer.
The 20190920 snapshot is also trending at a stable rating of 95. This snapshot updated bash from version 5.0 to 5.0.11. The minor update to bash change posix mode behavior. The Mesa 3D graphics library19.1.7. The update fixed a KWin compositor crashes on launch as well as a few other bugs. Command line tool and library curl 7.66.0 added experimental feature for HTTP/3 that is disabled by default but can be enabled and works, according to this tutorial from Daniel Stenberg. Two CVEs were also fixed with the curl update. The 26.3 version of the emacs text editors has a newly assigned codepoint U+32FF that was added to the Unicode Character Database compiled into Emacs, which now supports the new Japanese Era name. Software development tool swig 4.0.1 added Python 3.8 support and fixed some minor regressions that were introduced in the 4.0.0 major release. An updated version of plymouth added a time delay of 8 seconds to fit an AMD graphics card for graphical boot animation.
The snapshot that started off the week, 20190918, brought an update for Mozilla Thunderbird. The mail clients 68.1.0 squashed bugs like a car speeding on the autobahn on a muggy day; A total of six CVEs were addressed in the update including CVE-2019-11739, which allowed for a Covert Content Attack on S/MIME encryption using a crafted multipart/alternative message. File searching utility catfish 1.4.10 added some new features and improved the application menu to make better use of space, padding, and margins. The snapshot is recorded a moderately stable rating of 90, according to the Tumbleweed snapshot reviewer.
Kata Containers is an open source container runtime that is crafted to seamlessly plug into the containers ecosystem.
We are now excited to announce that the Kata Containers packages are finally available in the official openSUSE Tumbleweed repository.
It is worthwhile to spend few words explaining why this is a great news, considering the role of Kata Containers (a.k.a. Kata) in fulfilling the need for security in the containers ecosystem, and given its importance for openSUSE and Kubic.
What is Kata
As already mentioned, Kata is a container runtime focusing on security and on ease of integration with the existing containers ecosystem. If you are wondering what’s a container runtime, this blog post by Sascha will give you a clear introduction about the topic.
Kata should be used when running container images whose source is not fully trusted, or when allowing other users to run their own containers on your platform.
Traditionally, containers share the same physical and operating system (OS) resources with host processes, and specific kernel features such as namespaces are used to provide an isolation layer between host and container processes. By contrast, Kata containers run inside lightweight virtual machines, adding an extra isolation and security layer, that minimizes the host attack surface and mitigates the consequences of containers breakout. Despite this extra layer, Kata achieves impressive runtime performances thanks to KVM hardware virtualization, and when configured to use a minimalist virtual machine manager (VMM) like Firecracker, a high density of microVM can be packed on a single host.
If you want to know more about Kata features and performances:
Snapshot 20190724 had just three packages updated. GCC 9 received a small update that Included a fix for openCV3 builds with LTO and provided a fix for vector shift mis-compilation on IBM’s s390 architecture. The update of osc 0.165.3 fixed broken TLS certificate handling and the package ristretto, which is a fast and lightweight image viewer for the Xfce desktop, added support for Canon CR2 format and improved the “Sorting” menu with the 0.8.5 version update. The snapshot posted a moderately stable rating of 72, according to the Tumbleweed snapshot reviewer.
openSUSE and TUXEDO Computers want to offer the best user experience
KÖNIGSBRUNN, Germany — The cooperation between TUXEDO Computers and the openSUSE project has existed since 2018. This has been very successful, so that the release team of openSUSE has received a permanent loan from TUXEDO Computers and has developed and further developed the new version Leap 15.1 on the InfinityBook Pro 13, which will be released soon.
From 24th to 26th of May 2019, TUXEDO Computers will be part of the openSUSE Conference 2019 in Nuremberg/Germany. There, the hardware manufacturer from Königsbrunn near Augsburg/Germany will present a selection of current devices. The laptops can be viewed and tested here. Via the TUXEDO Computers online shop, more than 20 devices can be configured according to individual requirements and equipped, for example, with the Linux distribution openSUSE. The openSUSE conference in May is the annual openSUSE community event that brings people from all over the world together. Organized lectures, workshops and BoF sessions provide a setting for more informal meetings and hack sessions.
You can add the openSUSE 15.1 release counter to your website in various sizes by including the following html code in your blog: <a href="http://en.opensuse.org/Portal:15.1"><img src="http://counter.opensuse.org/medium.png" border="0"/></a><br/>
“medium” is the size of the counter; it can also be “small” or “large” and we also have “wide” for a banner.
We are very pleased to announce that installing the lightweight and slim desktop environment Xfce in openSUSE Tumbleweed just got faster and hassle-free!
Along with GNOME and KDE Plasma, Xfce can now be conveniently selected from the installer’s main screen, as your desktop environment from both DVD installer and net installer. All this is combined with a carefully picked selection of packages that rounds off our offered system to get you started quickly and easily.
Our Xfce team has invested a lot of work in the past months to optimize the “cute mouse” by focusing on the desktop and the underlying rolling release of Tumbleweed. It features applications that better suit the desktop, as well as new modern themes that make the default experience refreshing and enjoyable.
Finally, there is a relatively new project in the Open Build Service (OBS), which builds automatically and daily development versions of Xfce software from Xfce Git Master branch. Through this repository, openSUSE Xfce packagers and contributors are able to test commits and can spot bugs before official releases.
Xfce users are welcome to test it and contribute to it at X11:xfce:rat. 
One more year, Google Summer of Code (GSoC), a mentoring program in which openSUSE helps university students contribute to open source project, has come to an end. So, before 2018 ends as well and we start preparing for the new edition of GSoC, it is time to speak about all the great things that happened this year.
Let’s start by the most important part, our students’ work. Our successful students, Ankush Malik and Liana Xu, have spent 3 months hacking on openSUSE projects, during which they have written a lot of impressive code. But GSoC is much more than code, it is about learning, having fun and becoming part of the openSUSE community. Both Ankush and Liana claim that it has been an inspiring experience and are really thankful for the support they received from their mentors.
It is also worthwhile mentioning the great collaboration which makes me particularly proud of the openSUSE community. Thanks to the help of contributors all around the world, the blog posts about GSoC were shared, republished and translated to languages like Japanese, Spanish and Indonesian. We also had the help of the openSUSE Indonesian community to design “Thank you” mugs to send to our mentors. Look how cute they are:
Last but not least, I would like to thank our passionate mentors and admins who took out time from their busy schedules to guide the students, our motivated students for their willingness to learn and good work, Douglas DeMaio who helped with shipping packages and organization, Google and specifically its open source team not only for the program itself but also for the well organized conference, SUSE for their support (especially economically), TSP which allows our students to attend the openSUSE conference every year, the blog post translators, Pramasta Ramadha and the rest of the designers who helped with the mugs design and everybody else who made this year GSoC amazing. Because of people like you, openSUSE is much more than just software.
Now let’s get ready for next year to keep helping new passionate students becoming part of openSUSE! Google has already announced Google Summer of Code 2019 and openSUSE is looking for mentors and organization admins who would like to help bringing new programmers to our community. We need at least one more organization admin and several openSUSE related projects to be able to participate. The application period for organizations is open from January 15 to February 6, so if you would like to participate as an organization admin please get in touch with Hernán, Christian or me by January 20. For mentors, the deadline to create an issue with your project(s) in the mentoring page is January 31. If you want more information about the program and what openSUSE has been doing, check out last blog posts, our mentoring page, Google’s Mentor Guide and the following video:
Yet another Setup Tool (YaST) had a fair amount of changes in the 20181118 snapshot and a recent YaST sprint blog post describes new features with configuring openSUSE Kubic, configuring SSH access during installation and how YaST has provided improved textmode support for Chinese, Japanese or Korean and other languages. The YaST changes will be worked into the future release of openSUSE Leap 15 Service Pack 1 (15.1), which is schedule to have its beta release in February. An update for flatpak 1.0.5 fixed a regression in flatpak run that caused problems running user-installed apps when the system installation was broken. The updated package of gnome-shell 3.30.2 fixed regression in the handling new input sources. The 4.19.2 Linux Kernel package allows the handling of undefined instructions from EL1, according to the changelog. OSTree, with its libostree 2018.9 package, is preparing for systemd related change in a future release that has a timeout effect. Apache Tomcat, which is an open source implementation of the Java Servlet, JavaServer Pages, Java Expression Language and Java WebSocket technologies, added the ability for a UserDatabase to monitor the backing XML file for changes and reload the source file if a change in the last modified time is detected in its 9.0.13 version.
Every OBS request for openSUSE Factory goes through a legal review process to ensure licenses are compatible. Cavil indexes these and creates a legal report for every single request. Bot comments in OBS are made through the legal-auto python script, but the entire project is much larger than the script and bots.
Sebastian Riedel and Stephan Kulow have been developing the project for two years and it has been used in production for more than a year and half. The Cavil legal review system replaces an older system and provides much more efficiency. Cavil can automatically accept more than 90 percent of all new requests based on data from previous reviews, so packages are much more streamlined into openSUSE Factory.
The project has been so efficient that two lawyers who do all the legal reviews with the system, which is also used by SUSE, had reviewed about 110,000 packages this past year. The same lawyers curated a library with 27.000 license patterns for 600 licenses and 20 license patterns for 100 of the most common licenses that are used to create legal reports. Riedel said there is a desire hope to expand that in the future with the hope of collecting new patterns with the open-source community.
The legal Data Base used by SUSE to generate reports with new license patterns is about 2TB and has about 68.433.436 pattern matches in 27.319.682 individual files.