Feed cleverhans-blog [copy] http://www.cleverhans.io/feed.xml has loading error: cURL error 22: The requested URL returned error: 404
From ALP to SLES16 (osc25)
Last three years I have talked at this conference about SUSE’s plans, the products to come, as well as the technology included.
As over the time the plans are adjusted, this session will summarise the state of the matters, SUSE's plan for upcoming product releases and, most importantly, what it means for openSUSE Leap and Micro.
Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/
about this event: https://c3voc.de
Video:osc25-4991-eng-From_ALP_to_SLES16_hd.mp4
Atomic OS Updates via OCI Images (osc25)
When using tools like RPM or Zypper for updating packages, there is a risk of incomplete updates or breaking the running system. To overcome these challenges, we have developed **container-snap**, a prototype plugin designed to deliver **atomic OS updates** that are fully applied or rolled back without compromising the system's state. **container-snap** leverages OCI images as the source for updates and integrates seamlessly with openSUSE’s [tukit](https://github.com/openSUSE/transactional-update) for transactional OS updates. By utilizing **Podman’s btrfs storage driver**, it creates bootable btrfs subvolumes directly from OCI images, effectively turning them into atomic OS snapshots. This allows you...
Linux schedulers for fun and profit with SchedKit (osc25)
The Linux kernel scheduler is a critical component, profoundly impacting system performance and responsiveness. Traditionally, changing the scheduler has involved recompilation, rebooting, or complex kernel module management – a significant barrier for experimentation and fine-grained performance tuning. SchedKit dramatically simplifies this process, enabling users to dynamically switch between schedulers at runtime, without reboots or kernel modifications, opening up new possibilities in customizing kernel scheduling for the specific usecase. This talk introduces SchedKit, a new open-source project leveraging the power of eBPF and the sched_ext framework. SchedKit allows users to leverage custom Linux...
Desired state for complex applications (osc25)
Using configuration management like SALT or ansible for servers or more or less simple applications is standard practice in the industry. But, what if we talk about complex systems with special configurations and complex interactions? In the production industry we talk about "digital twins", which enables faster development and better integrations. For IT systems we talk now about a "digital blueprint" for our systems. Right now it's a vision we are evaluating - it should enable us to do "one-click-installations" of complex landscapes as well as generating a human readable description of the architecture. It hopefully shifts...
Slowroll (osc25)
How is Slowroll doing?
What happened in the last year?
What challenges are ahead?
Let me tell ya...
Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/
about this event: https://c3voc.de
Video:osc25-4944-eng-Slowroll_hd.mp4
The Unified Kernel Image in openSUSE distribution (osc25)
### Introduction: The Need for Secure and Reliable Booting In the ever-evolving landscape of Linux distributions, security and boot reliability have become paramount concerns. Traditionally, the boot process relied on separate kernel and initrd components, leading to potential vulnerabilities and complexities. This presentation delves into the journey of integrating a more robust and secure boot mechanism by leveraging the Unified Kernel Image (UKI). ### Static and Signed Initrd: Establishing a Foundation for Integrity We will begin by outlining the critical need for a static and signed initrd within modern Linux systems. The dynamic nature of traditional initrd...
Bridging the Digital Divide (osc25)
Open source software is powering global innovation. In less developed regions, it's not just technology but a catalyst for closing the digital divide and fueling economic and social progress. This session explores how open source software goes beyond just coding as it creates real opportunities and positive change in the world’s least developed areas. For software developers in underserved regions, open source software offers free access to advanced technologies. This empowers them to build innovative IT solutions tailored to their communities’ unique needs. I will highlight the many benefits of adopting and customizing open source software in...
Packit: RPM-based CI/CD for your project (osc25)
Are you in search of RPM-based CI for your project hosted on GitHub or GitLab? Allow us to introduce [Packit](https://packit.dev/), the upstream integration tailored specifically for RPM distributions. Initially conceived for Fedora, Packit now extends its capabilities to encompass the entire RPM family. In this presentation, we will explore Packit and how to use it for your project. Attendees can expect an examination of: * **RPM Builds and Testing**: Learn how Packit simplifies the process of running RPM builds and conducting tests directly on pull requests. * **RPM Repositories**: Discover how Packit allows you to provide your users...
"Public Money? Public Code!" (osc25)
‘Public Money? Public Code!’ under this slogan thousands of individuals and hundreds of organisations come together and advocate for Free and Open Source Software in public institutions. Together with over 230 organisations the Free Software Foundation Europe (FSFE) is calling for public institutions to publish publicly financed software under a Free and Open Source Software license - If it is public money, it should be public code! The long-term goal of the initiative is to recognise and reduce the software dependency and vendor lock-in of public administration and to make public administrations digitally independent...
SELinux - current state in (open)SUSE (osc25)
SELinux is a Mandatory Access Control (MAC) system that enhances a system's security by enforcing policy-based access control rules. For a long time openSUSE and SUSE have relied heavily on AppArmor as default MAC system. With the decision to switch to SELinux as default MAC on SLE 16 and openSUSE Tumbleweed, there are multiple challenges that we have to overcome to integrate SELinux into those distributions. This session will give an overview on the current state of SELinux in openSUSE and SUSE, the plans for the future and what it means for users. Licensed to the public under...