Weekly Roundup – 2017, week 12

Posted on March 24, 2017 by Donald Stewart

Another week has passed and there have been many changes with Cauldron as well as continued testing on RC ISOs for Mageia 6. Mageia 5 has also received some important updates.

Cauldron

As we are hoping to release the release candidate for Mageia 6 soon, the focus on development in Cauldron is switching more and more away from new releases and features to focus on bug fixes and getting the packaged software into the best state for release. That being said, there was a major update to Gnome 3.24. This is currently in updates_testing to check was major issues and regressions before being pushing to release if everything is ok.

Another big update was to move to ICU 58.2, which is a requirement for packaging Firefox 52 ESR. The rebuilds went relatively well in core/updates_testing, but after the rebuilt packages were moved to core/release, some issues appeared with Cauldron. Ironically, all Mozilla software (Firefox, Thunderbird, Seamonkey/Iceape) crashed with this new version, forcing us to rebuild them against their bundled ICU code base. We could finally fix the crashes with the system library by adding Mozilla patches to ICU 58.2, which should hopefully allow us to package all Mozilla software against the system ICU.

There were updates to LibreOffice (5.3.2 RC1) which will be updated to final before Mageia 6 is released. The libinput RC update from last week was also updated to final. Samba was updated to 4.5.7, fixing this Mageia bug and a security issue where a symlink race could be used to gain access to parts of the filesystem not shared, see this CVE for further details. DNF was updated to 2.1.1, Mesa to 17.0.2 and flash player plugin was also updated to 25.0.0.127. Firefox/Thunderbird are currently on versions 45.8.0 ESR, with the intention to update them to the 52 ESR branch for the final release.

ISO testing for Mageia 6 RC started last week, and a new round of ISOs was built yesterday. Testing so far is looking good.

Mageia 5

There have been lots of updates submitted for validation, here is the full list, the highlights of which are:

  • Flash – 25.0.0.127 – multiple CVE fixes
  • Kernel 4.4.55
  • qbittorrent 3.3.11
  • Firefox/Thunderbird 45.8.0, this closes MGASA 2017-0081 and 0082 respectively.

Community

The introduction of packager groups for various programming languages was discussed last week, and acted upon yesterday. As a first step, groups were created for thePerl, Python, Java and PHP stacks. If you’d like to help with the debugging and packaging of those stacks, don’t hesitate to join them. More information is available here.

Posted in community, Mageia, QA, release, Weekly roundup | 11 Comments

Review: Back from CLT 2017

Posted on March 19, 2017 by Marc Lattemann

It’s almost a week since the Chemnitzer Linux days: time for a brief review (link in German):

To make a long story short: This meeting was a big success.

Alfred and I arrived on Friday evening and went to check out the location. The slogan “Barrieren einreißen” (engl: “tear down barriers”) couldn’t have been chosen better. To get there by the shortest route you had to tear down many barriers, since it seems that Chemnitz is a single big construction site. So it took us a while to find the best alternative route. 

When we arrived, we were warmly welcomed by the organisation team and had our first discussion, about the relation between the number of free projects and the number of companies, and the danger of sponsoring of this kind of event by big companies. On the other hand the free projects benefit from the lower costs, the preparation of the booth (incl free printing of a poster) and two days of free catering.

sdr

On Saturday morning, after Jürgen and Frank‘s arrival to complete our booth attendance, we were a little bit afraid that our booth wouldn’t get enough attention, because it was located in a corner. It turned out to be not the case: we were getting in contact with a lot of different people and there was enough time for various discussions about our project. Also our presentation of the upcoming Mageia 6 raised a lot of interest. We had a lot of giveaways, too, like pens, stickers, cups, t-shirts and USB sticks (which we exchanged for a small donation) and also the swiss cookies attracted visitors and booth attendants the same way. Because there were 4 of us, there was also some time for visiting talks and getting in contact with other projects around us.

On Saturday evening there was (as every year) the big dinner for staff and booth attendants with plenty of food and drink. And even there we had some very interesting and informative discussions with people from other projects or associations (a special regards to Christoph from LUG Frankfurt (Link in German), if he’s reading this). 

It felt like the Sunday was not as busy (many of the visitors already visited the booth on Saturday), but anyway the booth of Mageia still attracted many other visitors. There were some who complimented Mageia as the only distribution to get their WIFI to work or others who are using this distribution and the ancestors since Mandrake times. However there are still some people around who had never heard about Mageia, even though it has already existed for around 7 years and released 5 great versions. So this should lead us to increase our marketing as we did with this presence at the CLT.

Finally we want to  say a big “Thank you” to the organisation team of CLT 2017 for giving us the opportunity to present Mageia there. In exchange for the printing of a second poster we donated 20€ to the penguins of the animal park in Limbach-Oberfrohna, who are adopted by the CLT (link in German / Video in German).

https://twitter.com/tocopaxi/status/841045726343892992

We are looking forward to presenting at CLT 2018 as well.

Posted in Uncategorized | 5 Comments

Weekly roundup – 2017, week 11

Posted on March 17, 2017 by Donald Stewart

It has been another busy week with lots of changes, upgrades, tests and news.

Cauldron

All of the Mageia-developed tools have been updated to include the latest translations, as well as updates to the DrakX installer that will hopefully fix some of the remaining bugs, more on that later. libinput was updated to 1.7 RC2, so if there are any regressions with input devices following this, please submit bugs to the bugzilla, so that we can help upstream fix them in time for Mageia 6. The kernel was updated to 4.9.15 final yesterday, with the required rebuilds following, so that update should be available soon, if not already. KDE applications 16.12.3 and MATE 1.18 also landed. The FFmpeg update and required rebuilds were finalised, so hopefully, all the issues have been straightened out there, v4l-utils 1.12.3 also landed. Builds for an update VLC 3.0-git snapshot are also ongoing. There were also updates to Calibre 2.81 and LibreOffice 5.3.1.rc2. As this was written, there was extensive activity on the build system, so plenty of updates should be coming.

Sta2 testing feedback roundup:

While the majority of the feedback has been positive, to the extent that we are moving forwards towards a release candidate build, there are still ongoing issues with NVIDIA proprietary drivers, specifically the 340 driver for slightly older cards. Testing for fixes is ongoing, a new round of internal ISOs was generated to test this and to check the status on installer bugs, such as some buttons appearing off screen at the partitioning stage in some languages. The next round of ISO testing will be in preparation for the RC release.

Mageia 5

Kernel updates to 4.4.54 are in testing, so expect these soon once the updates have been validated.

Security updates to MariaDB, Pidgin, libquicktime and others are currently going through validation, as well as a few others that will be available soon.

Community

Maintainer groups for the main programming languages are in the process of being setup, to nominally share the work load of the huge perl or python stacks on groups of packagers. Similar groups for other large stacks or components proved successful for the kernel, the Mageia tools and some desktop environments so this will allow for similar work sharing on the language stacks.

Successful event at the Chemnitz Linux Day, Mageia had a booth there showing our system with contributors on hand to answer questions, full write up coming soon, but in the meantime, some pictures are up on the German Forum.

Posted in community, Mageia, Weekly roundup | 12 Comments

ALCASAR, an open source Network Access Controller based on Mageia

Posted on March 13, 2017 by Anne Nicolas

ALCASAR is a free Internet Access Controller for private or public consultation networks. It authenticates and protects users’ access regardless their connection type, or equipment (PC, smartphone, game console, TV sets, etc.).”

I met the ALCASAR guys in 2012, during a French event and I discovered they were using Mageia in a professional project. Then the time ran quickly and finally here we are. Richard Rey agreed to answer our questions about ALCASAR and Mageia.

– Can you introduce yourself? What is your technical background and why did you start contributing to ALCASAR project?

RR: Richard REY (AKA: Rexy). I am the Deputy Director of the computer security research laboratory (C + V) ° at ESIEA, a “school of digital technology engineers”. This school, which is an non-profit association (following to the French “law 1901”), is certified CTI (Commission of the Titles of Engineers). It is located on three campuses (Paris, Ivry and Laval).

I left the French army four years ago after a 27-year career in the fields of digital telecommunications, electronic warfare and computer fighting.

The genesis of the ALCASAR project: While I was an RSSI in a major Command, I was confronted with the installation of a technical tool on a large number of geographical sites. It had to meet the requirements of the Act for the Confidence in the Digital Economy (LCEN). This law requires that all connections made by Internet users must be logged for one year. The objective on my side was clear: protect the responsible of Internet networks (those who pay the subscription) from judicial inquiries related to the indelicacy of some connected users (incitement to racial hatred, procuring, child pornography, Scams, extortion, apology for terrorism, etc.).

After several unsuccessful searches (incomplete products, too complex or “out of budget”), I decided to create a team and we designed ALCASAR (Free Application for Secure Access Control and Authenticated to the Network).

– Can you describe the ALCASAR project, its community and its features?

RR: From the beginning of the project, we have enforced quite strong technical and ethical constraints: all the traces of connection of all the protocols must be stored for one year (LCEN). They must be available only to the competent authorities (CNIL). Any digital trace must integrate the notion of volume, duration and must make it possible to find a “human” user (a human is not an IP address …).

The heart of the project was developed around four main building blocks: the Radius freeradius server, the NAC (Network Access Controller) coova-chilli, the RDBMS mariadb and the firewall netfilter.

After adding apache and PHP to propose a user-friendly Web administration interface, the project got known outside the military sphere.

New features were requested (domain name and URL filtering, “blacklist” and “whitelist” filtering, protocol filtering, user / user-specific filtering, blacklist/whitelist import and customization, connection time management, SMS identification, MAC address authentication, internationalization of interfaces, etc.).

Faithful to our military roots, the community is organized in a very pyramidal way. Only three or four contributors can interact directly with our SVN. The others propose their contributions to those four “privileged” users. About twenty people of all nationalities are currently registered on the project (a dozen are active).

– On your home page, it says that Mageia is part of your software ecosystem. Why this choice?

RR: At the beginning of the project, I used the Mandrake Linux distribution. That was all that I was looking for both on professional and personal sides. I especially appreciated the rigorous security updates (no nasty surprises) and the “Made In France” side. We remained loyal and naturally evolved ALCASAR on Mandriva Linux and then on Mageia. The next version 3.1 of ALCASAR will be installed on Mageia 5.1. We will naturally continue this cycle with Mageia 6.

– Do you have an idea of today’s ALCASAR users?

RR: In terms of volume: no. In terms of use, we know that French and foreign ministries are using it. Some companies have deployed it and have sometimes included it in their security policy. We also know that ESN install and administer it on behalf of their clients. We have a lot of returns from hoteliers, providers, associates, camp managers, holiday clubs …

– What are the relationships between ALCASAR and Mageia? Do you contribute to Mageia? How can Mageia help you?

RR: ALCASAR only runs on Mageia and there is no question for now to change that. This allows us to devote ourselves to the evolutions of functionality rather than waste our time adapting it for other distributions.

We contribute quite little (too little to my liking) to Mageia. We report the bugs that have an impact on the twenty software packages that we do include in ALCASAR. We package some software that we are, in my opinion, the only ones to use (HAVP, Netflow core probe, coova-chilli).

Posted in Collaboration, community, Mageia, users | 10 Comments

Weekly roundup – 2017, week 10

Posted on March 10, 2017 by Rémi Verschelde

Cauldron

This week saw a huge milestone for Mageia 6: the release of our second stabilisation snapshot, “sta2“. It is the product of 8 months of work since the previous milestone, sta1, and the quality has improved a lot! The majority of the feedback on the release has been excellent, which is always great to hear. We are now getting much nearer to the final release of Mageia 6.

Shortly after sta2 was released, we pushed the new FFmpeg 3.2.4 upgrade to Cauldron. Our previous branch was 2.8, which was slowly getting a bit old and might have been difficult to maintain during the whole lifetime of Mageia 6. Since FFmpeg 3.0+ brought various API changes, we had to spend some time fixing the “reverse dependencies” (i.e. the packages that depend on a given library) of ffmpeg – this work is now mostly finished, in big part thanks to patches taken either from upstream projects or from other distros.

Another upcoming update for Cauldron is for the complete KDE stack: KDE Frameworks 5.32, Plasma 5.8.6 (already in core/release) and KDE Applications 16.12.3 (currently in core/updates_testing and will soon be moved to core/release).

Other big updates that landed in Cauldron: Mesa 17.0.1, VirtualBox 5.1.16 and the preparatory work for Firefox 52.0 ESR!

Some work has also been started to review the list of packages installed by default for each DE via the meta-task package, which had not been done for a long time. Some old, obsolete packages will no longer be installed out of the box, which should also help make the ISOs slightly smaller.

To give a general impression of what’s boiling in the Cauldron every week: since our last roundup on March 3, more than 500 packages were submitted and built on our buildsystem! This was a particularly busy week though with the KDE and FFmpeg updates. If you’re curious, you can always check the activity of the last two days on pkgsubmit.

Mageia 5

This has been a quiet week for Mageia 5 as no updates were pushed (yet). Many were tested though and you should soon get security updates for Flash 24.0.0.221 and VirtualBox 5.1.12, as well as potrace, flac, wavpack and libquicktime, to name a few. As always, if you are curious about the way we test updates and would like to lend a hand, do not hesitate to get in touch with the QA team.

Community

Team elections are also still ongoing, with the various teams at different stages, so if you are part of the many teams we have, look out for the votes or calls for candidates, if they haven’t come already. Once we have completed all of them there will be a blog post about the new Council, with luck, this will also come on a non sta2 time scale 🙂

We will also have a stand at the Chemnitz Linux Days 2017 which starts tomorrow – read more about it here. If you’re in the area it’s a great opportunity to meet some contributors and talk Mageia, Linux and all things Open Source.

Posted in community, Mageia, packager, QA, Weekly roundup | 10 Comments