FEED Validator

for Atom and RSS and KML

Congratulations!

This is a valid RSS feed.

Recommendations

This feed is valid, but interoperability with the widest range of feed readers could be improved by implementing the following recommendations.

line 88, column 57: title should not contain HTML: é (2 occurrences) [help]

	<title>St&amp;eacute;phane Graber: Announcing Incus 6.18</title>
                                                         ^

line 965, column 0: description should not contain data-id attribute (3 occurrences) [help]
```
&lt;p&gt;Ubuntu Studio now includes &lt;strong&gt;&lt;a data-id=&quot;pencil ...
```
line 965, column 0: description should not contain data-type attribute (3 occurrences) [help]
```
&lt;p&gt;Ubuntu Studio now includes &lt;strong&gt;&lt;a data-id=&quot;pencil ...
```

line 1107, column 0: description should not contain data-layout attribute [help]

	<description>&lt;img alt=&quot;Xubuntu 25.10 &amp;quot;Questing Quokka&amp; ...

line 1488, column 0: description should not contain data-attrs attribute (2 occurrences) [help]
```
	<description>&lt;p&gt;I’ve been wanting to create some Bible study software ...
```
line 1488, column 0: description should not contain data-component-name attribute (2 occurrences) [help]
```
	<description>&lt;p&gt;I’ve been wanting to create some Bible study software ...
```
line 2305, column 0: description should not contain data-attachment-id attribute (6 occurrences) [help]
```
&lt;figure class=&quot;alignright size-large is-resized&quot;&gt;&lt;a href= ...
```
line 2305, column 0: description should not contain data-comments-opened attribute (6 occurrences) [help]
```
&lt;figure class=&quot;alignright size-large is-resized&quot;&gt;&lt;a href= ...
```
line 2305, column 0: description should not contain data-image-caption attribute (6 occurrences) [help]
```
&lt;figure class=&quot;alignright size-large is-resized&quot;&gt;&lt;a href= ...
```
line 2305, column 0: description should not contain data-image-description attribute (6 occurrences) [help]
```
&lt;figure class=&quot;alignright size-large is-resized&quot;&gt;&lt;a href= ...
```
line 2305, column 0: description should not contain data-image-meta attribute (6 occurrences) [help]
```
&lt;figure class=&quot;alignright size-large is-resized&quot;&gt;&lt;a href= ...
```
line 2305, column 0: description should not contain data-image-title attribute (6 occurrences) [help]
```
&lt;figure class=&quot;alignright size-large is-resized&quot;&gt;&lt;a href= ...
```
line 2305, column 0: description should not contain data-large-file attribute (6 occurrences) [help]
```
&lt;figure class=&quot;alignright size-large is-resized&quot;&gt;&lt;a href= ...
```
line 2305, column 0: description should not contain data-medium-file attribute (6 occurrences) [help]
```
&lt;figure class=&quot;alignright size-large is-resized&quot;&gt;&lt;a href= ...
```
line 2305, column 0: description should not contain data-orig-file attribute (6 occurrences) [help]
```
&lt;figure class=&quot;alignright size-large is-resized&quot;&gt;&lt;a href= ...
```
line 2305, column 0: description should not contain data-orig-size attribute (6 occurrences) [help]
```
&lt;figure class=&quot;alignright size-large is-resized&quot;&gt;&lt;a href= ...
```
line 2305, column 0: description should not contain data-permalink attribute (6 occurrences) [help]
```
&lt;figure class=&quot;alignright size-large is-resized&quot;&gt;&lt;a href= ...
```
line 2654, column 0: description should not contain data-original-height attribute [help]
```
	<description>&lt;table align=&quot;center&quot; cellpadding=&quot;0&quot; c ...
```
line 2654, column 0: description should not contain data-original-width attribute [help]
```
	<description>&lt;table align=&quot;center&quot; cellpadding=&quot;0&quot; c ...
```
line 2991, column 0: Missing atom:link with rel="self" [help]
```
</channel>
```

Source: http://planet.ubuntu.com/rss20.xml

<?xml version="1.0"?>
<rss version="2.0">
<channel>
<title>Planet Ubuntu</title>
<link>http://planet.ubuntu.com/</link>
<language>en</language>
<description>Planet Ubuntu - http://planet.ubuntu.com/</description>
<item>
<title>Ubuntu Blog: Web Engineering: Celebrating Our Third Annual Hack Week</title>
<guid isPermaLink="true">https://ubuntu.com//blog/web-engineering-celebrating-our-third-annual-hack-week</guid>
<link>https://ubuntu.com//blog/web-engineering-celebrating-our-third-annual-hack-week</link>
<description>The Web Engineering team is thrilled to announce the successful conclusion of our third annual Hack Week! Over the past three years, this initiative has become a cornerstone of our collaborative spirit and commitment to innovation. With 126 significant contributions to date, Hack Week provides a dedicated space for our engineers to tackle challenging problems, refine existing systems, and push the boundaries of what’s possible.
The key goals of these events is allowing us to talk with confidence about the true open source nature of our work. We get the opportunity to addressing issues we’ve identified upstream in projects that we use to benefit ourselves and others. By dedicating time to these fixes, we not only improve the stability and performance of our foundational technologies but also empower our team to gain a deeper understanding of complex systems and our dependency tree. The direct engagement with these challenges allows us to truly experience the difficulties firsthand, fostering a unique learning environment. These invaluable learnings are then taken back to our daily projects, where we reflect on the insights gained and implement improvements that benefit all our ongoing work. We are proud of the dedication displayed by everyone involved, and we look forward to continuing this initiative into the future with impactful contributions.
This year we focused on providing accessibility contributions to our internal corporate message application called <a href="https://mattermost.com/">Mattermost</a>. All contributions are listed below:
<figure class="wp-block-table"><table><tbody><tr><td><a href="https://github.com/Murtaza-Ax/Color-Converter/pull/1">Murtaza-Ax/Color-Converter</a></td></tr><tr><td><a href="https://github.com/mattermost/mattermost/pull/34132">Mattermost #34132</a></td></tr><tr><td><a href="https://github.com/mattermost/mattermost/issues/34128">Mattermost ##34128</a></td></tr><tr><td><a href="https://github.com/biomejs/biome/pull/7749">Biome #7749</a></td></tr><tr><td><a href="https://github.com/mattermost/mattermost/issues/26961">Mattermost #26961</a></td></tr><tr><td><a href="https://github.com/mattermost/mattermost/pull/34141">Mattermost #34141</a></td></tr><tr><td><a href="https://github.com/mattermost/mattermost/pull/34142">Mattermost #34142</a></td></tr><tr><td><a href="https://github.com/psycopg/psycopg/pull/1184">Psycopg #1184</a></td></tr><tr><td><a href="https://github.com/upptime/uptime-monitor/pull/269">Upptime#269</a></td></tr><tr><td><a href="https://github.com/heroui-inc/heroui/issues/5810">HeroUI #5810</a></td></tr><tr><td><a href="https://github.com/heroui-inc/heroui/pull/5811">HeroUI #5811</a></td></tr><tr><td><a href="https://github.com/mattermost/mattermost/issues/34153">Mattermost #34153</a></td></tr><tr><td><a href="https://github.com/mattermost/mattermost/pull/34154">Mattermost #34154</a></td></tr><tr><td><a href="https://github.com/TheAlgorithms/JavaScript/pull/1842">TheAlgorithms/JavaScript #1842</a></td></tr><tr><td><a href="https://github.com/google/adk-web/pull/161">adk-web #161</a></td></tr><tr><td><a href="https://github.com/heroui-inc/heroui/issues/5814">HeroUI #5814</a></td></tr><tr><td><a href="https://github.com/heroui-inc/heroui/pull/5813">HeroUI #5813</a></td></tr><tr><td><a href="https://github.com/TryGhost/Ghost/pull/25183">Ghost #25183</a></td></tr><tr><td><a href="https://github.com/heroui-inc/heroui/issues/5818">HeroUI #5818</a></td></tr><tr><td><a href="https://github.com/heroui-inc/heroui/pull/5819">HeroUI #5819</a></td></tr><tr><td><a href="https://github.com/TryGhost/Ghost/pull/25195">Ghost #25195</a></td></tr><tr><td><a href="https://github.com/upptime/uptime-monitor/pull/271">Upptime#271</a></td></tr><tr><td><a href="https://github.com/edlerd/scrabble/pull/3">Scrabble #3</a></td></tr><tr><td><a href="https://github.com/mattermost/mattermost/pull/34196">Mattermost #34196</a></td></tr><tr><td><a href="https://github.com/RDjarbeng/countdown/pull/155">Countdown #155</a></td></tr><tr><td><a href="https://github.com/TryGhost/Ghost/pull/25197">Ghost #25197</a></td></tr></tbody></table></figure>
Open source encourages compatibility with standards, making locking users in more difficult. This is why we love the freedom open source offers. Open source software allows for sharing knowledge, gaining knowledge, and practising. It promotes transparency in data collection and software systems. Freedom, therefore, is the gift that keeps on giving.
Please have a look at <a href="https://github.com/canonical/">our open-source projects</a> and reach out to us via the issues if anything is unclear.</description>
<pubDate>Thu, 06 Nov 2025 11:22:28 +0000</pubDate>
</item>
<item>
<title>Ubuntu Blog: Azure VM utils now included in Ubuntu: boosting cloud workloads</title>
<guid isPermaLink="true">https://ubuntu.com//blog/ubuntu-azure-vm-utils-included</guid>
<link>https://ubuntu.com//blog/ubuntu-azure-vm-utils-included</link>
<description>Ubuntu images on Microsoft Azure have recently started shipping with the open source package <a href="https://learn.microsoft.com/en-us/azure/virtual-machines/linux/azure-virtual-machine-utilities">azure-vm-utils</a> included by default. Azure VM utils is a package that provides essential utilities and udev rules to optimize the Linux experience on Azure. This change results in more reliable disks, smoother networking on accelerated setups, and fewer tweaks to get things running. Here’s what you need to know:
<h2 class="wp-block-heading">What’s changing</h2>
<ul>
<li>Smoother storage on modern Azure VMs: Ubuntu now provides consistent device naming across SCSI and NVMe, reducing post-reboot surprises and easing automation.</li>
<li>Better handling of accelerated networking: environments using MANA or Mellanox benefit from safer defaults that avoid double-managing passthrough interfaces.</li>
<li>Less image customization: the utility and rules that many platform teams previously added now ship in the image, removing one more custom step from your pipelines.</li>
</ul>
<h2 class="wp-block-heading">Why it matters</h2>
<ul>
<li>Fewer post-boot surprises: predictable device names keep fstab, cloud-init and provisioning scripts stable across VM families and reboots.</li>
<li>Smoother NVMe adoption: newer VM families lean NVMe-first for performance; built-in rules make that transition painless while keeping SCSI setups working.</li>
<li>Less to maintain: the stock image now handles Azure disk naming and accelerated NICs (MANA/Mellanox), so teams can drop custom udev/Netplan snippets and avoid fstab surprises after reboots.</li>
</ul>
<h2 class="wp-block-heading">How to Get It</h2>
<ul>
<li>For New VMs: No action is needed. The package is included by default in new Ubuntu images.</li>
<li>For Existing VMs: You can install the package directly from the Ubuntu archive, where it’s available for all current LTS and interim releases: sudo apt update &amp;&amp; sudo apt install azure-vm-utils </li>
</ul>
<h2 class="wp-block-heading">Quick ways to verify</h2>
<code>azure-nvme-id --version # tool present find /dev/disk/azure -type l # predictable Azure disk links</code></description>
<pubDate>Wed, 05 Nov 2025 15:02:15 +0000</pubDate>
</item>
<item>
<title>The Fridge: Ubuntu Weekly Newsletter Issue 916</title>
<guid isPermaLink="false">https://fridge.ubuntu.com/?p=10676</guid>
<link>https://fridge.ubuntu.com/2025/11/03/ubuntu-weekly-newsletter-issue-916/</link>
<description><figure class="wp-block-image"><img alt="" src="https://fridge.ubuntu.com/wp-content/uploads/2020/02/c9d7/header.png" /></figure>
Welcome to the Ubuntu Weekly Newsletter, Issue 916 for the week of October 26 – November 1, 2025. The full version of this issue is available <a href="https://discourse.ubuntu.com/t/ubuntu-weekly-newsletter-issue-916/71163">here</a>.
In this issue we cover:
<ul><li>Upgrades to 25.10 (Questing Quokka) are now live!</li><li>Ubuntu Stats</li><li>Hot in Support</li><li>Other Meeting Reports</li><li>Upcoming Meetings and Events</li><li>LoCo Events</li><li>Ubuntu Project docs: That’s a wrap!</li><li>Introducing architecture variants: amd64v3 now available in Ubuntu 25.10</li><li>[Ubuntu Studio] Upgrading from 25.04 to 25.10</li><li>Other Community News</li><li>What Say You</li><li>Ubuntu Cloud News</li><li>Canonical News</li><li>In the Press</li><li>In the Blogosphere</li><li>In Other News</li><li>Featured Audio and Video</li><li>Updates and Security for Ubuntu 22.04, 24.04, 25.04 and 25.10</li><li>And much more!</li></ul>
The Ubuntu Weekly Newsletter is brought to you by:
<ul><li>Krytarik Raido</li><li>Bashing-om</li><li>Chris Guiver</li><li>Wild Man</li><li>irihapeti</li><li>And many others</li></ul>
If you have a story idea for the Weekly Newsletter, join the <a href="https://lists.ubuntu.com/mailman/listinfo/Ubuntu-news-team">Ubuntu News Team mailing list</a> and submit it. Ideas can also be added to the <a href="https://discourse.ubuntu.com/t/ubuntu-weekly-newsletter-ideas/40053">wiki</a>!
<div class="wp-block-image"><figure class="alignleft"><img alt="" src="https://fridge.ubuntu.com/wp-content/uploads/2015/05/ab28/CCL.png" /></figure></div>
<a href="https://fridge.ubuntu.com/2025/11/03/ubuntu-weekly-newsletter-issue-916/"></a>.</description>
<pubDate>Mon, 03 Nov 2025 23:53:15 +0000</pubDate>
</item>
<item>
<title>St&eacute;phane Graber: Announcing Incus 6.18</title>
<guid isPermaLink="false">https://stgraber.org/?p=1804</guid>
<link>https://stgraber.org/2025/11/03/announcing-incus-6-18/</link>
<description>The Incus team is pleased to announce the release of Incus 6.18!
This is a reasonably busy release with quite a few smaller releases in every corner of Incus so there should be something for everyone!
<figure class="wp-block-image size-large"><a href="https://linuxcontainers.org/incus/try-it/"><img alt="" class="wp-image-1805" height="385" src="https://stgraber.org/wp-content/uploads/2025/11/image-1024x385.png" width="1024" /></a></figure>
The highlights for this release are:
<ul class="wp-block-list">
<li>Systemd credentials support</li>
<li>File operations on storage volumes</li>
<li>Exporting of ISO volumes</li>
<li>BFP token delegation</li>
<li>MacOS support in the Incus VM agent</li>
<li>VirtIO sound cards for VMs</li>
<li>Support for temporarily detaching USB devices</li>
<li>Configurable DNS mode for OVN networks</li>
<li>Configurable MAC address patterns for networks and instances</li>
<li>Extended IncusOS management CLI</li>
</ul>
The full announcement and changelog can be <a href="https://discuss.linuxcontainers.org/t/incus-6-18-has-been-released/25091" rel="noreferrer noopener" target="_blank">found here</a>. And for those who prefer videos, here’s the release <a href="https://www.youtube.com/watch?v=FoM6S52I9wY">overview video</a>:
<figure class="wp-block-embed is-type-video is-provider-youtube wp-block-embed-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio"><div class="wp-block-embed__wrapper">
</div></figure>
You can take the latest release of Incus up for a spin through our online demo service at: <a href="https://linuxcontainers.org/incus/try-it/" rel="noreferrer noopener" target="_blank">https://linuxcontainers.org/incus/try-it/</a>
And as always, my company is offering commercial support on Incus, ranging from by-the-hour support contracts to one-off services on things like initial migration from LXD, review of your deployment to squeeze the most out of Incus or even feature sponsorship. You’ll find all details of that here: <a href="https://zabbly.com/incus">https://zabbly.com/incus</a>
Donations towards my work on this and other open source projects is also always appreciated, you can find me on <a href="https://github.com/sponsors/stgraber">Github Sponsors</a>, <a href="https://patreon.com/stgraber">Patreon</a> and <a href="https://ko-fi.com/stgraber">Ko-fi</a>.
Enjoy!
</description>
<pubDate>Mon, 03 Nov 2025 19:21:13 +0000</pubDate>
</item>
<item>
<title>Scarlett Gately Moore: A New Chapter: Career Transition Update</title>
<guid isPermaLink="false">https://www.scarlettgatelymoore.dev/?p=2141</guid>
<link>https://www.scarlettgatelymoore.dev/a-new-chapter-career-transition-update/</link>
<description>I’m pleased to share that my career transition has been successful! I’ve joined our local county assessor’s office, beginning a new path in property assessment for taxation and valuation. While the compensation is modest, it offers the stability I was looking for.
My new schedule consists of four 10-hour days with an hour commute each way, which means Monday through Thursday will be largely devoted to work and travel. However, I’ll have Fridays available for open source contributions once I’ve completed my existing website maintenance commitments.
<h2 class="wp-block-heading">Open Source Priorities</h2>
Going forward, my contribution focus will be:
<ol class="wp-block-list">
<li>Ubuntu Community Council</li>
<li>Kubuntu/Debian</li>
<li>Snap packages (as time permits)</li>
</ol>
Regarding the snap packages: my earlier hope of transitioning them to Carl hasn’t worked out as planned. He’s taken on maintaining KDE Neon single-handedly, and understandably, adding snap maintenance on top of that proved unfeasible. I’ll do what I can to help when time allows.
<h2 class="wp-block-heading">Looking for Contributors</h2>
If you’re interested in contributing to Kubuntu or helping with snap packages, I’d love to hear from you! Feel free to reach out—community involvement is what makes these projects thrive.
Thanks for your patience and understanding as I navigate this transition.</description>
<pubDate>Fri, 31 Oct 2025 15:38:55 +0000</pubDate>
</item>
<item>
<title>Podcast Ubuntu Portugal: E365 Encontrões Cimeiros</title>
<guid isPermaLink="false">https://hub.podcastubuntuportugal.org/s/jeKAi5f3pfSgcPy/download/e365.mp3</guid>
<link>https://podcastubuntuportugal.org/e365/</link>
<description>Há demasiadas coisas a acontecer, todas ao mesmo tempo, é o caos! De regresso da Ubuntu Summit em Londres, Lisboa e Porto, o Diogo sublinha os momentos mais importantes e entope o Internet Archive; o Miguel continua na missão de libertar pessoas do Windows; problemas técnicos caem-nos em cima em plena emissão; a Canonical tem uma nova Academia para certificações; revimos as novidades da mais moderna versão do Ubuntu Touch; apelamos a voluntários para fazerem respiração boca-a-boca ao Unity; alguém inventou um Recall para Linux e qual Oppenheimer, vemos ao longe a Framework pegar fogo à tenda do circo com Omarchy e Hyprland. E o mais importante: há um novo Super Tux Kart.
Já sabem: oiçam, subscrevam e partilhem!
<ul>
<li>Ubuntu Summit 2025, Londres, 23-24 de Outubro: <a href="https://ubuntu.com/blog/ubuntu-summit-25-10-is-coming-to-your-circle-of-friends-from-london">https://ubuntu.com/blog/ubuntu-summit-25-10-is-coming-to-your-circle-of-friends-from-london</a></li>
<li>Festão Lisboa-Porto 25 de Outubro (Watch Party simultânea): <a href="https://ubuntusummit2510.centrolinux.pt">https://ubuntusummit2510.centrolinux.pt</a>
<ul>
<li><a href="https://lcdporto.org">https://lcdporto.org</a></li>
<li><a href="https://ectl.pt">https://ectl.pt</a></li>
</ul>
</li>
<li>Internet Archive: <a href="https://archive.org/">https://archive.org/</a></li>
<li>Encontro em Sintra: <a href="https://discourse.ubuntu.com/t/2025-10-25-encontro-ubuntu-pt-de-outubro-sintra/70318">https://discourse.ubuntu.com/t/2025-10-25-encontro-ubuntu-pt-de-outubro-sintra/70318</a></li>
<li>Winboat: <a href="https://www.winboat.app/">https://www.winboat.app/</a></li>
<li>Virt-Manager: <a href="https://virt-manager.org/">https://virt-manager.org/</a></li>
<li>VirtualBox: <a href="https://www.virtualbox.org/">https://www.virtualbox.org/</a></li>
<li>Wine: <a href="https://www.winehq.org/">https://www.winehq.org/</a></li>
<li>Winetricks: <a href="https://github.com/Winetricks/winetricks">https://github.com/Winetricks/winetricks</a></li>
<li>Playonlinux: <a href="https://www.playonlinux.com/">https://www.playonlinux.com/</a></li>
<li>Krita: <a href="https://krita.org/pt-pt/">https://krita.org/pt-pt/</a></li>
<li>FreeCad: <a href="https://www.freecad.org/index.php?lang=pt">https://www.freecad.org/index.php?lang=pt</a></li>
<li>Blender: <a href="https://www.blender.org/">https://www.blender.org/</a></li>
<li>Ubuntu Touch: <a href="https://www.ubuntu-touch.io/">https://www.ubuntu-touch.io/</a></li>
<li>Podcat (Joan Cybersheep): <a href="https://open-store.io/app/podcat.cibersheep">https://open-store.io/app/podcat.cibersheep</a></li>
<li>Ubuntu Unity precisa de ti: <a href="https://www.phoronix.com/news/Ubuntu-Unity-25.10-Troubles">https://www.phoronix.com/news/Ubuntu-Unity-25.10-Troubles</a></li>
<li>Canonical Academy:
<ul>
<li><a href="https://ubuntu.com/blog/introducing-canonical-academy">https://ubuntu.com/blog/introducing-canonical-academy</a></li>
<li><a href="https://www.phoronix.com/news/Canonical-Academy">https://www.phoronix.com/news/Canonical-Academy</a></li>
</ul>
</li>
<li>Usar Raspberry Pi 500+ durante 7 dias (Christopher Barnatt): <a href="https://youtu.be/7U6KI7qBk40">https://youtu.be/7U6KI7qBk40</a></li>
<li>Computadores Framework: <a href="https://frame.work/pt/en">https://frame.work/pt/en</a></li>
<li>Framework, Omarchy e Hyprland…a tenda do circo a arder: <a href="https://community.frame.work/t/framework-supporting-far-right-racists/75986">https://community.frame.work/t/framework-supporting-far-right-racists/75986</a></li>
<li>Reflexões sobre o blogue do DHH:
<ul>
<li><a href="https://web.archive.org/web/20251011121102/https://jakelazaroff.com/words/dhh-is-way-worse-than-i-thought/">https://web.archive.org/web/20251011121102/https://jakelazaroff.com/words/dhh-is-way-worse-than-i-thought/</a></li>
<li><a href="https://web.archive.org/web/20250925050230/https://world.hey.com/dhh">https://web.archive.org/web/20250925050230/https://world.hey.com/dhh</a></li>
</ul>
</li>
<li>Críticas ao Omarchy: <a href="https://xn--gckvb8fzb.com/a-word-on-omarchy/">https://xn--gckvb8fzb.com/a-word-on-omarchy/</a></li>
<li>Uma boa gargalhada - Recall for Linux: <a href="https://github.com/rolflobker/recall-for-linux">https://github.com/rolflobker/recall-for-linux</a></li>
<li>Supertux Kart 1.5:
<ul>
<li><a href="https://www.omgubuntu.co.uk/2025/10/supertuxkart-1-5-released">https://www.omgubuntu.co.uk/2025/10/supertuxkart-1-5-released</a></li>
<li><a href="https://9to5linux.com/supertuxkart-1-5-open-source-kart-racing-game-released-with-major-changes">https://9to5linux.com/supertuxkart-1-5-open-source-kart-racing-game-released-with-major-changes</a></li>
</ul>
</li>
<li>Ubports 20.04 e 24.04.0.1:
<ul>
<li><a href="https://ubports.com/blog/ubports-news-1/ubuntu-touch-20-04-ota-10-release-3972">https://ubports.com/blog/ubports-news-1/ubuntu-touch-20-04-ota-10-release-3972</a></li>
<li><a href="https://ubports.com/blog/ubports-news-1/ubuntu-touch-24-04-1-0-release-3973">https://ubports.com/blog/ubports-news-1/ubuntu-touch-24-04-1-0-release-3973</a></li>
<li><a href="https://open-store.io/?type=app&amp;category=Games">https://open-store.io/?type=app&amp;category=Games</a></li>
</ul>
</li>
<li>LoCo PT: <a href="https://loco.ubuntu.com/teams/ubuntu-pt/">https://loco.ubuntu.com/teams/ubuntu-pt/</a></li>
<li>Mastodon: <a href="https://masto.pt/@pup">https://masto.pt/@pup</a></li>
<li>Youtube: <a href="https://youtube.com/PodcastUbuntuPortugal">https://youtube.com/PodcastUbuntuPortugal</a></li>
</ul>
<h3 id="atribuição-e-licenças">Atribuição e licenças</h3>
Este episódio foi produzido por Diogo Constantino, Miguel e Tiago Carrondo e editado pelo <a href="https://senhorpodcast.pt/">Senhor Podcast</a>.
O website é produzido por Tiago Carrondo e o <a href="https://gitlab.com/podcastubuntuportugal/website">código aberto</a> está licenciado nos termos da <a href="https://gitlab.com/podcastubuntuportugal/website/main/LICENSE">Licença MIT</a>. (<a href="https://creativecommons.org/licenses/by/4.0/)">https://creativecommons.org/licenses/by/4.0/)</a>. A música do genérico é: “Won’t see it comin’ (Feat Aequality &amp; N’sorte d’autruche)”, por Alpha Hydrae e está licenciada nos termos da <a href="https://creativecommons.org/publicdomain/zero/1.0/">CC0 1.0 Universal License</a>.
Os separadores de péssima qualidade foram tocados ao vivo e sem rede pelo Miguel, pelo que pedimos desculpa pelos incómodos causados. Os efeitos sonoros têm os seguintes créditos: [Short Elevator Music Loop by BlondPanda] (<a href="https://freesound.org/s/659889/)">https://freesound.org/s/659889/)</a>. License: Creative Commons 0.
Este episódio e a imagem utilizada estão licenciados nos termos da licença: <a href="https://creativecommons.org/licenses/by-nc-nd/4.0/">Attribution-NonCommercial-NoDerivatives 4.0 International (CC BY-NC-ND 4.0)</a>, <a href="https://creativecommons.org/licenses/by-nc-nd/4.0/legalcode">cujo texto integral pode ser lido aqui</a>. Estamos abertos a licenciar para permitir outros tipos de utilização, <a href="https://podcastubuntuportugal.org/contactos">contactem-nos</a> para validação e autorização.
A arte de episódio foi criada por encomenda pela Shizamura - artista, ilustradora e autora de BD. Podem ficar a conhecer melhor a <a href="https://ciberlandia.pt/@shizamura">Shizamura na Ciberlândia</a> e no <a href="https://sarilho.net/">seu sítio web</a>.</description>
<pubDate>Fri, 31 Oct 2025 00:00:00 +0000</pubDate>
<enclosure url="https://hub.podcastubuntuportugal.org/s/jeKAi5f3pfSgcPy/download/e365.mp3" length="45583881" type="audio/mpeg"/>
</item>
<item>
<title>Ubuntu Studio: Upgrading from 25.04 to 25.10</title>
<guid isPermaLink="false">https://ubuntustudio.org/?p=3045</guid>
<link>https://ubuntustudio.org/2025/10/upgrading-from-25-04-to-25-10/</link>
<description><div class="wp-block-image"><figure class="alignright size-full"><img alt="" class="wp-image-2953" height="128" src="https://ubuntustudio.org/wp-content/uploads/2025/02/2be9/system-software-update.png" width="126" /></figure></div>
<h2>An issue has been identified</h2>
The Ubuntu Release team has now enabled upgrades from 25.04 to 25.10! This is great news! In fact, you may have noticed this icon on your toolbar and a notification to upgrade.
However, upon doing so, you may have noticed something a little more unfortunate:
<div class="wp-block-image"><figure class="aligncenter size-full is-resized"><img alt="" class="wp-image-3046" height="305" src="https://ubuntustudio.org/wp-content/uploads/2025/10/df61/Screenshot_20251029_110851.png" width="680" /></figure></div>
Yep, we know. This tells you nothing about what is wrong. What is wrong is slightly more technical. As it turns out, the backend application that actually performs the upgrade removed an argument from its command line unannounced during the Plucky Puffin release cycle, approximately a year ago.
As our project leader, Erich Eickmeyer, maintains the upgrade notifier widget for both Ubuntu Studio and Kubuntu, he woke up and immediately got to work identifying what’s wrong and how to patch the Plasma widget in question to correctly execute the upgrade process. He has uploaded the fix, and it was accepted by a member of the Ubuntu Stable Release Updates team.
At the moment, the fix needs to be tested and verified. In order to test it, one must install the fix from the <code>plucky-proposed</code> repository. In order for it to be available, it must build for all architectures and, as of this writing, is awaiting building on <code>riscv64</code> which has a 40-hour backlog.
<h2>The Workaround</h2>
If you wish to begin the upgrade process manually rather than waiting on the upgrade notifier fix to be implemented, feel free to make sure you are fully updated, type <code>alt-space</code> to execute Krunner, and paste this:
<pre class="wp-block-code"><code>do-release-upgrade -f DistUpgradeViewKDE</code></pre>
This is the exact command that will be executed by the notifier widget as soon as it is updated.
Of course, if you’re in no hurry, feel free to wait until the notifier is updated and use that method. Do bear in mind, though, that as of this writing, you have exactly 90 days to perform the upgrade to 25.10 before your system will no longer be supported. At that time, you’ll risk being unable to upgrade at all unless certain procedures for End-Of-Life Upgrades are done, which can be tedious for those uncomfortable in a command line as it will require modifying system files.
<h2>Mea Culpa</h2>
We do apologize for the inconvenience. Testing upgrade paths like this are hard to do and things go missed, especially when teams don’t communicate with each other. We’re try to identify things before they happen but, unfortunately, certain items cannot be foreseen. This issue has now been added to the Ubuntu Studio 25.10 Release Notes.</description>
<pubDate>Wed, 29 Oct 2025 20:08:52 +0000</pubDate>
</item>
<item>
<title>Launchpad News: Make fetch service opt-in</title>
<guid isPermaLink="false">https://blog.launchpad.net/?p=4492</guid>
<link>https://blog.launchpad.net/general/make-fetch-service-opt-in</link>
<description>Launchpad Builders do not have direct access to the Internet. To reach external resources, they must acquire an authentication token that allows access to a restricted set of URLs via a proxy. This can either be a custom authenticated builder proxy or the fetch service.
The fetch service is a custom sophisticated context-aware forward proxy. Whereas the builder proxy allows requests to allowlisted URLs, the fetch service also keeps track of requests and dependencies for a build.
Users can now opt-in to use the fetch service while building snaps, charms, rocks and sourcecraft packages. You can read more about the fetch service <a href="https://documentation.ubuntu.com/launchpad/developer/reference/services/fetch-service/">here</a>.
Why is the fetch service important?
To achieve traceability and reproducibility, artifact dependencies retrieved during a build must be identified. The fetch service mediates network access between the build host and the outside world, examining the request protocol, creating a manifest of the downloaded artifacts, and keeping a copy of the artifacts for archival and metadata extraction for each package build.
How to use the fetch service?
To be able to use the fetch service, users must opt-in. For snaps, charms, rocks and sourcecraft packages, the <code>use_fetch_service</code> flag should be set to <code>true</code> in the API. For snaps and charms, this setting is also available in the Edit Recipe UI page. 
The fetch service can be run in two modes, “strict” and “permissive”, where it defaults to the former. Both modes only allow certain resources and formats, as defined by inspectors which are responsible for inspecting the requests and the various downloads that are made during the build, ensuring that the requests are permitted. 
The “strict” mode errors out if any restrictions are violated. The “permissive” mode works similarly, but only logs a warning when encountering any violations. The mode can be configured using the <code>fetch_service_policy</code> option via the API. For snaps and charms, the mode can also be selected from a dropdown on the Edit Recipe UI page.
When to use the fetch service?
Use the fetch service when you need to keep track of requests and dependencies for a build, e.g., when you need to verify that the artifacts belong to secure, trusted sources.</description>
<pubDate>Tue, 28 Oct 2025 11:31:12 +0000</pubDate>
</item>
<item>
<title>The Fridge: Ubuntu Weekly Newsletter Issue 915</title>
<guid isPermaLink="false">https://fridge.ubuntu.com/?p=10671</guid>
<link>https://fridge.ubuntu.com/2025/10/27/ubuntu-weekly-newsletter-issue-915/</link>
<description><figure class="wp-block-image"><img alt="" src="https://fridge.ubuntu.com/wp-content/uploads/2020/02/c9d7/header.png" /></figure>
Welcome to the Ubuntu Weekly Newsletter, Issue 915 for the week of October 19 – 25, 2025. The full version of this issue is available <a href="https://discourse.ubuntu.com/t/ubuntu-weekly-newsletter-issue-915/70261">here</a>.
In this issue we cover:
<ul><li>Enabling updates on Ubuntu 25.10 systems</li><li>[Updated] Questing Quokka Release Notes</li><li>Resolute Raccoon is now open for development</li><li>Ubuntu Stats</li><li>Hot in Support</li><li>Rocks Public Journal; 2025-21-10</li><li>Other Meeting Reports</li><li>Upcoming Meetings and Events</li><li>Vote result: LoCo rebranding and rescoping resolution</li><li>Discover your fully open source robotics observability at ROSCon 2025</li><li>Ubuntu 25.10 Release Party @ Taipei</li><li>LoCo Events</li><li>TPM-backed FDE: Take 2 minutes to help widen Ubuntu compatibility with your TPM configuration!</li><li>Canonical’s new design system : towards a design system ontology</li><li>Other Community News</li><li>Canonical News</li><li>In the Press</li><li>In the Blogosphere</li><li>Other Articles of Interest</li><li>Featured Audio and Video</li><li>Updates and Security for Ubuntu 22.04, 24.04, 25.04 and 25.10</li><li>And much more!</li></ul>
The Ubuntu Weekly Newsletter is brought to you by:
<ul><li>Krytarik Raido</li><li>Bashing-om</li><li>Chris Guiver</li><li>Wild Man</li><li>Cristovao Cordeiro (cjdc) – Rocks</li><li>irihapeti</li><li>And many others</li></ul>
If you have a story idea for the Weekly Newsletter, join the <a href="https://lists.ubuntu.com/mailman/listinfo/Ubuntu-news-team">Ubuntu News Team mailing list</a> and submit it. Ideas can also be added to the <a href="https://discourse.ubuntu.com/t/ubuntu-weekly-newsletter-ideas/40053">wiki</a>!
<div class="wp-block-image"><figure class="alignleft"><img alt="" src="https://fridge.ubuntu.com/wp-content/uploads/2015/05/ab28/CCL.png" /></figure></div>
<a href="https://fridge.ubuntu.com/2025/10/27/ubuntu-weekly-newsletter-issue-915/"></a>.</description>
<pubDate>Mon, 27 Oct 2025 21:51:36 +0000</pubDate>
</item>
<item>
<title>Paul Tagliamonte: It's NOT always DNS.</title>
<guid isPermaLink="true">https://notes.pault.ag/its-not-always-dns/</guid>
<link>https://notes.pault.ag/its-not-always-dns/</link>
<description>I’ve written down a new rule (no name, sorry) that I’ll be repeating to myself
and those around me. “If you can replace ‘DNS’ with ‘key value store mapping
a name to an ip’ and it still makes sense, it was not, in fact, DNS.” Feel
free to repeat it along with me.
Sure, the “It’s always DNS” meme is funny the first few hundred times you see
it – but what’s less funny is when critical thinking ends because a DNS query
is involved. DNS failures are often the first observable problem because
it’s one of the first things that needs to be done. DNS is fairly complicated,
implementation-dependent, and at times – frustrating to debug – but it is not
the operational hazard it’s made out to be. It’s at best a shallow take, and at
worst actively holding teams back from understanding their true operational
risks.
IP connectivity failures between a host and the rest of the network is not a
reason to blame DNS. This would happen no matter how you distribute the updated
name to IP mappings. Wiping out
<a href="https://aws.amazon.com/message/101925/">all the records during the course of operations due to an automation bug</a>
is not a reason to blame DNS. This, too, would happen no matter how you
distribute the name to IP mappings. Something made the choice to delete all the
mappings, and <a href="https://web.archive.org/web/20251005205731/http://www.team.net/mjb/hawg.html">it did what you asked it to do</a>
There’s plenty of annoying DNS specific sharp edges to blame when things do
go wrong (like <code>8.8.8.8</code> and <code>1.1.1.1</code> disagreeing about resolving a domain
because of DNSSEC, or since we’re on the topic, a
<a href="https://slack.engineering/what-happened-during-slacks-dnssec-rollout/">DNSSEC rollout bricking prod for hours</a>)
for us to be cracking jokes anytime a program makes a DNS request.
We can do better.</description>
<pubDate>Mon, 27 Oct 2025 17:15:00 +0000</pubDate>
</item>
<item>
<title>Launchpad News: Support for FIDO2 SSH Keys</title>
<guid isPermaLink="false">https://blog.launchpad.net/?p=4501</guid>
<link>https://blog.launchpad.net/general/support-for-fido2-ssh-keys</link>
<description>Launchpad now supports the FIDO2 hardware-backed SSH key types ed25519-sk and ecdsa-sk. These keys use a hardware device, such as a YubiKey or Nitrokey, to perform cryptographic operations and keep your private keys safely off your computer. They can be used anywhere Launchpad accepts SSH authentication, including git+ssh and SFTP PPA uploads.
To generate a new key, run
<pre class="wp-block-code"><code>ssh-keygen -t ed25519-sk -C "your@email.com"</code></pre>
or use ecdsa-sk for backwards compatibility. You will be asked to touch your security key during the key creation, and OpenSSH will store the resulting files in ~/.ssh/. If you want to make your key resident, meaning it can be stored on the hardware device and later retrieved even if the original files are lost, use the -O resident option:
<pre class="wp-block-code"><code>ssh-keygen -t ed25519-sk -O resident -C "your@email.com"</code></pre>
Resident keys are useful if you use multiple machines or if you want a portable login method tied directly to your hardware key. To register a new key on your Launchpad account, visit https://launchpad.net/~username/+editsshkeys.
These new key types offer strong protection against key theft and phishing, but require a physical device each time you connect. It is recommended you keep a separate backup key if you use them regularly.
The introduction of security key backed SSH key types is the next step on making Launchpad even more secure. Let us know if you have any feedback!</description>
<pubDate>Mon, 27 Oct 2025 15:29:34 +0000</pubDate>
</item>
<item>
<title>St&eacute;phane Graber: The FuturFusion Cloud stack</title>
<guid isPermaLink="false">https://stgraber.org/?p=1789</guid>
<link>https://stgraber.org/2025/10/21/the-futurfusion-cloud-stack/</link>
<description>Besides my regular open source contributions and running my own consulting business (<a href="https://zabbly.com">Zabbly</a>), I’m also the CTO and co-founder of an Open Source company called <a href="https://futurfusion.io">FuturFusion</a> where I’ve been running Engineering for well over a year now.
My main focus over there has been building the FuturFusion Cloud stack, a completely open-source private cloud solution built around Incus. As part of that, our engineering team has been hard at work over the past year or so, improving Incus itself but also building a number of other projects from the ground up to make it easy to build and operate large scale Incus deployments.
Our stack is made of 4 core components:
<ul class="wp-block-list">
<li><a href="https://linuxcontainers.org/incus/">Incus</a> itself as the private cloud platform that runs virtual machines, system containers and application containers, with full clustering and multi-tenancy as well as support for a variety of storage and networking options to fit most environments.</li>
<li><a href="https://github.com/lxc/incus-os">IncusOS</a> (shipping as HypervisorOS to our customers) that acts as our base layer Operating System image running on all physical servers as well as in the virtual machines that run our other components. It’s an immutable OS image based on Debian 13 and using systemd’s tooling to provide a safe boot experience and full disk encryption through the use of UEFI Secure Boot and TPM 2.0 modules. It uses an A/B update scheme, guaranteeing no variance in software between servers and an easy rollback mechanism should something go wrong. It’s completely locked down with API-only access and optional central management through Operations Center.</li>
<li><a href="https://github.com/futurfusion/operations-center">Operations Center</a> provides an overview of an entire deployment, keeping track of all individual servers (running HypervisorOS), centrally managing all updates, handling Incus cluster creation and then acting as a global inventory of every Incus resource across all clusters.</li>
<li><a href="https://github.com/futurfusion/migration-manager">Migration Manager</a> is our migration tool which currently focuses on migrating from VMware (vCenter or standalone ESXi) over to Incus. It can connect to a large number of source VMware environments as well as target Incus clusters. It can easily keep track of hundreds of thousands of VMs that need to be migrated, making it easy to create migration batches and schedule those over weeks or months, running regular data pre-migration and finally completing the migration during scheduled downtime windows.</li>
</ul>
<figure class="wp-block-image size-large"><a href="https://stgraber.org/wp-content/uploads/2025/10/image.png"><img alt="" class="wp-image-1791" height="512" src="https://stgraber.org/wp-content/uploads/2025/10/image-1024x512.png" width="1024" /></a></figure>
I recently took a bit of time away from customer deployments to <a href="https://www.youtube.com/watch?v=TzH2L5Bzlh8">record a video</a> of how everything fits together, including an end to end lab deployment, starting from a pre-existing VMware environment and going all the way to having two Incus clusters running and the VMware VMs fully converted to Incus VMs.
<figure class="wp-block-embed is-type-video is-provider-youtube wp-block-embed-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio"><div class="wp-block-embed__wrapper">
</div></figure>
In addition, for those interested in the security aspect of things, I gave a talk a few months back about IncusOS’ security story at the Linux Security Summit in Denver, Colorado. The <a href="https://www.youtube.com/watch?v=d4Wx08pKNBo">recording of which</a> has since been made publicly available.
<figure class="wp-block-embed is-type-video is-provider-youtube wp-block-embed-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio"><div class="wp-block-embed__wrapper">
</div></figure>
Now our focus on the engineering front is primarily in fixing some filling a few remaining gaps as well as putting together up to date comprehensive documentation on IncusOS, Migration Manager and Operations Center. This will then make it easy for anyone to get started with those as well as hopefully attract more contributors to those projects.
On the topic of contributors, none of this would have been possible without the 112 individuals who contributed to the Incus project in the past year, thank you!</description>
<pubDate>Tue, 21 Oct 2025 19:57:20 +0000</pubDate>
</item>
<item>
<title>Julian Andres Klode: Sound Removals</title>
<guid isPermaLink="true">https://blog.jak-linux.org/2025/10/18/sound-removals/</guid>
<link>https://blog.jak-linux.org/2025/10/18/sound-removals/</link>
<description><h2 id="problem-statement">Problem statement</h2>
Currently if you have an automatically installed package A (= 1) where
<ul>
<li>A (= 1) Depends B (= 1)</li>
<li>A (= 2) Depends B (= 2)</li>
</ul>
and you upgrade B from 1 to 2; then you can:
<ol>
<li>Remove A (= 1)</li>
<li>Upgrade A to version 2</li>
</ol>
If A was installed by a chain initiated by Recommends (say X Rec Y, Y Depends A), the solver sometimes preferred removing A (and anything depending on it until it got).
I have a fix pending to introduce eager Recommends which fixes the practical case, but
this is still not sound.
In fact we can show that the solver produces the wrong result for small
minimal test cases, as well as the right result for some others without the
fix (hooray?).
Ensuring sound removals is more complex, and first of all it begs the question: When
is a removal sound? This, of course, is on us to define.
An easy case can be found in the <a href="https://www.debian.org/doc/debian-policy/ch-relationships.html#replacing-whole-packages-forcing-their-removal">Debian policy, 7.6.2 “Replacing whole packages, forcing their removal”</a>:
If <code>B (= 2)</code> declares a <code>Conflicts: A (= 1)</code> and <code>Replaces: A (= 1)</code>, then the removal
is valid. However this is incomplete as well, consider it declares <code>Conflicts: A (&lt; 1)</code>
and <code>Replaces: A (&lt; 1)</code>; the solution to remove A rather than upgrade it would still
be wrong.
This indicates that we should only allow removing <code>A</code> if the conflicts could not be solved
by upgrading it.
The other case to explore is package removals. If B is removed, A should be removed as well;
however it there is another package X that <code>Provides: B (= 1)</code> and it is marked for install,
A should not be removed. That said, the solver is not allowed to install X to satisfy the
depends <code>B (= 1)</code> - only to satisfy other dependencies [we do not want to get into endless
loops where we switch between alternatives to keep reverse dependencies installed].
<h2 id="proposed-solution">Proposed solution</h2>
To solve this, I propose the following definition:
Definition (sound removal): A removal of package <code>P</code> is sound if either:
<ol>
<li>A version <code>v</code> is installed that package-conflicts with B.</li>
<li>A package <code>Q</code> is removed and the installable versions of P package-depends on Q.</li>
</ol>
where the other definitions are:
Definition (installable version): A version <code>v</code> is installable if either it is installed,
or it is newer than an installed version of the same package (you may wish to change this to
accomodate downgrades, or require strict pinning, but here be dragons).
Definition (package-depends): A version <code>v</code> package-depends on a package B if either:
<ol>
<li>there exists a dependency in <code>v</code> that can be solved by any version of <code>B</code>, or</li>
<li>there exists a package <code>C</code> where <code>v package-depends C</code> and <code>any (c in C) package-depends B</code> (transitivity)</li>
</ol>
Definition (package-conflicts): A version <code>v</code> package-conflicts with an installed package <code>B</code> if either:
<ol>
<li>it declares a conflicts against an installable version of B; or</li>
<li>there exists a package <code>C</code> where <code>v package-conflicts C</code>,
and <code>b package-depends C</code> for installable versions b.</li>
</ol>
<h2 id="translating-this-into-a-modified-sat-solver">Translating this into a (modified) SAT solver</h2>
One approach may be to implement the logic in the conflict analysis that drives backtracking, i.e.
we assume a package <code>A</code> and when we reach <code>not A</code>, we analyse if the implication graph for <code>not A</code>
constitutes a sound removal, and then replace the assumption <code>A</code> with the assumption
<code>A or "learned reason</code>.
However, while this seems a plausible mechanism for a DPLL solver, for a modern CDCL solver, it’s
not immediately evident how to analyse whether <code>not A</code> is sound if the reason for it is a learned
clause, rather than a problem clause.
Instead we propose a static encoding of the rules into a slightly modified SAT solver:
Given c1, …, cn that transitive-conflicts A and D1, …, Dn that A package-depends on,
introduce the rule:
<code>A unless c1 or c2 or ... cn ... or not D1 or not D2 ... or not Dn</code>
Rules of the form <code>A... unless B...</code> - where <code>A...</code> and <code>B...</code> are CNF - are
intuitively the same as <code>A... or B...</code>, however the semantic here is different:
We are not allowed to select <code>B...</code> to satisfy this clause.
This requires a SAT solver that tracks a reason for each literal being assigned,
such as solver3, rather than a SAT solver like MiniSAT that only tracks reasons across
propagation (solver3 may track <code>A depends B or C</code> as the reason for <code>B</code> without evaluating
<code>C</code>, whereas MiniSAT would only track it as the reason given <code>not C</code>).
<h2 id="is-it-actually-sound">Is it actually sound?</h2>
The proposed definition of a sound removal may still proof unsound as I either missed
something in the conclusion of the proposed definition that violates my goal I set out
to achieve, or I missed some of the goals.
I challenge you to find cases that cause removals that look wrong :D</description>
<pubDate>Sat, 18 Oct 2025 19:37:17 +0000</pubDate>
</item>
<item>
<title>Podcast Ubuntu Portugal: E364 Guaxinim Resoluto E Outras Festas</title>
<guid isPermaLink="false">https://hub.podcastubuntuportugal.org/s/wTAR9mfwrbB62z8/download/e364.mp3</guid>
<link>https://podcastubuntuportugal.org/e364/</link>
<description>O Diogo ficou afectado da garganta? O Miguel perdeu o comboio? A culpa é da IA! De regresso da Festa do Software Livre, comentámos alguns momentos altos do magnífico certame, fizemos pouco de economistas, da CP e de pessoas e comunidades de Software Livre que enviarão cartas iradas ao Provedor do Podcast. Babámo-nos com o novo Raspberry Pi 500+; revimos as últimas novidades do Firefox 144; as últimas versões 20.04 e 24.04 do Ubuntu Touch; o grande festão Intercidades que vai acontecer a 25 de Outubro em Lisboa e Porto e ainda discutimos DRAMA à volta da Canonical e Flatpaks, para pegar fogo à tenda do circo.
Já sabem: oiçam, subscrevam e partilhem!
<ul>
<li>Festa do Software Livre 2025, Porto, 3 a 5 de Outubro: <a href="https://festa2025.softwarelivre.eu/pt/">https://festa2025.softwarelivre.eu/pt/</a></li>
<li>Vídeos da FSL 2025: <a href="https://youtube.com/playlist?list=PL9yk9tkJGhrNZnvcXXqkJRlTXaln-n6dv">https://youtube.com/playlist?list=PL9yk9tkJGhrNZnvcXXqkJRlTXaln-n6dv</a></li>
<li>Ubuntu Summit 2025, Londres, 23-24 de Outubro: <a href="https://ubuntu.com/blog/ubuntu-summit-25-10-is-coming-to-your-circle-of-friends-from-london">https://ubuntu.com/blog/ubuntu-summit-25-10-is-coming-to-your-circle-of-friends-from-london</a></li>
<li>Festão Lisboa-Porto 25 de Outubro (Watch Party simultânea): <a href="https://ubuntusummit2510.centrolinux.pt">https://ubuntusummit2510.centrolinux.pt</a>
<ul>
<li><a href="https://lcdporto.org">https://lcdporto.org</a></li>
<li><a href="https://ectl.pt">https://ectl.pt</a></li>
</ul>
</li>
<li>Firefox 144:
<ul>
<li><a href="https://9to5linux.com/firefox-144-is-now-available-for-download-this-is-whats-new">https://9to5linux.com/firefox-144-is-now-available-for-download-this-is-whats-new</a></li>
<li><a href="https://www.omgubuntu.co.uk/2025/10/firefox-144-released-new-features">https://www.omgubuntu.co.uk/2025/10/firefox-144-released-new-features</a></li>
</ul>
</li>
<li>Ubuntu 25.10:
<ul>
<li><a href="https://discourse.ubuntu.com/t/ubuntu-25-10-foundations-edition-what-s-coming-and-what-s-next/68147">https://discourse.ubuntu.com/t/ubuntu-25-10-foundations-edition-what-s-coming-and-what-s-next/68147</a></li>
<li><a href="https://canonical.com/blog/canonical-releases-ubuntu-25-10-questing-quokka">https://canonical.com/blog/canonical-releases-ubuntu-25-10-questing-quokka</a></li>
<li><a href="https://discourse.ubuntu.com/t/questing-quokka-release-notes/59220">https://discourse.ubuntu.com/t/questing-quokka-release-notes/59220</a></li>
</ul>
</li>
<li>Drama com Flatpaks:
<ul>
<li><a href="https://www.phoronix.com/news/Ubuntu-25.10-Broken-Flatpaks">https://www.phoronix.com/news/Ubuntu-25.10-Broken-Flatpaks</a></li>
</ul>
</li>
<li>26.04 Resolute Racoon:
<ul>
<li><a href="https://x.com/ubuntu/status/1975147272577929456">https://x.com/ubuntu/status/1975147272577929456</a></li>
<li><a href="https://www.phoronix.com/news/Ubuntu-Retire-ISO-Tracker">https://www.phoronix.com/news/Ubuntu-Retire-ISO-Tracker</a></li>
<li><a href="https://discourse.ubuntu.com/t/release-26-04-lts-without-the-iso-tracker/69577">https://discourse.ubuntu.com/t/release-26-04-lts-without-the-iso-tracker/69577</a></li>
</ul>
</li>
<li>Ubports 20.04 e 24.04.0.1:
<ul>
<li><a href="https://ubports.com/blog/ubports-news-1/ubuntu-touch-20-04-ota-10-release-3972">https://ubports.com/blog/ubports-news-1/ubuntu-touch-20-04-ota-10-release-3972</a></li>
<li><a href="https://ubports.com/blog/ubports-news-1/ubuntu-touch-24-04-1-0-release-3973">https://ubports.com/blog/ubports-news-1/ubuntu-touch-24-04-1-0-release-3973</a></li>
<li><a href="https://open-store.io/?type=app&amp;category=Games">https://open-store.io/?type=app&amp;category=Games</a></li>
</ul>
</li>
<li>Raspberry Pi 500+:
<ul>
<li><a href="https://youtu.be/Dv3RRAx7G6E">https://youtu.be/Dv3RRAx7G6E</a></li>
<li><a href="https://youtu.be/_LYU-I1LzcI">https://youtu.be/_LYU-I1LzcI</a></li>
<li><a href="https://youtu.be/j8LRs3a-wv4">https://youtu.be/j8LRs3a-wv4</a></li>
</ul>
</li>
<li>Chapéu NVME M.2 compacto para Rpi: <a href="https://www.raspberrypi.com/news/m-2-hat-compact-on-sale-now-at-15/">https://www.raspberrypi.com/news/m-2-hat-compact-on-sale-now-at-15/</a></li>
<li>LoCo PT: <a href="https://loco.ubuntu.com/teams/ubuntu-pt/">https://loco.ubuntu.com/teams/ubuntu-pt/</a></li>
<li>Mastodon: <a href="https://masto.pt/@pup">https://masto.pt/@pup</a></li>
<li>Youtube: <a href="https://youtube.com/PodcastUbuntuPortugal">https://youtube.com/PodcastUbuntuPortugal</a></li>
</ul>
<h3 id="atribuição-e-licenças">Atribuição e licenças</h3>
Este episódio foi produzido por Diogo Constantino, Miguel e Tiago Carrondo e editado pelo <a href="https://senhorpodcast.pt/">Senhor Podcast</a>.
O website é produzido por Tiago Carrondo e o <a href="https://gitlab.com/podcastubuntuportugal/website">código aberto</a> está licenciado nos termos da <a href="https://gitlab.com/podcastubuntuportugal/website/main/LICENSE">Licença MIT</a>. (<a href="https://creativecommons.org/licenses/by/4.0/)">https://creativecommons.org/licenses/by/4.0/)</a>. A música do genérico é: “Won’t see it comin’ (Feat Aequality &amp; N’sorte d’autruche)”, por Alpha Hydrae e está licenciada nos termos da <a href="https://creativecommons.org/publicdomain/zero/1.0/">CC0 1.0 Universal License</a>.
Os separadores de péssima qualidade foram tocados ao vivo e sem rede pelo Miguel, pelo que pedimos desculpa pelos incómodos causados.
Este episódio e a imagem utilizada estão licenciados nos termos da licença: <a href="https://creativecommons.org/licenses/by-nc-nd/4.0/">Attribution-NonCommercial-NoDerivatives 4.0 International (CC BY-NC-ND 4.0)</a>, <a href="https://creativecommons.org/licenses/by-nc-nd/4.0/legalcode">cujo texto integral pode ser lido aqui</a>. Estamos abertos a licenciar para permitir outros tipos de utilização, <a href="https://podcastubuntuportugal.org/contactos">contactem-nos</a> para validação e autorização.
A arte de episódio foi criada por encomenda pela Shizamura - artista, ilustradora e autora de BD. Podem ficar a conhecer melhor a <a href="https://ciberlandia.pt/@shizamura">Shizamura na Ciberlândia</a> e no <a href="https://sarilho.net/">seu sítio web</a>.</description>
<pubDate>Thu, 16 Oct 2025 00:00:00 +0000</pubDate>
<enclosure url="https://hub.podcastubuntuportugal.org/s/wTAR9mfwrbB62z8/download/e364.mp3" length="50994914" type="audio/mpeg"/>
</item>
<item>
<title>Kubuntu General News: Kubuntu 25.10 “Questing Quokka” Released:</title>
<guid isPermaLink="false">https://kubuntu.org/?p=5351</guid>
<link>https://kubuntu.org/news/kubuntu-25-10-questing-quokka-released/</link>
<description>October 9, 2025 – The Kubuntu team is thrilled to announce the release of Kubuntu 25.10, codenamed “Questing Quokka”!
<figure class="wp-block-image size-full is-resized"><img alt="" class="wp-image-5354" height="473" src="https://kubuntu.org/wp-content/uploads/2025/10/b709/Kubuntu_Questing.png" width="840" /></figure>
As a community-driven flavor of Ubuntu, Kubuntu continues its mission to deliver the cutting-edge KDE software ecosystem on top of Ubuntu’s rock-solid foundation. This interim release, aligned with Ubuntu’s six-month cycle, packs in the freshest updates to Plasma, Frameworks, and applications, ensuring a smooth, performant desktop experience for millions of users worldwide.
Building on the Ubuntu 25.10 base released today by Canonical, Kubuntu 25.10 introduces Plasma 6.4 as the flagship update, alongside Qt 6.9, KDE Frameworks 6.17.0, and the latest KDE Gear 25.08 suite.
We’ve also upgraded to Linux kernel 6.17 for enhanced hardware support and efficiency. Whether you’re a developer, creator, or everyday user, this release emphasizes Wayland adoption, modern security, and seamless integration with the open source world.
Kubuntu remains completely free to download, use, and share—empowering our global community to innovate without barriers. Download it now from <a href="https://kubuntu.org/getkubuntu" rel="noreferrer noopener" target="_blank">kubuntu.org/getkubuntu</a> and join the conversation in our forums or IRC channels.
<h2>Three Exciting New Features for Kubuntu Users</h2>
Here are three standout enhancements that Kubuntu 25.10 brings to your desktop, designed to make your workflow faster, more secure, and visually stunning:
<ul><li>KDE Plasma 6.4: A Refined and Responsive Desktop Dive into the fifth feature release of Plasma 6, complete with Qt 6.8 and Frameworks 6.17.0. This update refines the desktop with smoother animations, improved widget customization, and better multi-monitor handling. It’s a big win for productivity, letting you tailor your environment like never before while enjoying the stability of Ubuntu’s core. </li><li>Plasma Wayland as Default Session Say goodbye to legacy X11 limitations—Wayland is now the go-to session for superior graphics rendering, reduced latency, and enhanced security. With hardware-accelerated compositing baked in, you’ll notice snappier video playback and app responsiveness. (X11 fans, no worries: it’s still available via a simple package install.) This shift future-proofs your setup for the next era of Linux desktops. </li><li>Rust-Powered sudo-rs for Safer System Management Leveraging Ubuntu’s new memory-safe implementations, Kubuntu defaults to sudo-rs—a Rust-based reimplementation of sudo. It slashes vulnerabilities common in traditional tools, making privilege escalation quicker and more secure without compromising usability. Paired with NTS-enabled NTP for tamper-proof time syncing, your system stays locked down while you focus on what matters.</li></ul>
<h2>What’s New Under the Hood</h2>
Beyond these highlights, Kubuntu 25.10 inherits Ubuntu’s robust platform upgrades:
<ul><li>Linux Kernel 6.17: Better Arm and RISC-V support, nested virtualization, and Intel TDX for confidential computing—ideal for developers and edge deployments. </li><li>Updated Developer Tools: OpenJDK 25, Python 3.14 RC3, Golang 1.25, GCC 15, and Rust 1.85 (with 1.88 available) to supercharge your coding sessions. </li><li>Enhanced Security and Accessibility: Experimental TPM-backed full disk encryption with recovery options, improved Bluetooth audio (AAC codecs via restricted extras), and broader accessibility features to meet global standards. </li><li>KDE Applications Galore: Everything from Dolphin file manager to Konsole terminal refreshed to 25.08 versions, plus legacy Qt5/KF5 support for your favorite older apps.</li></ul>
This release underscores Kubuntu’s commitment to being at the heart of the open source ecosystem—pushing boundaries with KDE while riding Ubuntu’s reliable waves. A huge thank you to our volunteer contributors, testers, and the upstream KDE team for making this possible.
Ready to quokka-hop into the future? Upgrade today or install fresh. Questions? Head to <a href="https://discourse.ubuntu.com/c/flavors/kubuntu/187">https://discourse.ubuntu.com/c/flavors/kubuntu/187</a> or ping us on Matrix at <a href="https://matrix.to/#/#kubuntu:matrix.org" rel="noreferrer noopener" target="_blank">#kubuntu:matrix.org</a>.
Stay tuned for the Ubuntu Summit on October 23-24, where we’ll showcase more on Kubuntu’s role in open source innovation
P.S New updated website coming soon…. keep an eye on kubuntu.org for when we switch</description>
<pubDate>Fri, 10 Oct 2025 13:48:07 +0000</pubDate>
</item>
<item>
<title>Erich Eickmeyer: Why I Won’t Be Attending or Speaking at Ubuntu Summit 25.10</title>
<guid isPermaLink="false">http://ericheickmeyer.com/?p=6134</guid>
<link>https://ericheickmeyer.com/2025/10/09/why-i-wont-be-attending-or-speaking-at-ubuntu-summit-25-10/</link>
<description>Ubuntu Summit’s decision to go exclusively online, with the exception of those speaking at the Summit in London, UK, is anti-collaborative and turns its back on the very people who make Ubuntu what it is: its community of volunteers and developers. Ubuntu Summit was created from the dust of the Ubuntu Developer Summit in 2022 to recognize the community. It no longer serves that purpose.
As many know, I have been the lead of Ubuntu Studio for more than 7 years. I’m the longest-tenured Ubuntu Studio lead. I owe much of the foundation that was built to my predecessors: Luke Yelavich (founder), Scott Lavender, Kaj Ailomaa, and Set Halstrom. It is a true labor of love for me, and is the foundation for much of what I do.
I have worked myself through the ranks of Ubuntu, becoming a small-time packager for a small set of Ubuntu packages, then the Ubuntu Studio packageset, moving up to MOTU (Master of the Universe). I also served on the Ubuntu Community Council and am a current Discourse moderator.
Community and the love of people is a huge motivation for me. Granted, for those first four years, I hadn’t ever met the people I was collaborating with to make Ubuntu Studio what it is.
Then in August 2022, I was invited to attend the first ever Ubuntu Summit 2022 in Prague, Czechia. Having never travelled abroad before and never having even been off the continent of North America, itself a challenge as getting a U.S. passport is neither cheap nor easy, I was reluctant at first. Then I managed to get my passport, as well as the funds and passports to bring my wife and son to Ubuntu Summit.
That experience changed my life and the life of my entire family. My son, 10 at the time, was the youngest registered attendee. My wife was inspired to bring back Edubuntu, which had been defunct for nine long years by the time it was revived that following spring.
These are the things that happen when you have personal connections with people. If you’ve never read the book before, I encourage you to read <a href="https://www.nurturingparenting.com/images/cmsfiles/hardwired_to_connect.pdf">Hardwired to Connect</a>, which is a research paper published by a bunch of scientists. In essence, it says that people’s brains are wired, from birth, to engage in communities in for personal, in-person connections. It’s a scientific study that took years and is an excellent introduction to why we are the way we are.
Much of my education revolves around the very idea of building personal communities, which is one reason I was appalled when Ubuntu Summit, starting with 25.10, while it would be twice a year, it would be online-only except for the speakers. Having spoken at the past three, I was planning to take a year off from speaking, while still being there to represent as an Ubuntu Flavor Lead with my wife, also a now Flavor Lead.
If it weren’t for that initial Ubuntu Summit, in person, my wife and son would not have been as interested or as involved as they are today. The subsequent years only strengthened that involvement. 
Now, it’s going to be an online-focused approach. I get it. It’s cheaper and easier. Also, those attending online were just watching a livestream anyhow. The Local Communities (LoCos) can get together on their own if they want to do a big event. It’s easier to reach more people if you do everything online.
Except it’s not.
For instance, the nearest active LoCo to me, in the Seattle-Tacoma area, is the Southern California LoCo. Meetups with them are logistically impossible. Same if I were to go to the Arizona LoCo; it’s just not possible. Most of the states in the United States are huge, so if there were one LoCo per state, it wouldn’t be correct. To be honest, I have no desire, time, or energy left to start and lead a LoCo in my area. Besides that, there used to be one for my state, but it’s long gone.
Furthermore, with the exception of me and my wife, us flavor leads are scattered to the globe. It used to be that we would meet online throughout the year every other month and then meet together once a year at Ubuntu Summit. That’s gone now.
Again, I get it. Canonical is a company that is and always has been majority remote work. Except for one thing: they get together twice a year in-person, and are even given T-Shirts to celebrate the immediately-prior release which was partially built by volunteers. Those of us who give our time, energy, and effort to the Ubuntu community aren’t given that in-person experience, let alone a T-Shirt. The very lifeblood of what makes Ubuntu so great isn’t given the ability to meet in-person. That’s been stripped from us, and it came as a complete surprise.
I’m not without ideas for solutions to problems, though. Rather than be completely destructive in this post, I can be constructive. My solution to this would be a compromise:
<ul class="wp-block-list">
<li>Have the Summit be in-person once a year following the <code>yy.04</code> release
<ul class="wp-block-list">
<li>Have that one go back to being what it was. It can either have booths like 2024 did or go back to being talk/workshop-focused like years prior. It doesn’t matter, it just needs to be in-person.</li>
</ul>
</li>
<li>Have the Summit be online once a year following the <code>yy.10</code> release</li>
</ul>
I don’t think this is too much to ask. The reward of personal connections when doing something remote for most of the year is a small price to pay, no matter the cost. Personal connections are tantamount to a healthy community.
I think my compromise would prevent the Summit from dying just like the Ubuntu Developer Summit did once it went online-only. The way I see it is with the current status-quo, history is repeating itself.
I’m sure people at Canonical don’t see it this way because they meet with the people they work with the most twice a year. Those of us from the Ubuntu community that are developers aren’t given that luxury. We’re not even given that luxury once a year now. We’re not even given a T-Shirt!
Am I angry? A little. Do I feel betrayed by the very community I have given so much to over the years? Absolutely. Either way, I believe an online-only Summit is anti-collaborative in that it removes personal connections from the equation, which goes against the very fiber of my being.
Thank you for reading this, and I hope this reaches the people I’m trying to reach and have it speak for those who either won’t speak-up or don’t think they can make a difference.</description>
<pubDate>Thu, 09 Oct 2025 22:01:09 +0000</pubDate>
</item>
<item>
<title>Ubuntu Studio: Ubuntu Studio 25.10 Released</title>
<guid isPermaLink="false">https://ubuntustudio.org/?p=3029</guid>
<link>https://ubuntustudio.org/2025/10/ubuntu-studio-25-10-released/</link>
<description><div class="wp-block-image"><figure class="aligncenter size-full is-resized"><img alt="" class="wp-image-3031" height="223" src="https://ubuntustudio.org/wp-content/uploads/2025/10/b9e8/finalbanner.png" width="600" /></figure></div>
The Ubuntu Studio team is pleased to announce the release of Ubuntu Studio 25.10 code-named “Questing Quokka”. This marks Ubuntu Studio’s 37th release. This release is a Regular release and as such, it is supported for 9 months, until July 2026.
Since it’s just out, you may experience some issues, so you might want to wait a bit before upgrading. Please see the <a href="https://discourse.ubuntu.com/t/ubuntu-studio-25-10-release-notes/">release notes</a> for a more complete list of changes and known issues. Listed here are some of the major highlights.
<div class="wp-block-image"><figure class="aligncenter size-full is-resized"><img alt="" class="wp-image-3032" height="270" src="https://ubuntustudio.org/wp-content/uploads/2025/10/0619/desktop_screenshot.png" width="480" /></figure></div>
You can download Ubuntu Studio 25.10 from our <a href="https://ubuntustudio.org/download">download page</a>.
<h2 id="block-6ca66e3a-8d42-42a8-a0cf-a8ed86e6025f">Special Notes</h2>
The Ubuntu Studio 25.10 disk image (ISO) exceeds 4 GB and cannot be downloaded to some file systems such as FAT32 and may not be readable when burned to a standard DVD. For this reason, we recommend downloading to a compatible file system. When creating a boot medium, we recommend <a href="https://ubuntu.com/tutorials/create-a-usb-stick-on-ubuntu#1-overview">creating a bootable USB stick</a> with the ISO image or burning to a Dual-Layer DVD.
Minimum installation media requirements: Dual-Layer DVD or 8GB USB drive.
Images can be obtained from this link: <a href="https://cdimage.ubuntu.com/ubuntustudio/releases/25.10/release/" rel="noreferrer noopener" target="_blank">https://cdimage.ubuntu.com/ubuntustudio/releases/25.1</a><a href="https://cdimage.ubuntu.com/ubuntustudio/releases/25.10/release/" rel="noreferrer noopener" target="_blank">0</a><a href="https://cdimage.ubuntu.com/ubuntustudio/releases/25.10/release/" rel="noreferrer noopener" target="_blank">/release/</a>
Full updated information, including Upgrade Instructions, are available in the <a href="https://discourse.ubuntu.com/t/ubuntu-studio-25-10-release-notes/">Release Notes</a><a href="https://wiki.ubuntu.com/GroovyGorilla/Beta/UbuntuStudio">.</a>
Upgrades from 25.04 should be enabled within a month after release, so we appreciate your patience. Upgrades from 24.04 LTS will be enabled after 25.04 reaches End-Of-Life in January 2026.
<h2>New This Release</h2>
<div class="wp-block-image"><figure class="alignright size-full is-resized"><img alt="" class="wp-image-3033" height="106" src="https://ubuntustudio.org/wp-content/uploads/2025/10/3402/site-logo.webp" width="74" /></figure></div>
<h3>The Return of Internet DJ Console (IDJC)!</h3>
After a long hiatus, Internet DJ Console (IDJC) has returned. This package for creating and running Internet-based radio stations had been removed from Debian, but has returned, and therefore, returned to Ubuntu Studio!
<div class="wp-block-image"><figure class="alignright size-full is-resized"><img alt="" class="wp-image-3034" height="96" src="https://ubuntustudio.org/wp-content/uploads/2025/10/9f6a/UbyLIWcj_400x400.jpg" width="96" /></figure></div>
<h3>JackTrip</h3>
Ubuntu Studio now includes <a data-id="pencil2d.org" data-type="URL" href="http://pencil2d.org">JackTrip</a>! JackTrip serves two purposes: low-latency networked JACK audio within your network, and low-latency Internet audio collaboration. Bands are even known to jam remotely using JackTrip’s services!
It supports any number of channels (as many as the computer/network can handle) of bidirectional, high quality, uncompressed audio signal streaming. 
<h3>More Musical Plugins</h3>
We came to the realization that we needed to support musicians a little better, so we added a few instrument and musical plugins to assist with that:
<ul><li>din</li><li>drumkv1</li><li>freewheeling</li><li>gxtuner</li><li>Hydrogen Drumkit Effects</li><li>kmetronome</li><li>padthv1</li><li>polyphone</li><li>samplv1</li><li>synthv1</li></ul>
<h3>More Photography Tools</h3>
<ul><li>PhotoCollage – allows you to create photo collage phosters</li><li>PicPlanner – Calculates and displays the positions of the Sun, Moon, and Milky Way for any time and location on earth, to help you get those perfect astronomical photos or for taking pictures during the Golden or Blue hours.</li></ul>
<h3>PipeWire 1.4.7</h3>
<div class="wp-block-image"><figure class="alignright size-full is-resized"><img alt="" class="wp-image-2766" height="70" src="https://ubuntustudio.org/wp-content/uploads/2024/04/be34/Pipewire_logo.svg_.png" width="324" /></figure></div>
This release contains PipeWire 1.4.7. 
PipeWire’s JACK compatibility is configured to use out-of-the-box and is zero-latency internally. System latency is configurable via <a data-id="2797" data-type="page" href="https://ubuntustudio.org/audio-configuration/">Ubuntu Studio Audio Configuration</a> and can now be configured on a per-user basis instead of globally.
<h3>Ubuntu Studio Audio Configuration</h3>
Speaking of Audio Configuration, we have added a number of options for configuring the PipeWire JACK compatibility, as can be seen in the image below. Additionally, buffer size can now be configured from within any JACK application that supports it, such as Patchance, Carla, Ardour, and more!
<div class="wp-block-image"><figure class="aligncenter size-full is-resized"><img alt="" class="wp-image-3035" height="239" src="https://ubuntustudio.org/wp-content/uploads/2025/10/73c8/image.png" width="622" /></figure></div>
<h3>Ardour 8.12</h3>
<div class="wp-block-image"><figure class="alignright size-full is-resized"><img alt="" class="wp-image-1977" height="73" src="https://ubuntustudio.org/wp-content/uploads/2020/06/2a76/ardour.png" width="84" /></figure></div>
This is, as of this writing, the latest release of Ardour, packed with the latest bugfixes.
To help support Ardour’s funding, you may obtain later versions directly from ardour.org. To do so, please <a data-id="https://ardour.org" data-type="URL" href="https://ardour.org">one-time purchase or subscribe to Ardour from their website.</a> If you wish to get later versions of Ardour from us, you will have to wait until the next release of Ubuntu Studio, due in April 2026.
<h2 id="block-c7a21be7-9349-421e-a098-c0d2919f320a">Frequently Asked Questions</h2>
Q: Does Ubuntu Studio contain snaps? A: Yes. Mozilla’s distribution agreement with Canonical changed, and Ubuntu was forced to no longer distribute Firefox in a native .deb package. We have found that, after numerous improvements, Firefox now performs just as well as the native .deb package did.
Thunderbird also became a snap so that the maintainers can get security patches delivered faster.
Additionally, Freeshow is an Electron-based application. Electron-based applications cannot be packaged in the Ubuntu repositories in that they cannot be packaged in a traditional Debian source package. While such apps do have a build system to create a .deb binary package, it circumvents the source package build system in Launchpad, which is required when packaging for Ubuntu. However, Electron apps also have a facility for creating snaps, which can be uploaded and included. Therefore, for Freeshow to be included in Ubuntu Studio, it had to be packaged as a snap.
We have additional snaps that are Ubuntu-specific, such as the Firmware Updater and the Security Center. Contrary to popular myth, Ubuntu does not have any plans to switch all packages to snaps, nor do we.
Q: Will you make an ISO with {my favorite desktop environment}? A: To do so would require creating an entirely new flavor of Ubuntu, which would require going through the Official Ubuntu Flavor application process. Since we’re completely volunteer-run, we don’t have the time or resources to do this. Instead, we recommend you download the <a href="https://ubuntu.com/download/flavours">official flavor for the desktop environment of your choice</a> and use <a href="https://ubuntustudio.org/ubuntu-studio-installer">Ubuntu Studio Installer</a> to get Ubuntu Studio – which does *not* convert that flavor to Ubuntu Studio but adds its benefits.
Q: What if I don’t want all these packages installed on my machine? A: Simply use the Ubuntu Studio Installer to remove the features of Ubuntu Studio you don’t want or need! Additionally, we include a Minimal Install option that, when used with Ubuntu Studio Installer, will give you the Ubuntu Studio experience for whatever your desktop studio needs!
<h2>Get Involved!</h2>
A wonderful way to contribute is to get involved with the project directly! We’re always looking for new volunteers to help with packaging, documentation, tutorials, user support, and MORE! <a href="https://ubuntustudio.org/contribute/">Check out all the ways you can contribute!</a>
Our project leader, Erich Eickmeyer, is now working on Ubuntu Studio at least part-time, and is hoping that the users of Ubuntu Studio can give enough to generate a monthly part-time income. We’re not there, but if every Ubuntu Studio user donated monthly, we’d be there! Your donations are appreciated! If other distributions can do it, surely we can! See the sidebar for ways to give!
<h2>Contact the Team</h2>
The best way to contact the Ubuntu Studio team is via the <a href="https://discourse.ubuntu.com/c/flavors/ubuntustudio/">Ubuntu Discourse</a>.
<h2>Special Thanks</h2>
Huge special thanks for this release go to:
<ul><li>Eylul Dogruel: Artwork, Graphics Design</li><li>Ross Gammon: Upstream Debian Developer, Testing</li><li>Sebastien Ramacher: Upstream Debian Developer</li><li>Dennis Braun: Upstream Debian Developer</li><li>Rik Mills: Kubuntu Council Member, help with Plasma desktop</li><li>Scarlett Moore: Kubuntu Project Lead, help with Plasma desktop</li><li>Len Ovens: Testing, insight</li><li>Mauro Gaspari: Tutorials, Promotion, and Documentation, Testing, keeping Erich sane</li><li>Erich Eickmeyer: Project Leader, Packaging, Development, Direction, Treasurer</li><li>Steve Langasek: You are missed.</li></ul></description>
<pubDate>Thu, 09 Oct 2025 17:11:02 +0000</pubDate>
</item>
<item>
<title>Lubuntu Blog: Lubuntu 25.10 (Questing Quokka) Released!</title>
<guid isPermaLink="false">https://lubuntu.me/?p=4159</guid>
<link>https://lubuntu.me/lubuntu-25-10-questing-quokka-released/</link>
<description>The Lubuntu Team is proud to announce Lubuntu 25.10, codenamed Questing Quokka. Lubuntu 25.10 is the 29th release of Lubuntu, the 15th release of Lubuntu with LXQt as the default desktop environment. Download and Support Lifespan With 25.10 being an interim release, it will follow the standard non-LTS support period of nine months; this means […]</description>
<pubDate>Thu, 09 Oct 2025 14:05:30 +0000</pubDate>
</item>
<item>
<title>Sean Davis: Xubuntu 25.10 "Questing Quokka"</title>
<guid isPermaLink="false">https://seand.xyz/tag/xubuntu/rss/68e73e02fa4f1216ce0f75bd</guid>
<link>https://seand.xyz/blog/2025/10/09/xubuntu-25-10-questing-quokka/</link>
<description><img alt="Xubuntu 25.10 &quot;Questing Quokka&quot;" src="https://seand.xyz/content/images/2025/10/xubuntu-2510-featured.png" />A Critical Moment and a Glimpse of the Future<a href="https://wiki.xubuntu.org/releases/25.10/release-notes?ref=seand.xyz" rel="noreferrer">Xubuntu 25.10</a>, codenamed "Questing Quokka," is the fortieth release of the Xfce-powered Ubuntu flavor. Built on the 6.17 Linux kernel, Xfce 4.20, MATE 1.26, and GNOME 49, this release continues to deliver the fast, tightly-integrated, and user-friendly experience that Xubuntu users expect, even on modest hardware.Today, I&amp;aposll explore where Xubuntu stands as it approaches its twentieth anniversary and share what&amp;aposs new (and what&amp;aposs still rough around the edges) in this release.<figure class="kg-card kg-image-card kg-card-hascaption"><img alt="Xubuntu 25.10 &quot;Questing Quokka&quot;" class="kg-image" height="900" src="https://seand.xyz/content/images/2025/10/xubuntu-2510-desktop.png" width="1440" />Xubuntu 25.10 "Questing Quokka": A screenshot of the desktop.</figure><h2 id="a-critical-juncture">A Critical Juncture</h2>The "Questing Quokka" arrives at a pivotal time in Xubuntu&amp;aposs history. In just six months, we&amp;aposll celebrate Xubuntu&amp;aposs twentieth anniversary (technically eight months: 6.06 marks the only time Ubuntu was released in June).In recent years, our small development team has faced the same challenges as many open-source projects: contributors stepping back, real-world responsibilities growing, and less time to dedicate to day-to-day development.Beyond that, our involvement with the upstream Xfce project has slowed. Many of us, myself included, once played major roles in shaping Xfce’s direction, contributing countless hours to its design, code, and outreach. Those efforts helped establish the strong foundation Xfce enjoys today.While we remain proud supporters and collaborators, Xubuntu’s continued growth depends on fresh energy and new contributors. If you’ve ever wanted to make a tangible impact on an open-source desktop environment, this is your moment. Visit the <a href="https://xubuntu.org/contribute/?ref=seand.xyz" rel="noreferrer">Get Involved</a> page to learn how to help with artwork, development, documentation, QA, marketing, and more.Now, let’s look at what’s new (and what still needs work) in 25.10.<h2 id="xubuntu-2510-a-snapshot-of-the-future">Xubuntu 25.10: A Snapshot of the Future</h2>As mentioned, Xubuntu 25.10 ships with Xfce 4.20, GNOME 49, and MATE 1.26. Like other Ubuntu flavors, it also introduces the new Rust-based <code>sudo-rs</code>.If you’re upgrading from Xubuntu 25.04, you’ll find the experience familiar. Most applications have received incremental updates, theming remains consistent, and there are few new user-facing features. The most noticeable changes this cycle? The bugs. 🐞<h3 id="known-issues-and-what-to-expect">Known Issues (and What to Expect)</h3><h4 id="libadwaita-apps-and-the-case-of-the-missing-close-button">libadwaita Apps and the Case of the Missing Close Button</h4>Late in the cycle, <a href="https://bugs.launchpad.net/ubuntu/+source/elementary-xfce/+bug/2125025?ref=seand.xyz" rel="noreferrer">we discovered</a> that several GNOME and libadwaita-based apps have empty window close buttons when using the elementary-xfce icon theme. This affects Disk Usage Analyzer (<code>baobab</code>), Document Scanner (<code>simple-scan</code>), Fonts (<code>gnome-font-viewer</code>), Mines (<code>gnome-mines</code>), and Sudoku (<code>gnome-sudoku</code>).<figure class="kg-card kg-image-card kg-card-hascaption"><img alt="Xubuntu 25.10 &quot;Questing Quokka&quot;" class="kg-image" height="800" src="https://seand.xyz/content/images/2025/10/xubuntu-2510-missing-libadwaita-close-icon.png" width="1280" />Modern GNOME applications are missing the close window icon. Can&amp;apost see it? Neither can I.</figure><h4 id="missing-icon-for-document-scanners-scan-options">Missing Icon for Document Scanner&amp;aposs Scan Options</h4>The Scan Options menu icon in Document Scanner is <a href="https://bugs.launchpad.net/ubuntu/+source/elementary-xfce/+bug/2127071?ref=seand.xyz" rel="noreferrer">currently invisible</a>. This issue has been reported upstream to the elementary-xfce GitHub tracker.<figure class="kg-card kg-image-card kg-card-hascaption"><img alt="Xubuntu 25.10 &quot;Questing Quokka&quot;" class="kg-image" height="800" src="https://seand.xyz/content/images/2025/10/xubuntu-2510-missing-scan-options-icon.png" width="1280" />To the right of the Scan button is a menu button for the Scan Options. Invisible unless you hover it.</figure><h4 id="flatpak-packages-cannot-be-installed">Flatpak Packages Cannot Be Installed</h4>Due to a Fuse/AppArmor conflict in Ubuntu 25.10, installing Flatpak packages <a href="https://bugs.launchpad.net/ubuntu/+source/flatpak/+bug/2122161?ref=seand.xyz" rel="noreferrer">currently fails</a>. Work is underway to resolve this, and Flatpak support should return soon.<h4 id="graphical-ssh-agent-unavailable">Graphical SSH Agent Unavailable</h4>Xubuntu 25.10’s graphical SSH agent isn’t functioning as expected. Without it, SSH key passphrases must be entered each time. <a href="https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/2125549?ref=seand.xyz" rel="noreferrer">Investigation continues</a>, and a fix may land before the next release.<h4 id="double-network-icons-sometimes">Double Network Icons (Sometimes)</h4>Some users may see <a href="https://bugs.launchpad.net/ubuntu/+source/xfce4-panel/+bug/2059045?ref=seand.xyz" rel="noreferrer">duplicate network icons</a>, especially in virtual machines. One appears via the Xfce Indicator Plugin and the other via the Systray Plugin. Removing the Indicator Plugin resolves this... something we’re considering doing by default for 26.04.<figure class="kg-card kg-image-card kg-card-hascaption"><img alt="Xubuntu 25.10 &quot;Questing Quokka&quot;" class="kg-image" height="800" src="https://seand.xyz/content/images/2025/10/xubuntu-2510-double-network-icons.png" width="1280" />Some users may be confused to see two network icons that look nearly identical and function the same.</figure><h4 id="screensaver-wallpaper-discrepancy">Screensaver Wallpaper Discrepancy</h4>When first locking your screen, you <a href="https://bugs.launchpad.net/ubuntu/+source/xfce4-screensaver/+bug/2107239?ref=seand.xyz" rel="noreferrer">might notice</a> that the lock screen wallpaper defaults to Xfce’s background instead of Xubuntu’s. Changing (and reapplying) your wallpaper fixes the mismatch.<figure class="kg-card kg-image-card kg-card-hascaption"><img alt="Xubuntu 25.10 &quot;Questing Quokka&quot;" class="kg-image" height="800" src="https://seand.xyz/content/images/2025/10/xubuntu-2510-wrong-screensaver-wallpaper.png" width="1280" />If you lock your screen before changing your wallpaper, you&amp;aposll be greeted by Xfce&amp;aposs wallpaper.</figure><h2 id="looking-ahead">Looking Ahead</h2>At first glance, Xubuntu 25.10 might seem rough around the edges: more bugs than usual, fewer active contributors, and an LTS release on the horizon. But known issues are solvable issues. With six months until 26.04, we have time to address these challenges, polish the experience, and deliver a release worthy of Xubuntu’s twentieth anniversary.If you want to help shape that milestone release—whether through code, documentation, design, or outreach—please reach out. Together, we can ensure Xubuntu continues to thrive for another twenty years.<div class="kg-card kg-cta-card kg-cta-bg-grey kg-cta-minimal " data-layout="minimal">
<div class="kg-cta-sponsor-label-wrapper">
<div class="kg-cta-sponsor-label">
Join the Xubuntu Community
</div>
</div>
<div class="kg-cta-content">
<div class="kg-cta-content-inner">
<div class="kg-cta-text">
Everyone can participate in the Xubuntu community on many levels, from simply giving advice to fellow Xubuntu users to becoming a maintainer of core packages. Any contribution, even the smallest, is valued.
</div>
<a class="kg-cta-button " href="https://xubuntu.org/contribute/?ref=seand.xyz" style="background-color: #000000; color: #ffffff;">
Get Involved
</a>
</div>
</div>
</div></description>
<pubDate>Thu, 09 Oct 2025 06:58:43 +0000</pubDate>
</item>
<item>
<title>Xubuntu: Xubuntu 25.10 released!</title>
<guid isPermaLink="false">https://xubuntu.org/?p=5725</guid>
<link>https://xubuntu.org/news/xubuntu-25-10-released/</link>
<description>The Xubuntu team is happy to announce the immediate release of Xubuntu 25.10.
Xubuntu 25.10, codenamed Questing Quokka, is a regular release and will be supported for 9 months, until July 2026.
<figure class="wp-block-image size-full"><img alt="" class="wp-image-5726" height="900" src="https://xubuntu.org/wp-content/uploads/2025/10/ade5/xubuntu-2510-desktop.png" width="1440" />Xubuntu 25.10, featuring the latest updates from Xfce 4.20 and GNOME 49.</figure>
Xubuntu 25.10 features the latest Xfce 4.20 and GNOME 49 updates. Xfce 4.20 updates feature stability improvements and enhanced Wayland support, for those adventurous enough to use it. GNOME 49 apps have received further polish and are well-suited for Xubuntu. MATE 1.26 apps are still included to round out Xubuntu’s office suite.
The final release images for Xubuntu Desktop and Xubuntu Minimal are available as torrents and direct downloads from <a href="https://xubuntu.org/download/">xubuntu.org/download/</a>.
As the main server might be busy the first few days after the release, we recommend using the torrents if possible.
We want to thank everybody who contributed to this release of Xubuntu!
<h2>Highlights and Known Issues</h2>
<h3>Highlights</h3>
<ul><li>Xfce 4.20 components have received several stability improvements. Minor integration issues persist in Xubuntu 25.10 and will be addressed for 26.04, scheduled for release in April.</li><li>GNOME 49 apps are further refined with new features and usability improvements.</li></ul>
<h3>Known Issues</h3>
<ul><li>Some missing icons mean that libadwaita apps (modern GNOME style) have graphical glitches. Notably, the window close icons are blank (LP: <a href="https://bugs.launchpad.net/ubuntu/+source/elementary-xfce/+bug/2125025">#2125025</a>), and Document Scanner is missing an icon for the scanner options (LP: <a href="https://bugs.launchpad.net/ubuntu/+source/elementary-xfce/+bug/2127071">#2127071</a>).</li><li>The graphical SSH agent is unavailable due to a change in the GNOME Keyring Daemon (LP: <a href="https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/2125549">#2125549</a>).</li><li>Flatpak packages will refuse to install due to a conflict between AppArmor and libfuse (LP: <a href="https://bugs.launchpad.net/ubuntu/+source/flatpak/+bug/2122161">#2122161</a>). A fix is in progress.</li></ul>
Please refer to the <a href="https://wiki.xubuntu.org/releases/25.10/release-notes">Xubuntu Release Notes</a> for more obscure known issues, information on affecting bugs, bug fixes, and a list of new package versions.
The main <a href="https://discourse.ubuntu.com/t/questing-quokka-release-notes/59220">Ubuntu Release Notes</a> cover many other packages we carry and more generic issues.
<h2>Support</h2>
For support with the release, navigate to <a href="https://xubuntu.org/help/">Help &amp; Support</a> for a complete list of methods to get help.</description>
<pubDate>Thu, 09 Oct 2025 01:06:35 +0000</pubDate>
</item>
<item>
<title>Colin Watson: Free software activity in September 2025</title>
<guid isPermaLink="false">tag:www.chiark.greenend.org.uk,2025-10-08:/~cjwatson/blog/activity-2025-09.html</guid>
<link>https://www.chiark.greenend.org.uk/~cjwatson/blog/activity-2025-09.html</link>
<description>About 90% of my Debian contributions this month were
<a href="https://www.freexian.com/about/debian-contributions/">sponsored</a> by Freexian.
You can also support my work directly via
<a href="https://liberapay.com/cjwatson">Liberapay</a> or <a href="https://github.com/sponsors/cjwatson">GitHub
Sponsors</a>.
Some months I feel like I’m pedalling furiously just to keep everything in a
roughly working state. This was one of those months.
<h2>Python team</h2>
I upgraded these packages to new upstream versions:
<ul>
<li>aiosmtplib</li>
<li>billiard</li>
<li>dbus-fast</li>
<li>django-modeltranslation</li>
<li>django-sass-processor</li>
<li>feedparser</li>
<li>flask-security</li>
<li>jaraco.itertools</li>
<li>mariadb-connector-python</li>
<li>mistune</li>
<li>more-itertools</li>
<li>pydantic-settings</li>
<li>pyina</li>
<li>pytest-mock</li>
<li>python-asyncssh</li>
<li>python-bytecode</li>
<li>python-ciso8601</li>
<li>python-django-pgbulk</li>
<li>python-ewokscore</li>
<li>python-ewoksdask</li>
<li>python-ewoksutils</li>
<li>python-expandvars</li>
<li>python-git</li>
<li>python-gssapi</li>
<li>python-holidays</li>
<li>python-jira</li>
<li>python-jpype</li>
<li>python-mastodon</li>
<li>python-orjson (fixing a <a href="https://bugs.debian.org/1114315">build failure</a>)</li>
<li>python-pyftpdlib</li>
<li>python-pytest-asyncio (fixing a <a href="https://bugs.debian.org/1114323">build
failure</a>)</li>
<li>python-pytest-run-parallel</li>
<li>python-recurring-ical-events</li>
<li>python-redis</li>
<li>python-watchfiles (fixing a <a href="https://bugs.debian.org/1114338">build
failure</a>)</li>
<li>python-x-wr-timezone</li>
<li>python-zipp</li>
<li>pyzmq</li>
<li>readability</li>
<li>scalene (fixing test failures with pydantic 2.12.0~a1)</li>
<li>sen (<a href="https://github.com/TomasTomecek/sen/pull/190">contributed supporting fix
upstream</a>)</li>
<li>sqlfluff</li>
<li>trove-classifiers</li>
<li>ttconv</li>
<li>vdirsyncer</li>
<li>zope.component</li>
<li>zope.configuration</li>
<li>zope.deferredimport</li>
<li>zope.deprecation</li>
<li>zope.exceptions</li>
<li>zope.i18nmessageid</li>
<li>zope.interface</li>
<li>zope.proxy</li>
<li>zope.schema</li>
<li>zope.security (<a href="https://github.com/zopefoundation/zope.security/pull/121">contributed supporting fix
upstream</a>)</li>
<li>zope.testing</li>
<li>zope.testrunner</li>
</ul>
I had to spend a fair bit of time this month chasing down build/test
regressions in various packages due to some other upgrades, particularly to
pydantic, python-pytest-asyncio, and rust-pyo3:
<ul>
<li><a href="https://salsa.debian.org/python-team/packages/aiohappyeyeballs/-/commit/b637c131c4860c33140012bdc55ed4cb2ce006ec">aiohappyeyeballs</a></li>
<li>aiohttp-sse (<a href="https://bugs.debian.org/1115561">filed bug</a> and <a href="https://github.com/aio-libs/aiohttp-sse/pull/597">contributed
fix upstream</a>)</li>
<li>aioimaplib (<a href="https://github.com/iroco-co/aioimaplib/issues/124#issuecomment-3305911017">tried to fix upstream but failed to get tests working</a></li>
<li><a href="https://salsa.debian.org/python-team/packages/aiosmtplib/-/commit/6da2d47e5090d814e53319f77be4e93a47ae54b2">aiosmtplib</a>
(<a href="https://github.com/cole/aiosmtplib/pull/328">contributed upstream</a>)</li>
<li><a href="https://salsa.debian.org/python-team/packages/app-model/-/commit/32619704f8c254d1ee2df8642835ea9bf88b4d0e">app-model</a></li>
<li><a href="https://salsa.debian.org/python-team/packages/aresponses/-/commit/bfc135122501ccdceabbcb8324be1c478fbe55d1">aresponses</a>
(<a href="https://github.com/aresponses/aresponses/pull/85">contributed upstream</a>)</li>
<li>fastapi (<a href="https://bugs.debian.org/1113771">filed bug</a> and <a href="https://github.com/fastapi/fastapi/pull/14036">contributed fix
upstream</a>)</li>
<li><a href="https://salsa.debian.org/python-team/packages/ipython/-/commit/2bd12280052e5f80e9464506da4e4ebe1259c072">ipython</a></li>
<li>opendrop (<a href="https://bugs.debian.org/1115562">filed bug</a> and <a href="https://github.com/jdber1/opendrop/pull/74">contributed
fix upstream</a>)</li>
<li><a href="https://salsa.debian.org/python-team/packages/pydantic-extra-types/-/compare/debian%2F2.10.5-1...debian%2F2.10.5-2?from_project_id=98689">pydantic-extra-types</a></li>
<li><a href="https://bugs.debian.org/1114286">pytest-relaxed</a> (<a href="https://github.com/bitprophet/pytest-relaxed/pull/34">contributed
upstream</a>)</li>
<li><a href="https://bugs.debian.org/1114301">python-drf-spectacular</a></li>
<li><a href="https://salsa.debian.org/python-team/packages/python-fakeredis/-/compare/debian%2F2.29.0-4...debian%2F2.29.0-5?from_project_id=10544">python-fakeredis</a></li>
<li><a href="https://bugs.debian.org/1115563">python-jsonrpc-websocket</a> (<a href="https://github.com/emlove/jsonrpc-websocket/pull/16">contributed
upstream</a>, and
sponsored upload for Tianyu Chen)</li>
<li><a href="https://salsa.debian.org/python-team/packages/python-odmantic/-/commit/21977555a971b0b1fd8b59611f60984e74f3f3f0">python-odmantic</a></li>
<li><a href="https://bugs.debian.org/1114324">python-pytest-trio</a> (<a href="https://github.com/python-trio/pytest-trio/issues/151">upstream
issue</a>, <a href="https://github.com/python-trio/pytest-trio/pull/152">upstream
PR</a>, <a href="https://github.com/pytest-dev/pytest/issues/13734">pytest issue
about possible root
cause</a>)</li>
<li><a href="https://bugs.debian.org/1114327">python-repoze.sphinx.autointerface</a></li>
<li><a href="https://bugs.debian.org/1114332">python-sluurp</a></li>
<li>python-youtubeaio (<a href="https://bugs.debian.org/1113903">filed bug</a>)</li>
<li><a href="https://bugs.debian.org/1115575">rtsp-to-webrtc</a></li>
</ul>
After some upstream discussion I <a href="https://bugs.debian.org/1115318">requested removal of
pydantic-compat</a>, since it was more trouble
than it was worth to keep it working with the latest pydantic version.
I filed <a href="https://bugs.debian.org/1115299">dh-python: pybuild-plugin-pyproject doesn’t know about
headers</a> and added it to
<a href="https://wiki.debian.org/Python/PybuildPluginPyproject">Python/PybuildPluginPyproject</a>,
and converted some packages to <code>pybuild-plugin-pyproject</code>:
<ul>
<li>aresponses</li>
<li>python-azure, fixing an <a href="https://bugs.debian.org/1114162">autopkgtest failure in kombu</a></li>
<li>python-ciso8601</li>
</ul>
I updated dh-python to <a href="https://salsa.debian.org/python-team/tools/dh-python/-/merge_requests/62">suppress generated dependencies that would be
satisfied by python3 &gt;=
3.11</a>.
<code>pkg_resources</code> is
<a href="https://github.com/pypa/setuptools/issues/3085">deprecated</a>. In most cases
replacing it is a relatively simple matter of <a href="https://importlib-resources.readthedocs.io/en/latest/migration.html">porting to
<code>importlib.resources</code></a>,
but packages that used its old namespace package support need more
complicated work to port them to <a href="https://peps.python.org/pep-0420/">implicit namespace
packages</a>. We had quite a few bugs about
this on <code>zope.*</code> packages, but fortunately upstream did the <a href="https://github.com/zopefoundation/meta/issues/194">hard part of
this</a> recently. I went
round and cleaned up most of the remaining loose ends, with some help from
Alexandre Detiste. Some of these aren’t completely done yet as they’re
awaiting new upstream releases:
<ul>
<li>zope.component (<a href="https://bugs.debian.org/1084007">Debian bug</a>, <a href="https://github.com/zopefoundation/zope.component/pull/80">upstream
PR</a>)</li>
<li>zope.configuration (<a href="https://bugs.debian.org/1084006">Debian bug</a>,
<a href="https://github.com/zopefoundation/zope.configuration/pull/68">upstream
PR</a>)</li>
<li>zope.deferredimport (<a href="https://bugs.debian.org/1084008">Debian bug</a>,
<a href="https://github.com/zopefoundation/zope.deferredimport/pull/18">upstream
PR</a>)</li>
<li>zope.deprecation (<a href="https://bugs.debian.org/1084009">Debian bug</a>, <a href="https://github.com/zopefoundation/zope.deprecation/pull/27">upstream
PR</a>)</li>
<li>zope.exceptions (<a href="https://bugs.debian.org/1084012">Debian bug</a>, <a href="https://github.com/zopefoundation/zope.exceptions/pull/42">upstream
PR</a>)</li>
<li>zope.i18nmessageid (<a href="https://bugs.debian.org/1084014">Debian bug</a>,
<a href="https://github.com/zopefoundation/zope.i18nmessageid/pull/67">upstream
PR</a>)</li>
<li>zope.interface (<a href="https://bugs.debian.org/1084013">Debian bug</a>, <a href="https://github.com/zopefoundation/zope.interface/pull/346">upstream
PR</a>)</li>
<li>zope.location (<a href="https://bugs.debian.org/1084016">Debian bug</a>, <a href="https://github.com/zopefoundation/zope.location/pull/17">upstream
PR</a>)</li>
<li>zope.security (<a href="https://bugs.debian.org/1084018">Debian bug</a>, <a href="https://github.com/zopefoundation/zope.security/pull/122">upstream
PR</a>)</li>
<li>zope.testing (<a href="https://bugs.debian.org/1084019">Debian bug</a>, <a href="https://github.com/zopefoundation/zope.testing/pull/55">upstream
PR</a>)</li>
<li>zope.testrunner (<a href="https://bugs.debian.org/1084020">Debian bug</a>, <a href="https://github.com/zopefoundation/zope.testrunner/pull/201">upstream
PR</a>)</li>
</ul>
This work also caused a couple of build regressions, which I fixed:
<ul>
<li><a href="https://bugs.debian.org/1115803">zope.hookable</a></li>
<li><a href="https://bugs.debian.org/1115763">zope.location</a></li>
</ul>
I fixed
<a href="https://salsa.debian.org/python-team/packages/jupyter-client/-/commit/ebe94146e3bb6405c529aeae8118161334bc9ab1">jupyter-client</a>
so that its autopkgtests would work in Debusine.
I fixed <a href="https://bugs.debian.org/1116924">waitress</a> to build with the
<code>nocheck</code> profile.
I fixed several other build/test failures:
<ul>
<li><a href="https://bugs.debian.org/1114057">austin</a> (<a href="https://github.com/P403n1x87/austin/pull/330">contributed follow-up fix
upstream</a>)</li>
<li><a href="https://salsa.debian.org/python-team/packages/fsspec/-/commit/849213bc0a6abb533d8046302378246c9da5549e">fsspec</a></li>
<li><a href="https://bugs.debian.org/1114876">python-asgiref</a></li>
<li><a href="https://bugs.debian.org/1115079">python-django-channels</a></li>
<li><a href="https://bugs.debian.org/1116155">twisted</a></li>
</ul>
I fixed some other bugs:
<ul>
<li><a href="https://bugs.debian.org/1017761">python-jpype: java.lang.ClassNotFoundException: org.jpype.classloader.DynamicClassLoader</a></li>
<li><a href="https://bugs.debian.org/1035211">python-jpype: Please add autopkgtests (to add coverage for python3-numpy)</a></li>
</ul>
<h2>Code reviews</h2>
<ul>
<li>debbugs: <a href="https://salsa.debian.org/debbugs-team/debbugs/-/merge_requests/24">Fix dep8 autopkgtests, make Salsa CI fully
green</a>
(still in progress)</li>
<li>dput-ng: <a href="https://bugs.debian.org/1112107">Add trixie-backports &amp; bookworm-backports-sloppy</a></li>
<li>openssh: <a href="https://salsa.debian.org/ssh-team/openssh/-/merge_requests/34">Update sshd@.service to follow upstream</a></li>
<li>openssh: <a href="https://salsa.debian.org/ssh-team/openssh/-/merge_requests/35">authfd: fallback to default if $SSH_AUTH_SOCK is
unset</a>
(still in progress)</li>
<li>putty: <a href="https://salsa.debian.org/ssh-team/putty/-/merge_requests/7">d/rules: Use dh_assistant restore-file-on-clean</a></li>
<li>python-debian: <a href="https://salsa.debian.org/python-debian-team/python-debian/-/merge_requests/151">Update from pyupgrade to
—py37-plus</a>
(still in progress)</li>
<li>release-notes: <a href="https://salsa.debian.org/ddp-team/release-notes/-/merge_requests/322">issues: mention tzdata-legacy split</a></li>
</ul>
<h2>Other bits and pieces</h2>
I fixed several CMake 4 build failures:
<ul>
<li><a href="https://bugs.debian.org/1112984">halibut</a></li>
<li><a href="https://bugs.debian.org/1112986">hdf5-blosc</a></li>
<li><a href="https://bugs.debian.org/1112987">hdf5-filter-plugin</a></li>
<li><a href="https://bugs.debian.org/1113655">yubihsm-shell</a></li>
</ul>
I got CI for debbugs passing
(<a href="https://salsa.debian.org/debbugs-team/debbugs/-/merge_requests/22">!22</a>,
<a href="https://salsa.debian.org/debbugs-team/debbugs/-/merge_requests/23">!23</a>).
I fixed a <a href="https://bugs.debian.org/1114418">build failure with GCC 15 in
trn4</a>.
I filed a <a href="https://bugs.debian.org/1114970">release-notes bug</a> about the
tzdata reorganization in the trixie cycle.
I filed and fixed a <a href="https://bugs.debian.org/1115226">git-dpm regression with bash
5.3</a>.
I upgraded libfilter-perl to a new upstream version.
I <a href="https://code.launchpad.net/~cjwatson/ubuntu-dev-tools/+git/ubuntu-dev-tools/+merge/492543">optimized some code in
ubuntu-dev-tools</a>
that made O(1) HTTP requests when it could instead make O(n).</description>
<pubDate>Wed, 08 Oct 2025 18:16:52 +0000</pubDate>
</item>
<item>
<title>David Mohammed: Ubuntu Budgie 25.10 release notes</title>
<guid isPermaLink="false">https://ubuntubudgie.org/?p=3911</guid>
<link>https://ubuntubudgie.org/2025/10/ubuntu-budgie-25-10-release-notes/</link>
<description>Ubuntu Budgie 25.10 (Questing Quokka) is a Standard Release with 9 months of support by your distro maintainers and Canonical, from Oct 2025 to July 2026. These release notes showcase the key takeaways for 25.04 upgraders to 25.10. Please note – there is no direct upgrade path from 24.04.3 to 25.10; you must uplift to 24.10 first or perform a fresh install. In these release notes the areas…
<a href="https://ubuntubudgie.org/2025/10/ubuntu-budgie-25-10-release-notes/" rel="nofollow">Source</a></description>
<pubDate>Wed, 08 Oct 2025 17:26:51 +0000</pubDate>
</item>
<item>
<title>Julian Andres Klode: Dependency Tries</title>
<guid isPermaLink="true">https://blog.jak-linux.org/2025/09/27/dependency-tries/</guid>
<link>https://blog.jak-linux.org/2025/09/27/dependency-tries/</link>
<description>As I was shopping groceries I had a shocking realization: The active dependencies
of packages in a solver actually form a trie (a dependency <code>A|B</code> - “A or B” - of
a package <code>X</code> is considered active if we marked <code>X</code> for install).
Consider the dependencies <code>A|B|C</code>, <code>A|B</code>, <code>B|X</code>.
In most package managers these just express alternatives, that is, the “or” relationship,
but in Debian packages, it also expresses a preference relationship between its operands,
so in <code>A|B|C</code>, <code>A</code> is preferred over <code>B</code> and <code>B</code> over <code>C</code> (and <code>A</code> transitively over <code>C</code>).
This means that we can convert the three dependencies into a trie as follows:
<img alt="Dependency trie of the three dependencies" src="https://blog.jak-linux.org/post/trie1.svg" />
Solving the dependency here becomes a matter of trying to install the package
referenced by the first edge of the root, and seeing if that sticks. In this
case, that would be ‘a’. Let’s assume that ‘a’ failed to install, the next
step is to remove the empty node of <code>a</code>, and merging its children into the
root.
<img alt="Reduced dependency trie with “not A” containing b, b|c, b|x" src="https://blog.jak-linux.org/post/trie2.svg" />
For ease of visualisation, we remove “a” from the dependency nodes as well,
leading us to a trie of the dependencies “b”, “b|c”, and “b|x”.
Presenting the Debian dependency problem, or the positive part of it as a
trie allows us for a great visualization of the problem but it may not proof
to be an effective implementation choice.
In the real world we may actually store this as a priority queue that we
can delete from. Since we don’t actually want to delete from the queue
for real, our queue items are pairs of a pointer to dependency and an
activitity level, say <code>A|B@1</code>.
Whenever a variable is assigned false, we look at its reverse dependencies
and bump their activity, and reinsert them (the priority of the item being
determined by the leftmost solution still possible, it has now changed).
When we iterate the queue, we remove items with a lower activity level:
<ol>
<li>Our queue is <code>A|B@1</code>, <code>A|B|C@1</code>, <code>B|X@1</code></li>
<li>Rejecting A bump the activity for its reverse dependencies and reinset them:
Our queue is <code>A|B@1</code>, <code>A|B|C@1</code>, <code>(A|)B@2</code>, <code>(A|)B|C@2</code>, <code>B|X@1</code></li>
<li>We visit <code>A|B@1</code> but see the activity of the underlying dependency is now 2 and remove it
Our queue is <code>A|B|C@1</code>, <code>(A|)B@2</code>, <code>(A|)B|C@2</code>, <code>B|X@1</code></li>
<li>We visit <code>A|B|C@1</code> but see the activity of the underlying dependency is now 2 and remove it
Our queue is <code>(A|)B@2</code>, <code>(A|)B|C@2</code>, <code>B|X@1</code></li>
<li>We visit <code>A|B@2</code>, see the activity matches and find B is the solution.</li>
</ol></description>
<pubDate>Sat, 27 Sep 2025 14:32:19 +0000</pubDate>
</item>
<item>
<title>Aaron Rainbolt: Setting up a weird dual-boot DOS workstation</title>
<guid isPermaLink="true">https://arraybolt3.substack.com/p/setting-up-a-weird-dual-boot-dos</guid>
<link>https://arraybolt3.substack.com/p/setting-up-a-weird-dual-boot-dos</link>
<description>I’ve been wanting to create some Bible study software for DOS for a while now. Why target DOS? Because it’s a cool platform, it’s still in use in some areas of the world, and I haven’t been able to find readily available Bible software for DOS, whether open-source or not. Over the weekend, I was thinking about this project again, and decided that, for the sake of development ease and avoiding emulator quirks, I should set up a DOS installation on physical hardware and create the software on that machine.I have tons of old computers in varying states of decay or usefulness; three of them still work pretty well. I decided to pick the weakest of the three for this project since it probably had more than enough grunt for the project at hand, but wouldn’t be useful for much else. The chosen system was a Compaq Presario 6000 desktop, featuring some iteration of an AMD Athlon XP processor, 256 MB RAM, a 20 GB hard drive (which I was about to expand for reasons I’ll get into later), a floppy drive, and dual optical drives (only one of which works). This particular system is a bit strange since its USB controller and network card are both NVIDIA hardware, even though NVIDIA is typically associated with graphics cards. Beyond that though, the system was pretty typical for the kind of hardware you’d see in the early 2000s - all of the drives use IDE to communicate with the motherboard, and most of the expansion slots are PCI (except for a couple of mystery slots, one of them might be AGP, and another one seems to be intentionally blocked off and I can’t tell what it is). The back panel features PS/2 ports for a mouse and keyboard, a parallel port and a serial port, a VGA port for the monitor, and a few USB (probably USB 2) ports. There was also a 3Com network card installed in one of the slots, which I had put there when experimenting with OpenBSD on this system. The front panel had a couple more USB ports.<div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://arraybolt3.substack.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble">Thanks for reading Arraybolt's Archives! Subscribe for free to receive new posts and support my work.</div><form class="subscription-widget-subscribe"><input class="email-input" name="email" tabindex="-1" type="email" /><input class="button primary" type="submit" value="Subscribe" /><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div>One downside of using DOS for development is a lack of good source code versioning systems. Git doesn’t exist for DOS, and I don’t have the time or willingness to learn RCS or similar (maybe I should?), so I decided I would implement version control by just copying the project every so often to a backup location, probably zipping it in the process. Anticipating that this would probably require a hefty chunk of disk space, I decided to add a 40 GB Maxtor drive taken from a Pentium 4 desktop I had laying around. Getting the drive installed was a bit of a challenge; many older computers have the drives slide out backwards into the system, but this Compaq has them slide out forward out the front of the machine. This meant I had to get the front panel off of the machine, which was hard because it was held on by four extremely stiff plastic latches that had to all be disengaged at the same time. Thankfully the plastic of the front panel was able to bend enough that I could disengage each latch individually, then keep it that way while I worked on another latch.After getting the cover off, I had to fight with Compaq’s drive mounting hardware. Rather than just screwing the drives directly into the bay like a normal computer would, Compaq elected to use a system of rails and latches to keep the drives fully hooked into the machine. The screws had very thick heads, and were intended to slide along the rails and then latch in place once inserted far enough. As strange as this already was, there was also the problem that the secondary drive bay had a malformed rail, that was just barely too narrow for the mounting screws to actually slide in. There were also separate screw types for the optical drives and the hard drives. What I ended up doing was using optical drive screws on the Maxtor hard drive, which seemed to fit correctly and were able to latch in place. After getting this kludgy setup to work, I then remembered that I needed to set jumpers on the drives to configure them as “master” and “slave” properly, so I then took both drives out, reconfigured the jumpers, and slid them back in. After a bit of cable routing shenanigans (including removing a rather unfortunately located zip tie), I finally had both drives installed.To confirm that I hadn’t made a total mess of my drive configuration, I decided to take some time to power the system on and check the BIOS. I had an old PS/2 Microsoft keyboard, and a small, 4:3 aspect ratio flatscreen display with a built-in VGA cable, so I decided to use those for the project. Nothing caught fire when I plugged it in and powered it on, and after getting into the BIOS settings I found that both drives appeared to be properly recognized. I also saw “Removable Media Boot”, which made me hopeful that this machine might support USB boot. I turned off a bunch of settings related to “fast startup” to minimize the chances of having issues, then saved my changes and exited.Since I thought USB boot might work, I downloaded the FreeDOS 1.4 FullUSB and flashed it to a USB drive. Unfortunately, my hopes were soon dashed; the USB drive did not appear in the BIOS’s boot order settings. Crud.I don’t generally like burning CD-Rs if I don’t have to, since they can’t be rewritten, they probably won’t keep being manufactured for much longer, and I only had 48 of my original stack of 50 left (oh horror!), but I didn’t see another good option at this point, so I dragged out one of the other working old computers, a Panasonic Toughbook that had an old-ish install of Void Linux on it. This particular machine looks like it’s been through a warzone, but it still works well enough, and most importantly, the CD burner in it seems to work flawlessly. In the hopes of not having to waste any further CDs in the future, I decided to burn Plop Boot Manager to the disc rather than burning FreeDOS itself. The burn went smoothly enough, the Compaq was happy to boot from it, and next thing I knew I was able to boot into FreeDOS from the USB! Woohoo!……or…. not. FreeDOS itself seemed to run without issues, and partitioning and formatting the drives wasn’t a problem, but for some reason FreeDOS’s installer didn’t work when booted in this way. Despite the fact that it was installing to what it considered drive D:, it kept trying to write files to drive C:, which was the read-only volume on the USB drive. This resulted in lots of “Abort, Retry, Ignore, Fail?” error messages, and while the installer did seem to work (kinda) if I just "ignored” all the errors, I didn’t trust the finished installation was going to work. I also couldn’t just sit there and press and hold the “I” key to keep ignoring errors, since doing so slowed the copy process down (probably because it was spamming the keyboard interrupt, I would guess). So, one CD-R apparently wasted. Next!Back on the Toughbook, I used wget to download both the FreeDOS 1.4 LiveCD and BonusCD. I needed both discs, since the OS was on the LiveCD and the development tools (like the C compiler I wanted to use) was on the BonusCD. Burning the discs was pretty easy, and FreeDOS seemed much happier installing from a CD than trying to install from a USB. Soon enough I had a working FreeDOS installation, and a little bit later I had a good text editor and the Open Watcom 1.9 compiler installed.At this point I was almost ready to sit down and start coding, but decided I had better figure out how to get data off the system before I dedicated a bunch of time working on my project. I didn’t want it to just rot on the machine it was coded on. At this point I discovered two frustrating facts:<ul><li>The USB driver included with FreeDOS only works with UHCI controllers, but the controller in this system is an OHCI controller.</li><li>The network card wasn’t supported out of the box - there were packet drivers out there for it most likely, but those weren’t very useful since I couldn’t get outside data onto the machine since USB didn’t work.</li></ul>(At this point one might reasonably ask why I don’t just use the floppy disk drive. That’s because I have exactly one functional computer with a floppy disk drive, that being the Compaq I was setting up. I can use floppies as storage if I’m willing to risk catastrophic data loss, but they’re useless as a data transfer mechanism. There are also OHCI drivers for DOS available online, even open-source drivers, but of course those would have to be transferred to the system in order to use them.)At this point what a normal person probably would do is accept the fact that they’re going to have to burn some more CD-Rs, and proceed to get some USB and network drivers onto the machine. But due to being paranoid about running out of CD-Rs, that was an absolutely unacceptable solution to me. I had the OpenBSD disc I used some months ago laying around, so…Dual-booting FreeDOS and OpenBSD didn’t end up being all that hard. For one, BSD’s partitioning system actually works really well for multibooting. Even though OpenBSD generally uses a whole bunch of partitions, it doesn’t try to create them all directly on the drive. Instead, it creates one “container” partition, and then creates a bunch of OpenBSD-specific partitions within that container, separate from the drive’s usual partitioning scheme. On top of that, the installer is pretty straightforward (once you realize that you need to skip all forms of network setup if you don’t intend to plug the machine into a network), and an OpenBSD installation without an X server or games fits in 3 GB of disk space with a bit of wiggle room to spare. I don’t expect I’ll be able to update this installation without pain, but since all I need it to do is let me move files to and from a USB drive, I don’t need to update it (and won’t be connecting it to a network).The only really painful part of the installation process was partitioning - every operating system seems to have a radically different idea of how fdisk is supposed to work, and OpenBSD’s idea of fdisk is the most… um… interesting one I’ve seen to date. Rather than working in terms of unallocated space and partition creation, OpenBSD’s fdisk just acts as if all four partitions MBR allows for always exist at all times. You don’t create a partition, you just configure each of the partition slots you’re interested in working with. If you don’t want a partition to exit, you set its type code to “00” (unused). If you do want a partition to exist, you set its type code to whatever’s appropriate for your use case, define a start and end sector, and you’re done. I’m guessing this is probably a more accurate model of how MBR actually works, but it was nonetheless surprising to me. More surprising is that there don’t seem to be any safeguards to make sure you don’t do something completely ridiculous like define partitions that overlap each other, or put sector 0 as part of a partition. OpenBSD’s fdisk also does not try to guess things like how large you want the partition to be, so you have to calculate everything by hand and double-check your work to keep from making a mess. To be honest, I actually kind of like this system, it was just very unexpected.After fighting with the partitioner a bit, I made a 3 GB partition at the end of the 40 GB Maxtor drive to install OpenBSD to. The remaining 37 GB would still be dedicated to a FAT32 DOS system. (In retrospect, I wish I had split the drive 50-50 between DOS and OpenBSD so I could play with both, and in all likelihood I’ll probably go back and do that at some point in the future, but this is the setup I have now.) Once that was done, OpenBSD installed just fine……and then I realized that the BIOS in this machine doesn’t allow me to specify which hard drive I want to boot from. The boot order settings fail to list the secondary drive anywhere, and there’s no boot menu button.Thankfully there was a good workaround. Remember the Plop Boot Manager disc I burned near the beginning of this ordeal? Turns out it had no problem recognizing all of the partitions on all of the drives in this system. All I have to do is just leave the Plop CD in the bootable drive, and then I can choose whether i want to boot into FreeDOS or OpenBSD effortlessly.That pretty much describes where my setup is at so far. I have been able to successfully transfer files between my main work laptop and the FreeDOS system using this OpenBSD “shim”. I haven’t gotten USB working in FreeDOS yet, and I haven’t managed to get either of the network cards to work yet, but the system does work, and I had a lot of fun using “edit” and “fed” to write up a README.TXT for the Bible software project that inspired this whole endeavor. There’s still more to do for setting up the workstation though:<ul><li>I really would like to have working USB in FreeDOS. There’s a Panasonic driver floating around the Internet that people claim to have success with, I’ll probably end up using that.</li><li>I should replace the broken optical drive. Then I can have both Plop Boot Manager and the FreeDos 1.4 BonusCD inserted at the same time, which would make life quite a bit easier.</li><li>I’m already regretting only giving OpenBSD 3 GB of space on the secondary drive. I’d like to be able to use it to chat on IRC, which means connecting it to the Internet, which means keeping it up-to-date, so I’ll probably repartition the drive, allocate 20 GB to OpenBSD, and leave 20 GB for DOS. Even that’s probably huge, but we’ll find out. (I don’t intend to connect FreeDOS to the Internet since I’m a bit scared of the security issues of doing that.)</li><li>Embarrassingly, I’m using a Chromebook to let me look at Open Watcom’s documentation in a web browser. I should set things up so that I can read the documentation from within DOS itself.</li></ul>Other than the above points though, the system is working quite well, and I’m happy with it. Hopefully I won’t end up spending so much time setting it up that I never use it for its intended purpose! :P<div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://arraybolt3.substack.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble">Thanks for reading Arraybolt's Archives! Subscribe for free to receive new posts and support my work.</div><form class="subscription-widget-subscribe"><input class="email-input" name="email" tabindex="-1" type="email" /><input class="button primary" type="submit" value="Subscribe" /><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div></description>
<pubDate>Sun, 21 Sep 2025 18:04:21 +0000</pubDate>
<enclosure url="https://substackcdn.com/image/fetch/$s_!U9th!,w_256,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F81afb1c6-f320-42fc-97ab-f1de570fde3a_288x288.png" length="0" type="image/jpeg"/>
</item>
<item>
<title>Lubuntu Blog: Lubuntu Questing Beta Released!</title>
<guid isPermaLink="false">https://lubuntu.me/?p=4154</guid>
<link>https://lubuntu.me/lubuntu-questing-beta-released/</link>
<description>Thanks to all the hard work from our contributors, Lubuntu 25.10 Beta has been released. With the codename Questing Quokka, Lubuntu 25.10 will be the 29th release of Lubuntu, the fifteenth release of Lubuntu with LXQt as the default desktop environment. Support lifespan With 25.10 being an interim release, it will follow the standard non-LTS […]</description>
<pubDate>Thu, 18 Sep 2025 21:42:05 +0000</pubDate>
</item>
<item>
<title>Jonathan Riddell: Adios Chicos, 25 Years of KDE</title>
<guid isPermaLink="false">https://jriddell.org/?p=1606</guid>
<link>https://jriddell.org/2025/09/14/adios-chicos-25-years-of-kde/</link>
<description>It was the turn of the millenium when I got my first computer fresh at university. Windows seemed uninteresting, it was impossible to work out how it worked or write programs for it. SuSE Linux 6.2 was much more interesting to try and opened a world of understanding how computers worked and wanting to code on them. These were the days of the .com boom and I went to big expos in London where they showered you with freebies and IBM competed with SuSE and Red Hat for the biggest stall. IBM said that Linux had made it on the server and now was going to take over the desktop so I realised that working with KDE would be a good idea. And as a novice coder it was very perfect for learning Qt and how open development worked and I loved the free software ideals. Going to the pre-Akademy conference (it was called Kastle then) in Nove Hrady was a great intro to the community in person and in some ways I learnt more about software development in a week there then my years at uni.
So clearly this was a good way to make a career. I dossed around for a year until the Quaker geek collective heard tale of an African Spaceman who was funding a new Linux distro called SSDS (Shuttleworth’s Super Secret Debian Startup) so I got into Debian packaging and made a point that KDE should be involved. Before long they came knocking and I went to the first Ubuntu conference in Australia. I spent about ten amazing years brining KDE to Ubuntu or bringing Ubuntu to KDE for what was already called Kubuntu (not my name choice), a successful community project I’m really proud of. At one point Nokia wanted to use it alongside Plasma Active to sell on a tablet thing along with phones, this could well have taken over the world but y’know, iPhone happened and Kubuntu never found a commercial use after that although it still gets used in big places like Google or the City of Munich or Weta digital (watch those Hobbit DVD extras). I loved being invited out to Nigeria or India to give talks and spread the world of open software. Looking back there’s probably a million business cases that would have been possible but I’m not the best at being a future visionary. Eventually Canonical decided to stop funding it which is fair enough.
But then Blue Systems came along, another nice guy with deep pockets wanting to help and we carried on. When Canonical decided to kill off lots of community projects we came up with the idea of moving directly into KDE to make KDE neon. It has always been crazy how open source communities like KDE are reliant on separate companies to take their software out to the world so we wanted to change that, and I like to think we succeeded. Using CI systems we could create a much more manageable setup. Still the system was never as resiliant as it should have been and several times KDE neon ended up shipping a duff update which will have been very painful for users. We had three people working full time on it at the start but before long it was just me and a volunteer and the quality suffered as a result.
Last winter I drove to the Blue Systems schoße for a routine conference and was organising people to give talks when the guy who pays us started off by saying he was dying and the company would be shutting down. Which was very sad but it makes sense to end it on a high. After years of having no business modal and not knowing what the aims of the company were, which caused several people to genuinely go mad, we finally had a business model of sorts with Valve paying us to make Plasma up to the standards needed to ship it as Desktop Scope on the Valve Steam Deck games console. Nate had been given advanced notice of the company shutting down and had already started another company, Tech Paladin, to take on the business. Shouldn’t this be run as a cooperative we wondered? No that was too complex he said. The next day I ended up at a funeral for some German accountants and when I came back there had been some more discussion and we watched a video about Igalia who make the other operating system for Valve. They are a cooperative socialist paradise and Nate said he’d look into doing that instead of the setup where he had full control and all the profit. It was clear there was to be no other discussion on the matter of our future.
A few weeks later we had an online meeting where I proposed a useful agenda but was ignored, instead Nate gave his updated plan for a business which was to give Dave a slice of the profit and otherwise he’d keep all the profit and all the control. So I gave my proposal I’d been working on for a company with equal ownership, equal profit, a management structure and workers rights. A couple weeks later we had anther video call but Nate called me first and told me I’d be excluded from it. No explanation was given beyond I had “made some comments and would not be happy”. If someone is telling you what your emotions that is when controlling behaviour starts to become abusive. And thus ended my 25 years with KDE.
And what of my colleagues? Surely they wouldn’t want a setup where they have no control over their professional life and all their profit goes to one person? Well dunno, they’ve stopped speaking to me. Nothing. Silence. Nil. Not so much as a “cheereo”, nor “sorry we chose the option were you got excluded” and certainly no explanation. From people who I have worked with for some twenty years in some cases that hurts. I don’t know why they stopped talking to me, I can only speculate and I don’t want to do that.
We never had workers rights at Blue Systems, we were all on self employment contracts. This will continue at Tech Paladin. It is illegal but unenforceable when done on an international setup. But employment rights are not a luxury you can chose to do without if you enjoy your job and want some more flexibility in your work day. They are fundamental and life altering rights that change people’s lives as I discovered when my adopted children were taken away from me. Nobody should be doing business with or taking money from Tech Paladin else be party to illegal workers rights abuses.
Then I started to get sad, being cut off from my life for the last 25 years was too much for me. All things come to an end and I’ve seen plenty people had to leave KDE because the money ran out or maybe they had a disagreement with someone in the project, but never a profiteering control struggle like this. I struggled to get out of bed on some days. I’ve given my life to KDE, I’ve seen it gone from a sure fire project to take over the world to being one open desktop project in a world of many to seeing the revival in recent years where we can honestly say we make some of the best software out there. I like to think I’ve been part of keeping it alive, progressing, relevant and at the forefront of commercial, government and community usage. It’s been an amazing ride full of opportunities and adventures the likes of which I’m sure my peers from my university course have never had.
But in the end I lost my friends, my colleagues, my job, my career and my family. What’s a spod who just tried to do the right thing for society to do? Dunno. For now, if you want me, you can find me surfing the endless wave whenever the sun sets over my digital nomad coliving paddleshack at the end of the world.
<figure class="wp-block-image size-large"><a href="https://www.youtube.com/watch?v=oLEwUpT5DUc"><img alt="" class="wp-image-1610" height="859" src="https://jriddell.org/wp-content/uploads/2025/09/image-1024x859.png" width="1024" /></a><a href="https://www.youtube.com/watch?v=oLEwUpT5DUc">Sunset surfs at the digital nomad coliving paddleshack at the end of the world</a></figure></description>
<pubDate>Sun, 14 Sep 2025 20:56:35 +0000</pubDate>
</item>
<item>
<title>Xubuntu: Guide Terbaru Slot Online, Versi Demo Tanpa Deposit, serta Platform Slot Online Gacor Versi Update</title>
<guid isPermaLink="false">https://xubuntu.org/?p=5699</guid>
<link>https://xubuntu.org/news/guide-terbaru-slot-online-versi-demo-tanpa-deposit-serta-platform-slot-online-gacor-versi-update/</link>
<description><h1>Panduan Asik Slot Online 2025</h1>
Saat ini, <a href="https://emirategate.com/">demo slot pragmatic</a> semakin booming di para pecinta hiburan. Ada banyak alasan yang bikin game slot jadi favorit, mulai dari praktis dimainkan, koleksi slot bejibun, hingga hadiah besar yang bikin penasaran. Gak heran kalau slot gacor selalu jadi buruan utama bagi pemain baru maupun pemain pro.
<h2>Mengenal Game Slot</h2>
Permainan slot online adalah bentuk digital dari mesin slot klasik yang dulunya cuma ada di rumah judi. Lewat internet, setiap orang bisa menikmati slot online hanya dengan laptop mereka. Inilah alasan game slot menjadi tren, karena gampang dimengerti, fleksibel, serta bikin nagih.
Daya tarik slot online juga ada di visual kece, soundtrack epik, dan koleksi tema unik. Dari retro vibes sampai slot modern, semua ada. Bahkan banyak developer game bikin slot bertema anime. Jadi, user bisa tentuin game favorit dengan bebas.
<h2>Manfaat Slot Demo</h2>
Mode gratis berguna banget buat pemula yang baru kenal slot. Dengan mode ini, pemain bisa mengetes mekanisme slot tanpa resiko kehilangan saldo. Mereka juga bisa belajar fitur scatter. Bahkan player berpengalaman sering menggunakan demo slot untuk uji RTP sebelum main sungguhan.
Kesimpulannya, slot demo adalah alat belajar yang bikin nyaman, bukan hanya untuk player baru tapi juga user senior. Dengan begitu, saat masuk ke slot online, mereka lebih paham.
<h2>Fenomena Slot Gacor</h2>
Di kalangan penggemar slot, istilah slot hoki jadi bahan obrolan. Banyak yang yakin kalau ada periode spesial di mana slot kasih big win. Walaupun hasilnya RNG, kemenangan besar bikin pemain makin percaya ada slot gacor. Itulah kenapa akses slot gacor selalu heboh pemain.
<h2>Tips Cari Situs Slot Aman</h2>
Platform permainan slot ada banyak banget sekarang, tapi gak semuanya aman. Makanya pemain wajib cermat sebelum main. Beberapa hal penting yang patut diperhatikan antara lain:
<ul>
<li>Proteksi data biar informasi pribadi tetap terjaga.</li>
<li>Support 24 jam yang cepat tanggap buat bantu masalah pemain.</li>
<li>Review positif supaya user lebih percaya diri saat main.</li>
<li>Transaksi lancar agar gak ribet untuk semua pemain.</li>
</ul>
<h2>Tren Toto Slot</h2>
Game toto belakangan makin naik daun. Fitur inovatif dari jenis ini ada di bonus spesial yang seru. Berbeda dengan slot klasik, toto slot sering ngasih free spin, bikin user merasa semakin enjoy tiap kali nyoba.
<h3>Panduan Bermain Slot Santai</h3>
Supaya main makin menyenangkan, ada beberapa trik yang bisa diterapkan:
<ul>
<li>Mulai dari slot demo biar ngerti cara main dulu.</li>
<li>Kontrol budget dengan hati-hati, jangan terlalu napsu.</li>
<li>Jangan lupa, permainan slot itu bergantung hoki, jadi fokus ke hiburan daripada ngejar profit.</li>
</ul>
<h2>Penutup</h2>
Game slot digital makin seru dengan teknologi baru. Dari demo slot untuk latihan, slot mudah jackpot yang banyak dicari, sampai toto slot yang lagi trend, semua tersedia buat pengguna. Yang penting, mainlah santai, pilih situs aman, dan selalu sadari kalau keseruan lebih utama daripada cari profit.</description>
<pubDate>Wed, 10 Sep 2025 17:39:35 +0000</pubDate>
</item>
<item>
<title>Andrea Corbellini: Testing crash recovery features in a CI environment</title>
<guid isPermaLink="false">tag:andrea.corbellini.name,2025-09-09:/2025/09/09/testing-crash-recovery-features-in-ci/</guid>
<link>https://andrea.corbellini.name/2025/09/09/testing-crash-recovery-features-in-ci/</link>
<description>About two years ago I wrote a Rust crate to fulfill this promise:
<blockquote>
If a crash occurs while updating a file, the file either contains the old
contents, or the new contents, nothing in between.
</blockquote>
This crate essentially solves the following problem: when you update a file,
generally you open it, truncate it, write to it block-by-block, and eventually
close it. The problem with this process is that if a crash occurs at any point
during this process (the program segfaults, the kernel panics, the machine
loses power, …), your file will be left in an intermediate state where the
old contents are completely lost, and the new contents are only partially
written (if at all). My crate solves this problem by making file updates atomic.
This crate is publicly available as <a href="https://crates.io/crates/atomic-write-file">atomic-write-file</a> and you can read its
description for more details (sorry, I’m very bad at naming things).
The way the crate works is simple:
<ol>
<li>Instead of opening the target file directly, the crate opens a temporary
file.</li>
<li>You write to the temporary file.</li>
<li>Once all changes are in, the temporary file contents are synced to the
storage, and it is atomically renamed so that it replaces the target file.</li>
</ol>
This is not by any chance a new technique that I invented, and it’s a very
common strategy to solve the problem. This technique guarantees that if a crash
occurs at or before step 3, then the file will have the old contents,
unchanged. If a crash occurs after step 3, then the file will have the new
contents.
There’s a small caveat with this technique: if a crash occurs between steps 1
and 3, then the crate will leave behind a temporary file that occupies some
space on the storage device with no purpose.
This is where Linux anonymous temporary files come into play: this
Linux-specific feature allows you to create temporary files that are written on
the filesystem, but are not given a path in the filesystem. If a crash occurs
between step 1 and 3, the temporary file will simply be forgotten into
oblivion.
<h1 id="meet-the-opponent-btrfs">Meet the opponent: btrfs</h1>
Using Linux anonymous temporary files seemed very appealing for
atomic-write-file to avoid leaving leftovers behind, although I knew that
they’re not the perfect solution: there’s limited support (they’re supported
only on Linux, and only on some filesystems), they require the use of Linux
features that may not be available all the time (the <code>/proc</code> filesystem), and
they also have the problem that, sooner or later, they will need to be given a
name if we want to be able to replace the target file, and this leaves a small
time window during which we could leave some cruft behind.
But none of these are huge problems, and in fact atomic-write-file is able to
do a best effort attempt at using anonymous temporary files, and reverting to
regular files if that doesn’t work.
One day I was notified about <a href="https://github.com/andreacorbellini/rust-atomic-write-file/issues/6">an issue on using my crate on the btrfs file
system</a>: after a crash, my crate could break its promise and leave the
file contents empty. I did some investigation on the issue that <a href="https://github.com/andreacorbellini/rust-atomic-write-file/issues/6#issuecomment-2048836275">you can
read about if you’re interested</a>, and then fixed it.
This problem was specific to btrfs, and I argue that it’s actually caused by a
btrfs bug, rather than a bug in the crate itself, but nonetheless this issue
had revealed a critical flaw of my crate: I did not have any tests to check
if my crate was fulfilling its promise or not!
Therefore I decided to create a small test suite for Linux to simulate crashes
and inspect the contents of files after those crashes occurred on a variety of
filesystems, which is what this blog post is about. This test suite now runs on
my laptop and <a href="https://github.com/andreacorbellini/rust-atomic-write-file/actions/workflows/crash-tests.yml">on GitHub Actions</a>, and potentially any
other CI environment.
<h1 id="testing-strategy">Testing strategy</h1>
Here’s the idea I came up with: I can create a virtual machine, with a virtual
storage device attached to it, and a filesystem initialized with a file. The
virtual machine updates the file using atomic-write-file, and then triggers a
kernel panic. After that, the file is inspected for consistency.
So here is how it works in practice: there are 3 main pieces:
1. A test binary that is responsible for updating the test file using
atomic-write-file.
1. An <code>init.sh</code> script that runs inside the virtual machine.
1. The <code>run-tests.sh</code> script that puts everything together and starts up the
virtual machine.
<h2 id="the-test-binary">The test binary</h2>
The test binary that is a <a href="https://github.com/andreacorbellini/rust-atomic-write-file/blob/master/crash-tests/linux/src/main.rs">short Rust program</a> that I can paste here:
<div class="highlight"><pre><code>use atomic_write_file::AtomicWriteFile;
use std::io::Write;
fn main() {
let mut file = AtomicWriteFile::open("/test/file").expect("open failed");
file.write_all(b"hello").expect("write failed");
 file.commit().expect("commit failed");
}
</code></pre></div>
Nothing special to see here: this is the minimal code required to use atomic-write-file.
<h2 id="the-initsh-script">The init.sh script</h2>
<a href="https://github.com/andreacorbellini/rust-atomic-write-file/blob/master/crash-tests/linux/init.sh">The <code>init.sh</code> script</a> is more interesting: this script in fact is meant to run
twice. The first time it runs, <code>init.sh</code> will run the test binary above and
trigger the kernel panic. The second time, it will read the test file contents
and report them back <code>run-tests.sh</code> script for inspection.
Let’s take a closer look at what it does: first, it mounts the <code>/proc</code> and
<code>/sys</code> virtual filesystems. These are needed for some basic system functions,
and also to enable the Linux anonymous temporary file feature.
<div class="highlight"><pre><code>mount -t proc none /proc
mount -t sysfs none /sys
</code></pre></div>
Then it mounts the filesystem containing the test file. Before it can do that,
however, it needs to load the correct kernel module for the filesystem. Nothing
too fancy here: the filesystem type is simply specified on the kernel command
line (read through <code>/proc/cmdline</code>):
<div class="highlight"><pre><code>fstype=$(grep -Eo 'test.fs=\w+' /proc/cmdline | cut -d= -f2)
modprobe "$fstype" || true
mount -t "$fstype" /dev/sdb /test
</code></pre></div>
Then, if this script is run for the first time, it will run the test executable and quit:
<div class="highlight"><pre><code>echo 'Running test binary'
atomic-write-file-test
</code></pre></div>
<code>init.sh</code> (as the name suggests) is run as the init script of the virtual
machine. In Linux, if the init script quits without invoking the proper
shutdown sequence, the kernel will panic. So we don’t actually need to do
anything special to trigger a panic. I could have inserted a <code>echo c &gt;
/proc/sysrq-trigger</code> line to make it more explicit, but then I figured that
having that line wouldn’t be nice for people who want to test the script on
their system.
You might ask: how does <code>init.sh</code> know if it’s the first time it gets called or
the second? Again, nothing fancy here: <code>run-tests.sh</code> gives that hint using a
kernel command line argument:
<div class="highlight"><pre><code>if grep -q test.verify /proc/cmdline; then
 # ...
fi
</code></pre></div>
If <code>test.verify</code> is specified on <code>/proc/cmdline</code>, then it means this is the
second time this script is run. In that case, the file contents are just
printed on the console:
<div class="highlight"><pre><code>if grep -q test.verify /proc/cmdline; then
 echo 'Verifying test file contents'
 echo '-----'
 xxd /test/file
 echo '-----'
 poweroff -f
fi
</code></pre></div>
This uses <code>xxd</code> so in case there are garbled characters on screen, we can
comfortably analyze the output and figure out what happened. At the end, the
system is more gracefully shut down using <code>poweroff</code> to avoid another kernel
panic (this is not really necessary).
<h1 id="the-run-testssh-script">The run-tests.sh script</h1>
And then there’s <a href="https://github.com/andreacorbellini/rust-atomic-write-file/blob/master/crash-tests/linux/run-test.sh">the <code>run-tests.sh</code> script that crates the virtual storage,
launches the virtual machine, and inspects the file contents</a>.
This is where most the complexity is, so let’s go step-by-step (the code below
has been simplified from the original for readability):
The first thing it does is compiling the test binary above. The virtual machine
runs in a very barebone environment, so I used static linking to avoid having
to copy additional libraries like <code>libc</code>:
<div class="highlight"><pre><code>target=$(uname -m)-unknown-linux-gnu
RUSTFLAGS='-C target-feature=+crt-static' cargo build --release --features "$cargo_features" --target "$target"
</code></pre></div>
Then <code>run-tests.sh</code> creates a minimal <a href="https://en.wikipedia.org/wiki/Initial_ramdisk">initramfs</a> for the virtual machine. The
initramfs is a filesystem that gets mounted by Linux early at boot. It’s
generally used by Linux distributions to load the main operating system, but in
my case the initramfs contains everything needed for the test. In particular,
it contains:
<ul>
<li>The test binary.</li>
<li>The <code>init.sh</code> script.</li>
<li><a href="https://en.wikipedia.org/wiki/BusyBox">BusyBox</a>, to get the needed utilities like <code>xxd</code> and <code>poweroff</code>.</li>
<li>The kernel modules to mount filesystems and their dependencies.</li>
</ul>
The first 3 items are easy to set up:
<div class="highlight"><pre><code>cp "init.sh" -T "$initramfs_build_dir/sbin/init"
cp "atomic-write-file-test" -t "$initramfs_build_dir/bin"
cp "$(which busybox)" -t "$initramfs_build_dir/bin"
"$busybox" --install -s "$initramfs_build_dir/bin"
</code></pre></div>
The kernel modules are a bit more complicated. First of all: where can we get
them from? Ideally, I would have liked to download them from some minimal Linux
distribution, but this turned out to be more complicated than expected. In the
end, I decided to just steal them from the host operating system:
<div class="highlight"><pre><code>modules=/usr/lib/modules/$(uname -r)
cp -a "$modules" -t "$initramfs_build_dir/lib/modules"
while read -r mod_path; do
if [[ "$mod_path" = *.ko.gz ]]; then
gunzip "$mod_path" -o "$mod_path.uncompressed"
elif [[ "$mod_path" = *.ko.xz ]]; then
unxz "$mod_path" -o "$mod_path.uncompressed"
elif [[ "$mod_path" = *.ko.zst ]]; then
unzstd "$mod_path" -o "$mod_path.uncompressed"
 else
 continue
 fi
 mv "$mod_path.uncompressed" "$mod_path"
done &lt; &lt;(modprobe --dirname "$initramfs_build_dir" --show-depends "$filesystem_type" | grep ^insmod | cut -d' ' -f2)
</code></pre></div>
What this does is copying all the module files from the host, getting all the
dependencies for the filesystem module using <code>modprobe</code>, and then uncompressing
those modules if they’re compressed (I found this much easier than adding
compression support in the virtual machine). An alternative approach would be
to simply decompress all the modules, but that’s much slower.
Once everything has been copied over and uncompressed, the initramfs is
created:
<div class="highlight"><pre><code>initramfs=rootfs.img
mksquashfs "$initramfs_build_dir" "$initramfs"
</code></pre></div>
Now it’s time to create the virtual storage device with the filesystem, which
is a trivial task:
<div class="highlight"><pre><code>testfs=testfs.img
dd if=/dev/zero of="$testfs" bs=1M count=300
"mkfs.$filesystem_type" "$testfs"
</code></pre></div>
Finally, we can start our VM using <a href="https://en.wikipedia.org/wiki/QEMU">QEMU</a>:
<div class="highlight"><pre><code>qemu=qemu-system-$(uname -m)
kernel=/boot/vmlinuz-$(uname -r)
"$qemu" \
 -kernel "$kernel" \
 -append "root=/dev/sda ro panic=-1 console=ttyS0 quiet test.fs=$filesystem_type" \
 -drive "index=0,media=disk,format=raw,file=$initramfs" \
 -drive "index=1,media=disk,format=raw,file=$testfs" \
 -no-reboot \
 -nographic
</code></pre></div>
Again we’re stealing the kernel from the host operating system, which is also
where the kernel modules come from. The <code>drive</code> with <code>index=0</code> is the initramfs
and will be visible as <code>/dev/sda</code> in the guest; the other drive with <code>index=1</code>
is our test storage and will be visible as <code>/dev/sdb</code>.
<code>root=/dev/sda</code> tells the kernel to boot from our initramfs image. <code>panic=-1</code>
tells the kernel not to reboot in case of a panic (<code>panic=N</code> specifies the
number of seconds to wait before rebooting in case of kernel panic; specifying
a negative value blocks that behavior). <code>console=ttyS0</code> allows us to capture
the output printed by the init script. <code>test.fs=...</code> is the option that
<code>init.sh</code> is going to look for to understand what filesystem type to use.
Once that runs, the virtual machine is expected to do its job and crash with a
kernel panic. We then need to restart it to verify the file contents. The QEMU
command is exactly the same except for the additional <code>test.verify</code> option:
<div class="highlight"><pre><code>output=output.txt
"$qemu" \
 -kernel "$kernel" \
 -append "root=/dev/sda ro panic=-1 console=ttyS0 quiet test.fs=$filesystem_type test.verify" \
 -drive "index=0,media=disk,format=raw,file=$initramfs" \
 -drive "index=1,media=disk,format=raw,file=$testfs" \
 -no-reboot \
 -nographic \
 | tee "$output"
</code></pre></div>
The output from this command is captured in a file that can be analyzed. If you
remember how <code>init.sh</code> is written, you might have noticed that it writes the
test file contents between two markers:
<div class="highlight"><pre><code>echo '-----'
xxd /test/file
echo '-----'
</code></pre></div>
So what we have to do to verify the contents of the file is simply look for
those two <code>-----</code> markers, get the content in between, and parse it through
<code>xxd -r</code>:
<div class="highlight"><pre><code>if [[ $(sed -n '/-----/, /-----/p' "$output" | xxd -r) = hello ]]; then
 echo "Success"
else
 echo "Failure"
 exit 1
fi
</code></pre></div>
And that’s it!
<h1 id="running-in-github-actions">Running in GitHub Actions</h1>
The next step for me was to set up some automation to make sure that my test
script was run whenever I made any change to the crate. Because my project was
already hosted on GitHub, I decided to go with GitHub Actions. I was a bit
worried that I would have had to struggle to make it work because my script
works by stealing the kernel from the host, and I thought that the GitHub
runners could have some protections in place to prevent me from reading the
kernel. To my surprise, there were no such restrictions. In fact, I did not
have to modify a single line of code to make my tests work in GitHub Actions:
check out the <a href="https://github.com/andreacorbellini/rust-atomic-write-file/blob/master/.github/workflows/crash-tests.yml">workflow file</a> if you’re curious.
<h1 id="result">Result</h1>
In the end, the test suite was able to reproduce the issue with btrfs and
anonymous temporary files, as well as show that the fix was working as
intended. This is what it looks like (output in the screenshot was trimmed down
a bit):
<figure>
<img alt="Output showing a failure from the test suite" src="https://andrea.corbellini.name/images/crash-tests-failure.png" />
Output from the <code>run-test.sh</code> script before applying the fix, showing a failure.
</figure>
<figure>
<img alt="Output showing a success from the test suite" src="https://andrea.corbellini.name/images/crash-tests-success.png" />
Output from the <code>run-test.sh</code> script after applying the fix, showing a success.
</figure>
<h1 id="future">Future</h1>
I’m pretty satisfied with the general approach of running in a virtual machine
and simulating a crash, but the implementation has a huge limitation: because
it steals the kernel from the host, it cannot simulate crashes on other
kernels, operating systems, or platforms.
I think in the future I’m going to take a look at <a href="https://github.com/cross-rs/cross">cross-rs</a>, a cross-platform
tool for Rust crates. Cross-rs works kinda in a similar way as my test suite,
in that it uses QEMU emulation to run tests. Maybe I can reuse their QEMU
images and tweak them to run my crash tests. If that is feasible, then I will
be able to extend my test suite to all major platforms and operating systems.</description>
<pubDate>Tue, 09 Sep 2025 00:05:00 +0000</pubDate>
</item>
<item>
<title>Colin Watson: Free software activity in August 2025</title>
<guid isPermaLink="false">tag:www.chiark.greenend.org.uk,2025-09-03:/~cjwatson/blog/activity-2025-08.html</guid>
<link>https://www.chiark.greenend.org.uk/~cjwatson/blog/activity-2025-08.html</link>
<description>About 95% of my Debian contributions this month were
<a href="https://www.freexian.com/about/debian-contributions/">sponsored</a> by Freexian.
You can also support my work directly via
<a href="https://liberapay.com/cjwatson">Liberapay</a> or <a href="https://github.com/sponsors/cjwatson">GitHub
Sponsors</a>.
<h2>Python team</h2>
forky is
<a href="https://lists.debian.org/debian-devel-announce/2025/08/msg00002.html">open</a>!
As a result I’m starting to think about the <a href="https://peps.python.org/pep-0745/">upcoming Python
3.14</a>. At some point we’ll doubtless do
a full test rebuild, but in advance of that I concluded that one of the most
useful things I could do would be to work on our <a href="https://udd.debian.org/dmd/?email1=team%2Bpython%40tracker.debian.org">very long list of packages
with new upstream
versions</a>.
Of course there’s no real chance of this ever becoming empty since upstream
maintainers aren’t going to stop work for that long, but there are a lot of
packages there where we’re quite a long way out of date, and many of those
include fixes that we’ll need for 3.14, either directly or by fixing
interactions with new versions of other packages that in turn will need to
be fixed. We can backport changes when we need to, but more often than not
the most efficient way to do things is just to keep up to date.
So, I upgraded these packages to new upstream versions (deep breath):
<ul>
<li>aioftp</li>
<li>aiosignal (building on <a href="https://salsa.debian.org/python-team/packages/aiosignal/-/merge_requests/1">work by
IanLucca</a>)</li>
<li>audioop-lts</li>
<li>celery</li>
<li>djangorestframework</li>
<li>djoser</li>
<li>fpylll</li>
<li>frozenlist</li>
<li>git-repo-updater</li>
<li>ipykernel</li>
<li>klepto</li>
<li>kombu</li>
<li>multipart</li>
<li>netmiko (sponsoring <a href="https://salsa.debian.org/python-team/packages/netmiko/-/merge_requests/1">work by Eduardo
Silva</a>;
<a href="https://github.com/ktbyers/netmiko/pull/3722">contributed supporting fix
upstream</a>)</li>
<li>pathos</li>
<li>ppft</li>
<li>pydantic</li>
<li>pydantic-core</li>
<li>pydantic-settings</li>
<li>pylsqpack</li>
<li>pymssql</li>
<li>pytest-mock</li>
<li>pytest-pretty</li>
<li>pytest-repeat</li>
<li>pytest-rerunfailures</li>
<li>python-a2wsgi</li>
<li>python-apptools (sponsoring <a href="https://salsa.debian.org/python-team/packages/python-apptools/-/merge_requests/6">work by Kathlyn Lara
Murussi</a>)</li>
<li>python-asgiref</li>
<li>python-asyncssh</li>
<li>python-bitarray</li>
<li>python-bitstring</li>
<li>python-bytecode</li>
<li>python-channels-redis</li>
<li>python-charset-normalizer</li>
<li>python-daphne</li>
<li>python-django-analytical</li>
<li>python-django-guid</li>
<li>python-django-health-check</li>
<li>python-django-pgbulk</li>
<li>python-django-pgtrigger</li>
<li>python-django-postgres-extra</li>
<li>python-django-storages</li>
<li>python-holidays</li>
<li>python-httpx-sse</li>
<li>python-icalendar</li>
<li>python-lazy-model</li>
<li>python-line-profiler</li>
<li>python-lz4</li>
<li>python-marshmallow-dataclass</li>
<li>python-mastodon</li>
<li>python-model-bakery</li>
<li>python-oauthlib</li>
<li>python-parse-type</li>
<li>python-pathvalidate</li>
<li>python-pgspecial</li>
<li>python-processview</li>
<li>python-pytest-subtests</li>
<li>python-roman</li>
<li>python-semantic-release</li>
<li>python-testfixtures</li>
<li>python-time-machine</li>
<li>python-tokenize-rt</li>
<li>python-typeguard</li>
<li>python-typing-extensions</li>
<li>python-urllib3</li>
<li>pyupgrade</li>
<li>requests (fixing <a href="http://bugs.debian.org/1107368">CVE-2024-47081</a>)</li>
<li>responses</li>
<li>zope.deferredimport</li>
<li>zope.schema</li>
<li>zope.testrunner</li>
</ul>
That’s only about 10% of the backlog, but of course others are working on
this too. If we can keep this up for a while then it should help.
I packaged <a href="https://bugs.debian.org/1111640">pytest-run-parallel</a>,
<a href="https://bugs.debian.org/1110995">pytest-unmagic</a> (still in <code>NEW</code>), and
<a href="https://bugs.debian.org/1111569">python-forbiddenfruit</a> (still in <code>NEW</code>),
all needed as new dependencies of various other packages.
setuptools upstream will be <a href="https://setuptools.pypa.io/en/stable/history.html#v80-1-0">removing the <code>setup.py install</code>
command</a> on 31
October. While this may not trickle down immediately into Debian, it does
mean that in the near future nearly all Python packages will have to use
<code>pybuild-plugin-pyproject</code> (note that this does not mean that they
necessarily have to use <code>pyproject.toml</code>; this is just a question of how the
packaging runs the build system). We talked about this a bit at DebConf,
and I said that I’d noticed a number of packages where this isn’t
straightforward and promised to write up some notes. I wrote the
<a href="https://wiki.debian.org/Python/PybuildPluginPyproject">Python/PybuildPluginPyproject</a>
wiki page for this; I expect to add more bits and pieces to it as I find them.
On that note, I converted several packages to <code>pybuild-plugin-pyproject</code>:
<ul>
<li>billiard</li>
<li>lazr.config</li>
<li>python-timeline</li>
<li>zope.sqlalchemy</li>
<li>zope.testing</li>
</ul>
I fixed several build/test failures:
<ul>
<li><a href="https://bugs.debian.org/1111057">aiosmtplib</a></li>
<li><a href="https://bugs.debian.org/1111058">blinker</a></li>
<li><a href="https://bugs.debian.org/1111059">ipykernel</a></li>
<li><a href="https://bugs.debian.org/1111060">ipyparallel</a></li>
<li><a href="https://salsa.debian.org/python-team/packages/quart/-/commit/481c11c4fc33a18b17f8b223dff584342adc84af">quart</a></li>
</ul>
I fixed some other bugs:
<ul>
<li><a href="https://bugs.debian.org/1110821">austin: binutils now has a libsframe-dev package, please add an explicit
build dependency</a></li>
<li><a href="https://salsa.debian.org/python-team/packages/python-django-pgbulk/-/commit/96a17113f634d3c401c21a113579273ec49ccc2b">python-django-pgbulk: Missing dependency on
python3-typing-extensions</a>
(<a href="https://github.com/AmbitionEng/django-pgbulk/pull/54">contributed
upstream</a>)</li>
<li><a href="https://bugs.debian.org/1110139">python-maturin: Upcoming rust-which update</a></li>
</ul>
I reviewed <a href="https://salsa.debian.org/python-team/packages/fail2ban/-/merge_requests/18">Debian defaults: nftables as banaction and systemd as
backend</a>,
but it looked as though nothing actually needed to be changed so we closed
this with no action.
<h2>Rust team</h2>
Upgrading Pydantic was complicated, and required a rust-pyo3 transition
(which Jelmer Vernooĳ started and Peter Michael Green has mostly been
driving, thankfully), packaging rust-malloc-size-of (including an <a href="https://github.com/servo/malloc_size_of/pull/12">upstream
portability fix</a>), and
upgrading several packages to new upstream versions:
<ul>
<li>rust-serde</li>
<li>rust-serde-derive</li>
<li>rust-serde-json</li>
<li>rust-smallvec</li>
<li>rust-speedate</li>
<li>rust-time</li>
<li>rust-time-core</li>
<li>rust-time-macros</li>
</ul>
<h2>bugs.debian.org</h2>
I fixed <a href="https://bugs.debian.org/1078575">bugs.debian.org: misspelled checkbox id
“uselessmesages”</a>, as well as a <a href="https://salsa.debian.org/debbugs-team/debbugs/-/commit/fff0db4e57a2781f5c82827e42f395a3325270f3">bug that
caused incoming emails with certain header contents to go
missing</a>.
<h2>OpenSSH</h2>
I fixed <a href="https://bugs.debian.org/1080350">openssh-server: refuses further connections after having handled
PerSourceMaxStartups connections</a> with a
cherry-pick from upstream.
<h2>Other bits and pieces</h2>
I upgraded libfido2 to a new upstream version.
I fixed <a href="https://bugs.debian.org/1103589">mimalloc: FTBFS on armhf: cc1: error: ‘-mfloat-abi=hard’: selected
architecture lacks an FPU</a>, which was
blocking changes to pendulum in the Python team. I also spent some time
helping to investigate <a href="https://bugs.debian.org/1106879">libmimalloc3: Illegal instruction Running mtxrun
—generate</a>, though that bug is still open.
I fixed <a href="https://salsa.debian.org/debian/gssproxy/-/compare/debian%2F0.9.2-3...debian%2F0.9.2-4?from_project_id=45135">various autopkgtest bugs in
gssproxy</a>,
prompted by
<a href="https://salsa.debian.org/freexian-team/debusine/-/issues/1007">#1007</a> in Debusine.
Since my old team is <a href="https://blog.launchpad.net/general/phasing-out-bazaar-code-hosting">decommissioning Bazaar/Breezy code hosting in
Launchpad</a>
(the end of an era, which I have distinctly mixed feelings about), I
converted <a href="https://git.launchpad.net/storm">Storm</a> to git.</description>
<pubDate>Wed, 03 Sep 2025 10:56:59 +0000</pubDate>
</item>
<item>
<title>Dougie Richardson: CLI Corner: rsync</title>
<guid isPermaLink="false">https://dougiewougie.com/?p=2981</guid>
<link>https://dougiewougie.com/linux/cli-corner-rsync/</link>
<description>Synchronise two directories, e.g. Nextcloud and an encrypted USB drive with archive, recursive, partial, and progress flags:
<pre class="wp-block-code"><code class="language-bash" lang="bash">rsync -varP src destination</code></pre>
</description>
<pubDate>Sun, 31 Aug 2025 10:38:37 +0000</pubDate>
</item>
<item>
<title>Scarlett Gately Moore: A Bittersweet Farewell: My Final KDE Snap Release and the End of an Era</title>
<guid isPermaLink="false">https://www.scarlettgatelymoore.dev/?p=2134</guid>
<link>https://www.scarlettgatelymoore.dev/a-bittersweet-farewell-my-final-kde-snap-release-and-the-end-of-an-era/</link>
<description>Today marks both a milestone and a turning point in my journey with open source software. I’m proud to announce the release of KDE Gear 25.08.0 as my final snap package release. You can find all the details about this exciting update at the <a href="https://kde.org/announcements/gear/25.08.0/">official KDE announcement</a>.
After much reflection and with a heavy heart, I’ve made the difficult decision to retire from most of my open source software work, including snap packaging. This wasn’t a choice I made lightly – it comes after months of rejections and silence in an industry I’ve loved and called home for over 20 years.
<h2 class="wp-block-heading">Passing the Torch</h2>
While I’m stepping back, I’m thrilled to share that the future of KDE snaps is in excellent hands. Carlos from the Neon team has been working tirelessly to set up snaps on the new infrastructure that KDE has made available. This means building snaps in KDE CI is now possible – a significant leap forward for the ecosystem. I’ll be helping Carlos get the pipelines properly configured to ensure a smooth transition.
<h2 class="wp-block-heading">Staying Connected (But Differently)</h2>
Though I’m stepping away from most development work, I won’t be disappearing entirely from the communities that have meant so much to me:
<ul class="wp-block-list">
<li>Kubuntu: I’ll remain available as a backup, though Rik is doing an absolutely fabulous job getting the latest and greatest KDE packages uploaded. The distribution is in capable hands.</li>
<li>Ubuntu Community Council: I’m continuing my involvement here because I’ve found myself genuinely enjoying the community side of things. There’s something deeply fulfilling about focusing on the human connections that make these projects possible.</li>
<li>Debian: I’ll likely be submitting for emeritus status, as I haven’t had the time to contribute meaningfully and want to be honest about my current capacity.</li>
</ul>
<h2 class="wp-block-heading">The Reality Behind the Decision</h2>
This transition isn’t just about career fatigue – it’s about financial reality. I’ve spent too many years working for free while struggling to pay my bills. The recent changes in the industry, particularly with AI transforming the web development landscape, have made things even more challenging. Getting traffic to websites now requires extensive social media work and marketing – all expected to be done without compensation.
My stint at webwork was good while it lasted, but the changing landscape has made it unsustainable. I’ve reached a point where I can’t continue doing free work when my family and I are struggling financially. It shouldn’t take breaking a limb to receive the donations needed to survive.
<h2 class="wp-block-heading">A Career That Meant Everything</h2>
These 20+ years in open source have been the defining chapter of my professional life. I’ve watched communities grow, technologies evolve, and witnessed firsthand the incredible things that happen when passionate people work together. The relationships I’ve built, the problems we’ve solved together, and the software we’ve created have been deeply meaningful.
But I also have to be honest about where I stand today: I cannot compete in the current job market. The industry has changed, and despite my experience and passion, the opportunities just aren’t there for someone in my situation.
<h2 class="wp-block-heading">Looking Forward</h2>
Making a career change after two decades is terrifying, but it’s also necessary. I need to find a path that can provide financial stability for my family while still allowing me to contribute meaningfully to the world.
If you’ve benefited from my work over the years and are in a position to help during this transition, I would be forever grateful for any support. Every contribution, no matter the size, helps ease this difficult period: <a href="https://gofund.me/a9c55d8f">https://gofund.me/a9c55d8f</a>
<h2 class="wp-block-heading">Thank You</h2>
To everyone who has collaborated with me, tested my packages, filed bug reports, offered encouragement, or simply used the software I’ve helped maintain – thank you. You’ve made these 20+ years worthwhile, and you’ve been part of something bigger than any individual contribution.
The open source world will continue to thrive because it’s built on the collective passion of thousands of people like Carlos, Rik, and countless others who are carrying the torch forward. While my active development days are ending, the impact of this community will continue long into the future.
With sincere gratitude and fond farewells,
Scarlett Moore</description>
<pubDate>Mon, 25 Aug 2025 15:42:29 +0000</pubDate>
</item>
<item>
<title>Andrea Corbellini: It will take decades to undo the damage done by "AI"</title>
<guid isPermaLink="false">tag:andrea.corbellini.name,2025-08-20:/2025/08/20/it-will-take-decades-to-undo-the-damage-done-by-ai/</guid>
<link>https://andrea.corbellini.name/2025/08/20/it-will-take-decades-to-undo-the-damage-done-by-ai/</link>
<description>Many business owners in the software development industry are investing a lot
into LLM bots, marketed as “generative AI”. Some of them go as far as forcing
software developers to use such tools under the threat of being fired if they
don’t comply. After all, why shouldn’t they? This technology has a catchy name,
it produces very convincing output that sometimes is correct (or close to being
correct), and companies producing these tools are very good at downplaying
their limitations and at promising that the “next version” will be
astonishingly better than the one before.
My day-to-day experience, and scientific research, however show a quite big
problem: while senior developers get little or no gain from “generative AI”
(<a href="https://www.reuters.com/business/ai-slows-down-some-experienced-software-developers-study-finds-2025-07-10/">1</a>,
<a href="https://fortune.com/2025/07/20/ai-hampers-productivity-software-developers-productivity-study/">2</a>,
<a href="https://blueheadline.com/software-dev/ai-helps-new-developers-but-seniors/">3</a>,
<a href="https://blog.stackademic.com/ai-coding-tools-slow-senior-devs-by-19-why-experts-are-still-using-them-98d855b81c4e">4</a>),
junior developers get massive boosts in productivity. Why am I describing a
boost in productivity as a problem? Well, it’s simple: the new generations of
software developers (the ones that are just entering the job market, and the
ones that are still in school) are relying heavily on these LLM tools for
nearly all work-related tasks. And, again, why shouldn’t they? The entire
world is telling them to do so! And as a result of that, they are advancing
without gaining any actual skill.
Me and other (ex-)coworkers have seen it first hand: a junior developer
completes a task using an LLM bot. More senior developers find major problems
with the result. Junior developers go back to the LLM tool asking for a fix,
wasting hours or days without a positive outcome. Junior developers are
becoming unable to perform tasks independently.
In addition to that, there’s a problem that I feel like is not talked about
extensively: these LLM tools can only regurgitate what they’ve been trained
with. They’re good at finding patterns and re-applying strategies that have
been used in prior work, but by their nature they cannot create or
innovate. So, if this trend continues, the new generations of software
developers are not just going to be skill-less, they’re also going to be
incapable of solving new problems that haven’t been seen before.
My prediction? Within 10 or 20 years, the older generation of software
developers will be asked to come out of retirement to fix the unmaintainable
mess created by the newer generations, and to make advancements in the
information technology sector. A bit like old COBOL developers are asked to
come out of retirement to maintain banking systems, but on a much larger scale.
This, unless there will be advancements towards true Artificial Intelligence,
or unless the current trend in education is broken.
Now don’t get me wrong: I’m not opposed to LLM bots (although I’m against
calling them “AI”, because they’re very far from fulfilling the AI promise),
and I think they can be very powerful tools. What I’m worried about is that new
generations are being told to rely on them almost exclusively, and this can
only lead to an evident skill gap. In fact, I think that if there’s a country
that in the future will be able to harness the power of the LLM bots and at
the same time maintain a good enough level of education, thus addressing the
skill gap problem, they will be the dominant economic power of the future,
because they will be able to automate tasks that are time/energy-consuming for
humans, while at the same time use the human brain to innovate and advance.</description>
<pubDate>Wed, 20 Aug 2025 17:17:00 +0000</pubDate>
</item>
<item>
<title>Erich Eickmeyer: Raspberry Pi as a Networked Audio Interface</title>
<guid isPermaLink="false">http://ericheickmeyer.com/?p=5998</guid>
<link>https://ericheickmeyer.com/2025/08/19/raspberry-pi-as-a-networked-audio-interface/</link>
<description>I haven’t posted for quite some time, and a lot has happened. For instance, my wife revived Edubuntu and my work with Ubuntu Studio now spans over 7 years.
Recently, I became the proud owner of a Behringer X-Air XR18. This became the key to opening a new business, which I’ll announce at a later date. I’m working on acquiring more equipment to make this work.
As many people know, the XR18 is a stagebox-style mixer in which the mixer is physically on the stage with no controls but controlled with an iPad or Android tablet. However, as the owner of a Behringer X-Touch, which integrates seamlessly with an X-Air mixer via either MIDI or Network connections. In my situation, this gives the ability to have a physical front-of-house setup, with a computer showing the X-Air Edit application.
However, what if I want to multi-track record or add custom effects via Ubuntu Studio? This is where it would get complicated as I would then have to run a prohibitively-long USB cable from my computer to the XR18 on the stage. This would not be ideal.
As many people know, MIDI can be routed via network, which is the way the X-Touch, XR18, and X-Air app work together. A simple WiFi router and ethernet cable wouild be a great solution to this problem, but that also leaves an Ethernet cable prone to being tripped-over by audience members (unless one were to gaff it down). So, since we’ve already got WiFi, let’s take advantage of that.
To expose the audio ports to the WiFi, we’re going to have to bridge it. But… how? Most people would tell me just to use <a href="https://www.audinate.com/">Dante</a> but, unfortunately, Audinate refuses to support Linux, and AES67 support in PipeWire is very young. However, it turns out, <a href="https://www.jacktrip.com/">JackTrip</a> is in the Ubuntu repositories and, as its name would imply, integrates seamlessly with <a href="https://jackaudio.org/">JACK </a>and, therefore, <a href="https://pipewire.org">PipeWire</a>.
Setting this up is rather simple, and I’m documenting the process here.
<h2 class="wp-block-heading">Prerequisites</h2>
<ul class="wp-block-list">
<li>A Raspberry Pi 4 or higher (I have a late 2023 Raspberry Pi 5)</li>
<li>A micro SD card (16GB or larger)</li>
<li><a href="https://cdimage.ubuntu.com/releases/noble/release/">Ubuntu Server for Raspberry Pi</a> (I used 24.04, linked here).</li>
<li>Optional: <a href="https://ubuntu.com/pro">Ubuntu Pro</a> (for the RealTime Ubuntu Raspberry Pi Kernel)</li>
</ul>
<h2 class="wp-block-heading">Here we go…</h2>
<div class="wp-block-image">
<figure class="alignright size-large is-resized"><a href="https://ericheickmeyer.com/wp-content/uploads/2025/08/image.png"><img alt="" class="wp-image-6004" data-attachment-id="6004" data-comments-opened="1" data-image-caption="" data-image-description="" data-image-meta="{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}" data-image-title="image" data-large-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image.png?w=662" data-medium-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image.png?w=300" data-orig-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image.png" data-orig-size="832,616" data-permalink="https://ericheickmeyer.com/2025/08/19/raspberry-pi-as-a-networked-audio-interface/image/" height="616" src="https://ericheickmeyer.com/wp-content/uploads/2025/08/image.png?w=832" style="width: 417px; height: auto;" width="832" /></a></figure></div>
The first thing I did was install the downloaded preinstalled server image to a micro SD card. This is accomplished using Raspberry Pi Imager. I used the Snap version maintained by Dave Jones of Canonical, part of Canonical’s Raspberry Pi team. If you’ve never met Dave, he does all of his computing via Raspberry Pi, and it’s a sight to behold! To get that, it’s as easy as <code>sudo snap install rpi-imager</code>.
I made sure to set the server to automatically detect my WiFi, but if you plan to use a hard Ethernet connection, this isn’t necessary. Just be sure you can SSH into the machine as this is key (pre-set a user and set the machine name).
Once the SD card is imaged, I SSH’d into the machine (<code>ssh erich@{computer-name}.local</code>). The first thing I did was install <code>jackd2</code> and <code>jacktrip</code>:
<code>sudo apt install --no-install-recommends jackd2 jacktrip</code>
One must use the <code>--no-install-recommends</code> option to avoid installing unecessary graphical tools as <code>jackd2</code> will want to install <code>qjackctl</code> which is the GUI application to control JACK. We don’t need it here. JackTrip has an option to automatically connect to all inputs and outputs, so we’ll use that here.
To automatically start JACK upon boot, I modified <a href="https://raw.githubusercontent.com/jackaudio/jack2/refs/heads/develop/systemd/jack%40.service.in">this systemd unit file </a>to be custom for my setup. You’ll notice I made the buffer 256 (<code>-p 256</code>) with 3 periods per buffer (<code>-n 3</code>) as gives the highest reliablility on a USB connection. Additionally, the highest frequency an XR18 runs at is 48000 Hz, so I made sure to set the frequency there (<code>-r 48000</code>). Also, we want the process to run in realtime and directly to ALSA (<code>--realtime -dalsa</code>):
<pre class="wp-block-code"><code>[Unit]
Description=JACK server using %i user profile
Documentation=man:jackd(1)
After=sound.target local-fs.target
[Service]
User=%i
Group=%i
#Type=notify
EnvironmentFile=-/etc/jack/alsa.conf
#EnvironmentFile=-%h/.config/jack/%i.conf
ExecStart=/usr/bin/jackd --realtime -dalsa -p 256 -n 3 -r 48000
# -d $DEVICE $DRIVER_SETTINGS
LimitRTPRIO=95
LimitRTTIME=infinity
LimitMEMLOCK=infinity
# Caution: use on memory-limited devices only
# OOMScoreAdjust=-1000
[Install]
WantedBy=multi-user.target
</code></pre>
I installed this to <code>/usr/lib/systemd/system/jackd@.service</code>.
Next, I created a systemd unit file to start JackTrip. I needed this to be a server (<code>-s</code>), with 18 inputs and outputs (for an XR18, <code>-n 18</code>) and automatically connect upon start (<code>-q auto</code>):
<pre class="wp-block-code"><code>[Unit]
Description=JackTrip Audio Network Service
After=network.target sound.target jackd@%i.service
Wants=network-online.target
[Service]
# Run as a specific user who has JACK permissions
User=%i
Group=%i
ExecStart=jacktrip -s -n 18 -q auto --udprt
Restart=always
RestartSec=5
# Optional: environment for JACK if needed
#Environment=JACK_NO_AUDIO_RESERVATION=1
# Give JACK/JackTrip real-time priority
LimitRTPRIO=infinity
LimitMEMLOCK=infinity
[Install]
WantedBy=multi-user.target</code></pre>
I installed this to <code>/usr/lib/systemd/system/jacktrip@.service</code>.
Next, to make sure this runs as my user, I did the following:
<pre class="wp-block-code"><code>sudo systemctl enable jackd@erich.service
sudo systemctl enable jacktrip@erich.service</code></pre>
Optionally, since this will be used as a headless appliance, one can use Ubuntu Pro to get the RealTime Kernel. This is accomplished by the following with an <a href="https://login.ubuntu.com/">Ubuntu One account</a>:
<pre class="wp-block-code"><code>pro attach
pro enable realtime-kernel</code></pre>
To make sure everything worked, check <code>pro status</code>.
You can have up to 5 machines running Ubuntu Pro for free. In my case, as an Ubuntu Member, I can have up to 50 machines for free, and this is only my third one!
Once this is done, reboot. On your other machine, install <code>jacktrip-gui</code>. (This will be in Ubuntu Studio 25.10 and higher by default!): <code>sudo apt install jacktrip-gui</code>.
Opening it, it will ask you if you want to sign in with a Virtual Studio account. This is because JackTrip allows you to collaborate across the entire internet with fellow musicians with very low latency! It’s pretty cool! However, we don’t need that for this purpose. Instead, we’re going to say “No” and simply connect to the server as a P2P client:
<div class="wp-block-image">
<figure class="aligncenter size-large is-resized"><a href="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-1.png"><img alt="" class="wp-image-6012" data-attachment-id="6012" data-comments-opened="1" data-image-caption="" data-image-description="" data-image-meta="{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}" data-image-title="image" data-large-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-1.png?w=662" data-medium-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-1.png?w=300" data-orig-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-1.png" data-orig-size="856,795" data-permalink="https://ericheickmeyer.com/2025/08/19/raspberry-pi-as-a-networked-audio-interface/image-2/" height="795" src="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-1.png?w=856" style="width: 678px; height: auto;" width="856" /></a></figure></div>
Enter the computer name with <code>.local</code> afterwards, and it should find it as long as your desktop or laptop is connected to the same network as the Raspberry Pi.
After you click “Connect”, you should see this:
<div class="wp-block-image">
<figure class="aligncenter size-large is-resized"><a href="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-3.png"><img alt="" class="wp-image-6017" data-attachment-id="6017" data-comments-opened="1" data-image-caption="" data-image-description="" data-image-meta="{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}" data-image-title="image" data-large-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-3.png?w=662" data-medium-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-3.png?w=224" data-orig-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-3.png" data-orig-size="856,1148" data-permalink="https://ericheickmeyer.com/2025/08/19/raspberry-pi-as-a-networked-audio-interface/image-4/" height="1024" src="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-3.png?w=764" style="width: 630px; height: auto;" width="764" /></a></figure></div>
As you can see, this has audio coming in from a microphone already.
Back in X-Air Edit, already connected to the mixer, I changed my routing so channels 1 and 2 were being sent to the aux, so I can then use my computer’s audio there for music from e.g. Spotify:
<figure class="wp-block-image size-large"><a href="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-4.png"><img alt="" class="wp-image-6019" data-attachment-id="6019" data-comments-opened="1" data-image-caption="" data-image-description="" data-image-meta="{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}" data-image-title="image" data-large-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-4.png?w=662" data-medium-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-4.png?w=300" data-orig-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-4.png" data-orig-size="1189,754" data-permalink="https://ericheickmeyer.com/2025/08/19/raspberry-pi-as-a-networked-audio-interface/image-5/" height="649" src="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-4.png?w=1024" width="1024" /></a></figure>
Next I started a Dummy Audio Device from <a href="https://ubuntustudio.org/audio-configuration/">Ubuntu Studio Audio Configuration</a> and made it the main output for the computer. I then connected the monitor of the dummy output to channels 1 and 2 of JackTrip using Patchance:
<div class="wp-block-image">
<figure class="aligncenter size-large"><a href="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-5.png"><img alt="" class="wp-image-6021" data-attachment-id="6021" data-comments-opened="1" data-image-caption="" data-image-description="" data-image-meta="{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}" data-image-title="image" data-large-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-5.png?w=457" data-medium-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-5.png?w=300" data-orig-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-5.png" data-orig-size="457,326" data-permalink="https://ericheickmeyer.com/2025/08/19/raspberry-pi-as-a-networked-audio-interface/image-6/" height="326" src="https://ericheickmeyer.com/wp-content/uploads/2025/08/image-5.png?w=457" width="457" /></a></figure></div>
…and VIOLA! Even testing my microphone, there was so little latency it was imperceivable.
I’m envisioning a setup like this:
<figure class="wp-block-image size-large"><a href="https://ericheickmeyer.com/wp-content/uploads/2025/08/stage.png"><img alt="" class="wp-image-6068" data-attachment-id="6068" data-comments-opened="1" data-image-caption="" data-image-description="" data-image-meta="{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}" data-image-title="stage" data-large-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/stage.png?w=662" data-medium-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/stage.png?w=300" data-orig-file="https://ericheickmeyer.com/wp-content/uploads/2025/08/stage.png" data-orig-size="740,294" data-permalink="https://ericheickmeyer.com/2025/08/19/raspberry-pi-as-a-networked-audio-interface/stage/" height="294" src="https://ericheickmeyer.com/wp-content/uploads/2025/08/stage.png?w=740" width="740" /></a></figure>
I’m excited to test this further! Overall, I feel like I’ve found a way to do a Dante-less audio-over-ethernet setup that cost me nothing!</description>
<pubDate>Tue, 19 Aug 2025 19:48:23 +0000</pubDate>
</item>
<item>
<title>Jonathan Carter: Debian 13</title>
<guid isPermaLink="false">https://jonathancarter.org/?p=11948</guid>
<link>https://jonathancarter.org/2025/08/10/debian-13/</link>
<description>Debian 13 has finally <a href="https://bits.debian.org/2025/08/trixie-released.html">been released</a>!
One of the biggest and under-hyped features is support for HTTP Boot. This allows you to simply specify a URL (to any d-i or live image iso) in your computer’s firmware setup and then you can boot to it directly over the Internet, so no need to download an image, write it to flash disk and then boot from the flash disk on computers made in the last ~5 years. This is also supported on the Tianocore free EFI firmware, which is useful if you’d like to try it out on QEMU/KVM.
More details about Debian 13 available on the <a href="https://www.debian.org/News/2025/20250809">official press release</a>.
The default theme for Debian 13 is <a href="https://wiki.debian.org/DebianArt/Themes/Ceratopsian">Ceratopsian</a>, designed by Elise Couper. I’ll be honest, I wasn’t 100% sure it was the best choice when it won the artwork vote, but it really grew on me over the last few months, and it looked great in combination with all kinds of other things during DebConf too, so it has certainly won me over.
<div class="wp-block-image">
<figure class="aligncenter size-full is-resized"><img alt="" class="wp-image-11957" height="500" src="https://jonathancarter.org/files/images/wllpaper.jpeg" style="width: 798px; height: auto;" width="800" /></figure></div>
And I particularly like the Plymouth theme. It’s very minimal, and it reminds me of the Toy Story Trixie character, it’s almost like it helps explain the theme:
<div class="wp-block-image">
<figure class="aligncenter size-large is-resized"><img alt="" class="wp-image-11961" height="644" src="https://jonathancarter.org/files/images/certop-1024x644.jpeg" style="width: 1024px; height: auto;" width="1024" /></figure></div>
Plymouth (start-up/shutdown) theme.
<div class="wp-block-image">
<figure class="aligncenter size-full"><img alt="" class="wp-image-11963" height="631" src="https://jonathancarter.org/files/images/trixie.jpeg" width="600" /></figure></div>
<a href="https://disney.fandom.com/wiki/Trixie">Trixie, the character from Toy Story</a> that was chosen as the codename for Debian 13.
<h2 class="wp-block-heading">Debian Local Team ISO testing</h2>
Yesterday we got some locals together for ISO testing and we got a cake with the wallpaper printed on it, along with our local team logo which has been a work in progress for the last 3 years, so hopefully we’ll finalise it this year! (it will be ready when it’s ready). It came out a lot bluer than the original wallpaper, but still tasted great.
<div class="wp-block-image">
<figure class="aligncenter size-large"><img alt="" class="wp-image-11949" height="771" src="https://jonathancarter.org/files/images/cake-13-1024x771.jpg" width="1024" /></figure></div>
For many releases, I’ve been the only person from South Africa doing ISO smoke-testing, and this time was quite different, since everyone else in the photo below tested an image except for me. I basically just provided some support and helped out with getting salsa/wiki accounts and some troubleshooting. It went nice and fast, and it’s always a big relief when there are no showstoppers for the release.
<div class="wp-block-image">
<figure class="aligncenter size-large"><img alt="" class="wp-image-11951" height="590" src="https://jonathancarter.org/files/images/trixiecake2-1024x590.jpg" width="1024" /></figure></div>
My dog was really wishing hard that the cake would slip off.
<div class="wp-block-image">
<figure class="aligncenter size-full"><img alt="" class="wp-image-11970" height="221" src="https://jonathancarter.org/files/images/cambalache.jpg" width="600" /></figure></div>
Packaging-wise, I only have one big new package for Trixie, and that’s <a href="https://github.com/xjuan/cambalache/tree/main">Cambalache</a>, a rapid application design UI builder for GTK3/GTK4.
<div class="wp-block-image">
<figure class="aligncenter size-full is-resized"><img alt="" class="wp-image-11972" height="423" src="https://jonathancarter.org/files/images/image-29.png" style="width: 616px; height: auto;" width="752" /></figure></div>
The version in trixie is 0.94.1-3 and version 1.0 was recently released, so I’ll get that updated in forky and backport it if possible.
I was originally considering using Cambalache for an installer UI, but ended up going with a web front-end instead. But that’s moving firmly towards forky territory, so more on that another time!
Thanks to everyone who was involved in this release, so far upgrades have been very smooth!
<img alt="" height="0" src="https://analytics.jonathancarter.org/piwik.php?idsite=1&amp;rec=1&amp;url=https%3A%2F%2Fjonathancarter.org%2F2025%2F08%2F10%2Fdebian-13%2F&amp;action_name=Debian+13&amp;urlref=https%3A%2F%2Fjonathancarter.org%2Ffeed%2F" style="border: 0; width: 0; height: 0;" width="0" /></description>
<pubDate>Sun, 10 Aug 2025 14:53:36 +0000</pubDate>
</item>
<item>
<title>Thomas Bechtold: Streamline Root Filesystem Modifications with chimg</title>
<guid isPermaLink="false">http://toabctl.wordpress.com/?p=151</guid>
<link>https://toabctl.wordpress.com/2025/07/31/streamline-root-filesystem-modifications-with-chimg/</link>
<description>During the last year I developed as a side project a new tool called <a href="https://github.com/canonical/chimg/">chimg</a> . That tool is useful to modify a given rootfs chroot directory in a declarative way. It can replace a kernel within a chroot, preseed snaps, install debian packages, add PPAs and more (documentation is in git but not yet published).
The nice thing about this is, that this tool can be integrated into <a href="https://launchpad.net/livecd-rootfs">livecd-rootfs</a> (the tool that is usually used to build Ubuntu images) or future tools which might use the craft framework to build images. <code>chimg</code> automatically detects already bind-mounted filesystems (eg. <code>/sys</code>, <code>/proc</code>, …), detects already preseeded snaps and usually does that same thing that <code>livecd-rootfs</code> currently does when eg. replacing an already installed kernel.
Install <code>chimg</code> with:
<div class="wp-block-syntaxhighlighter-code "><pre class="brush: plain; title: ; notranslate">sudo snap install chimg --classic
</pre></div>
An example configuration (eg. <code>config.yaml</code>) to modify a rootfs chroot directory looks like this:
<div class="wp-block-syntaxhighlighter-code "><pre class="brush: yaml; title: ; notranslate">---
kernel: linux-aws
debs:
- name: shim-signed
- name: grub-pc
- name: grub2-common
- name: ubuntu-cloud-minimal
snap:
assertion_brand: canonical
assertion_model: aws-classic
snaps:
- name: hello
channel: latest/stable
files:
-
destination: /etc/default/grub.d/70-mysettings.cfg
content: |+
GRUB_TIMEOUT=0
cmds_post:
-
cmd: |
echo "Everything done"
</pre></div>
This config (stored in <code>config.yaml</code> in this example) can be applied to a newly created (or existing) root filesystem directory. Let’s create one in <code>/tmp/chimg-noble</code>:
<div class="wp-block-syntaxhighlighter-code "><pre class="brush: bash; title: ; notranslate">sudo mmdebstrap --variant=apt --verbose noble /tmp/chimg-noble
</pre></div>
Let’s apply the config changes now:
<div class="wp-block-syntaxhighlighter-code "><pre class="brush: bash; title: ; notranslate">sudo chimg --log-console chrootfs config.yaml /tmp/chimg-noble
</pre></div>
That’s it. The modifications are now applied to the <code>/tmp/chimg-noble</code> directory.
</description>
<pubDate>Thu, 31 Jul 2025 18:15:36 +0000</pubDate>
</item>
<item>
<title>Oliver Grawert: Rooming with Mark</title>
<guid isPermaLink="false">http://ograblog.wordpress.com/?p=389</guid>
<link>https://ograblog.wordpress.com/2025/05/16/rooming-with-mark/</link>
<description>Yesterday, exactly twenty years ago my mobile rang while I was walking the dog. I had just returned from Sydney about a week ago (still battling with the last remains of my Jet-lag (I had never left Europe before!)) where I had attended the UbuntuDownUnder summit and had a 30min interview on the last day (that was literally rather like having a coffee with friends after lunch) with Mark Shuttleworth and Matt Zimmerman (back then Canonicals CTO) on a nice hotel terrace directly under a tree with a colony of flying foxes sleeping above our heads. There was Jane Silber (CEO) on the phone, telling me: “I’m so happy to tell you you are hired! In your new role we want you to create an educational flavor of Ubuntu, there will be a debian-edu/skolelinux gathering in Bergen in Norway from the 10th to 12th of June, are you okay flying there with Mark?” I rushed back home and told my girlfriend: “I’m hired, and I’ll fly Canonical One on my first business trip next month!” (Canonical One was the name of Marks plane). I learned the next weeks that Canonical had indeed booked a generic scheduled flight for me and we’d only meet at the venue <img alt="🙂" class="wp-smiley" src="https://s0.wp.com/wp-content/mu-plugins/wpcom-smileys/twemoji/2/72x72/1f642.png" style="height: 1em;" /> The flight was a disaster, after we were boarding that small 20-seater 2 prop plane that was supposed to get us from Cologne to Amsterdam and the pilot started the engine my window all of a sudden was soaked in oil. We had to stay in the plane out on the filed while the mechanics were fixing the engine for like 2-3h so indeed I missed the connection in Amsterdam and had to stay for the night instead of arriving in Bergen the evening before the event started. When I arrived at the venue everyone was already busy hacking on stuff and I jumped right in alongside, finally meeting some users of LTSP (Linux Terminal Server Project) which I was upstream for at that time and working with them on the problems they faced in debian with it, tinkering with moodle as a teaching support system and looking at other edu software, meanwhile Mark was sitting on a bar-stool in a corner with his laptop hacking on launchpad code. When we went to our hotel in the evening it turned out they did not have our booking at all and were completely overbooked due to a jewelry exhibition they had in the house for that week. I talked like 15min to the lady behind the counter, showed her my booking confirmation PDF on the laptop, begged and flirted a lot and eventually she told us “We do have an exhibition room that we keep as spare, it only has one bed but you can have it and we will add a folding bed”. The room was actually a normal hotel room but completely set up with wallpaper tables all around the walls. Mark insisted to take the folding bed and I can tell you, he does not snore … (well, he didn’t back then) This was only the first of a plethora of adventures that followed in the upcoming 20 years, that phone call clearly changed my life and the company gave me the opportunity to work with the brightest, sharpest and most intelligent people on the planet in and outside of Canonical. It surely changed a lot over these years (when I started we were building the distro with 18 people in the distro team and did that for quite a few years before it actually got split into server, foundations, kernel and desktop teams) but it never lost its special spirit of having these exceptional people with such a high focus on bringing opensource to everyone and making it accessible to everyone. Indeed, with growth comes the requirement to make more money to pay the people, the responsibility to give your employees a certain amount of security and persistence grows, but Canonical and especially Mark have always managed to keep the balance to not lose that focus and do the right thing in the end. Ten years ago I said “onward to the next ten!!”, I won’t really say “onward to the next 20!” today, not because I ever plan to resign but simply because I doubt I still want to work full time when I’m 75 <img alt="😉" class="wp-smiley" src="https://s0.wp.com/wp-content/mu-plugins/wpcom-smileys/twemoji/2/72x72/1f609.png" style="height: 1em;" /> Thank you Mark for dragging me into this adventure and thank you for still having me! I still love the ride!!


</description>
<pubDate>Tue, 29 Jul 2025 13:26:03 +0000</pubDate>
</item>
<item>
<title>Dimitri John Ledkov: Achieving actually full disk encryption of UEFI ESP at rest with TCG OPAL, FIPS, LUKS</title>
<guid isPermaLink="false">tag:blogger.com,1999:blog-347582618045055410.post-5137629174584752121</guid>
<link>http://blog.surgut.co.uk/2025/07/achieving-actually-full-disk-encryption.html</link>
<description><table align="center" cellpadding="0" cellspacing="0" class="tr-caption-container" style="margin-left: auto; margin-right: auto;"><tbody><tr><td style="text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEifDQL9Ducebgoi5rQaoK8ZXCp1ud1YHOguORDpgsmeD5E1PNT9Ptcdps3hLehMw6RHpXeovif1fgMpYF8lAucFgYmUZYgvdl68669qcjgUkN4hcpTRBzSK1HilijZgPjSxpCySZQtvtmkh7EjKMjMB27qIpJvXXmlFfobGPp7bIjoluItyPF6cJ7fnL1A/s1280/pexels-markus-winkler-1430818-3828944.png" style="margin-left: auto; margin-right: auto;"><img border="0" data-original-height="853" data-original-width="1280" height="427" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEifDQL9Ducebgoi5rQaoK8ZXCp1ud1YHOguORDpgsmeD5E1PNT9Ptcdps3hLehMw6RHpXeovif1fgMpYF8lAucFgYmUZYgvdl68669qcjgUkN4hcpTRBzSK1HilijZgPjSxpCySZQtvtmkh7EjKMjMB27qIpJvXXmlFfobGPp7bIjoluItyPF6cJ7fnL1A/w640-h427/pexels-markus-winkler-1430818-3828944.png" width="640" /></a></td></tr><tr><td class="tr-caption" style="text-align: center;">Achieving full disk encryption using FIPS, TCG OPAL and LUKS to encrypt UEFI ESP on bare-metal and in VMs</td></tr></tbody></table>Many security standards such as CIS and STIG require to protect information at rest. For example, <a href="https://doi.org/10.6028/NIST.SP.800-53r5">NIST SP 800-53r5</a> SC-28 advocate to use cryptographic protection, offline storage and TPMs to enhance protection of information confidentiality and/or integrity.Traditionally to satisfy such controls on portable devices such as laptops one would utilize software based Full Disk Encryption - <a href="https://support.apple.com/en-gb/guide/mac-help/mh11785/mac">Mac OS X FileVault</a>, <a href="https://support.microsoft.com/en-us/windows/bitlocker-drive-encryption-76b92ac9-1040-48d6-9f5f-d14b3c5fa178">Windows Bitlocker</a>, <a href="https://gitlab.com/cryptsetup/cryptsetup">Linux cryptsetup LUKS2</a>. In cases when FIPS cryptography is required, additional burden would be placed onto these systems to operate their kernels in FIPS mode.<a href="https://trustedcomputinggroup.org/">Trusted Computing Group</a> works on establishing many industry standards and specifications, which are widely adopted to improve safety and security of computing whilst keeping it easy to use. One of their most famous specifications them is TCG TPM 2.0 (Trusted Platform Module). TPMs are now widely available on most devices and help to protect secret keys and attest systems. For example, most software full disk encryption solutions can utilise TCG TPM to store full disk encryption keys providing passwordless, biometric or pin-base ways to unlock the drives as well as attesting that system have not been modified or compromised whilst offline.<a href="https://trustedcomputinggroup.org/resource/storage-work-group-storage-security-subsystem-class-opal/">TCG Storage Security Subsystem Class: Opal Specification</a> is a set of specifications for features of data storage devices. The authors and contributors to OPAL are leading and well trusted storage manufacturers such as Samsung, Western Digital, Seagate Technologies, Dell, Google, Lenovo, IBM, Kioxia, among others. One of the features that Opal Specification enables is self-encrypting drives which becomes very powerful when combined with pre-boot authentication. Out of the box, such drives always and transparently encrypt all disk data using hardware acceleration. To protect data one can enter UEFI firmware setup (BIOS) to set NVMe single user password (or user + administrator/recovery passwords) to encrypt the disk encryption key. If one's firmware didn't come with such features, one can also use <a href="https://sedutil.com/">SEDutil</a> to inspect and configure all of this. Latest release of major Linux distributions have SEDutil already packaged.Once password is set, on startup, pre-boot authentication will request one to enter password - prior to booting any operating systems. It means that full disk is actually encrypted, including the UEFI ESP and all operating systems that are installed in case of dual or multi-boot installations. This also prevents tampering with ESP, UEFI bootloaders and kernels which with traditional software-based encryption often remain unencrypted and accessible. It also means one doesn't have to do special OS level repartitioning, or installation steps to ensure all data is encrypted at rest.What about FIPS compliance? Well, the good news is that majority of the OPAL compliant hard drives and/or security sub-chips do have FIPS 140-3 certification. Meaning they have been tested by independent laboratories to ensure they do in-fact encrypt data. On the <a href="https://csrc.nist.gov/Projects/cryptographic-module-validation-program/validated-modules/search">CMVP</a> website one can search for module name terms "OPAL" or "NVMe" or name of hardware vendor to locate FIPS certificates.Are such drives widely available? Yes. For example, a common Thinkpad X1 gen 11 has OPAL NVMe drives as standard, and they have FIPS certification too. Thus, it is likely in your hardware fleet these are already widely available. Use sedutil to check if MediaEncrypt and LockingSupported features are available.Well, this is great for laptops and physical servers, but you may ask - what about public or private cloud? Actually, more or less the same is already in-place in both. On CVMP website all major clouds have their disk encryption hardware certified, and all of them always encrypt all Virtual Machines with FIPS certified cryptography without an ability to opt-out. One is however in full control of how the encryption keys are managed: cloud-provider or self-managed (either with a cloud HSM or KMS or bring your own / external). See these relevant encryption options and key management docs for <a href="https://cloud.google.com/docs/security/encryption/default-encryption?hl=en">GCP</a>, <a href="https://learn.microsoft.com/en-us/azure/virtual-machines/disk-encryption-overview">Azure</a>, <a href="https://maturitymodel.security.aws.dev/en/2.-foundational/kms/">AWS</a>. But the key takeaway without doing anything, at rest, VMs in public cloud are always encrypted and satisfy NIST SP 800-53 controls.What about private cloud? Most Linux based private clouds ultimately use <a href="https://www.qemu.org/">qemu</a> typically with qcow2 virtual disk images. Qemu supports user-space encryption of qcow2 disk, see this <a href="https://www.qemu.org/docs/master/tools/qemu-img.html">manpage</a>. Such encryption encrypts the full virtual machine disk, including the bootloader and ESP. And it is handled entirely outside of the VM on the host - meaning the VM never has access to the disk encryption keys. Qemu implements this encryption entirely in userspace using gnutls, nettle, libgcrypt depending on how it was compiled. This also means one can satisfy FIPS requirements entirely in userspace without a Linux kernel in FIPS mode. Higher level APIs built on top of qemu also support qcow2 disk encryption, as in projects such as <a href="https://libvirt.org/formatstorageencryption.html">libvirt</a> and <a href="https://docs.openstack.org/cinder/latest/configuration/block-storage/volume-encryption.html">OpenStack Cinder</a>.If you carefully read the docs, you may notice that agent support is explicitly sometimes called out as not supported or not mentioned. Quite often agents running inside the OS may not have enough observability to them to assess if there is external encryption. It does mean that monitoring above encryption options require different approaches - for example monitor your cloud configuration using tools such as Wiz and <a href="https://orca.security/">Orca</a>, rather than using agents inside individual VMs. For laptop / endpoint security agents, I do wish they would start gaining capability to report OPAL SED availability and status if it is active or not.What about using software encryption none-the-less on top of the above solutions? It is commonly referred to double or multiple encryption. There will be an additional performance impact, but it can be worthwhile. It really depends on what you define as data at rest for yourself and which controls you need. If one has a dual-boot laptop, and wants to keep one OS encrypted whilst booted into the other, it can perfectly reasonable to encrypted the two using separate software encryption keys. In addition to the OPAL encryption of the ESP. For more targeted per-file / per-folder encryption, one can look into using <a href="https://nuetzlich.net/gocryptfs/">gocryptfs</a> which is the best successor to the once popular, but now deprecated <a href="https://www.ecryptfs.org/">eCryptfs</a> (amazing tool, but has fallen behind in development and can lead to data loss).All of the above mostly talks about cryptographic encryption, which only provides confidentially but not data integrity. To protect integrity, one needs to choose how to maintain that. <a href="https://www.kernel.org/doc/html/latest/admin-guide/device-mapper/verity.html">dm-verity</a> is a good choice for read-only and rigid installations. For read-write workloads, it may be easier to deploy <a href="https://zfsonlinux.org/">ZFS</a> or <a href="https://btrfs.readthedocs.io/en/latest/index.html">Btrfs</a> instead. If one is using filesystems without a built-in integrity support such as XFS or Ext4, one can retrofit integrity layer to them by using <a href="https://www.kernel.org/doc/html/latest/admin-guide/device-mapper/dm-integrity.html">dm-integrity</a> (either standalone, or via dm-luks/cryptsetup --integrity option).If one has a lot of estate and a lot of encryption keys to keep track off a key management solution is likely needed. The most popular solution is likely the one from Thales Group marketed under <a href="https://cpl.thalesgroup.com/encryption/data-security-platform">ChiperTrust Data Security Platform</a> (previously Vormetric), but there are many others including OEM / Vendor / Hardware / Cloud specific or agnostic solutions.I hope this crash course guide piques your interest to learn and discover modern confidentially and integrity solutions, and to re-affirm or change your existing controls w.r.t. to data protection at rest. Full disk encryption, including UEFI ESP /boot/efi is now widely achievable by default on both baremetal machines and in VMs including with FIPS certification. To discuss more let's connect on <a href="https://www.linkedin.com/in/dimitri-john-ledkov/">Linkedin</a>.</description>
<pubDate>Mon, 28 Jul 2025 11:13:30 +0000</pubDate>
<author>noreply@blogger.com (Dimitri John Ledkov)</author>
</item>
<item>
<title>Jonathan Carter: DebConf25</title>
<guid isPermaLink="false">https://jonathancarter.org/?p=11929</guid>
<link>https://jonathancarter.org/2025/07/19/debconf25/</link>
<description>The last two weeks I attended <a href="https://debconf25.debconf.org/">DebConf and DebCamp</a> in Brest, France.
Usually, I like to do a more detailed write-up of DebConf, but I was already quite burnt out when I got here, so I’ll circle back to a few things that were important to me in later posts.
In the meantime, thanks to everyone who made this DebConf possible, whether you volunteered for one task or were part of the organisation team. Also a special thanks to the <a href="https://debconf25.debconf.org/sponsors/">wonderful sponsors</a> who made this entire event possible!
See you next year in Argentina!
<figure class="wp-block-image size-large"><img alt="Jellyfish taken during daytrip at aquarium." class="wp-image-11936" height="577" src="https://jonathancarter.org/files/images/jellyfish-1024x577.jpeg" width="1024" /></figure>
Jellyfish, taken during daytrip at aquarium.

<img alt="" height="0" src="https://analytics.jonathancarter.org/piwik.php?idsite=1&amp;rec=1&amp;url=https%3A%2F%2Fjonathancarter.org%2F2025%2F07%2F19%2Fdebconf25%2F&amp;action_name=DebConf25&amp;urlref=https%3A%2F%2Fjonathancarter.org%2Ffeed%2F" style="border: 0; width: 0; height: 0;" width="0" /></description>
<pubDate>Sat, 19 Jul 2025 17:12:49 +0000</pubDate>
</item>
<item>
<title>Faizul "Piju" 9M2PJU: OpenRocket: Design, Simulate, and Launch Your Own Rockets — Free and Open Source</title>
<guid isPermaLink="false">https://hamradio.my/?p=7766</guid>
<link>https://hamradio.my/2025/07/openrocket-design-simulate-and-launch-your-own-rockets-free-and-open-source/</link>
<description><h2 class="wp-block-heading"></h2>
Have you ever dreamed of building and launching your own rockets? Whether you’re a student, educator, hobbyist, or aerospace enthusiast, there’s one tool that makes rocketry accessible, educational, and exciting: OpenRocket.
OpenRocket is a free, fully open-source model rocket simulator that helps you design, simulate, and optimize rockets in a virtual environment — all before a single part is printed or assembled.
And the best part? It’s completely free, runs on Windows, macOS, and Linux, and is trusted by thousands around the world — from classrooms to high-powered launch pads.
<hr class="wp-block-separator has-alpha-channel-opacity" />
<h3 class="wp-block-heading"><img alt="🛰" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f6f0.png" style="height: 1em;" /> What is OpenRocket?</h3>
OpenRocket is a powerful simulation tool designed to make rocket science understandable and practical. It enables users to build virtual models of rockets, test their flight performance, and iterate on designs long before committing to physical builds. Whether you’re building a simple school project or a multi-stage high-powered model, OpenRocket is built to support you at every step.
<hr class="wp-block-separator has-alpha-channel-opacity" />
<h3 class="wp-block-heading"><img alt="🛠" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f6e0.png" style="height: 1em;" /> Key Features</h3>
<ul class="wp-block-list">
<li><img alt="🖱" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f5b1.png" style="height: 1em;" /> Drag-and-Drop Rocket Design Build your rocket with ease using a graphical interface — choose body tubes, fins, nose cones, engines, recovery systems, and more.</li>
<li><img alt="🧮" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f9ee.png" style="height: 1em;" /> Accurate Flight Simulations Simulate flights in real-world conditions with detailed physics modeling, including wind, thrust curves, drag, gravity, and stability.</li>
<li><img alt="📊" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f4ca.png" style="height: 1em;" /> Detailed Analysis Tools Visualize graphs for altitude, velocity, acceleration, angle of attack, and more — perfect for science fair projects and engineering analysis.</li>
<li><img alt="🚀" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f680.png" style="height: 1em;" /> Support for Multistage and Cluster Rockets Go beyond basic designs and experiment with multi-engine configurations, boosters, and complex recovery systems.</li>
<li><img alt="📐" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f4d0.png" style="height: 1em;" /> Advanced Stability Calculations See real-time updates on your rocket’s center of pressure and center of gravity — helping ensure stable flights.</li>
<li><img alt="🎓" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f393.png" style="height: 1em;" /> Education-First Philosophy Built with educators and students in mind — great for teaching physics, aerodynamics, math, and engineering concepts.</li>
<li><img alt="🔓" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f513.png" style="height: 1em;" /> 100% Free and Open Source (GPLv3 License) Modify, contribute, or use it freely in academic and personal projects.</li>
</ul>
<hr class="wp-block-separator has-alpha-channel-opacity" />
<h3 class="wp-block-heading"><img alt="👨‍🏫" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f468-200d-1f3eb.png" style="height: 1em;" /> Perfect for Classrooms and Competitions</h3>
OpenRocket is a favorite in schools, universities, and STEM clubs. It’s ideal for:
<ul class="wp-block-list">
<li>Physics and engineering lessons</li>
<li>STEM competitions</li>
<li>High school and university rocketry teams</li>
<li>Maker clubs and hobbyist communities</li>
</ul>
With OpenRocket, students don’t just learn theory — they test it, visualize it, and bring it to life.
<hr class="wp-block-separator has-alpha-channel-opacity" />
<h3 class="wp-block-heading"><img alt="💻" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f4bb.png" style="height: 1em;" /> Cross-Platform and Easy to Use</h3>
OpenRocket runs smoothly on Windows, Linux, and macOS, with a lightweight footprint and no complex setup required. Just download, install, and launch.
Want to try the latest features? There are stable and experimental versions available, with an active community improving the project continuously.
<hr class="wp-block-separator has-alpha-channel-opacity" />
<h3 class="wp-block-heading"><img alt="🌍" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f30d.png" style="height: 1em;" /> Join a Global Community</h3>
OpenRocket is powered by passionate volunteers and used worldwide. With an active community on forums and GitHub, it’s easy to get help, share ideas, and even contribute your own code or simulations.
If you’re ready to explore the world of rocketry without burning through your budget, OpenRocket is your launchpad.
<hr class="wp-block-separator has-alpha-channel-opacity" />
<h3 class="wp-block-heading"><img alt="🔗" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f517.png" style="height: 1em;" /> Ready for Liftoff?</h3>
Visit <a href="https://openrocket.info/">openrocket.info</a> and start building your dream rocket today.
Design. Simulate. Launch. Learn. Repeat.
Welcome to the world of OpenRocket — where rocket science is for everyone.</description>
<pubDate>Sat, 19 Jul 2025 16:15:07 +0000</pubDate>
</item>
<item>
<title>Faizul "Piju" 9M2PJU: Digital – Design, Simulate, and Understand Logic Circuits Like Never Before</title>
<guid isPermaLink="false">https://hamradio.my/?p=7763</guid>
<link>https://hamradio.my/2025/07/digital-design-simulate-and-understand-logic-circuits-like-never-before/</link>
<description><h2 class="wp-block-heading"></h2>
If you’ve ever wanted to dive into the world of digital electronics, whether as a student, educator, engineer, or hobbyist, you’re going to love this tool: Digital — a powerful, free, and open-source logic circuit simulator created by Helmut Neemann. Available on GitHub at <a href="https://github.com/hneemann/Digital">hneemann/Digital</a>, this Java-based application combines clarity, flexibility, and educational value in one sleek package.
<h3 class="wp-block-heading"><img alt="⚙" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/2699.png" style="height: 1em;" /> What Is Digital?</h3>
Digital is a logic circuit simulator designed with a clear goal: to make the teaching, learning, and development of digital logic intuitive and visual. It lets you create, simulate, and analyze logic circuits ranging from basic gates to complex CPUs — all with a drag-and-drop interface and real-time simulation.
Unlike other bloated EDA software, Digital is refreshingly simple, elegant, and lightweight. But don’t let its simplicity fool you — it’s capable of simulating complex architectures with clocked components, finite state machines, memory modules, and even custom microprocessors.
<hr class="wp-block-separator has-alpha-channel-opacity" />
<h3 class="wp-block-heading"><img alt="🔑" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f511.png" style="height: 1em;" /> Key Features</h3>
<ul class="wp-block-list">
<li><img alt="🖱" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f5b1.png" style="height: 1em;" /> Intuitive Interface Drag and drop components onto your canvas, connect wires, and see how your circuit behaves in real-time.</li>
<li><img alt="🕒" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f552.png" style="height: 1em;" /> Real-Time Simulation Changes are reflected immediately, with live logic levels and animations that bring your circuits to life.</li>
<li><img alt="🧩" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f9e9.png" style="height: 1em;" /> Modular Design Use subcircuits and hierarchical design to keep things organized, even in large-scale projects.</li>
<li><img alt="⏱" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/23f1.png" style="height: 1em;" /> Clocked Components Simulate registers, flip-flops, RAM, and sequential logic effortlessly.</li>
<li><img alt="🧠" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f9e0.png" style="height: 1em;" /> Built-in CPU &amp; Assembler Digital includes a simple, yet powerful CPU with its own instruction set and assembler — ideal for teaching computer architecture.</li>
<li><img alt="🧑‍🏫" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f9d1-200d-1f3eb.png" style="height: 1em;" /> Made for Education Widely used in universities and schools. Perfect for explaining logic gates, truth tables, FSMs, and microprocessor fundamentals.</li>
<li><img alt="💻" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f4bb.png" style="height: 1em;" /> Cross-platform (Java-based) Works on Windows, macOS, and Linux. Just download and run!</li>
<li><img alt="🔓" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f513.png" style="height: 1em;" /> Open Source (GPL-3.0 License) Actively maintained and completely free. Fork it, contribute, or adapt it to your own projects.</li>
</ul>
<hr class="wp-block-separator has-alpha-channel-opacity" />
<h3 class="wp-block-heading"><img alt="📚" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f4da.png" style="height: 1em;" /> Who Is It For?</h3>
<ul class="wp-block-list">
<li>Students: Learn digital logic step by step with instant feedback.</li>
<li>Educators: Use it in the classroom to teach logic circuits and CPU architecture interactively.</li>
<li>Makers &amp; Hobbyists: Build and test your own logic-based inventions.</li>
<li>Researchers &amp; Developers: Prototype logic systems before implementing them in hardware.</li>
</ul>
Whether you’re building an ALU, a traffic light controller, or your own 8-bit CPU, Digital gives you the tools to simulate it with precision.
<hr class="wp-block-separator has-alpha-channel-opacity" />
<h3 class="wp-block-heading"><img alt="🚀" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/1f680.png" style="height: 1em;" /> Get Started in Minutes</h3>
<ol class="wp-block-list">
<li>Head over to the <a href="https://github.com/hneemann/Digital">Digital GitHub repository</a>.</li>
<li>Download the latest release (JAR file).</li>
<li>Run it using Java (Java 8 or higher required).</li>
<li>Start building your first circuit with just a few clicks.</li>
</ol>
No complex installations. No licenses. No fees. Just pure learning and tinkering joy.
<hr class="wp-block-separator has-alpha-channel-opacity" />
<h3 class="wp-block-heading"><img alt="❤" class="wp-smiley" src="https://s.w.org/images/core/emoji/16.0.1/72x72/2764.png" style="height: 1em;" /> Final Thoughts</h3>
In a world of expensive and overly complex simulation tools, Digital shines as a free, open-source, and educator-friendly alternative. It’s ideal for classrooms, home labs, and anyone curious about what happens beneath the silicon.
So if you’re ready to master digital logic — from basic gates to building your own CPU — it’s time to download Digital and start creating.
Explore. Simulate. Learn. With Digital.</description>
<pubDate>Fri, 18 Jul 2025 16:05:45 +0000</pubDate>
</item>
</channel>
</rss>

If you would like to create a banner that links to this page (i.e. this validation result), do the following:

Download the "valid RSS" banner.
Upload the image to your own server. (This step is important. Please do not link directly to the image on this server.)
Add this HTML to your page (change the image src attribute if necessary):

<a href="http://www.feedvalidator.org/check.cgi?url=http%3A//planet.ubuntu.com/rss20.xml"><img src="valid-rss-rogers.png" alt="[Valid RSS]" title="Validate my RSS feed" /></a>

If you would like to create a text link instead, here is the URL you can use:

http://www.feedvalidator.org/check.cgi?url=http%3A//planet.ubuntu.com/rss20.xml

Home · About · News · Docs · Terms