openEuler Monthly Bulletin – October
Welcome to the October edition of the openEuler Monthly Bulletin! We're delighted to bring you an update on the latest advancements, including key activities, project progress, and exciting new features that have marked this month. Dive into the major highlights from October!
Community Scale
As of October 31, 2024, the openEuler community has grown to over 3.64 million users, with a total of 192.3k PRs and 102.7k issues generated. The community now includes 1,813 organization members, with 38 new members joining this October. To access the latest data, please visit the openEuler DATASTAT.
Community Highlight
The 2nd openEuler Ecosystem Conference successfully held in Hunan
On October 30, the 2nd openEuler Ecosystem Conference was held in Changsha, Hunan. The conference brought together visionaries from across the supply chain—partners, OS vendors, ecosystem innovation centers, users, and universities—aiming to advancing the openEuler ecosystem. Powered by foundational technologies and a robust ecosystem, our open source industry is poised for remarkable growth.
openEuler technical experts shared updates on the community's development at the 5th China Cloud Computing Infrastructure Developer Conference
On October 19, the 5th China Cloud Computing Infrastructure Developer Conference (CID) was held in Beijing. At the event, openEuler technical experts introduced the recent developments and future plans of the community and engaged in the free discussions with developers on-site.
openEuler SDS Meetup held in Beijing
On October 26, the openEuler SDS Meetup, co-hosted by the openEuler community and China Unicom Digital Tech, was held in Beijing. The event invited industry experts from different enterprises, including Linaro, Intel, TaoCloud, China Unicom Digital Tech, and Huawei to share valuable insights and practices about distributed storage technologies, covering SPDK, Ceph Crimson, fastblock, high-performance all-flash architecture, and more.
openEuler Meetup held in Hangzhou
On October 25, the openEuler Meetup was held in Hangzhou, focusing on operating system security. The event brought together members from the openEuler Security Committee and Security Facility SIGs, as well as technical experts from various organizations to share their insights. The highlights included security governance strategies, innovative technologies, and practices of openEuler releases. Also, the openEuler user group in Hangzhou was established during the meetup.
Community Governance
Summary of the openEuler Technical Committee meeting – October
During the meeting, the openEuler Technical Committee approved the creation of the following projects:
Additionally, the committee approved the following changes to the openEuler SIGs:
Technical Progress
OneOS × openEuler: Dual-system AMP solution
Recently, China Mobile IoT's OneOS, in collaboration with openEuler, launched an innovative dual-system AMP solution. This solution utilizes multiple cores on a single chip to run different operating systems, such as Linux and RTOS, independently. It allows for efficient task allocation and processing, enhances system performance and stability, supports complex computing applications, and reduces hardware costs.
Repositories for new open source projects created in October
Developed by KylinSoft and maintained by the openEuler Storage SIG, storprototrace is a latency analysis tool for I/O events entering the iSCSI protocol driver layer based on libbpf. The support for LUN latency statistics will also be incorporated in the following updates. Compared to traditional tools like blktrace, storprototrace offers more precise measurement of I/O latency data at various stages of the iSCSI protocol driver layer. The upcoming LUN support will further enhance the tool's analysis capabilities, helping users optimize performance at different stages of LUN processing more efficiently.
Initiated by UnionTech and maintained by the SDS SIG, the glusterfs-dashboard project aims to provide GlusterFS users with a visualized interface for efficient operations. GlusterFS is a scalable network file system designed for data-intensive tasks such as cloud storage and media streaming. It integrates disk storage resources from multiple servers into a single namespace, enabling efficient resource scheduling and allocation. Since GlusterFS lacks GUIs, glusterfs-dashboard was designed to offer comprehensive interfaces and optimizations.
The innovative and efficient design of glusterfs-dashboard is not merely about replacing command-line operations with UIs, but instead introduces a complete cluster management strategy, covering node and storage device detection, host CRUD operations, volume management, and more. This new tool significantly enhances the efficiency of building and using GlusterFS clusters, while lowering operational and maintenance barriers.
AI-Enabled Compiler-Driven Program Optimization (ACPO) project has been created in the openEuler community and is expected to be included in the openEuler 24.03 LTS SP1 release. The ACPO is designed to integrate machine learning (ML) models into compiler frameworks and provides relevant tools to facilitate model usage in compilers.
Key features of ACPO:
Recommended by LinkedIn
The vLLM project, maintained by the openEuler AI SIG and developed by Large Model Systems Organization of UC Berkeley (UCB LMSYS), is an open-sourced high-performance inference framework for LLMs, supporting deployment of LLM inference services on various AI acceleration hardware. openEuler plans to add support for Kunpeng Arm servers and CPU-XPU heterogeneous inference acceleration. vLLM introduces advanced technologies like PagedAttention and dynamic batching for foundation model inference, and will continue to adopt the latest advancements in model acceleration.
With the increasing adoption of High Bandwidth Memory (HBM) in SoC packages for HPC/AI and other scenarios, the high failure rate of HBM chips poses challenges such as SoC or system board returns, higher maintenance costs, and reduced customer satisfaction. The hbm-predictor project, initiated by Xiamen Key Laboratory of Intelligent Storage and Computing at Xiamen University, aims to address these issues by achieving the following objectives:
libguestfs supports openEuler virtual machines
In Open Source Promotion Plan (OSPP), libguestfs' support for custom configurations on openEuler virtual machines was completed by Wang Guoquan (Gitee ID: wangguoquan) and was merged into the upstream community.
libguestfs is tools and a library for accessing and modifying VM disk images. The virt-customize command-line tool from libguestfs-tools can be installed on various Linux distributions and used to customize a VM or disk image by installing packages, editing configuration files, and setting time zones.
The virt-customize command has been enhanced based on openEuler 24.03 LTS, now supporting custom configurations for openEuler VMs in both raw and qcow2 formats.
openEuler Copilot System for OS tuning and O&M
As digital transformation accelerates, enterprise IT architectures face new challenges and opportunities. LLMs are being increasingly integrated into IT infrastructure as they rise. In response, openEuler is evolving towards native intelligence and has launched openEuler Copilot System. This platform empowers intelligent tuning and O&M for OSs, further advancing the community's AI-for-OS capabilities.
Hardware & Software Compatibility
By the end of October 2024, a total of 2,291 hardware and software products were certificated as compatible with openEuler. This includes 1,546 applications, 577 hardware components, and 168 OSs, among which, 46 applications, 8 hardware components, and 6 OSs were added to the compatibility list in October.
Security Bulletin
In October 2024, the community published 92 security notices and patched 255 vulnerabilities (10 critical, 64 high, and 181 others).
The following vulnerabilities have a significant impact and require special attention:
In the Linux kernel, the following vulnerability has been resolved:ipv6: sr: fix invalid unregister error pathThe error path of seg6_init() is wrong in case CONFIG_IPV6_SEG6_LWTUNNELis not defined. In that case if seg6_hmac_init() fails, thegenl_unregister_family() isn t called.This issue exist since commit 46738b1317e1 ( ipv6: sr: add option to controllwtunnel support ), and commit 5559cea2d5aa ( ipv6: sr: fix possibleuse-after-free and null-ptr-deref ) replaced unregister_pernet_subsys()with genl_unregister_family() in this error path. (CVE-2024-38612) – CVSS 9.8
Affected release:
openEuler-20.03-LTS-SP4
openEuler-22.03-LTS-SP1
openEuler-22.03-LTS-SP3
openEuler-22.03-LTS-SP4
openEuler-24.03-LTS
xterm before 375 allows code execution via font ops, e.g., because an OSC 50 response may have Ctrl-g and therefore lead to command execution within the vi line-editing mode of Zsh. NOTE: font ops are not allowed in the xterm default configurations of some Linux distributions. (CVE-2022-45063) – CVSS 9.8
Affected release:
openEuler-20.03-LTS-SP4
openEuler-22.03-LTS-SP1
openEuler-22.03-LTS-SP3
openEuler-22.03-LTS-SP4
You can find the security announcements on the openEuler official website and install the vulnerability patches in time.
Thank You for Your Support
That's all for this openEuler Monthly Bulletin. We would like to extend our gratitude to all members, developers, and contributors for their support and contributions.