Adding Linux kernel firmware signature support

a project by mcgrof

The Linux kernel already has cryptographic support for signature verification on data. This is used to digitally sign kernel modules at build time, and verify integrity and provenance at load time. Likewise the 802.11 subsystem on the Linux kernel had historically in parallel prior to Linux's own kernel signing facility implemented and integrated support to verify file integrity and provenance for use on the Linux regulatory database. The 802.11 subsystem's components that provide this facility are CRDA and wireless-regdb. CRDA and wireless-regdb technically are split up as two separate trees for development, wireless-regdb helps provide the 802.11 regulatory database while CRDA exists as a udev helper to feed to the Linux kernel a regulatory domain when needed. By using a regulatory database in userspace the Linux kernel is able to get updates for regulatory rules without requiring a rebuild. Linux distributions need the digitally signed regulatory.bin file from wireless-regdb tree and the CRDA binary from the CRDA tree. Linux distributions often combine both into one package, some distributions separate the two. The regulatory database is digitally signed by the wireless-regdb maintainer, and distributions that have have compiled in support for digital signature support on CRDA verify the integrity of the file before feeding a regulatory domain to the Linux kernel. Since the kernel module signing facility was merged upstream on Linux we could replace both CRDA and wireless-regdb distribution mechanism by adding cryptographic file signature verification support on Linux on the firmware_class module which provides the APIs to load firmware, and having the regulatory.bin file merged and updated through the linux-firmware tree.

Updated almost 3 years ago. No love.

Create working AppArmor profile for Chromium on openSUSE 13.2

a project by thardeck

I think AppArmor is a great tool to add an additional layer of security without much effort. While it is normally easy to create a profile for a simple server program it is much more complex in case of desktop applications.

Updated over 5 years ago. 1 hackers ♥️. Has no hacker: grab it!

Package tools for RC model

a project by adrianSuSE

Package open source tools used for radio controled models. Some of them needs patching, since they rely on pre-build binary blobs of open source tools. Also many of them bring the same libraries again.

Updated almost 8 years ago. No love.

Enlightenment Live CD

a project by simotek

Create a openSUSE 13.2 Live CD.

Updated almost 8 years ago. No love.

Tell me a story!

a project by rsblendido

Write an Android app for children between 5 and 7 years. The app contains a story that the child can read and interact with.

Updated over 5 years ago. 1 hackers ♥️.

Hack Week 12 Lightning Talks

a project by cschum

We will have a series of short lightning talks to present what we have accomplished at Hack Week 12. In Nürnberg this will happen on Friday 17th Apr at 12:30 as part of the lunch session in the all-hands area. Lunch is served at 12:00, so you have a bit of time to settle in and satisfy your immediate needs before we go into presentation mode.

Updated over 5 years ago. 1 hackers ♥️.

The future of systems management

a project by j_renner

A new web UI for saltstack, possibly the future of systems management.

Updated over 5 years ago. 3 hacker ♥️.

Build Time Source Service support

a project by adrianSuSE

OBS source services can currenlty run on the developer workstation and some of them also on the OBS server side.

Updated over 5 years ago. 1 hackers ♥️.

LogMeIn

an idea by cgrobertson

A browser extension/plugin that will use saved credentials from a local keyring (or a password safe program) to automatically log in the user to various online accounts.

Updated almost 8 years ago. 1 hackers ♥️. Has no hacker: grab it!

Continue continuous integration improvements in virtualization

a project by mlatimer

In previous Hackweeks, we've gone to warp speed in our virtualization CI testing through:

Updated over 5 years ago. 3 hacker ♥️.

Create packages for SLES 12 s390x in obs.

a project by ihno

Create packages for SLES 12 s390x in obs.

Updated over 5 years ago. 1 hackers ♥️.

Learn about video editing

an idea by ta-ro

Extract video snippets of two 90 minutes drum circles that we recently organized. Create a short video clip of 2-3 minutes length, using open source software.

Updated almost 8 years ago. No love. Has no hacker: grab it!

openSUSE image for Scaleway cloud (arm based and leveraging docker)

a project by pgonin

Scaleway is a newly opened Cloud based in France (for now) offering ARM based servers. Those are BareMetal SSD cloud servers. They offer a range of operating systems to pick from (Debian, Ubuntu, ArchLinux...) as well as 'application images' (Docker, ownCloud...) but no openSUSE image yet.

Updated over 5 years ago. 2 hacker ♥️.

Build and boot every commit in the kernel-source tree

a project by michal-m

Or at least, test as many of them as possible.

Updated over 5 years ago. 2 hacker ♥️.

Explore Clojure with Project Euler

a project by bkutil

As a part of this hackweek, I'd like to take a look at Clojure and use it to solve as many problems as possible from the project euler.

Updated over 5 years ago. 1 hackers ♥️.

Validation of QEMU storage integrity

an idea by bfrogers

Spurred along by a recently reported bug, I'm producing methods, analysis and hopefully a validation tool to ensure data integrity of our storage formats and caching modes for QEMU storage interfaces.

Updated over 5 years ago. 2 hacker ♥️. Has no hacker: grab it!

Discourse forum instance for internal use

a project by kpimenov

Discourse is a really great opensource forum, written in Ruby on Rails and Ember.js.

Updated over 5 years ago. 2 hacker ♥️.

Create a git project for VMDP

a project by kallan

Needing to learn git, I thought it would be a good time to clean up the code and create a git project for it.

Updated over 5 years ago. 2 hacker ♥️.

Rock n' Roll

a project by kwwii

Record two songs by the end of the week.

Updated over 5 years ago. 1 hackers ♥️.

updating rpms in docker containers

a project by jordimassaguerpla

The docker way of updating containers is to build a new image with the updated binaries and files, which creates a security concern.

Updated over 5 years ago. 1 hackers ♥️.

kGraft: allow to define safe place where the code can be switched in kthreads

a project by pmladek

kGraft allows to patch kernel at runtime. It implements a consistency model that allows to modify semantic of functions. e.g. fix lock order. For this, we need to find a safe place when a process/thread might start using the new code.

Updated almost 8 years ago. No love.

Learn Haskell on Project Euler problems

a project by mvidner

I am a beginner: I have read 1½ books on Haskell. I want to practice.

Updated over 5 years ago. 3 hacker ♥️.

Wireshark hacking & miscellanous fun

an idea by npower

I have no one vision of a project just some mish-mash random things I would like to explore for some hacking fun

Updated over 5 years ago. 1 hackers ♥️. Has no hacker: grab it!

SUSE Staff - Employee Directory with Ionic and Node.js

a project by vlewin

Ionic + AngularJS + Node.js (http://ionicframework.com/)

Updated over 5 years ago. 1 hackers ♥️.

static analysis

an idea by jirislaby

Various rests I have on my TODO on the bottom :).

Updated almost 8 years ago. No love. Has no hacker: grab it!

GCC Performance/Regression Dashboard

a project by marxin

For development purpose, it is very useful to have an infrastructure that can spot regressions based on commit base. Currently, our existing infrastructure runs mainly SPEC benchmark and is cumbersome from perspective of any further development. I would like to build a replacement that will combine buildbot framework with a custom web project (based on Django framework). The web project will be used both for submitting reports coming from a buildbot slave and for UI which will serve plots and data.

Updated almost 8 years ago. No love.

openSUSE audiophile Squeezeboxserver + Squeezeplay

a project by aginies

Squeezeboxserver

Updated almost 3 years ago. 4 hacker ♥️.

Use docker to improve testsuites of various of my projects

an idea by dmacvicar

For various projects I have, I would like to explore docker and compose as a way to improve the testsuites. Especially for:

Updated almost 8 years ago. No love. Has no hacker: grab it!

Elasto: Add Ceph RADOS Gateway support, extend file API and other improvements

a project by dmdiss

Elasto is a cloud storage client project that has been developed across a number of SUSE Hack Weeks.
It currently supports Amazon S3 and Microsoft Azure REST storage protocols, and includes a POSIX like file API.

Updated almost 8 years ago. No love.

work on the sTeam collaboration platform

a project by eMBee

open-sTeam is a platform for cooperative work and cooperative learning developed at the university of paderborn in germany. the platform is being used at http://societyserver.org/ and is being developed further.

Updated almost 8 years ago. No love.

Create evdev Event Recorder & Playback Driver

a project by eeich

The user space interface of evdev is pretty generic. All hardware abstraction is done in the kernel driver, device properties are mapped to a set of generic properties. The properties can be queried thru a generic interface only very few parameters are set from user space. In user space the evdev API is used by Xorg's evdev driver and libinput.

Updated over 5 years ago. 1 hackers ♥️.

Bootstrap Maven in OBS

a project by a_faerber

Apache Maven is a build tool used by many Java projects, which is incompatible with OBS in that it tries to download binary dependencies from the Internet. Several people have in the past years tried to somehow bootstrap Maven and failed.

Updated over 5 years ago. 2 hacker ♥️.

Learn how to use Robot Framework for Acceptance Tests

a project by gsanso

I'd like to learn how to use Robot Framework for doing Acceptance Tests of a cli application: Machinery.

Updated almost 3 years ago. No love.

Set up a PXEboot service for installation in Developlent Networks in the SUSE Nuernberg Office

a project by eeich

PXE boot is a quick and easy way to install any SUSE/openSUSE product on a machine. It doesn't require any boot media and today virtually any system is capable of booting using PXE.

The architecture team maintains a tftp server with boot loaders, boot loader configurations and installation images for a variety of architectures and products. Currently in the Nuernberg office this PXE boot service is only available in the network of the architecture team. Since tftp is unicast, the server should be reachable from anywhere in the internal network. What is missing is the information about the address of the tftp server and the image to boot from this server.

Updated over 5 years ago. 2 hacker ♥️.

Try to model check gfp_flags with cbmc

a project by vbabka

Paul McKenney's blog article inspired me to try apply his approach to kernel's memory allocation flags (gfp_flags) and how their combinations affect the decisions and actions taken during page allocation. Recent upstream development around these flags leads me to believe that the complexity is too high for me to reason about them and change the code without unintended changes in semantics. So it might be worth to let the computer do the hard work.

Updated over 5 years ago. 2 hacker ♥️.

Access Files in Machinery's System Descriptions Using FUSE

an idea by tgoettlicher

Machinery's system descriptions can contain files. These files are stored in the internal data format and are somewhere hidden in one of many tar balls. It's hard for users to access these files.

Updated almost 8 years ago. No love. Has no hacker: grab it!

Continue development of generic job server in haskell with primary focus on continuous integration

a project by yac

Continue development of generic job server in haskell with primary focus on continuous integration and later possibly as support tool for data analysis in semantic file storage server, software configuration engine, etc

Updated over 5 years ago. 1 hackers ♥️.

Scientific computing using GNU Octave

an idea by rliang06

Methods and algorithms for digital image processing and computer vision... using free software.

Updated over 5 years ago. 1 hackers ♥️. Has no hacker: grab it!

Squid in Prague`s R&D sea

an idea by mcaj

As result of last Hackweek we build a proxy server in our Prague office. The proxy server (base on squid) is caching only iso and rpm files from selected destinations.

Updated almost 3 years ago. No love. Has no hacker: grab it!

legacy full tree creation

an idea by oertel

some developers have been missing the old-style full trees for current products (sle12). try to reuse existing code to create these trees without wasting disk-space by using hardlinks

Updated over 5 years ago. 3 hacker ♥️. Has no hacker: grab it!

Tool to update images in an OpenStack Cloud

an idea by tbechtold

Currently there is an internal OpenStack instance (cloud.suse.de). Most of the images there are outdated so it's common that everybody just uploads a new image. Would be nice to have a tool which updates at least the most common images (SLE11&12, openSUSE, CentOS, Ubuntu, Debian, Fedora) automatically once a day. So ater spawning a new VM, there would be no need to first update (and maybe reboot) the machine or upload a new image before you can start to work.

Updated over 5 years ago. 3 hacker ♥️. Has no hacker: grab it!

Stream the garden ! Mesh network meets multimedia in motion :-)

an idea by jplack

Building a mesh network is not rocket science.

Updated over 5 years ago. 2 hacker ♥️. Has no hacker: grab it!

Bootstrap openSUSE for MIPS

a project by a_faerber

While in the past MIPS boards were either low-end PIC32 or found in routers running OpenWRT at most, Imagination themselves have recently released the Creator CI20 board (Ingenic, MIPS32) running Debian. And the Shield Pro (previously iGuardian) kickstarter project (Octeon-III, MIPS64) promises to become a playground for testing KVM hardware virtualization.

Updated over 5 years ago. 6 hacker ♥️.

Explore Clojure and ClojureScript ecosystem

a project by bergmannf

This project will focus mostly on getting to know the Clojure and ClojureScript ecosystem.

Updated almost 8 years ago. No love.

More Web Tech in Desktop -- A File Manager using nw.js

a project by VictorYang

The trend of adopting Web technology in Desktop is ubiquitous these days. Both as a learning project and a proof of concept, we'd like to

Updated over 5 years ago. 2 hacker ♥️.

Port openSUSE to Intel Galileo board (Quark X1000)

an idea by a_faerber

The Intel Quark X1000 SoC was said not to run the i586 version of openSUSE. An i486 or other variant of openSUSE would need to be built to run on the Galileo and Edison boards.

Updated almost 8 years ago. No love. Has no hacker: grab it!

Learning more about Docker and Linux Network Internals

a project by acho-novell

Try some things about Docker and Understanding Linux Network Internals

Updated over 5 years ago. 3 hacker ♥️.

summarize debug methods of libvirt

an idea by herbert0890

It's not easy to debug in libvirt. There are always many log output. So I want to summarize some debug methods of libvirt to make it an easy way.

Updated over 5 years ago. 1 hackers ♥️. Has no hacker: grab it!

Dive into the mechanics of tracepoint analysis in Linux Kernel

an idea by herbert0890

It's a good way to debug kernel. And I could take time in Hackweek to dive into the mechanics of tracepoint analysis in Linux Kernel. Hope I will have a fun!

Updated over 3 years ago. No love. Has no hacker: grab it!

Automate OMVF/shim/MOK tests

a project by gary_lin

I previously created a semi-auto test script(*) for MOK. The script controls the QEMU virtual machine a pre-setup image and performs two simple test cases. It's tedious to setup the images for every SLE and openSUSE. My goal is to write a script to automatically set up the virtual machines and images and do a full test. I would also like to set up a test for weekly-built OVMF. openQA might be a good reference.

Updated over 5 years ago. 4 hacker ♥️.