|
Stemcells, Garden, and rootfs: how are these related?
J K
hi,
I'm learning about Cloud Foundry's ideas of how to organize applications and how it works under the covers. At the moment I'm having a little trouble understanding the relationship between a few ideas in CF: "rootfs", "Garden", and "stem cells". Can someone explain: (1) their understanding of what these ideas are; and (2) how they are related? Thank you!
|
|
|
|
Re: Buildpacks Checksum Site for Release Validation
Danny Rosen
In the future we may consider implementing a json feed. If we did go
forward with this work, would you be interested in creating example CI / CD implementations as references? On Tue, May 17, 2016 at 10:30 PM, Gwenn Etourneau <getourneau(a)pivotal.io> wrote: Hi,
|
|
|
|
Re: Miniconda has been added to the Python Buildpack
Amit Kumar Gupta
Awesome!
On Wed, May 18, 2016 at 11:10 AM, Mike Dalessio <mdalessio(a)pivotal.io> wrote: Fantastic! Great work, Buildpacks team. I'm especially excited that this
|
|
|
|
Re: Miniconda has been added to the Python Buildpack
Mike Dalessio
Fantastic! Great work, Buildpacks team. I'm especially excited that this
toggle quoted messageShow quoted text
will allow data scientists to more easily run their applications on Cloud Foundry.
On Wed, May 18, 2016 at 1:56 PM, Danny Rosen <drosen(a)pivotal.io> wrote:
Over the last few weeks the Buildpacks team has experimented with
|
|
|
|
Miniconda has been added to the Python Buildpack
Danny Rosen
Over the last few weeks the Buildpacks team has experimented with different
methods of getting the Python buildpack working with various data science dependencies (ex: sci-py, num-py, sklearn). We believe we have found a solution that does not create significant challenges and fulfills the underlying goal of enabling these dependencies in a native CF application. We have included the addition of Miniconda into the newest version [1 <https://github.com/cloudfoundry/python-buildpack/releases/tag/v1.5.6>] of the python-buildpack and urge you to give it a try. To do so, include an environment.yml [2] in your app and cf push *or* try out this sample app [3 <https://github.com/ihuston/pydata_package_test>]. We're very excited about this addition and note that this is our first step towards providing the functionality. As always, we're interested in obtaining feedback and pull requests for improvement. [1] - https://github.com/cloudfoundry/python-buildpack/releases/tag/v1.5.6 [2] - http://conda.pydata.org/docs/using/envs.html#use-environment-from-file [3] - https://github.com/ihuston/pydata_package_test/
|
|
|
|
Re: Regarding UAA service
Siva Balan <mailsiva@...>
Hi Dax,
toggle quoted messageShow quoted text
Can I request to log your issue at https://forum.predix.io ? There are a lot more Predix focussed developers on that forum than this mailing list and you are more likely to get a faster answer there. Thanks Siva
On Wed, May 18, 2016 at 8:25 AM, Sree Tummidi <stummidi(a)pivotal.io> wrote:
Hi Dax,
|
|
|
|
Re: [abacus] Separate time-based from discrete usage metrics
Jean-Sebastien Delfino
Hi,
To fix the issue we decided to:metrics (the rest basically) 2. Store the time-based metrics in a separate DB(s)Your proposal looks good to me. Piotr, Kevin and Raj and I had several design discussions on this topic in the last few days and we've come up with a few more ideas on top of what you're describing here: - The distinction between time-based and discrete resource usage metering could also be understood as usage metering of a stateful vs stateless resource or metric. In the stateful case, we simply store the state of the resource instance in a separate DB like you're proposing (e.g. we store the fact that an app or a container is currently running, or has stopped), and update that state in place when it changes. Then to compute and report usage later on we just need to the current resource instance state from that DB. - We could continue to store the metrics in the current historical databases as well (on top of that new DB) to preserve the resource instance history as many users typically want to know their past usage. - Some of us were not sure if the time-based / discrete distinction should be at the resource type level or at the metric level... IMO your proposal to do that at the metric level is cleaner so I'm happy with it :) - The dataflow module will probably need a few minor code changes to detect the case where some of the output docs need to go to a separate DB (IIRC you or someone else also mentioned that on one of our scrums or on slack...) - Like you said, we may still need to maintain 2 DBs to purge old entries. If that's easier, we could also adjust the usage accumulator service and the dataflow module a bit to delete entries for inactive resource instances right away (e.g. when an app or container stops.) Thoughts? P.S. I'll add these comments to issue #88 as well to make it be easier to follow up there. - Jean-Sebastien On Thu, May 12, 2016 at 5:54 AM, Hristo Iliev <hsiliev(a)gmail.com> wrote: Hi,
|
|
|
|
Re: Regarding UAA service
Sree Tummidi
Hi Dax,
toggle quoted messageShow quoted text
This is happening because your SAML has not been set up properly. The email, first name and last name need to be mapped to attributes from the incoming SAML assertion. Please reach out to the Predix team so that they can set the correct attribute mappings. Thanks, Sree Sent from my iPhone
On May 17, 2016, at 7:22 PM, Dax Joshi <dax.joshi(a)tcs.com> wrote:
|
|
|
|
Re: Team
Layne Peng
but we all are saying same thing .. believe me after running multiple boshI cannot agree more!
|
|
|
|
Re: Buildpacks Checksum Site for Release Validation
Gwenn Etourneau
Hi,
Any json feed /api ? Can be nice and more easy to integrate with any CI/CD tool. Thanks On Wed, May 18, 2016 at 11:15 AM, taichi nakashima <nsd22843(a)gmail.com> wrote: Great,
|
|
|
|
Re: Buildpacks Checksum Site for Release Validation
taichi nakashima
Great,
toggle quoted messageShow quoted text
I hope cloudfoundry/cli will provide the same thing. cf. https://lists.cloudfoundry.org/archives/list/cf-dev(a)lists.cloudfoundry.org/thread/K3BEBY4A2WSUKS7YS5IF2UDQHHSU35A7/ Taichi Nakashima 2016年5月18日(水) 6:20 David Jahn <djahn(a)pivotal.io>:
Dear Cloud Foundry Users,
|
|
|
|
Re: Team
Ronak Banka
Hi Amulya,
toggle quoted messageShow quoted text
"believe me after running multiple bosh services managing marketplace" Are you using bosh releases for deploying service brokers or service deployments?? Thanks Ronak
On Wednesday, 18 May 2016, Amulya Sharma <amulya.sharma(a)gmail.com> wrote:
Thank You all .. for responding ..
|
|
|
|
Re: Team
Amulya Sharma <amulya.sharma@...>
Thank You all .. for responding ..
toggle quoted messageShow quoted text
my whole idea is to simplify Large Market place Service/Plan visibility Billing and offering self hosted or SaaS providers by taking market place as separate component to pair with Cloud Foundry but we all are saying same thing .. believe me after running multiple bosh services managing marketplace in a large org is kind of a messy jobs ..
On Tue, May 17, 2016 at 1:27 AM Layne Peng <layne.peng(a)emc.com> wrote:
Sorry for the name misunderstanding... We use the word "marketplace", but
|
|
|
|
Re: How are you using HAProxy in cf-release?
Aaron Huber
I've seen more than a few references over time to poor performance of TLS
termination at GoRouter vs. HAProxy - is this no longer the case? It's probably the only reason I'd be concerned about taking HAProxy out of the loop. Aaron -- View this message in context: http://cf-dev.70369.x6.nabble.com/cf-dev-How-are-you-using-HAProxy-in-cf-release-tp4924p4925.html Sent from the CF Dev mailing list archive at Nabble.com.
|
|
|
|
How are you using HAProxy in cf-release?
Shannon Coen
Hello,
To support the project wide goal of deploying CF as a collection of composable releases, rather than one, the CF Routing team has extracted Gorouter from cf-release into cf-routing-release. Of course, Gorouter is still symlinked into cf-release so it will be deployed with cf-release. Very few jobs remain in cf-release. The Routing team will also extract the route-registrar job in the routing-release. The last one the Routing team is responsible for is HAProxy. But I wonder, what purpose does this serve? Is it necessary to maintain this job for the new way of deploying CF? What use case does it currently fulfill, and could those use cases be fulfilled in a better way? If this is of interest, please take a look at the following document, and share your thoughts and feedback as comments. https://docs.google.com/document/d/11fHx-Bz7j50D_jHsNUoohFj3opKHC8gVudT4U44zlng/edit?usp=sharing Thank you! Shannon Coen Product Manager, Cloud Foundry Pivotal, Inc.
|
|
|
|
Buildpacks Checksum Site for Release Validation
David Jahn
Dear Cloud Foundry Users,
To help operators and users of Cloud Foundry establish a "chain of custody" for buildpacks, we have launched the following checksum site: https://buildpackverify.cloudfoundry.org This site provides a checksum for all cached buildpack release zip files (except for the java-buildpack). Whenever the buildpacks team generates a new buildpack release, we will immediately compute the SHA256 checksum of that file and upload it to this website. The site is hosted on a different repository from the main buildpack github repositories. It allows operators to validate that the zip file we produced is the same artifact that has been downloaded and installed. Additionally, if an operator wishes to further investigate the components of a buildpack, the "manifest.yml" in each buildpack root directory (for example, https://github.com/cloudfoundry/go-buildpack/blob/master/manifest.yml) provides a catalog of every third party component in the buildpack, a URL of that component's location, and an MD5 checksum of that component. We hope that this will assist people in auditing the source of their buildpack code! Cheers, Buildpacks Team
|
|
|
|
Re: Proposal: Reducing State in Service Brokers - Service Broker API Enhancement
Dr Nic Williams <drnicwilliams@...>
I think it's a great idea to help make SBs stateless if possible. I've even toyed with modifying service instance tags as the only place in CF API where arbitrary data can be stored (base64 encode the data and append to list of tags) - nasty but was only option. Didn't end up using that as it was just too nasty. Plus the service object didn't actually exist yet during service provisioning:/
toggle quoted messageShow quoted text
I like the idea of returning an arbitrary (to CF) last_op_id But I can imagine that SBs might want to return arbitrary blob of data rather than simple ID, and have CF return with that data. If you only gave me the ability to return a simple ID string then I would repeat the trick above - I'd construct a JSON object, convert with base64, and return that string as my "ID". So my ask is to allow the ID value to be an artbitrarily long string pleaze?
On Tue, May 17, 2016 at 9:02 AM -0700, "Alex Ley" <aley(a)pivotal.io> wrote:
Hello cf-dev, I work on a team at Pivotal that builds lots of service brokers. We are currently working on broker that backs onto BOSH and want to move towards making it stateless. We have written a proposal to enhance the CF Service Broker API to allow us to achieve this. We believe this will help other service broker authors as the principal transfers to most asynchronous backing systems. You can read the full proposal here: https://docs.google.com/document/d/1QzrG3d9-RgB7v5W44jnwgDuQWgqqPosASyCunLwfYF0/edit?usp=sharing Open to comments on the document and on this thread. Alex
|
|
|
|
Re: UX proposal App manifests improvements for Routes, open for review
Dr Nic Williams <drnicwilliams@...>
Follow on - a discussion/reference of this thread/proposal turned up in
https://github.com/cloudfoundry/cli/issues/418 (New issue In manifest, 'no-hostname' clobbers 'host' or 'hosts') Nic -- Dr Nic Williams Stark & Wayne LLC - consultancy for Cloud Foundry users http://drnicwilliams.com http://starkandwayne.com cell +1 (415) 860-2185 twitter @drnic
|
|
|
|
CVE-2016-3091 Diego log encoding vulnerability
Chip Childers <cchilders@...>
CVE-2016-3091 Diego log encoding vulnerability
Severity High Vendor Cloud Foundry Foundation Versions Affected - Diego-release versions 0.1468.0 through 0.1470.0 Description Due to how Diego handles breaking up large log streams on UTF-8 boundaries, it is possible to cause a denial of service on a Cloud Foundry installation with an app outputting malformed UTF-8 sequences. Affected Cloud Foundry Products and Versions Severity is high unless otherwise noted. - Diego-release versions 0.1468.0 through 0.1470.0 Mitigation Users of affected versions should apply the following mitigation: - The Cloud Foundry project recommends that Cloud Foundry Deployments running Diego versions 0.1468.0 through 0.1470.0 upgrade to Diego version 0.1471.0. CreditThis issue was identified by a Pivotal team and reported responsibly to the Cloud Foundry Foundation.
|
|
|
|
Removing nginx 1.8 from PHP Buildpack
David Jahn
The Buildpack team is planning to remove nginx 1.8 from the PHP Buildpack. 1.9 is currently the default version so this change will not affect default behavior.
The pull request for this change can be found at: https://github.com/cloudfoundry/php-buildpack/pull/147 We are opening this thread so that the community can provide any comments they may have on this proposed change. We are planning to merge the change in 2 weeks, on May 31. Thanks! Buildpacks Team
|
|
|