20:02:10 #startmeeting 20:02:11 Meeting started Thu Feb 4 20:02:10 2010 UTC. The chair is poelcat. Information about MeetBot at http://wiki.debian.org/MeetBot. 20:02:12 Useful Commands: #action #agreed #halp #info #idea #link #topic. 20:02:19 I defer my clock to the more accurate collective clock. :) 20:02:25 #chair gregdek 20:02:25 Current chairs: gregdek poelcat 20:02:31 who is in the house? 20:02:36 * gregdek is here 20:02:44 * jforbes is here 20:02:48 * gholms takes a seat in the bleachers 20:02:49 * jboggs here 20:02:49 * Oxf13 20:02:56 I've asked smoser from Canonical to stop in and help answer any EC2-related questions we might have. 20:02:57 * jgreguske lurks 20:03:02 * huff 20:03:08 * ewan is mostly lurking/watching 20:03:43 A good crowd, hm? 20:03:45 Shall we begin? 20:03:47 * mikeburns listening 20:03:51 welcome everyone 20:04:02 #topic creating current fedora EC2 images 20:04:31 * poelcat thought the bot was supposed to do something with that but oh well 20:04:45 Some less than ideal news on that front 20:04:47 who can give a run down on where we are at today? 20:04:49 (Maybe that doesn't work here...) 20:04:49 LOL. Shall we start with the state of the current Fedora kernel? jforbes? 20:04:51 * lutter here 20:05:10 We are waiting on 2.6.32 to be released as an update for F12, it fixes a couple of issues 20:05:32 Unfortunately the 2.6.32.7 in updates-testing is not going to make it, and we are waiting on 2.6.32.8 20:05:34 unfortunately the first offering broke a number of things too 20:05:46 what's the story for rawhide ? 20:05:57 * mmcgrath is here but in another meeting as well 20:06:18 lutter: the rawhide kernel is daily snapshots from the linus tree still, I expect we can really look at it once 2.6.33 releases 20:06:22 * mattdm is here but fixing a security problem in another window. awesome. 20:06:46 jforbes: how far out is that? 20:07:36 jforbes: it would be great if we can have F13 images in EC2 as soon after F13 release as possible 20:07:44 poelcat: which? 2.6.32.8 for F12 will probably hit updates-testing in the next day or so. 2.6.33 proper, sometime this month 20:07:54 F13 is likely to be based on 2.6.33, then? 20:07:57 lutter: I would liek to see F13 images in EC2 concurrent to real release 20:08:05 gregdek: Yes 20:08:36 jforbes: ulimately i think we're looking for a clearer idea of when F12 might be EC2 ready? 20:08:40 jforbes: would be awesome 20:08:53 How much extra work is it to get the 2.6.32 stuff working in F12? Are we talking small incremental work, or big pain in the ass work? 20:08:57 Remember, we have to make kernels that we put there public for people to use, so I dont think we want to upload every rawhide kernel 20:08:58 F13 is topic #2 20:09:45 We also need to do the paperwork to get an AWS account with ACLs that let us upload Fedora kernels. 20:09:51 Is it that we essentially believe that the Xen issues are fixed in 2.6.32 generally, and we're just waiting for a stable enough version to test F12 stuff around? 20:10:02 jforbes: is there a list of steps other people could be working on to help get the F12 piece ready? 20:10:03 gholms: We've got that covered, actually. I'm working that in parallel with folks at Amaozn. 20:10:04 gregdek: Getting F12 kernels working is not too difficult with 2.6.32, but we need 2.6.32 to actually be an update. More a technicality, as the issues they are seeing with the current kernel are all about video and kms, not ec2 20:10:11 Oh, nice. 20:10:24 gholms: that's done, and we are ready to upload as soon as we have a good kernel to upload 20:10:46 jforbes: when do we think we'll have a good kernel? 20:10:47 poelcat: We still need to define the packageset for F12 (and F13) on what will be the official Fedora 20:11:13 who is working on defining the packageset? 20:11:15 Sounds to me like kernel stuff is just hurry up and wait, meanwhile we should be focusing on AMIs. 20:11:19 I'm still fuzzy on the tools involved 20:11:22 poelcat, I don't think anyone right now. 20:11:28 package set/ 20:11:29 eh? 20:11:35 poelcat: Hopefully by next week. Depends on what is the status for the video issues on desktops 20:11:36 Well... 20:11:36 that seems like an easy one right? 20:11:39 I'd start with a minimal image; maybe core and part of base. I've built some F12 images privately in the past. 20:11:39 ...yes. 20:11:43 enough to get booted, logged in, and add more packages 20:11:49 Oxf13, yes, I think that's easy. 20:12:02 Oxf13, we just need to identify tools and process and how it actually gets done. 20:12:10 I'd imagine a kickstart file 20:12:12 does anybody have a ks that they could post to the mailing list ? 20:12:13 gregdek: did anyone look at the rpath ami tools for setting up the ssh keys, etc? 20:12:17 since that's how every other image we create is managed 20:12:25 jforbes, no. 20:12:29 Here's my take: 20:12:35 lutter: aos ks: has ssh, yum, dhcp, selinux, etc. these were all requirements back in the day 20:12:39 A good AMI is more than just a spin. 20:12:43 when we started 20:12:52 yeah, I'd imagine that's a good start 20:12:52 A spin process is a necessary precondition, but not sufficient. 20:13:01 +1 to that, greg. 20:13:18 So we should probably: 20:13:27 1. Identify a good spin that we think would be a nice starting point; 20:13:51 (And maybe that's creating some kind of new default "web server" spin or something, some default that will be most beneficial to the most EC2 users); 20:14:13 2. Figure out what goes on top of that spin to make it a good out-of-the-box AMI. 20:14:14 I can see the debate now 20:14:34 Oxf13, I'm comfortable making massively wrong choices just to get us moving. :) 20:14:50 Sure, this can be a moving target. We just need to define a starting point 20:14:52 "Dear so-and-so, yes, you're right, these packages are wrong. Don't care. Moving on." 20:15:06 yep 20:15:26 gregdek: but we still need something to talk to amazon and set things up... We can't ship the binary ami tools 20:15:35 Is this the time to stand up some dumbed down "web server" spin, or not? 20:15:38 That's where euca2ools come in. 20:15:39 jforbes: Good point. 20:15:49 is euca2ools sufficient? 20:16:09 gholms: Yeah, we had also looked at the rpath tools, they are a plugin system as well 20:16:09 You are still required to install the Amazon ec2tools locally, aren't you? 20:16:23 gregdek: well, we don't have any such spin in existence right now, so we'd be creating it more than "propping it up" 20:16:31 gregdek: Required to? 20:16:36 Oxf13, you tell me. Good idea? Bad idea? 20:16:41 gregdek: only if your goign to rebundle 20:16:43 afask 20:16:43 gregdek: with the rpath tools, there is no requirement for the amazon ec2tools 20:17:06 What part of the ec2 tools needs to go on the VMs? 20:17:09 gregdek: it's no worse than any other idea. It's a bike shed. I'm fine with saying the default EC2 image is designed to start as a simple webserver. You can adjust from there as necessary 20:17:25 gholms, to do anything with EC2, you still need the EC2 client tools locally -- start an AMI, set up your keypair, etc. I don't think we can ever ship those tools, can we? 20:17:28 * Oxf13 thinks we're talking about two different topics at once. 20:17:32 Yep. 20:17:44 Oxf13 is right. 20:17:50 Can we talk package set for now? 20:17:53 #proposal EC2 image is a simple webserver at it's base, plus whatever we need for deployment in amazon. 20:17:59 Like it. 20:18:03 Can we put a name next to that? 20:18:08 * poelcat just created a document on gobby cloud-2010-02-04 ... lets add lists, requirements, etc. there 20:18:17 "Fedora Simple Web Server AMI". 20:18:20 I can provide a base ks file 20:18:26 based off aos 20:18:32 huff, I like. 20:18:34 Relevant to more fancy steps: anyone who is interested in making awesome Fedora AMIs but hasn't looked at turnkeylinux.org really should. 20:18:42 +1000. 20:18:48 They are doing it right, from what I hear. 20:18:48 fwiw, we have an httpd (+mod_cluster for jboss) AMI we build 20:19:21 OK, so we've got some proposed package sets. 20:19:27 How do we actually build an AMI? :) 20:19:38 thincrust, boxgrinder 20:19:45 thincrust is a good start. 20:19:59 those playing at home may not know what these terms are 20:20:03 Although thincrust hardcodes a couple big no-nos. 20:20:07 thincrust.net 20:20:18 gholms: i i can fix that 20:20:18 from the fedora point of view, we have two current tools at our disposal. livecd-creator and appliance-creator 20:20:19 * jforbes has only built them by hand, and with rBuilder (which won't work for us) 20:20:23 thincrust looks lovely to me. gholms, what are the nonos? 20:20:24 http://jboss.org/stormgrind 20:20:37 both use the same backend to basically make a chroot, install packages into the chroot, and do something with that chroot after the fact 20:20:45 either isofs, or loopback fs or whatever. 20:20:46 gregdek: Non-Fedora kernel and ec2-api-tools on the AMIs. 20:20:52 im currently adding some functalitu to AC now and should do a release soon if you have any extras send them my way 20:20:58 gholms, ah, right. 20:21:11 ec2-api-tools is a sticky question. 20:21:12 so what is thincrust? 20:21:22 don't really *need* ec2-api-tools on the image 20:21:25 thincrust = turn a kickstart into a VM with one command. 20:21:34 * gholms agrees with bobmcw 20:21:48 is thincrust in Fedora? 20:21:51 And thincrust also contains a "make this VM into an AMI" tool -- jboggs, is that basically right? 20:21:55 Oxf13, yes it is. 20:21:56 Oxf13: appliance-tools 20:21:57 yeah 20:21:59 appliance-tools is in fedora 20:21:59 ec2-converter, yeah 20:22:09 boxgrinder builds upon all of that, replacing some bits 20:22:09 thincrust == appliance-tools ? 20:22:16 Oxf13, basically. 20:22:32 appliance-tools is on part 20:22:36 creates teh image 20:22:37 the 20:22:56 So there's "generic vm" and there's "AMI". 20:23:06 raw and ami, yessir 20:23:22 most things can run raw, or be converted to an appropriate format from raw 20:23:24 One tool creates "generic vm" from kickstart, and another tool "transmogrifies raw into ami". True for both thincrust and boxgrinder? 20:23:27 there is an image and an ami is that image with meta-data 20:23:44 bobmcw, is boxgrinder in Fedora? 20:23:48 no, not yet 20:23:58 Can we add that as a TODO that we track? 20:24:04 An ami also has a custom fstab and init script. 20:24:17 bobmcw, what's the diff between boxgrinder and thincrust? 20:24:18 gregdek: boxgrinder is currently tied to jboss tech 20:24:23 so we need jboss in fedora also :) 20:24:36 bobmcw, hee hee! That's another meeting. :) 20:24:41 mgoldmann's the boxgrinder lead, I mostly observe these days, but... 20:24:42 bobmcw: what does boxgrider give us ontop of the thincrust tools, im just not fam with the project 20:25:13 the same general principles as thincrust, we do some things differently in our conversions (libguestfs to crack images) and to expedite building multiple types of VMs 20:25:30 ie, we build a base, then crack and add Ec2-specific bits, then do the same from the base for vmware-etc 20:25:44 since we assume we need to produce N types of images for any input 20:25:51 raw, ec2, vmware, etc 20:26:03 bobmcw, is boxgrinder java/x-platform? 20:26:04 handling things like disk format and other weirdness 20:26:15 * mgoldmann is back 20:26:16 boxgrinder is primarily ruby, and until recently was purely c-ruby 20:26:19 Ooh, that would make providing downloadable VMware images easy, too. 20:26:29 on top of the functionality, we also have a 3-tier arch on it 20:26:31 so eventually boxgrinder might be useful 20:26:37 boxgrinder-build as the main library of logic 20:26:41 Sounds like boxgrinder is getting more cycles... but has more deps to figure out. 20:26:43 http://www.jboss.org/stormgrind/projects/boxgrinder.html 20:26:43 -rest as a REST API server, as a service 20:26:51 but in the context of a stated goal of producing ec2 images, it seems that thincrust/appliance-creator is enough to get going 20:26:55 and -studio, purely in my head at this point, to help in the construction of images 20:26:58 akin to SuSE Studio 20:27:01 http://community.jboss.org/wiki/StormGrindBoxGrinderDocumentation 20:27:03 Oxf13, for now I think that's right. 20:27:14 bobmcw: your still using appliance-creator to build the base image 20:27:16 the servery bits are targetting TorqueBox at the moment 20:27:22 huff: yes 20:27:30 torquebox.org, the ruby appserver built on jboss AS 20:27:33 bobmcw, if boxgrinder is all ruby, where is jboss required? 20:27:39 Ah, ok. 20:27:42 that's the one thing we're using from thincrust tooling 20:27:54 gregdek: it's not required 20:27:54 and starting to use stuff like the jboss MQ tech to drive build farms of appliance building nodes 20:27:58 Hm! 20:28:11 Then we should really make it a priority to get boxgrinder into fedora. 20:28:16 but we could move to some other tech. just torquebox is my baby, so I push it where I can :) 20:28:18 * stickster comes in late and apologizes, just got off an impromptu meeting with mgr. 20:28:19 In parallel. 20:28:26 we just wanted a tool we could build images for cloud for JBoss projects, that's all 20:29:18 is there any way to resolve the weird thincrust/boxgrinder split ? It's very confusing to the outside world 20:29:49 lutter: thincrust seems to be winding down as a project 20:29:51 1. start with thinrust; 20:29:59 2. commit to moving to boxgrinder when we are able. 20:30:00 Make sense? 20:30:06 gregdek: +1 20:30:07 sure! 20:30:09 lutter: but it could also just be considered the foundation upon which we build, sorta 20:30:13 bobmcw: it's anybody's project for the taking 20:30:15 gregdek: that's my thought too 20:30:26 (well, huff or bkearney might have a different opinion) 20:30:27 I like thincrust, but it's soon to be deprecated, it seems. Still, we wanna start now. 20:30:44 no sounds good to me 20:30:45 gregdek: one thing we ship is a meta-appliance, so you can easily prop up a boxgrinder server on ec2 to spew out more 20:30:47 easy bootstrap 20:30:52 Clever. ;) 20:30:59 All right. 20:31:08 plus, pushing your AMIs to S3 is free/fast if you're already on EC2 20:31:08 So now that we know we're starting with thincrust for now... 20:31:14 ...what do we do, exactly? 20:31:30 e-mailed thincrust list the other day, asking if it was still active. Bryan Kearney replies "Yes, it is an ongoing concern." 20:31:37 if we've decided on a toolchain 20:31:41 Put together a script that transmogrifies spin into vm into ami automagically and see if it works? 20:31:50 then what we need to do is take the previous decision on the package set, and get it into a format appropriate for the toolchain 20:31:53 which should be a .ks file 20:32:07 * gholms wants a very minimal baseline 20:32:20 gholms: we've already decided that it's going to be a simple web server 20:32:27 Yeah... 20:32:33 there's a project goals question here.... 20:32:42 initially, simple web server is good... 20:32:43 gholms: @core, perhaps some of @base, and the httpd stack 20:32:45 bear in mind, that current thincrust ec2-converter doesn't work and it was building only 32 bit images earlier... 20:33:04 but is the intention of this project to eventually produce application-level appliances that just magically work out of the box? 20:33:21 or are we planning to work entirely below that level? 20:33:32 mattdm: I'm not sure about eventual. I am only looking at the first goal of getting usable useful recent Fedora offerings into Amazon EC2 20:33:50 that's an obtainable goal, with clear benefits 20:33:52 I would rather just provide "Fedora in the Cloud" and let users customize it. 20:33:57 just want to be explicit about that. 20:34:04 mattdm: once the base image is public, and the kernel is publically available, people can build there own images easily 20:34:11 mattdm, I think one step at a time. Initial goal is "usable default AMIs that don't suck and users can expand upon." 20:34:19 Everything must start from there anyway. 20:34:21 * mattdm nods 20:34:27 * gholms nods 20:34:35 s/there/their 20:34:48 ok, I think we've reached two conclusions, maybe 3 20:35:00 can we document this as we go in Gobby or using meetbot? 20:35:10 is meet bot in here? 20:35:12 poelcat, can you restate in meetbotspeak? 20:35:13 * poelcat does not have time to create notes or do recap today 20:35:17 Ah, ok. 20:35:18 Oxf13: Yep 20:35:22 Who knows meetbotspeak well? 20:35:25 is this a live meeting? 20:35:29 * gholms raises hand 20:35:30 Oxf13, yep. 20:35:33 Oxf13: Yep 20:35:34 gholms? 20:35:40 gregdek: if i understood what to capture... we've covered 10 different topics at once :) 20:35:44 I can give it a shot. 20:35:45 LOL 20:35:57 #info Initial goal of project is to provide Useful usable recent Fedora images in Amazon EC2 20:36:08 Oxf13, yep. 20:36:23 * gregdek waits for the full Oxf13 recap. :) 20:36:26 #info The initial image will consist of a simple webserver and the tools to add/remove packages from there, plus whatever is necessary for EC2 20:36:49 A JEOS-like appliance would be sufficient IMHO, at least for start. http://github.com/stormgrind/boxgrinder-build/blob/master/appliances/jeos.appl 20:36:57 #info The initial toolset to accomplish this will be thincrust/appliance-creator, however we will be looking at stormgrind in the future 20:37:02 The big open question is WHO and WHEN? 20:37:12 Ok, that's the end of my recapping 20:37:16 I guess that's two questions. :) 20:37:36 so action items! 20:37:40 At the very least we want something in time for F13. 20:37:49 I do believe huff volunteered to author the .ks file for the appliance 20:37:53 huff: is that correct? 20:37:55 I can delever a fist pass base ks with min packageset extra stuff in post for amazon spicific stuff, 20:37:58 yea 20:38:04 Maybe I'm naive but seems to me that if we get a decent ks, we can start making broken-but-instructive images almost immediately. 20:38:14 #action huff to deliver a first pass base ks with min packageset extra stuff in post for amazon specific stuff. 20:38:22 * jforbes has the kernel 20:38:23 FYI: we are in #stormgrind if you have additional questions about BoxGrinder 20:38:32 #action jforbes continues to wrangle a kernel for us to use 20:38:40 the big question I have in my mind right now 20:39:06 who is working on figuring out what tools we can or need to use in order to get the image to run in EC2, and to get the image uploaded to EC2 20:39:22 1. Uploading. 20:39:26 We have two accounts: 20:39:27 boxgrinder has this out of the box 20:39:33 euca2ools can bundle and upload. 20:39:40 mgoldmann: but is it using software that is acceptable for Fedora? 20:39:45 One "official" account that will be the home of all "official" spins. 20:39:47 Ruby? 20:39:49 same question for gholms 20:39:57 mgoldmann: do we rely on the ec2-tools though? 20:39:59 And one "scratch" account that we can use for all unofficial stuff. 20:40:01 is there anything we need that euca2ools can't do? 20:40:08 bobmcw: no 20:40:10 or just the right_aws gems? 20:40:10 lets take a step back here 20:40:10 Oxf13: euca2ools has passed approval 20:40:15 Is euca2ools in Fedora? 20:40:21 bobmcw: ah, yes, we are 20:40:32 in previous discussions it seemed that amazon required use of some non-free stuff to either create the image, or upload the image 20:40:34 can euca2ools set up the ssh keys, etc to a running instance? 20:40:37 bobmcw: bundling is done via ec2-ami-tool IIRC 20:40:42 jforbes: Yes 20:40:46 excellent! 20:40:48 is that not the case? 20:40:54 OK, I want to understand clearly. 20:40:55 jforbes: "set ssh keys" just means "pass a string to launch" 20:41:04 ec2 itself creates and holds your pubkey 20:41:25 euca2ools is a reimplementation implementation of the non-free amazon tools. 20:41:30 #topic image upload 20:41:34 bobmcw: Yeah, familiar with it, just making sure. We had a different tool at rPath, but it has a plugin system and a bunch of crap that is useless to fedora 20:41:45 mattdm: name-compatible? ec2-describe-instances and such? 20:41:46 #info We have two accounts with amazon 20:41:46 * mattdm is typing faster than he is thinking 20:41:50 Here's what I *think* I understand: Amazon has API hooks, and then they create a set of APIs, licensed in a funky way, that use those hooks. Is euca2ools a clean rewrite of those tools, basically? 20:41:53 iff so, then the boxgrinder stuff could use it 20:41:58 bobmcw: s/ec2/euca/ 20:42:04 'k, we could adjust 20:42:10 #info one "official" account for "official" spins, and one scratch account for unofficial stuff 20:42:22 gregdek: amazon publishes a SOAP WSDL API document 20:42:29 bobmcw: I can't provide symlinks without breaking ec2-ami-tools from rpmfusion. 20:42:31 along with a client capable of speaking to it 20:42:35 no not same names. s/ec2/euca/. 20:42:48 gholms: we can accomodate that sort change 20:42:52 bobmcw, ok, and euca2ools is written to that spec? 20:42:59 * gregdek gets it. I think. 20:43:01 gregdek: no idea, but I gotta assume so 20:43:08 just so we're clear... 20:43:11 bobmcw, lol. Can someone provide clarity there? 20:43:16 WSDL is like CORBA IDL 20:43:24 gholms: maybe symlinks in a subpackage? 20:43:44 $TOOL_PREFIX="euca" in our scripts will suffice if needed 20:44:06 euca2ools is A) all we will need to upload images, and B) non-reliant on anything non-free or non-redistributable, and C) not going to cause the wrath of amazon to fall upon us? 20:44:08 mattdm: It's still a file conflict; fesco would shoot me. 20:44:09 gregdek: I'm pretty ignorant of eucalyptus in general 20:44:23 Oxf13, +1. 20:44:30 We need a clear answer to that question. 20:44:32 gholms: other option is use of Alternatives for amazon tools 20:44:38 also, AFAIK, you need special tools to bundle and upload aki and ari's and to assioacite them 20:44:44 The only thing I know about eucalyptus is that tybstar is working there now :) 20:44:49 this may have changed 20:44:51 huff: Yes, and those tools are NDA 20:44:56 huff: now we're talking jibberish again :) 20:44:59 Oxf13: That's a possibility. 20:45:00 huff, that's ok, we can separate that out. 20:45:01 kernels and ramdisks 20:45:01 always 20:45:19 gholms: can we get an answer to my above question? 20:45:37 I believe that Oxf13 is the 100% critical path question. 20:45:45 * gholms scrolls up 20:45:48 Oxf13: what ? 20:45:50 That we must have a clear answer to before we can proceed at al. 20:45:58 euca2ools is A) all we will need to upload images, and B) non-reliant on anything non-free or non-redistributable, and C) not going to cause the wrath of amazon to fall upon us? 20:46:01 (Restating) 20:46:14 I think (c) is probably the only question 20:46:34 A: Yes for AMIs, I can't say for the rest 20:46:35 sounds like eucatools does (a) and (b) 20:46:37 I don't think C is a question, Amazon provides the API for a reason 20:46:45 If (a) and (b) are true, I can't imagine that (c) will be an issue. 20:46:45 B: completely FOSS 20:46:47 B: is true. 20:46:52 All right. 20:46:58 C: unlikely 20:47:03 and normal mortals don't get to upload kernels normally, do we? 20:47:07 Then we need to take an action to expedite getting euca2ools into Fedora. 20:47:10 perhaps we need a recap of terms 20:47:11 gotta do a dance with Bezos to get a new kernel up there 20:47:16 right now we were talking about an OS image 20:47:22 but there are also kernel/initrd images yes? 20:47:28 yes 20:47:29 Oxf13: yes 20:47:32 alright 20:47:36 Oxf13: AMI is the os image. 20:47:37 so correct me if I'm wrong 20:47:40 Yep. And that is a separate discussion. Only we will have the right to upload AKIs. 20:47:46 gregdek: The review is done; I'm working on fixing a problem with adding it to pkgdb. 20:47:49 but eucatools is only for uploading the OS image (sans kernel)? 20:47:52 Which is a tricky thing, tbh. 20:47:54 Oxf13: yes 20:47:55 Oxf13, correct. 20:47:57 Will it be possible to upload new kernels for _every kernel update_ from Fedora? 20:48:04 mattdm: kind of 20:48:05 mattdm: if we have friends in Amazon 20:48:06 #info eucatools is only for uploading the OS image. The kernel is handled differently 20:48:06 mattdm, that's our call. 20:48:12 Ok, so. 20:48:12 bobmcw, we do have friends at amazon. 20:48:17 'k 20:48:17 to recap 20:48:32 mattdm: the expectation is that security fixes will get updated to ec2, but not necessarily every kernel with bugfixes that don't apply 20:48:44 * gregdek notes that a former FPL works at amazon. :) 20:48:47 #info simple webserver ks -> appliance-creator -> eucatools == OS image in Amazon EC2 20:48:56 Oxf13, yep. 20:48:58 good enough for me. 20:49:04 gregdek: he works about 40 minutes from my house 20:49:13 gregdek: msw is there now too 20:49:18 Oxf13, buy that dirty ol' bastard a drink for me sometime. 20:49:21 Ok, with the above recap, I think we can close out the OS image portion of this discussion. 20:49:26 +1 20:49:27 smoser: how do you guys do this process? 20:49:35 which brings us to the kernel side of things 20:49:38 #topic kernel upload 20:49:50 reading 20:50:26 euca2ools is not capable of uploading a kernel. 20:50:33 Nor should it be. 20:50:35 so before we can even boot an OS image, regardless of the OS image, we have to have a kernel available. 20:50:45 how do we get a kernel available? 20:50:46 Sure it should. That's what account ACLs are for. 20:50:49 you have to use the blessed ec2-api-tools and ec2-ami-tools to do that. 20:50:51 Oxf13, correct. And right now, the only kernel up there is FC8. 20:51:01 kernel upload is fairly restrictive, though a simple process (made even easier with dracut) 20:51:03 so my thoughts are to generate the aki and ari in post of ks 20:51:04 we publish all kernels that are used in a build. 20:51:10 gholms, ok, maybe. But it our case, not. :) 20:51:16 gregdek: :) 20:51:23 we use buckets and names to differenciate: https://wiki.ubuntu.com/UEC/Images/NamingConvention 20:51:51 lets back up a second here. 20:51:52 not sure if that will work or not 20:51:59 Oxf13: I have the kernel tools, and will be writing something up to share with kylem and davej as well, to make sure kernels can be uploaded, and I am not the only one capable 20:52:24 to upload the kernel, you need a vmlinuz and initramfs right? Anything else? 20:52:34 You upload them separately. 20:52:42 Funky. 20:52:44 Oxf13: actually we specifically need a vmlinux, vmlinuz is not allowed 20:52:51 oh 20:52:52