Articles from Josh Berkus

Project Atomic in GSOC 2016

Project Atomic will be participating in Google Summer of Code for the first time this year. So if you are a student, consider spending your summer (or winter in the Southern hemisphere) hacking on container technology. If you know a student, encourage them to apply.

We are participating as part of Fedora, so specifically we’re looking for work on any or all of the projects which are part of Fedora Atomic Host. We have a list of ideas on our GSOC Page, and more detail on the Fedora GSOC Ideas wiki page. But, of course, you may have even better ideas for an interesting project!

Read More »

Projectatomic.io Running in Atomic App

Since Atomic App has released version 0.4.2, I decided it was past time to make the atomic-site into an Atomic App instead of using a shell script that wraps Docker to test it. The new setup is a big improvement, and a useful guide to Nuleculizing your own apps.

As you know, the purpose of Atomic App and Nulecule is to give you a provider-agnostic way to specify multi-container applications and orchestration metadata that stays with the application image(s). Eventually, this will allow for single-command deploys of even large, scalable apps involving many containers. For now, it enables us get rid of some hackish shell scripting around Docker in our atomic-site test setup.

Read More »

GSOC Atomic, Cockpit Students Selected

The students have been selected for Google Summer of Code 2016. Through the Fedora Project, Project Atomic has three students who will be working on projects this summer:

We are very excited to be participating in...

Read More »

Building a Sub-Atomic Cluster, Part 1

While a lot of people use Atomic Host and OpenShift on public clouds, one of the ideas behind Project Atomic is to enable you to create your own container cloud. So for both testing and demos, we needed a container stack on real hardware, letting us test things like bare-metal deployment, Foreman integration, power-loss failover, and high availability in general. And this cluster needed to be small enough to bring with us to events. Given that, introducing the Sub-Atomic cluster:

picture of minnowboard cluster

Read More »

Building a Sub-Atomic Cluster, Part 2

I’m continuing to kit out the Sub-Atomic Cluster, in the process it’s received some upgrades. Thanks to John Hawley of the Minnowboard Project at Intel, I now have a nice power supply instead of the tangle of power strips, and in a couple days I’ll also have more SSD storage. You can see here that one node is in a nice blue metal case: that’s Muon, which we’ll be raffling off at DockerCon. Come by booth G14 to see the cluster and for a chance to win the Muon!

picture of minnowboard cluster

While I’m waiting for those, though, I might as well get this set up as a proper Kubernetes cluster. Ansible is my tool for doing this.

Read More »

Live Demos at Red Hat Summit 2016

If you’re at Red Hat Summit, you might want to come by the Atomic Pod in Community Central and see the Sub-Atomic Cluster. More usefully, we’ll be having a series of live demos by various contributors to the Atomic suite of projects, including:

  • Tuesday, 12:45pm: Using Cockpit to manage Kubernetes and Registry with Stef Walter and Peter Volpe
  • Tuesday, 4:45pm: Fully automated configure of Kubernetes...
Read More »

Origin on Fedora, Part 1

This week was the Fedora Cloud Working Group’s Activity Day (FAD), where a dozen of us got together to work on the project’s adoption and innovation in the public and private cloud sectors. Discussions and decisions there covered a range of topics, including Fedora Atomic Host, public cloud images, Vagrant improvements, and automated testing of cloud base images, Atomic and container images. You’ll be seeing a bunch of changes resulting from this over the coming months.

One topic came up which is going to pretty much eat my time for at least a week, though: we don’t yet have a working, easy-to-deploy download of OpenShift Origin on Fedora Atomic Host. Clearly, we need to fix this; my goal is to have something working by this time next week, for DockerCon.

Read More »

Subatomic cluster install with Kickstart

Look, new case! 3D printed, thanks to Spot Callaway.

new subatomic cluster

In my previous install of the Subatomic Cluster, I simply did the manual Ananconda install. However, since this cluster is for testing, I wanted a way to re-install it rapidly so that I can test out various builds of Atomic. This time, I was installing CentOS Atomic so that I could test things out on CentOS Atomic Continuous.

I also wanted...

Read More »

Fedora Atomic 25 released

Fedora 25 has been released, including Fedora Atomic 25, the latest build of Fedora’s container platform. Among the features added in this build are:

You can install Fedora Atomic 25 by any of the various methods listed on the GetFedora Atomic page. You can also upgrade an existing server to Atomic 25 from version 24:

-bash-4.3# rpm-ostree status
State: idle
Deployments...
Read More »

Important Notice for Users of Kubernetes on Fedora Atomic

UPDATE: This issue has been resolved. Please see the update blog post

One of the features of the Fedora Atomic Host 25 release was decoupling Kubernetes from the base ostree for Atomic (this is true of the current CentOS Atomic Host as well). That is, Kubernetes is no longer in the base install, you need to add it in as system containers and/or an overlay. This is a step forwards for Atomic...

Read More »

Kubernetes is back in Fedora Atomic 25 base

TL;DR: If you are a production user of Kubernetes on Fedora Atomic Host, you can now upgrade to Fedora Atomic Host 25. Kubernetes 1.4 is part of the base image now.

Per our previous announcement, we wanted to make a change to Fedora Atomic Host, and in concert with the Kubernetes community move to an entirely containerized install of Kubernetes, which would make it easier for users to choose their...

Read More »

Fedora Atomic March 1 Release and Security Fix

The latest Fedora Atomic Host bi-weekly release now available. Per the prior Fedora Atomic blog post, OSTree updates and biweekly releases are now fully synchronized. We have also added latest links to make downloading the most current version simple.

As this release contains a security update, users of Atomic Host are urged to update their systems as soon as they can. It fixes CVE-2017-6074: DCCP double-free vulnerability.

Read More »

Fedora VFAD about Container Guidelines

The Fedora Atomic Working Group had our second Virtual Fedora Activity Day (VFAD) last Friday in order to resolve a number of issues and policy questions with the Container Guidelines. Our decisions will be of interest to anyone submitting software to the Fedora Layered Image Build Service (FLIBS), as well as anyone who runs their own public open source registry. Among those we discussed were versioning, labeling requirements, help files, volumes and systemd in containers.

Read More »

Fedora Atomic April 18 Release

A new Fedora Atomic Host update is available via an OSTree commit:

Commit: 9f0b576461f4baa2b5749003a8628fbf0a456942f37e17a9ceabdb29fc014b0e
Version: 25.108

This release replaces the scheduled release from last week that was delayed due to a kernel regression. We plan to return to our regularly scheduled release process by performing a release next week as well.

Read More »

Fedora Atomic April 26 Release

A new Fedora Atomic Host update is available via an OSTree commit:

Commit: 3492546bc1ef6bca1bc7801ed6bb0414f90cc96668e067996dba3dee0d83e6c3
Version: 25.113

This release is only a week after the last release, because we are returning to our regular release schedule. It also fixes CVE-2017-5461, a critical vulnerability in NSS, so all users should upgrade their hosts and container base images as soon as reasonable.

Read More »

Installing One Big Volume with Overlay2

One of the major benefits of the overlay2 filesystem for Docker is that you no longer need to have a separate storage volume for your Docker containers, images and volumes. This means that you don’t need to try to decide how much free space you need in the root FS as opposed to how much you need for containers; you can just create one big volume to fill up the disk.

Since overlay2 is fairly new, though, we’ve chosen to install a separate Docker volume by default on Fedora 26 Atomic Host. This lets users switch back to devicemapper if they run into some kind of issue with overlay2. However, if you’re installing a new dev system, you might want the ease-of-management of having one big volume.

Read More »

Fedora Atomic May 15 Release

A new Fedora Atomic Host update is available via an OSTree commit:

Commit: 3fd888c674c6d69907eabc665103341e01ebe3a04c3876af6cac673b0bf43662
Version: 25.122

Unfortunately we had some release engineering hiccups last week. Which caused us to not have a release candidate with all the fixes we needed until Friday. We will get back on track next week.

Notable updates are the atomic CLI, ostree and rpm-ostree.

Read More »

Fedora Atomic May 23 Release

A new Fedora Atomic Host update is available via an OSTree commit:

Commit: cdd359911de49f3a8199ffd41a9894019562001d6cf9be66e1894c31b6fa1c66
Version: 25.127

This release returns us to our normal 2-week schedule after some delays with the last two releases.

Notable updates are the kernel, ostree, and selinux-policy.

Read More »