| Commit message (Expand) | Author | Age |
|---|
| * | Improve the from_port setting in various AWS security groups•••Thanks to schmie for looking in to this.
HEADmaster | Christopher Baines | 2019-08-28 |
| * | Add a name for the builder AWS instance | Christopher Baines | 2019-05-30 |
| * | Set --max-silent-time for the guix-daemon•••To avoid builds from hanging forever.
| Christopher Baines | 2019-05-30 |
| * | Add a new AWS backend using Amazon Machine Images•••The existing AWS backend uses system containers backed on to the AWS
hosted NFS service (EFS). This has some advantages, but also some
disadvantages.
Using the EFS service allows building a container on one instance,
with the state being held on the EFS, and then launching a new
instance to run the container. Using EFS also provides persistence, at
least beyond individual EC2 instances.
However, build performance when using EFS is poor compared with a
local store without the overhead of the network latency. Additionally,
the startup speed of the container running off EFS is slow compared to
local storage.
This backend doesn't use EFS, instead the Guix store sits on instance
storage. Rather than using a system container for a Mini Environment,
an Amazon Machine Image (AMI) is built instead. The fast local storage
makes builds faster, and using EBS storage for the Mini Envirnoments
as well as not having the overhead of starting Ubuntu, then starting
the container also makes startup faster.
| Christopher Baines | 2019-05-30 |
| * | Set environment variables when creating data snapshots•••This means that govuk data can access the data from S3.
| Christopher Baines | 2019-01-07 |
| * | Add Terraform configuration for the gcroot directories•••On the AWS backend.
| Christopher Baines | 2019-01-06 |
| * | Disable apparmor on the AWS backend | Christopher Baines | 2019-01-06 |
| * | Move towards using the S3 bucket data•••Rather than the govuk-puppet backup source on the machine.
| Christopher Baines | 2018-12-31 |
| * | Add guile-sqlite3 to the profile on the AWS backend machine | Christopher Baines | 2018-12-31 |
| * | Up AWS root volume sizes•••The PostgreSQL data takes over 70GB now, so up the overall root
filesystem size to 150GB.
| Christopher Baines | 2018-08-07 |
| * | Install openssl and nss-certs on the build machine•••In AWS. This fixes downloading custom revisions of packages.
| Christopher Baines | 2018-07-05 |
| * | Improve the public ip address handling•••Support multiple addresses to handle the GOV.UK PaaS, which has
multiple egress points.
| Christopher Baines | 2018-07-05 |
| * | Increase the number of build users•••For some reason, having more build users than allowed max-jobs isn't
sufficient in some cases. So, add some more.
| Christopher Baines | 2018-07-04 |
| * | Shorten the guix builder user name•••This makes it easier to see in tools like htop, top and ps, as they
truncate the user name.
| Christopher Baines | 2018-07-04 |
| * | Pass the terraform credentials to the remote state configuration•••This fixes the mini environment Terraform working, now that the
backend is protected by basic authentication.
| Christopher Baines | 2018-07-04 |
| * | Use bash from Guix when fetching revisions remotely | Christopher Baines | 2018-07-04 |
| * | Change the backend instance to a t2.xlarge•••The builds can be quite expensive, so the extra resource is useful.
release_10 | Christopher Baines | 2018-07-03 |
| * | Increase the resources for AWS mini environments•••From a t2.large to a t2.xlarge. Running every service requires close
to 16GB of memory.
| Christopher Baines | 2018-07-03 |
| * | Set GDS_GUIX_GOVUK_PUPPET_BACKUPS_DIRECTORY•••On the AWS build machine.
| Christopher Baines | 2018-07-03 |
| * | Copy the root profile when provisioning•••Then switch to just installing guile. Also, always create the
~/.guix-profile symlink, as this isn't stored on EFS and thus needs
creating everytime the machine is created.
| Christopher Baines | 2018-07-03 |
| * | Make the ~/.config directory during provisioning•••This ensures that it's owned by the ubuntu user.
| Christopher Baines | 2018-07-03 |
| * | Change the spot_type of the spot requests to one-time•••The setup for these machines is dependant on the Terraform
provisioners, so make the spot requests one time rather than
persistent.
| Christopher Baines | 2018-07-03 |
| * | Specify the mini_environment_up output for the AWS backendrelease_2 | Christopher Baines | 2018-06-28 |
| * | Ensure the log directory exists in the AWS backend | Christopher Baines | 2018-06-28 |
| * | Specify the disk size for the AWS build machine | Christopher Baines | 2018-06-28 |
| * | Increase the number of build users in AWS | Christopher Baines | 2018-06-28 |
| * | Switch to using the public AWS domain of the build machine•••Rather than the configured domain, as the corresponding SSH key
shouldn't change for the AWS domain (whereas it does for the
configured domain, if the machine changes).
| Christopher Baines | 2018-06-23 |
| * | Add support for managing Terraform AWS backends from the show page | Christopher Baines | 2018-06-23 |
| * | Support managing the libvirt backend from the show page | Christopher Baines | 2018-06-23 |
| * | Handle SSH keys via the database•••This makes it more explicit, and works around Terraform being
unpredictable when dealing with SSH agents.
| Christopher Baines | 2018-06-23 |
| * | Add an output to the libvirt mini_environment terraform•••This can then be used to easily determine if Terraform thinks there is
a VM running.
| Christopher Baines | 2018-06-21 |
| * | Share /var/cache and /var/lib with the host•••In the AWS backend. This means that they don't end up on a tmpfs and
using up RAM.
| Christopher Baines | 2018-06-03 |
| * | Give AWS mini environments 100GB of space•••To make room for data snapshots.
| Christopher Baines | 2018-06-03 |
| * | Change the AWS backend instance type to a t2.large•••Which is an increase in resources from the t2.medium. The 8GB of
RAM (an increase from 4GB), will come in useful when working with data
snapshots.
| Christopher Baines | 2018-06-03 |
| * | Change how the EFS File System is handled•••For the AWS backend.
Bring it in to the Terraform configuration for the backend, where
previously only the id was known. Also, alter the provisioning so that
it can handle an empty EFS file system.
This reduces the amount of manual setup required for AWS.
| Christopher Baines | 2018-06-03 |
| * | Improve the AWS backend•••This gets the AWS backend to the point where you can deploy the
backend, and then a mini environment without any actions outside of
the govuk-mini-environment-admin.
| Christopher Baines | 2018-05-03 |
| * | Improve the libvirt backend terraform config•••dns and dhcp apparently need to be specified explicitly. Also change
the network name to main.
| Christopher Baines | 2018-04-12 |
| * | Improve the support for Libvirt•••Separate out the backend things, like the virtual network, from the
mini environment. This makes it easier to have resources shared
between mini environments.
Also handle the deployment of this new backend related Terraform
configuration.
| Christopher Baines | 2018-04-12 |
| * | Provide the AWS access key and secret as variables•••To terraform.
| Christopher Baines | 2018-04-03 |
| * | Add backend controllers, models and views•••Also annotate existing models.
| Christopher Baines | 2018-03-29 |
| * | Add some govuk-guix related jobs•••And various other views and routes.
| Christopher Baines | 2018-03-29 |
| * | AWS related tweaks | Christopher Baines | 2018-03-29 |
| * | Add terraform backend and initial guix configuration | Christopher Baines | 2018-03-29 |
| * | Initial commit | Christopher Baines | 2018-03-29 |