== Verification of infoprovider.cloud-info-provider.centos7.x86_64-0.8.4 == === Ticket assigned === * [https://rt.egi.eu/rt/Ticket/Display.html?id=13781] === Cloud-info-provider repo and installation === {{{ [root@verification yum.repos.d]# pwd /etc/yum.repos.d [root@verification yum.repos.d]# wget http://admin-repo.egi.eu/sw/unverified/cmd-one-1.infoprovider.cloud-info-provider.centos7.x86_64/0/8/4/repofiles/INFOPROVIDER.cloud-info-provider.centos7.x86_64.repo }}} {{{ [root@verification yum.repos.d]# cat INFOPROVIDER.cloud-info-provider.centos7.x86_64.repo # EGI Software Repository - REPO META (releaseId,repositoryId,repofileId) - (13781,-,2443) [INFOPROVIDER.cloud-info-provider.centos7.x86_64] name=INFOPROVIDER.cloud-info-provider.centos7.x86_64 baseurl=http://admin-repo.egi.eu/sw/unverified/cmd-one-1.infoprovider.cloud-info-provider.centos7.x86_64/0/8/4/ enabled=1 protect=1 priority=1 gpgcheck=1 gpgkey=http://repository.egi.eu/sw/production/umd/UMD-RPM-PGP-KEY }}} {{{ [root@verification ~]# LC_ALL=C yum install cloud-info-provider [.....] Dependencies Resolved ======================================================================================================================= Package Arch Version Repository Size ======================================================================================================================= Installing: cloud-info-provider noarch 0.8.4-1.el7.centos INFOPROVIDER.cloud-info-provider.centos7.x86_64 141 k Installing for dependencies: PyYAML x86_64 3.10-11.el7 base 153 k libyaml x86_64 0.1.4-11.el7_0 base 55 k pyOpenSSL x86_64 0.13.1-3.el7 base 133 k python-beaker noarch 1.5.4-10.el7 base 80 k python-mako noarch 0.8.1-2.el7 base 307 k python-markupsafe x86_64 0.11-10.el7 base 25 k python-paste noarch 1.7.5.1-9.20111221hg1498.el7 base 866 k python-six noarch 1.9.0-2.el7 base 29 k python-tempita noarch 0.5.1-6.el7 base 33 k Transaction Summary ======================================================================================================================= Install 1 Package (+9 Dependent packages) Total download size: 1.8 M Installed size: 8.3 M Is this ok [y/d/N]: y [.....] Retrieving key from http://repository.egi.eu/sw/production/umd/UMD-RPM-PGP-KEY Importing GPG key 0x96B71B07: Userid : "Kostas Koumantaros (UMD Release Manager) " Fingerprint: 32ad 8d80 fa5a 89b5 3dc5 de93 6799 de16 96b7 1b07 From : http://repository.egi.eu/sw/production/umd/UMD-RPM-PGP-KEY Is this ok [y/N]: y [.....] Installed: cloud-info-provider.noarch 0:0.8.4-1.el7.centos Dependency Installed: PyYAML.x86_64 0:3.10-11.el7 libyaml.x86_64 0:0.1.4-11.el7_0 pyOpenSSL.x86_64 0:0.13.1-3.el7 python-beaker.noarch 0:1.5.4-10.el7 python-mako.noarch 0:0.8.1-2.el7 python-markupsafe.x86_64 0:0.11-10.el7 python-paste.noarch 0:1.7.5.1-9.20111221hg1498.el7 python-six.noarch 0:1.9.0-2.el7 python-tempita.noarch 0:0.5.1-6.el7 Complete! }}} {{{ [root@verification ~]# LC_ALL=C yum install bdii [.....] Dependencies Resolved ======================================================================================================================= Package Arch Version Repository Size ======================================================================================================================= Installing: bdii noarch 5.2.23-1.el7 epel 25 k Installing for dependencies: audit-libs-python x86_64 2.7.6-3.el7 base 73 k checkpolicy x86_64 2.5-4.el7 base 290 k expect x86_64 5.45-14.el7_1 base 262 k glue-schema noarch 2.0.11-1.el7 epel 33 k libcgroup x86_64 0.41-13.el7 base 65 k libsemanage-python x86_64 2.5-8.el7 base 104 k libtool-ltdl x86_64 2.4.2-22.el7_3 base 49 k openldap-clients x86_64 2.4.44-5.el7 base 188 k openldap-servers x86_64 2.4.44-5.el7 base 2.2 M policycoreutils-python x86_64 2.5-17.1.el7 base 446 k python-IPy noarch 0.75-6.el7 base 32 k setools-libs x86_64 3.3.8-1.1.el7 base 612 k tcl x86_64 1:8.5.13-8.el7 base 1.9 M Transaction Summary ======================================================================================================================= Install 1 Package (+13 Dependent packages) Total download size: 6.2 M Installed size: 16 M Is this ok [y/d/N]: y [.....] Installed: bdii.noarch 0:5.2.23-1.el7 Dependency Installed: audit-libs-python.x86_64 0:2.7.6-3.el7 checkpolicy.x86_64 0:2.5-4.el7 expect.x86_64 0:5.45-14.el7_1 glue-schema.noarch 0:2.0.11-1.el7 libcgroup.x86_64 0:0.41-13.el7 libsemanage-python.x86_64 0:2.5-8.el7 libtool-ltdl.x86_64 0:2.4.2-22.el7_3 openldap-clients.x86_64 0:2.4.44-5.el7 openldap-servers.x86_64 0:2.4.44-5.el7 policycoreutils-python.x86_64 0:2.5-17.1.el7 python-IPy.noarch 0:0.75-6.el7 setools-libs.x86_64 0:3.3.8-1.1.el7 tcl.x86_64 1:8.5.13-8.el7 Complete! }}} (!) For cloud-info-provider for OpenNEbula, package python2-defusedxml is necessary {{{ [root@verification ~]# LC_ALL=C yum install python2-defusedxml [.....] ==================================================================================================================================================================================================================== Package Arch Version Repository Size ==================================================================================================================================================================================================================== Installing: python2-defusedxml noarch 0.5.0-1.el7 INFOPROVIDER.cloud-info-provider.centos7.x86_64 45 k Transaction Summary ==================================================================================================================================================================================================================== Install 1 Package Total download size: 45 k Installed size: 187 k Is this ok [y/d/N]: y [.....] Installed: python2-defusedxml.noarch 0:0.5.0-1.el7 Complete! }}} === Cloud-info-provider configuration === {{{ [root@verification ~]# ls -l /var/lib/bdii/gip/provider/ total 4 -rwxr-xr-x 1 ldap ldap 310 dic 1 07:14 cloud-info-provider [root@verification ~]# cat /var/lib/bdii/gip/provider/cloud-info-provider #!/bin/bash cloud-info-provider-service --yaml-file /etc/cloud-info-provider/bdii.yaml --on-auth oneadmin:xxxxx --on-rpcxml-endpoint http://fedcloud-one.egi.cesga.es:2633/RPC2 --rocci-template-dir /opt/rOCCI-server/etc/backends/opennebula/fixtures/resource_tpl/ --middleware opennebularocci }}} {{{ [root@verification ~]# ls -l /etc/cloud-info-provider/bdii.yaml -rw-r--r-- 1 root root 2544 dic 1 07:32 /etc/cloud-info-provider/bdii.yaml [root@verification ~]# cat /etc/cloud-info-provider/bdii.yaml site: # Your site name, as in GODCB (if omitted or set to None, this value is # retreived from /etc/glite-info-static/site/site.cfg ) name: CESGA # Site url url: http://www.cesga.es # Production level #production_level: production # Two digit country code country: ES # Site Longitude longitude: -8.553147 # Site Latitude latitude: 42.875558 # Your affiliated NGI ngi: NGI_IBERGRID # Contact email general_contact: grid-admin@cesga.es # User support email user_support_contact: grid-admin@cesga.es # Sysadmin contact email sysadmin_contact: grid-admin@cesga.es # Security contacts email email security_contact: grid-admin@cesga.es # User support email bdii_host: 127.0.0.1 # User support email bdii_port: 2170 compute: # Total number of cores available total_cores: 16 # Total RAM available (GB) total_ram: 32 # Hypervisor name (e.g. KVM, Xen, etc.) hypervisor: KVM # Hypervisor version hypervisor_version: 1.5.3 # Middleware used (e.g. OpenNebula, CloudStack, OpenStack, etc) middleware: OpenNebula # Middleware version middleware_version: 5.2.1 # Middleware developer middleware_developer: OpenNebula Team # Service Production level (testing, candidate, production...) service_production_level: candidate # Service capabilities capabilities: - cloud.managementSystem endpoints: defaults: api_authn_method: X509-VOMS production_level: production https://fedcloud-cmdone.egi.cesga.es:11443: endpoint_url: https://fedcloud-cmdone.egi.cesga.es:11443 api_type: OCCI api_version: 1.1 # Templates are retreived automatically from rOCCI-server templates: defaults: platform: amd64 network: public # Images are retreived automatically by the endpoint images: defaults: platform: amd64 schema: http://fedcloud-cmdone.egi.cesga.es/occi/infrastructure/os_tpl }}} {{{ [root@verification ~]# service bdii start Starting bdii (via systemctl): [ OK ] [root@verification ~]# service bdii status BDII Runnning [ OK ] }}} === Testing === {{{ [root@verification ~]# sudo -u ldap /var/lib/bdii/gip/provider/cloud-info-provider dn: o=glue objectClass: organization o: glue dn: GLUE2GroupID=cloud,o=glue objectClass: GLUE2Group GLUE2GroupID: cloud dn: GLUE2ServiceID=verification.egi.cesga.es_cloud.compute,GLUE2GroupID=cloud,o=glue objectClass: GLUE2Entity objectClass: GLUE2Service objectClass: GLUE2ComputingService GLUE2ServiceAdminDomainForeignKey: CESGA GLUE2ServiceID: verification.egi.cesga.es_cloud.compute GLUE2ServiceQualityLevel: candidate GLUE2ServiceType: IaaS GLUE2ServiceCapability: ['cloud.managementSystem'] dn: GLUE2ManagerID=verification.egi.cesga.es_cloud.compute_manager,GLUE2ServiceID=verification.egi.cesga.es_cloud.compute,GLUE2GroupID=cloud,o=glue objectClass: GLUE2Entity objectClass: GLUE2Manager objectClass: GLUE2ComputingManager GLUE2ManagerID: verification.egi.cesga.es_cloud.compute_manager GLUE2ManagerProductName: KVM GLUE2ManagerServiceForeignKey: verification.egi.cesga.es_cloud.compute GLUE2ComputingManagerComputingServiceForeignKey: verification.egi.cesga.es_cloud.compute GLUE2EntityName: Cloud Manager for verification.egi.cesga.es GLUE2ManagerProductVersion: 1.5.3 GLUE2ComputingManagerTotalLogicalCPUs: 16 GLUE2ComputingManagerWorkingAreaTotal: 32 dn: GLUE2EndpointID=https://fedcloud-cmdone.egi.cesga.es:11443_OCCI_1.1_X509-VOMS,GLUE2ServiceID=verification.egi.cesga.es_cloud.compute,GLUE2GroupID=cloud,o=glue objectClass: GLUE2Entity objectClass: GLUE2Endpoint objectClass: GLUE2ComputingEndpoint GLUE2EndpointHealthState: ok GLUE2EndpointID: https://fedcloud-cmdone.egi.cesga.es:11443_OCCI_1.1_X509-VOMS GLUE2EndpointInterfaceName: OCCI GLUE2EndpointQualityLevel: production GLUE2EndpointServiceForeignKey: verification.egi.cesga.es_cloud.compute GLUE2EndpointServingState: production GLUE2EndpointURL: https://fedcloud-cmdone.egi.cesga.es:11443 GLUE2ComputingEndpointComputingServiceForeignKey: verification.egi.cesga.es_cloud.compute GLUE2EndpointCapability: ['cloud.managementSystem'] GLUE2EndpointImplementationName: OpenNebula GLUE2EndpointImplementationVersion: 5.2.1 GLUE2EndpointImplementor: OpenNebula Team GLUE2EndpointInterfaceVersion: 1.1 #GLUE2EndpointSemantics: #GLUE2EndpointSupportedProfile: GLUE2EntityOtherInfo: Authn=X509-VOMS GLUE2EndpointTechnology: None dn: GLUE2ApplicationEnvironmentID=http://fedcloud-cmdone.egi.cesga.es/occi/infrastructure/os_tpl#uuid_8b3f7a4d_29ae_5bd1_ada5_efedd1993643_default_61_verification.egi.cesga.es,GLUE2ServiceID=verification.egi.cesga.es_cloud.compute,GLUE2GroupID=cloud,o=glue objectClass: GLUE2Entity objectClass: GLUE2ApplicationEnvironment GLUE2ApplicationEnvironmentAppName: 8b3f7a4d-29ae-5bd1-ada5-efedd1993643@default GLUE2ApplicationEnvironmentAppVersion: 2017.06.29 GLUE2ApplicationEnvironmentRepository: https://appdb.egi.eu/store/vo/image/8b3f7a4d-29ae-5bd1-ada5-efedd1993643:5385/ GLUE2ApplicationEnvironmentDescription: EGI FedCloud clients rOCCI-cli installed on the Long Term Support version of Ubuntu support guaranteed until April 2019.Includes voms clients with the fedcloud.egi.eu preconfigured and rOCCI-cli tool to interact with the FedCloud services. User must upload his/her certificate into the VM in order to create the proxy.This Virtual Machine has been created by the EGI Federated Cloud using a minimal Ubuntu 16.04 installation with cloud-init contextualization. In order to log into the image a ssh key must be used default user name is ubuntu.See https//wiki.egi.eu/wiki/FAQ10_EGI_Federated_Cloud_UserHow_can_I_connect_to_a_VM.3F for more informationImage was built using packer with the configuration available at https//github.com/EGI-FCTF/VMI-endorsement/. GLUE2EntityName: http://fedcloud-cmdone.egi.cesga.es/occi/infrastructure/os_tpl#uuid_8b3f7a4d_29ae_5bd1_ada5_efedd1993643_default_61 GLUE2ApplicationEnvironmentComputingManagerForeignKey: verification.egi.cesga.es_cloud.compute_manager dn: GLUE2ApplicationEnvironmentID=http://fedcloud-cmdone.egi.cesga.es/occi/infrastructure/os_tpl#uuid_ubuntu_15_04___kvm___nonetcontext_89_verification.egi.cesga.es,GLUE2ServiceID=verification.egi.cesga.es_cloud.compute,GLUE2GroupID=cloud,o=glue objectClass: GLUE2Entity objectClass: GLUE2ApplicationEnvironment GLUE2ApplicationEnvironmentAppName: Ubuntu 15.04 - KVM - nonetcontext GLUE2ApplicationEnvironmentAppVersion: None GLUE2ApplicationEnvironmentRepository: None GLUE2ApplicationEnvironmentDescription: Ubuntu 15.04 - KVM - nonetcontext version None on None None None None GLUE2EntityName: http://fedcloud-cmdone.egi.cesga.es/occi/infrastructure/os_tpl#uuid_ubuntu_15_04___kvm___nonetcontext_89 GLUE2ApplicationEnvironmentComputingManagerForeignKey: verification.egi.cesga.es_cloud.compute_manager dn: GLUE2ApplicationEnvironmentID=http://fedcloud-cmdone.egi.cesga.es/occi/infrastructure/os_tpl#uuid_5175fae4_ada9_5964_95cd_af5202bf76b5_default_64_verification.egi.cesga.es,GLUE2ServiceID=verification.egi.cesga.es_cloud.compute,GLUE2GroupID=cloud,o=glue objectClass: GLUE2Entity objectClass: GLUE2ApplicationEnvironment GLUE2ApplicationEnvironmentAppName: 5175fae4-ada9-5964-95cd-af5202bf76b5@default GLUE2ApplicationEnvironmentAppVersion: 1.7 GLUE2ApplicationEnvironmentRepository: https://appdb.egi.eu/store/vo/image/5175fae4-ada9-5964-95cd-af5202bf76b5:5382/ GLUE2ApplicationEnvironmentDescription: DataMiner is an e-Infrastructure service providing state-of-the art Data Mining algorithms and ecological modelling approaches under the Web Processing Service WPS standard. This service aids in the application of statistical computing and data mining to a variety of biological and statistical related problems. Models hosted on Dataminer are distributed as-a-Service. Dataminer is able to exploit the heterogeneous resources offered by the D4Science e-Infrastructure to both retrieve and store data. The service allows users to import community developed algorithms written in several programming languages e.g. Fortran R Java etc. and is flexible in terms of algorithms plugability. GLUE2EntityName: http://fedcloud-cmdone.egi.cesga.es/occi/infrastructure/os_tpl#uuid_5175fae4_ada9_5964_95cd_af5202bf76b5_default_64 GLUE2ApplicationEnvironmentComputingManagerForeignKey: verification.egi.cesga.es_cloud.compute_manager dn: GLUE2ApplicationEnvironmentID=http://fedcloud-cmdone.egi.cesga.es/occi/infrastructure/os_tpl#uuid_2433ccee_a656_5671_96e2_942514e5ab11_default_65_verification.egi.cesga.es,GLUE2ServiceID=verification.egi.cesga.es_cloud.compute,GLUE2GroupID=cloud,o=glue objectClass: GLUE2Entity objectClass: GLUE2ApplicationEnvironment GLUE2ApplicationEnvironmentAppName: 2433ccee-a656-5671-96e2-942514e5ab11@default GLUE2ApplicationEnvironmentAppVersion: 1.9 GLUE2ApplicationEnvironmentRepository: https://appdb.egi.eu/store/vo/image/2433ccee-a656-5671-96e2-942514e5ab11:5383/ GLUE2ApplicationEnvironmentDescription: The gCube Smart Executor acts as a working node for a gCube Statistical Manager Service. Please refer to https//wiki.gcube-system.org/gcube/Statistical_Manager for more information. GLUE2EntityName: http://fedcloud-cmdone.egi.cesga.es/occi/infrastructure/os_tpl#uuid_2433ccee_a656_5671_96e2_942514e5ab11_default_65 GLUE2ApplicationEnvironmentComputingManagerForeignKey: verification.egi.cesga.es_cloud.compute_manager [.....] }}} === Finding world-writable files in the packages contents === {{{ [root@verification ~]# rpm -qalv | egrep "^[-d]([-r][-w][-xs]){2}[-r]w" drwxrwxrwt 2 root root 0 nov 5 2016 /tmp drwxrwxrwt 2 root root 0 nov 5 2016 /var/tmp }}}