1 |
On Sun, 15 Feb 2015, Rich Freeman wrote: |
2 |
|
3 |
<snip> |
4 |
|
5 |
> Then you have the core infra. This is stuff where infra spends the |
6 |
> bulk of its time. As I understand it some of the hardware is |
7 |
> Gentoo-owned, and some of it is owned by sponsors who provide infra |
8 |
> access to it. Almost all of this stuff has a sponsor providing |
9 |
> hosting/network/power/etc, and generally if a disk dies or whatever it |
10 |
> ends up being an employee of a sponsor or such who swaps stuff out for |
11 |
> us (perhaps with us sending them the hardware to swap with). |
12 |
> Sponsor-provided stuff tends to have the bulk of the costs paid by |
13 |
> sponsors. Gentoo-owned stuff tends to have the money come from |
14 |
> Gentoo, which comes from our many donors (lots of individuals, and |
15 |
> Google Summer of Code is a big source of income I believe even after |
16 |
> expenses). Recently Gentoo has been kicking in for some of the costs |
17 |
> at one of our sponsors, but they kick in a fair bit themselves. |
18 |
> |
19 |
> So, quite a bit of labor comes from volunteers. However, the "paid |
20 |
> for" bit largely comes down to our sponsors, augmented by numerous |
21 |
> small donations from within the community. |
22 |
|
23 |
> All that said, I honestly don't consider the risk of one of our |
24 |
> sponsors "censoring" us is all that likely unless Gentoo as a |
25 |
> community really got out of hand (such that being associated with us |
26 |
> were damaging to their reputations). The more realistic risk with our |
27 |
> model is that individual sponsors can come and go - maybe a sponsor |
28 |
> gets bought out or goes out of business or just is having hard times |
29 |
> and can't afford to support us any longer. This happens on occasion, |
30 |
> and obviously we try to be gracious about it since they ARE donors |
31 |
> (usually they work with us on migration too). However, my sense is |
32 |
> that most/all of our infra is hand-built servers running on bare |
33 |
> metal, which means that moving services around involves a lot of |
34 |
> labor. It isn't like copying a disk image to a new VM provider and |
35 |
> cutting over DNS, let alone something like puppet/chef/ansible. |
36 |
|
37 |
The infra team maintains an internal wiki for our job. Our systems are |
38 |
installed from an infra built stage4, following some docs, but this is |
39 |
done by different people over time. |
40 |
We do rely "heavily" on two configuration management systems. The older |
41 |
one, cfengine, has been in use for many years. Sometime ago we started |
42 |
migrating to puppet. We've currently still migrating services to puppet. |
43 |
We use some git repositories for specific areas such as dns or for our |
44 |
infra overlay. |
45 |
|
46 |
> As we build out new infra services (whether they be git, gitlab, or |
47 |
> whatever) it would be really nice if the server configs (minus |
48 |
> credentials) could be open. That would make it far easier for others |
49 |
> to contribute to them, automate their deployment, and so on. There |
50 |
> really shouldn't be any reason that somebody shouldn't be able to set |
51 |
> up their own gentoo.org with everything but the domain name. Sure, we |
52 |
> won't get there overnight, but it is a direction that makes sense. We |
53 |
> just don't have the manpower to be excluding potential contributions. |
54 |
|
55 |
We're already using cfengine / puppet for this. We need to review / split |
56 |
service definitions before we can make it public, though. |
57 |
|
58 |
Regards, |
59 |
Jorge Manuel B. S. Vicetto |
60 |
Gentoo Developer |