Fun and games with sed and unterminated commands in Jenkins
So it took me ~3 hours to fix a Bug that should've taken ~10 minutes ...I was trying to mitigate an issue with one of our Alpine Linux-based images, where our IBM Container Registry (ICR) Vulnerability...
View ArticleTinkering with Rust - an underscore
Whilst tinkering with the Kata Containers kata-agent component, I was trying to work out what the underscore meant in this line of code: -let _ = spec.save(config_path.to_str().unwrap());Thankfully,...
View ArticleTIL: serialisation and deserialisation in Rust ...
Whilst digging through the source of the Kata Containers project, specifically the kata-agent and kata-agent-ctl code, both of which are written in Rust, I kept coming across references to serde...
View ArticleTinkering with Kubernetes via kubectl - some pearls of wisdom ( from other...
I filched these two gems from a much smarter person and am re-posting them here ...The first relates to Pod labels which, to be honest, I've not paid too much attention.The original context was to use...
View ArticleMore Kubernetes goodness ....
My uber-smart colleague has continued to post really rather useful kubectl tips and tricks, including this most recent one: -Get all the pods that are on specific node. Change the node name...
View ArticleAnd another one - the Kubernetes tips keep on coming - and I keep on sharing 'em
This one is rather useful, and again continues the use of jsonpathGet the name of the all the nodes and their corresponding InternalIP address.kubectl get nodes -o jsonpath='{range...
View ArticleAnd there's more - kubectl and jsonpath FTW
Again, from my ever-generous colleague: -Get all the pods that are using specific configmap. Change the configmap name according to your requirement in...
View ArticleMore K8s insights using kubectl
From my IBM colleague: -Get the name of the all the nodes’ name, os image, os architecture, pod cidrs, internal and external ip addresskubectl get nodes -o...
View Articleskopeo - policy says "No"
I'm playing with skopeo on Ubuntu 20.04, having simply copied the binary from one box to another ...Having validated the binary: -which skopeo/usr/bin/skopeols -al `which skopeo`-rwxr-xr-x 1 root root...
View ArticleKata Containers - Building a Pod Sandbox image and QEMU says "No No No"
As ever, I'm tinkering with Kata 2.0, currently helping a friend build the Pod Sandbox image using the Image Builder tool.Specifically, the command:...
View ArticleMunging Dockerfiles using Bash and Jenkins
Whilst trying to mitigate an issue with a Docker image, in order to remediate a pair of CVE: -CVE-2021-3711CVE-2021-3712I needed to ensure that the latest version of openssl was being used.Now this...
View ArticleReminder - Apple Time Machine - where are your logs ?
Want to see what Time Machine is doing ?If so, run the following Terminal command: -printf '\e[3J'&& log show --predicate 'subsystem == "com.apple.TimeMachine"' --info --last 6h | grep -F...
View ArticleClik here to view.
Apple TV - subtitles on
In the context of a previous post: -Apple Remote - tell the telly to turn the heck off !I had a similar requirement - to have Apple TV show subtitles whilst watching Discovery+The answer ? Simples...
View ArticleKata Containers - spell checking the docs
I'm working on a change to some of the Kata Containers documentation, and hadn't - until today - realised that the project has a rather neat Spell Check tool that runs against documentation e.g. that...
View ArticleGitHub Copilot for VSCode Might Make Coding Easier
Saw this over on @podfeet's blog: -GitHub Copilot for VSCode Might Make Coding EasierFor reference, @podfeet, aka Allison Sheridan, is the host of a number of podcasts, including NosillaCast,...
View Articleopenssl - Get your subject right
I'm tinkering with OpenSSL to create a Certificate Authority, server keys/certificates and client keys/certificates and keys.Having done all of this, I was then looking to verify the server's...
View ArticlePSA: Runbooks for K8s, Linux, networking etc.
This surfaced in my Twitter feed earlier : -Runbooks for K8s, Linux, networking etc.including: -KubernetesLinuxNetworkingetc.
View Articleetcd - Today I learned ...
I've been tinkering with the most recent version of etcd namely 3.5.0 recently, having built it from their GitHub project.My initial and main requirement was to test etcd with SSL/TLS, specifically...
View ArticleAnd there's more - munging base64 in JSON for etcd
Following on from my earlier post: -etcd - Today I learned ...I dug into jq more, and found this: -base64 decoding function #47specifically this comment: -As this is showing up on Google a lot, and...
View Articleetcd - base64 isn't the only way
Having written: -etcd - Today I learned ... And there's more - munging base64 in JSON for etcdI forgot to mention that base64 isn't the only way to write to / read from etcd ...The encoding is required...
View Article