:
Blog
Latest Comments
Archives
Stats
About CIA.vc
Development
Hi folks!
Just a quick post for all the folks on google code: We have sane hooks now.
How does it work? The folks at google came up with quite an elegant system for allowing pretty much any commit hook, without them needing to run any custom code on their end: the HTTP POST hook.
Basically, whenever you make a commit, their system generates a hunk of easily-parsed text (in a format called JSON) representing commit information, and submits it to some webserver you specify via a HTTP POST.
You need to be the administrator of your google code project. Then, click on the Administer tab where you configure your project. This time, you need the Source page. There, on the bottom, you'll have a text field called Post-Commit URL. Enter the following URL:
http://cia.vc/deliver/simplejson/
That's it. All commits you make from now on should be reported to CIA.vc (with project name being what the project is called by google code).
From what I've seen, latency is pretty good, some 5-10 seconds from commit to IRC.
Once you've set this up, remember to turn off polling (or the email to our googlecode mail parser), since you'll get one notification per subsystem noticing that something happened.
Unfortunately, so far it is. However, their idea is quite a good one: This kind of hook does not need a lot of work on the server side, the JSON is easy to generate (aka "hack up") in pretty much any language, and it should extend nicely should some other VCS need different entries.
So if someone feels like writing a HTTP-POST hook for some popular version control system, they might come in useful. Maybe we can convince some other hosting providers to supply a similar system.
Oh no, another post within the same month! Horsemen spotted in the sky, flying pigs imminent!
Anyway, where was I...
Right, there's now a way to get commits from Google Code into CIA.vc that doesn't go through the hackish SVN poller. Read on for details.
As we all know, there's a new player on the block of public open-source hosting: Google Code. Apparently, as a whole bunch of people are using it, they do their stuff fair enough: SVN, wiki, bugtracking, downloads, the works.
Wait, no CIA.vc hooks? Nope. Back in the day with sourceforge and CVS, you could install your own hooks, so things worked. When sourceforge added SVN, people couldn't add their own hooks, but I gather the web config interface has a "CIA.vc hook" checkbox. But without hosting provider support, SVN users are out of luck when it comes to custom hooks.
That's why we added the SVN repository poller. It wakes up a few times an hour (or whenever any mail arrives on a special address) and scans the configured repository, checking if there were any new revisions since it last looked. If there are, it enters a new commit with the right data into the system. So usually you'll set it up with the default poll delay of 15 minutes (anything below what it can make, roughly a poll every 20-30 minutes with our load, gets silently upped to that interval) or, even better, subscribe the ping email address to your commit mailing list.
That works well enough, and produces excellent XML commit data, but it's a bit hackish - the polling is horridly inefficient, and I need to run yet another service on our poor machine. Also, it's sometimes a tad slow.
So I figured "If we already get the commit data from the mailing list, can't we use that somehow?" and resurrected an old set of scripts. What we can do now is pick up mail sent out by Google Code (via the "Activity Notifications/all subversion commits" field on the "project summary" pane of the "administration" tab) and try to parse the commit.
The results are not as fancy as the repository polling, those mails were meant for humans to read, not machines, after all. So I can't always figure out filenames, and since there's no unambiguous "end of Log message" tag I currently cut log messages at the first empty line.
But I think it's slightly faster than the polling method, and it's certainly more elegant. It's still not instantaneous, mostly because it seems Google's email machinery takes a minute or two. But if you want, use it! Simply change the mail settings (or mailing list) to send to "cia+googlecode@" instead of "ping+whatever@". (And turn off periodic polling, if you have it enabled, or you'll end up getting your commits twice)
Feedback is always welcome! (the nick I sign my posts with, at this domain; or just comment on the blog) We'll probably have a few corner cases I didn't catch, but with some work we should be able to turn this into yet another Good Way to get commits into CIA.vc!
Note to any google employee (especially the google code folks) reading this: I'm sure that when we work together, we can do better. Drop me an E-mail and I'll work something out. I'm a geek, so pretty much any method you come up with to pipe commits, I can handle. It's always nice to see your commit show up on IRC while your finger is still hanging over the enter key, and we should be able to make that happen.
Umm, yeah, that's right, I'm still here.
Sorry if we've seemed a bit unstable lately - we've had a couple of unexpected (and partly unexplainable) problems crop up, and while I take care of things whenever I see them come up, that seeing part could be improved somewhat 8)
Things should be looking better soon, though. I've worked a bit on infrastructure that'll allow me to notice problems earlier and better, as well as made sure I get (and read) information from all the pieces of the system when stuff goes boom.
On the hosting side, we have a very interesting lead that may see significant improvements to our system. I don't want to give out any details as long as I don't have anything solid, so I don't make anyone look bad by accident, but stay tuned to this channel for more information when we have it.
What else have I been up to?
I've gone and scrubbed our blog comment spam. I already disabled links in comments a while ago, to cut down on all those people who saw "cool, a blog with open comments" but didn't see the rel="nofollow" we put on all comment links. We still got a lot of idiotic comments, though, which I can only guess must be some kind of "Hey guys, here's a blog with open comments" magic strings in the spam community. Or something. Well, gone now.
So I'll just have to periodically scrub the comments. I don't want to take direct steps against automated comments just yet - if you've got an RSS reader that allows you to directly post comments, I applaud your ingenuity.
On the subject of spam, it seems someone got the idea to use the project pages for spamming. Let's hope that trend doesn't continue. I'd hate to have to set up a wikipedia-like army of "recent changes" monitors.
In what's probably our most important component, the IRC bots, I've tuned the freenode settings - they should connect much faster now when stuff is restarted, and fixed a bug that prevented them from properly connecting to EFnet. I hope I've also increased the general connect speed to any network, but we'll have to see how that goes next time it needs a restart.
What will I be working on?
Obviously, the hosting change I've hinted at above is going to take some working-out.
Also, we've had some interesting bugs with unicode / UTF-8 in commits. I muchly hope we're at the point where commits get through, no matter the charset, but I'm afraid we currently replace all 8bit characters with '?'. Pieces of the core don't work happily with unicode, we'll need to fix that.
The advent of distributed SCM's like git have seen an (almost) entirely new problem: Currently, most hooks take each commit pushed into the central repository and send out a notification about it. Normally, that's exactly what you want.
Things get a bit interesting if someone checked in from his vacation to deliver the 100 commits he wrote while away, and they take a machine-gun-march through the system. Or occasionally I see someone merging branches, and the hook script sending a commit for every merged commit. We'll have to change the hook scripts to detect this kind of thing and just say "push of 100 commits" or something. Stay posted, when I get such a script I'll put it up and tell everyone to use it ;)
I guess an alternative that might work for some people would be this: Instead of putting an on-push hook on the central repository, put an on-commit on each developer's repository - that way, you'll get instant notification what everyone is working on, and can ask him/her to push it up when it looks interesting.
Oh whee, that got much longer than I intended. I'd better stop and get some actual work done again now ;-)
As you may have noticed, cia.vc hasn't exactly set records in reaction times and reliability lately (error 500, anyone?). I'm one of the folks currently working behind the schemes to keep things up and running.
You may also be aware that CIA's original author and maintainer, Micah Dowty, has been fairly quiet lately and isn't working on it as much as he used to.
To squash the rumors, I'd like to state that these two things are not related ;-)
I'm one of the people who jumped in to do maintenance and code work. Some may know me as "BearPerson" from the freenode network or from the Source Mage GNU/Linux distribution.
Anyway, I'm afraid I haven't had much time to spend on code and mostly did maintenance lately ("Is CIA down?" - "Unlikely, let me see... Ah, it's knee-deep in swapspace, let me clean that up...")
However, I plan to spend some time on the code, especially optimizing and removing a few "walls" we're hitting currently.
So while the situation right now isn't exactly ideal, it's being worked on, and I hope that Sometime Soon we'll have a CIA.vc that's nicely responsive again even when there's a bunch of load on the system.
What is the problem right now?
Well, in a nutshell, it's one of scale. We've grown. I count 3582 projects in the stats, or 6639 counting sub-projects. Whenever I see the web part causing high load, I can count on seeing several search engines' web crawlers in the http logs.
While we should be able to cope with the load (only a couple of commits on average per minute), there's a bit of trouble when a "backlog" of requests temporarily builds up in memory and we end up escaping to swapspace, slowing down request processing and building the backlog even further.
So, while throwing more hardware at the problem would push out the wall further, I'm going to focus my time on making things work on what we have right now. Because they should. I'm a programmer, not a sysadmin.
I guess that's it for now. Please bear with us as we live through the current bumps in the road :-) And in the meantime, feel free to come into #cia on freenode with suggestions and problem notices, I'll be there.
To encourage collaboration, I set up a new mailing list and Google Code project for CIA. Development has been moved from the old subversion repository (at svn.navi.cx) to Google Code.
If you want to help with CIA development or administration, please use the new mailing list. Also, please use the new bug tracker :)
Christel of Freenode fame just posted a blog entry on the annoying retry-on-ban behaviour of CIA bots. It has some hints for Freenode users who find a rogue CIA bot in their channel. Banning the bot will cause it to periodically attempt re-joining. Quieting the bot (+q) and/or removing it using CIA's web interface are the recommended immediate solutions.
This is a long standing bug in CIA's bot daemon. It has a strong self-preservation instinct. If an action it attempts times out, it will retry. If it detects that it isn't in the channels it expects to be in, it will try to correct that. These were important features in making the bot network as robust as it is now, but these features are problematic when the bot encounters some server-side feature (like a ban, a channel key, or a redirection) that it doesn't understand.
Ideally, the bots need to understand these features and report them back to the CIA messaging daemon and the web interface in a useful way. The web interface for your bot should inform you that the bot has been banned, and give you as a user the opportunity to ask it to retry.
So, why hasn't this already been fixed? CIA is still a one-man show, and I don't have a lot of time to devote to it any more. In the four years or so since this service was first launched I graduated from college. I got a real job, a boyfriend, new hobbies. What little time I do feel like donating to CIA is often consumed by ongoing maintenance tasks: backups, cleaning up after crashes, acting as moderator, answering e-mail. There's a lot of work to do, and the backlog is growing.
I've been running CIA on my own and paying for it mostly out of my own pocket for quite a while now. I'm just concerned that this isn't sustainable. Unless more people start contributing to the project, I may be forced to discontinue it.
Part of the problem is that, while the CIA codebase is open source, CIA isn't a software project. It's a service. Open source services are much harder to manage than open source software projects. They require consistent and trustworthy dedication, and they require all developers/maintainers to share server resources.
That said, there are various roles you can take on in CIA right now that would be helpful. These range very roughly from easiest to hardest:
Casual supervisor.
Keep an eye on the server, via public monitoring methods (the Bot Cloud page, for example). Make sure it's smooth and responsive, and that the IRC bots aren't being abused. Report problems to a moderator.
Moderator.
Watch for abuse, especially abuse of the IRC bots. Take actions such as disabling accounts or forcibly removing bots. You will need a privileged CIA account.
Support Representative.
Answer e-mail about CIA, answer people's questions on IRC. Currently all the CIA email is going directly to me, so your first task would be to set up a mailing list for CIA inquiries.
Planner.
Where should CIA be going? How are people using it, and how should the project be evolving? How can we best structure the project to allow more people to contribute to its code and administration? You will need to do some research, both on the web and in CIA's codebase. You will probably want a privileged CIA account, for posting blog entries.
Server Admin.
Keep the server running smoothly. You'll need to understand how the various daemons in CIA interact, and you'll be responsible for keeping the machine as a whole running smoothly. Start out by experimenting on the development VM. When you're ready, you'll need SSH access to the primary server (cia-vm1).
Webmaster.
You'll be responsible for fielding feature requests and bug reports that deal with the web-based frontend for CIA. In your spare time, work on larger projects like transitioning the rest of the "old" web frontend (The front page, RSS feeds, stats pages) to run on the new system. You will be dealing mostly with the new web site codebase, which uses Django. Start this job by researching the existing CIA codebase and writing/testing patches using the development VM. When you're ready to deploy to the production server, contact a Server Admin.
IRC developer.
You will need to be skilled at producing robust and scalable networked applications, and you'll need a good understanding of the IRC protocol and CIA's requirements. CIA's bot server will need to be retrofitted or replaced in order to prevent abuse and improve scalability.
Core developer.
You'll need to understand the big picture of CIA's codebase, including the RPC daemon, the database, and the stats system. You should be experienced with SQL, but unafraid to get your hands dirty with lower-level data storage mechanisms when necessary. Core developers will be responsible for continued development and improvement of CIA's central message delivery and storage/retrieval mechanisms. Large projects in this arena include XMPP integration for publish/subscribe, improving scalability of the stats system, and implementing advanced message searching capabilities.
I hope this list inspires at least a few people to contribute. If you're interested, the best place to go is the #cia channel on irc.freenode.net. There is no development mailing list for CIA yet, but feel free to create one.
The best ways to contact me currently are IRC and e-mail, though I know I'm pretty far behind on dealing with CIA e-mail at the moment. (This is why the Service Representative job above is so important ;) I'll try to check my CIA mail more frequently, but the first few volunteers to join this project will need to be capable of working relatively independently. I don't know how much time I'll be able to devote to mentoring and bootstrapping. For CIA to be successful, we will need volunteers that are really motivated and passionate about the project.
Thank you all in advance for your continued interest in CIA. It is my hope that this service can continue operating far into the future with a true community of developers and admins backing it.
Due to re-routering and such at ye olde datacenter, CIA.vc is now on a new IP address: 208.69.182.149.
The old IP will continue to work for about a week, but if you have any old /etc/hosts entries or DNS caches, it's time to flush them now. Also, don't panic when the IRC bots start logging on from a new address now.
That is all.
I just posted a new release of the CIA Development and Small Deployment (DSD) virtual machine.
This is a self-contained disk image which includes a pre-configured CIA instance running on Ubuntu Linux. You can run it using the free-as-in-beer VMware Server. Use it to:
- Test-drive CIA in the privacy of your own server
- Set up an internal CIA server for your company
- Fix bugs and develop new features
Changes from the previous release:
- Updated to the latest CIA code from Subversion.
- There is now a Django admin user by default. (username admin, password changeme)
- The blogging module in CIA is set up.
- The VM is now a much smaller download.
- Compatibility with VMware Workstation 5.5, Server, and Player. I botched the virtual disks in the first release such that it would only run on Workstation 6.0, which is still in beta.
- Networking should now start on boot even if the VM's MAC address changes.
- Added a bare-bones set of stats:// rulesets, so commits will appear on the web site. You can use the command-line ruleset and metadata editor tools to customize the server's stats collection behaviour.
After downloading the virtual machine and extracting it, open it in VMware Workstation, Server, or Player. This example will use VMware Server for Linux. Here you can see the VM's release notes, and you may want to edit its networking settings.
The default is to use bridged networking, which gives the VM an IP address visible to the LAN your physical machine is attached to. I switched this to NAT on my laptop, since it isn't always connected to a network.
Power on the VM and let it boot. You should see a typical Linux console login prompt. Log in as cia with the default password changeme. If the VM was able to acquire an IP address, you should be able to see it with ifconfig. In this example, ifconfig tells me that my VM has the IP 192.168.42.128. Sure enough, I visit http://192.168.42.128 in a web browser and I'm greeted with a CIA front page that has no projects or authors listed.
So, what works?
- You can send commits to this server over XML-RPC, and they'll show up on the web. (You may want to customize the stats:// rulesets and metadata, however, using CIA's command line tools.)
- You can log in as the default admin user, or you can create a new account.
- Users can manage their metadata just like they do on the main CIA site, and they can create IRC bots.
- Repository polling should work, however all features that require e-mail (including the repository pinger) will require additional setup.
- The documentation browser and blog work. You can customize the documentation content by editing the files in ~/cia/doc, and you can make blog posts over the web as any registered admin user.
Other features may require additional setup, and there are several additional steps you'll want to take before deploying this server. This virtual machine image is still experimental. I can't guarantee any support for it, but I'll try to help if you email me or drop by the #cia channel on Freenode.
This VM is really just a starting point. Patches welcome :)
Last Friday, March 23rd, this site changed domains from cia.navi.cx to cia.vc. This was achieved by sending an HTTP 301 Permanently Moved response to most types of requests made on the cia.navi.cx domain.
The resulting data surprised me:
Hits from Google began declining the moment the site moved, and they've been declining since:
Hits from Yahoo are increasing:
There seems to be a noticeable difference between the ability of Google and Yahoo to properly deal with these redirects. I'm not just talking about their ability to follow the redirects themselves- I'm referring to their ability to quickly and accurately update their index and page rankings accordingly.
It's possible that the hits from Google will be back to normal after Google has finished fully re-indexing the site, and it's also possible that this is a statistical fluke. However, I would still assert that Yahoo is handling the move much more gracefully. First let's try a Google search for "cia.vc":
Now let's try Yahoo:
As of today, all pages on the CIA site should have an interactive search box at the top, just left of the navigation links.
The quality of the search results will be somewhat mediocre. Currently it's doing a simple substring search on stats paths and titles. Sorry, it can't search the actual commit messages yet.
Browser compatibility is also limited at the moment. It should work on IE6+, Firefox, and Safari, but there are sure to be bugs.
The result quality and the accessibility will be improved over time. If you have any bug reports or suggestions, feel free to leave a comment.
The site rebranding just went live. The CIA service, formerly at http://cia.navi.cx, now has a new domain and new formal name: CIA.vc. This new name emphasizes that we're about Version Control tracking, and it makes it easier to speak about CIA unambiguously when you need to.
The web site should be handing out 301 Permanently Moved redirects to point folks to the new domain. Compatibility- and latency-sensitive content (RSS feeds, XML-RPC, raw XML feeds) will work from any domain without redirecting. Additionally:
- If you're afraid of domains with strange TLDs, you can use http://cia-vc.org
- https://cia.vc now has an SSL certificate from Thawte, so you shouldn't get nagged by your browser if you want to log in to CIA securely. Because of this, I'll probably make secure login the default soon.
At the risk of sounding like I'm changing my mind every 3 seconds...
Sean brought up some good points regarding the naming of CIA. The name CIA, despite being somewhat confusing, has quite a bit of community recognition. Additionally, the name (somewhat indirectly) represents CIA's purpose pretty well- and the modicum of ambiguity and confusion produced by the name does actually help spread the word.
It still remains that the name CIA isn't even remotely unique. This causes problems when picking a domain name, or talking about the service around an audience who's unfamiliar with it. The solution? Keep the CIA, but qualify it in a globally unique way. People are already doing this by referring to the service as cia.navi.cx, but navi.cx doesn't really have anything to do with CIA: it's just my personal domain.
Well, cia.org is taken and cia-project.org is kinda long. What I really want is a domain name that qualifies CIA within the realm of version control.
Thank you, Saint Vincent. I propose making the service's official domain and name CIA.vc, which can be handily abbreviated CIA. The bots will keep their current names, and of course all the existing URIs and e-mail addresses will continue to function.
Like it? Hate it? Tired of all these silly blog posts? Leave a comment and voice your opinion.
CIA's message delivery component had about 15 minutes of unexpected downtime today, followed by a restart of all IRC bots. This was caused by some thrashing that resulted from a still-unresolved slow memory leak in the RPC and Bot servers. Sorry for the disruption.
P.S. I've received both positive and negative feedback over the name "Diffcast" which I suggested to replace "CIA". If you have any opinions on the matter, don't hesitate to leave a comment.
P.P.S. I've been experimenting with XMPP, XMPP-over-BOSH, and XMPP publish/subscribe lately. I think that the XMPP pub/sub specification itself (particularly its support for content-based subscriptions) matches CIA's needs very well, but no current implementation provides that level of support. I might have to hack on ejabberd's mod_pubsub in order to add support for anonymous (temporary lease) subscriptions as well as filtering/formatting using rulesets.
There are a few big problems with CIA that I've had my eye on recently:
The old web interface (The root page, and everything under /stats) sucks.
I want to redo this so that the entire site is running on the new codebase with the new look, but I'd like to make some changes to the way project/author stats are displayed. You can see a prototype of the new stats interface, but there's still much work left to be done. New commits should appear in real-time as they happen. Historical commit data should automatically load as you collapse the more recent items. Each item should have contextual links in the righthand margin for related projects, authors, and version control systems. I'd also like to finish the graphing functionality that's been half-implemented for ages...
The bots are hard to maintain, and lack key features.
I've been working on rewriting the CIA bot daemon itself in Erlang lately, to solve these problems.
The messaging hub is a closed system. Want to implement your own IRC bot or commit ticker, or syndicate the real-time data in a new way? Tough.
I've been thinking about replacing CIA's message hub with an XMPP server to solve problem #3 and help out a great deal with #1 and maybe #2.
Well, I just came across XEP-0124: Bidirectional Streams over Synchronous HTTP. Better yet, this was already implemented by Mabber in ejabberd. Hurray! This means that XMPP on its own might just provide most of the infrastructure necessary for CIA:
- Routing messages from projects to various syndication systems
- Providing an open API that anyone can use to get real-time messages
- Enabling real-time Comet-style updates
- The existing input mechanisms (XML-RPC, email, repository poller) should be able to simply deliver messages via an internal XMPP node
- The existing syndication mechanisms (IRC, Web stats) can also simply be XMPP nodes that subscribe to feeds
- Scalability across server clusters
There are still some problems that, as far as I know, will still be somewhat tough to solve even with XMPP:
Message filtering.
Traditionally, CIA's hub has been dealing with a single all-encompassing stream of commit messages that then get filtered using rulesets. With Jabber, each project's feed would probably become a discrete resource. If you want all the projects a particular person works on, those feeds would have to be explicitly aggregated. This has benefits and drawbacks.
Message formatting.
As far as I know, without a protocol extension there wouldn't be a way to directly ask the XMPP server to send out pre-formatted commit messages. Each client (including those written in Javascript, unfortunately) would need their own code to format the commit messages.
Message storage and retrieval.
The XMPP server would only broadcast events when new commits are delivered. There would still need to be a separate system which subscribes to all new messages, records them to disk, indexes them in various ways, then provides a service for querying that data.
I'm still quite an XMPP newbie, so I'd be very interested in hearing opinions from anyone who's more familiar with the technology.
I came across this today: a post made about a week ago by Olav Vitters, of GNOME fame, announcing a new Bugzilla IRC bot written by Max Kanat-Alexander.
It's actually a plugin for Supybot, and it has some cool features. You can query the bugzilla database directly from IRC. It gets notifications by parsing bugmail, but it can also make queries directly to the Bugzilla server.
I'm glad to see such a bot become generally available. David Trowbridge was hacking on Bugzilla integration for CIA long ago, but it was never completed. CIA was actually designed with support for sending more than just commit notifications, but these other message formats never gained critical mass. There are a few projects that shoehorn their bug or automated test messages into CIA's commit format, but it's been too hard for others to contribute new formatting modules to be installed on the CIA server.
It's also nice to see bidirectional Bugzilla integration. It makes announcements, but you can also ask it about a bug. I'd love to have similar features in CIA: ask it for details (or a URL) on the most recent message, or ask it for the most recent commit made by a particular developer.
Unfortunately, such functionality isn't easily built into the current CIA bot server. The current bot server can't be restarted without causing over 500 IRC channels to be annoyed by join/part messages. This makes it hard to upgrade the bots. I've been thinking about rewriting the bots (and eventually maybe the message hub) in Erlang in order to improve their scalability and maintainability.
