Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Repo info
Activity
  • 19:56
    DarkSideMoon starred dotnet/orleans
  • 19:17
    sergeybykov milestoned #6161
  • 19:17
    sergeybykov assigned #6161
  • 19:15
    benjaminpetit commented #6156
  • 18:46
    srberard opened #6162
  • 15:42
    stephenlautier edited #6161
  • 14:05
    stephenlautier opened #6161
  • 10:38
    shlomiw commented #6153
  • 06:59
    dariusz-wozniak forked
    dariusz-wozniak/orleans
  • 06:56
    dariusz-wozniak starred dotnet/orleans
  • 05:02
    govenkat-ms edited #6160
  • 05:01
    govenkat-ms opened #6160
  • 01:44
    yb123speed forked
    yb123speed/orleans
  • Dec 04 22:10
    sergeybykov milestoned #6157
  • Dec 04 22:10
    sergeybykov assigned #6157
  • Dec 04 22:09
    sergeybykov milestoned #6152
  • Dec 04 22:09
    sergeybykov assigned #6152
  • Dec 04 22:09
    sergeybykov labeled #6152
  • Dec 04 22:09
    sergeybykov commented #6152
  • Dec 04 22:05
    sergeybykov milestoned #6153
Sergey Bykov
@sergeybykov
No errors in the log. So it appears as if the ping messages or replies to thme get lost in transmisson.
Reuben Bond
@ReubenBond
But that only happens on your functional-tests - why might that be?
Gutemberg Ribeiro
@galvesribeiro
environment? Networking?
Sergey Bykov
@sergeybykov
In distributed tests - when we deploy silos to 25 physical servers.
Master works fine in the same environment, all tests pass on the same servers. Most likely serialization of ping messages.
Reuben Bond
@ReubenBond
maybe something which is marked as [Immutable] is not being serialized correctly?
Sergey Bykov
@sergeybykov
Maybe. I'll try to dig into it over the weekend.
Reuben Bond
@ReubenBond
Sounds good. Maybe we should increase the log verbosity
Sergey Bykov
@sergeybykov
You should be able to repro it by starting two silos using Azure Table membership. Even on the same machines if you specify different ports.
Reuben Bond
@ReubenBond
I'll try that
Sergey Bykov
@sergeybykov
First silo join the cluster fine. Second one gets stuck in the Joining state unable to confirm connectivity with the first one.
Reuben Bond
@ReubenBond
@sergeybykov works for me :(
I made a simple test silo using azure storage, running on different ports, set MembershipOracle log to Verbose2 & I see ping responses
I'll throw a client into the mix and see what happens.
Reuben Bond
@ReubenBond
works with client, too
Silo/client: https://gist.github.com/ReubenBond/246abd329e9e1ee18e13 - I linked directly against Orleans dlls (ran from within the project)
Attila Hajdrik
@attilah
@ReubenBond what about silo-to-silo communication? or there is no direct communication?!
I mean the SSL support.
Reuben Bond
@ReubenBond
I'm only interested in client-silo, because silo-silo can just be not exposed publicly (like it is today)
We can add intersilo tls after
Veikko Eeva
@veikkoeeva
TLS brings in mind these two educational resources likely of general interest in this group:
http://blog.slaks.net/2015-10-13/web-authentication-arms-race-a-tale-of-two-security-experts/
https://freedom-to-tinker.com/blog/haldermanheninger/how-is-nsa-breaking-so-much-crypto/
Veikko Eeva
@veikkoeeva
Heh, everybody else is busy bringing something on the table. I hope I too get to participate more in the future. :)
Veikko Eeva
@veikkoeeva
@ReubenBond It's been a long time since I've fiddled with certs and sockets, but I'll see if I can come up with something noteworthy.
A few issues are revokation and how to store certs.
Veikko Eeva
@veikkoeeva
For instance, how it's done in Azure (Azure Vault?) and how should the certificates be stored. Should X509Store supported.aspx) be offered as choice? I think I wrote in the issue I don't see foresee big problems, but that's only because I thought about this "simply" and not everything one might want to include, such as revokation. Maybe the smartest thing is implement something simple and forgo deeper analysis on exactly what are the ramifications of decisions.
Reuben Bond
@ReubenBond
For the first iteration, I will just require that thumbprints match with option to validate against the windows cert store
Veikko Eeva
@veikkoeeva
Sounds like a plan.
http://www.davidbritch.com/2014/12/encrypting-and-decrypting-data-in-azure.html
Food for though, so to speak.
http://paulstovell.com/blog/x509certificate2
https://www.simple-talk.com/dotnet/.net-framework/tlsssl-and-.net-framework-4.0/
Veikko Eeva
@veikkoeeva
And a few more general purpose ones:
http://queue.acm.org/detail.cfm?id=2673311
https://queue.acm.org/detail.cfm?id=2668154
Reuben Bond
@ReubenBond
The TLS part itself is fairly easy, but the issue is integrating it into Orleans. I'm part-way through that. Orleans uses its own buffer pooling which is amenable to Socket, but I need to work with Streams
So... this might require some work. Possibly I will replace Orleans' buffer pool with RecyclableMemoryStream, or maybe I will manually interface with the buffer pool. It's a shame that Streams cannot read into an IList<ArraySegment<byte>> like Socket can
Reuben Bond
@ReubenBond
If each array in the pool is approx 1400 bytes (or whatever the eth interfaces frame size is), then it should be fine to use a single array per read
Veikko Eeva
@veikkoeeva
@ReubenBond Sorry for dumping you here, multiple channels. :)
RecyclableMemoryStream feels like one of the libraries that would be usable in wider range of scenarios.
What you write makes sense.
Gutemberg Ribeiro
@galvesribeiro
norning
Veikko Eeva
@veikkoeeva
oorning.
Next one is probably porning then. :)
Gutemberg Ribeiro
@galvesribeiro
kkkkkkkkkkkk
Veikko Eeva
@veikkoeeva
http://www.infoq.com/presentations/8-lines-code-refactoring
Heh, heh. :)
Shane GrĂ¼ling
@shanegrueling
nice talk :D
Shane GrĂ¼ling
@shanegrueling
a bit hard on the magic hate. Feels a bit like witch hunting. ;D
Luca Morelli
@lucamorelli
This message was deleted
Ashkan Saeedi Mazdeh
@ashkan-saeedi-mazdeh
guys how can I link to a page in a folder , specifically I want to link from FAQ to runtime-implementation-details/cluster-management
?
Ashkan Saeedi Mazdeh
@ashkan-saeedi-mazdeh
fixed it myself