Update Release Candidate

79dd2ee9 · Alain Takoudjou · 36b08a7c · ca95f0dd · 79dd2ee9 · 79dd2ee9
Commit 79dd2ee9 authored Jul 25, 2018 by Alain Takoudjou
57 changed files
--- a/component/cloudooo/buildout.cfg
+++ b/component/cloudooo/buildout.cfg
@@ -14,6 +14,7 @@ recipe = slapos.recipe.build:gitclone
 repository = https://lab.nexedi.com/nexedi/cloudooo.git
 branch = master
 git-executable = ${git:location}/bin/git
+revision = 0ff799ebcfea1013342f5450e88ff5c3b8536e89

 [cloudooo]
 recipe = zc.recipe.egg

--- a/component/libffi/buildout.cfg
+++ b/component/libffi/buildout.cfg
@@ -16,6 +16,8 @@ patches =
  ${:_profile_base_location_}/includedir.diff#e430307d16a0d215a24ec2acff23d184
 configure-options =
  --disable-static
+  --enable-portable-binary
+  --with-gcc-arch=generic
 # on x86_64 OpenSuse, libraries are installed under parts/libffi/lib64.
 make-targets =
  install && cp -av ${:location}/lib64/* ${:location}/lib/ || true

--- a/component/slapos/buildout.cfg
+++ b/component/slapos/buildout.cfg
@@ -20,6 +20,7 @@ extends =
  ../sqlite3/buildout.cfg
  ../swig/buildout.cfg
  ../zlib/buildout.cfg
+  ../socat/buildout.cfg

 parts =
  slapos
@@ -31,7 +32,7 @@ parts =
 [environment]
 # Note: For now original PATH is appended to the end, as not all tools are
 #       provided by SlapOS
-PATH=${bison:location}/bin:${bzip2:location}/bin:${gettext:location}/bin:${glib:location}/bin:${libxml2:location}/bin:${libxslt:location}/bin:${m4:location}/bin:${ncurses:location}/bin:${openssl:location}/bin:${pkgconfig:location}/bin:${python2.7:location}/bin:${readline:location}/bin:${sqlite3:location}/bin:${swig:location}/bin:${buildout:bin-directory}:${patch:location}/bin:$PATH
+PATH=${bison:location}/bin:${bzip2:location}/bin:${gettext:location}/bin:${glib:location}/bin:${libxml2:location}/bin:${libxslt:location}/bin:${m4:location}/bin:${ncurses:location}/bin:${openssl:location}/bin:${pkgconfig:location}/bin:${python2.7:location}/bin:${readline:location}/bin:${sqlite3:location}/bin:${swig:location}/bin:${buildout:bin-directory}:${patch:location}/bin:${socat:location}/bin:$PATH
 CFLAGS=-I${bzip2:location}/include -I${gdbm:location}/include -I${gettext:location}/include -I${glib:location}/include -I${libxml2:location}/include -I${libxslt:location}/include -I${ncurses:location}/include -I${openssl:location}/include -I${readline:location}/include -I${sqlite3:location}/include -I${zlib:location}/include
 CPPFLAGS=${:CFLAGS}
 LDFLAGS=-L${bzip2:location}/lib -Wl,-rpath=${bzip2:location}/lib -L${gdbm:location}/lib -Wl,-rpath=${gdbm:location}/lib -L${gettext:location}/lib -Wl,-rpath=${gettext:location}/lib -L${glib:location}/lib -Wl,-rpath=${glib:location}/lib -L${libxml2:location}/lib -Wl,-rpath=${libxml2:location}/lib -L${libxslt:location}/lib -Wl,-rpath=${libxslt:location}/lib -L${ncurses:location}/lib -Wl,-rpath=${ncurses:location}/lib -L${openssl:location}/lib -Wl,-rpath=${openssl:location}/lib -L${readline:location}/lib -Wl,-rpath=${readline:location}/lib -L${sqlite3:location}/lib -Wl,-rpath=${sqlite3:location}/lib -L${zlib:location}/lib -Wl,-rpath=${zlib:location}/lib

--- a/component/socat/buildout.cfg
+++ b/component/socat/buildout.cfg
+[buildout]
+parts =
+  socat
+
+[socat]
+recipe = slapos.recipe.cmmi
+url = http://www.dest-unreach.org/socat/download/socat-${:version}.tar.gz
+version = 1.7.3.2
+md5sum = aec3154f7854580cfab0c2d81e910519
--- a/software/agent/software.cfg
+++ b/software/agent/software.cfg
@@ -45,7 +45,7 @@ eggs =
 [versions]
 apache-libcloud = 0.18.0
 ecdsa = 0.13
-erp5.util = 0.4.49
+erp5.util = 0.4.51
 gitdb = 0.6.4
 pycrypto = 2.6.1
 pycurl = 7.43.0

--- a/software/apache-frontend/buildout.hash.cfg
+++ b/software/apache-frontend/buildout.hash.cfg
@@ -38,7 +38,7 @@ md5sum = 665e83d660c9b779249b2179d7ce4b4e

 [template-apache-frontend-configuration]
 filename = templates/apache.conf.in
-md5sum = a56045e7b53ff00ab34d2a8f911fc1a1
+md5sum = 1f483a6e1a8076980e1bbbf495ee21b2

 [template-custom-slave-list]
 filename = templates/apache-custom-slave-list.cfg.in

--- a/software/apache-frontend/software.cfg
+++ b/software/apache-frontend/software.cfg
@@ -24,7 +24,7 @@ dnspython = 1.15.0

 # Required by:
 # slapos.toolbox==0.71
-erp5.util = 0.4.49
+erp5.util = 0.4.51

 # Required by:
 # slapos.toolbox==0.71

--- a/software/apache-frontend/templates/apache.conf.in
+++ b/software/apache-frontend/templates/apache.conf.in
@@ -138,7 +138,7 @@ ThreadsPerChild {{ slapparameter_dict.get('mpm-thread-per-child', '25') }}
 GracefulShutdownTimeout {{ slapparameter_dict.get('mpm-graceful-shutdown-timeout', '5') }}

 # Deflate
-AddOutputFilterByType DEFLATE text/html text/plain text/xml text/css text/javascript application/x-javascript application/javascript
+AddOutputFilterByType DEFLATE text/html text/plain text/xml text/css text/javascript application/json application/x-javascript application/javascript
 BrowserMatch ^Mozilla/4 gzip-only-text/html
 BrowserMatch ^Mozilla/4\.0[678] no-gzip
 BrowserMatch \bMSIE !no-gzip !gzip-only-text/html

--- a/software/buildout-testing/software.cfg
+++ b/software/buildout-testing/software.cfg
@@ -57,3 +57,7 @@ template =
    key slapos_buildout slapos.buildout-repository:location
    key temp_directory directory:tmp
    raw runTestSuite_py ${buildout:bin-directory}/${runTestSuite_py:interpreter}
+
+[versions]
+erp5.util = 0.4.51
+slapos.recipe.template = 4.3
--- a/software/caddy-frontend/README.caddy_frontend.rst
+++ b/software/caddy-frontend/README.caddy_frontend.rst
@@ -157,12 +157,12 @@ Will append the specified path to the "VirtualHostRoot" of the zope's VirtualHos
 "path" is an optional parameter, ignored if not specified.
 Example of value: "/erp5/web_site_module/hosting/"

-apache_custom_https
-~~~~~~~~~~~~~~~~~~~
+caddy_custom_https
+~~~~~~~~~~~~~~~~~~
 Raw Caddy configuration in python template format (i.e. write "%%" for one "%") for the slave listening to the https port. Its content will be templatified in order to access functionalities such as cache access, ssl certificates... The list is available above.

-apache_custom_http
-~~~~~~~~~~~~~~~~~~
+caddy_custom_http
+~~~~~~~~~~~~~~~~~
 Raw Caddy configuration in python template format (i.e. write "%%" for one "%") for the slave listening to the http port. Its content will be templatified in order to access functionalities such as cache access, ssl certificates... The list is available above

 url
@@ -286,7 +286,7 @@ Request slave frontend instance so that https://[1:2:3:4:5:6:7:8]:1234 will be::
    partition_parameter_kw={
        "url":"https://[1:2:3:4:5:6:7:8]:1234",

-        "apache_custom_https":'
+        "caddy_custom_https":'
  https://www.example.com:%(https_port)s, https://example.com:%(https_port)s {
    bind %(local_ipv4)s
    tls %(ssl_crt)s %(ssl_key)s
@@ -300,7 +300,7 @@ Request slave frontend instance so that https://[1:2:3:4:5:6:7:8]:1234 will be::
      insecure_skip_verify
    }
  }
-        "apache_custom_http":'
+        "caddy_custom_http":'
  http://www.example.com:%(http_port)s, http://example.com:%(http_port)s {
    bind %(local_ipv4)s
    log / %(access_log)s {combined}
@@ -329,7 +329,7 @@ Request slave frontend instance so that https://[1:2:3:4:5:6:7:8]:1234 will be::
 	"domain": "www.example.org",
 	"enable_cache": "True",

-        "apache_custom_https":'
+        "caddy_custom_https":'
  ServerName www.example.org
  ServerAlias www.example.org
  ServerAlias example.org
@@ -343,7 +343,7 @@ Request slave frontend instance so that https://[1:2:3:4:5:6:7:8]:1234 will be::
  RewriteEngine On
  RewriteRule ^/(.*) %(cache_access)s/$1 [L,P]',

-        "apache_custom_http":'
+        "caddy_custom_http":'
  ServerName www.example.org
  ServerAlias www.example.org
  ServerAlias example.org
@@ -384,7 +384,7 @@ the proxy::
        "path":"/erp5",
        "domain":"example.org",

-  	"apache_custom_https":'
+  	"caddy_custom_https":'
  ServerName www.example.org
  ServerAlias www.example.org
  ServerAdmin example.org
@@ -413,7 +413,7 @@ the proxy::
  # Use cache
  RewriteRule ^/(.*) %(cache_access)s/VirtualHostBase/https/www.example.org:443/erp5/VirtualHostRoot/$1 [L,P]',

-    "apache_custom_http":'
+    "caddy_custom_http":'
  ServerName www.example.org
  ServerAlias www.example.org
  ServerAlias example.org

--- a/software/caddy-frontend/TODO.rst
+++ b/software/caddy-frontend/TODO.rst
 Generally things to be done with ``caddy-frontend``:

 * ``apache-ca-certificate`` shall be merged with ``apache-certificate``
+
+   * ``apache-ca-certificate`` shall be appended to ``apache-certificate`` if not already there
+ * BUG?? check that changing ``apache-certificate`` on master partition results in reloading slave partition
+ * provide ``apache-frontend`` to ``caddy-frontend`` migration information
 * (new) ``type:websocket`` slave
 * ``type:eventsource``:

   * **Jérome Perrin**: *For event source, if I understand https://github.com/mholt/caddy/issues/1355 correctly, we could use caddy as a proxy in front of nginx-push-stream . If we have a "central shared" caddy instance, can it handle keeping connections opens for many clients ?*
 * ``ssl_ca_crt``
- * ``prefer-gzip-encoding-to-backend`` (requires writing middleware plugin for Caddy)::
-
-    RequestHeader edit Accept-Encoding "(^gzip,.*|.*, gzip,.*|.*, gzip$|^gzip$)" "gzip"
 * ``disabled-cookie-list`` (requires writing middleware plugin for Caddy)::

    RequestHeader edit Cookie "(^%(disabled_cookie)s=[^;]*; |; %(disabled_cookie)s=[^;]*|^%(disabled_cookie)s=[^;]*$)" ""' % dict(disabled_cookie=disabled_cookie)  }}
- * ``ssl_proxy_ca_crt`` for ``ssl_proxy_verify``, this is related to bug https://github.com/mholt/caddy/issues/1550, proposed solution `just adding your CA to the system's trust store`
+
+   * there is already `MR <https://github.com/mholt/caddy/pull/2144>`_ which will allow regexp modification of headers, thus cookies
+ * ``ssl_proxy_ca_crt`` for ``ssl_proxy_verify``, this is related to bug `#1550 <https://github.com/mholt/caddy/issues/1550>`_, proposed solution `just adding your CA to the system's trust store`
 * ``check-error-on-caddy-log`` like ``check-error-on-apache-log``
 * cover test suite like resilient tests for KVM and prove it works the same way as Caddy
- * have ``caddy-frontend`` specific parameters, with backward compatibility to ``apache-frontend`` ones (like ``apache_custom_http`` --> ``caddy_custom_http``)
- * change ``switch-softwaretype`` to way how ``software/erp5`` does, which will help with dropping jinja2 template for ``caddy-wrapper``, which is workaround for current situation https://lab.nexedi.com/nexedi/slapos/merge_requests/312#note_62678
+ * have ``caddy-frontend`` specific parameters, with backward compatibility to ``apache-frontend`` ones:
+
+  * ``apache-ca-certificate``
+  * ``apache-certificate`` and ``apache-key``
+
+ * change ``switch-softwaretype`` to way how ``software/erp5`` does, which will help with dropping jinja2 template for ``caddy-wrapper``, which is workaround for current situation, cf `note_62678 <https://lab.nexedi.com/nexedi/slapos/merge_requests/312#note_62678>`_
 * use `slapos!326 <https://lab.nexedi.com/nexedi/slapos/merge_requests/326>`_, and especially `note about complex restart scenarios <https://lab.nexedi.com/nexedi/slapos/merge_requests/326#note_60198>`_, instead of self-developed graceful restart scripts
- * move out `test/utils.py` and use it from shared python distribution
+ * move out ``test/utils.py`` and use it from shared python distribution
 * provide various tricks for older browsers::

    # The following directives modify normal HTTP response behavior to
@@ -53,6 +60,8 @@ Generally things to be done with ``caddy-frontend``:
    </FilesMatch>
 * reduce the time of configuration validation (in ``instance-apache-frontend.cfg`` sections ``[configtest]``, ``[caddy-configuration]``, ``[nginx-configuration]``), as it is not scalable on frontend with 2000+ slaves (takes few minutes instead of few, < 5, seconds), issue posted `upstream <https://github.com/mholt/caddy/issues/2220>`_
 * drop ``6tunnel`` and use ``bind`` in Caddy configuration, as soon as multiple binds will be possible, tracked in upstream `bind: support multiple values <https://github.com/mholt/caddy/pull/2128>`_ and `ipv6: does not bind on ipv4 and ipv6 for sites that resolve to both <https://github.com/mholt/caddy/issues/864>`_
+ * use caddy-frontend in `standalone style playbooks <https://lab.nexedi.com/nexedi/slapos.package/tree/master/playbook/roles/standalone-shared>`_
+ * ensure `QUIC <https://en.wikipedia.org/wiki/QUIC>`_ is used by caddy

 Things which can't be implemented:


--- a/software/caddy-frontend/buildout.hash.cfg
+++ b/software/caddy-frontend/buildout.hash.cfg
@@ -18,19 +18,19 @@ md5sum = 906e5bd66b1265b8109a86b6ab46e91f

 [template-apache-frontend]
 filename = instance-apache-frontend.cfg
-md5sum = 5602b4635e3da27ea6ff491824b0d8a5
+md5sum = b170d0987563b481eb71cf705c3658ab

 [template-apache-replicate]
 filename = instance-apache-replicate.cfg.in
-md5sum = cd83f92b43904e1f3826072013cd682b
+md5sum = 7f15b5745eda8e1f02d4bf7d886dcdad

 [template-slave-list]
 filename = templates/apache-custom-slave-list.cfg.in
-md5sum = 3993419eea72ad4b62c0d479860f3c17
+md5sum = fb6c93f42f232e381174a5951c3fc222

 [template-slave-configuration]
 filename = templates/custom-virtualhost.conf.in
-md5sum = 74275ad73b03114c69f80c8f8ae73374
+md5sum = 54ae95597a126ae552c3a913ddf29e5e

 [template-replicate-publish-slave-information]
 filename = templates/replicate-publish-slave-information.cfg.in
@@ -42,7 +42,7 @@ md5sum = 6689d96fc18d9aad78d77fe87770d4da

 [template-custom-slave-list]
 filename = templates/apache-custom-slave-list.cfg.in
-md5sum = 3993419eea72ad4b62c0d479860f3c17
+md5sum = fb6c93f42f232e381174a5951c3fc222

 [template-not-found-html]
 filename = templates/notfound.html
@@ -50,7 +50,7 @@ md5sum = f20d6c3d2d94fb685f8d26dfca1e822b

 [template-default-slave-virtualhost]
 filename = templates/default-virtualhost.conf.in
-md5sum = e9eccaa99077d9bc12b538d40f5421b0
+md5sum = 6da56d875f5cf396f8fd0685cf1a9a7a

 [template-cached-slave-virtualhost]
 filename = templates/cached-virtualhost.conf.in

--- a/software/caddy-frontend/instance-apache-frontend.cfg
+++ b/software/caddy-frontend/instance-apache-frontend.cfg
@@ -110,8 +110,11 @@ configuration.plain_http_port = 8080
 configuration.plain_nginx_port = 8081
 configuration.nginx_port = 9443
 configuration.server-admin = admin@example.com
+# BBB: apache_custom_https and apache_custom_http
 configuration.apache_custom_https = ""
 configuration.apache_custom_http = ""
+configuration.caddy_custom_https = ""
+configuration.caddy_custom_http = ""
 configuration.apache-key =
 configuration.apache-certificate =
 configuration.apache-ca-certificate =
@@ -124,7 +127,6 @@ configuration.trafficserver-mgmt-port = 8084
 configuration.re6st-verification-url = http://[2001:67c:1254:4::1]/index.html
 configuration.enable-http2-by-default = true
 configuration.mpm-graceful-shutdown-timeout = 5
-configuration.monitor-cors-domains =
 configuration.monitor-httpd-port = 8072

 [frontend-configuration]
@@ -210,11 +212,14 @@ extra-context =
 template = ${template-slave-configuration:target}
 rendered = $${directory:template}/slave-virtualhost.conf.in
 extensions = jinja2.ext.do
+# BBB: apache_custom_https and apache_custom_http
 extra-context =
    key https_port instance-parameter:configuration.port
    key http_port instance-parameter:configuration.plain_http_port
    key apache_custom_https instance-parameter:configuration.apache_custom_https
    key apache_custom_http instance-parameter:configuration.apache_custom_http
+    key caddy_custom_https instance-parameter:configuration.caddy_custom_https
+    key caddy_custom_http instance-parameter:configuration.caddy_custom_http

 # Deploy Caddy Frontend with Jinja power
 [dynamic-caddy-frontend-template]
@@ -606,13 +611,17 @@ public-ipv4 =
 port = 4443
 plain_http_port = 8080
 server-admin = admin@example.com
+# BBB: apache_custom_https and apache_custom_http
 apache_custom_https = ""
 apache_custom_http = ""
+caddy_custom_https = ""
+caddy_custom_http = ""
 apache-key =
 apache-certificate =
 open-port = 80 443
 extra_slave_instance_list =
 frontend-name =
+monitor-cors-domains =
 monitor-username = $${monitor-instance-parameter:username}
 monitor-password = $${monitor-htpasswd:passwd}

@@ -622,7 +631,7 @@ monitor-password = $${monitor-htpasswd:passwd}

 [monitor-instance-parameter]
 monitor-httpd-port = $${instance-parameter:configuration.monitor-httpd-port}
-cors-domains = $${instance-parameter:configuration.monitor-cors-domains}
+cors-domains = $${slap-parameter:monitor-cors-domains}
 username = $${slap-parameter:monitor-username}
 password = $${slap-parameter:monitor-password}


--- a/software/caddy-frontend/instance-apache-replicate.cfg.in
+++ b/software/caddy-frontend/instance-apache-replicate.cfg.in
@@ -70,7 +70,8 @@ context =
 {% set authorized_slave_list = [] %}
 {% set rejected_slave_list = [] %}
 {% for slave in slave_instance_list %}
-{%   if not (slave.has_key('apache_custom_http') and not slave.get('slave_reference') in authorized_slave_string) %}
+{# BBB: apache_custom_https AND apache_custom_http #}
+{%   if not ((slave.has_key('caddy_custom_http') or slave.has_key('apache_custom_http') or slave.has_key('caddy_custom_https') or slave.has_key('apache_custom_https')) and not slave.get('slave_reference') in authorized_slave_string) %}
 {%     do authorized_slave_list.append(slave) %}
 {%   else %}
 {%     do rejected_slave_list.append(slave.get('slave_reference')) %}

--- a/software/caddy-frontend/instance-slave-caddy-input-schema.json
+++ b/software/caddy-frontend/instance-slave-caddy-input-schema.json
 {
    "$schema": "http://json-schema.org/draft-04/schema",
    "properties": {
-        "apache_custom_http": {
+        "caddy_custom_http": {
            "default": "",
            "description": "Raw http configuration in python template format. Your site will be rejected if you use it without notification and approval of frontend administrators",
            "textarea": true,
            "title": "HTTP configuration",
            "type": "string"
        },
-        "apache_custom_https": {
+        "caddy_custom_https": {
            "default": "",
            "description": "Raw https configuration in python template format. Your site will be rejected if you use it without notification and approval of frontend administrators",
            "textarea": true,

--- a/software/caddy-frontend/software.cfg
+++ b/software/caddy-frontend/software.cfg
@@ -24,7 +24,7 @@ dnspython = 1.15.0

 # Required by:
 # slapos.toolbox==0.71
-erp5.util = 0.4.49
+erp5.util = 0.4.51

 # Required by:
 # slapos.toolbox==0.71

--- a/software/caddy-frontend/templates/apache-custom-slave-list.cfg.in
+++ b/software/caddy-frontend/templates/apache-custom-slave-list.cfg.in
@@ -99,7 +99,8 @@ crl = {{ custom_ssl_directory }}/crl/
 {%     do cached_server_dict.__setitem__(slave_reference, slave_configuration_section_name) %}
 {%   endif %}

-{%   if not slave_instance.has_key('apache_custom_http') and not slave_instance.has_key('apache_custom_https') %}
+{# BBB: apache_custom_https and apache_custom_http #}
+{%   if not slave_instance.has_key('caddy_custom_http') and not slave_instance.has_key('caddy_custom_https') and not slave_instance.has_key('apache_custom_http') and not slave_instance.has_key('apache_custom_https') %}
 {%     do slave_publish_dict.__setitem__('domain', slave_instance.get('custom_domain')) %}
 {%     do slave_publish_dict.__setitem__('url', "http://%s" % slave_instance.get('custom_domain')) %}
 {%     do slave_publish_dict.__setitem__('site_url', "http://%s" % slave_instance.get('custom_domain')) %}
@@ -193,10 +194,11 @@ cert-content = {{ dumps(slave_instance.get('ssl_crt')) }}
 {# ########################################## #}
 {# Set Slave Configuration                    #}
 [{{ slave_configuration_section_name }}]
-{%     set apache_custom_http = ((slave_instance.pop('apache_custom_http', '')) % slave_parameter_dict) %}
-{%     set apache_custom_https = ((slave_instance.pop('apache_custom_https', '')) % slave_parameter_dict) %}
-apache_custom_http = {{ dumps(apache_custom_http) }}
-apache_custom_https = {{ dumps(apache_custom_https) }}
+{# BBB: apache_custom_https and apache_custom_http #}
+{%     set caddy_custom_http = ((slave_instance.pop('caddy_custom_http', slave_instance.pop('apache_custom_http', ''))) % slave_parameter_dict) %}
+{%     set caddy_custom_https = ((slave_instance.pop('caddy_custom_https', slave_instance.pop('apache_custom_https', ''))) % slave_parameter_dict) %}
+caddy_custom_http = {{ dumps(caddy_custom_http) }}
+caddy_custom_https = {{ dumps(caddy_custom_https) }}
 {{ '\n' }}
 {%     for key, value in slave_instance.iteritems() %}
 {{ key }} = {{ dumps(value) }}
@@ -211,7 +213,7 @@ rendered = {{ caddy_configuration_directory }}/${:filename}
 {%   endif %}


-{%   if apache_custom_http %}
+{%   if caddy_custom_http or caddy_custom_https %}
 template = {{ template_custom_slave_configuration }}
 {%   elif slave_type == 'eventsource' %}
 template = {{ template_eventsource_slave_configuration }}

--- a/software/caddy-frontend/templates/custom-virtualhost.conf.in
+++ b/software/caddy-frontend/templates/custom-virtualhost.conf.in
-{{ slave_parameter.get('apache_custom_https', '') }}
-{{ slave_parameter.get('apache_custom_http', '') }}
\ No newline at end of file
+{{ slave_parameter.get('caddy_custom_https', '') }}
+{{ slave_parameter.get('caddy_custom_http', '') }}
--- a/software/caddy-frontend/templates/default-virtualhost.conf.in
+++ b/software/caddy-frontend/templates/default-virtualhost.conf.in
--- a/software/caddy-frontend/test/test.py
+++ b/software/caddy-frontend/test/test.py
--- a/software/caddy-frontend/test/test_data/test.TestSlave.test_file_list_log-APACHE.txt
+++ b/software/caddy-frontend/test/test_data/test.TestSlave.test_file_list_log-APACHE.txt
@@ -2,6 +2,10 @@ TestSlave-1/var/log/frontend-apache-access.log
 TestSlave-1/var/log/frontend-apache-error.log
 TestSlave-1/var/log/httpd/_apache_custom_http_s-accepted_access_log
 TestSlave-1/var/log/httpd/_apache_custom_http_s-accepted_error_log
+TestSlave-1/var/log/httpd/_caddy_custom_http_s-accepted_access_log
+TestSlave-1/var/log/httpd/_caddy_custom_http_s-accepted_error_log
+TestSlave-1/var/log/httpd/_caddy_custom_http_s-rejected_access_log
+TestSlave-1/var/log/httpd/_caddy_custom_http_s-rejected_error_log
 TestSlave-1/var/log/httpd/_custom_domain_access_log
 TestSlave-1/var/log/httpd/_custom_domain_error_log
 TestSlave-1/var/log/httpd/_custom_domain_ssl_crt_ssl_key_access_log

--- a/software/caddy-frontend/test/test_data/test.TestSlave.test_file_list_log-CADDY.txt
+++ b/software/caddy-frontend/test/test_data/test.TestSlave.test_file_list_log-CADDY.txt
@@ -3,6 +3,8 @@ TestSlave-1/var/log/frontend-access.log
 TestSlave-1/var/log/frontend-error.log
 TestSlave-1/var/log/httpd/_apache_custom_http_s-accepted_access_log
 TestSlave-1/var/log/httpd/_apache_custom_http_s-accepted_error_log
+TestSlave-1/var/log/httpd/_caddy_custom_http_s-accepted_access_log
+TestSlave-1/var/log/httpd/_caddy_custom_http_s-accepted_error_log
 TestSlave-1/var/log/httpd/_custom_domain_access_log
 TestSlave-1/var/log/httpd/_custom_domain_error_log
 TestSlave-1/var/log/httpd/_custom_domain_ssl_crt_ssl_key_access_log

--- a/software/caddy-frontend/test/test_data/test.TestSlave.test_master_partition_state-APACHE.txt
+++ b/software/caddy-frontend/test/test_data/test.TestSlave.test_master_partition_state-APACHE.txt
+SetEnvIf Origin "^http(s)?://(.+\.)?(monitor\.app\.officejs\.com)$" ORIGIN_DOMAIN=$0
+Header always set Access-Control-Allow-Origin "%{ORIGIN_DOMAIN}e" env=ORIGIN_DOMAIN
+Header always set Access-Control-Allow-Credentials "true" env=ORIGIN_DOMAIN
+Header always set Access-Control-Allow-Methods "PROPFIND, PROPPATCH, COPY, MOVE, DELETE, MKCOL, LOCK, UNLOCK, PUT, GETLIB, VERSION-CONTROL, CHECKIN, CHECKOUT, UNCHECKOUT, REPORT, UPDATE, CANCELUPLOAD, HEAD, OPTIONS, GET, POST" env=ORIGIN_DOMAIN
+Header always set Access-Control-Allow-Headers "Overwrite, Destination, Content-Type, Depth, User-Agent, X-File-Size, X-Requested-With, If-Modified-Since, X-File-Name, Cache-Control, Authorization" env=ORIGIN_DOMAIN
\ No newline at end of file
--- a/software/caddy-frontend/test/test_data/test.TestSlave.test_master_partition_state-CADDY.txt
+++ b/software/caddy-frontend/test/test_data/test.TestSlave.test_master_partition_state-CADDY.txt
+SetEnvIf Origin "^http(s)?://(.+\.)?(monitor\.app\.officejs\.com)$" ORIGIN_DOMAIN=$0
+Header always set Access-Control-Allow-Origin "%{ORIGIN_DOMAIN}e" env=ORIGIN_DOMAIN
+Header always set Access-Control-Allow-Credentials "true" env=ORIGIN_DOMAIN
+Header always set Access-Control-Allow-Methods "PROPFIND, PROPPATCH, COPY, MOVE, DELETE, MKCOL, LOCK, UNLOCK, PUT, GETLIB, VERSION-CONTROL, CHECKIN, CHECKOUT, UNCHECKOUT, REPORT, UPDATE, CANCELUPLOAD, HEAD, OPTIONS, GET, POST" env=ORIGIN_DOMAIN
+Header always set Access-Control-Allow-Headers "Overwrite, Destination, Content-Type, Depth, User-Agent, X-File-Size, X-Requested-With, If-Modified-Since, X-File-Name, Cache-Control, Authorization" env=ORIGIN_DOMAIN
\ No newline at end of file
--- a/software/caddy-frontend/test/test_data/test.TestSlave.test_monitor_promise_list-APACHE.txt
+++ b/software/caddy-frontend/test/test_data/test.TestSlave.test_monitor_promise_list-APACHE.txt
 TestSlave-1/etc/monitor-promise/check-_apache_custom_http_s-accepted-error-log-last-day
 TestSlave-1/etc/monitor-promise/check-_apache_custom_http_s-accepted-error-log-last-hour
+TestSlave-1/etc/monitor-promise/check-_caddy_custom_http_s-accepted-error-log-last-day
+TestSlave-1/etc/monitor-promise/check-_caddy_custom_http_s-accepted-error-log-last-hour
+TestSlave-1/etc/monitor-promise/check-_caddy_custom_http_s-rejected-error-log-last-day
+TestSlave-1/etc/monitor-promise/check-_caddy_custom_http_s-rejected-error-log-last-hour
 TestSlave-1/etc/monitor-promise/check-_custom_domain-error-log-last-day
 TestSlave-1/etc/monitor-promise/check-_custom_domain-error-log-last-hour
 TestSlave-1/etc/monitor-promise/check-_custom_domain_ssl_crt_ssl_key-error-log-last-day

--- a/software/caddy-frontend/test/test_data/test.TestSlave.test_monitor_promise_list-CADDY.txt
+++ b/software/caddy-frontend/test/test_data/test.TestSlave.test_monitor_promise_list-CADDY.txt
 TestSlave-1/etc/monitor-promise/check-_apache_custom_http_s-accepted-error-log-last-day
 TestSlave-1/etc/monitor-promise/check-_apache_custom_http_s-accepted-error-log-last-hour
+TestSlave-1/etc/monitor-promise/check-_caddy_custom_http_s-accepted-error-log-last-day
+TestSlave-1/etc/monitor-promise/check-_caddy_custom_http_s-accepted-error-log-last-hour
 TestSlave-1/etc/monitor-promise/check-_custom_domain-error-log-last-day
 TestSlave-1/etc/monitor-promise/check-_custom_domain-error-log-last-hour
 TestSlave-1/etc/monitor-promise/check-_custom_domain_ssl_crt_ssl_key-error-log-last-day

--- a/software/caddy-frontend/test/utils.py
+++ b/software/caddy-frontend/test/utils.py
@@ -254,7 +254,7 @@ class SlapOSInstanceTestCase(unittest.TestCase):
 class TestHandler(BaseHTTPRequestHandler):
  def do_GET(self):
    self.send_response(200)
-    self.send_header("Content-type", "text/json")
+    self.send_header("Content-type", "application/json")
    self.send_header('Set-Cookie', 'secured=value;secure')
    self.send_header('Set-Cookie', 'nonsecured=value')
    self.end_headers()

--- a/software/cdn-me/software.cfg
+++ b/software/cdn-me/software.cfg
@@ -38,6 +38,6 @@ eggs =
 [versions]
 cns.recipe.symlink = 0.2.3
 collective.recipe.environment = 0.2.0
-erp5.util = 0.4.49
+erp5.util = 0.4.51
 plone.recipe.command = 1.1
 slapos.recipe.template = 4.3
--- a/software/cloudooo/software-common.cfg
+++ b/software/cloudooo/software-common.cfg
@@ -83,3 +83,12 @@ template-logrotate-base = ${template-logrotate-base:rendered}
 recipe = slapos.recipe.build:download
 url = ${:_profile_base_location_}/${:filename}
 mode = 640
+
+[versions]
+# Required by:
+# cloudooo==1.2.6.dev0
+argparse = 1.4.0
+
+# Required by:
+# cloudooo==1.2.6.dev0
+pyPdf = 1.13
--- a/software/erp5testnode/software.cfg
+++ b/software/erp5testnode/software.cfg
@@ -58,7 +58,7 @@ mode = 0644

 [versions]
 PyXML = 0.8.5
-erp5.util = 0.4.50
+erp5.util = 0.4.51
 slapos.recipe.template = 4.3
 ipython = 5.3.0
 apache-libcloud = 2.1.0

--- a/software/erp5testnode/testsuite/caddy-frontend/software.cfg
+++ b/software/erp5testnode/testsuite/caddy-frontend/software.cfg
@@ -73,3 +73,6 @@ slapos.test.caddy-frontend =
 erp5.util =
 slapos.recipe.template = 4.3
 forcediphttpsadapter = 1.0.1
+
+# slapos.test.caddy-frontend==0.0.1.dev0
+requests-toolbelt = 0.8.0
--- a/software/erp5testnode/testsuite/deploy-test/instance.cfg.in
+++ b/software/erp5testnode/testsuite/deploy-test/instance.cfg.in
@@ -29,7 +29,7 @@ rendered = $${buildout:directory}/bin/$${:_buildout_section_name_}
 template = inline:
  #!/bin/sh
  export PATH=${python-with-eggs:location}:$PATH
-  exec ${buildout:bin-directory}/${runTestSuite_py:interpreter} ${:_profile_base_location_}/runTestSuite.py --partition_ipv4 {{ list(partition_ipv4)[0] }} --partition_path $${buildout:directory} --test_reference "{{ slapparameter_dict.get('image-to-test-url') }} {{ slapparameter_dict.get('script-to-test-url')}}" --test_location "${test-location:base}/{{ slapparameter_dict.get('test-relative-directory')}}" "$@"
+  exec ${buildout:bin-directory}/${runTestSuite_py:interpreter} ${:_profile_base_location_}/runTestSuite.py --partition_ipv4 {{ list(partition_ipv4)[0] }} --partition_path $${buildout:directory} --test_reference "{{ slapparameter_dict.get('image-to-test-url') }} {{ slapparameter_dict.get('script-to-test-url')}}" --test_location "${test-location:base}/{{ slapparameter_dict.get('test-relative-directory')}}" --python_interpreter=${buildout:bin-directory}/${runTestSuite_py:interpreter} "$@"
 mode = 0755
 context =
    key slapparameter_dict slap-configuration:configuration

--- a/software/erp5testnode/testsuite/deploy-test/runTestSuite.py
+++ b/software/erp5testnode/testsuite/deploy-test/runTestSuite.py
@@ -143,14 +143,21 @@ def main():
      '--test_location',
      help="Location of the tests"
  )
+  parser.add_argument(
+      '--python_interpreter',
+      help="Path to python interpreter used to run the test suite"
+  )

  args = parser.parse_args()

  revision = args.revision
  test_suite_title = args.test_suite_title or args.test_suite
-  os.environ['SOURCE_CODE_TO_TEST'] = args.test_location
  suite = testsuite.EggTestSuite(
      1, test_suite=args.test_suite, node_quantity=args.node_quantity,
+      python_interpreter=args.python_interpreter,
+      egg_test_path_dict={
+          os.path.basename(os.path.normpath(path)): path
+          for path in args.test_location.split(',')},
      revision=revision)
  access_url_http = None
  access_url_https = None

--- a/software/erp5testnode/testsuite/deploy-test/software.cfg
+++ b/software/erp5testnode/testsuite/deploy-test/software.cfg
@@ -72,7 +72,8 @@ location = ${:_profile_base_location_}/${:filename}
 recipe = slapos.recipe.template
 url = ${:_profile_base_location_}/instance.cfg.in
 output = ${buildout:directory}/template.cfg
+md5sum = 616abb7fb4608321e11ade0a43b0ce4b
 mode = 0644

 [versions]
-erp5.util = 0.4.50
+erp5.util = 0.4.51
--- a/software/htmlvalidatorserver/software.cfg
+++ b/software/htmlvalidatorserver/software.cfg
@@ -73,7 +73,7 @@ dnspython = 1.15.0

 # Required by:
 # slapos.toolbox==0.73
-erp5.util = 0.4.50
+erp5.util = 0.4.51

 # Required by:
 # slapos.toolbox==0.73

--- a/software/jstestnode/software.cfg
+++ b/software/jstestnode/software.cfg
@@ -112,6 +112,6 @@ output = ${buildout:directory}/runTestSuite.in
 mode = 0644

 [versions]
-erp5.util = 0.4.50
+erp5.util = 0.4.51
 slapos.recipe.template = 4.3
 selenium = 3.8.0
--- a/software/kvm/common.cfg
+++ b/software/kvm/common.cfg
-[buildout]
-
-extends =
-  ../../component/6tunnel/buildout.cfg
-  ../../component/curl/buildout.cfg
-  ../../component/dash/buildout.cfg
-  ../../component/qemu-kvm/buildout.cfg
-  ../../component/noVNC/buildout.cfg
-  ../../component/openssl/buildout.cfg
-  ../../component/netcat/buildout.cfg
-  ../../component/pycurl/buildout.cfg
-  ../../stack/slapos.cfg
-  ../../component/nodejs/buildout.cfg
-  ../../stack/resilient/buildout.cfg
-
-# stacks are listed from most generic to most specific,
-# to avoid versioning issues
-common-parts =
-  template
-  eggs
-
-# XXX: we have to manually add this for resilience
-  rdiff-backup
-  pbs-recipe-egg
-
-
-parts = ${:common-parts}
-
-#XXX-Cedric : Currently, one can only access to KVM using noVNC.
-#             Ideally one should be able to access KVM by using either NoVNC or VNC.
-#             Problem is : no native crypto support in web browsers. So we have to disable ssl
-#             In qemu builtin vnc server, and make it available only for localhost
-#             so that only novnc can listen to it.
-
-#XXX-Cedric: Check status of https://github.com/kanaka/noVNC/issues/13 to see
-#            When qemu has builtin support for websockets in vnc server to get rid of
-#            Websockify (socket <-> websocket proxy server) when it is ready.
-#            May solve previous XXX depending on the implementation.
-
-#XXX-Cedric : add list of keyboard layouts (azerty/us querty/...) parameter to qemu
-
-[eggs]
-recipe = zc.recipe.egg
-interpreter = python.eggs
-eggs =
-  ${python-cffi:egg}
-  ${python-cryptography:egg}
-  ${lxml-python:egg}
-  websockify
-  slapos.cookbook
-  slapos.toolbox
-  erp5.util
-  cns.recipe.symlink
-  collective.recipe.template
-  plone.recipe.command
-  ${pycurl:egg}
-
-[http-proxy]
-# https://github.com/nodejitsu/node-http-proxy
-recipe = slapos.recipe.build:download-unpacked
-#XXX-Cedric : use upstream when merged
-url = https://nodeload.github.com/desaintmartin/node-http-proxy/zipball/20120621
-md5sum = 20204d0b29c2cef26e1c91e99eedca6b
-
-[proxy-by-url]
-# https://github.com/dominictarr/proxy-by-url
-recipe = slapos.recipe.build:download-unpacked
-#XXX-Cedric : use upstream when merged
-url = https://nodeload.github.com/desaintmartin/proxy-by-url/zipball/20120621
-md5sum = c2609948aa708581f93b981b23880314
-
-[npm-modules]
-recipe = plone.recipe.command
-destination = ${buildout:parts-directory}/${:_buildout_section_name_}
-location = ${buildout:parts-directory}/${:_buildout_section_name_}
-command =
-  export HOME=${:location};
-  rm -fr ${:destination} &&
-  mkdir -p ${:destination} &&
-  cd ${:destination} &&
-  ${nodejs:location}/bin/node ${nodejs:location}/bin/npm install colors@0.6.0-1 &&
-  ${nodejs:location}/bin/node ${nodejs:location}/bin/npm install socket.io@0.8.7 &&
-  ${nodejs:location}/bin/node ${nodejs:location}/bin/npm install socket.io-client@0.8.7 &&
-  ${nodejs:location}/bin/node ${nodejs:location}/bin/npm install optimist@0.3.1 &&
-  ${nodejs:location}/bin/node ${nodejs:location}/bin/npm install pkginfo@0.2.3
-
-
-# Create all templates that will be used to deploy instances
-
-[template]
-recipe = slapos.recipe.template
-url = ${:_profile_base_location_}/instance.cfg.in
-md5sum = 5a17fc127190bbc19361c5ffb10711b3 
-output = ${buildout:directory}/template.cfg
-mode = 0644
-
-[template-kvm]
-recipe = hexagonit.recipe.download
-ignore-existing = true
-url = ${:_profile_base_location_}/instance-kvm.cfg.jinja2
-mode = 644
-md5sum = e59ea29533d7f989ec676e14b0f29839
-download-only = true
-on-update = true
-
-[template-kvm-cluster]
-recipe = hexagonit.recipe.download
-ignore-existing = true
-url = ${:_profile_base_location_}/instance-kvm-cluster.cfg.jinja2.in
-mode = 644
-md5sum = ba3337b3678ed9d3578cc88749c5cd13
-download-only = true
-on-update = true
-
-[template-kvm-resilient]
-recipe = hexagonit.recipe.download
-ignore-existing = true
-url = ${:_profile_base_location_}/instance-kvm-resilient.cfg.jinja2
-mode = 644
-md5sum = 93e7143b46c6136b7cafe888fac90aba
-download-only = true
-on-update = true
-
-[template-kvm-import]
-recipe = hexagonit.recipe.download
-ignore-existing = true
-url = ${:_profile_base_location_}/instance-kvm-import.cfg.jinja2.in
-md5sum = dc3f3ad9ebd8b3b5c3ded57b91cee9c7
-mode = 0644
-download-only = true
-on-update = true
-
-[template-kvm-import-script]
-recipe = hexagonit.recipe.download
-ignore-existing = true
-url = ${:_profile_base_location_}/template/kvm-import.sh.jinja2
-filename = kvm-import.sh.jinja2
-md5sum = cd0008f1689dfca9b77370bc4d275b70
-download-only = true
-mode = 0755
-
-[template-kvm-export]
-recipe = hexagonit.recipe.download
-ignore-existing = true
-url = ${:_profile_base_location_}/instance-kvm-export.cfg.jinja2
-mode = 644
-md5sum = fbad91193be6ebde5fc4c05a38a55e7b
-download-only = true
-on-update = true
-
-[template-kvm-export-script]
-recipe = hexagonit.recipe.download
-ignore-existing = true
-url = ${:_profile_base_location_}/template/kvm-export.sh.jinja2
-filename = kvm-export.sh.jinja2
-md5sum = b617d64de73de1eed518185f310bbc82
-download-only = true
-mode = 0755
-
-[template-nbd]
-recipe = slapos.recipe.template
-url = ${:_profile_base_location_}/instance-nbd.cfg.in
-md5sum = f634a5249b773658b7a7bc9fa9bb0368
-output = ${buildout:directory}/template-nbd.cfg
-mode = 0644
-
-[template-frontend]
-recipe = slapos.recipe.template
-url = ${:_profile_base_location_}/instance-frontend.cfg.in
-md5sum = cdb690495e9eb007d2b7d2f8e12f5c59
-output = ${buildout:directory}/template-frontend.cfg
-mode = 0644
-
-[template-ansible-promise]
-recipe = hexagonit.recipe.download
-ignore-existing = true
-url = ${:_profile_base_location_}/template/ansible-promise.in
-md5sum = 2036bf145f472f62ef8dee5e729328fd
-mode = 0644
-download-only = true
-filename = ansible-promise.in
-
-[template-kvm-run]
-recipe = hexagonit.recipe.download
-ignore-existing = true
-url = ${:_profile_base_location_}/template/template-kvm-run.in
-mode = 644
-filename = template-kvm-run.in
-md5sum = c6f1536a3502102dadbfb9d82496cc36
-download-only = true
-on-update = true
-
-[template-kvm-controller]
-recipe = hexagonit.recipe.download
-ignore-existing = true
-url = ${:_profile_base_location_}/template/kvm-controller-run.in
-mode = 644
-filename = kvm-controller-run.in
-md5sum = c86cd67bbdd26b7b14b7449a1bbd959b
-download-only = true
-on-update = true
-
-[template-apache-conf]
-recipe = hexagonit.recipe.download
-ignore-existing = true
-url = ${:_profile_base_location_}/template/apache.conf.in
-mode = 644
-filename = apache.conf.in
-md5sum = ac97f6a52e1c5a19a646242ef85abb8a
-download-only = true
-on-update = true
-
-[template-content]
-recipe = hexagonit.recipe.download
-ignore-existing = true
-url = ${:_profile_base_location_}/template/template-content.in
-mode = 644
-filename = template-content.in
-md5sum = 822737e483864bf255ad1259237bef2a
-download-only = true
-on-update = true
-
-[template-qemu-ready]
-recipe = hexagonit.recipe.download
-ignore-existing = true
-url = ${:_profile_base_location_}/template/qemu-is-ready.in
-mode = 644
-filename = qemu-is-ready.in
-md5sum = b304eec8e2cb71f10ea83cac22f6db12
-download-only = true
-on-update = true
-
-[file-download-script]
-recipe = hexagonit.recipe.download
-ignore-existing = true
-url = ${:_profile_base_location_}/template/download_file.in
-mode = 644
-filename = download_file
-md5sum = 599dbbbd438fe7801e3f8642ae9e9a78
-download-only = true
-on-update = true
-
-[template-httpd]
-recipe = slapos.recipe.template:jinja2
-filename = template-httpd.cfg
-template = ${:_profile_base_location_}/instance-kvm-http.cfg.in
-rendered = ${buildout:parts-directory}/${:_buildout_section_name_}/instance-kvm-http.cfg
-md5sum = 26a181a48046ce88570adb32334747ef
-context =
-    key apache_location apache:location
-    raw openssl_executable_location ${openssl:location}/bin/openssl
-    raw template_apache_conf ${template-apache-conf:location}/${template-apache-conf:filename}
-
-
--- a/software/kvm/development.cfg
+++ b/software/kvm/development.cfg
@@ -4,7 +4,7 @@
 # allowing to play with bleeding edge environment.

 [buildout]
-extends = common.cfg
+extends = software.cfg
  ../../stack/slapos-dev.cfg

 parts +=

--- a/software/kvm/software.cfg
+++ b/software/kvm/software.cfg
 [buildout]
-extends = common.cfg
+
+extends =
+  ../../component/6tunnel/buildout.cfg
+  ../../component/curl/buildout.cfg
+  ../../component/dash/buildout.cfg
+  ../../component/qemu-kvm/buildout.cfg
+  ../../component/noVNC/buildout.cfg
+  ../../component/openssl/buildout.cfg
+  ../../component/netcat/buildout.cfg
+  ../../component/pycurl/buildout.cfg
+  ../../stack/slapos.cfg
+  ../../component/nodejs/buildout.cfg
+  ../../stack/resilient/buildout.cfg
+
+# stacks are listed from most generic to most specific,
+# to avoid versioning issues
+common-parts =
+  template
+  eggs
+
+# XXX: we have to manually add this for resilience
+  rdiff-backup
+  pbs-recipe-egg
+
+
+parts = ${:common-parts}
+
+#XXX-Cedric : Currently, one can only access to KVM using noVNC.
+#             Ideally one should be able to access KVM by using either NoVNC or VNC.
+#             Problem is : no native crypto support in web browsers. So we have to disable ssl
+#             In qemu builtin vnc server, and make it available only for localhost
+#             so that only novnc can listen to it.
+
+#XXX-Cedric: Check status of https://github.com/kanaka/noVNC/issues/13 to see
+#            When qemu has builtin support for websockets in vnc server to get rid of
+#            Websockify (socket <-> websocket proxy server) when it is ready.
+#            May solve previous XXX depending on the implementation.
+
+#XXX-Cedric : add list of keyboard layouts (azerty/us querty/...) parameter to qemu
+
+[eggs]
+recipe = zc.recipe.egg
+interpreter = python.eggs
+eggs =
+  ${python-cffi:egg}
+  ${python-cryptography:egg}
+  ${lxml-python:egg}
+  websockify
+  slapos.cookbook
+  slapos.toolbox
+  erp5.util
+  cns.recipe.symlink
+  collective.recipe.template
+  plone.recipe.command
+  ${pycurl:egg}
+
+[http-proxy]
+# https://github.com/nodejitsu/node-http-proxy
+recipe = slapos.recipe.build:download-unpacked
+#XXX-Cedric : use upstream when merged
+url = https://nodeload.github.com/desaintmartin/node-http-proxy/zipball/20120621
+md5sum = 20204d0b29c2cef26e1c91e99eedca6b
+
+[proxy-by-url]
+# https://github.com/dominictarr/proxy-by-url
+recipe = slapos.recipe.build:download-unpacked
+#XXX-Cedric : use upstream when merged
+url = https://nodeload.github.com/desaintmartin/proxy-by-url/zipball/20120621
+md5sum = c2609948aa708581f93b981b23880314
+
+[npm-modules]
+recipe = plone.recipe.command
+destination = ${buildout:parts-directory}/${:_buildout_section_name_}
+location = ${buildout:parts-directory}/${:_buildout_section_name_}
+command =
+  export HOME=${:location};
+  rm -fr ${:destination} &&
+  mkdir -p ${:destination} &&
+  cd ${:destination} &&
+  ${nodejs:location}/bin/node ${nodejs:location}/bin/npm install colors@0.6.0-1 &&
+  ${nodejs:location}/bin/node ${nodejs:location}/bin/npm install socket.io@0.8.7 &&
+  ${nodejs:location}/bin/node ${nodejs:location}/bin/npm install socket.io-client@0.8.7 &&
+  ${nodejs:location}/bin/node ${nodejs:location}/bin/npm install optimist@0.3.1 &&
+  ${nodejs:location}/bin/node ${nodejs:location}/bin/npm install pkginfo@0.2.3
+
+
+# Create all templates that will be used to deploy instances
+
+[template]
+recipe = slapos.recipe.template
+url = ${:_profile_base_location_}/instance.cfg.in
+md5sum = 5a17fc127190bbc19361c5ffb10711b3 
+output = ${buildout:directory}/template.cfg
+mode = 0644
+
+[template-kvm]
+recipe = hexagonit.recipe.download
+ignore-existing = true
+url = ${:_profile_base_location_}/instance-kvm.cfg.jinja2
+mode = 644
+md5sum = e59ea29533d7f989ec676e14b0f29839
+download-only = true
+on-update = true
+
+[template-kvm-cluster]
+recipe = hexagonit.recipe.download
+ignore-existing = true
+url = ${:_profile_base_location_}/instance-kvm-cluster.cfg.jinja2.in
+mode = 644
+md5sum = ba3337b3678ed9d3578cc88749c5cd13
+download-only = true
+on-update = true
+
+[template-kvm-resilient]
+recipe = hexagonit.recipe.download
+ignore-existing = true
+url = ${:_profile_base_location_}/instance-kvm-resilient.cfg.jinja2
+mode = 644
+md5sum = 93e7143b46c6136b7cafe888fac90aba
+download-only = true
+on-update = true
+
+[template-kvm-import]
+recipe = hexagonit.recipe.download
+ignore-existing = true
+url = ${:_profile_base_location_}/instance-kvm-import.cfg.jinja2.in
+md5sum = dc3f3ad9ebd8b3b5c3ded57b91cee9c7
+mode = 0644
+download-only = true
+on-update = true
+
+[template-kvm-import-script]
+recipe = hexagonit.recipe.download
+ignore-existing = true
+url = ${:_profile_base_location_}/template/kvm-import.sh.jinja2
+filename = kvm-import.sh.jinja2
+md5sum = cd0008f1689dfca9b77370bc4d275b70
+download-only = true
+mode = 0755
+
+[template-kvm-export]
+recipe = hexagonit.recipe.download
+ignore-existing = true
+url = ${:_profile_base_location_}/instance-kvm-export.cfg.jinja2
+mode = 644
+md5sum = fbad91193be6ebde5fc4c05a38a55e7b
+download-only = true
+on-update = true
+
+[template-kvm-export-script]
+recipe = hexagonit.recipe.download
+ignore-existing = true
+url = ${:_profile_base_location_}/template/kvm-export.sh.jinja2
+filename = kvm-export.sh.jinja2
+md5sum = b617d64de73de1eed518185f310bbc82
+download-only = true
+mode = 0755
+
+[template-nbd]
+recipe = slapos.recipe.template
+url = ${:_profile_base_location_}/instance-nbd.cfg.in
+md5sum = f634a5249b773658b7a7bc9fa9bb0368
+output = ${buildout:directory}/template-nbd.cfg
+mode = 0644
+
+[template-frontend]
+recipe = slapos.recipe.template
+url = ${:_profile_base_location_}/instance-frontend.cfg.in
+md5sum = cdb690495e9eb007d2b7d2f8e12f5c59
+output = ${buildout:directory}/template-frontend.cfg
+mode = 0644
+
+[template-ansible-promise]
+recipe = hexagonit.recipe.download
+ignore-existing = true
+url = ${:_profile_base_location_}/template/ansible-promise.in
+md5sum = 2036bf145f472f62ef8dee5e729328fd
+mode = 0644
+download-only = true
+filename = ansible-promise.in
+
+[template-kvm-run]
+recipe = hexagonit.recipe.download
+ignore-existing = true
+url = ${:_profile_base_location_}/template/template-kvm-run.in
+mode = 644
+filename = template-kvm-run.in
+md5sum = c6f1536a3502102dadbfb9d82496cc36
+download-only = true
+on-update = true
+
+[template-kvm-controller]
+recipe = hexagonit.recipe.download
+ignore-existing = true
+url = ${:_profile_base_location_}/template/kvm-controller-run.in
+mode = 644
+filename = kvm-controller-run.in
+md5sum = c86cd67bbdd26b7b14b7449a1bbd959b
+download-only = true
+on-update = true
+
+[template-apache-conf]
+recipe = hexagonit.recipe.download
+ignore-existing = true
+url = ${:_profile_base_location_}/template/apache.conf.in
+mode = 644
+filename = apache.conf.in
+md5sum = ac97f6a52e1c5a19a646242ef85abb8a
+download-only = true
+on-update = true
+
+[template-content]
+recipe = hexagonit.recipe.download
+ignore-existing = true
+url = ${:_profile_base_location_}/template/template-content.in
+mode = 644
+filename = template-content.in
+md5sum = 822737e483864bf255ad1259237bef2a
+download-only = true
+on-update = true
+
+[template-qemu-ready]
+recipe = hexagonit.recipe.download
+ignore-existing = true
+url = ${:_profile_base_location_}/template/qemu-is-ready.in
+mode = 644
+filename = qemu-is-ready.in
+md5sum = b304eec8e2cb71f10ea83cac22f6db12
+download-only = true
+on-update = true
+
+[file-download-script]
+recipe = hexagonit.recipe.download
+ignore-existing = true
+url = ${:_profile_base_location_}/template/download_file.in
+mode = 644
+filename = download_file
+md5sum = 599dbbbd438fe7801e3f8642ae9e9a78
+download-only = true
+on-update = true
+
+[template-httpd]
+recipe = slapos.recipe.template:jinja2
+filename = template-httpd.cfg
+template = ${:_profile_base_location_}/instance-kvm-http.cfg.in
+rendered = ${buildout:parts-directory}/${:_buildout_section_name_}/instance-kvm-http.cfg
+md5sum = 26a181a48046ce88570adb32334747ef
+context =
+    key apache_location apache:location
+    raw openssl_executable_location ${openssl:location}/bin/openssl
+    raw template_apache_conf ${template-apache-conf:location}/${template-apache-conf:filename}

 [versions]
 # XXX - use websockify = 0.5.1 for compatibility with kvm frontend
 websockify = 0.5.1

 slapos.toolbox = 0.76
-erp5.util = 0.4.49
+erp5.util = 0.4.51
 apache-libcloud = 1.1.0
 collective.recipe.environment = 0.2.0
 gitdb = 0.6.4

--- a/software/monitor/software.cfg
+++ b/software/monitor/software.cfg
@@ -99,7 +99,7 @@ eggs +=
 [versions]
 slapos.recipe.template = 4.3
 dnspython = 1.15.0
-erp5.util = 0.4.50
+erp5.util = 0.4.51
 passlib = 1.7.1
 GitPython = 2.1.9
 lockfile = 0.12.2

--- a/software/neoppod/runTestSuite.in
+++ b/software/neoppod/runTestSuite.in
@@ -71,7 +71,7 @@ def main():

  test_name_list = 'SQLite', 'MySQL'

-  tool = taskdistribution.TaskDistributionTool(portal_url = args.master_url)
+  tool = taskdistribution.TaskDistributor(portal_url = args.master_url)
  test_result = tool.createTestResult(revision = revision,
                                      test_name_list = test_name_list,
                                      node_title = args.test_node_title,

--- a/software/neoppod/software-common.cfg
+++ b/software/neoppod/software-common.cfg
@@ -135,6 +135,8 @@ transaction = 1.7.0
 zodbpickle = 0.6.0
 zodbtools = 0.0.0.dev4
 cython-zstd = 0.2
+python-dateutil = 2.7.3
+pyasn1 = 0.4.3

 # Required by:
 # slapos.toolbox==0.71

--- a/software/neoppod/software.cfg
+++ b/software/neoppod/software.cfg
@@ -26,7 +26,7 @@ md5sum = ee8401a4e7d82bf488a57e3399f9ce48
 [runTestSuite.in]
 recipe = slapos.recipe.build:download
 url = ${:_profile_base_location_}/${:_buildout_section_name_}
-md5sum = d8bba690cf950613d5576ff23813df59
+md5sum = b656e805c5dbc7f9c73716398b3e032e

 [runTestSuite_py]
 recipe = zc.recipe.egg
@@ -34,7 +34,7 @@ eggs = erp5.util
 interpreter = ${:_buildout_section_name_}

 [versions]
-erp5.util = 0.4.49
+erp5.util = 0.4.51
 # To match ERP5
 ZConfig = 2.9.3
 zc.lockfile = 1.0.2

--- a/software/neotest/software.cfg
+++ b/software/neotest/software.cfg
@@ -110,6 +110,8 @@ eggs    =
    ZEO
 # for nxd/runTestSuite
    erp5.util
+# for e.g. tcpu.py
+    pygolang


 # wendelin.core: latest not yet released
@@ -122,7 +124,8 @@ pyasn1 = 0.3.7
 ZODB3 = 3.11.0
 numpy = 1.14.2
 zope.testing = 4.6.2
-erp5.util = 0.4.50
+pygolang = 0.0.0.dev4
+erp5.util = 0.4.51

 # Required by:
 # ZEO==4.3.1

--- a/software/nginx-push-stream/software.cfg
+++ b/software/nginx-push-stream/software.cfg
@@ -49,7 +49,7 @@ slapos.recipe.template = 4.3
 slapos.toolbox = 0.76
 dnspython = 1.15.0
 PyRSS2Gen = 1.1
-erp5.util = 0.4.50
+erp5.util = 0.4.51
 passlib = 1.7.1
 GitPython = 2.1.8
 lockfile = 0.12.2

--- a/software/re6stnet/software.cfg
+++ b/software/re6stnet/software.cfg
@@ -121,7 +121,7 @@ slapos.recipe.template = 4.3
 slapos.toolbox = 0.76
 smmap = 0.9.0
 dnspython = 1.15.0
-erp5.util = 0.4.50
+erp5.util = 0.4.51
 passlib = 1.7.1

 # Required by:

--- a/software/slapos-testing/buildout.hash.cfg
+++ b/software/slapos-testing/buildout.hash.cfg
@@ -15,5 +15,5 @@

 [template]
 filename = instance.cfg
-md5sum = 9dece9d12dc94bf5c35d307cc8aa4d6b
+md5sum = d361db5f94e8c568e2aa44014d0ba91b

--- a/software/slapos-testing/instance.cfg
+++ b/software/slapos-testing/instance.cfg
@@ -30,6 +30,10 @@ git-executable = ${git:location}/bin/git
 <= download-source
 repository = ${caucase-repository:location}

+[slapos.libnetworkcache]
+<= download-source
+repository = ${slapos.libnetworkcache-repository:location}
+
 [erp5.util]
 <= download-source
 repository = ${erp5.util-repository:location}
@@ -65,7 +69,7 @@ wrapper-path = $${create-directory:bin}/runTestSuite
 command-line =
  ${buildout:bin-directory}/runTestSuite
  --python_interpreter=${buildout:bin-directory}/${eggs:interpreter}
-  --source_code_path_list=$${caucase:location},$${erp5.util:location},$${slapos.cookbook:location},$${slapos.core:location},$${slapos.recipe.build:location},$${slapos.recipe.cmmi:location},$${slapos.recipe.template:location},$${slapos.toolbox:location}
+  --source_code_path_list=$${caucase:location},$${erp5.util:location},$${slapos.cookbook:location},$${slapos.core:location},$${slapos.recipe.build:location},$${slapos.recipe.cmmi:location},$${slapos.recipe.template:location},$${slapos.toolbox:location},$${slapos.libnetworkcache:location}

 # Notes about environment:
 # * slapos.cookbook:wrapper does not seem to allow "extending" PATH. Tests
@@ -74,7 +78,7 @@ command-line =
 #   /usr/bin and /bin in $PATH
 # * LOCAL_IPV4 is needed for some slapos.core tests
 environment =
-  PATH=${coreutils:location}/bin:${curl:location}/bin:${openssl:location}/bin:${git:location}/bin:${libxslt:location}/bin:/usr/bin/:/bin/
+  PATH=${coreutils:location}/bin:${curl:location}/bin:${openssl:location}/bin:${git:location}/bin:${libxslt:location}/bin:${socat:location}/bin:/usr/bin/:/bin/
  LOCAL_IPV4=$${slap-configuration:ipv4-random}



--- a/software/slapos-testing/software.cfg
+++ b/software/slapos-testing/software.cfg
@@ -10,6 +10,7 @@ extends =
  ../../component/phantomjs/buildout.cfg
  ../../component/pycurl/buildout.cfg
  ../../component/coreutils/buildout.cfg
+  ../../component/socat/buildout.cfg
  ../../stack/slapos.cfg
  ./buildout.hash.cfg

@@ -33,6 +34,11 @@ recipe = zc.recipe.egg:develop
 egg = caucase
 setup = ${caucase-repository:location}

+[slapos.libnetworkcache-setup]
+<= setup-develop-egg
+egg = slapos.libnetworkcache
+setup = ${slapos.libnetworkcache-repository:location}
+
 [erp5.util-setup]
 <= setup-develop-egg
 # XXX erp5.util does not have `test` extra require, but has a `testnode` extra require with same dependencies
@@ -95,6 +101,7 @@ eggs =
  ${slapos.recipe.cmmi-setup:egg}
  ${slapos.recipe.template-setup:egg}
  ${slapos.toolbox-setup:egg}
+  ${slapos.libnetworkcache-setup:egg}
  mock
  zope.testing
  httmock
@@ -132,6 +139,10 @@ repository = https://lab.nexedi.com/nexedi/slapos.core.git
 <= git-clone-repository
 repository = https://lab.nexedi.com/nexedi/slapos.recipe.template.git

+[slapos.libnetworkcache-repository]
+<= git-clone-repository
+repository = https://lab.nexedi.com/nexedi/slapos.libnetworkcache.git
+
 [slapos.recipe.build-repository]
 <= git-clone-repository
 repository = https://lab.nexedi.com/nexedi/slapos.recipe.build.git
@@ -161,12 +172,47 @@ mode = 640
 [versions]
 Pygments = 2.1.3

-# clear the version of tested eggs, to make sure we installed the developped ones
-caucase =
-erp5.util =
-slapos.cookbook =
-slapos.core =
-slapos.recipe.build =
-slapos.recipe.cmmi =
-slapos.recipe.template =
-slapos.toolbox =
+slapos.recipe.build = 0.36
+slapos.recipe.cmmi = 0.7
+slapos.recipe.template = 4.3
+slapos.toolbox = 0.76 
+
+# All depencies should be pinned.
+apache-libcloud = 2.3.0
+bcrypt = 3.1.4
+dnspython = 1.15.0
+funcsigs = 1.0.2
+gitdb2 = 2.0.4
+httmock = 1.2.6
+manuel = 1.9.0
+mock = 2.0.0
+pem = 18.1.0
+pyasn1 = 0.4.3
+pycurl = 7.43.0.2
+pyflakes = 2.0.0
+smmap2 = 2.0.4
+zope.testing = 4.6.2
+
+# Required by:
+# slapos.toolbox==0.76
+GitPython = 2.1.11
+
+# Required by:
+# slapos.toolbox==0.76
+PyRSS2Gen = 1.1
+
+# Required by:
+# slapos.toolbox==0.76
+atomize = 0.2.0
+
+# Required by:
+# slapos.toolbox==0.76
+feedparser = 5.2.1
+
+# Required by:
+# slapos.toolbox==0.76
+lockfile = 0.12.2
+
+# Required by:
+# slapos.toolbox==0.76
+passlib = 1.7.1
--- a/software/slaprunner/buildout.hash.cfg
+++ b/software/slaprunner/buildout.hash.cfg
@@ -22,7 +22,7 @@ md5sum = 04e31ac503753f89510dd412b4680c56

 [template-runner-import-script]
 filename = template/runner-import.sh.jinja2
-md5sum = ab5f0ae6febc0d5c247ec5542b5f0519
+md5sum = e033845c9c24e4bb20caeedf19f9628a

 [instance-runner-import]
 filename = instance-runner-import.cfg.in

--- a/software/slaprunner/common.cfg
+++ b/software/slaprunner/common.cfg
-[buildout]
-extends =
-  buildout.hash.cfg
-  ../../component/bash/buildout.cfg
-  ../../component/busybox/buildout.cfg
-  ../../component/curl/buildout.cfg
-  ../../component/dash/buildout.cfg
-  ../../component/dcron/buildout.cfg
-  ../../component/git/buildout.cfg
-  ../../component/tig/buildout.cfg
-  ../../component/logrotate/buildout.cfg
-  ../../component/lxml-python/buildout.cfg
-  ../../component/nano/buildout.cfg
-  ../../component/nginx/buildout.cfg
-  ../../component/openssh/buildout.cfg
-  ../../component/mosh/buildout.cfg
-  ../../component/rsync/buildout.cfg
-  ../../component/pycurl/buildout.cfg
-  ../../component/python-2.7/buildout.cfg
-  ../../component/screen/buildout.cfg
-  ../../component/shellinabox/buildout.cfg
-  ../../component/vim/buildout.cfg
-  ../../component/zip/buildout.cfg
-  ../../stack/slapos.cfg
-  ../../stack/flask.cfg
-  ../../stack/resilient/buildout.cfg
-  ../../stack/monitor/buildout.cfg
-
-# stacks are listed from most generic to most specific,
-# to avoid versioning issues
-
-common-parts =
-  template
-  eggs
-  instance-runner-import
-  instance-runner-export
-  template-slapos-cfg
-  template-slapuser-script
-# XXX: we have to manually add this for resilience
-  rdiff-backup
-  pbs-recipe-egg
-
-parts =
-  ${:common-parts}
-
-# Use shellinabox from github with AF_UNIX support
-[shellinabox]
-<= shellinabox-github
-
-[template-base]
-recipe = slapos.recipe.template
-url = ${:_profile_base_location_}/${:filename}
-mode = 0644
-
-[download-base]
-recipe = hexagonit.recipe.download
-url = ${:_profile_base_location_}/${:filename}
-mode = 0644
-
-[download-only-base]
-< = download-base
-ignore-existing = true
-download-only = true
-
-[template-download-base]
-# Downloads from template directory into current directory
-< = download-only-base
-url = ${:_profile_base_location_}/template/${:filename}
-location = ${buildout:parts-directory}/${:_buildout_section_name_}
-
-[template]
-< = template-base
-output = ${buildout:directory}/template.cfg
-
-[template-runner]
-< = template-base
-output = ${buildout:directory}/template-runner.cfg.in
-
-[template-runner-import-script]
-< = template-download-base
-filename = runner-import.sh.jinja2
-
-[template-runner-export-script]
-< = template-download-base
-filename = runner-export.sh.jinja2
-
-[instance-runner-import]
-< = download-base
-recipe = slapos.recipe.build:download
-
-[instance-runner-export]
-< = download-base
-recipe = slapos.recipe.build:download
-
-[template-resilient]
-< = download-base
-recipe = slapos.recipe.build:download
-
-[template_nginx_conf]
-< = download-only-base
-
-[template_httpd_conf]
-< = download-only-base
-
-[template_launcher]
-< = download-base
-recipe = slapos.recipe.build:download
-
-[template-slapos-cfg]
-< = template-download-base
-filename = slapos.cfg.in
-
-[template-parameters]
-< = download-only-base
-
-[template-bash-profile]
-< = template-download-base
-filename = bash_profile.in
-
-[template-supervisord]
-< = template-download-base
-filename = supervisord.conf.in
-
-[template-listener-slapgrid]
-< = template-download-base
-filename = listener_slapgrid.py.in
-
-[monitor-check-webrunner-internal-instance]
-< = template-download-base
-destination = ${:location}/${:filename}
-filename = monitor-check-webrunner-internal-instances.py
-
-[template-resilient-software-release-information]
-< = template-download-base
-filename = resilient_software_release_information.py.in
-
-[template-slapuser-script]
-< = template-download-base
-filename = slapos-slapuser-script.in
-
-[eggs]
-recipe = zc.recipe.egg
-eggs =
-  ${pycurl:egg}
-  collective.recipe.template
-  cns.recipe.symlink
-  erp5.util
-  lock-file
-  plone.recipe.command
-  slapos.recipe.build
-  slapos.toolbox[flask_auth]
-  gunicorn==19.7.1
-  futures
-  ${slapos-cookbook:eggs}
-  slapos.core # listed explicitly for scripts generation
-
-[extra-eggs]
-recipe = zc.recipe.egg
-interpreter = pythonwitheggs
-eggs +=
-  supervisor
-
--- a/software/slaprunner/development.cfg
+++ b/software/slaprunner/development.cfg
@@ -4,7 +4,7 @@
 # allowing to play with bleeding edge environment.

 [buildout]
-extends = common.cfg
+extends = software.cfg
  ../../stack/slapos-dev.cfg

 parts +=
@@ -15,4 +15,3 @@ parts +=
 slapos.cookbook =
 slapos.core =
 slapos.toolbox =
-lockfile =
--- a/software/slaprunner/software.cfg
+++ b/software/slaprunner/software.cfg
-# Production profile of slaprunner.
-# Exactly the same as common.cfg, but:
-# 1/ Use a defined set of Python eggs instead of using the latest available
-#    ones from Pypi, to ensure stability;
-
 [buildout]
-extends = common.cfg
+extends =
+  buildout.hash.cfg
+  ../../component/bash/buildout.cfg
+  ../../component/busybox/buildout.cfg
+  ../../component/curl/buildout.cfg
+  ../../component/dash/buildout.cfg
+  ../../component/dcron/buildout.cfg
+  ../../component/git/buildout.cfg
+  ../../component/tig/buildout.cfg
+  ../../component/logrotate/buildout.cfg
+  ../../component/lxml-python/buildout.cfg
+  ../../component/nano/buildout.cfg
+  ../../component/nginx/buildout.cfg
+  ../../component/openssh/buildout.cfg
+  ../../component/mosh/buildout.cfg
+  ../../component/rsync/buildout.cfg
+  ../../component/pycurl/buildout.cfg
+  ../../component/python-2.7/buildout.cfg
+  ../../component/screen/buildout.cfg
+  ../../component/shellinabox/buildout.cfg
+  ../../component/vim/buildout.cfg
+  ../../component/zip/buildout.cfg
+  ../../stack/slapos.cfg
+  ../../stack/flask.cfg
+  ../../stack/resilient/buildout.cfg
+  ../../stack/monitor/buildout.cfg
+
+# stacks are listed from most generic to most specific,
+# to avoid versioning issues
+
+common-parts =
+  template
+  eggs
+  instance-runner-import
+  instance-runner-export
+  template-slapos-cfg
+  template-slapuser-script
+# XXX: we have to manually add this for resilience
+  rdiff-backup
+  pbs-recipe-egg
+
+parts =
+  ${:common-parts}
+
+# Use shellinabox from github with AF_UNIX support
+[shellinabox]
+<= shellinabox-github
+
+[template-base]
+recipe = slapos.recipe.template
+url = ${:_profile_base_location_}/${:filename}
+mode = 0644
+
+[download-base]
+recipe = hexagonit.recipe.download
+url = ${:_profile_base_location_}/${:filename}
+mode = 0644
+
+[download-only-base]
+< = download-base
+ignore-existing = true
+download-only = true
+
+[template-download-base]
+# Downloads from template directory into current directory
+< = download-only-base
+url = ${:_profile_base_location_}/template/${:filename}
+location = ${buildout:parts-directory}/${:_buildout_section_name_}
+
+[template]
+< = template-base
+output = ${buildout:directory}/template.cfg
+
+[template-runner]
+< = template-base
+output = ${buildout:directory}/template-runner.cfg.in
+
+[template-runner-import-script]
+< = template-download-base
+filename = runner-import.sh.jinja2
+
+[template-runner-export-script]
+< = template-download-base
+filename = runner-export.sh.jinja2
+
+[instance-runner-import]
+< = download-base
+recipe = slapos.recipe.build:download
+
+[instance-runner-export]
+< = download-base
+recipe = slapos.recipe.build:download
+
+[template-resilient]
+< = download-base
+recipe = slapos.recipe.build:download
+
+[template_nginx_conf]
+< = download-only-base
+
+[template_httpd_conf]
+< = download-only-base
+
+[template_launcher]
+< = download-base
+recipe = slapos.recipe.build:download
+
+[template-slapos-cfg]
+< = template-download-base
+filename = slapos.cfg.in
+
+[template-parameters]
+< = download-only-base
+
+[template-bash-profile]
+< = template-download-base
+filename = bash_profile.in
+
+[template-supervisord]
+< = template-download-base
+filename = supervisord.conf.in
+
+[template-listener-slapgrid]
+< = template-download-base
+filename = listener_slapgrid.py.in
+
+[monitor-check-webrunner-internal-instance]
+< = template-download-base
+destination = ${:location}/${:filename}
+filename = monitor-check-webrunner-internal-instances.py
+
+[template-resilient-software-release-information]
+< = template-download-base
+filename = resilient_software_release_information.py.in
+
+[template-slapuser-script]
+< = template-download-base
+filename = slapos-slapuser-script.in
+
+[eggs]
+recipe = zc.recipe.egg
+eggs =
+  ${pycurl:egg}
+  collective.recipe.template
+  cns.recipe.symlink
+  erp5.util
+  lock-file
+  plone.recipe.command
+  slapos.recipe.build
+  slapos.toolbox[flask_auth]
+  gunicorn==19.7.1
+  futures
+  ${slapos-cookbook:eggs}
+  slapos.core # listed explicitly for scripts generation
+
+[extra-eggs]
+recipe = zc.recipe.egg
+interpreter = pythonwitheggs
+eggs +=
+  supervisor

 [versions]
 Flask-Auth = 0.85
@@ -19,6 +173,7 @@ slapos.recipe.template = 4.3
 collective.recipe.environment = 0.2.0
 slapos.toolbox = 0.76
 smmap = 0.9.0
+lockfile = 0.12.2

 # Required by:
 # slapos.toolbox==0.71
@@ -38,7 +193,7 @@ dnspython = 1.14.0

 # Required by:
 # slapos.toolbox==0.71
-erp5.util = 0.4.49
+erp5.util = 0.4.51

 # Required by:
 # slapos.toolbox==0.71

--- a/software/slaprunner/template/runner-import.sh.jinja2
+++ b/software/slaprunner/template/runner-import.sh.jinja2
@@ -157,6 +157,19 @@ SLAPOSCFG='{{ supervisord["slapos-cfg"] }}'
 SLAPGRIDSRLOG='{{ supervisord["slapgrid-sr-log"] }}'
 SLAPGRIDCPLOG='{{ supervisord["slapgrid-cp-log"] }}'

+contain_software_release=0
+
+SOFTWARE_RELEASES_COUNT=$("$SQLITE3" "$DATABASE" 'SELECT count(1) FROM software11 WHERE url != "";')
+if [ $SOFTWARE_RELEASES_COUNT -gt 0 ]; then
+  contain_software_release=1
+fi
+
+if [ $contain_software_release -eq 0 ]; then
+  log_message "No Software Release were deployed, so skip to continue..."
+  echo 0 > $RESTORE_EXIT_CODE_FILE
+  exit 0
+fi
+
 log_message "Building newest Software Release..."
 "$SLAPOS" node software --cfg "$SLAPOSCFG" --all --master-url="$MASTERURL" --logfile "$SLAPGRIDSRLOG" >/dev/null 2>&1 ||
 "$SLAPOS" node software --cfg "$SLAPOSCFG" --all --master-url="$MASTERURL" --logfile "$SLAPGRIDSRLOG" >/dev/null 2>&1 ||

--- a/stack/caucase/buildout.cfg
+++ b/stack/caucase/buildout.cfg
@@ -157,7 +157,7 @@ dnspython = 1.15.0

 # Required by:
 # slapos.toolbox==0.71
-erp5.util = 0.4.49
+erp5.util = 0.4.51

 # Required by:
 # slapos.toolbox==0.71

--- a/stack/cloudooo.cfg
+++ b/stack/cloudooo.cfg
@@ -96,4 +96,4 @@ PasteDeploy = 1.5.2

 # Required by:
 # cloudooo==1.2.5.dev0
-erp5.util = 0.4.49
+erp5.util = 0.4.51
--- a/stack/slapos-dev.cfg
+++ b/stack/slapos-dev.cfg
@@ -55,4 +55,3 @@ slapos.cookbook =
 slapos.core =
 slapos.toolbox =
 erp5-util =
-lockfile =