A stemcell is a versioned Operating System image wrapped with IaaS specific packaging.

Typical stemcell contains bare minimum OS skeleton with few common utilities pre-installed, a BOSH Agent and few configuration files to make OS be securely configured by default.

Learn more about stemcells.

Ubuntu Lucid, CentOS 6.x, and Ruby agent based stemcells are deprecated.

Windows instance types will have additional costs associated with Microsoft licensing. Windows stemcell do not include actual Windows OS.

Upload latest version to your BOSH Director:

# Upload latest version, currently 3445.11
$ bosh upload-stemcell https://bosh.io/d/stemcells/bosh-openstack-kvm-ubuntu-trusty-go_agent

# Upload specific version
$ bosh upload-stemcell https://bosh.io/d/stemcells/bosh-openstack-kvm-ubuntu-trusty-go_agent?v=3445.11

Alternatively, download stemcell tarball locally:

# ...or download it directly using curl
$ curl -L -J -O https://bosh.io/d/stemcells/bosh-openstack-kvm-ubuntu-trusty-go_agent?v=3445.11

# or with wget...
$ wget --content-disposition https://bosh.io/d/stemcells/bosh-openstack-kvm-ubuntu-trusty-go_agent?v=3445.11
  • Ubuntu Trusty

    • OpenStack KVM 417 MB
      2017-09-19T21:52:10.000Z 967c1e0a47f3009bd1d8aac51425ba7cf8671913 [SHA1]
    • OpenStack KVM 417 MB
      2017-08-31T22:44:01.000Z be99ce385099c341fa75b04034dd0018117d9bfb [SHA1]
      • Logrotate /var/log/wtmp and utmp more aggressively
      • Updated BOSH agent to include aggressive 5 minute timeout on NATS connection failure
      • Set auditd rules to be mutable by default
        • Please use auditd job from os-conf-release to make rules immutable
    • OpenStack KVM 413 MB
      2017-08-04T21:28:19.000Z d53f397ba1474e613228d2b8d7567141081c1dfe [SHA1]
      • Bump version (no change)
    • OpenStack KVM 413 MB
      2017-07-31T22:03:56.000Z 6b97d0b66c11828bfa05600cdb695f12edbc35c2 [SHA1]
      • Periodic Ubuntu stemcells update
    • OpenStack KVM 413 MB
      2017-09-19T21:52:10.000Z e33cc61b8851c50ebc2542da011c04b431e1d9a4 [SHA1]
    • OpenStack KVM 413 MB
      2017-09-07T23:23:42.000Z 9663d0fc04367dbf87dca45c9ccc9ad8f4dbb217 [SHA1]
    • OpenStack KVM 413 MB
      2017-08-01T21:04:00.000Z a1a9795af0aa7a115ded34c36de5cbda60a3e306 [SHA1]
    • OpenStack KVM 413 MB
      2017-06-30T00:28:09.000Z d2b1237a7221cc4a86f41259c2d494fe8ce70aed [SHA1]
      • Bump Ubuntu stemcells for USN-3344-2: Linux kernel (Xenial HWE) vulnerabilities
    • OpenStack KVM 412 MB
      2017-06-21T03:32:02.000Z 555422a138a90bc9864495b564a016dfb9d83961 [SHA1]
      • Bump Ubuntu stemcells for USN-3334-1: Linux kernel (Xenial HWE) vulnerabilities
    • OpenStack KVM 412 MB
      2017-06-12T16:51:04.000Z dbb8347f57d045bf169b370645545b3432cccf57 [SHA1]
      • Bump Ubuntu stemcells for USN-3312-2 - Linux kernel vulnerabilities
    • OpenStack KVM 412 MB
      2017-06-05T17:36:19.000Z 7864b78ae2224fbfbace7142e069f9a40cda10e9 [SHA1]
      • Bump CentOS stemcells for CESA-2017:1382 - sudo vulnerability
    • OpenStack KVM 412 MB
      2017-05-30T22:45:46.000Z 76267d19ef3165e00fcb914f29bbe8651448220c [SHA1]
      • Bump Ubuntu stemcells for USN-3304-1: Sudo vulnerability
    • OpenStack KVM 412 MB
      2017-05-23T00:34:33.000Z b58cad988debd17aba3ba75190b9c36666ed4e46 [SHA1]


      • Added env.bosh.remove_static_libraries (bool) to remove static libraries
        • Useful to enable this option when exporting compiled releases
      • Added env.bosh.ipv6.enable (bool) to remove ipv6.disable kernel functionality at bootup time


      • Fixed sysstat logging
      • Fixed anacron’s RANDOM_DELAY configuration


      • Bumped s3cli v0.0.60
        • Updated aws-sdk-go to solve network timeout edge case
      • Bumped davcli v0.0.19
        • Use TCP keep alive to solve network timeout edge case
      • Bumped bosh-agent v0.0.35
        • Add -v to the Agent binary
        • Prepared sync_dns action to work with future Director’s DNS integration
    • OpenStack KVM 414 MB
      2017-09-19T21:52:10.000Z f3d6e57eac1e5377cb03de91efec79ea3168507a [SHA1]
    • OpenStack KVM 413 MB
      2017-09-07T21:01:02.000Z 08a30050f03d57d8b290a7e1d53419745f2391a6 [SHA1]
    • OpenStack KVM 413 MB
      2017-08-17T00:55:09.000Z f3e7409749230705e5a8bb5b9e23caeee201de6e [SHA1]
    • OpenStack KVM 413 MB
      2017-08-11T22:45:23.000Z 21ca57d33faaca2068e54127d9a4416521b4d84c [SHA1]
    • OpenStack KVM 413 MB
      2017-08-04T00:03:50.000Z 52a118609e0ff03e1fa64958eff7609e3270e130 [SHA1]
    • OpenStack KVM 413 MB
      2017-06-30T00:43:11.000Z c95604e85f6279475f9fd6117b4db57dfb19562d [SHA1]
    • OpenStack KVM 413 MB
      2017-06-21T02:56:27.000Z 1ecdaf4a2bd29d8f01a0328c79303d5a9ff65c46 [SHA1]
    • OpenStack KVM 413 MB
      2017-05-30T23:01:32.000Z 7d3eec35ce6a6b35d70d155340536e4d5cbdefc9 [SHA1]
    • OpenStack KVM 413 MB
      2017-05-19T23:41:15.000Z baa11492ac6c53e8f629b60228ac975031aac26d [SHA1]
      • Periodic Ubuntu stemcells update
    • OpenStack KVM 413 MB
      2017-05-12T19:27:36.000Z 6617717830276eac276d99a082ac05325f7d015a [SHA1]
      • Periodic Ubuntu stemcells update
      • Run cron in BOSH Lite stemcells so that logrotation is performed
    • OpenStack KVM 413 MB
      2017-04-25T23:13:48.000Z bc8096c0d817b407aed15af487bd6d5f4ad069f7 [SHA1]
      • Bump Ubuntu stemcells for USN-3265-2: Linux kernel (Xenial HWE) vulnerabilities
    • OpenStack KVM 413 MB
      2017-04-17T22:48:31.000Z 8226148c965bc89bd642c69d7eda793216bfdbff [SHA1]
      • Periodic bump for CentOS stemcells to include CESA-2017:0933
      • Disable IPv6 through /proc/cmdline to eliminate possibilty of listening on tcp6/udp6
    • OpenStack KVM 413 MB
      2017-04-05T21:54:49.000Z 15921b89bc340e541ac6f6ede46b2dae52bd7ba2 [SHA1]
      • Bump Ubuntu stemcells for USN-3256-2: Linux kernel (HWE) vulnerability


      • Made AWS AMI backing snapshot public to support encryption of boot disks
    • OpenStack KVM 413 MB
      2017-03-30T21:27:47.000Z 26008d885ef36479837aac45263fe21f2124e645 [SHA1]
      • Bump Ubuntu stemcells for USN-3249-2: Linux kernel (Xenial HWE) vulnerability
    • OpenStack KVM 413 MB
      2017-03-10T00:55:52.000Z 7b95f76ce3539f9ae78c403f9805a62d30a63710 [SHA1]
    • OpenStack KVM 413 MB
      2017-03-08T23:49:05.000Z 8bbf850c53a0466b4023b0173c48ce7f7c2826a8 [SHA1]
      • Bumps Ubuntu stemcells for USN-3220-2: Linux kernel (Xenial HWE) vulnerability
    • OpenStack KVM 413 MB
      2017-02-23T02:26:27.000Z 1cddb531c96cc4022920b169a37eda71069c87dd [SHA1]

      Changes: - Bumps Ubuntu stemcells for USN-3208-2: Linux kernel (Xenial HWE) vulnerabilities - Fixes excessive “out of memory” errors in kernel - https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1655842 - Fixes regression to rsyslog by locking it down again to rsyslog 8.22.0

      Agent: - Fixes Azure stemcell persistent disk formatting - Fixes Warden stemcells SSH access

    • OpenStack KVM 413 MB
      2017-02-17T21:14:47.000Z ce710c5b2e8e4a4727cd866fcc7259942fa72d62 [SHA1]

      Reported Problems: - DO NOT USE azure stemcell as it may cause data loss. - rsyslog version updated to 8.24.0, regressing on issue #1537 - Out of memory errors still exists in Kernel - will be fixed around Feb 20.

      Changes: - Fixes double -hvm- suffix problem for AWS Light stemcells

    • OpenStack KVM 413 MB
      2017-02-16T02:17:12.000Z 9db642b70eb93bb4092f967d8c1716be67af1a77 [SHA1]

      Reported Problems: - DO NOT USE azure stemcell as it may cause data loss. - Out of memory errors still exists in Kernel - will be fixed around Feb 20. - rsyslog version updated to 8.24.0, regressing on issue #1537 - AWS Light stemcell has incorrect name once imported - BOSH SSH does not work on BOSH Lite

      Changes: - Add more auditd rules - Fix CentOS initramfs to load necessary kernel modules - Disable boot loader login - Increasing tcp_max_sync_backlog - Disabling any DSA host keys - Add bosh_sshers group and assign it to vcap user - Only allow users in bosh_sshers group to SSH

      Agent: - Log Agent API access events in CEF format to syslog (vcap.agent topic) - Allow configuring swap size through env.bosh.swap_size (example: env.bosh.swap_size: 0) - Prepare for SHA2 releases - Allow setting fetching to work with base64 encoded user data - Do not delaycompress in logrotate

    • OpenStack KVM 414 MB
      2017-09-19T21:52:10.000Z 976354340d0b11cf96e2091d82764581b45ecba4 [SHA1]
    • OpenStack KVM 413 MB
      2017-08-17T00:47:17.000Z 9165ecf7596e022dfe183fcf9b385d4773bac07c [SHA1]