A stemcell is a versioned Operating System image wrapped with IaaS specific packaging.

Typical stemcell contains bare minimum OS skeleton with few common utilities pre-installed, a BOSH Agent and few configuration files to make OS be securely configured by default.

Learn more about stemcells.

Ubuntu Lucid, CentOS 6.x, and Ruby agent based stemcells are deprecated.

Upload latest version to your BOSH Director:

# Upload latest version, currently 3363.12
$ bosh upload stemcell https://bosh.io/d/stemcells/bosh-openstack-kvm-ubuntu-trusty-go_agent-raw

# Upload specific version
$ bosh upload stemcell https://bosh.io/d/stemcells/bosh-openstack-kvm-ubuntu-trusty-go_agent-raw?v=3363.12

Alternatively, download stemcell tarball locally:

# ...or download it directly using curl
$ curl -L -J -O https://bosh.io/d/stemcells/bosh-openstack-kvm-ubuntu-trusty-go_agent-raw?v=3363.12

# or with wget...
$ wget --content-disposition https://bosh.io/d/stemcells/bosh-openstack-kvm-ubuntu-trusty-go_agent-raw?v=3363.12
  • Ubuntu Trusty

    • OpenStack KVM (raw) 384MB
      2017-03-10T00:55:55.000Z 9400a80015b57c78801c429bb0302fbe2318598b [SHA1]
    • OpenStack KVM (raw) 384MB
      2017-03-08T23:49:10.000Z 23fd7868873bf2af4d2b97526a0e0af14696500a [SHA1]
      • Bumps Ubuntu stemcells for USN-3220-2: Linux kernel (Xenial HWE) vulnerability
    • OpenStack KVM (raw) 384MB
      2017-02-23T02:26:31.000Z 2acde200a6aa480f7ae0488804c012affc493aef [SHA1]

      Changes: - Bumps Ubuntu stemcells for USN-3208-2: Linux kernel (Xenial HWE) vulnerabilities - Fixes excessive “out of memory” errors in kernel - https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1655842 - Fixes regression to rsyslog by locking it down again to rsyslog 8.22.0

      Agent: - Fixes Azure stemcell persistent disk formatting - Fixes Warden stemcells SSH access

    • OpenStack KVM (raw) 383MB
      2017-02-17T21:15:05.000Z 5e1affdcef857e964dd779645cfb2f707b554c10 [SHA1]

      Reported Problems: - DO NOT USE azure stemcell as it may cause data loss. - rsyslog version updated to 8.24.0, regressing on issue #1537 - Out of memory errors still exists in Kernel 4.4.0.62 - will be fixed around Feb 20.

      Changes: - Fixes double -hvm- suffix problem for AWS Light stemcells

    • OpenStack KVM (raw) 383MB
      2017-02-16T02:17:18.000Z 6d878448f0e721a5467dfa7c598470715f9358ab [SHA1]

      Reported Problems: - DO NOT USE azure stemcell as it may cause data loss. - Out of memory errors still exists in Kernel 4.4.0.62 - will be fixed around Feb 20. - rsyslog version updated to 8.24.0, regressing on issue #1537 - AWS Light stemcell has incorrect name once imported - BOSH SSH does not work on BOSH Lite

      Changes: - Add more auditd rules - Fix CentOS initramfs to load necessary kernel modules - Disable boot loader login - Increasing tcp_max_sync_backlog - Disabling any DSA host keys - Add bosh_sshers group and assign it to vcap user - Only allow users in bosh_sshers group to SSH

      Agent: - Log Agent API access events in CEF format to syslog (vcap.agent topic) - Allow configuring swap size through env.bosh.swap_size (example: env.bosh.swap_size: 0) - Prepare for SHA2 releases - Allow setting fetching to work with base64 encoded user data - Do not delaycompress in logrotate

    • OpenStack KVM (raw) 384MB
      2017-03-08T23:51:37.000Z e30c78c610942acd1396b720387bdf5258da49a0 [SHA1]
    • OpenStack KVM (raw) 383MB
      2017-02-23T01:53:52.000Z edf0fc1bcdc453f8c8cc47fd36d63fb1ae2eedba [SHA1]
    • OpenStack KVM (raw) 383MB
      2017-02-10T00:58:47.000Z 2c62f55b3876044b1f5fccca35b9607237a6e6f1 [SHA1]
    • OpenStack KVM (raw) 382MB
      2016-12-14T02:47:31.000Z b910bc282708e78854657bf6bca389e3bd270b09 [SHA1]
      • Bumps Ubuntu stemcells for USN-3156-1: APT vulnerability
    • OpenStack KVM (raw) 382MB
      2016-12-05T17:31:06.000Z 6ffaaff3e44ef09fdb46b3c3fe7911346804b077 [SHA1]
      • Periodic stemcell update
    • OpenStack KVM (raw) 382MB
      2016-12-02T16:31:12.000Z a88436eb1ab27dcd2248adbca523873216516435 [SHA1]
    • OpenStack KVM (raw) 382MB
      2016-11-30T04:51:07.000Z 41c2d12234850673dea514c01e6ce8eb91e5e5da [SHA1]
      • Periodic stemcell update
        • Includes USN-3134-1 as requested by a community member
    • OpenStack KVM (raw) 382MB
      2016-11-16T22:13:20.000Z dfb93bfff2ce983c92968059d86c0b907619cd23 [SHA1]
      • Properly includes libpam_cracklib.so to avoid errors in /var/log/auth.log
    • OpenStack KVM (raw) 381MB
      2016-11-10T23:55:10.000Z ce7ff39f0e4696a9a448652e0216ee6d556fe2c6 [SHA1]
      • Fixes persistent disk mounting on OpenStack described in Stemcell 3308
    • OpenStack KVM (raw) 381MB
      2016-11-10T03:52:44.000Z 558ec0526fe5ae85b1504006b2b9db758aec9bd9 [SHA1]

      Reported Problems: - On OpenStack: Mounting persistent disks not working when using config-drive: disk while nova is configured to use a cdrom config-drive due to https://github.com/cloudfoundry/bosh/issues/1503

      Fixes: - Fixes SSH key installation issue introduced in Stemcell 3306

    • OpenStack KVM (raw) 382MB
      2016-11-08T17:24:25.000Z 57de07abad7a90ce8807144304f75641db744bb0 [SHA1]

      Reported Problems - bosh-init doesn’t work with this stemcell on OpenStack and AWS due to https://github.com/cloudfoundry/bosh/issues/1500 - Booting the stemcell image directly in you IaaS (without using BOSH/bosh-init) does no longer provision the ssh key for user vcap, so you need to login differently

      Changes - Agent will now wait for monit to complete stop all processes before carrying on - Added google stemcells - Default dmesg_restrict to 1 - Disable all IPv6 configurations - Reenabled UDF kernel module for Azure - Increase root_maxkeys and maxkeys kernel configurations - Changed default hostname to bosh-stemcell instead of localhost to avoid boot problems on GCP - Lower TCP keepalive configuration by default - Mount /var/log directory to /var/vcap/data/root_log - Restrict Access to the su command - Add pam_cracklib requirements to common-password and password-auth - Enable auditing for processes that start prior to auditd - Set log rotation interval to 15 min in stemcell - Made ownership & permissions for /etc/cron* files more restrictive - Customize shell prompt to show instance name and ID - Removed floppy drives from vSphere stemcells - Removed bosh micro assets hence making bosh micro unsupported

      Misc: - Stemcells are now built through Concourse via https://main.bosh-ci.cf-app.com/teams/main/pipelines/bosh:stemcells

    • OpenStack KVM (raw) 524MB
      2017-03-09T00:18:27.000Z 9116c856a60cf41cf559e6e3fb570c9777f00bce [SHA1]
    • OpenStack KVM (raw) 524MB
      2017-02-23T00:59:19.000Z 7dc349db89c17d03619d671107340f5bce7ddb34 [SHA1]
    • OpenStack KVM (raw) 523MB
      2017-01-13T04:36:14.000Z f2848f70ad07cc6b8dd1ea273ca0fec9cf8c0155 [SHA1]
    • OpenStack KVM (raw) 523MB
      2016-12-31T07:13:23.000Z b7f0d0b549a6eb5c1d4e3a9109a3f8f7d404a6be [SHA1]
    • OpenStack KVM (raw) 523MB
      2016-12-15T05:40:41.000Z 1d124838ce8f037887a7799bb1ab72b1def7ff3b [SHA1]
    • OpenStack KVM (raw) 523MB
      2016-12-14T01:37:11.000Z d85aef96147d82346a8c6d73bceff88a2ca3b220 [SHA1]
    • OpenStack KVM (raw) 523MB
      2016-12-06T17:12:51.000Z 611190eba6cc0a54cbf151f1c93dc9496e6c66e5 [SHA1]
    • OpenStack KVM (raw) 523MB
      2016-11-03T18:22:35.000Z 3381a9eb6070897187451010ec46a7f65dc709b1 [SHA1]
      • Updates CentOS kernel to the latest version for “Dirty COW”
        • Ubuntu stemcells were updated in previous versions at the time of Ubuntu USN updates
      • Includes fix to the bosh-agent to better support 1TB+ disk partitioning
    • OpenStack KVM (raw) 523MB
      2016-10-21T02:30:01.000Z 381797b711706c278feb71536852498f0315ab01 [SHA1]
      • Bump Ubuntu stemcells for USN-3106-2: Linux kernel (Xenial HWE) vulnerability
      • Includes a fix to the bosh-agent to work more reliably with 2TB+ persistent disks
    • OpenStack KVM (raw) 523MB
      2016-10-12T21:03:24.000Z 71028669bb18af745e18b003cbd63c51ba4a0225 [SHA1]
      • Bump Ubuntu stemcells for USN-3099-2: Linux kernel (Xenial HWE) vulnerabilities
    • OpenStack KVM (raw) 522MB
      2016-09-30T16:44:18.000Z e73e4126f04a58d4340f9f6a8f3edadeb11763e0 [SHA1]
      • Periodic bump
      • Delay start of rsyslogd using systemd on CentOS
    • OpenStack KVM (raw) 522MB
      2016-09-28T15:14:04.000Z 2e18244668610721f24bf967f00898b0d684f91a [SHA1]
      • google-kvm: improve the google-* daemon configurations
        • fixes ssh: handshake failed errors on boot
    • OpenStack KVM (raw) 522MB
      2016-09-26T17:12:47.000Z 805f2fc223c8df82dd34bb835f03cdf1ac54d53b [SHA1]
      • Bumps Ubuntu stemcells for USN-3087-2 (OpenSSL regression)
    • OpenStack KVM (raw) 522MB
      2016-09-21T18:52:32.000Z 535b79c188337418b307e53ba3bb5cd36bff1b03 [SHA1]
    • OpenStack KVM (raw) 522MB
      2016-09-19T21:55:37.000Z 93943056fc9730a51cd5a759ada9e91cc47c64e6 [SHA1]
      • Bumps Ubuntu to Linux kernel to 4.4

      Based on 3262 stemcells. Note: OpenStack stemcells series 3263 is broken due to https://github.com/cloudfoundry/bosh-agent/issues/98 and should not be used

    • OpenStack KVM (raw) 518MB
      2016-10-22T05:08:38.000Z bab1c4ad1df24bf78daa97b368fef6eb384757ce [SHA1]
    • OpenStack KVM (raw) 518MB
      2016-10-13T15:15:39.000Z 9b56816138aa7197042c147a49445d60be3e1fe0 [SHA1]
      • Bump Ubuntu stemcells for USN-3099-2: Linux kernel (Xenial HWE) vulnerabilities
    • OpenStack KVM (raw) 518MB
      2016-09-30T15:49:33.000Z 8da0eae93e4f220adbe4ba174f1166da556f491e [SHA1]
    • OpenStack KVM (raw) 518MB
      2016-09-28T00:50:21.000Z ebf8887f3632946daf1dbe681eb8e31e51e787d7 [SHA1]
      • google-kvm: improve the google-* daemon configurations
        • fixes ssh: handshake failed errors on boot