Skip to content

Instantly share code, notes, and snippets.

View zheng022's full-sized avatar

Zheng Zeng zheng022

4 followers · 2 following
View GitHub Profile
@zheng022
zheng022 / sync-script.md
Last active September 4, 2025 15:11

The following snippet helps to copy script from enterprise2 to a ghebooted instance:

#!/bin/bash
#/ Usage: ./copy.sh <ghe-boot-host-name>
TARGET_HOST="${1}"
TARGET_USER="admin"
TARGET_PORT="122"

set -e
@zheng022
zheng022 / api-cli.md
Last active April 23, 2025 14:30

What Operators do

  • Operator manage and configure instance with UI
  • Operator builds automation with API
  • Operator does fire fighting with ssh + bash script

What can the purpose of an API/CLI

  • Part of the UI architecture and support a robust UI solution
  • Help operators build an reliable and efficient automation
@zheng022
zheng022 / AR-summary.md
Last active February 18, 2025 07:27

Availability Review Retrospect

We initiated a systematic availability review process following our July 2024 offsite (see Revival of the GHES Availability Review Process). The first availability issue was then created on August 16th, marking almost a year since our previous review.

Our journey began by exploring what availability truly means for GHES. We recognized that an escalation's value extends beyond mere resolution - we aimed to foster deeper discussions, prevent recurrence through measured repair items, and share knowledge via comprehensive runbooks.

Over the past 6 months, we've made significant strides in our availability review processes:

  • Created 29 availability issues
  • Generated 29 repair items, with 22 successfully resolved
  • Conducted 9 availability review meetings
@zheng022
zheng022 / sparkle.md
Last active January 2, 2025 08:26

GitHub Enterprise Server (GHES)

You are an enterprise engineer!

Introduction

Because GitHub Enterprise Server (GHES) drives our revenue and supports our largest and most recognizable clients, every engineer at GitHub, including yourself, is an enterprise engineer! This lab is an opportunity to practice a few of the concepts you'll need to test code that you write in a GHES environment.

As a prerequisite to this lab, you should watch each part of the Engineering for Enterprise Lecture(TODO). The lecture provides an overview of the tools and concepts that we will be practicing during this self-directed exercise. After watching the lecture, you should be familiar with the key concepts required to complete this lab:

@zheng022
zheng022 / ghes_ar_schema.json
Last active November 20, 2024 13:37
schema json for GHES AR issue
{
"incidentStatusedTime": "2024-10-07T11:30",
// "resolutionTime": "2024-10-31T04:50", // Dotcom specific
// "visibility": "public", //Dotcom specific
// "mostSignificantServiceStatus": "red",// Dotcom specific
//"impactedServices": [],// Dotcom specific
"resolvingIncidentCommander": "hubot",
// "incidentUrl": "https://status-staging.githubapp.com/incidents/27863", // Dotcom specific
// "impactStartTime": "2024-10-31T03:40", // Dotcom specific
// "impactDetectionTime": "2024-10-31T03:40", // Dotcom specific
@zheng022
zheng022 / ar-process.md
Last active September 9, 2024 19:23
A practical guide on availability review process

In the past two weeks, we've held two Availability Review meetings featuring excellent presenters. These meetings facilitated fruitful discussions on how we can reflect and learn from customer incidents. (In case you missed any, you can find the recording for 08-27 and 09-04)๐Ÿค—

To enhance the efficiency of our AR meetings, here's a guide on the current Availability Review process and how AR issues should be completed. We're also integrating GHES-specific requirements into overall GitHub automations. Future improvements are expected to ease and eliminate more manual steps.๐Ÿ˜Œ

๐Ÿพ Process at a glance:

# Step Info
1 Availability Review created at end of GHES SEV 1 this will be automated in future
@zheng022
zheng022 / runbook.md
Last active August 30, 2024 17:22
revive runbook

We would like to have runbook to facilitate engineer oncall

  1. review existing runbook from support which are related to GHES engineering.

A spreadsheet is created now to start with the runbooks that are over 1 year old

  1. create runbooks for GHES engineering with catagorized topics
image
@zheng022
zheng022 / map_load_profile.sh
Last active August 13, 2024 07:13
map logs to github load test profile
#!/bin/bash
BUNDLE_PATH=$1
git_ssh_clone=$(zgrep 'proto=ssh.*cmd=git-upload-pack.*op done' $BUNDLE_PATH/babeld-logs/babeld.log.1.gz | grep -o 'ts=[^:]*' | uniq -c | sort -nr | head -n1 | awk '{printf "%.2f", $1/3600}')
git_http_clone=$(zgrep 'proto=http.*cmd=git-upload-pack.*op done' $BUNDLE_PATH/babeld-logs/babeld.log.1.gz | grep -o 'ts=[^:]*' | uniq -c | sort -nr | head -n1 | awk '{printf "%.2f", $1/3600}')
git_ssh_push=$(zgrep 'proto=ssh.*cmd=git-receive-pack.*op done' $BUNDLE_PATH/babeld-logs/babeld.log.1.gz | grep -o 'ts=[^:]*' | uniq -c | sort -nr | head -n1 | awk '{printf "%.2f", $1/60}')
git_http_push=$(zgrep 'proto=http.*cmd=git-receive-pack.*op done' $BUNDLE_PATH/babeld-logs/babeld.log.1.gz | grep -o 'ts=[^:]*' | uniq -c | sort -nr | head -n1 | awk '{printf "%.2f", $1/60}')
code_zip=$(grep -E 'GET .*/archive/.*.zip' $BUNDLE_PATH/system-logs/haproxy.log.1 | cut -c 1-11 | uniq -c | sort -rn -k1 | head -n1 | awk '{printf "%.2f", $1/10}')
@zheng022
zheng022 / noproxy.md
Last active May 22, 2023 17:16
noproxy

Since this is the 3rd time a ticket is created because of this check added a while back, I think it is a good idea to have a summary and clarification on what will be allowed as a noproxy

IP address

rule example actual expected issue checked by
full valid IPV4 is allowed 192.168.10.10 allowed allowed no IPAddr.new(host_to_check)
full valid IPV6 is allowed 2001:42:4:0:0:1:34:0 allowed allowed no IPAddr.new(host_to_check)
partial IP with preceeding dot as wild card is not allowed .192.168 not allowed unknown no [IPAddr.new(host_to_check)](https://github.com/github/enterprise2/blob/master/enterprise-manage/lib/manage/validators/enterpri