Mind the Gap

View Slide

Deploying in Unforgiving
Environments
(Control Your Dependencies)
(the network is a dependency)

View Slide

/(robbkidd)/
twitter.com/$1
github.com/$1

View Slide

View Slide

History

View Slide

Configker

View Slide

Chef-Server

View Slide

Chef-Solo

View Slide

Patterns for Getting Stuff
on Your Servers

View Slide

remote_file

View Slide

The Essential remote_file
remote_file "/opt/sauce/sauce_#{node[:sauce][:version]}.tgz" do
source "#{node[:sauce][:url]}/awesome_sauce_#{node[:sauce][:version]}.tgz"
end

View Slide

Better: Give It a Checksum
remote_file "/opt/sauce/sauce_#{node[:sauce][:version]}.tgz" do
* checksum node[:sauce][:checksum]
end

View Slide

Ever Better: Put It in the Chef Cache
# v-------------------------------v
* remote_file "#{Chef::Config[:file_cache_path]}/sauce_#{node[:sauce][:version]}.tgz" do
checksum node[:sauce][:checksum]
end

View Slide

packaging

View Slide

fpm

View Slide

Example Packaging Step
fpm -s dir \
-t deb \
--name awesome_sauce \
--version "$(shell git describe --always --tag)" \
--before-install ./etc/preinst.sh \
--deb-upstart ./etc/saucy \
--config-files /etc/saucy.yml \
./bin/saucy=/usr/bin/ \
saucy.yml.sample=/etc/saucy/

View Slide

shelling out

View Slide

View Slide

RVM
4 custom RVM install ahead of chef-rvm
4 install RVM via tarball according to the offline
steps
4 rvm mount ruby-version.tgz
4 carry on with our uses of chev-rvm
4 rvm-shell mostly

View Slide

View Slide

python's default.rb
include_recipe "python::#{node['python']['install_method']}"
include_recipe "python::pip"
include_recipe "python::virtualenv"

View Slide

python_shim.rb
%w(python-pip python-virtualenv).each do |pkg|
package pkg do
action :install
end
end
link "/usr/local/bin/pip" do
to "/usr/bin/pip"
end
directory "/root/.pip/"
file "/root/.pip/pip.conf" do
content "[global]\ntimeout = 1\n"
end

View Slide

Getting Stuff on Your Servers
(Review)
4 remote_file
4 packages
4 shelling out :(

View Slide

A Tale of Three Caches

View Slide

Library Cache

View Slide

bundle package
(for ruby peeps)

View Slide

Package Cache

View Slide

View Slide

apt-cacher-ng

View Slide

Chef Cache

View Slide

vagrant-cachier

View Slide

monkeypatch

View Slide

class ::Chef
class Provider
class RemoteFile
class Content < Chef::FileContentManagement::ContentBase
private
def current_resource_matches_target_checksum?
::Chef::Log.info("Airgapped - skipping content checksum for #{@new_resource}")
true
end
end
end
end
end

View Slide

Mo' Better?
(things I haven't got working yet)

View Slide

chef-client --local-mode

View Slide

Shim Cookbook
AntiPattern?

View Slide

no 3rd party cookbooks?

View Slide

omnibus packages?

View Slide

containers?

View Slide

Shoulders of Giants
Mark Olson - Lookingglass
Eric Sproul - Circonus

View Slide

Review
4 history
4 recipe patterns
4 caching tricks
4 future possibilities

View Slide

Payoff
4 works without access to network resources
4 chef convergence is faster!
4 chef convergence is predictable!

View Slide

4 Mind the Gap photo by Clicsouris
4 Vagrant - Mitchell Hashimoto/Hashicorp
4 vagrant-cachier - Fabio Rehm
4 fpm - Jordan Sissell
4 knife-solo - Mat Schaffer

View Slide

Mind the Gap

Mind the Gap

Robb Kidd

Featured

Transcript