Release Engineering from the Ground Up

Release Engineering
from the Ground Up
Tom Santero
@tsantero
The New York Times Company

View Slide

View Slide

Search
http://nytimes.com

View Slide

Listener Rules Engine
Idx
Mgr
Asset Data Directory

View Slide

View Slide

An Experience Report
releng

View Slide

View Slide

Continuous
Automated Deploys

View Slide

Single Target Environment

View Slide

Repository Migrations

View Slide

SVN
GitHub

View Slide

Master
Feature
- release by commit
- commit

View Slide

Listens for commits
- builds on every push to any branch
!
Run unit tests, reports build/test statistics
!
If branch == master:
- cut release as RPM
- increment version number
- push RPM to yum repo

View Slide

View Slide

provisioning / termination
!
release ver upgrades
!
host system conﬁguration
- registration and discovery

View Slide

single repo: roles, tasks, ﬁles
!
abstract out common tasks
e.g. ElasticSearch, Riak, Jenkins
!
parameterized per env + svc

View Slide

Jenkins: update release tag
in Ansible repo
!
Source of Truth?
- correlate builds, releases
and environments *

View Slide

View Slide

Load Balancer

View Slide

nyt_lb*
* naming is hard (also, too bad there’s no logo)
service registration + discovery
!
allow for load balancing internal + external trafﬁc
!
lightweight, robust, redundant
!
scalable, highly-available

View Slide

RESTful API
svc plugins: nginx, haproxy…
in-memory db
persistence &
failure
recovery
distributed
systems
magic
!
gossip + CRDTs

View Slide

nyt_lb
nyt_lb nyt_lb
all cluster state are CRDTs
- node membership
- registered services
- service attributes

View Slide

nyt_lb
nyt_lb nyt_lb
quorum operations + gossip
!
all state is monotonic & conﬂuent
!
new state converges

View Slide

nyt_lb
nyt_lb nyt_lb
upon provision and conﬁguration,
services register themselves
!
take themselves out of LBs during
upgrades; maintenance; destroy

View Slide

what’s up?

View Slide

unique identiﬁers
env-level tagging

View Slide

event = {
'host' : ip-10-45-136-116,
'service' : load-average,
'metric' : 0.7,
'state' : ok,
'time' : 1413551091.341055,
'tags' : [dev, suggest-api, load]
'ttl' : 10,
'description' : description
}
event = {
'host' : ip-10-45-136-116,
'service' : load-average,
'metric' : 3.2,
'state' : warning,
'time' : 1413551176.852009,
'tags' : [dev, suggest-api, load]
'ttl' : 10,
'description' : description
}

View Slide

operational challenges and failures are a given
isolate and identify root causes
!
check logic belongs close to the thing monitored
!
push events ; compute per grp/env + expectation

View Slide

Graphite

View Slide

build dev stg prd

View Slide

Test Metrics
System Metrics
Event Metrics

View Slide

what does a green test
really mean, anyway?

View Slide

maybe the build is red
because we ﬁxed all the bugs?

View Slide

test coverage as actionable
!
becomes a problem of categorization

View Slide

which machines are working harder?
!
do failures have a pattern?

View Slide

how often does X happen?
!
logging, alerts: indicators

View Slide

Lessons Learned and Future(?) Work
Lot of work; diﬃcult tradeoﬀ for low-barrier to entry + robust system
!
Containers are nice, but ecosystem is still too immature
!
Correlating application, system, build metrics still manual
- maybe emit events from Jenkins —> Riemann —> Datomic
- Push button re-deploys of point-in-time environments
!
Historical performance metrics as automated regression testing
!
Automated security auditing, static code analysis, etc..

View Slide

Questions?
Tom Santero
@tsantero
The New York Times Company
8D

View Slide

Release Engineering from the Ground Up

Release Engineering from the Ground Up

Tom Santero

More Decks by Tom Santero

Other Decks in Programming

Featured

Transcript