SlideShare a Scribd company logo

Automating Your Salt Tests

Download as PPTX, PDF
R
Ryan Currah

Ryan Currah discussed automating Salt tests by treating testing as code. He recommends using tools like ServerSpec to define state tests as code, Jenkins Pipeline to define test jobs as code, and capturing state events to enable analytics on state executions. Automating testing helps catch issues early, improves confidence in releases, and prevents testing bottlenecks. Currah demonstrated generating and searching Salt state events in Splunk.

1 of 27
Downloaded 21 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
Automating Your Salt Tests Ryan Currah github@ryancurrah twitter@rcurrah
MY EXPERIENCE • Was lead Salt engineer for large Canadian bank • Develop formulas • Salt master architecture • Salt git development strategy • Salt testing and testing automation
TALK GOAL Help newer Salt users start off on the right foot
DON’T FORGET TO AUTOMATE TESTING If you don’t automate testing it will become a bottleneck If you do automate testing you will catch issues early and feel confident when you release
TESTING AS CODE Requirements • State testing defined as code • Jobs defined as code • Pipeline capabilities • Fast testing feedback • Tools were on premise
TESTING TOOLS SELECTED • Code analysis: shellcheck (bash), flake8 (python) • State testing: ServerSpec • Container: Docker • Test orchestration: Jenkins Pipeline (Formerly Workflow) • Versioning: Git tag + bumpversion
CODE ANALYSIS ON FORMULAS Not uncommon to see scripts in formulas Code analysis enables • Good coding styles • Consistency • Express how we want code to be written • No jinja templated scripts (Use cmd.script w/ input arguments instead)
TEST STATE Two different views of state • For example in the issue github.com/saltstack/salt/issues/24647 • file.copy state with force=True did not work • Reported no changes when the file should have changed • ServerSpec tests caught this issue Audit formula changes • Formula changes will be captured by tests
ServerSpec What can you test? • Process is running • Service is running • Service is enabled on boot • Port is open • Firewall rule exists • Package is installed • User and group exists • File exists • File user and group ownership • File hashes • The list goes on see… http://serverspec.org/resource_types.html Reuseable spec files known a shared files • http://serverspec.org/advanced_tips.html • https://github.com/rubyisbeautiful/serverspec_examples
JOBS AS CODE Jenkins Pipeline enables jobs as code and a deilvery pipeline (without the spaghetti jobs) • Jenkinsfile (Groovy script) placed in the Salt formula repo • Pipeline stages (Build, QA, Production) • Pipeline visualization and metrics • Average build time, current build time, stage views, failed steps
JENKINS PLUGINS USED • Pipeline • Pipeline: Multibranch • Pipeline Remote Loader Plugin • Git Plugin • SSH Agent Plugin • AnsiColor Plugin
JENKINS SERVER SETUP • Docker installed • Docker allow Jenkins user to run it • Testing container with systemd, salt-minion, ruby, shellcheck and flake8 installed • Bumpversion installed • Git SSH credential setup for pushing tags
RUNNING SERVICES IN CONTAINERS • Install systemd in the testing container • Remove systemd links in /etc/systemd • Mount cgroups to container (ro) • Privileged container or –v /tmp:/run • Run command /usr/sbin/init Source: https://rhatdan.wordpress.com/2014/04/30/running-systemd-within-a-docker-container/
FORMULA REPOSITORIES • Create a repository for each formula • Repository has a tests folder • Release updates independent of other states • Use git backend for formulas
BRANCHING STRATEGY GITHUB FLOW
DEVELOPING LOCALLY • Provide salt formula developers a local development environment • Create a vagrant box or docker image (RHEL developer licenses are free now) • Provide an example formula with tests • Document how to get started • Jenkins feature testing
GOOD PULL REQUESTS Salt best practices • Less Jinja the better • No Jinja whitespace control characters in sls files • defaults.yaml • Pillars are for overiding defaults • Predictable and sane state id’s https://docs.saltstack.com/en/latest/topics/best_practices.html https://docs.saltstack.com/en/latest/topics/development/conventions/ Require tests pass Review code together • Potential bugs • Readability • Test coverage (ServerSpec tests) • Compliment / reinforce good practices http://kevinlondon.com/2015/05/05/code-review-best-practices.html
RELASING NEW SALT FORUMLAS Use semantic versioning • Example v0.2.0 • semver.org Tag releases • Tag new version v0.3.0 • Re-tag “latest” Bumpversion will automatically bump the forumula version Rollback “latest” to a previous version if things break Salt-masters use the gitfs backend docs.saltstack.com/en/latest/topics/tutorials/gitfs.html#per-remote-configuration-parameters
SALTSTACK GIT BACKENDS Pygit and Gitpython Pygit2 • Supports authentication • Cloning process tends to hang Gitpython • Easy to install • No authentication supported
DEMO Jenkins Pipeline • Pipeline script • Multibanch pipeline jobs • Testing feature branches • Testing master branches • ServerSpec output • Automatic promotion
STATE EVENTS What is a state event? Result of a state execution in a structured format that a can be parsed Why state events? • Analytics on state execution results • Alert operations on failed states • Easily compile issue reports for engineering More details: http://www.currah.ca/tech/2015/12/09/salt-state-events-splunk.html New splunk returner: https://github.com/saltstack/salt/blob/develop/salt/returners/splunk.py
EVENT RETURNER • Event returners only run on the master • Salt has a list of event returners or build your own • Create your own returner, place in _returners directory • Returner state events basically state.sls and state.highstate • Add minion id and jid to state return data for correlating state events to a specific host or action More details: http://www.currah.ca/tech/2015/12/09/salt-state-events-splunk.html Splunk returner: https://github.com/saltstack/salt/blob/develop/salt/returners/splunk.py List of Returners: https://docs.saltstack.com/en/latest/ref/returners/
EXAMPLE STATE EVENT Automatic Field Extraction
DEMO SALTSTACK STATE EVENTS • Generating events • Searching events • Event dashboard
CODE • https://github.com/ryancurrah/vagrant-salt-talk • https://github.com/ryancurrah/salt-minion-dockerfile • https://github.com/ryancurrah/salt-pipeline • https://github.com/ryancurrah/salt-apache-formula • https://github.com/ryancurrah/salt-lint-example • https://github.com/ryancurrah/salt-splunk-http-returner
Questions?
Please Provide Feedback Use the SaltConf16 event app to provide feedback for this presentation.

More Related Content

PDF
Testing Salt States (part 1)
jasondenning
 
PPTX
Automated testing on steroids – Trick for managing test data using Docker sna...
Lucas Jellema
 
PDF
Trust, but verify | Testing with Docker Containers
Nan Liu
 
PDF
Docker & ci
Patxi Gortázar
 
PPTX
CI/CD on Android project via Jenkins Pipeline
Veaceslav Gaidarji
 
ODP
Pipeline based deployments on Jenkins
Knoldus Inc.
 
PDF
Jenkins Declarative Pipelines 101
Malcolm Groves
 
PDF
Bgoug 2019.11 test your pl sql - not your patience
Jacek Gebal
 
Testing Salt States (part 1)
jasondenning
 
Automated testing on steroids – Trick for managing test data using Docker sna...
Lucas Jellema
 
Trust, but verify | Testing with Docker Containers
Nan Liu
 
Docker & ci
Patxi Gortázar
 
CI/CD on Android project via Jenkins Pipeline
Veaceslav Gaidarji
 
Pipeline based deployments on Jenkins
Knoldus Inc.
 
Jenkins Declarative Pipelines 101
Malcolm Groves
 
Bgoug 2019.11 test your pl sql - not your patience
Jacek Gebal
 

What's hot (20)

PDF
Open Source tools overview
Luciano Resende
 
PDF
Golang workshop
Victor S. Recio
 
PPTX
Jenkins days workshop pipelines - Eric Long
ericlongtx
 
PDF
Continuous Delivery in OSS using Shipkit.org
MarcinStachniuk
 
PPTX
Jenkins pipeline as code
Mohammad Imran Ansari
 
PPTX
Pipeline as code - new feature in Jenkins 2
Michal Ziarnik
 
PDF
An Open-Source Chef Cookbook CI/CD Implementation Using Jenkins Pipelines
Steffen Gebert
 
PDF
[WroclawJUG] Continuous Delivery in OSS using Shipkit
MarcinStachniuk
 
PDF
Jenkins Pipelines
Steffen Gebert
 
PDF
DrupalCon Los Angeles - Continuous Integration Toolbox
Andrii Podanenko
 
PDF
JavaOne 2016 - Pipeline as code
Bert Jan Schrijver
 
PDF
Webinar - Unbox GitLab CI/CD
Annie Huang
 
PDF
Killer R10K Workflow - PuppetConf 2014
Puppet
 
PDF
JSDC 2015 - TDD 的開發哲學,以 Node.js 為例
謝 宗穎
 
PDF
(Declarative) Jenkins Pipelines
Steffen Gebert
 
PDF
Perl Continous Integration
Michael Peters
 
PPTX
An OpenShift Migration: From 3.9 to 4.5
Everett Toews
 
PDF
Github - Git Training Slides: Foundations
Lee Hanxue
 
ODP
Continuous Delivery of Puppet Manifests
Kris Buytaert
 
PPTX
Puppet in the Pipeline
Anna Kennedy
 
Open Source tools overview
Luciano Resende
 
Golang workshop
Victor S. Recio
 
Jenkins days workshop pipelines - Eric Long
ericlongtx
 
Continuous Delivery in OSS using Shipkit.org
MarcinStachniuk
 
Jenkins pipeline as code
Mohammad Imran Ansari
 
Pipeline as code - new feature in Jenkins 2
Michal Ziarnik
 
An Open-Source Chef Cookbook CI/CD Implementation Using Jenkins Pipelines
Steffen Gebert
 
[WroclawJUG] Continuous Delivery in OSS using Shipkit
MarcinStachniuk
 
Jenkins Pipelines
Steffen Gebert
 
DrupalCon Los Angeles - Continuous Integration Toolbox
Andrii Podanenko
 
JavaOne 2016 - Pipeline as code
Bert Jan Schrijver
 
Webinar - Unbox GitLab CI/CD
Annie Huang
 
Killer R10K Workflow - PuppetConf 2014
Puppet
 
JSDC 2015 - TDD 的開發哲學,以 Node.js 為例
謝 宗穎
 
(Declarative) Jenkins Pipelines
Steffen Gebert
 
Perl Continous Integration
Michael Peters
 
An OpenShift Migration: From 3.9 to 4.5
Everett Toews
 
Github - Git Training Slides: Foundations
Lee Hanxue
 
Continuous Delivery of Puppet Manifests
Kris Buytaert
 
Puppet in the Pipeline
Anna Kennedy
 
Ad

Similar to Automating Your Salt Tests (20)

PPTX
SaltConf2015: SaltStack at Scale Automating Your Automation
Steven Gonzales
 
PDF
Saltcheck: a tool in the salt toolbox
Christian McHugh
 
ODP
Configuration Management and Salt
55020
 
PDF
Salt conf 2014 - Using SaltStack in high availability environments
Benjamin Cane
 
PDF
Introduction to Systems Management with SaltStack
Craig Sebenik
 
PDF
SaltStack Configuration Management Best Practices
Seth House
 
PPT
SaltConf14 - Ben Cane - Using SaltStack in High Availability Environments
SaltStack
 
PDF
Intelligent infrastructure with SaltStack
Love Nyberg
 
PPTX
SaltStack Configuration Management
Nathan Sickler
 
PPTX
CI/CD Pipeline to Deploy and Maintain an OpenStack IaaS Cloud
Simon McCartney
 
PDF
Saltstack for Ansible users
Paul Traylor
 
PDF
Continuous Deployment with Jenkins and Salt
Anirban Saha
 
PDF
CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...
Animesh Singh
 
PDF
CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...
Daniel Krook
 
PDF
Orchestrate Event-Driven Infrastructure with SaltStack
Love Nyberg
 
PDF
Understanding salt modular sub-systems and customization
jasondenning
 
PDF
SaltStack – (Not) just another Automation & Remote Execution Tool
inovex GmbH
 
PDF
SaltConf14 - Forrest Alvarez, Choice Hotels - Salt Formulas and States
SaltStack
 
PDF
The (mutable) config management showdown
Bob Killen
 
ODP
A CI/CD Pipeline to Deploy and Maintain OpenStack - cfgmgmtcamp2015
Simon McCartney
 
SaltConf2015: SaltStack at Scale Automating Your Automation
Steven Gonzales
 
Saltcheck: a tool in the salt toolbox
Christian McHugh
 
Configuration Management and Salt
55020
 
Salt conf 2014 - Using SaltStack in high availability environments
Benjamin Cane
 
Introduction to Systems Management with SaltStack
Craig Sebenik
 
SaltStack Configuration Management Best Practices
Seth House
 
SaltConf14 - Ben Cane - Using SaltStack in High Availability Environments
SaltStack
 
Intelligent infrastructure with SaltStack
Love Nyberg
 
SaltStack Configuration Management
Nathan Sickler
 
CI/CD Pipeline to Deploy and Maintain an OpenStack IaaS Cloud
Simon McCartney
 
Saltstack for Ansible users
Paul Traylor
 
Continuous Deployment with Jenkins and Salt
Anirban Saha
 
CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...
Animesh Singh
 
CAPS: What's best for deploying and managing OpenStack? Chef vs. Ansible vs. ...
Daniel Krook
 
Orchestrate Event-Driven Infrastructure with SaltStack
Love Nyberg
 
Understanding salt modular sub-systems and customization
jasondenning
 
SaltStack – (Not) just another Automation & Remote Execution Tool
inovex GmbH
 
SaltConf14 - Forrest Alvarez, Choice Hotels - Salt Formulas and States
SaltStack
 
The (mutable) config management showdown
Bob Killen
 
A CI/CD Pipeline to Deploy and Maintain OpenStack - cfgmgmtcamp2015
Simon McCartney
 
Ad

Automating Your Salt Tests

  • 1. Automating Your Salt Tests Ryan Currah github@ryancurrah twitter@rcurrah
  • 2. MY EXPERIENCE • Was lead Salt engineer for large Canadian bank • Develop formulas • Salt master architecture • Salt git development strategy • Salt testing and testing automation
  • 3. TALK GOAL Help newer Salt users start off on the right foot
  • 4. DON’T FORGET TO AUTOMATE TESTING If you don’t automate testing it will become a bottleneck If you do automate testing you will catch issues early and feel confident when you release
  • 5. TESTING AS CODE Requirements • State testing defined as code • Jobs defined as code • Pipeline capabilities • Fast testing feedback • Tools were on premise
  • 6. TESTING TOOLS SELECTED • Code analysis: shellcheck (bash), flake8 (python) • State testing: ServerSpec • Container: Docker • Test orchestration: Jenkins Pipeline (Formerly Workflow) • Versioning: Git tag + bumpversion
  • 7. CODE ANALYSIS ON FORMULAS Not uncommon to see scripts in formulas Code analysis enables • Good coding styles • Consistency • Express how we want code to be written • No jinja templated scripts (Use cmd.script w/ input arguments instead)
  • 8. TEST STATE Two different views of state • For example in the issue github.com/saltstack/salt/issues/24647 • file.copy state with force=True did not work • Reported no changes when the file should have changed • ServerSpec tests caught this issue Audit formula changes • Formula changes will be captured by tests
  • 9. ServerSpec What can you test? • Process is running • Service is running • Service is enabled on boot • Port is open • Firewall rule exists • Package is installed • User and group exists • File exists • File user and group ownership • File hashes • The list goes on see… http://serverspec.org/resource_types.html Reuseable spec files known a shared files • http://serverspec.org/advanced_tips.html • https://github.com/rubyisbeautiful/serverspec_examples
  • 10. JOBS AS CODE Jenkins Pipeline enables jobs as code and a deilvery pipeline (without the spaghetti jobs) • Jenkinsfile (Groovy script) placed in the Salt formula repo • Pipeline stages (Build, QA, Production) • Pipeline visualization and metrics • Average build time, current build time, stage views, failed steps
  • 11. JENKINS PLUGINS USED • Pipeline • Pipeline: Multibranch • Pipeline Remote Loader Plugin • Git Plugin • SSH Agent Plugin • AnsiColor Plugin
  • 12. JENKINS SERVER SETUP • Docker installed • Docker allow Jenkins user to run it • Testing container with systemd, salt-minion, ruby, shellcheck and flake8 installed • Bumpversion installed • Git SSH credential setup for pushing tags
  • 13. RUNNING SERVICES IN CONTAINERS • Install systemd in the testing container • Remove systemd links in /etc/systemd • Mount cgroups to container (ro) • Privileged container or –v /tmp:/run • Run command /usr/sbin/init Source: https://rhatdan.wordpress.com/2014/04/30/running-systemd-within-a-docker-container/
  • 14. FORMULA REPOSITORIES • Create a repository for each formula • Repository has a tests folder • Release updates independent of other states • Use git backend for formulas
  • 16. DEVELOPING LOCALLY • Provide salt formula developers a local development environment • Create a vagrant box or docker image (RHEL developer licenses are free now) • Provide an example formula with tests • Document how to get started • Jenkins feature testing
  • 17. GOOD PULL REQUESTS Salt best practices • Less Jinja the better • No Jinja whitespace control characters in sls files • defaults.yaml • Pillars are for overiding defaults • Predictable and sane state id’s https://docs.saltstack.com/en/latest/topics/best_practices.html https://docs.saltstack.com/en/latest/topics/development/conventions/ Require tests pass Review code together • Potential bugs • Readability • Test coverage (ServerSpec tests) • Compliment / reinforce good practices http://kevinlondon.com/2015/05/05/code-review-best-practices.html
  • 18. RELASING NEW SALT FORUMLAS Use semantic versioning • Example v0.2.0 • semver.org Tag releases • Tag new version v0.3.0 • Re-tag “latest” Bumpversion will automatically bump the forumula version Rollback “latest” to a previous version if things break Salt-masters use the gitfs backend docs.saltstack.com/en/latest/topics/tutorials/gitfs.html#per-remote-configuration-parameters
  • 19. SALTSTACK GIT BACKENDS Pygit and Gitpython Pygit2 • Supports authentication • Cloning process tends to hang Gitpython • Easy to install • No authentication supported
  • 20. DEMO Jenkins Pipeline • Pipeline script • Multibanch pipeline jobs • Testing feature branches • Testing master branches • ServerSpec output • Automatic promotion
  • 21. STATE EVENTS What is a state event? Result of a state execution in a structured format that a can be parsed Why state events? • Analytics on state execution results • Alert operations on failed states • Easily compile issue reports for engineering More details: http://www.currah.ca/tech/2015/12/09/salt-state-events-splunk.html New splunk returner: https://github.com/saltstack/salt/blob/develop/salt/returners/splunk.py
  • 22. EVENT RETURNER • Event returners only run on the master • Salt has a list of event returners or build your own • Create your own returner, place in _returners directory • Returner state events basically state.sls and state.highstate • Add minion id and jid to state return data for correlating state events to a specific host or action More details: http://www.currah.ca/tech/2015/12/09/salt-state-events-splunk.html Splunk returner: https://github.com/saltstack/salt/blob/develop/salt/returners/splunk.py List of Returners: https://docs.saltstack.com/en/latest/ref/returners/
  • 23. EXAMPLE STATE EVENT Automatic Field Extraction
  • 24. DEMO SALTSTACK STATE EVENTS • Generating events • Searching events • Event dashboard
  • 25. CODE • https://github.com/ryancurrah/vagrant-salt-talk • https://github.com/ryancurrah/salt-minion-dockerfile • https://github.com/ryancurrah/salt-pipeline • https://github.com/ryancurrah/salt-apache-formula • https://github.com/ryancurrah/salt-lint-example • https://github.com/ryancurrah/salt-splunk-http-returner
  • 27. Please Provide Feedback Use the SaltConf16 event app to provide feedback for this presentation.