continuous delivery of debian packages
play

Continuous Delivery of Debian packages Michael Prokop Terminology - PowerPoint PPT Presentation

Feb 09, 2024 •46 likes •526 views

Continuous Delivery of Debian packages Michael Prokop Terminology Continuous Integration well known from software development Continuous Deployment Q/A criteria says OK? Ship/deploy! Continuous Delivery release whenever

  1. Continuous Delivery of Debian packages Michael Prokop

  2. Terminology • Continuous Integration – well known from software development • Continuous Deployment – Q/A criteria says OK? Ship/deploy! • Continuous Delivery – release whenever you decide it's useful to do so (= business decision!)

  3. Why?

  4. Costs of a Bugfjx 160 140 120 100 80 60 40 20 0 Requirements Design Code Devevelopment Accounting Operations Source: Barry Boehm's „EQUITY Keynote Address“

  5. Independence Source: http://decarabia.soup.io/post/241926962/Image

  6. Scaling Source: https://www.fmickr.com/photos/scobleizer/4870003098/

  7. Reproducible Source: https://wiki.debian.org/ReproducibleBuilds

  8. Predictable Source: https://xkcd.com/612/

  9. Problems

  10. Problems $company experienced 1/2 • Mess with golden images (to ship a custom software stack to customers) • Long build times (e.g. single change → rebuild full image, upload to customer,...) • Builds non-reproducible (unmanaged build infrastructure, devs can build + include their own packages,...)

  11. Problems $company experienced 2/2 • Release process holding back ongoing development work (VCS freezes are preventing ongoing work) • Getting more and more customers → not scaling (golden images → even worse) • Tried Debian source package uploads to custom build service → many pitfalls + developers still needed to manually build/release packages (some of them not even using Debian/Ubuntu → tools like git- dch, debuild,... unavailable)

  12. What do we want?

  13. Deployment Pipeline Source: http://continuousdelivery.com/2010/02/continuous-delivery/

  14. Workfmow Development/ Debian package, Debian builds (+PPA) T esting Puppet,... Internal tooling Jenkins verify git commit && (-1/+1) git review Submit to {master,$branch} Code Reviewers $Product (-2/-1/0/+1+2) Available to $Release Final Debian Release Customers (incl. Q/A) build dashboard

  15. How did we get there?

  16. Principles • Rely on Debian packages + Debian repositories for everything (no exceptions) • Only what's under version control matters (no option to build something manually on your own system) • Automate infrastructure handling (Puppet/Ansible)

  17. Automation • Automated debian/changelog handling to simplify releasing of new package versions (devs don't need Debian/Ubuntu at all) • Automated release branch handling (release 0.42 is available as such a branch) • VMs for testing/development (via Vagrant → run `vagrant up $product-$version`, automated box builds at least once per day) • PPAs for development (no VCS freezes, fast- forward + release branches only)

  18. Improvements • Usage of tmpfs/eatmydata, ccache,... for build speedups • Dashboards for abstraction + let people focus on their tasks instead of tools • Code review system (improves code quality but also sharing knowledge + introducing new people)

  19. Jenkins- debian- glue

  20. Standards „The nice thing about standards is that there are so many of them to choose Source: https://xkcd.com/927/ from.”

  21. Jenkins? • Hudson: 2004 • Jenkins: 2011 • Weekly releases + LTS versions • MIT license • >1000 plugins available • >120k registered installations (07/15) • Disclaimer: written in Java, but absolutely not restricted to Java projects

  22. Why jenkins-debian-glue? • Formalize existing knowledge into a customizable framework • Provide a common ground to base (further) work on • Gather feedback from what other users (might) need • Community building • Don't create new tools and standards, instead rely on existing and working ones • Should be easy to use also for non-Debian folks

  23. What's behind j-d-g? • Open Source Project (MIT license) – started in 2011 – >25 contributors – written mainly in shell, easy to adjust + extend • CI server (Jenkins) • Build environment (cowbuilder/pbuilder) • VCS (git + svn OOTB) • Repository management (reprepro + freight) • Q/A tools: piuparts, lintian, autopkgtest, pep8, perlcritic, shellcheck, checkbashism

  24. Who's using j-d-g? • Grml (incl. dpkg, FAI, initramfs-tools,...) – https://jenkins.grml.org/ • PostgreSQL – https://wiki.postgresl.org/wiki/Apt • LLVM – http://llvm.org/apt/ • Kamailio – https://kamailio.sipwise.com • Wikimedia – https://integration.wikimedia.org/ci/view/Ops- DebGlue/ • … and many more

  25. Setup? Automatic deployment % wget https://raw.github.com/mika/\ jenkins-debian-glue/\ master/puppet/apply.sh % sudo bash ./apply.sh $your_password http://jenkins-debian-glue.org/getting_started/

  26. What do I get?

  27. ${project}-source • generate Debian source package using VCS – (Upstream) Source (orig.tar.xz) – Debian changes (debian.tar.xz) [optional] – Control fjle (.dsc) • Script generate-{git,svn}-snapshot • Automates changelog generation (git-dch ftw, thanks Guido!) • Important: needs to be run only once per project (exception: multi distribution usage in one repository)

  28. ${project}-binaries • Debian Binary Packages (*.deb) • Script build-and-provide-package – Automates pbuilder/cowbuilder setup, usually nothing to do manually • Important: build once per architecture/distribution (exception: “Architecture: all”)

  29. ${project}-piuparts • Install/deinstall/upgrade testing (optional) • Useful since you might forget about it otherwise

  30. Repository Handling • Automatic handling of repositories without manual interaction – reprepro – freight • By default part of ${project}- binaries job • Separate usage via ${project}- repos job: – BUILD_ONLY vs PROVIDE_ONLY

  31. Further Q/A testing available OOTB • Lintian • Autopkgtest • perlcritics/checkbashism/ shellcheck/pep8/... • Results as TAP/jUnit/... reports in Jenkins available

  32. Example of a Build Pipeline foo-unit-test foo-source git [review|push] • Automatic lintian integration in *-source + foo-piuparts foo-binaries *-binaries • Automatic autopkgtest- integration in *-binaries • Optionally Code-Review + automatic merge to Master after Q/A foo-repos apt-get install $package • Optionally further static code analysis, web tests, performance tests,...

  33. Managing many Jenkins jobs without driving nuts? • usage of jenkins-job-builder to create and manage Jenkins jobs – http://docs.openstack.org/infra/syste m-confjg/jjb.html – https://github.com/sipwise/kamailio- deb-jenkins (example) • YAML fjle(s) for confjguration – No webinterface clicking! – Version control! – Code review for job changes!

  34. Lessons learned

  35. Lessons learned 1/3 • Developers needs vs operations/ distribution needs ($package or $version not available) – Contribute back to Debian when reasonable • Diverse people improve overall quality – Homogeneous systems, diverse people • Code review requires good remote working culture – Open Source folks are used to remote working :)

  36. Lessons learned 2/3 • Avoid external dependencies – Github, CPAN, PyPI, RubyGems, Puppetlabs, Percona, $local_debian_mirror... unreachable? → set up local mirrors • Speedup! • Staging options • Confjguration management (e.g. for setup of Jenkins slaves) is essential → infrastructure as code • Consistent timezones (UTC) + time (NTP!)

  37. Lessons learned 3/3 • Catch 22 – build scripts broken but build infrastructure receives updates via build infrastructure/scripts? → recursion problem – upgrading from wheezy to jessie, deployment of confjguration management depends on unit- tests which don't work on jessie yet • Provide test infrastructure for setup, confjguration,... changes without breaking production • Rebuild of a system might look difgerent from currently running one, even with cfgmgmt → use testing also for cfgmgmt (serverspec, mspectator, T ests::Server, T est Kitchen,...)

  38. Tips 1/2 • Regular rebuilds of all packages → apply recent policies + package build infrastructure changes so packages are up2date • mr/myrepos is very useful for dealing with large amounts of repositories (thanks joeyh!) • Integrate CI/CD system into your monitoring environment

  39. Tips 2/2 • Collect metrics independent from Jenkins & CO to be able to remove jobs/builds without losing metrics • Use gertty cmdline tool if you don't like gerrit web interface • Set up „jenkins-verify” job to ensure Jenkins works as needed

  40. Antipatterns 1/3 • Manual SSH → provide debugging options instead • Flaky T ests (fast vs slow hardware, „sleep X”,...) → people don't trust + care any longer • Polling/pull/cronjobs instead of triggering → get immediate actions + efgects

  41. Antipatterns 2/3 • Manual setup of machines/confjgs → snowfmake pattern (AKA they look alike but are still difgerent) • No standarized output in tools → makes parsing hard[er] • Checklists → use automation instead

  42. Antipatterns 3/3 • Hardcoding (IP addresses, hostnames, port number, test system,...) instead of confjgurability • Same thing gets built multiple times in the deployment pipeline → share artifact instead • Lack of notifjcations for failing builds/tests/... → developer starts to wait + poll

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Patterns for Testing Debian Packages Antonio Terceiro terceiro@debian.org A brief intro to

Patterns for Testing Debian Packages Antonio Terceiro terceiro@debian.org A brief intro to

Patterns for Testing Debian Packages Antonio Terceiro terceiro@debian.org A brief intro to Debian CI autopkgtest created back in 2006 (!) 2014: Debian CI launches Goal: provide automated testing for the Debian archive (i.e. run

816 views • 68 slides
Automated Testing of Debian Packages Status Update Lucas Nussbaum lucas@debian.org Lucas

Automated Testing of Debian Packages Status Update Lucas Nussbaum lucas@debian.org Lucas

Introduction Tests Building packages more efficiently Piuparts State of the archive collab-qa Conclusion Automated Testing of Debian Packages Status Update Lucas Nussbaum lucas@debian.org Lucas Nussbaum Automated Testing of Debian

622 views • 34 slides
Automated Testing of Debian Packages Holger Levsen debian@layer-acht.org Lucas Nussbaum

Automated Testing of Debian Packages Holger Levsen debian@layer-acht.org Lucas Nussbaum

Introduction Lintian and Linda Rebuilding packages Piuparts Structuring QA Conclusion Automated Testing of Debian Packages Holger Levsen debian@layer-acht.org Lucas Nussbaum lucas@debian.org Holger Levsen and Lucas Nussbaum Automated

1.38k views • 31 slides
Sylvestre Ledru sylvestre@debian.org Lo Cavaill leo+debian@cavaille.net Debian + 20

Sylvestre Ledru sylvestre@debian.org Lo Cavaill leo+debian@cavaille.net Debian + 20

Sylvestre Ledru sylvestre@debian.org Lo Cavaill leo+debian@cavaille.net Debian + 20 000 source packages ~13 architectures 3 kernels The biggest database of FLOSS code (?) The Debile Project January, 19th 2014 Sylvestre Ledru

571 views • 25 slides
Debian KDE-Extras Team Debian KDE-Extras Team Mark Purcell <msp@debian.org> Introduction

Debian KDE-Extras Team Debian KDE-Extras Team Mark Purcell <msp@debian.org> Introduction

Debian KDE-Extras Team Debian KDE-Extras Team Mark Purcell <msp@debian.org> Introduction Introduction The Debian KDE Extras Team maintain a portfolio of extra application packages for Debian GNU/Linux outside the KDE core applications

554 views • 18 slides
Amusewiki: a year of development Marco Pessotto (melmothX) August 24-26, 2016, Cluj-Napoca

Amusewiki: a year of development Marco Pessotto (melmothX) August 24-26, 2016, Cluj-Napoca

Amusewiki: a year of development Marco Pessotto (melmothX) August 24-26, 2016, Cluj-Napoca Contents Debian packages Blog mode 13 Blog example 14 Other notable improvements 15 16 OPDS example Debian packages cons 17 Debian packages

466 views • 20 slides
Tutorial: Functional Testing of Debian Packages Antonio Terceiro terceiro@debian.org history

Tutorial: Functional Testing of Debian Packages Antonio Terceiro terceiro@debian.org history

Tutorial: Functional Testing of Debian Packages Antonio Terceiro terceiro@debian.org history automated tests are great and we need more of it automated tests don't replace all manual testing Topics history specs tools

832 views • 50 slides
apt-xapian-index Everything You Always Wanted to Index About Debian Packages, But were Afraid to

apt-xapian-index Everything You Always Wanted to Index About Debian Packages, But were Afraid to

Introduction The solution Interesting bits still to figure out HELP! apt-xapian-index Everything You Always Wanted to Index About Debian Packages, But were Afraid to Ask Enrico Zini enrico@debian.org 23 February 2008 Enrico Zini

462 views • 18 slides
Debian 8.0 AKA jessie Michael Prokop Facts 1/3 Debian 8, codename jessie 2 years

Debian 8.0 AKA jessie Michael Prokop Facts 1/3 Debian 8, codename jessie 2 years

Debian 8.0 AKA jessie Michael Prokop Facts 1/3 Debian 8, codename jessie 2 years after Debian 7, codename wheezy (2013-05-04) Release Date: 2015-04-25 [party!] 75 supported languages 4.841 new source packages

587 views • 19 slides
Parcel Pro Mockup Presentation 2.009 Pink B Packages get lost Packages get stolen

Parcel Pro Mockup Presentation 2.009 Pink B Packages get lost Packages get stolen

Parcel Pro Mockup Presentation 2.009 Pink B Packages get lost Packages get stolen Packages get delayed Mailboxes too small No mailbox access for UPS / FedEx Package delivery outpacing letter delivery

591 views • 14 slides
debtags.debian.net reloaded! Enrico Zini enrico@debian.org Feb 5, 2012 Enrico Zini

debtags.debian.net reloaded! Enrico Zini enrico@debian.org Feb 5, 2012 Enrico Zini

debtags.debian.net reloaded! Enrico Zini enrico@debian.org Feb 5, 2012 Enrico Zini (enrico@debian.org) Fosdem, Bruxelles, Feb 5, 2012 debtags.debian.net reloaded! Introduction: debtags Debtags is the category system for Debian packages. It

319 views • 14 slides
PROGRESSIVE DELIVERY PROGRESSIVE DELIVERY CONTINUOUS DELIVERY THE RIGHT WAY CONTINUOUS DELIVERY

PROGRESSIVE DELIVERY PROGRESSIVE DELIVERY CONTINUOUS DELIVERY THE RIGHT WAY CONTINUOUS DELIVERY

PROGRESSIVE DELIVERY PROGRESSIVE DELIVERY CONTINUOUS DELIVERY THE RIGHT WAY CONTINUOUS DELIVERY THE RIGHT WAY Carlos Sanchez / csanchez.org @csanchez / PROGRESSIVE PROGRESSIVE DELIVERY DELIVERY Progressive Delivery is a term that

561 views • 41 slides
Packaging VirtualBox machineas as Debian packages Robert J ahne, Joachim Breitner City of

Packaging VirtualBox machineas as Debian packages Robert J ahne, Joachim Breitner City of

Packaging VirtualBox machineas as Debian packages Robert J ahne, Joachim Breitner City of Munich & ITOMIG GmbH July 28th 2009 Image Distribution Image configuration Demonstration Outlook Why

642 views • 16 slides
The Common Debian Build System (CDBS) Peter Eisentraut FOSDEM 2009 Peter Eisentraut CDBS What

The Common Debian Build System (CDBS) Peter Eisentraut FOSDEM 2009 Peter Eisentraut CDBS What

The Common Debian Build System (CDBS) Peter Eisentraut FOSDEM 2009 Peter Eisentraut CDBS What is CDBS? A set of makefile fragments to include into debian/rules Makes packaging complex packages easier. Makes packaging simple packages harder.

449 views • 27 slides
Symbolic Execution of Debian Packages Nicolas Jeannerod nicolas.jeannerod@irif.fr joint work

Symbolic Execution of Debian Packages Nicolas Jeannerod nicolas.jeannerod@irif.fr joint work

Symbolic Execution of Debian Packages Nicolas Jeannerod nicolas.jeannerod@irif.fr joint work with Benedikt Becker, Claude March Yann Rgis-Gianas, Mihaela Sighireanu, Ralf Treinen IRIF, Universit de Paris September 9, 2019 13th Alpine

886 views • 67 slides
Continuous Delivery for the rest of us About me Lisa van Gelder Consultant at Cyrus

Continuous Delivery for the rest of us About me Lisa van Gelder Consultant at Cyrus

Continuous Delivery for the rest of us About me Lisa van Gelder Consultant at Cyrus Innovation lvangelder@cyrusinnovation.com @techbint Continuous Delivery Is not: Continuous deployment Automating all the things Is :

665 views • 55 slides
Drupal & USWDS: Its Time to Get Things Started Why dont we get things started?!

Drupal & USWDS: Its Time to Get Things Started Why dont we get things started?!

Drupal & USWDS: Its Time to Get Things Started Why dont we get things started?! Brian Seek Dustin Boeger TOC Introductions Getting Started Colors Fonts & Other Settings Custom Styling & Components

580 views • 42 slides
Front Door Architectures API Connect Istio Integration Monolithic versus Microservices UI UI

Front Door Architectures API Connect Istio Integration Monolithic versus Microservices UI UI

Front Door Architectures API Connect Istio Integration Monolithic versus Microservices UI UI UI UI Business Logic c Business Business Data Business Logic Logic Business Logic Access Logic Business Logic Business Business

614 views • 32 slides
Integration 101 Integration of new Field Service Management systems with existing infrastructure

Integration 101 Integration of new Field Service Management systems with existing infrastructure

Integration 101 Integration of new Field Service Management systems with existing infrastructure This slide contains ClickSoftware proprietary and Confidential Information This slide contains ClickSoftware proprietary and Confidential Information

635 views • 18 slides
Introduc)ons Terrance DeGray, PE, CCM, LEED AP Program Director, LBCCD Bond Management Team

Introduc)ons Terrance DeGray, PE, CCM, LEED AP Program Director, LBCCD Bond Management Team

Introduc)ons Terrance DeGray, PE, CCM, LEED AP Program Director, LBCCD Bond Management Team Stephanie Lightner, PMP Program Scheduler, LBCCD Bond Management Team Nicole Soria-Velarde Project Coordinator and CommunicaBons, LBCCD Bond

421 views • 23 slides
Embedded Embedded Architecture Architecture Systems Systems Jakob Engblom, PhD Jakob

Embedded Embedded Architecture Architecture Systems Systems Jakob Engblom, PhD Jakob

Embedded Systems Systems Embedded Computer Computer Embedded Embedded Architecture Architecture Systems Systems Jakob Engblom, PhD Jakob Engblom, PhD Uppsala Unive University rsity & Virtutech Inc. & Virtutech Inc. Uppsala

601 views • 21 slides
Op#miza#on for Locally Op#mal Control Pieter Abbeel UC

Op#miza#on for Locally Op#mal Control Pieter Abbeel UC

Op#miza#on for Locally Op#mal Control Pieter Abbeel UC Berkeley EECS Op3mal Control (Open Loop) Op3mal control problem: n H X min c t ( x t

165 views • 4 slides
for Programs that Execute on Unreliable Hardware Michael Carbin , Sasa Misailovic, and Martin

for Programs that Execute on Unreliable Hardware Michael Carbin , Sasa Misailovic, and Martin

Rely: Verifying Quantitative Reliability for Programs that Execute on Unreliable Hardware Michael Carbin , Sasa Misailovic, and Martin Rinard MIT CSAIL Image Scaling Image Scaling Kernel: Bilinear Interpolation f ( ) = Bilinear

725 views • 56 slides
MBQIP Update Presentation for TASC 90 Webinar | July 20 th , 2020 Natalia Vargas, MPH Lead, MBQIP

MBQIP Update Presentation for TASC 90 Webinar | July 20 th , 2020 Natalia Vargas, MPH Lead, MBQIP

MBQIP Update Presentation for TASC 90 Webinar | July 20 th , 2020 Natalia Vargas, MPH Lead, MBQIP Program 8/25/2020 1 1 Discussion Points Part I: MBQIP Data Overview and Discussion 1. Updates on MBQIP Quarterly Data Reports 2. Q&A

493 views • 33 slides

More recommend