continuous delivery of debian packages
play

Continuous Delivery of Debian packages Michael Prokop Terminology - PowerPoint PPT Presentation

Feb 09, 2024 •46 likes •526 views

Continuous Delivery of Debian packages Michael Prokop Terminology Continuous Integration well known from software development Continuous Deployment Q/A criteria says OK? Ship/deploy! Continuous Delivery release whenever

  1. Continuous Delivery of Debian packages Michael Prokop

  2. Terminology • Continuous Integration – well known from software development • Continuous Deployment – Q/A criteria says OK? Ship/deploy! • Continuous Delivery – release whenever you decide it's useful to do so (= business decision!)

  3. Why?

  4. Costs of a Bugfjx 160 140 120 100 80 60 40 20 0 Requirements Design Code Devevelopment Accounting Operations Source: Barry Boehm's „EQUITY Keynote Address“

  5. Independence Source: http://decarabia.soup.io/post/241926962/Image

  6. Scaling Source: https://www.fmickr.com/photos/scobleizer/4870003098/

  7. Reproducible Source: https://wiki.debian.org/ReproducibleBuilds

  8. Predictable Source: https://xkcd.com/612/

  9. Problems

  10. Problems $company experienced 1/2 • Mess with golden images (to ship a custom software stack to customers) • Long build times (e.g. single change → rebuild full image, upload to customer,...) • Builds non-reproducible (unmanaged build infrastructure, devs can build + include their own packages,...)

  11. Problems $company experienced 2/2 • Release process holding back ongoing development work (VCS freezes are preventing ongoing work) • Getting more and more customers → not scaling (golden images → even worse) • Tried Debian source package uploads to custom build service → many pitfalls + developers still needed to manually build/release packages (some of them not even using Debian/Ubuntu → tools like git- dch, debuild,... unavailable)

  12. What do we want?

  13. Deployment Pipeline Source: http://continuousdelivery.com/2010/02/continuous-delivery/

  14. Workfmow Development/ Debian package, Debian builds (+PPA) T esting Puppet,... Internal tooling Jenkins verify git commit && (-1/+1) git review Submit to {master,$branch} Code Reviewers $Product (-2/-1/0/+1+2) Available to $Release Final Debian Release Customers (incl. Q/A) build dashboard

  15. How did we get there?

  16. Principles • Rely on Debian packages + Debian repositories for everything (no exceptions) • Only what's under version control matters (no option to build something manually on your own system) • Automate infrastructure handling (Puppet/Ansible)

  17. Automation • Automated debian/changelog handling to simplify releasing of new package versions (devs don't need Debian/Ubuntu at all) • Automated release branch handling (release 0.42 is available as such a branch) • VMs for testing/development (via Vagrant → run `vagrant up $product-$version`, automated box builds at least once per day) • PPAs for development (no VCS freezes, fast- forward + release branches only)

  18. Improvements • Usage of tmpfs/eatmydata, ccache,... for build speedups • Dashboards for abstraction + let people focus on their tasks instead of tools • Code review system (improves code quality but also sharing knowledge + introducing new people)

  19. Jenkins- debian- glue

  20. Standards „The nice thing about standards is that there are so many of them to choose Source: https://xkcd.com/927/ from.”

  21. Jenkins? • Hudson: 2004 • Jenkins: 2011 • Weekly releases + LTS versions • MIT license • >1000 plugins available • >120k registered installations (07/15) • Disclaimer: written in Java, but absolutely not restricted to Java projects

  22. Why jenkins-debian-glue? • Formalize existing knowledge into a customizable framework • Provide a common ground to base (further) work on • Gather feedback from what other users (might) need • Community building • Don't create new tools and standards, instead rely on existing and working ones • Should be easy to use also for non-Debian folks

  23. What's behind j-d-g? • Open Source Project (MIT license) – started in 2011 – >25 contributors – written mainly in shell, easy to adjust + extend • CI server (Jenkins) • Build environment (cowbuilder/pbuilder) • VCS (git + svn OOTB) • Repository management (reprepro + freight) • Q/A tools: piuparts, lintian, autopkgtest, pep8, perlcritic, shellcheck, checkbashism

  24. Who's using j-d-g? • Grml (incl. dpkg, FAI, initramfs-tools,...) – https://jenkins.grml.org/ • PostgreSQL – https://wiki.postgresl.org/wiki/Apt • LLVM – http://llvm.org/apt/ • Kamailio – https://kamailio.sipwise.com • Wikimedia – https://integration.wikimedia.org/ci/view/Ops- DebGlue/ • … and many more

  25. Setup? Automatic deployment % wget https://raw.github.com/mika/\ jenkins-debian-glue/\ master/puppet/apply.sh % sudo bash ./apply.sh $your_password http://jenkins-debian-glue.org/getting_started/

  26. What do I get?

  27. ${project}-source • generate Debian source package using VCS – (Upstream) Source (orig.tar.xz) – Debian changes (debian.tar.xz) [optional] – Control fjle (.dsc) • Script generate-{git,svn}-snapshot • Automates changelog generation (git-dch ftw, thanks Guido!) • Important: needs to be run only once per project (exception: multi distribution usage in one repository)

  28. ${project}-binaries • Debian Binary Packages (*.deb) • Script build-and-provide-package – Automates pbuilder/cowbuilder setup, usually nothing to do manually • Important: build once per architecture/distribution (exception: “Architecture: all”)

  29. ${project}-piuparts • Install/deinstall/upgrade testing (optional) • Useful since you might forget about it otherwise

  30. Repository Handling • Automatic handling of repositories without manual interaction – reprepro – freight • By default part of ${project}- binaries job • Separate usage via ${project}- repos job: – BUILD_ONLY vs PROVIDE_ONLY

  31. Further Q/A testing available OOTB • Lintian • Autopkgtest • perlcritics/checkbashism/ shellcheck/pep8/... • Results as TAP/jUnit/... reports in Jenkins available

  32. Example of a Build Pipeline foo-unit-test foo-source git [review|push] • Automatic lintian integration in *-source + foo-piuparts foo-binaries *-binaries • Automatic autopkgtest- integration in *-binaries • Optionally Code-Review + automatic merge to Master after Q/A foo-repos apt-get install $package • Optionally further static code analysis, web tests, performance tests,...

  33. Managing many Jenkins jobs without driving nuts? • usage of jenkins-job-builder to create and manage Jenkins jobs – http://docs.openstack.org/infra/syste m-confjg/jjb.html – https://github.com/sipwise/kamailio- deb-jenkins (example) • YAML fjle(s) for confjguration – No webinterface clicking! – Version control! – Code review for job changes!

  34. Lessons learned

  35. Lessons learned 1/3 • Developers needs vs operations/ distribution needs ($package or $version not available) – Contribute back to Debian when reasonable • Diverse people improve overall quality – Homogeneous systems, diverse people • Code review requires good remote working culture – Open Source folks are used to remote working :)

  36. Lessons learned 2/3 • Avoid external dependencies – Github, CPAN, PyPI, RubyGems, Puppetlabs, Percona, $local_debian_mirror... unreachable? → set up local mirrors • Speedup! • Staging options • Confjguration management (e.g. for setup of Jenkins slaves) is essential → infrastructure as code • Consistent timezones (UTC) + time (NTP!)

  37. Lessons learned 3/3 • Catch 22 – build scripts broken but build infrastructure receives updates via build infrastructure/scripts? → recursion problem – upgrading from wheezy to jessie, deployment of confjguration management depends on unit- tests which don't work on jessie yet • Provide test infrastructure for setup, confjguration,... changes without breaking production • Rebuild of a system might look difgerent from currently running one, even with cfgmgmt → use testing also for cfgmgmt (serverspec, mspectator, T ests::Server, T est Kitchen,...)

  38. Tips 1/2 • Regular rebuilds of all packages → apply recent policies + package build infrastructure changes so packages are up2date • mr/myrepos is very useful for dealing with large amounts of repositories (thanks joeyh!) • Integrate CI/CD system into your monitoring environment

  39. Tips 2/2 • Collect metrics independent from Jenkins & CO to be able to remove jobs/builds without losing metrics • Use gertty cmdline tool if you don't like gerrit web interface • Set up „jenkins-verify” job to ensure Jenkins works as needed

  40. Antipatterns 1/3 • Manual SSH → provide debugging options instead • Flaky T ests (fast vs slow hardware, „sleep X”,...) → people don't trust + care any longer • Polling/pull/cronjobs instead of triggering → get immediate actions + efgects

  41. Antipatterns 2/3 • Manual setup of machines/confjgs → snowfmake pattern (AKA they look alike but are still difgerent) • No standarized output in tools → makes parsing hard[er] • Checklists → use automation instead

  42. Antipatterns 3/3 • Hardcoding (IP addresses, hostnames, port number, test system,...) instead of confjgurability • Same thing gets built multiple times in the deployment pipeline → share artifact instead • Lack of notifjcations for failing builds/tests/... → developer starts to wait + poll

Recommend

Patterns for Testing Debian Packages Antonio Terceiro terceiro@debian.org A brief intro to

Patterns for Testing Debian Packages Antonio Terceiro terceiro@debian.org A brief intro to

Patterns for Testing Debian Packages Antonio Terceiro terceiro@debian.org A brief intro to Debian CI autopkgtest created back in 2006 (!) 2014: Debian CI launches Goal: provide automated testing for the Debian archive (i.e. run

816 views • 68 slides
Automated Testing of Debian Packages Status Update Lucas Nussbaum lucas@debian.org Lucas

Automated Testing of Debian Packages Status Update Lucas Nussbaum lucas@debian.org Lucas

Introduction Tests Building packages more efficiently Piuparts State of the archive collab-qa Conclusion Automated Testing of Debian Packages Status Update Lucas Nussbaum lucas@debian.org Lucas Nussbaum Automated Testing of Debian

622 views • 34 slides
Automated Testing of Debian Packages Holger Levsen debian@layer-acht.org Lucas Nussbaum

Automated Testing of Debian Packages Holger Levsen debian@layer-acht.org Lucas Nussbaum

Introduction Lintian and Linda Rebuilding packages Piuparts Structuring QA Conclusion Automated Testing of Debian Packages Holger Levsen debian@layer-acht.org Lucas Nussbaum lucas@debian.org Holger Levsen and Lucas Nussbaum Automated

1.38k views • 31 slides
Sylvestre Ledru sylvestre@debian.org Lo Cavaill leo+debian@cavaille.net Debian + 20

Sylvestre Ledru sylvestre@debian.org Lo Cavaill leo+debian@cavaille.net Debian + 20

Sylvestre Ledru sylvestre@debian.org Lo Cavaill leo+debian@cavaille.net Debian + 20 000 source packages ~13 architectures 3 kernels The biggest database of FLOSS code (?) The Debile Project January, 19th 2014 Sylvestre Ledru

571 views • 25 slides
Debian KDE-Extras Team Debian KDE-Extras Team Mark Purcell <msp@debian.org> Introduction

Debian KDE-Extras Team Debian KDE-Extras Team Mark Purcell <msp@debian.org> Introduction

Debian KDE-Extras Team Debian KDE-Extras Team Mark Purcell <msp@debian.org> Introduction Introduction The Debian KDE Extras Team maintain a portfolio of extra application packages for Debian GNU/Linux outside the KDE core applications

554 views • 18 slides
Amusewiki: a year of development Marco Pessotto (melmothX) August 24-26, 2016, Cluj-Napoca

Amusewiki: a year of development Marco Pessotto (melmothX) August 24-26, 2016, Cluj-Napoca

Amusewiki: a year of development Marco Pessotto (melmothX) August 24-26, 2016, Cluj-Napoca Contents Debian packages Blog mode 13 Blog example 14 Other notable improvements 15 16 OPDS example Debian packages cons 17 Debian packages

466 views • 20 slides
Tutorial: Functional Testing of Debian Packages Antonio Terceiro terceiro@debian.org history

Tutorial: Functional Testing of Debian Packages Antonio Terceiro terceiro@debian.org history

Tutorial: Functional Testing of Debian Packages Antonio Terceiro terceiro@debian.org history automated tests are great and we need more of it automated tests don't replace all manual testing Topics history specs tools

832 views • 50 slides
apt-xapian-index Everything You Always Wanted to Index About Debian Packages, But were Afraid to

apt-xapian-index Everything You Always Wanted to Index About Debian Packages, But were Afraid to

Introduction The solution Interesting bits still to figure out HELP! apt-xapian-index Everything You Always Wanted to Index About Debian Packages, But were Afraid to Ask Enrico Zini enrico@debian.org 23 February 2008 Enrico Zini

462 views • 18 slides
Debian 8.0 AKA jessie Michael Prokop Facts 1/3 Debian 8, codename jessie 2 years

Debian 8.0 AKA jessie Michael Prokop Facts 1/3 Debian 8, codename jessie 2 years

Debian 8.0 AKA jessie Michael Prokop Facts 1/3 Debian 8, codename jessie 2 years after Debian 7, codename wheezy (2013-05-04) Release Date: 2015-04-25 [party!] 75 supported languages 4.841 new source packages

587 views • 19 slides
Parcel Pro Mockup Presentation 2.009 Pink B Packages get lost Packages get stolen

Parcel Pro Mockup Presentation 2.009 Pink B Packages get lost Packages get stolen

Parcel Pro Mockup Presentation 2.009 Pink B Packages get lost Packages get stolen Packages get delayed Mailboxes too small No mailbox access for UPS / FedEx Package delivery outpacing letter delivery

591 views • 14 slides
debtags.debian.net reloaded! Enrico Zini enrico@debian.org Feb 5, 2012 Enrico Zini

debtags.debian.net reloaded! Enrico Zini enrico@debian.org Feb 5, 2012 Enrico Zini

debtags.debian.net reloaded! Enrico Zini enrico@debian.org Feb 5, 2012 Enrico Zini (enrico@debian.org) Fosdem, Bruxelles, Feb 5, 2012 debtags.debian.net reloaded! Introduction: debtags Debtags is the category system for Debian packages. It

319 views • 14 slides
PROGRESSIVE DELIVERY PROGRESSIVE DELIVERY CONTINUOUS DELIVERY THE RIGHT WAY CONTINUOUS DELIVERY

PROGRESSIVE DELIVERY PROGRESSIVE DELIVERY CONTINUOUS DELIVERY THE RIGHT WAY CONTINUOUS DELIVERY

PROGRESSIVE DELIVERY PROGRESSIVE DELIVERY CONTINUOUS DELIVERY THE RIGHT WAY CONTINUOUS DELIVERY THE RIGHT WAY Carlos Sanchez / csanchez.org @csanchez / PROGRESSIVE PROGRESSIVE DELIVERY DELIVERY Progressive Delivery is a term that

561 views • 41 slides
Packaging VirtualBox machineas as Debian packages Robert J ahne, Joachim Breitner City of

Packaging VirtualBox machineas as Debian packages Robert J ahne, Joachim Breitner City of

Packaging VirtualBox machineas as Debian packages Robert J ahne, Joachim Breitner City of Munich & ITOMIG GmbH July 28th 2009 Image Distribution Image configuration Demonstration Outlook Why

642 views • 16 slides
The Common Debian Build System (CDBS) Peter Eisentraut FOSDEM 2009 Peter Eisentraut CDBS What

The Common Debian Build System (CDBS) Peter Eisentraut FOSDEM 2009 Peter Eisentraut CDBS What

The Common Debian Build System (CDBS) Peter Eisentraut FOSDEM 2009 Peter Eisentraut CDBS What is CDBS? A set of makefile fragments to include into debian/rules Makes packaging complex packages easier. Makes packaging simple packages harder.

449 views • 27 slides
Symbolic Execution of Debian Packages Nicolas Jeannerod nicolas.jeannerod@irif.fr joint work

Symbolic Execution of Debian Packages Nicolas Jeannerod nicolas.jeannerod@irif.fr joint work

Symbolic Execution of Debian Packages Nicolas Jeannerod nicolas.jeannerod@irif.fr joint work with Benedikt Becker, Claude March Yann Rgis-Gianas, Mihaela Sighireanu, Ralf Treinen IRIF, Universit de Paris September 9, 2019 13th Alpine

886 views • 67 slides
Continuous Delivery for the rest of us About me Lisa van Gelder Consultant at Cyrus

Continuous Delivery for the rest of us About me Lisa van Gelder Consultant at Cyrus

Continuous Delivery for the rest of us About me Lisa van Gelder Consultant at Cyrus Innovation lvangelder@cyrusinnovation.com @techbint Continuous Delivery Is not: Continuous deployment Automating all the things Is :

665 views • 55 slides
Continuous delivery for native apps Niels Frydenholm, ebay Classifieds Continuous delivery 3

Continuous delivery for native apps Niels Frydenholm, ebay Classifieds Continuous delivery 3

Continuous delivery for native apps Niels Frydenholm, ebay Classifieds Continuous delivery 3 Continuous delivery Being able to build a release-ready binary at any given time. 3 ebay Classifieds, Denmark 4 ebay Classifieds, Denmark

798 views • 57 slides
Debian Science Umbrella for scientific packages or dustbin for scientific code Andreas Tille

Debian Science Umbrella for scientific packages or dustbin for scientific code Andreas Tille

Debian Science Umbrella for scientific packages or dustbin for scientific code Andreas Tille DebConf 17 Montreal, 6th August 2017 Andreas Tille ( DebConf 17 ) Debian Science Montreal, 6th August 2017 Overview Current status 1 Better

1.18k views • 85 slides
The Game of Continuous Delivery Presented by: Tanya

The Game of Continuous Delivery Presented by: Tanya

T5 Continuous Delivery Thursday, October 3rd, 2019 9:45 AM The Game of Continuous Delivery Presented by: Tanya Kravtsov

415 views • 17 slides
Testing in a Microservices and Continuous Delivery Environment Presented by: Robert Williams CA

Testing in a Microservices and Continuous Delivery Environment Presented by: Robert Williams CA

T7 DevOps/Continuous Delivery Thursday, May 3rd, 2018 11:15 AM Testing in a Microservices and Continuous Delivery Environment Presented by: Robert Williams CA Technologies Brought to you by: 350 Corporate Way, Suite 400, Orange Park, FL 32073

265 views • 23 slides
The long road to aka Debian Edu in Debian Lenny main Holger Levsen, February 24 th 2008

The long road to aka Debian Edu in Debian Lenny main Holger Levsen, February 24 th 2008

The long road to aka Debian Edu in Debian Lenny main Holger Levsen, February 24 th 2008 Outline Some bits about me Project goals, design & features Debian and Debian Edu Development model and tools Debian Edu Etch

582 views • 36 slides
Custom Debian distributions and Debian derivatives Aigars Mahinovs Debconf 5 Debian Day

Custom Debian distributions and Debian derivatives Aigars Mahinovs Debconf 5 Debian Day

Custom Debian distributions and Debian derivatives Aigars Mahinovs Debconf 5 Debian Day Definitions Distribution a set of OS kernel and supporting software in a defined format with the possibility of some integration by adjusting

134 views • 12 slides
CS314 Software Engineering Continuous Delivery Dave Matthews How long does it take your team to

CS314 Software Engineering Continuous Delivery Dave Matthews How long does it take your team to

11/15/18 CS314 Software Engineering Continuous Delivery Dave Matthews How long does it take your team to deploy a change that involves a single line of code? And do this on a reliable, repeatable basis? Continuous Delivery: , Jez Humble

179 views • 7 slides
ADJUSTING YOUR ARCHITECTURE Rachel Laycock @rachellaycock continuous delivery Our highest

ADJUSTING YOUR ARCHITECTURE Rachel Laycock @rachellaycock continuous delivery Our highest

I m p l e m e n t i n g C o n t i n o u s D e l i v e r y ADJUSTING YOUR ARCHITECTURE Rachel Laycock @rachellaycock continuous delivery Our highest priority is to satisfy the customer through early and continuous delivery of valuable

936 views • 91 slides

More recommend