dewey.ws

ohai plugins

2012-05-06T18:41:00-07:00

I have become quite a fan of Ohai plugins. My plugins can be found on bitbucket.

Remember to be cautious with the amount of data the plugins generate. For those of you running your own Chef Server, you can easily exhaust solr’s maxFieldLength. This will result in various clients not returning in search results. Have a look at this bug.

infrastructure testing with minitest

2012-04-02T16:49:00-07:00

Having written a lot of non-infrastructure tests in the past, I have felt a deep desire to write tests for infrastructure provisioning we are working on.

Not being a fan of Cucumber or RSpec, decided to use Rye with MiniTest for assertions.

Below is an example of how to use Rye with MiniTest. The tests are invoked over SSH, and can optionally be run through a “jump host”. The tests are a bit contrived, but verify Chef was installed/configured properly. The tests are easy to understand and update, which is key. Not everyone who builds infrastructure has used Cucumber or test suites, even in this age of DevOps. IMO, this method provides a reasonable way to get up to speed with Ruby and testing, while adding value (tests).

creating PTR records with dynect_rest

2012-03-10T11:49:00-08:00

Recently I wanted to create forward and reverse DNS for specific chef nodes. Using the dynect community cookbook, resulted in the following gist.

dynect_rr "creating reverse dns for #{node['hostname']}-pub" do record_type "PTRRecord" rdata ({ "ptrdname" => "foo.example.com" }) fqdn "40.30.20.10.in-addr.arpa" customer dynect_creds['cn'] username dynect_creds['user'] password dynect_creds['password'] zone "30.10.10.in-addr.arpa" action :create end

lldp discovery with chef and ohai

2012-03-05T12:15:00-08:00

In a continued attempt to add additional nventory type information about our systems, the following Ohai plugin plugin can be used to collect a system’s LLDP information.

The community page already has such a plugin, but the systems we are using experience odd behavior when running ladvd. Plus who doesn’t want an excuse to write recursive code. :)

Usage is as follows:

$ knife search node "name:o5r1*" -a lldp.eth2 1 items found id: o5r1 lldp.eth2: age: 3 days, 14:38:13 chassis: Bridge: enabled: on Router: enabled: off descr: Arista Networks EOS version 4.8.3 running on an Arista Networks DCS-7124SX mac: aa:bb:cc:dd:ee:ff mgmt-ip: 192.168.0.108 name: xx-R1 port: aggregation: 1000052 descr: Not received ifname: Ethernet2 mfs: 9236 rid: 4 via: LLDP vlan: pvid: yes vlan-id: 1

moved to bitbucket

2012-03-03T13:08:00-08:00

Obviously we all love github. I found myself needing a lot of private repositories. I opted to go with bitbucket. I plan to privately prototype in bitbucket for things I am not ready to release, and push to github for official release. Taking advantage of issue tracking, pull request functionality, and the larger community.

ipmi address discovery with chef and ohai

2012-03-03T11:03:00-08:00

A simple Ohai plugin plugin to collect a metal system’s IPMI address. Debian systems require the ‘ipmitool’ package and the following modules loaded.

Usage is as follows:

Public IP Address Discovery With Chef and Ohai

2011-10-27T22:01:00-07:00

I am currently automating the deployment and configuration of a moderately complex service architecture. Ohai, currently has no way to discover a systems public (floating) ip address in an OpenStack environment. The ability to discover this information helps with additional automation (eg. Provisioning dns in DynECT).

This ~~Ohai plugin~~ Ohai plugin is a semi-poor attempt at discovering a guest’s public ipaddress.

Update: Sat March 3 2011

Looks like Ohai already attempts to capture this information from the meta-data server. However, this fails due to MAC address not matching. Updated the previously discussed plugin to capture the floating IP from the meta-data server. ~~Also, have it following the same API as the eucalyptus plugin.~~

Usage is as follows:

Zkpython and Homebrew

2011-08-29T22:54:00-07:00

Ran into the following error on OSX, when trying to pip install a Homebrew installed version of ZooKeeper’s zkpython.

zookeeper.c:20:23: error: zookeeper.h: No such file or directory

Was able to install by providing the ‘C_INCLUDE_PATH’ to pip.

Using Netcat to Open Ports

2011-08-14T20:58:00-07:00

I find it useful to easily open a port, to test access controls. Configuring a webserver or iptables to redirect to a known running port is cumbersome. The following has proved useful many times.

$ echo "open port" |nc -l 8080

Verification can be done with telnet or netcat.

$ telnet example.com 8080
Trying example.com...
Connected to example.com.
Escape character is '^]'.
open port
Connection closed by foreign host.

$ nc example.com 8080
open port

Nokogiri RVM Homebrew

2011-08-13T14:45:00-07:00

Having problems getting Nokogiri to compile on OSX with Homebrew?

BREW_HOME=$HOME/.homebrew $ brew install libxml2 $ brew link libxml2 $ brew install https://github.com/adamv/homebrew-alt/raw/master/duplicates/libxslt.rb $ brew link libxslt $ brew install libiconv $ brew link libiconv $ gem install nokogiri -- --with-xml2-dir=$BREW_HOME/Cellar/libxml2/2.7.8 --with-xslt-dir=$BREW_HOME/Cellar/libxslt/1.1.26 --with-iconv-dir=$BREW_HOME/Cellar/libiconv/1.13.1/

Openstack Image Uploader

2011-08-13T14:03:00-07:00

My co-worker and best pal Kevin wrote a script to upload images into OpenStack’s Glance. He recently released the script as the ogler rubygem. It is a straight forward script, built on the ogle library. Our friends at Opscode contacted Kevin, and are planning to distribute it in some fashion.

Uploading directly into Glance allows the setting of metadata, it also avoids the unnecessary steps behind ‘euca-bundle-image’ (object store upload -> unbundle -> Glance upload).

Usage

Install the rubygem:

$ gem install ogler

To upload a x86_64 Ubuntu 11.04 ami and 2.6.35 aki:

$ ogler -i  -k  -a x86_64 -e 2.6.35 -d ubuntu -v 11.04 -h

Attaching additional metadata is as simple as appending key/value pairs:

-c foo=bar,baz=qux

Glance uses decimal ids. Nova converts them to standard ami ids you’re used to, when queried through the EC2 API. To view the metadata we query Glance for the image id:

$ curl -i -X HEAD localhost:9292/v1.0/images/4
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Length: 0
X-Image-Meta-Property-Distro: Ubuntu
X-Image-Meta-Id: 4
X-Image-Meta-Property-Arch: amd64
X-Image-Meta-Deleted: False
X-Image-Meta-Container_format: ami
X-Image-Meta-Property-Uploader: root@enc1b11
X-Image-Meta-Location: file:///var/lib/glance/images/4
X-Image-Meta-Deleted_at: 
X-Image-Meta-Created_at: 2011-05-11T15:48:02
X-Image-Meta-Size: 1476395008
X-Image-Meta-Status: active
X-Image-Meta-Property-Type: machine
X-Image-Meta-Property-Kernel_name: natty-server-uec-amd64-vmlinuz-virtual
X-Image-Meta-Is_public: True
X-Image-Meta-Property-Kernel_id: 3
X-Image-Meta-Updated_at: 2011-05-11T15:48:08
X-Image-Meta-Checksum: b6149317c554d2c335365e7bd43e9bf0
X-Image-Meta-Property-Version: 11.04
X-Image-Meta-Disk_format: ami
X-Image-Meta-Name: ubuntu_11.04-amd64
Location: http://localhost:9292/v1/images/4
Etag: b6149317c554d2c335365e7bd43e9bf0
Date: Sun, 14 Aug 2011 17:57:48 GMT

Giving Octopress a Try

2011-08-13T12:45:00-07:00

Octopress is quite impressive.