Giacomo Vacca, profile picture
Uploaded byGiacomo Vacca
PDF, PPTX5,911 views

Docker and Puppet for Continuous Integration

The document discusses the integration of Docker and Puppet in continuous integration processes for software development. It highlights the benefits of using Docker containers for building, testing, and deploying applications while maintaining clean environments, and emphasizes the necessity of configuration management tools like Puppet to automate server configurations. The presentation also covers various tools and workflows associated with Jenkins, Docker orchestration, and interaction opportunities between these technologies.

Software
Related topics:
Continuous Integration

Embed presentation

Download as PDF, PPTX
Docker and Puppet for Continuous Integration Giacomo Vacca, Founder at RTCSoft, gv@rtcsoft.net
About me • 15 years “in the trenches cubicles” • Developer of RTC (VoIP, IM, WebRTC) solutions • Founder of RTCSoft in 2015 @giavac https://github.com/giavac gv@rtcsoft.net
Docker usage scenarios • Run services • Packaging/Deployment mechanism • Fast prototyping • Continuous Integration/ Delivery
Continuous Integration 1/2 • A team of developers work on the same project • Each developer commits several times per day • Each commit is potentially verified (Build, Deploy, Test) • The project is always kept in a stable/releasable state
Continuous Integration 2/2 • Developers work on personal/bug/feature (short-lived) branches • These branches are merged into the “release” branch for the release Image source: www.atlassian.com
CI components Image source: myself (This is why it sucks)
Server-side apps for Linux • Apps are built, packaged, deployed and tested • Unit testing during the builds • Component/Integration/Load testing after test deployments • Artefacts are uploaded into file servers or deb/yum repos
Old school: “Build and run” Build the app on the runtime machine • PROBLEMS: • Repeat the build on each host • Unnecessary pollution of the runtime host • Maintenance nightmare: the easiest upgrade is problematic • Potential exposure of source code to external attacks
Using a “Build machine” Dedicate a machine to the various builds • PROs: • Keep the runtime environment reasonably clean • Source code is protected inside the private network • CONs: • You’re reducing a multi-dimensional problem into a bi-dimensional one • You’ll pay the price one day!
• Widely adopted, Open Source CI tool • Core + many plugins • Integrates well with git and Docker • Can manage multiple “slaves” https://jenkins-ci.org/
Jenkins and Master worker • “Cron jobs manager with a GUI” • What’s a Jenkins job? • The simplest case: Jenkins runs the jobs inside its own host • “Master” worker, no slaves involved • Still you need to manage Jenkins’ configuration…
Building machineS Assign a VM per building scenario (app/OS) • A step in the right direction • CONs: • Hard to maintain (see Configuration Management later) • VM resources allocated even when the builds are not running • Explosion of number of VM types to use (OS/versions matrix) • VMs are “heavy”
Jenkins and Slaves • Configure a number of “slave workers” • Assign a slave to a job • But you need to maintain all those slaves…
Configuration Management You need something better than that.
Configuration Management intro • Define programmatically the configuration of a machine • Many tools available: Puppet, Ansible, Chef, Salt, etc. • Make configuration predictable AND fix divergence automatically • Track changes during time (it’s all text) • Define a formal language across developers, sysadmin, Ops
• Puppet defines the final state of a host (What, not How) • Has its own declarative syntax • Written in Ruby • Designed for Master-Slave interaction, can be used Standalone • Idempotent https://puppetlabs.com/
Configuration Management You really, really need it. Even if you like 3-ways diffs and hate the term “idempotence”.
Example of Puppet codepackage { 'nginx': ensure => present, } -> file { '/etc/nginx/nginx.conf': ensure => file, owner => 'root', group => 'root', mode => '0644', content => template('mymodule/nginx.conf.erb'), notify => Service['nginx'], } -> file { '/etc/nginx/conf.d/global.conf': ensure => file, owner => 'root', group => 'root', mode => '0644', content => template('mymodule/nginx_global.conf.erb'), notify => Service['nginx'], } service { 'nginx': ensure => running, enable => true, }
Back to Jenkins and multiple Slaves • We saw the approach with multiple slaves, with VMs as slave • Functionally valid • Cumbersome to maintain • What if we could have “on demand”, lightweight workers? e.g. Docker containers?
• A new form of virtualisation (w/ real HW performance) • A delivery mechanism • Many “images” freely available • “Here’s the ingredients and recipe” VS “Here’s the cake” https://www.docker.com/
Virtual Machines vs Docker Source: https://www.docker.com/what-docker
Docker workflow • Build an image (Dockerfile + base images) • docker build -t gvacca/nginx . • Store image in a registry (Public, e.g. Dockerhub or private) • docker push gvacca/nginx • Pull image on a target host • docker pull gvacca/nginx • Run container on a target host • docker run -it gvacca/nginx
Dockerfile - example FROM ubuntu:latest MAINTAINER Giacomo Vacca <gv@rtcsoft.net> RUN apt-get update # Install nginx RUN apt-get -y -q install nginx # Prepare target dir for website (Must match global.conf) RUN mkdir -p /var/www/html # Configure nginx COPY nginx/nginx.conf /etc/nginx/nginx.conf COPY nginx/global.conf /etc/nginx/conf.d/global.conf EXPOSE 8080 CMD [ "/usr/sbin/nginx" ] https://github.com/giavac/docker-experiments/tree/master/simple_nginx
Build a Docker image gvacca@dockerubuntu:~simple_nginx$ sudo docker build -t gvacca/simple-nginx . Sending build context to Docker daemon 7.168 kB Step 1 : FROM ubuntu:14.04 ---> 1d073211c498 … Step 2 : MAINTAINER Giacomo Vacca <gv@rtcsoft.net> ---> Running in 10a8334becfd ---> 559310abf4fb Removing intermediate container 10a8334becfd Step 3 : RUN apt-get update ---> Running in 873b09debab0 … Step 8 : EXPOSE 8080 ---> Running in a27f73413c02 ---> f5ef8527f2a3 Removing intermediate container a27f73413c02 Step 9 : CMD /usr/sbin/nginx ---> Running in d99de19cc782 ---> df76d20cd00f Removing intermediate container d99de19cc782 Successfully built df76d20cd00f
Run the container! gvacca@dockerubuntu:simple_nginx$ sudo docker run -d --name nginx -p 8080:8080 -v $PWD/website:/var/www/html/website gvacca/simple-nginx add8d371f82f615ebbd121cea804511dcdafac893b14325366744797424fa44c gvacca@dockerubuntu:simple_nginx$ sudo docker ps CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES add8d371f82f gvacca/simple-nginx "/usr/sbin/nginx" 11 seconds ago Up 9 seconds 0.0.0.0:8080->8080/tcp nginx gvacca@dockerubuntu:simple_nginx$ ps aux |grep docker root 792 0.0 4.7 693136 23740 ? Ssl Nov04 11:20 /usr/bin/docker daemon root 1977 0.0 2.6 152692 13172 ? Sl 11:26 0:00 docker-proxy - proto tcp -host-ip 0.0.0.0 -host-port 8080 -container-ip 172.17.0.2 -container-port 8080
Intermediate topics • Volumes • Network (was ‘link’ before 1.9) • Debugging (‘inspect’) • ARG (after 1.9) • Docker on OSX/Windows (Docker Machine) • Interacting with Kernel modules
Docker orchestration • Docker Composer • Docker Swarm • Google’s Kubernetes • Apache Mesos • Puppet & others
Let’s start exploring interaction opportunities between the tools seen so far…
Puppet to manage Jenkins • https://forge.puppetlabs.com/rtyler/jenkins • Manage Jenkins as a service • Install plugins automatically, etc • Or build your own module! • Install .war • Configure Jenkins (config.xml) • Configure jobs ($JENKINS_PATH/jobs/JOB/config.xml)
Docker as Slave for Jenkins • Associate specific Docker images to specific Jenkins build jobs • Keep builds clean & reproducible (“Non-event releases”) • Run slave containers on demand - stop them when not needed. • Jenkins Plugin: https://wiki.jenkins-ci.org/display/JENKINS/Docker +Plugin • Other Cloud methods, e.g. Mesos
Jenkins to build Docker images • A Jenkins job: • Checks out a Dockerfile • Builds the image • Upload the new image in a repo • May re-use images for new builds (careful about integrity)
Puppet to manage Docker containers • Module for docker: https://forge.puppetlabs.com/garethr/docker • Installs Docker and required dependencies • Launches the Docker daemon • Sets DNS, users and other configuration items • Pull images from selected repos • Run containers (image + command)
Run Jenkins inside Docker • Manage Jenkins with a dedicated image + volume with data • From the official Docker registry: https://hub.docker.com/_/jenkins/ docker run -d -p 8080:8080 -p 50000:50000 -v ~:/var/jenkins_home jenkins • TCP 8080: Web UI • TCP 50000: interface to connect slaves
Docker inside Docker But you need the privileged mode
Conclusion • There are many opportunities to automate Continuous Integration • CI for server-side apps poses specific challenges • You can’t ignore Configuration Management • Docker represents a huge opportunity • You need to find your own use case and solution
APPENDIX - Puppet vs Docker • Some stop using Puppet for Configuration Management once they move their apps inside containers • A Dockerfile defines “how” to build an image • A Dockerfile must be distribution-specific (yum or apt?) • Puppet is OS-agnostic: the differences are hidden inside modules
Questions and Answers Thanks
Recommended Books • “The Docker book”, J. Turnbull, http://www.amazon.co.uk/Docker- Book-Containerization-new-virtualization-ebook/dp/B00LRROTI4 • “Continuous Delivery”, J. Humble, http://www.amazon.com/ Continuous-Delivery-Deployment-Automation-Addison-Wesley/dp/ 0321601912 • “Pro Puppet”, J. Turnbull, http://www.amazon.co.uk/Pro-Puppet- Second-Professional-Apress/dp/1430260408
See also… http://www.slideshare.net/GiacomoVacca/when-voip-meets-web-the- revolution-of-webrtc

More Related Content

PDF
Containerizing a Web Application with Vue.js and Java
byJadson Santos
 
PDF
Improve your Java Environment with Docker
byHanoiJUG
 
PDF
Minikube Workshop Handout
byAlfie Chen
 
PPTX
Jenkins, pipeline and docker
byAgileDenver
 
PDF
Rise of the Machines - Automate your Development
bySven Peters
 
PDF
Docker - From Walking To Running
byGiacomo Vacca
 
PPTX
Seven Habits of Highly Effective Jenkins Users (2014 edition!)
byAndrew Bayer
 
PDF
Continuous Delivery in Enterprise Environments using Docker, Ansible and Jenkins
byMarcel Birkner
 
Containerizing a Web Application with Vue.js and Java
byJadson Santos
 
Improve your Java Environment with Docker
byHanoiJUG
 
Minikube Workshop Handout
byAlfie Chen
 
Jenkins, pipeline and docker
byAgileDenver
 
Rise of the Machines - Automate your Development
bySven Peters
 
Docker - From Walking To Running
byGiacomo Vacca
 
Seven Habits of Highly Effective Jenkins Users (2014 edition!)
byAndrew Bayer
 
Continuous Delivery in Enterprise Environments using Docker, Ansible and Jenkins
byMarcel Birkner
 

What's hot

PDF
How to Improve Your Image Builds Using Advance Docker Build
byDocker, Inc.
 
PDF
Continuous Integration/Deployment with Docker and Jenkins
byFrancesco Bruni
 
PDF
Continuous Integration and Kamailio
byGiacomo Vacca
 
ODP
devops@cineca
byLinuxaria.com
 
PPTX
7 Habits of Highly Effective Jenkins Users
byJules Pierre-Louis
 
PDF
OSDC 2017 - Julien Pivotto - Automating Jenkins
byNETWAYS
 
PDF
Deployment Automation with Docker
byEgor Pushkin
 
PPTX
Automated Deployment Pipeline using Jenkins, Puppet, Mcollective and AWS
byBamdad Dashtban
 
PPTX
Package Management on Windows with Chocolatey
byPuppet
 
PDF
Testing with Docker
bytoffermann
 
PPTX
Baking docker using chef
byMukta Aphale
 
PDF
Using Kubernetes for Continuous Integration and Continuous Delivery. Java2days
byCarlos Sanchez
 
PDF
Using Kubernetes for Continuous Integration and Continuous Delivery
byCarlos Sanchez
 
PDF
Vagrant + Docker provider [+Puppet]
byNicolas Poggi
 
PDF
Using Docker for Testing
byCarlos Sanchez
 
PPTX
Javaone 2014 - Git & Docker with Jenkins
byAndy Pemberton
 
PPTX
Vagrant introduction for Developers
byAntons Kranga
 
PDF
GlassFish Embedded API
byEduardo Pelegri-Llopart
 
ODP
It Works On My Machine: Vagrant for Software Development
byCarlos Perez
 
How to Improve Your Image Builds Using Advance Docker Build
byDocker, Inc.
 
Continuous Integration/Deployment with Docker and Jenkins
byFrancesco Bruni
 
Continuous Integration and Kamailio
byGiacomo Vacca
 
devops@cineca
byLinuxaria.com
 
7 Habits of Highly Effective Jenkins Users
byJules Pierre-Louis
 
OSDC 2017 - Julien Pivotto - Automating Jenkins
byNETWAYS
 
Deployment Automation with Docker
byEgor Pushkin
 
Automated Deployment Pipeline using Jenkins, Puppet, Mcollective and AWS
byBamdad Dashtban
 
Package Management on Windows with Chocolatey
byPuppet
 
Testing with Docker
bytoffermann
 
Baking docker using chef
byMukta Aphale
 
Using Kubernetes for Continuous Integration and Continuous Delivery. Java2days
byCarlos Sanchez
 
Using Kubernetes for Continuous Integration and Continuous Delivery
byCarlos Sanchez
 
Vagrant + Docker provider [+Puppet]
byNicolas Poggi
 
Using Docker for Testing
byCarlos Sanchez
 
Javaone 2014 - Git & Docker with Jenkins
byAndy Pemberton
 
Vagrant introduction for Developers
byAntons Kranga
 
GlassFish Embedded API
byEduardo Pelegri-Llopart
 
It Works On My Machine: Vagrant for Software Development
byCarlos Perez
 

Viewers also liked

PPTX
Containers #101 Meetup: Containers & OpenStack
byBrittany Ingram
 
PDF
Red Hat Satellite 6 - Automation with Puppet
byMichael Lessard
 
PPTX
Immutable infrastructure 介紹與實做:以 kolla 為例
bykao kuo-tung
 
PPTX
Windows Configuration Management: Managing Packages, Services, & Power Shell-...
byPuppet
 
PPTX
Installaling Puppet Master and Agent
byRanjit Avasarala
 
PDF
Puppetconf 2015 - Puppet Reporting with Elasticsearch Logstash and Kibana
bypkill
 
PPTX
Provisioning environments. A simplistic approach
byEder Roger Souza
 
PDF
Using Docker with Puppet - PuppetConf 2014
byPuppet
 
PPTX
Deploying OpenStack Using Docker in Production
byclayton_oneill
 
PDF
PuppetDB, Puppet Explorer and puppetdbquery
byPuppet
 
PDF
Managing Windows Systems with Puppet - PuppetConf 2013
byPuppet
 
PDF
Icinga 2 and Puppet automate monitoring
byIcinga
 
PDF
Kolla - containerizing the cloud itself
byMichal Rostecki
 
PDF
Top 5 Challenges To Add Web Calls to Truphone VoIP Platform
byGiacomo Vacca
 
PDF
Designing Puppet: Roles/Profiles Pattern
byPuppet
 
PDF
Chasing AMI - Building Amazon machine images with Puppet, Packer and Jenkins
byTomas Doran
 
PDF
Managing Puppet using MCollective
byPuppet
 
KEY
Puppet for dummies - ZendCon 2011 Edition
byJoshua Thijssen
 
PPTX
Scaling Continuous Integration for Puppet
bySalesforce Engineering
 
PPTX
Intro to Puppet Enterprise
byPuppet
 
Containers #101 Meetup: Containers & OpenStack
byBrittany Ingram
 
Red Hat Satellite 6 - Automation with Puppet
byMichael Lessard
 
Immutable infrastructure 介紹與實做:以 kolla 為例
bykao kuo-tung
 
Windows Configuration Management: Managing Packages, Services, & Power Shell-...
byPuppet
 
Installaling Puppet Master and Agent
byRanjit Avasarala
 
Puppetconf 2015 - Puppet Reporting with Elasticsearch Logstash and Kibana
bypkill
 
Provisioning environments. A simplistic approach
byEder Roger Souza
 
Using Docker with Puppet - PuppetConf 2014
byPuppet
 
Deploying OpenStack Using Docker in Production
byclayton_oneill
 
PuppetDB, Puppet Explorer and puppetdbquery
byPuppet
 
Managing Windows Systems with Puppet - PuppetConf 2013
byPuppet
 
Icinga 2 and Puppet automate monitoring
byIcinga
 
Kolla - containerizing the cloud itself
byMichal Rostecki
 
Top 5 Challenges To Add Web Calls to Truphone VoIP Platform
byGiacomo Vacca
 
Designing Puppet: Roles/Profiles Pattern
byPuppet
 
Chasing AMI - Building Amazon machine images with Puppet, Packer and Jenkins
byTomas Doran
 
Managing Puppet using MCollective
byPuppet
 
Puppet for dummies - ZendCon 2011 Edition
byJoshua Thijssen
 
Scaling Continuous Integration for Puppet
bySalesforce Engineering
 
Intro to Puppet Enterprise
byPuppet
 

Similar to Docker and Puppet for Continuous Integration

PPTX
IM5- Introduction to DevOps tooools.pptx
byKumkum296976
 
PDF
Docker From Scratch
byGiacomo Vacca
 
PPTX
DevOps Interview Questions Part - 2 | Devops Interview Questions And Answers ...
bySimplilearn
 
PDF
Exploring Docker in CI/CD
byHenry Huang
 
PPTX
SDLC Using Docker for Fun and Profit
bydantheelder
 
PDF
CI/CD with Jenkins and Docker - DevOps Meetup Day Thailand
byTroublemaker Khunpech
 
PPTX
One click deployment
byAlex Su
 
PDF
DCSF 19 Building Your Development Pipeline
byDocker, Inc.
 
PDF
Software industrialization
byBibek Lama
 
PDF
ExpoQA 2017 Docker and CI
byElasTest Project
 
PDF
Docker & ci
byPatxi Gortázar
 
PDF
Puppet Camp Seattle 2014: Docker and Puppet: 1+1=3
byPuppet
 
PDF
Puppet Camp Chicago 2014: Docker and Puppet: 1+1=3 (Intermediate)
byPuppet
 
PDF
Docker containers & the Future of Drupal testing
byRicardo Amaro
 
PDF
Scale Big With Docker — Moboom 2014
byJérôme Petazzoni
 
PDF
Adopt DevOps philosophy on your Symfony projects (Symfony Live 2011)
byFabrice Bernhard
 
PPTX
DockerCon14 eBay
byDocker, Inc.
 
PPTX
Delivering eBay's CI Solution with Apache Mesos & Docker - DockerCon 2014
byahunnargikar
 
PDF
LXC to Docker Via Continuous Delivery
byDocker, Inc.
 
PDF
Continuous Integration using Docker & Jenkins
byB1 Systems GmbH
 
IM5- Introduction to DevOps tooools.pptx
byKumkum296976
 
Docker From Scratch
byGiacomo Vacca
 
DevOps Interview Questions Part - 2 | Devops Interview Questions And Answers ...
bySimplilearn
 
Exploring Docker in CI/CD
byHenry Huang
 
SDLC Using Docker for Fun and Profit
bydantheelder
 
CI/CD with Jenkins and Docker - DevOps Meetup Day Thailand
byTroublemaker Khunpech
 
One click deployment
byAlex Su
 
DCSF 19 Building Your Development Pipeline
byDocker, Inc.
 
Software industrialization
byBibek Lama
 
ExpoQA 2017 Docker and CI
byElasTest Project
 
Docker & ci
byPatxi Gortázar
 
Puppet Camp Seattle 2014: Docker and Puppet: 1+1=3
byPuppet
 
Puppet Camp Chicago 2014: Docker and Puppet: 1+1=3 (Intermediate)
byPuppet
 
Docker containers & the Future of Drupal testing
byRicardo Amaro
 
Scale Big With Docker — Moboom 2014
byJérôme Petazzoni
 
Adopt DevOps philosophy on your Symfony projects (Symfony Live 2011)
byFabrice Bernhard
 
DockerCon14 eBay
byDocker, Inc.
 
Delivering eBay's CI Solution with Apache Mesos & Docker - DockerCon 2014
byahunnargikar
 
LXC to Docker Via Continuous Delivery
byDocker, Inc.
 
Continuous Integration using Docker & Jenkins
byB1 Systems GmbH
 

More from Giacomo Vacca

PDF
Kamailio World 2018 - Workshop: kamailio-tests
byGiacomo Vacca
 
PDF
Testing WebRTC applications at scale.pdf
byGiacomo Vacca
 
PDF
Modern VoIP in Modern Infrastructures
byGiacomo Vacca
 
PDF
Modern VoIP in modern infrastructures
byGiacomo Vacca
 
PDF
WebRTC in SignalWire - troubleshooting media negotiation
byGiacomo Vacca
 
PDF
GiacomoVacca - WebRTC - troubleshooting media negotiation.pdf
byGiacomo Vacca
 
PDF
Homer - Workshop at Kamailio World 2017
byGiacomo Vacca
 
PDF
RIPP Notes
byGiacomo Vacca
 
PDF
[workshop] The Revolutionary WebRTC
byGiacomo Vacca
 
PDF
An SFU/MCU integration for heterogeneous environments
byGiacomo Vacca
 
PDF
STUN protocol
byGiacomo Vacca
 
PDF
Automatic Kamailio Deployments With Puppet
byGiacomo Vacca
 
Kamailio World 2018 - Workshop: kamailio-tests
byGiacomo Vacca
 
Testing WebRTC applications at scale.pdf
byGiacomo Vacca
 
Modern VoIP in Modern Infrastructures
byGiacomo Vacca
 
Modern VoIP in modern infrastructures
byGiacomo Vacca
 
WebRTC in SignalWire - troubleshooting media negotiation
byGiacomo Vacca
 
GiacomoVacca - WebRTC - troubleshooting media negotiation.pdf
byGiacomo Vacca
 
Homer - Workshop at Kamailio World 2017
byGiacomo Vacca
 
RIPP Notes
byGiacomo Vacca
 
[workshop] The Revolutionary WebRTC
byGiacomo Vacca
 
An SFU/MCU integration for heterogeneous environments
byGiacomo Vacca
 
STUN protocol
byGiacomo Vacca
 
Automatic Kamailio Deployments With Puppet
byGiacomo Vacca
 

Recently uploaded

PDF
NYC ACE 12-Nov-2025-Combined Presentation.pdf
byAUGNYC
 
PDF
SWEBOK: the software engineering body of knowledge (SC25 Workshop Research So...
byHironori Washizaki
 
PPTX
Detecting Bad Apples: Understanding macOS Malware TTPs by Surya Teja
byCysinfo Cyber Security Community
 
PDF
The Ultimate Serial Port Detective – Baudowl
byCysinfo Cyber Security Community
 
PDF
Startup Core Architecture: A Simple Practical Guide
byShiv Technolabs Pvt. Ltd.
 
PDF
vMix Overview & Key Features Easily Produce, Record and Live Stream
byIGM Soraing
 
PDF
Quantum TechDocs - Technology & Compliance.pdf
byietmsoftware1
 
PDF
Building Custom Insurance Applications With
byOpenkoda
 
PDF
Oracle AI Database 26ai _ AI-Native Database for Enterprises.pdf
byAstuteBusiness
 
PPTX
Key Benefits of Odoo Customization Services
byCandidRoot Solutions Private Limited
 
PDF
How to Make Your AI Reliable: Comprehensive Guide to Testing AI Applications ...
byQATestLab Quality is a rule
 
PDF
Combinatorial Interview Problems with Backtracking Solutions - From Imperativ...
byPhilip Schwarz
 
PDF
SCORM Cloud: The 5 categories of content distribution
byRustici Software
 
PDF
A new Vision of Software Sustainability and its Engineering: Reflections and ...
byPatricia Lago
 
DOCX
Open Source BI Tableau Alternatives You Can Trust.docx
byVarsha Nayak
 
PDF
6 Hotel Booking Trends You Can’t Ignore in 2025.pdf
byHotelogix
 
PPTX
The Sync Strikes Back: Tales from the MOPs Trenches
bybbedford2
 
PDF
AWS Certified Developer - Associate certificate.pdf
byGabriellaSantosRodri
 
PDF
DSD-INT 2025 Thermal and chemical plumes of sea cooling water from PEM platfo...
byDeltares
 
PDF
DSD-INT 2025 Transport and Fate of Microplastics in Fluvial System (Rhine Riv...
byDeltares
 
NYC ACE 12-Nov-2025-Combined Presentation.pdf
byAUGNYC
 
SWEBOK: the software engineering body of knowledge (SC25 Workshop Research So...
byHironori Washizaki
 
Detecting Bad Apples: Understanding macOS Malware TTPs by Surya Teja
byCysinfo Cyber Security Community
 
The Ultimate Serial Port Detective – Baudowl
byCysinfo Cyber Security Community
 
Startup Core Architecture: A Simple Practical Guide
byShiv Technolabs Pvt. Ltd.
 
vMix Overview & Key Features Easily Produce, Record and Live Stream
byIGM Soraing
 
Quantum TechDocs - Technology & Compliance.pdf
byietmsoftware1
 
Building Custom Insurance Applications With
byOpenkoda
 
Oracle AI Database 26ai _ AI-Native Database for Enterprises.pdf
byAstuteBusiness
 
Key Benefits of Odoo Customization Services
byCandidRoot Solutions Private Limited
 
How to Make Your AI Reliable: Comprehensive Guide to Testing AI Applications ...
byQATestLab Quality is a rule
 
Combinatorial Interview Problems with Backtracking Solutions - From Imperativ...
byPhilip Schwarz
 
SCORM Cloud: The 5 categories of content distribution
byRustici Software
 
A new Vision of Software Sustainability and its Engineering: Reflections and ...
byPatricia Lago
 
Open Source BI Tableau Alternatives You Can Trust.docx
byVarsha Nayak
 
6 Hotel Booking Trends You Can’t Ignore in 2025.pdf
byHotelogix
 
The Sync Strikes Back: Tales from the MOPs Trenches
bybbedford2
 
AWS Certified Developer - Associate certificate.pdf
byGabriellaSantosRodri
 
DSD-INT 2025 Thermal and chemical plumes of sea cooling water from PEM platfo...
byDeltares
 
DSD-INT 2025 Transport and Fate of Microplastics in Fluvial System (Rhine Riv...
byDeltares
 

Docker and Puppet for Continuous Integration

  • 1.
    Docker and Puppetfor Continuous Integration Giacomo Vacca, Founder at RTCSoft, gv@rtcsoft.net
  • 2.
    About me • 15years “in the trenches cubicles” • Developer of RTC (VoIP, IM, WebRTC) solutions • Founder of RTCSoft in 2015 @giavac https://github.com/giavac gv@rtcsoft.net
  • 3.
    Docker usage scenarios •Run services • Packaging/Deployment mechanism • Fast prototyping • Continuous Integration/ Delivery
  • 4.
    Continuous Integration 1/2 •A team of developers work on the same project • Each developer commits several times per day • Each commit is potentially verified (Build, Deploy, Test) • The project is always kept in a stable/releasable state
  • 5.
    Continuous Integration 2/2 •Developers work on personal/bug/feature (short-lived) branches • These branches are merged into the “release” branch for the release Image source: www.atlassian.com
  • 6.
    CI components Image source:myself (This is why it sucks)
  • 7.
    Server-side apps forLinux • Apps are built, packaged, deployed and tested • Unit testing during the builds • Component/Integration/Load testing after test deployments • Artefacts are uploaded into file servers or deb/yum repos
  • 8.
    Old school: “Buildand run” Build the app on the runtime machine • PROBLEMS: • Repeat the build on each host • Unnecessary pollution of the runtime host • Maintenance nightmare: the easiest upgrade is problematic • Potential exposure of source code to external attacks
  • 9.
    Using a “Buildmachine” Dedicate a machine to the various builds • PROs: • Keep the runtime environment reasonably clean • Source code is protected inside the private network • CONs: • You’re reducing a multi-dimensional problem into a bi-dimensional one • You’ll pay the price one day!
  • 10.
    • Widely adopted,Open Source CI tool • Core + many plugins • Integrates well with git and Docker • Can manage multiple “slaves” https://jenkins-ci.org/
  • 11.
    Jenkins and Masterworker • “Cron jobs manager with a GUI” • What’s a Jenkins job? • The simplest case: Jenkins runs the jobs inside its own host • “Master” worker, no slaves involved • Still you need to manage Jenkins’ configuration…
  • 12.
    Building machineS Assign aVM per building scenario (app/OS) • A step in the right direction • CONs: • Hard to maintain (see Configuration Management later) • VM resources allocated even when the builds are not running • Explosion of number of VM types to use (OS/versions matrix) • VMs are “heavy”
  • 13.
    Jenkins and Slaves •Configure a number of “slave workers” • Assign a slave to a job • But you need to maintain all those slaves…
  • 14.
    Configuration Management You needsomething better than that.
  • 15.
    Configuration Management intro •Define programmatically the configuration of a machine • Many tools available: Puppet, Ansible, Chef, Salt, etc. • Make configuration predictable AND fix divergence automatically • Track changes during time (it’s all text) • Define a formal language across developers, sysadmin, Ops
  • 16.
    • Puppet definesthe final state of a host (What, not How) • Has its own declarative syntax • Written in Ruby • Designed for Master-Slave interaction, can be used Standalone • Idempotent https://puppetlabs.com/
  • 17.
    Configuration Management You really,really need it. Even if you like 3-ways diffs and hate the term “idempotence”.
  • 18.
    Example of Puppetcodepackage { 'nginx': ensure => present, } -> file { '/etc/nginx/nginx.conf': ensure => file, owner => 'root', group => 'root', mode => '0644', content => template('mymodule/nginx.conf.erb'), notify => Service['nginx'], } -> file { '/etc/nginx/conf.d/global.conf': ensure => file, owner => 'root', group => 'root', mode => '0644', content => template('mymodule/nginx_global.conf.erb'), notify => Service['nginx'], } service { 'nginx': ensure => running, enable => true, }
  • 19.
    Back to Jenkinsand multiple Slaves • We saw the approach with multiple slaves, with VMs as slave • Functionally valid • Cumbersome to maintain • What if we could have “on demand”, lightweight workers? e.g. Docker containers?
  • 20.
    • A newform of virtualisation (w/ real HW performance) • A delivery mechanism • Many “images” freely available • “Here’s the ingredients and recipe” VS “Here’s the cake” https://www.docker.com/
  • 21.
    Virtual Machines vsDocker Source: https://www.docker.com/what-docker
  • 22.
    Docker workflow • Buildan image (Dockerfile + base images) • docker build -t gvacca/nginx . • Store image in a registry (Public, e.g. Dockerhub or private) • docker push gvacca/nginx • Pull image on a target host • docker pull gvacca/nginx • Run container on a target host • docker run -it gvacca/nginx
  • 23.
    Dockerfile - example FROMubuntu:latest MAINTAINER Giacomo Vacca <gv@rtcsoft.net> RUN apt-get update # Install nginx RUN apt-get -y -q install nginx # Prepare target dir for website (Must match global.conf) RUN mkdir -p /var/www/html # Configure nginx COPY nginx/nginx.conf /etc/nginx/nginx.conf COPY nginx/global.conf /etc/nginx/conf.d/global.conf EXPOSE 8080 CMD [ "/usr/sbin/nginx" ] https://github.com/giavac/docker-experiments/tree/master/simple_nginx
  • 24.
    Build a Dockerimage gvacca@dockerubuntu:~simple_nginx$ sudo docker build -t gvacca/simple-nginx . Sending build context to Docker daemon 7.168 kB Step 1 : FROM ubuntu:14.04 ---> 1d073211c498 … Step 2 : MAINTAINER Giacomo Vacca <gv@rtcsoft.net> ---> Running in 10a8334becfd ---> 559310abf4fb Removing intermediate container 10a8334becfd Step 3 : RUN apt-get update ---> Running in 873b09debab0 … Step 8 : EXPOSE 8080 ---> Running in a27f73413c02 ---> f5ef8527f2a3 Removing intermediate container a27f73413c02 Step 9 : CMD /usr/sbin/nginx ---> Running in d99de19cc782 ---> df76d20cd00f Removing intermediate container d99de19cc782 Successfully built df76d20cd00f
  • 25.
    Run the container! gvacca@dockerubuntu:simple_nginx$sudo docker run -d --name nginx -p 8080:8080 -v $PWD/website:/var/www/html/website gvacca/simple-nginx add8d371f82f615ebbd121cea804511dcdafac893b14325366744797424fa44c gvacca@dockerubuntu:simple_nginx$ sudo docker ps CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES add8d371f82f gvacca/simple-nginx "/usr/sbin/nginx" 11 seconds ago Up 9 seconds 0.0.0.0:8080->8080/tcp nginx gvacca@dockerubuntu:simple_nginx$ ps aux |grep docker root 792 0.0 4.7 693136 23740 ? Ssl Nov04 11:20 /usr/bin/docker daemon root 1977 0.0 2.6 152692 13172 ? Sl 11:26 0:00 docker-proxy - proto tcp -host-ip 0.0.0.0 -host-port 8080 -container-ip 172.17.0.2 -container-port 8080
  • 26.
    Intermediate topics • Volumes •Network (was ‘link’ before 1.9) • Debugging (‘inspect’) • ARG (after 1.9) • Docker on OSX/Windows (Docker Machine) • Interacting with Kernel modules
  • 27.
    Docker orchestration • DockerComposer • Docker Swarm • Google’s Kubernetes • Apache Mesos • Puppet & others
  • 28.
    Let’s start exploringinteraction opportunities between the tools seen so far…
  • 29.
    Puppet to manageJenkins • https://forge.puppetlabs.com/rtyler/jenkins • Manage Jenkins as a service • Install plugins automatically, etc • Or build your own module! • Install .war • Configure Jenkins (config.xml) • Configure jobs ($JENKINS_PATH/jobs/JOB/config.xml)
  • 30.
    Docker as Slavefor Jenkins • Associate specific Docker images to specific Jenkins build jobs • Keep builds clean & reproducible (“Non-event releases”) • Run slave containers on demand - stop them when not needed. • Jenkins Plugin: https://wiki.jenkins-ci.org/display/JENKINS/Docker +Plugin • Other Cloud methods, e.g. Mesos
  • 31.
    Jenkins to buildDocker images • A Jenkins job: • Checks out a Dockerfile • Builds the image • Upload the new image in a repo • May re-use images for new builds (careful about integrity)
  • 32.
    Puppet to manageDocker containers • Module for docker: https://forge.puppetlabs.com/garethr/docker • Installs Docker and required dependencies • Launches the Docker daemon • Sets DNS, users and other configuration items • Pull images from selected repos • Run containers (image + command)
  • 33.
    Run Jenkins insideDocker • Manage Jenkins with a dedicated image + volume with data • From the official Docker registry: https://hub.docker.com/_/jenkins/ docker run -d -p 8080:8080 -p 50000:50000 -v ~:/var/jenkins_home jenkins • TCP 8080: Web UI • TCP 50000: interface to connect slaves
  • 34.
    Docker inside Docker Butyou need the privileged mode
  • 35.
    Conclusion • There aremany opportunities to automate Continuous Integration • CI for server-side apps poses specific challenges • You can’t ignore Configuration Management • Docker represents a huge opportunity • You need to find your own use case and solution
  • 36.
    APPENDIX - Puppetvs Docker • Some stop using Puppet for Configuration Management once they move their apps inside containers • A Dockerfile defines “how” to build an image • A Dockerfile must be distribution-specific (yum or apt?) • Puppet is OS-agnostic: the differences are hidden inside modules
  • 37.
  • 38.
    Recommended Books • “TheDocker book”, J. Turnbull, http://www.amazon.co.uk/Docker- Book-Containerization-new-virtualization-ebook/dp/B00LRROTI4 • “Continuous Delivery”, J. Humble, http://www.amazon.com/ Continuous-Delivery-Deployment-Automation-Addison-Wesley/dp/ 0321601912 • “Pro Puppet”, J. Turnbull, http://www.amazon.co.uk/Pro-Puppet- Second-Professional-Apress/dp/1430260408
  • 39.