Skip to content
This repository has been archived by the owner on Jul 25, 2024. It is now read-only.

Latest commit

 

History

History
560 lines (464 loc) · 21.7 KB

09-knife-plugins.md

File metadata and controls

560 lines (464 loc) · 21.7 KB
Raw

knife plugins

There are a TON more of knife-plugins, then officially posted on the docs site. Github is a great place to look but I'm going to focus on 4 here.

So far all the knife plugins I've seen are ruby gems. So before you can use any of these be sure you have an ability to use gem install.

knife-solo is a great tool to emulate a chef-server with just knife commands, this is a poormans version, but it works extremely well.

knife rackspace is a way to interact directly with the rackspace Openstack api, allowing you to spin up boxes via the commandline and even provision them farther leveraging the chef-server of your choice. I'm only going to show spinning up and down boxes here, we don't have a chef-server running yet right?.....right? ;)

knife ec2, is the amazon version of knife rackspace if you will, there aren't terribly number of differences, but i wanted to make sure you realize that you have to choose which version to run to talk to which back end.

knife spork is a great tool for multiple chefs working with one chef-server. I'm only going to touch on it briefly, being again, we shouldn't have a chef-server running....yet.

knife solo

So knife solo as I say above is a poor mans chef-server. In a nutshell it takes your local directory/cookbooks, uploads them to your box, and runs chef-solo. This is different than how [chef-server|chef-client] so keep that in mind as you work with it. Lets get it working :)

First thing first, installation. You can either add it to a Gemfile, or in my case I like just using 'gem install knife-solo`. Notice the "-" between the name. You should see something like this:

root@chef-book:~# gem install knife-solo
Fetching: mixlib-config-1.1.2.gem (100%)
Successfully installed mixlib-config-1.1.2
Fetching: mixlib-cli-1.3.0.gem (100%)
Successfully installed mixlib-cli-1.3.0
Fetching: mixlib-log-1.6.0.gem (100%)
Successfully installed mixlib-log-1.6.0
Fetching: mixlib-authentication-1.3.0.gem (100%)
Successfully installed mixlib-authentication-1.3.0
Fetching: mixlib-shellout-1.2.0.gem (100%)
Successfully installed mixlib-shellout-1.2.0
Fetching: systemu-2.5.2.gem (100%)
Successfully installed systemu-2.5.2
Fetching: yajl-ruby-1.1.0.gem (100%)
Building native extensions.  This could take a while...
Successfully installed yajl-ruby-1.1.0
Fetching: ipaddress-0.8.0.gem (100%)
Successfully installed ipaddress-0.8.0
Fetching: ohai-6.18.0.gem (100%)
Successfully installed ohai-6.18.0
Fetching: mime-types-1.25.gem (100%)
Successfully installed mime-types-1.25
Fetching: rest-client-1.6.7.gem (100%)
Successfully installed rest-client-1.6.7
Fetching: net-ssh-2.7.0.gem (100%)
Successfully installed net-ssh-2.7.0
Fetching: net-ssh-gateway-1.2.0.gem (100%)
Successfully installed net-ssh-gateway-1.2.0
Fetching: net-ssh-multi-1.1.gem (100%)
Successfully installed net-ssh-multi-1.1
Fetching: highline-1.6.20.gem (100%)
Successfully installed highline-1.6.20
Fetching: erubis-2.7.0.gem (100%)
Successfully installed erubis-2.7.0
Fetching: chef-11.6.2.gem (100%)
Successfully installed chef-11.6.2
Fetching: knife-solo-0.3.0.gem (100%)
Thanks for installing knife-solo!

If you run into any issues please let us know at:
  https://github.com/matschaffer/knife-solo/issues

If you are upgrading knife-solo please uninstall any old versions by
running `gem clean knife-solo` to avoid any errors.

See http://bit.ly/CHEF-3255 for more information on the knife bug
that causes this.
Successfully installed knife-solo-0.3.0
Parsing documentation for mixlib-config-1.1.2
Installing ri documentation for mixlib-config-1.1.2
Parsing documentation for mixlib-cli-1.3.0
Installing ri documentation for mixlib-cli-1.3.0
Parsing documentation for mixlib-log-1.6.0
Installing ri documentation for mixlib-log-1.6.0
Parsing documentation for mixlib-authentication-1.3.0
Installing ri documentation for mixlib-authentication-1.3.0
Parsing documentation for mixlib-shellout-1.2.0
Installing ri documentation for mixlib-shellout-1.2.0
Parsing documentation for systemu-2.5.2
Installing ri documentation for systemu-2.5.2
Parsing documentation for yajl-ruby-1.1.0
unable to convert "\xAF" from ASCII-8BIT to UTF-8 for lib/yajl/yajl.so, skipping
Installing ri documentation for yajl-ruby-1.1.0
Parsing documentation for ipaddress-0.8.0
Installing ri documentation for ipaddress-0.8.0
Parsing documentation for ohai-6.18.0
Installing ri documentation for ohai-6.18.0
Parsing documentation for mime-types-1.25
Installing ri documentation for mime-types-1.25
Parsing documentation for rest-client-1.6.7
Installing ri documentation for rest-client-1.6.7
Parsing documentation for net-ssh-2.7.0
Installing ri documentation for net-ssh-2.7.0
Parsing documentation for net-ssh-gateway-1.2.0
Installing ri documentation for net-ssh-gateway-1.2.0
Parsing documentation for net-ssh-multi-1.1
Installing ri documentation for net-ssh-multi-1.1
Parsing documentation for highline-1.6.20
Installing ri documentation for highline-1.6.20
Parsing documentation for erubis-2.7.0
Installing ri documentation for erubis-2.7.0
Parsing documentation for chef-11.6.2
Installing ri documentation for chef-11.6.2
Parsing documentation for knife-solo-0.3.0
Installing ri documentation for knife-solo-0.3.0
Done installing documentation for mixlib-config, mixlib-cli, mixlib-log, mixlib-authentication, mixlib-shellout, systemu, yajl-ruby, ipaddress, ohai, mime-types, rest-client, net-ssh, net-ssh-gateway, net-ssh-multi, highline, erubis, chef, knife-solo (37 sec).
18 gems installed

You can already leverage knife solo with the cookbook you created. Lets do that now. NOTE: this is a tad bit tricky with virtualbox, so bear with me.

There are three/four main commands with knife solo.

knife solo init mychefrepo: it creates a directory structure that knife solo needs to be able to upload and run your cookbooks. example:

mychefrepo/
├── .chef
│   └── knife.rb
├── cookbooks
├── data_bags
├── nodes
├── roles
└── site-cookbooks

knife solo prepare root@hostname: which checks for the version of chef-solo on the box, and if it's too low installs the newest.

knife solo cook root@hostname: runs the cookbooks that you put in the nodes/hostname.json run_list which is just like the run_list like the core.json from earlier.

knife solo bootstrap root@hostname: combines the prepare and cook into one command. In theory you can have a node/hostname.json set up and run one command and provision a box exactly how you want. Pretty neat eh?

So, lets actually do it. Go to your cookbooks directory in the chef-book vm.

root@chef-book:~# cd solo/
root@chef-book:~/core# cd cookbooks/
root@chef-book:~/core/cookbooks# ls
base
root@chef-book:~/core/cookbooks#

Great, now go ahead and go to your ~/ and create a knife_solo directory you can play out of.

root@chef-book:~/core/cookbooks# cd ~
root@chef-book:~# mkdir knife_solo
root@chef-book:~# cd knife_solo/
root@chef-book:~/knife_solo#

Now type the knife solo init . command to make it knife soloized.

root@chef-book:~/knife_solo# knife solo init .
Creating kitchen...
Creating knife.rb in kitchen...
Creating cupboards...
root@chef-book:~/knife_solo#

Change directory into the site-cookbook directory.

I'd like to take a quick moment to talk about the two directories that are here. cookbooks/ and site-cookbooks/, the cookbook/ directory is for berkshelf or librarian to put cookbooks before uploading them to your provisioning box. So remember that, site-cookbooks/ is the place to put your cookbooks that you want to upload. (If you do put them in cookbooks/ it'll delete them after the run and can't find them either, so it's a waste, don't bother.)

root@chef-book:~/knife_solo# cd site-cookbooks/
root@chef-book:~/knife_solo/site-cookbooks# cp -r ~/core/cookbooks/base/ ./

Great, now go up a directory to the nodes/ directory, and create a file called localhost.json

root@chef-book:~/knife_solo/site-cookbooks# cd ../nodes/
root@chef-book:~/knife_solo/nodes# vim localhost.json

Add the save core.json file that you had from the chef-solo section.

{
    "run_list": [ "recipe[base::default]","recipe[base::ssh]","recipe[base::deployer]" ]
}

Just because I want to make sure this goes off without a hitch, go ahead and confirm your public key is in .ssh/authorized_keys for root as root. Yes, I realize that's confusing, but read the following commands to make sense of it:

root@chef-book:~/knife_solo/nodes# cd
root@chef-book:~# cd .ssh/
root@chef-book:~/.ssh# ls
id_rsa  id_rsa.pub  known_hosts
root@chef-book:~/.ssh# cp id_rsa.pub authorized_keys
root@chef-book:~/.ssh# ssh localhost
Welcome to Ubuntu 12.04 LTS (GNU/Linux 3.2.0-23-generic x86_64)

 * Documentation:  https://help.ubuntu.com/
Welcome to your Vagrant-built virtual machine.

The programs included with the Ubuntu system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.

Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by
applicable law.

root@chef-book:~# exit
logout
Connection to localhost closed.
root@chef-book:~/.ssh#

If that works, we're ready to start playing with knife solo.

Hop up to ~/knife_solo.

root@chef-book:~/knife_solo/site-cookbooks# cd ..
root@chef-book:~/knife_solo#

Lets start with a knife solo prepare just to see it work:

root@chef-book:~/knife_solo# knife solo prepare root@localhost
Bootstrapping Chef...
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100  6790  100  6790    0     0  22815      0 --:--:-- --:--:-- --:--:-- 40658
Downloading Chef 11.6.2 for ubuntu...
Installing Chef 11.6.2
(Reading database ... 65355 files and directories currently installed.)
Preparing to replace chef 11.6.2-1.ubuntu.12.04 (using .../chef_11.6.2_amd64.deb) ...
Unpacking replacement chef ...
Setting up chef (11.6.2-1.ubuntu.12.04) ...
Thank you for installing Chef!
root@chef-book:~/knife_solo#

As you can see it does check the version of chef, then download and install the newsest for you.

Now lets go on to knife solo cook:

root@chef-book:~/knife_solo# knife solo cook root@localhost
Running Chef on localhost...
Checking Chef version...
Uploading the kitchen...
Generating solo config...
Running Chef...
Starting Chef Client, version 11.6.2
Compiling Cookbooks...
Converging 10 resources
Recipe: base::default
  * package[vim] action install (up to date)
  * package[ntp] action install (up to date)
  * package[build-essential] action install (up to date)
Recipe: base::ssh
  * package[openssh-server] action install (up to date)
  * service[ssh] action enable (up to date)
  * service[ssh] action start (up to date)
  * cookbook_file[/etc/ssh/ssh_config] action create (up to date)
Recipe: base::deployer
  * group[deployer] action create (up to date)
  * user[deployer] action create (up to date)
  * directory[/home/deployer/.ssh] action create (up to date)
  * cookbook_file[/home/deployer/.ssh/authorized_keys] action create_if_missing (up to date)
Chef Client finished, 0 resources updated
root@chef-book:~/knife_solo#

CHA-CHING! Awesome. Bonus Round: use knife solo bootstrap.

Now image this with a "cloud" box that you have root access to. You just provisioned a box with recipes you wrote.

knife rackspace/knife ec2

knife rackspace and knife ec2 are front ends to talk to the respected cloud providers. They both install with a gem:

knife rackspace

root@chef-book:~# gem install knife-rackspace
Fetching: eventmachine-1.0.0.beta.3.gem (100%)
Building native extensions.  This could take a while...
Successfully installed eventmachine-1.0.0.beta.3
Fetching: ffi-1.9.0.gem (100%)
Building native extensions.  This could take a while...
Successfully installed ffi-1.9.0
Fetching: gssapi-1.0.3.gem (100%)
Successfully installed gssapi-1.0.3
Fetching: httpclient-2.3.4.1.gem (100%)
Successfully installed httpclient-2.3.4.1
Fetching: mini_portile-0.5.2.gem (100%)
Successfully installed mini_portile-0.5.2
Fetching: nokogiri-1.6.0.gem (100%)
Building native extensions.  This could take a while...
Successfully installed nokogiri-1.6.0
Fetching: rubyntlm-0.1.1.gem (100%)
Successfully installed rubyntlm-0.1.1
Fetching: uuidtools-2.1.4.gem (100%)
Successfully installed uuidtools-2.1.4
Fetching: builder-3.2.2.gem (100%)
Successfully installed builder-3.2.2
Fetching: nori-1.1.5.gem (100%)
Successfully installed nori-1.1.5
Fetching: rack-1.5.2.gem (100%)
Successfully installed rack-1.5.2
Fetching: httpi-0.9.7.gem (100%)

[-- snip --]

Parsing documentation for ruby-hmac-0.4.0
Installing ri documentation for ruby-hmac-0.4.0
Parsing documentation for unicode-0.4.4
unable to convert "\xF0" from ASCII-8BIT to UTF-8 for lib/unicode, skipping
Installing ri documentation for unicode-0.4.4
Parsing documentation for fog-1.16.0
Installing ri documentation for fog-1.16.0
Parsing documentation for knife-rackspace-0.8.1
Installing ri documentation for knife-rackspace-0.8.1
Done installing documentation for eventmachine, ffi, gssapi, httpclient, mini_portile, nokogiri, rubyntlm, uuidtools, builder, nori, rack, httpi, wasabi, gyoku, akami, savon, little-plugger, multi_json, logging, winrm, em-winrm, knife-windows, excon, formatador, net-scp, ruby-hmac, unicode, fog, knife-rackspace (303 sec).
29 gems installed

There is a nasty catch with knife-rackspace. You can't have multiple of the gems installing so you need to run:

$> gem list --local | grep knife-rackspace
knife-rackspace (0.6.2, 0.5.12)
$> gem uninstall knife-rackspace -v "= 0.5.12"
Successfully uninstalled knife-rackspace-0.5.12
$> gem list --local | grep knife-rackspace
knife-rackspace (0.6.2)

To confirm you only have one edition running. Keep this in mind.

After installing it, you need to add this to your knife.rb file:

knife[:rackspace_api_username] = "Your Rackspace API username"
knife[:rackspace_api_key] = "Your Rackspace API Key"

Run knife rackspace server list and you should see your cloud machines.

Go ahead and attempt to spin up a box:

root@chef-book:~# knife rackspace server create --server-name test -f 4
Instance ID: 17c3d362-6930-452f-86f4-7f4ce0a9453e
Name: test
Flavor: 2GB Standard Instance
Image: Ubuntu 10.04 LTS (Lucid Lynx)
Metadata: []
RackConnect Wait: no
ServiceLevel Wait: no
...............................................................................................Metadata: []

Waiting server.
Public DNS Name: 192.43.66.2.static.cloud-ips.com
Public IP Address: 192.43.66.2
Private IP Address: 10.208.154.177
Password: aoeu534234
Metadata: []

Waiting for sshddone
Bootstrapping Chef on 192.43.66.2
192.43.66.2 --2013-10-25 21:58:07--  https://www.opscode.com/chef/install.sh
192.43.66.2 Resolving www.opscode.com... 184.106.28.83
192.43.66.2 Connecting to www.opscode.com|184.106.28.83|:443...
192.43.66.2 connected.
192.43.66.2 HTTP request sent, awaiting response... 200 OK
192.43.66.2 Length: 6790 (6.6K) [application/x-sh]
192.43.66.2 Saving to: `STDOUT'
192.43.66.2
 0% [                                       ] 0           --.-K/s
 100%[======================================>] 6,790       --.-K/s   in 0s
 192.43.66.2
 192.43.66.2 2013-10-25 21:58:07 (778 MB/s) - written to stdout [6790/6790]
 192.43.66.2
 192.43.66.2 Downloading Chef 11.6.2 for ubuntu...
 192.43.66.2 Installing Chef 11.6.2
 192.43.66.2 Selecting previously deselected package chef.
 192.43.66.2 (Reading database ...
 (Reading database ... 70%
 (Reading database ... 75%
 (Reading database ... 85%
 (Reading database ... 90%
 (Reading database ... 95%
 (Reading database ... 15859 files and directories currently installed.)
 192.43.66.2 Unpacking chef (from .../chef_11.6.2_amd64.deb) ...
 192.43.66.2 Setting up chef (11.6.2-1.ubuntu.10.04) ...
 192.43.66.2 Thank you for installing Chef!
 192.43.66.2
 192.43.66.2 Starting Chef Client, version 11.6.2
 192.43.66.2 Creating a new client identity for test using the validator key.
 192.43.66.2 resolving cookbooks for run list: []
 192.43.66.2 Synchronizing Cookbooks:
 192.43.66.2 Compiling Cookbooks...
 192.43.66.2 [2013-10-25T21:58:20+00:00] WARN: Node test has an empty run list.
 192.43.66.2 Converging 0 resources
 192.43.66.2 Chef Client finished, 0 resources updated

 Instance ID: 17c3d362-6930-452f-86f4-7f4ce0a9453e
 Host ID: a8db57a86005a2d4b96f63ccb3ac4a0a67fe284ba1928e4eb39ea1a3
 Name: test
 Flavor: 2GB Standard Instance
 Image: Ubuntu 10.04 LTS (Lucid Lynx)
 Metadata: []
 Public DNS Name: 192.43.66.2.static.cloud-ips.com
 Public IP Address: 192.43.66.2
 Private IP Address: 10.208.154.177
 Password: aoeu534234
 Environment: _default
root@chef-book:~#

Bonus Round: Try running the knife rackspace server list and maybe knife solo bootstrap would work here?

knife ec2

knife ec2 is pretty much the same game, you can install it via the gem. I installed knife-rackspace on my chef-book vm and they have a lot of the same dependancies, so there aren't a lot of gems to fetch.

root@chef-book:~# gem install knife-ec2
Fetching: knife-ec2-0.6.4.gem (100%)
Successfully installed knife-ec2-0.6.4
Parsing documentation for knife-ec2-0.6.4
Installing ri documentation for knife-ec2-0.6.4
Done installing documentation for knife-ec2 (0 sec).
1 gem installed
root@chef-book:~#

You'll need to edit your knife.rb file and add these lines to it:

knife[:aws_access_key_id] = "Your AWS Access Key ID"
knife[:aws_secret_access_key] = "Your AWS Secret Access Key"

You have more or less the same tools as knife rackspace but here's an example:

root@chef-book:~# knife ec2 server create -I ami-7000f019 -f m1.small

There are a ton more options, but this will get you started.

knife spork

When it comes to knife spork, it's a workflow tool instead of a API tool. I wrote a blog post about it, but I'll rip out a good portion of it and put it here. I should mention this plugin is in relation to the chef-server, so if this doesn't make sense yet, don't worry, the next section is going start on chef-server.

Obviously the first thing you need to do is install it. Luckily it's a gem so you can just do the following. If you read the docs there are a bunch of places that you .yml gets read from, but I chose this because I like having all my chef stuff in .chef so I don't have to think about pulling anything other than .chef if I want to move boxes.

gem install knife-spork
touch ~/.chef/spork-config.yml

After installing the gem and touching the file, you can run knife spork info, it should say everything is disabled. If so, then you are read to create the config file.

The example config is on the main site, but I copied the demo one here too.

default_environments:
  - development
  - production
environment_groups:
  qa_group:
    - quality_assurance
    - staging
  test_group:
    - user_testing
    - acceptance_testing
version_change_threshold: 2
environment_path: "/home/me/environments"
plugins:
  campfire:
    account: myaccount
    token: a1b2c3d4...
  hipchat:
    api_token: ABC123
    rooms:
      - General
      - Web Operations
    notify: true
    color: yellow
  jabber:
    username: YOURUSER
    password: YOURPASSWORD
    nickname: Chef Bot
    server_name: your.jabberserver.com
    server_port: 5222
    rooms:
      - [email protected]/spork
      - [email protected]/spork
  git:
    enabled: true
  irccat:
    server: irccat.mydomain.com
    port: 12345
    gist: "/usr/bin/gist"
    channel: ["chef-annoucements"]
  graphite:
    server: graphite.mydomain.com
    port: 2003
  eventinator:
    url: http://eventinator.mydomain.com/events/oneshot

All in all this seems pretty self explanatory but the most important things to change are environment_path and disabling the plugins (by removing them) here. For my company I only used the git plugin and...well that was it. :)

By the way there are only a few plugins, here is a link to the different .md files on each.

Ok, so you have everything set up, what do you do now?

Usage

The first step is to run knife spork check COOKBOOK --all where COOKBOOK is one of your commonly updated/tweaked cookbooks. Spork checks against what you have locally compared to what's in the server, like this:

knife spork check COOKBOOK --all

Here's an example:

Checking versions for cookbook nagios...

Local Version:
  5.1.5

Remote Versions: (* indicates frozen)
  5.1.5
  5.1.4
  5.1.3
  5.1.2

ERROR: The version 5.1.5 exists on the server and is not frozen. Uploading will overwrite!

As you can see with the error, it's pretty self explaintory.

The second step is to bump the version:

knife spork bump nagios patch
Git: Pulling latest changes from /Users/jasghar/repo/chef_repo/environments
Pulling latest changes from git submodules (if any)
Git: Pulling latest changes from /Users/jasghar/repo/chef_repo/cookbooks/nagios
Pulling latest changes from git submodules (if any)
Successfully bumped nagios to v5.1.6!

Now as you can see I have the git plugin working, and it without thinking about it, updates the metadata.rb so you don't have to. (I HATE that part of chef, I always forget.) Now you can go off make your changes.

Now lets start talking about chef-server!