- current_master:
- integration_with_edge_chef:
Run chef-client at remote node with chef-zero(local-mode) via HTTP over SSH port forwarding.
- It doesn't have to transport cookbooks via scp,rsync or something.
- It can collect node object into local chef-repo.
- It supports all functions of chef(C/S).
- You have only to manage one chef-repo.
- Must support AllowTcpForward
Add this line to your application's Gemfile:
gem 'knife-zero'
And then execute:
$ bundle
Or install it yourself as:
$ gem install knife-zero
Install via chef gem subcommand.
$ chef gem install knife-zero
** ZERO COMMANDS **
knife zero bootstrap FQDN (options)
knife zero chef_client QUERY (options) | It's same as converge
knife zero converge QUERY (options)
knife zero diagnose # show configuration from file
Install Chef to remote node and run chef-client under chef-zero via tcp-forward.
Supported options are mostly the same as knife bootstrap.
And it supports why-run(-W, --why-run)and Bootstrap without first Chef-Client Run.(--no-converge).
Bootstrap with run-list.
$ bundle exec knife zero bootstrap host.example.com -r hogehoge::default --no-host-key-verify
Connecting to host.example.com
host.example.com Installing Chef Client...
-- snip --
host.example.com Thank you for installing Chef!
host.example.com Starting first Chef Client run...
host.example.com Starting Chef Client, version 11.14.6
host.example.com Creating a new client identity for host.example.com using the validator key.
## Resolve and sync cookbook via http over ssh tcp-forward by run-list.
host.example.com resolving cookbooks for run list: ["hogehoge::default"]
host.example.com Synchronizing Cookbooks:
host.example.com - hogehoge
host.example.com Compiling Cookbooks...
host.example.com Converging 0 resources
host.example.com
host.example.com Running handlers:
host.example.com Running handlers complete
host.example.com Chef Client finished, 0/0 resources updated in 4.895561879 seconds
## Creates node object into local.
$ ls nodes/host.example.com.json
nodes/host.example.com.json
host.example.com
## Search by knife with --local--mode option.
$ bundle exec knife search node --local-mode
1 items found
Node Name: host.example.com
Environment: _default
FQDN:
IP: xxx.xxx.xxx.xxx
Run List: recipe[hogehoge::default]
Roles:
Recipes: hogehoge::default
Platform: ubuntu 12.04
Tags:
Search and execute command via ssh by knife ssh.
$ knife ssh 'hostname:*' --local-mode uptime --attribute ipaddress
xxx.xxx.xxx.xxx 08:41:36 up 1:03, 1 user, load average: 0.00, 0.01, 0.01
xxx.xxx.xxx.xxx 08:41:37 up 143 days, 2:32, 4 users, load average: 0.00, 0.01, 0.05
Bootstrap multi-nodes via GNU Parallel
$ parallel -j 5 ./bin/knife zero bootstrap ::: nodeA nodeB nodeC...
knife-zero supports appengding whitelist-attributes to client.rb at bootstrap.
For example, set array to knife.rb.
knife[:automatic_attribute_whitelist] = [
"fqdn/",
"ipaddress/",
"roles/",
"recipes/",
"ipaddress/",
"platform/",
"platform_version/",
"cloud/",
"cloud_v2/"
]
It setting will append to client.rb of node via bootstrap.
...
automatic_attribute_whitelist ["fqdn/", "ipaddress/", "roles/", "recipes/", "ipaddress/", "platform/", "platform_version/", "cloud/", "cloud_v2/"]
It means knife-zero will collects and updates only listed attributes to local file.
{
"name": "knife-zero.example.com",
"normal": {
"tags": [
]
},
"automatic": {
"ipaddress": "xxx.xxx.xxx.xxx",
"roles": [
],
"recipes": [
],
"platform": "ubuntu",
"platform_version": "14.04",
"cloud_v2": null
}
}
knife zero converge QUERY (options)
knife zero chef_client QUERY (options) | It's same as converge
Search nodes from local chef-repo directory, and run chef-client at remote node.
Supported options are mostly the same as knife ssh.
And it supports below.
- why-run(
-W, --why-run) - Override run-list(
-o RunlistItem,RunlistItem, --override-runlist). It skips save node.json on workstation.
## Chef-Repo has two nodes
$ knife node list --local-mode
host.example.com
host2.example.com
## add recipe to run_list of host.example.com
$ knife node run_list add host.example.com hogehoge::default --local-mode
host.example.com:
run_list: recipe[hogehoge::default]
$ knife zero converge 'name:*' --attribute ipaddress
## host.example.com was converged by run_list.
host.example.com Starting Chef Client, version 11.14.6
host.example.com resolving cookbooks for run list: ["hogehoge::default"]
host.example.com Synchronizing Cookbooks:
host.example.com - hogehoge
host.example.com Compiling Cookbooks...
host.example.com Converging 0 resources
host.example.com
host.example.com Running handlers:
host.example.com Running handlers complete
host.example.com Chef Client finished, 0/0 resources updated in 3.112708185 seconds
## host2.example.com has no run_list.
host2.example.com Starting Chef Client, version 11.14.2
host2.example.com resolving cookbooks for run list: []
host2.example.com Synchronizing Cookbooks:
host2.example.com Compiling Cookbooks...
host2.example.com [2014-08-24T11:52:15+00:00] WARN: Node ngrok01.xenzai.net has an empty run list.
host2.example.com Converging 0 resources
host2.example.com
host2.example.com Running handlers:
host2.example.com Running handlers complete
host2.example.com Chef Client finished, 0/0 resources updated in 3.729471856 seconds
- create chef-repo directory.
- bundle init and add below.
gem 'chef'gem 'knife-zero'- and cookbook management tool such as
BerkshelforLibrarian-Chef.
- bundle
e.g.)bundle install --path vendor/bundle --binstubs - install cookbooks to
./cookbooks. (if you need run recipe.) - bootstrap on remote node.
./bin/knife zero bootstrap host.example.com [-r "${your-run-list}"] - chef-client will run using resources on local chef-repo.
You can test cookbooks easily by Test-Kitchen before manage remote nodes instead of using knife-zero for vagrant VM.
See Getting Started knife-zero with test-kitchen.
For Your Information :
If only you want to trychef-zeroorchef-client localmode(For instance: migrate from chef-solo), You should use chef-zero provisioner(Vagrant) with vagrant. The knife-zero will provides similar usage with the chef-zero provisioner on vagrant, but for remote node.
Set local_mode as default to knife.rb.
$ echo 'local_mode true' >> knife.rb
Add host-only network to vagrant vm(strongly recommended).
Vagrant.configure(2) do |config|
config.vm.box = "opscode-ubuntu-14.04"
config.vm.network "private_network", ip: "192.168.33.10"
end
Retrieve ssh-config.
$ vagrant up
$ vagrant ssh-config
Host default
HostName 127.0.0.1
User vagrant
Port 2201
UserKnownHostsFile /dev/null
StrictHostKeyChecking no
PasswordAuthentication no
IdentityFile /Users/sawanoboriyu/worktemp/knife-zero-vagrant/.vagrant/machines/default/virtualbox/private_key
IdentitiesOnly yes
LogLevel FATAL
Bootstrap with ssh options and --sudo to host-only address. And set ipaddress to name with -N option.
$ ./bin/knife zero bootstrap 192.168.33.10 -i ./.vagrant/machines/default/virtualbox/private_key -N 192.168.33.10 -x vagrant --sudo
WARN: No cookbooks directory found at or above current directory. Assuming /Users/sawanoboriyu/worktemp/knife-zero-vagrant.
Connecting to 192.168.33.10
192.168.33.10 Installing Chef Client...
...
Run zero converge with -a name option.
Caution:
-a(--attribute) nameoption doesn't work since chef 12.1.0. Please use specific attribute until fix it. I've already create PR for fix. Please wait for merge to use name attribute. chef/chef#3195
$ knife zero converge "name:*" -x vagrant -i ./.vagrant/machines/default/virtualbox/private_key --sudo -a name
WARN: No cookbooks directory found at or above current directory. Assuming /Users/sawanoboriyu/worktemp/knife-zero-vagrant.
192.168.33.10 Starting Chef Client, version 12.0.3
192.168.33.10 resolving cookbooks for run list: []
192.168.33.10 Synchronizing Cookbooks:
192.168.33.10 Compiling Cookbooks...
192.168.33.10 [2015-02-04T04:08:04+00:00] WARN: Node 192.168.33.10 has an empty run list.
192.168.33.10 Converging 0 resources
192.168.33.10
192.168.33.10 Running handlers:
192.168.33.10 Running handlers complete
192.168.33.10 Chef Client finished, 0/0 resources updated in 6.571334535 seconds
...
Bootstrap with ssh options and --sudo to host-only address.
$ knife zero bootstrap 192.168.33.10 -i ./.vagrant/machines/default/virtualbox/private_key -x vagrant --sudo
WARN: No cookbooks directory found at or above current directory. Assuming /Users/sawanoboriyu/worktemp/knife-zero-vagrant.
Connecting to 192.168.33.10
192.168.33.10 Installing Chef Client...
192.168.33.10 --2015-02-03 16:44:56-- https://www.opscode.com/chef/install.sh
192.168.33.10 Resolving www.opscode.com (www.opscode.com)... 184.106.28.91
192.168.33.10 Connecting to www.opscode.com (www.opscode.com)|184.106.28.91|:443... connected.
192.168.33.10 HTTP request sent, awaiting response... 200 OK
192.168.33.10 Length: 18285 (18K) [application/x-sh]
192.168.33.10 Saving to: ‘STDOUT’
192.168.33.10
100%[======================================>] 18,285 --.-K/s in 0.002s
...
You can see node which was bootstrapped at list.
$ knife node list
vagrant.vm
Set unique attribute to node by node edit, such as chef_ip.
$ knife node edit vagrant.vm
{
"name": "vagrant.vm",
"chef_environment": "_default",
"normal": {
"chef_ip" : "192.168.33.10",
"tags": [
]
},
"run_list": [
]
}
Run zero converge with -a chef_ip option.
$ ./bin/knife zero converge "name:vagrant.vm" -x vagrant -i ./.vagrant/machines/default/virtualbox/private_key --sudo -a chef_ip
192.168.33.10 Starting Chef Client, version 12.0.3
192.168.33.10 resolving cookbooks for run list: []
192.168.33.10 Synchronizing Cookbooks:
192.168.33.10 Compiling Cookbooks...
192.168.33.10 [2015-02-03T17:03:37+00:00] WARN: Node vagrant.vm has an empty run list.
192.168.33.10 Converging 0 resources
192.168.33.10
192.168.33.10 Running handlers:
192.168.33.10 Running handlers complete
192.168.33.10 Chef Client finished, 0/0 resources updated in 6.245413202 seconds
For example, you can use ipv4 of eth1(or others) like below.
$ knife zero converge "name:*" -x vagrant -i ./.vagrant/machines/default/virtualbox/private_key --sudo -a network.interfaces.eth1.addresses.keys.rotate.first
192.168.33.10 Starting Chef Client, version 12.0.3
192.168.33.10 resolving cookbooks for run list: []
knife zero diagnose shows configuration from file(Such as knife.rb).
$ knife zero diagnose
Chef::Config
====================
---
:local_mode: true
:verbosity:
:config_file: "/Users/sawanoboriyu/github/higanworks/knife-zero_playground/knife.rb"
:color: true
:log_level: :error
:chef_repo_path: "/Users/sawanoboriyu/github/higanworks/knife-zero_playground"
:log_location: !ruby/object:IO {}
:chef_server_url: http://localhost:8889
:repo_mode: everything
Knife::Config
====================
---
:verbosity: 0
:color: true
:editor: vim
:disable_editing: false
:format: summary
:ssh_user: root
:host_key_verify: true
:config_file: "/Users/sawanoboriyu/github/higanworks/knife-zero_playground/knife.rb"
Zero Bootstrap Config
====================
---
:ssh_user: root
:host_key_verify: true
:distro: chef-full-localmode
:template_file: false
:run_list: []
:first_boot_attributes: {}
Zero ChefClient Config
====================
---
:ssh_user: root
:host_key_verify: true
:concurrency:
:override_runlist:
- Fork it ( https://github.com/[my-github-username]/knife-zero/fork )
- Create your feature branch (
git checkout -b my-new-feature) - Commit your changes (
git commit -am 'Add some feature') - Push to the branch (
git push origin my-new-feature) - Create a new Pull Request
Licensed under the Apache License, Version 2.0.
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent