Puppet Plan: patching::ordered_groups

Defined in:
plans/ordered_groups.pp

Summary

Takes a set of targets then groups and sorts them by the patching_order var set on the target.

Overview

When patching hosts it is common that you don’t want to patch them all at the same time, for obvious reasons. To facilitate this we devised the concept of a “patching order”. Patching order is a mechanism to allow targets to be organized into groups and then sorted so that a custom order can be defined for your specific usecase.

The way one assigns a patching order to a target or group is using vars in the Bolt inventory file.

Example:

“‘yaml

groups:

- name: primary_nodes
  vars:
    patching_order: 1
  targets:
    - sql01.domain.tld

- name: backup_nodes
  vars:
    patching_order: 2
  targets:
    - sql02.domain.tld

“‘

When the patching_order is defined at the group level, it is inherited by all targets within that group.

The reason this plan exists is that there is no concept of a “group” in the bolt runtime, so we need to artificially recreate them using our patching_order vars paradigm.

An added benefit to this paradigm is that you may have grouped your targets logically on a different dimension, say by application. If it’s OK that multiple applications be patched at the same time, we can assign the same patching order to multiple groups in the inventory. Then, when run through this plan, they will be aggregated together into one large group of targets that will all be patched concurrently.

Example, app_xxx and app_zzz both can be patched at the same time, but app_yyy needs to go later in the process:

“‘yaml

groups:

- name: app_xxx
  vars:
    patching_order: 1
  targets:
    - xxx

- name: app_yyy
  vars:
    patching_order: 2
  targets:
    - yyy

- name: app_zzz
  vars:
    patching_order: 1
  targets:
    - zzz

“‘

This is returned as an Array, because an Array has a defined order when
you iterate over it using <code>.each</code>. Ordering is important in patching
so we wanted this to be very concrete.

Examples:

Basic usage

$ordered_groups = run_plan('patching::ordered_groups', $targets)
$ordered_groups.each |$group_hash| {
  $group_order = $group_hash['order']
  $group_targets = $group_hash['targets']
  # run your patching process for the group
}

Parameters:

  • targets (TargetSpec)

    Set of targets to created ordered groups of.

Returns:

  • (Array[Struct[{'order' => Data, 'targets' => Array[Target]}]])

    An array of hashes, each hash containing two properties:

    - 'order' : This is the value of the <code>patching_order</code> defined
  in the inventory. This can be any datatype you wish, as long as it's
  comparable with the <code>sort()</code> function.
- 'targets' : An array of targets in this group.



91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
 
# File 'plans/ordered_groups.pp', line 91

plan patching::ordered_groups (
  TargetSpec $targets,
) {
  $_targets = get_targets($targets)

  ## The following parses the targets for their patching_order variable.
  ## patching_order will dictate the order the systems are processed.
  $ordered_hash = $_targets.reduce({}) |$memo, $t| {
    $order_unknown_type = vars($t)['patching_order']
    $order = String($order_unknown_type)
    if $order in $memo {
      $ordered_array = $memo[$order] << $t
      $memo + {$order => $ordered_array}
    }
    else {
      $memo + {$order => [$t]}
    }
  }

  # when iterating over a hash, it isn't guaranteed to iterate in the sorted order
  # of the keys, this pulls the keys out of the hash and sorts them
  # $ordered_hash = {'2' => ['b'], '3' => ['c'], '1' => ['a']}
  #
  # $ordered_keys = ['1', '2', '3']
  $ordered_keys = sort(keys($ordered_hash))
  out::message("Groups = ${ordered_keys}")
  $ordered_groups = $ordered_keys.map |$o| {
    $ordered_targets = $ordered_hash[$o].map |$t| {$t.name}
    out::message("Group '${o}' targets = ${ordered_targets}")
    # trust me, we have to assign to a variable here, it's a detail of the puppet
    # language parser that gets mad, but only because there is the loop above
    $group = {'order' => $o, 'targets' => $ordered_hash[$o]}
    $group
  }

  return $ordered_groups
}