This document discusses Jenkins pipelines, including their history before pipelines, common limits and pitfalls of pipelines, and good practices for pipelines. It provides examples of pipeline code and recommendations for testing, documentation, and treating Jenkins and agents well.

1. Jenkins pipelines
Limits
Pitfalls
Good practises

2. QA @ Stratio Big Data Inc.
@witokondoria
https://github.com/witokondoria/
id
2
Javier Delgado Garrido

3. 1
2
3
4
INDEX
Jenkins background
Limits
Pitfalls
Good practises

4. 1 BP
Status before pipelines

5. Chained!
Hell of jobs
5
FETCH
UNIT TESTS
INTEGRATION
TESTS
CODE QUALITY

6. Chained!
Hell of jobs
6
FETCH
UNIT TESTS
INTEGRATION
TESTS
CODE QUALITY

7. Chained!
Hell of jobs
7
FETCH
UNIT TESTS
INTEGRATION
TESTS
CODE QUALITY

8. Chained!
Hell of jobs
8
FETCH
UNIT TESTS
INTEGRATION
TESTS
CODE QUALITY

9. Chained!
Hell of jobs
9
FETCH
UNIT TESTS
INTEGRATION
TESTS
CODE QUALITY

10. Chained!
Hell of jobs
10
THIS SMELLS FISHY

11. node (‘docker’) {
dir (“ws${env.BRANCH_NAME}”) {
withEnv ([PATH+M=${tool ‘M3’]) {
sh ‘mvn test-compile’
}
archive ‘**/license/*.*’
}
}
11
The Jenkinsfile
sh
timestamps
node
parallel
checkout
readFile
marathon
Pipelines as code

12. Pipelines aren’t for anybody
Limits

13. • Script security plugin protects us
• Blocking some useful methods
• Able to whitelist those calls
13
Sandboxed env
Chains and locks

14. • Looking after serialization (imposed)
• Own implementation over groovy classes
• Runs on the master agent
14
CPS (Continuation-passing style)
Chains and locks

15. • Really nice visualization
• Limited under stages and parallel blocks calls
15
Blueocean, stages and parallel
Chains and locks

16. Overcoming fear
Pitfalls

17. def S1 = ‘FAI’
def S2 = “${-> S1}TH”
echo “${S2}”
===>
org.jenkinsci.plugins.scriptsecurity.sandbox
.RejectedAccessException: unclassified new
org.codehaus.groovy.runtime.GStringImpl
java.lang.String java.lang.String[]
17
Double Lazy GString
What if I need to lazily
evaluate a variable?
Oops

18. • Rewrite the toString method for GStringImpl objects
• Iterate over GString content: values and strings
• Blend them appropriately
• Shamefully badly coded (expects a Gstring starting with a non closure element)
18
Double Lazy GString - Solution
Oops

19. • CPS forces serialization at the master node
• @NonCPS helps
• Mind the usage of:
1) JsonSlurper (since Groovy 2)
2) Most of Jenkins API interesting classes (Job, Run, Cause)
3) Iterators, from Groovy sugar (.each, .grep, .findAll, .collect, … )
• CPS global libraries must implement Serializable
19
NonSerializableException
Oops

20. def L1 = [] //constructed as List
synchronized(L1) {
L1.add (1)
}
echo L1.inspect()
===>
java.lang.UnsupportedOperationException
Collections.synchronizedList([]) seems
to work (now)
20
.synchronizedList
Parallel step is powerful
But it is parallel and
synchronization should
be needed
Oops

21. if (e instanceof
java.io.NotSerializableException ||
e instanceof
groovy.lang.MissingPropertyException ||
e instanceof
org.jenkinsci.plugins.scriptsecurity.sandbox
.RejectedAccessException) {
throw e
}
21
Script approval
Cool feature
Works upon exception capture
So, rethrow the captured exception
sh
timestamps
node
parallel
checkout
readFile
Oops

22. • Several accounts
• Nicer API usage (trust related)
22
API rate limits
Oops

23. package com.stratio.qa.pipelines
import org.junit.Test
class simpleTest extends GroovyTestCase {
void echo(object) {println "${object}" }
@Test
void testGstringUsageWorkaround() {
def str = '33'
def input = "${-> str}"
assert gstringUsageWorkaround(input) == '33'
}
}
23
(Unit) testing
CPS global library
mavenized
gmaven-plus-plugin
surefire-plugin
jacoco-plugin
Oops

24. • Cloudbees operation center handles them
• Yet another docker plugin will do so (pending PR)
• JNLP slaves allow the agents to work over dis/reconnections
24
Agent disconnections
Oops

25. • Markup’ed internally handled
• But without versioning , step reference for the current version
• Welcome Groovidocs: http://stratiodocs.s3.amazonaws.com/pipelines/0.4.0-
SNAPSHOT/index.html
25
Documentation
Oops

26. Benefitting Jenkins
Good practises

27. Treat well yourself
27
CPS libraries
Pipelines from a shared library
Mind the not-such singleton objects
Reusability over all the things

28. Treat well yourself
28
Configuration by default
Let developers to declare just what they need
Organization elements by default, being configurable
URLs (artifact repository, docker registry)
Pipeline timeouts
Email/slack contact

29. The overhead for setting
up a durable task can be
minimized
Lower the steps, the
less failure points
29
Merge your sh steps
//Don’t
node (‘master‘) {
sh “echo 1”
sh “echo 2”
}
//But
node (‘master‘) {
sh “echo 1 && echo 2”
}
Treat well yourself

30. Treat well yourself
30
Stage your pipeline
Better failure control
Blueocean!

31. Treat well yourself
31
Mind the parallel blocks
Parallelize as much as you can
splitTests aided
Multithreaded builds
Cloud-based agents

32. Treat well yourself
32
Jenkins is a FOSS project
Contribute!

33. Our environment

34. Flexible & reliable?
Our final stack
34

35. Structure
35
PR
MERGE
RELEASE

36. Openstack (*)
EC2 (*)
VSphere (*)
Marathon (*)
Monitoring
Datadog (*)
Lockable resources
Pipeline full stack (inc. milestone)
Blue ocean
36
Jenkins <3 plugins
Ansicolor
Timestamper
Github branch source
Bitbucket branck source
jUnit / xUnit
Parallel test executor
Slack notification
Mailer
Yet another docker (*)
Structure

37. THANK YOU
contact@stratio.com
www.stratio.com
UNITED STATES
Tel: (+1) 408 5998830
EUROPE
Tel: (+34) 91 828 64 73