This is a gnat. Let the observer note that it is different from NAT
This is now the third post I have written on creating multi node test-kitchen tests. The first covered a windows scenario building an active directory controller pair and the last one covered a multi docker container couchbase cluster using the kitchen-docker driver. This will likely be the last post in this series and will cover perhaps the most commonly used test-kitchen setup using the kitchen-vagrant driver with virtualbox.
In one sense there is nothing particularly special about this setup and all of the same tests demonstrated in the first two posts can be run through vagrant on virtualbox. In fact that is exactly what the first post used for the active directory controllers although it also supports Hyper-V. However there is an interesting problem with this setup that the first post was lucky enough to avoid. If you were to switch from the docker driver to the vagrant driver in the second post that built a couchbase cluster in docker containers, you may have noticed a recipe at the top of the runlist in each suite: couchbase-tests::ipaddress.
Getting nodes to talk to one another
We will soon get to the purpose behind that recipe, but first I'll lay out the problem. When you use the kitchen-vagrant driver to build test instances with the virtualbox provider without configuring any networking properties on the driver, your instance will have a single interface with an ip address of 127.0.0.1. Its gonna be difficult to do any kind of multi node testing with this. For one thing if you have two nodes, they will not be able to talk to each other over these interfaces. From the outside the host can talk to these nodes using its own localhost address and over the forwarded ports. But to another node? They are dead to each other.
The trick to get them to be accessible to one another is to add an additional network interface to the nodes by adding a network in the kitchen.yml:
driver:
network:
- ["private_network", { type: "dhcp" }]Now the nodes will have a dhcp assigned ip address that both the host and each node can use to access the other.
One could then use my kitchen-nodes provisioner that derives from the chef-zero provisioner so that normal chef searches can find the other nodes and access their ip addresses.
Just pull down the gem:
gem install kitchen-nodes
Add it to your .kitchen.yml:
provisioner: name: nodes
Now chef searches from inside your nodes can find one another as long as both nodes have beed created:
other_ip = search(:node, "run_list:*couchbase??master*")[0]['ipaddress']
Missing the externally reachable ip address in ohai
While this allows the nodes to see one another, one may surprised if they inspect a node's own ip address from inside that node.
ip = node['ipaddress'] # will be 127.0.0.1
The ip will be the localhost ip and not the same ip address that the other node will see. This may be fine in many scenarios, but for others you may need to know the externally reachable ip. You would like the ohai attributes to expose the second NIC's address and not the one belonging to the localhost interface.
This was the wall I hit in my kitchen-docker post because I was registering couchbase nodes in a couchbase cluster and the couchbase cluster could not add multiple nodes with the same ip (127.0.0.1) and each node needed to register an ip that could be used to access itself by the master node.
I googled for a while to see how others dealt with this scenario. I did not find much but what I did find were posts explaining how to create a custom ohai plugin to expose the right ip. Most posts really contained just a fraction of the information needed to create the plugin and once I did manage to assemble all the information needed to create the plugin, it honestly felt like quite a bit of ceremony for such a simple assignment.
Overwriting the 'automatic' attribute
So I thought instead of using an ohai plugin I'd find the second interfaces address in the ohai attributes and then set the ['automatic']['ipaddress'] attribute with that reachable ip. This seemed to work jut fine and as long as its done at the front of the chef run, any call to node['ipaddress'] subsequently in the run would return the desired address.
Here is the full recipe that sets the correct ipaddress attribute:
kernel = node['kernel']
auto_node = node.automatic
# linux
if node["virtualization"] && node["virtualization"]["system"] == "vbox"
interface = node["network"]["interfaces"].select do |key|
puts key
key == "eth1"
end
unless interface.empty?
interface["eth1"]["addresses"].each do |ip, params|
if params['family'] == ('inet')
auto_node["ipaddress"] = ip
end
end
end
# windows
elsif kernel && kernel["cs_info"] && kernel["cs_info"]["model"] == "VirtualBox"
interfaces = node["network"]["interfaces"]
interface_key = interfaces.keys.last
auto_node["ipaddress"] = interfaces[interface_key]["configuration"]["ip_address"][0]
endFirst, this is not a lot of code and its confined to a single file. Seems a lot simpler than the wire-up required in an ohai plugin.
This is designed to work on both windows and linux. I have only used it on windows 2012R2 and ubuntu but its likely fairly universal. The code only sets the ip if virtualbox is the host hypervisor so you can safely include the recipe in multi-driver suites and other non virtualbox environments will simply ignore it.
Get it in the hurry-up-and-test-cookbook
In case others would like to use this I have included this recipe in a new cookbook I am using to collect recipes helpful in testing cookbooks. This cookbook is called hurry-up-and-test and is available on the chef supermarket. It also includes the export-node recipe I have shown in a couple posts that allows one to access a node's attributes from inside test code.
I hope others find this useful and I'd love to hear if anyone thinks there is a reason to package this as a full blown ohai plugin instead.
Now what are you waiting for? Hurry up and test!!