Integrate with Spinnaker (ACA and Canary)
This page is no longer valid.
Enable Automated Canary Stage in Spinnaker
Enable Canary/ACA for Halyard based Spinnaker installation
Step 1: Enable Canary Feature To enable Canary feature, use the following HAL command
Step 2: Configure provider of automated Canary analysis service
To enable automated Canary analysis, you need to configure a provider of the Canary analysis.
Create orca-local.yml in the $SPINNAKER_HOME/.hal/default/config/profiles
Add the line below and save the file.
Example:
In the above example, OpsMx is serving as the provider of automated Canary analysis service. OpsMx performs in-depth analysis of new releases and provides the score and a detailed Canary report for diagnostics.
Step 3: Restart Spinnaker
Restart spinnaker using
Configuring Canary and Red/Black Analysis Stage in Spinnaker Pipeline
Spinnaker supports two types of stages for analysis of new deployment. The two stages are
Canary Stage
ACA Stage (used for Red/Black deployment analysis)
Canary Stage
In a Spinnaker pipeline, a Canary stage is used to verify the new version in production before switching over the production to the new version of service. The Canary stages deploy a Canary and then compares the current version (referred to as Canary version) with the last successful build to production (referred to as baseline).
Add Canary Stage with Automated Analysis for AWS Deployments
Now, you can configure Spinnaker to deploy the new version in the Canary cluster pair. Add and configure the Canary stage in the pipeline before production deploy stage.
Note: The Canary stage is only supported for AWS cloud provider (current as of Spinnaker 1.5 release). The ACA task stage can be configured for other cloud providers (in addition to AWS) starting in Spinnaker 1.5 release.
Add Canary Stage in Spinnaker Pipeline
To add a Canary stage to the pipeline, select Canary from the stage list as shown below in the “Add Stage” option.
Selecting Canary Stage
Configuring Canary Cluster
For comparing the versions, select a deployment cluster running the current version of the service as the baseline version. Then deploy Canary cluster using Add Cluster to configure deployment of Canary. Spinnaker allows copying the configuration of the Canary cluster to be copied from the production cluster for deployment parameters.
Configuring Canary Cluster
After adding the baseline and canary cluster pairs, the deployment configuration will look as below.
Configured Canary Cluster Pair
Configure Judge Parameters
OpsMx judge maps a Canary run based on the pipeline service name and the account deploying the pipeline. In the following example, “opsmxuser” represents the username used to login to OpsMx Judge Service. Configuration “servicename” represents the service id that is configured for template name in the OpsMx Judge customize service interface.
Canary Deployment Configuration
Canary Analysis Configuration
In the above configuration, the Canary analysis will start after 3 mins after completion of deployment, this can be set to 0 to start the analysis immediately. Report frequency represents how often a score is generated during the lifetime of canary. Each of the runs is scored and recorded and the final decision can be aggregate or lowest of the scores during the canary run.
Now, you can run the pipeline to get the automated Canary score.
Automated Canary Score in Spinnaker Pipeline Automated Canary Score in Spinnaker Pipeline If you have configured the automated Canary analysis correctly, you will get the Canary score as part of your every pipeline run. You can set up the score threshold to automatically deploy the new version or terminate the pipeline. You can also look at the Canary report for further diagnosing the issues with the new version.
Add Canary Stage with Automated Analysis for Kubernetes Deployments
Spinnaker currently doesn’t support single stage Canary deployment and Analysis beyond AWS provider (current as of Spinnaker 1.5 release). But, you can still deploy Canary and do analysis using the ACA task stage using the following steps.
Adding Canary state to your Kubernetes cluster will have a canary stage creation stage, canary analysis stage and canary cluster destroy before production deploy stage as follows. Canary state cluster deployment strategy is independent of production stage deployment strategy.
The canary stage deployment should deploy to different cluster not replace the production cluster that is running.
The canary stage should deploy as Highlander and not red/black as there is no current canary cluster that is running.
Adding synthetic canary state to this cluster will have a canary stage creation, canary run and canary cluster destroy before production deploy stage as follows. Canary state cluster deployment strategy is independent of Production stage deployment strategy.
Canary cluster and production cluster share the same load balancer (or service)
From the following screenshot,
baseline: prodapp-stress-prod-current
canary: prodapp-stress-canary-current
This will generate metadata to OpsMx server to compare the cluster with name prodapp-stress-prod that has the latest version data (from metric database) with canary cluster with name prodapp-stress-canary that has latest version that are currently active. If any of the clusters are not active then it is considered error condition.
On Success of canary, the canary cluster is destroyed. In the case of failure, the canary cluster is left running to support troubleshooting the instance if required. When the next canary runs the leftover canary will be overwritten.
Ideally, the canary cluster must be destroyed irrespective of the status of canary. There is no easy way to perform this action in an automated way in Spinnaker in one pipeline, hence it will be left over on failure.
Add Automated Red/Black Deployment Analysis:
If you are like most and using Red/Black deployment, you can ACA task stage to do an automated analysis of that deployment.
This stage can be configured to compare the new version of deployment with any past versions as baseline.
Add and configure ACA task stage in Spinnaker pipeline after your Red/Black deploy stage.
Note: The ACA task stage can be configured for AWS and other cloud providers (in addition to AWS) starting in Spinnaker 1.5 release.
To add ACA stage in the pipeline, select ACA Task from the stage list as shown below in the “Add Stage” option.
Configuring ACA Stage
OpsMx judge maps a Canary run based on the pipeline service name and the account deploying the pipeline. In the following example, “opsmxuser” represents the username used to login to OpsMx Judge Service. Configuration “servicename” represents the service id that is configured for template name in the OpsMx Judge customize service interface.
ACA Stage Configuration
ACA Analysis Configuration
ACA Metric Scope Configuration
Metric scope configures baseline version to compare with the current version. The baseline version data is expected to be present in the metric store. The configuration offers three different configuration settings of which only cluster scope is supported for analysis in this release. Cluster specifies the name of the cluster deployed by Spinnaker in the target environment. The details of the cluster are retrieved from the target environment in the case of active clusters. If the baseline cluster is not active, then the cluster details are extracted from the metric store based on the tags associated with the cluster.
For Kubernetes target environment, default namespace is assumed if the namespace is not specified. If the namespace is specified then the context will be searched in the specified namespace. The namespace specification for the cluster is of the following format:
Canary: app-servicename-test-current, namespace1
When you run the pipeline, the ACA stage is performed on your red/black deployment
If you have configured the ACA task stage correctly, you will get the automated Canary score as part of your pipeline run. You can set up the score threshold to automatically trigger roll-back of the new release if needed.
Last updated
Was this helpful?
