optimizing for production workloads dan walsh red hat
play

Optimizing for Production Workloads Dan Walsh Red Hat @rhatdan - PowerPoint PPT Presentation

Mar 23, 2024 •133 likes •878 views

Optimizing for Production Workloads Dan Walsh Red Hat @rhatdan Samuel Ortiz @sameo PDF PDF Linux PDF Linux Containers What do you need to run a container Standard Definition of what makes up a container image. OCI Image Bundle

  1. Optimizing for Production Workloads Dan Walsh Red Hat @rhatdan Samuel Ortiz @sameo

  3. PDF

  4. PDF Linux

  5. PDF Linux Containers

  7. What do you need to run a container Standard Definition of what makes up a container image. ● OCI Image Bundle Definition ○

  8. What do you need to run a container` Standard Definition of what makes up a container image. ● OCI Image Bundle Definition ○ Mechanism to pull images from a container registry to the host ● github.com/containers/image ○

  9. What do you need to run a container Standard Definition of what a container image is ● OCI Image Bundle Definition ○ Mechanism to pull images from a container registry to the host ● github.com/containers/image ○ ● Ability to explode images onto COW file systems on disk github.com/containers/storage ○

  10. What do you need to run a container Standard Definition of what a container image is ● OCI Image Bundle Definition ○ Mechanism to pull images from a container registry to the host ● github.com/containers/image ○ ● Ability to explode images onto COW file systems on disk github.com/containers/storage ○ Standard mechanism for running a container ● ○ OCI Runtime Spec (1.0) runc default implementation of OCI Runtime Spec (Same tool Docker uses to run containers) ○

  11. #nobigfatdaemons

  12. What does OpenShift/Kubernetes need to run a container? CRI - Container Runtime Interface #nobigfatdaemons

  13. What does Kubernetes need to run a container? CRI - Container Runtime Interface Kubernetes tells CRI to run Container Image: #nobigfatdaemons

  14. What does Kubernetes need to run a container? CRI - Container Runtime Interface Kubernetes tells CRI to run Container Image: ● CRI needs to pull image from Container Registry #nobigfatdaemons

  15. What does Kubernetes need to run a container? CRI - Container Runtime Interface Kubernetes tells CRI to run Container Image: ● CRI needs to pull image from Container Registry ● CRI Needs to store image on COW File system #nobigfatdaemons

  16. What does Kubernetes need to run a container? CRI - Container Runtime Interface Kubernetes tells CRI to run Container Image: ● CRI needs to pull image from Container Registry ● CRI Needs to store image on COW File system ● CRI Needs to execute OCI Runtime #nobigfatdaemons

  17. Introducing CRI-O CRI-O - OCI-based implementation of Kubernetes Container Runtime Interface Scope tied to kubernetes CRI ● ● Only supported user is kubernetes Uses standard components as building blocks ● “Nothing more, Nothing Less” #nobigfatdaemons

  18. #nobigfatdaemons

  19. #nobigfatdaemons

  20. #nobigfatdaemons

  21. S W A R M #nobigfatdaemons

  22. S W A R M #nobigfatdaemons

  23. M O B Y #nobigfatdaemons

  24. M O B Y #nobigfatdaemons

  25. M O B Y #nobigfatdaemons

  26. #nobigfatdaemons

  27. Overview of additional components oci-runtime-tools library is used to generate OCI configs for containers ● #nobigfatdaemons

  28. Overview of additional components oci-runtime-tools library is used to generate OCI configs for containers ● CNI is used for setting up networking ● ○ Tested with Flannel, Weave and openshift-sdn #nobigfatdaemons

  29. Overview of additional components oci-runtime-tools library is used to generate OCI configs for containers ● CNI is used for setting up networking ● ○ Tested with Flannel, Weave and openshift-sdn conmon is a utility for: ● Monitoring ○ Logging ○ Handling tty ○ Serving attach clients ○ Detecting and reporting OOM ○ #nobigfatdaemons

  30. Pod architecture (runc) conmon conmon conmon Infra Container Container A Container B (runc) (runc) Pod (ipc, net, pid namespaces, cgroups) #nobigfatdaemons

  31. Pod architecture (Kata Containers) conmon conmon kata-shim kata-shim Container A Container B (kata-runtime) (kata-runtime) Virtual Machine (ipc, net, pid namespaces, cgroups) #nobigfatdaemons Pod (net namespace, cgroups)

  32. Architecture #nobigfatdaemons

  33. Status All e2e, cri-tools, integration (>500) tests passing. ● No PRs merged without passing all the tests. ○ #nobigfatdaemons

  34. Status All e2e, cri-tools, integration (>500) tests passing. ● No PRs merged without passing all the tests. ○ 1.0.7 (kube 1.7.x) supported. ● Currently available as tech preview in Openshift 3.7 on RHEL, Tech Preview ○ #nobigfatdaemons

  35. Status All e2e, cri-tools, integration (>500) tests passing. ● No PRs merged without passing all the tests. ○ 1.0.7 (kube 1.7.x) supported. ● Currently available as tech preview in Openshift 3.7 on RHEL, Tech Preview ○ ● 1.8.4 (kube 1.8.x) supported. Available for OpenShift origin 3.8. ○ Running on Openshift Online Now ○ #nobigfatdaemons

  36. Status All e2e, cri-tools, integration (>500) tests passing. ● No PRs merged without passing all the tests. ○ 1.0.7 (kube 1.7.x) supported. ● Currently available as tech preview in Openshift 3.7 on RHEL, Tech Preview ○ ● 1.8.4 (kube 1.8.x) supported. Available for OpenShift origin 3.8. ○ Running on Openshift Online Now ○ 1.9.1-1 (kube 1.9.x) released. ● CRI-O will be fully supported in OpenShift 3.9 along with docker. ○ #nobigfatdaemons

  37. Status All e2e, cri-tools, integration (>500) tests passing. ● No PRs merged without passing all the tests. ○ 1.0.7 (kube 1.7.x) supported. ● Currently available as tech preview in Openshift 3.7 on RHEL, Tech Preview ○ ● 1.8.4 (kube 1.8.x) supported. Available for OpenShift origin 3.8. ○ Running on Openshift Online Now ○ 1.9.1-1 (kube 1.9.x) released. ● CRI-O will be fully supported in OpenShift 3.9 along with docker. ○ ● Goal for Openshift 3.10 is to fully support CRI-O by default. #nobigfatdaemons

  38. Status All e2e, cri-tools, integration (>500) tests passing. ● No PRs merged without passing all the tests. ○ 1.0.7 (kube 1.7.x) supported. ● Currently available as tech preview in Openshift 3.7 on RHEL, Tech Preview ○ ● 1.8.4 (kube 1.8.x) supported. Available for OpenShift origin 3.8. ○ Running on Openshift Online Now ○ 1.9.1-1 (kube 1.9.x) released. ● CRI-O will be fully supported in OpenShift 3.9 along with docker. ○ ● Goal for Openshift 3.10 is to fully support CRI-O by default. Maintainers/contributors from Red Hat, Intel, Lyft, SUSE and many others. ● #nobigfatdaemons

  39. Status CRI-O is now powering nodes on OpenShift Online. #nobigfatdaemons

  40. " CRI-O just works for them, so they haven’t had much to say" #nobigfatdaemons

  41. Making running containers in production boring #nobigfatdaemons

  42. #nobigfatdaemons

  43. What else does OpenShift need? Ability to build container images ● Ability to push container images to container registries ● #nobigfatdaemons

  44. #nobigfatdaemons

  45. Introducing Buildah https://github.com/projectatomic/buildah #nobigfatdaemons

  46. Coreutils for building containers. Simple interface #nobigfatdaemons

  47. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) #nobigfatdaemons

  48. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) # mnt=$(buildah mount $ctr) #nobigfatdaemons

  49. #nobigfatdaemons

  50. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) # mnt=$(buildah mount $ctr) # cp -R src $mnt #nobigfatdaemons

  51. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) # mnt=$(buildah mount $ctr) # cp -R src $mnt # dnf install --installroot=$mnt httpd #nobigfatdaemons

  52. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) # mnt=$(buildah mount $ctr) # cp -R src $mnt # dnf install --installroot=$mnt httpd # make install DESTDIR=$mnt #nobigfatdaemons

  53. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) # mnt=$(buildah mount $ctr) # cp -R src $mnt # dnf install --installroot=$mnt httpd # make install DESTDIR=$mnt # buildah config --enrtrypoint=/usr/sbin/test.sh --env foo=bar $ctr #nobigfatdaemons

  54. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) # mnt=$(buildah mount $ctr) # cp -R src $mnt # dnf install --installroot=$mnt httpd # make install DESTDIR=$mnt # buildah config --enrtrypoint=/usr/sbin/test.sh --env foo=bar $ctr # buildah commit $ctr myhttpd #nobigfatdaemons

  55. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) # mnt=$(buildah mount $ctr) # cp -R src $mnt # dnf install --installroot=$mnt httpd # make install DESTDIR=$mnt # buildah config --enrtrypoint=/usr/sbin/test.sh --env foo=bar $ctr # buildah commit $ctr myhttpd # buildah push myhttpd docker://rhatdan/myhttpd #nobigfatdaemons

  56. Dan Wait! #nobigfatdaemons

  57. Dan Wait! What about Dockerfile????? #nobigfatdaemons

  58. Buildah also supports Dockerfile buildah build-using-dockerfile -f Dockerfile . #nobigfatdaemons

  59. Buildah also supports Dockerfile buildah build-using-dockerfile -f Dockerfile . Or for those lazy ones: buildah bud -f Dockerfile . #nobigfatdaemons

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Optimizing Flash Allocation to Workloads in Google's Colossus File System Christoph Albrecht, Arif

Optimizing Flash Allocation to Workloads in Google's Colossus File System Christoph Albrecht, Arif

Optimizing Flash Allocation to Workloads in Google's Colossus File System Christoph Albrecht, Arif Merchant , Murray Stokely, Muhammad Waliji, Francois Labelle, Nate Coehlo, Xudong Shi, C. Eric Schrock Google Storage Analytics Team Model-driven

1.05k views • 10 slides
Introduction Workloads for Experiments Introduction to workloads CS 239 Workload

Introduction Workloads for Experiments Introduction to workloads CS 239 Workload

Introduction Workloads for Experiments Introduction to workloads CS 239 Workload selection Experimental Methodologies for Types of workloads System Software Characterizing a workload Peter Reiher April 19, 2007 Lecture 5

635 views • 14 slides
Secure Kubernetes Container Workloads with Production-Grade Networking Cynthia Thomas Irena

Secure Kubernetes Container Workloads with Production-Grade Networking Cynthia Thomas Irena

Secure Kubernetes Container Workloads with Production-Grade Networking Cynthia Thomas Irena Berezovsky Tim Hockin CIA IT operations have top secret apps for their agents, most of which require isolation Antoni is in Ops and wants to help CIA

458 views • 31 slides
The Right to Education section 36 Prof Tamara Walsh E: t.walsh@uq.edu.au University of

The Right to Education section 36 Prof Tamara Walsh E: t.walsh@uq.edu.au University of

The Right to Education section 36 Prof Tamara Walsh E: t.walsh@uq.edu.au University of Queensland W: www.law.uq.edu.au/tamara-walsh School of Law CRICOS code 00025B Prof Tamara Walsh UQ Law Human Rights Act 2019 (Qld) Major

567 views • 17 slides
Optimizing the Performance of Robots in Production Logistics Scenarios Gerhard Lakemeyer

Optimizing the Performance of Robots in Production Logistics Scenarios Gerhard Lakemeyer

February 14, 2017: Dagstuhl Seminar Computer-Assisted Engineering for Robotics and Autonomous Systems Optimizing the Performance of Robots in Production Logistics Scenarios Gerhard Lakemeyer Knowledge-based Systems Group RWTH Aachen University

356 views • 24 slides
Understanding Big Data Workloads on Understanding Big Data Workloads on Modern Processors using

Understanding Big Data Workloads on Understanding Big Data Workloads on Modern Processors using

Understanding Big Data Workloads on Understanding Big Data Workloads on Modern Processors using BigDataBench Jianfeng Zhan http://prof.ict.ac.cn/BigDataBench INS INSTITUT Professor, ICT, Chinese Academy of Sciences TE E OF CO and University

829 views • 60 slides
HDA case study S. Skogestad, May 2006 Self- Self Thanks to Antonio Arajo 1 Process

HDA case study S. Skogestad, May 2006 Self- Self Thanks to Antonio Arajo 1 Process

-Optimizing Control Optimizing Control HDA case study S. Skogestad, May 2006 Self- Self Thanks to Antonio Arajo 1 Process Description -Optimizing Control Optimizing Control Benzene production from thermal-dealkalination of

397 views • 25 slides
Community Partner Optimizing Stormwater Management to Protect Streams from Erosion Dr. Bob

Community Partner Optimizing Stormwater Management to Protect Streams from Erosion Dr. Bob

Community Partner Optimizing Stormwater Management to Protect Streams from Erosion Dr. Bob Hawley, PE Central Ohio SW & EC Expo, 2/26/16 The Urban Stream Syndrome (Walsh et al., 2005; Booth, 2005, etc.) Stream Function Pyr yramid

867 views • 51 slides
Monitoring of the dairy cow for optimizing health and production - energy and protein status i

Monitoring of the dairy cow for optimizing health and production - energy and protein status i

Monitoring of the dairy cow for optimizing health and production - energy and protein status i Klaus Lnne Ingvartsen Department of Animal Science, Aarhus University, Tjele, Denmark AU-FOULUM AU AARHUS KLAUS LNNE INGVARTSEN UNIVERSITY

499 views • 34 slides
Mendel at NERSC: Multiple Workloads on a Single Linux Cluster Larry Pezzaglia NERSC

Mendel at NERSC: Multiple Workloads on a Single Linux Cluster Larry Pezzaglia NERSC

Mendel at NERSC: Multiple Workloads on a Single Linux Cluster Larry Pezzaglia NERSC Computational Systems Group lmpezzaglia@lbl.gov CUG 2013 (May 9, 2013) Snapshot of NERSC Located at LBNL, NERSC is the production computing facility for

481 views • 31 slides
Walsh Scholars of the Year Application Support Webinar | 16 July 2020 Erin

Walsh Scholars of the Year Application Support Webinar | 16 July 2020 Erin

Walsh Scholars of the Year Application Support Webinar | 16 July 2020 Erin ORourke | Walsh Scholarships Development Officer The History Since the early days of the Walsh Scholarships Programme (formally Fellowships),

923 views • 24 slides
Optimizing re me dia tio n a ppro a c he s Optimizing re me dia tio n a ppro a c he s a t mine

Optimizing re me dia tio n a ppro a c he s Optimizing re me dia tio n a ppro a c he s a t mine

Optimizing re me dia tio n a ppro a c he s Optimizing re me dia tio n a ppro a c he s a t mine site s: ho w unde rsta nding b io g e o c he mic a l pro c e sse s a nd b io g e o c he mic a l pro c e sse s a nd mo de ling c a n g uide

394 views • 26 slides
Open House May 8, 2013 1 Who We Are Walsh Design Build Team includes: The Walsh

Open House May 8, 2013 1 Who We Are Walsh Design Build Team includes: The Walsh

Downtown Crossing Open House May 8, 2013 1 Who We Are Walsh Design Build Team includes: The Walsh Group Largest Midwest transportation contractor, 114 years in business Jacobs Engineering Group, Inc. 3rd largest design

441 views • 22 slides
Mostly-Optimistic Concurrency Control for Highly Contended Dynamic Workloads on a Thousand Cores

Mostly-Optimistic Concurrency Control for Highly Contended Dynamic Workloads on a Thousand Cores

Mostly-Optimistic Concurrency Control for Highly Contended Dynamic Workloads on a Thousand Cores By Tianzheng Wang, Hideaki Kimura Presented by Qing Wei Goal Achieve orders of magnitude higher performance for dynamic workloads Avoid

540 views • 29 slides
Inspire and improving access to libraries Andrew Walsh, University of Huddersfield

Inspire and improving access to libraries Andrew Walsh, University of Huddersfield

Inspire and improving access to libraries Andrew Walsh, University of Huddersfield a.p.walsh@hud.ac.uk Andrew Walsh. UCR Event 2008 1 What well cover today Outline of Inspire and WELCOME! Barriers to using (other) libraries

275 views • 16 slides
Zones - Containers Server Consolidation Run multiple workloads on system Improve utilization of

Zones - Containers Server Consolidation Run multiple workloads on system Improve utilization of

Zones - Containers Server Consolidation Run multiple workloads on system Improve utilization of resources Reduce costs Run workloads in isolation Cannot observe others Security Isolation Running apps as different user not enough - privilege

274 views • 15 slides
A Trip Through the NGC TensorFlow Container GTC 2019 S9256 AGENDA A Trip Through the TensorFlow

A Trip Through the NGC TensorFlow Container GTC 2019 S9256 AGENDA A Trip Through the TensorFlow

A Trip Through the NGC TensorFlow Container GTC 2019 S9256 AGENDA A Trip Through the TensorFlow Container Getting our bearings...where am I? What is NGC? Lazily strolling through the NGC TensorFlow container contents Examples!?

1.01k views • 48 slides
cropla CROP SAFE; FARMER APPROVED CONTAINERS INC Container Stewardship and Sustainability The

cropla CROP SAFE; FARMER APPROVED CONTAINERS INC Container Stewardship and Sustainability The

cropla CROP SAFE; FARMER APPROVED CONTAINERS INC Container Stewardship and Sustainability The New Ag Container Life Cycle Cropland Containers and Mauser Container IBC Concerns IBC Life Cycle Agtainer Advantages Approved

439 views • 19 slides
COSMIC COSMIC MOTIV IVATION The threat of CBRNE components used by terrorists inside containers

COSMIC COSMIC MOTIV IVATION The threat of CBRNE components used by terrorists inside containers

COSMIC COSMIC MOTIV IVATION The threat of CBRNE components used by terrorists inside containers is one of the major concerns for EU and worldwide security COSMIC confidential and proprietary information COSMIC VIS ISION CBRNE (Chemical,

421 views • 8 slides
Containers Kill or Cure for OpenStack? Mark Smith Pete Chadwick Senior Product Market Manager

Containers Kill or Cure for OpenStack? Mark Smith Pete Chadwick Senior Product Market Manager

Containers Kill or Cure for OpenStack? Mark Smith Pete Chadwick Senior Product Market Manager Director of Product Management SUSE OpenStack Cloud Cloud & Systems Management Why are containers such a hot topic? This is stuff all of us

468 views • 15 slides
Rail Cargo Terminal-BILK Co.Ltd. Rail Cargo Terminal - BILK Budapest Center Railway line Rail

Rail Cargo Terminal-BILK Co.Ltd. Rail Cargo Terminal - BILK Budapest Center Railway line Rail

Rail Cargo Terminal-BILK Co.Ltd. Rail Cargo Terminal - BILK Budapest Center Railway line Rail Cargo Terminal-BILK Rail Cargo Terminal - BILK Excellent location Corridor 6 Rail Cargo Terminal - BILK 3 26. 11. Excellent location Corridor

230 views • 22 slides
PUERTO DE GUAYMAS EXPANSION PROJECT November 2013 NAVIGATION AREAS OFFICIAL DEPTH-47.5 FT./

PUERTO DE GUAYMAS EXPANSION PROJECT November 2013 NAVIGATION AREAS OFFICIAL DEPTH-47.5 FT./

PUERTO DE GUAYMAS EXPANSION PROJECT November 2013 NAVIGATION AREAS OFFICIAL DEPTH-47.5 FT./ -14.5 mts. DOCKS RAILWAY INFRASTRUCTURE 2 3 4 5 1 6 BUSINE INESS SS TODAY Cruise Ship Grains Bulk Mineral Bulk Guaymas-Arizona

373 views • 34 slides
Mobile Shipping Containers Labs By Cercle Social About Cercle Social Type of entity: Non-Profit

Mobile Shipping Containers Labs By Cercle Social About Cercle Social Type of entity: Non-Profit

Mobile Shipping Containers Labs By Cercle Social About Cercle Social Type of entity: Non-Profit Established in: 2010 Focus: Education for girls, orphans and the underprivileged youth Geographical target: Benin, West Africa Leading projects:

570 views • 19 slides
Corporate Presentation Annual General Meeting 2012 SAMUDERA SHIPPI SAMUD SHIPPING NG LINE

Corporate Presentation Annual General Meeting 2012 SAMUDERA SHIPPI SAMUD SHIPPING NG LINE

SAMUDERA SHIPPING LINE LIMITED SAMUDERA SHIPPING LINE LIMITED Corporate Presentation Annual General Meeting 2012 SAMUDERA SHIPPI SAMUD SHIPPING NG LINE LIMITED LINE LIMITED Corporate Overview Industry Trends Operations Review Financial

551 views • 20 slides

More recommend