optimizing for production workloads dan walsh red hat
play

Optimizing for Production Workloads Dan Walsh Red Hat @rhatdan - PowerPoint PPT Presentation

Mar 23, 2024 •133 likes •878 views

Optimizing for Production Workloads Dan Walsh Red Hat @rhatdan Samuel Ortiz @sameo PDF PDF Linux PDF Linux Containers What do you need to run a container Standard Definition of what makes up a container image. OCI Image Bundle

  1. Optimizing for Production Workloads Dan Walsh Red Hat @rhatdan Samuel Ortiz @sameo

  3. PDF

  4. PDF Linux

  5. PDF Linux Containers

  7. What do you need to run a container Standard Definition of what makes up a container image. ● OCI Image Bundle Definition ○

  8. What do you need to run a container` Standard Definition of what makes up a container image. ● OCI Image Bundle Definition ○ Mechanism to pull images from a container registry to the host ● github.com/containers/image ○

  9. What do you need to run a container Standard Definition of what a container image is ● OCI Image Bundle Definition ○ Mechanism to pull images from a container registry to the host ● github.com/containers/image ○ ● Ability to explode images onto COW file systems on disk github.com/containers/storage ○

  10. What do you need to run a container Standard Definition of what a container image is ● OCI Image Bundle Definition ○ Mechanism to pull images from a container registry to the host ● github.com/containers/image ○ ● Ability to explode images onto COW file systems on disk github.com/containers/storage ○ Standard mechanism for running a container ● ○ OCI Runtime Spec (1.0) runc default implementation of OCI Runtime Spec (Same tool Docker uses to run containers) ○

  11. #nobigfatdaemons

  12. What does OpenShift/Kubernetes need to run a container? CRI - Container Runtime Interface #nobigfatdaemons

  13. What does Kubernetes need to run a container? CRI - Container Runtime Interface Kubernetes tells CRI to run Container Image: #nobigfatdaemons

  14. What does Kubernetes need to run a container? CRI - Container Runtime Interface Kubernetes tells CRI to run Container Image: ● CRI needs to pull image from Container Registry #nobigfatdaemons

  15. What does Kubernetes need to run a container? CRI - Container Runtime Interface Kubernetes tells CRI to run Container Image: ● CRI needs to pull image from Container Registry ● CRI Needs to store image on COW File system #nobigfatdaemons

  16. What does Kubernetes need to run a container? CRI - Container Runtime Interface Kubernetes tells CRI to run Container Image: ● CRI needs to pull image from Container Registry ● CRI Needs to store image on COW File system ● CRI Needs to execute OCI Runtime #nobigfatdaemons

  17. Introducing CRI-O CRI-O - OCI-based implementation of Kubernetes Container Runtime Interface Scope tied to kubernetes CRI ● ● Only supported user is kubernetes Uses standard components as building blocks ● “Nothing more, Nothing Less” #nobigfatdaemons

  18. #nobigfatdaemons

  19. #nobigfatdaemons

  20. #nobigfatdaemons

  21. S W A R M #nobigfatdaemons

  22. S W A R M #nobigfatdaemons

  23. M O B Y #nobigfatdaemons

  24. M O B Y #nobigfatdaemons

  25. M O B Y #nobigfatdaemons

  26. #nobigfatdaemons

  27. Overview of additional components oci-runtime-tools library is used to generate OCI configs for containers ● #nobigfatdaemons

  28. Overview of additional components oci-runtime-tools library is used to generate OCI configs for containers ● CNI is used for setting up networking ● ○ Tested with Flannel, Weave and openshift-sdn #nobigfatdaemons

  29. Overview of additional components oci-runtime-tools library is used to generate OCI configs for containers ● CNI is used for setting up networking ● ○ Tested with Flannel, Weave and openshift-sdn conmon is a utility for: ● Monitoring ○ Logging ○ Handling tty ○ Serving attach clients ○ Detecting and reporting OOM ○ #nobigfatdaemons

  30. Pod architecture (runc) conmon conmon conmon Infra Container Container A Container B (runc) (runc) Pod (ipc, net, pid namespaces, cgroups) #nobigfatdaemons

  31. Pod architecture (Kata Containers) conmon conmon kata-shim kata-shim Container A Container B (kata-runtime) (kata-runtime) Virtual Machine (ipc, net, pid namespaces, cgroups) #nobigfatdaemons Pod (net namespace, cgroups)

  32. Architecture #nobigfatdaemons

  33. Status All e2e, cri-tools, integration (>500) tests passing. ● No PRs merged without passing all the tests. ○ #nobigfatdaemons

  34. Status All e2e, cri-tools, integration (>500) tests passing. ● No PRs merged without passing all the tests. ○ 1.0.7 (kube 1.7.x) supported. ● Currently available as tech preview in Openshift 3.7 on RHEL, Tech Preview ○ #nobigfatdaemons

  35. Status All e2e, cri-tools, integration (>500) tests passing. ● No PRs merged without passing all the tests. ○ 1.0.7 (kube 1.7.x) supported. ● Currently available as tech preview in Openshift 3.7 on RHEL, Tech Preview ○ ● 1.8.4 (kube 1.8.x) supported. Available for OpenShift origin 3.8. ○ Running on Openshift Online Now ○ #nobigfatdaemons

  36. Status All e2e, cri-tools, integration (>500) tests passing. ● No PRs merged without passing all the tests. ○ 1.0.7 (kube 1.7.x) supported. ● Currently available as tech preview in Openshift 3.7 on RHEL, Tech Preview ○ ● 1.8.4 (kube 1.8.x) supported. Available for OpenShift origin 3.8. ○ Running on Openshift Online Now ○ 1.9.1-1 (kube 1.9.x) released. ● CRI-O will be fully supported in OpenShift 3.9 along with docker. ○ #nobigfatdaemons

  37. Status All e2e, cri-tools, integration (>500) tests passing. ● No PRs merged without passing all the tests. ○ 1.0.7 (kube 1.7.x) supported. ● Currently available as tech preview in Openshift 3.7 on RHEL, Tech Preview ○ ● 1.8.4 (kube 1.8.x) supported. Available for OpenShift origin 3.8. ○ Running on Openshift Online Now ○ 1.9.1-1 (kube 1.9.x) released. ● CRI-O will be fully supported in OpenShift 3.9 along with docker. ○ ● Goal for Openshift 3.10 is to fully support CRI-O by default. #nobigfatdaemons

  38. Status All e2e, cri-tools, integration (>500) tests passing. ● No PRs merged without passing all the tests. ○ 1.0.7 (kube 1.7.x) supported. ● Currently available as tech preview in Openshift 3.7 on RHEL, Tech Preview ○ ● 1.8.4 (kube 1.8.x) supported. Available for OpenShift origin 3.8. ○ Running on Openshift Online Now ○ 1.9.1-1 (kube 1.9.x) released. ● CRI-O will be fully supported in OpenShift 3.9 along with docker. ○ ● Goal for Openshift 3.10 is to fully support CRI-O by default. Maintainers/contributors from Red Hat, Intel, Lyft, SUSE and many others. ● #nobigfatdaemons

  39. Status CRI-O is now powering nodes on OpenShift Online. #nobigfatdaemons

  40. " CRI-O just works for them, so they haven’t had much to say" #nobigfatdaemons

  41. Making running containers in production boring #nobigfatdaemons

  42. #nobigfatdaemons

  43. What else does OpenShift need? Ability to build container images ● Ability to push container images to container registries ● #nobigfatdaemons

  44. #nobigfatdaemons

  45. Introducing Buildah https://github.com/projectatomic/buildah #nobigfatdaemons

  46. Coreutils for building containers. Simple interface #nobigfatdaemons

  47. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) #nobigfatdaemons

  48. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) # mnt=$(buildah mount $ctr) #nobigfatdaemons

  49. #nobigfatdaemons

  50. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) # mnt=$(buildah mount $ctr) # cp -R src $mnt #nobigfatdaemons

  51. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) # mnt=$(buildah mount $ctr) # cp -R src $mnt # dnf install --installroot=$mnt httpd #nobigfatdaemons

  52. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) # mnt=$(buildah mount $ctr) # cp -R src $mnt # dnf install --installroot=$mnt httpd # make install DESTDIR=$mnt #nobigfatdaemons

  53. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) # mnt=$(buildah mount $ctr) # cp -R src $mnt # dnf install --installroot=$mnt httpd # make install DESTDIR=$mnt # buildah config --enrtrypoint=/usr/sbin/test.sh --env foo=bar $ctr #nobigfatdaemons

  54. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) # mnt=$(buildah mount $ctr) # cp -R src $mnt # dnf install --installroot=$mnt httpd # make install DESTDIR=$mnt # buildah config --enrtrypoint=/usr/sbin/test.sh --env foo=bar $ctr # buildah commit $ctr myhttpd #nobigfatdaemons

  55. Coreutils for building containers. Simple interface # ctr=$(buildah from fedora) # mnt=$(buildah mount $ctr) # cp -R src $mnt # dnf install --installroot=$mnt httpd # make install DESTDIR=$mnt # buildah config --enrtrypoint=/usr/sbin/test.sh --env foo=bar $ctr # buildah commit $ctr myhttpd # buildah push myhttpd docker://rhatdan/myhttpd #nobigfatdaemons

  56. Dan Wait! #nobigfatdaemons

  57. Dan Wait! What about Dockerfile????? #nobigfatdaemons

  58. Buildah also supports Dockerfile buildah build-using-dockerfile -f Dockerfile . #nobigfatdaemons

  59. Buildah also supports Dockerfile buildah build-using-dockerfile -f Dockerfile . Or for those lazy ones: buildah bud -f Dockerfile . #nobigfatdaemons

Recommend

Optimizing Flash Allocation to Workloads in Google's Colossus File System Christoph Albrecht, Arif

Optimizing Flash Allocation to Workloads in Google's Colossus File System Christoph Albrecht, Arif

Optimizing Flash Allocation to Workloads in Google's Colossus File System Christoph Albrecht, Arif Merchant , Murray Stokely, Muhammad Waliji, Francois Labelle, Nate Coehlo, Xudong Shi, C. Eric Schrock Google Storage Analytics Team Model-driven

1.05k views • 10 slides
Introduction Workloads for Experiments Introduction to workloads CS 239 Workload

Introduction Workloads for Experiments Introduction to workloads CS 239 Workload

Introduction Workloads for Experiments Introduction to workloads CS 239 Workload selection Experimental Methodologies for Types of workloads System Software Characterizing a workload Peter Reiher April 19, 2007 Lecture 5

635 views • 14 slides
Secure Kubernetes Container Workloads with Production-Grade Networking Cynthia Thomas Irena

Secure Kubernetes Container Workloads with Production-Grade Networking Cynthia Thomas Irena

Secure Kubernetes Container Workloads with Production-Grade Networking Cynthia Thomas Irena Berezovsky Tim Hockin CIA IT operations have top secret apps for their agents, most of which require isolation Antoni is in Ops and wants to help CIA

458 views • 31 slides
The Right to Education section 36 Prof Tamara Walsh E: t.walsh@uq.edu.au University of

The Right to Education section 36 Prof Tamara Walsh E: t.walsh@uq.edu.au University of

The Right to Education section 36 Prof Tamara Walsh E: t.walsh@uq.edu.au University of Queensland W: www.law.uq.edu.au/tamara-walsh School of Law CRICOS code 00025B Prof Tamara Walsh UQ Law Human Rights Act 2019 (Qld) Major

567 views • 17 slides
Optimizing the Performance of Robots in Production Logistics Scenarios Gerhard Lakemeyer

Optimizing the Performance of Robots in Production Logistics Scenarios Gerhard Lakemeyer

February 14, 2017: Dagstuhl Seminar Computer-Assisted Engineering for Robotics and Autonomous Systems Optimizing the Performance of Robots in Production Logistics Scenarios Gerhard Lakemeyer Knowledge-based Systems Group RWTH Aachen University

356 views • 24 slides
Understanding Big Data Workloads on Understanding Big Data Workloads on Modern Processors using

Understanding Big Data Workloads on Understanding Big Data Workloads on Modern Processors using

Understanding Big Data Workloads on Understanding Big Data Workloads on Modern Processors using BigDataBench Jianfeng Zhan http://prof.ict.ac.cn/BigDataBench INS INSTITUT Professor, ICT, Chinese Academy of Sciences TE E OF CO and University

829 views • 60 slides
HDA case study S. Skogestad, May 2006 Self- Self Thanks to Antonio Arajo 1 Process

HDA case study S. Skogestad, May 2006 Self- Self Thanks to Antonio Arajo 1 Process

-Optimizing Control Optimizing Control HDA case study S. Skogestad, May 2006 Self- Self Thanks to Antonio Arajo 1 Process Description -Optimizing Control Optimizing Control Benzene production from thermal-dealkalination of

397 views • 25 slides
Community Partner Optimizing Stormwater Management to Protect Streams from Erosion Dr. Bob

Community Partner Optimizing Stormwater Management to Protect Streams from Erosion Dr. Bob

Community Partner Optimizing Stormwater Management to Protect Streams from Erosion Dr. Bob Hawley, PE Central Ohio SW & EC Expo, 2/26/16 The Urban Stream Syndrome (Walsh et al., 2005; Booth, 2005, etc.) Stream Function Pyr yramid

867 views • 51 slides
Monitoring of the dairy cow for optimizing health and production - energy and protein status i

Monitoring of the dairy cow for optimizing health and production - energy and protein status i

Monitoring of the dairy cow for optimizing health and production - energy and protein status i Klaus Lnne Ingvartsen Department of Animal Science, Aarhus University, Tjele, Denmark AU-FOULUM AU AARHUS KLAUS LNNE INGVARTSEN UNIVERSITY

499 views • 34 slides
Mendel at NERSC: Multiple Workloads on a Single Linux Cluster Larry Pezzaglia NERSC

Mendel at NERSC: Multiple Workloads on a Single Linux Cluster Larry Pezzaglia NERSC

Mendel at NERSC: Multiple Workloads on a Single Linux Cluster Larry Pezzaglia NERSC Computational Systems Group lmpezzaglia@lbl.gov CUG 2013 (May 9, 2013) Snapshot of NERSC Located at LBNL, NERSC is the production computing facility for

481 views • 31 slides
Walsh Scholars of the Year Application Support Webinar | 16 July 2020 Erin

Walsh Scholars of the Year Application Support Webinar | 16 July 2020 Erin

Walsh Scholars of the Year Application Support Webinar | 16 July 2020 Erin ORourke | Walsh Scholarships Development Officer The History Since the early days of the Walsh Scholarships Programme (formally Fellowships),

923 views • 24 slides
Optimizing re me dia tio n a ppro a c he s Optimizing re me dia tio n a ppro a c he s a t mine

Optimizing re me dia tio n a ppro a c he s Optimizing re me dia tio n a ppro a c he s a t mine

Optimizing re me dia tio n a ppro a c he s Optimizing re me dia tio n a ppro a c he s a t mine site s: ho w unde rsta nding b io g e o c he mic a l pro c e sse s a nd b io g e o c he mic a l pro c e sse s a nd mo de ling c a n g uide

394 views • 26 slides
Open House May 8, 2013 1 Who We Are Walsh Design Build Team includes: The Walsh

Open House May 8, 2013 1 Who We Are Walsh Design Build Team includes: The Walsh

Downtown Crossing Open House May 8, 2013 1 Who We Are Walsh Design Build Team includes: The Walsh Group Largest Midwest transportation contractor, 114 years in business Jacobs Engineering Group, Inc. 3rd largest design

441 views • 22 slides
Mostly-Optimistic Concurrency Control for Highly Contended Dynamic Workloads on a Thousand Cores

Mostly-Optimistic Concurrency Control for Highly Contended Dynamic Workloads on a Thousand Cores

Mostly-Optimistic Concurrency Control for Highly Contended Dynamic Workloads on a Thousand Cores By Tianzheng Wang, Hideaki Kimura Presented by Qing Wei Goal Achieve orders of magnitude higher performance for dynamic workloads Avoid

540 views • 29 slides
Inspire and improving access to libraries Andrew Walsh, University of Huddersfield

Inspire and improving access to libraries Andrew Walsh, University of Huddersfield

Inspire and improving access to libraries Andrew Walsh, University of Huddersfield a.p.walsh@hud.ac.uk Andrew Walsh. UCR Event 2008 1 What well cover today Outline of Inspire and WELCOME! Barriers to using (other) libraries

275 views • 16 slides
Zones - Containers Server Consolidation Run multiple workloads on system Improve utilization of

Zones - Containers Server Consolidation Run multiple workloads on system Improve utilization of

Zones - Containers Server Consolidation Run multiple workloads on system Improve utilization of resources Reduce costs Run workloads in isolation Cannot observe others Security Isolation Running apps as different user not enough - privilege

274 views • 15 slides
OUR OBJECTIVE : OPTIMIZING YOUR TRANSACTION 1 OPTIMIZING YOUR TRANSACTION, is bringing added

OUR OBJECTIVE : OPTIMIZING YOUR TRANSACTION 1 OPTIMIZING YOUR TRANSACTION, is bringing added

OUR OBJECTIVE : OPTIMIZING YOUR TRANSACTION 1 OPTIMIZING YOUR TRANSACTION, is bringing added value to you appropriate for each stage of your project. 2 p.4 Presentation of Trianon Corporate Finance Our team p.12 References p.15 p.24

288 views • 24 slides
Lessons from the Coalbed Methane Boom in Wyoming Kathryn Bills Walsh, Montana State University

Lessons from the Coalbed Methane Boom in Wyoming Kathryn Bills Walsh, Montana State University

Lessons from the Coalbed Methane Boom in Wyoming Kathryn Bills Walsh, Montana State University Dr. Julia H. Haggerty, Montana State University ASMR April 10, 2017 Mitigating destructive legacies: Reclamation of natural gas production sites

239 views • 22 slides
ERMIA: Fast Memory-Optimized Database System for Heterogeneous Workloads Kangnyeon Kim Tianzheng

ERMIA: Fast Memory-Optimized Database System for Heterogeneous Workloads Kangnyeon Kim Tianzheng

ERMIA: Fast Memory-Optimized Database System for Heterogeneous Workloads Kangnyeon Kim Tianzheng Wang Ryan Johnson Ippokratis Pandis Heterogeneous is the new OLTP Convenient/traditional Emerging workloads W W R W R RR W R R R RR RRRR

340 views • 15 slides
Evaluation of Memory and CPU usage via Cgroups of ATLAS workloads via Cgroups of ATLAS workloads

Evaluation of Memory and CPU usage via Cgroups of ATLAS workloads via Cgroups of ATLAS workloads

Evaluation of Memory and CPU usage Evaluation of Memory and CPU usage via Cgroups of ATLAS workloads via Cgroups of ATLAS workloads running at a Tier-2 running at a Tier-2 Gang Qin, Gareth Roy Ma March rch. 25 th , 2015 Condor Cgroups

363 views • 19 slides
Optimizing for developer happiness Chad Dickerson CTO, Etsy chad@etsy.com @chaddickerson We

Optimizing for developer happiness Chad Dickerson CTO, Etsy chad@etsy.com @chaddickerson We

Optimizing for developer happiness Chad Dickerson CTO, Etsy chad@etsy.com @chaddickerson We deploy code to production about 25x per day Across a team of 70 engineers We have a lot of people depending on us. 400,000+ active sellers 9+

967 views • 85 slides
Working Group on Net Community Production & Respiration Kendra Daly, USF Jason Lenes, USF

Working Group on Net Community Production & Respiration Kendra Daly, USF Jason Lenes, USF

Working Group on Net Community Production & Respiration Kendra Daly, USF Jason Lenes, USF Michael Murrell, EPA Brian Roberts, LUMCON John Walsh, USF Gary Hitchcock, UM Estuaries Shelf Oligotrophic DEFINITIONS GPP = Gross primary

354 views • 16 slides
Optimizing over the Split Closure Optimizing over the Split Closure Anureet Saxena ACO PhD

Optimizing over the Split Closure Optimizing over the Split Closure Anureet Saxena ACO PhD

Optimizing over the Split Closure Optimizing over the Split Closure Anureet Saxena ACO PhD Student, Tepper School of Business, Carnegie Mellon University. (Joint Work with Egon Balas) MIP Model MIP Model min cx Contains x j 0 j 2 N x j

837 views • 56 slides
Fast Rope Optimizing IDIQs as a Prime and a S ub Feb 2016 Optimizing IDIQ and GWACs Prime

Fast Rope Optimizing IDIQs as a Prime and a S ub Feb 2016 Optimizing IDIQ and GWACs Prime

Fast Rope Optimizing IDIQs as a Prime and a S ub Feb 2016 Optimizing IDIQ and GWACs Prime Perspective Panelist Keith Bull Miller, S martronix Fabian Plath, NES Associates Richard Goudie, Optech Michael

655 views • 18 slides

More recommend