CoreOS Through the Looking Glass - Software Circus 2020

Transcript

1. “How do you know I’m mad?” said Alice. “You must

   be,” said the Cat, “or you wouldn’t have come here.” CoreOS Through the Looking Glass Software Circus, 21 May 2020 Andrew Randall, VP business development, Kinvolk @andrew_randall @kinvolkio

2. @andrew_randall @kinvolkio

3. ‘Beware the Kuberwock, my son! The pods that fail, the

   ports that hack! Beware bloated distros, and shun The privilege escalation attack!’ @andrew_randall @kinvolkio

4. @andrew_randall @kinvolkio Tweedlepolvi Tweedlephilips CEO CTO

5. Q ♥ Q ♥ Reduce attack surface K ♥ K

   ♥ Immutable file system A ♠ A ♠ Atomic, automatic updates @andrew_randall @kinvolkio K ♣ K ♣ Secure container runtime J ♦ J ♦ Principle of least privilege Untitled Goose

6. “GIFEE is a style of managing infrastructure the way hyperscale

   companies like Google operate, with infrastructures designed for maximum robustness, scalability, security, and reliability.” - Alex Tweedlepolvi Google’s Infrastructure For Everyone Else @andrew_randall @kinvolkio

7. The CoreOS Stack for GIFEE @andrew_randall @kinvolkio Tectonic etcd rkt

   CoreOS Container Linux Enterprise-grade cluster orchestration Distributed state store (consensus algorithm) Secure runtime for application containers Quay/Clair Container registry w/ built-in security scanner Container-optimized operating system

8. Oh, Kitty! how nice it would be if we could

   only get through into Looking-glass House! @andrew_randall @kinvolkio

9. @andrew_randall @kinvolkio

10. The GIFEE Stack Through the Looking Glass @andrew_randall @kinvolkio Active

    CNCF project; core Kubernetes component Retired in favor of containerd, having served its purpose Active* Red Hat product/service End-of-life End-of-life from May 26, 2020

11. @andrew_randall @kinvolkio One, two! One, two! With wicked git fu

    The Kinvolk team went snicker-snack! Container Linux built anew Flatcar galumphing back.

12. Dedicated team of Linux experts Built and maintained independently Public

    roadmap published New Edge channel for experimental features In-place migration for CoreOS hosts Update Service replacement for CoreUpdate 24x7 Customer Support infrastructure in place Large, growing community of users & partners Flatcar Container Linux Today @andrew_randall @kinvolkio

13. @andrew_randall @kinvolkio

14. @andrew_randall @kinvolkio Lokomotive: What’s in the Box? Self-hosted Kubernetes distro

    inspired by Tectonic Self-installed container platform with Managed Service experience Secure out of the box lokoctl for managing clusters and components with simplified config Supports AWS, AKS, Packet - more coming Dashboard for monitoring and control

15. @andrew_randall @kinvolkio flatcar-linux.org github.com/kinvolk/lokomotive

16. “Would you tell me, please, which way I ought to

    go from here?” “That depends a good deal on where you want to get to,” said the Cat. Thank you @andrew_randall @kinvolkio
17. None