Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Bringing Buildpacks to Kubernetes

Dr Nic Williams
September 11, 2019
Technology
0
98

Bringing Buildpacks to Kubernetes

Kubernetes solves orchestration of containers, but it does not solve the 10 year problem of ensuring that the software running in production always contains CVEs to the root filesystem, to OS packages, to language packages, and the application itself.

Replace Dockerfiles with Cloud Native Buildpacks to convert your application software into OCI/docker images, and use tools like pack and kpack to continuously upgrade images with latest dependencies, and to rebase the base OS layer of images to latest version.

Dr Nic Williams

September 11, 2019
Tweet

More Decks by Dr Nic Williams

See All by Dr Nic Williams
Making URLs look awesome when people share them
drnic
2
67
Cloud Foundry Quarks & Eirini - CFF Webinar 11-2019
drnic
1
320
Creating Cloud Native Buildpacks
drnic
0
63
Deploying First Application to Cloud Foundry
drnic
0
20
Distributing Cloud Foundry sidecars with buildpacks
drnic
0
160
Introducing Knative to Small Teams
drnic
2
560
10 ways to create BOSH releases faster
drnic
1
49
BOSH - A year in review 2017/18
drnic
0
100
Running Kubernetes on an existing BOSH
drnic
1
93

Other Decks in Technology

See All in Technology
AWS Direct Connectと愉快なGWたちのおさらい
minorun365
2
590
Modern Testing Tools for Java Developers
eliasnogueira
1
130
「時系列データ」を ChatGPT で活かすには?!
soracom
PRO
0
440
Riverpodに機能追加したときの話
k9i
4
250
APIによるレガシーシステムの改善
techtekt
0
140
「XIAOGYAN」への想い
matsujirushi
0
170
どうしてもcgoから逃げられなくなったあなたに知ってほしいcgoの使い方入門
sakiengineer
1
1k
FaaS における Java 起動時間の比較 (AWS / Azure / GCP) #jjug_ccc #jjug_ccc_d
tacck
2
780
Spring Boot 2 から 3 へバージョンアップしてみた
red_frasco
1
150
食べログChatGPTプラグイン導入で見えてきた未来:データサイエンティストの向き合い方
moritama1515
PRO
3
430
フィンテックとは何か / What is FinTech?
ks91
PRO
0
120
Head toward Java 20 and Java 21
line_developers
PRO
0
350

Featured

See All Featured
Large-scale JavaScript Application Architecture
addyosmani
500
110k
Happy Clients
brianwarren
90
6k
Optimizing for Happiness
mojombo
366
66k
Fontdeck: Realign not Redesign
paulrobertlloyd
74
4.5k
Art, The Web, and Tiny UX
lynnandtonic
285
18k
Building Flexible Design Systems
yeseniaperezcruz
315
35k
Designing for humans not robots
tammielis
245
24k
Build The Right Thing And Hit Your Dates
maggiecrowley
23
1.5k
How GitHub Uses GitHub to Build GitHub
holman
466
280k
Teambox: Starting and Learning
jrom
124
8k
GitHub's CSS Performance
jonrohan
1022
430k
Into the Great Unknown - MozCon
thekraken
6
480

Transcript

  1. Title Text
    Body Level One
    Body Level Two
    Body Level Three
    Body Level Four
    Body Level Five
    Bringing Buildpacks to
    Kubernetes
    Cloud Foundry Summit Hague 2019
    Dr Nic Williams @drnic

    View Slide

  2. @drnic
    To Infinity! Let's Build a Buildpack
    More of me (Dr Nic)
    2pm
    Office Hours: Buildpacks
    Buildpack Core Team
    11am
    TOMORROW

    View Slide

  3. @d
    @drnic
    Problem
    Scope
    ?
    Consider every app over 10 years
    Real world problem changes
    Programming language changes
    Dependency changes
    Several major OS version changes
    Perhaps one wholesale OS change
    Deployment platform changes
    CI/CD changes
    Original dev team disbanded
    CVEs are everywhere

    View Slide

  4. @d
    @drnic
    Ideal
    Universe
    Separation of concerns
    Dev team
    Real world problem changes
    Language-specific team
    Programming language changes
    Dependency changes
    Platform team
    Several major OS version changes
    Perhaps one wholesale OS change
    Deployment platform changes
    CI/CD changes

    View Slide

  5. @d
    @drnic
    Possible
    Universe
    Dev team
    Real world problem changes
    Programming language changes
    Dependency changes
    Language-specific team
    Supported versions
    Runtime configuration
    Platform team
    CI/CD changes
    Several major OS version changes
    Perhaps one wholesale OS change
    Deployment platform changes

    View Slide

  6. @d
    @drnic
    Actual
    Universe
    Dev team

    View Slide

  7. @d
    @drnic
    Actual
    Universe
    Dev team

    View Slide

  8. View Slide

  9. @d
    @drnic
    Choose

    your

    Problem
    Statement
    ?
    How to package our app once?

    Solution: Dockerfile
    Operate/upgrade app for 10 yr?
    Solution: Not with a Dockerfile
    or

    View Slide

  10. Cloud Native Buildpacks
    Pivotal & Heroku initiative
    CNCF incubation

    View Slide

  11. View Slide

  12. Buildpacks
    Lifecycle
    Builder OCI/Docker image

    View Slide

  13. Separation of Concerns
    Operating System updates to existing OCIs

    View Slide

  14. @d
    @drnic
    Today Introduce kpack
    Build images atop Kubernetes
    Introduce pack CLI
    Build images locally, deploy to Kube
    kP

    View Slide

  15. @d
    @drnic
    Quick
    Demo
    docker run -p 8080
    NodeJS app
    pack build Ɲ
    Run in a kubernetes pod
    Inside container to see folders

    View Slide

  16. @d
    @drnic
    Quick
    Demo
    $ pack set-default-builder \
    cloudfoundry/cnb:cflinuxfs3
    $ pack build starkandwayne/sample-app-nodejs
    [detector] ======== Results ========
    [detector] pass: Node Engine Buildpack
    [detector] pass: Yarn Buildpack

    [builder] -----> Node Engine Buildpack 0.0.26
    [builder] Node Engine 10.16.2:
    [builder] Downloading from …
    $ docker run -ti -p 8080:8080 \
    starkandwayne/sample-app-nodejs

    View Slide

  17. Example
    Spring
    $ pack build starkandwayne/sample-app-java
    ===> DETECTING
    [detector] skip: [email protected]
    [detector] pass: [email protected]
    [detector] pass: [email protected]
    [detector] pass: [email protected]
    [detector] pass: [email protected]
    [detector] pass: [email protected]
    [detector] skip: [email protected]
    [detector] skip: [email protected]
    [detector] Resolving plan... (try #1)
    [detector] Success! (7)

    [builder] Cloud Foundry OpenJDK Buildpack 1.0.0-RC02
    [builder] OpenJDK JDK 11.0.4: Contributing to layer
    $ docker run -ti -p 8080:8080 \
    starkandwayne/sample-app-java

    View Slide

  18. @d
    @drnic
    Deployment
    $ pack build \
    starkandwayne/sample-app-nodejs:0.0.1 \
    --publish
    $ kubectl apply -f deployment.yaml
    $ kubectl get pods,services
    $ watch curl :8080
    $ pack build …:0.0.2 --publish
    edit deployment.yml
    $ kubectl apply -f deployment.yaml

    View Slide

  19. @d
    @drnic
    yarn
    v
    npm
    $ yarn install
    $ pack build starkandwayne/sample-app-nodejs
    [detector] ======== Results ========
    [detector] pass: Node Engine Buildpack
    [detector] pass: Yarn Buildpack

    [builder] Process types:
    [builder] web: yarn start
    $ docker run -ti -p 8080:8080 \
    starkandwayne/sample-app-nodejs

    View Slide

  20. @d
    @drnic
    yarn
    v
    npm
    $ rm yarn.lock
    $ npm install
    $ pack build starkandwayne/sample-app-nodejs
    [detector] ======== Results ========
    [detector] pass: Node Engine Buildpack
    [detector] pass: NPM Buildpack

    [builder] Process types:
    [builder] web: npm start
    $ docker run -ti -p 8080:8080 \
    starkandwayne/sample-app-nodejs

    View Slide

  21. @d
    @drnic
    kpack
    kP
    configure via kube resources
    buildpack lifecycle as a service
    runs in kubernetes Ɲ
    push images to any registry
    kpack or similar will come to CF

    View Slide

  22. @d
    @drnic
    kpack
    image
    kP
    pack build starkandwayne/sample-app-nodejs
    --builder cloudfoundry/cnb:cflinufs3 \
    --path sample-app-nodejs/ \
    --publish
    Similar to:

    View Slide

  23. @d
    @drnic
    Quick
    Demo
    $ kubectl apply -f serviceaccount.yaml
    $ kubectl apply -f builder-cflinuxfs3.yaml
    $ git clone …/sample-app-nodejs.git
    $ kubectl apply -f kpack-image.yaml
    $ logs -image sample-app-nodejs

    $ kubectl get image sample-app-nodejs
    starkandwayne/[email protected]:dbcf56
    kP
    https://github.com/starkandwayne/sample-app-nodejs.git

    View Slide

  24. @d
    @drnic
    Deployment
    # edit deployment.yaml image ref
    $ kubectl apply -f deployment.yaml
    $ kubectl get all
    $ watch curl -sS
    Hello World!
    # commit change to app; wait for new image
    $ kubectl get builds -w
    $ logs -image sample-app-nodejs
    # edit deployment.yaml image ref
    $ kubectl apply -f deployment.yaml
    $ kubectl get pods -w
    Hello CF Summit!
    kP
    https://github.com/starkandwayne/sample-app-nodejs.git

    View Slide

  25. @d
    @drnic
    Built with
    pack
    $ ./hack/release.sh
    … similar to…
    pack build gcr.io/kpack/controller ./cmd/controller
    pack build gcr.io/kpack/build-init ./cmd/build-init
    pack build gcr.io/kpack/source-init ./cmd/source-init
    …creates release.yaml
    kP
    https://github.com/pivotal/kpack

    View Slide

  26. Buildpacks
    Lifecycle
    Builder OCI/Docker image
    pack or kpack or (soon) cloud foundry

    View Slide

  27. @d
    @drnic
    Possible
    Universe
    Dev team
    Real world problem changes
    Programming language changes
    Dependency changes
    Language-specific team
    Supported versions
    Runtime configuration
    Platform team
    CI/CD changes
    Major OS version changes
    One wholesale OS change
    Deployment platform changes
    App
    Buildpacks
    Builders
    Base OS
    Run Image
    CF platform

    View Slide

  28. @d
    @drnic
    Avoid
    Don't go straight to Dockerfiles

    View Slide

  29. @drnic
    To Infinity! Let's Build a Buildpack
    More of me (Dr Nic)
    2pm
    Office Hours: Buildpacks
    Buildpack Core Team
    11am
    TOMORROW

    View Slide