Building reliable serverless applications - AWS Community Day Dublin October 13 2020

© 2020, Amazon Web Services, Inc. or its Affiliates. All
rights reserved. Gunnar Grosch @gunnargrosch October 13, 2020 Building reliable serverless applications AWS Community Day Dublin

rights reserved. Building reliable serverless applications

rights reserved. About me Senior Developer Advocate Background in development, operations, and management Community builder Father of three

rights reserved. Serverless “Serverless allows you to build and run applications and services without thinking about servers” Amazon Web Services (AWS)

rights reserved. Serverless “without thinking about servers”

rights reserved. Serverless A distributed system has multiple components located on different machines that communicate and coordinate actions in order to appear as a single coherent system to the end-user

rights reserved. Serverless – Execution models Synchronous (push) Amazon API Gateway AWS Lambda /login Asynchronous (event) AWS Lambda Amazon SNS Amazon S3 AWS Lambda AWS Lambda Stream-based AWS Lambda Amazon DynamoDB Amazon Kinesis Poll-based Amazon SQS AWS Lambda

rights reserved. Serverless – Simple web service Amazon API Gateway AWS Lambda Client Amazon DynamoDB

rights reserved. Reliability Reliability is the probability that a product, system, or service will perform its intended function adequately for a specified period

rights reserved. Reliability Reliability is not the same as quality

rights reserved. Robustness Robustness is the ability of a computer system to cope with errors during execution

rights reserved. Resilience A resilient system can adjust its functioning prior to, during, or following events, and thereby sustain required operations under both expected and unexpected conditions

rights reserved. Resilience “Resilience isn’t something you have, it’s something you do” Dr. David Woods

rights reserved. Building Don’t ask what happens if a system fails; ask what happens when it fails

rights reserved. Building Decouple architectures

rights reserved. Building – Decouple architectures Amazon Simple Storage Service AWS Lambda Client AWS Lambda Amazon Simple Queue Service Amazon SNS

rights reserved. Building – Decouple architectures AWS Step Functions Amazon EventBridge AWS Lambda SaaS Provider Amazon Simple Queue Service AWS Lambda Amazon DynamoDB

rights reserved. Building Let AWS handle errors and retries

rights reserved. Building – Error handling Amazon Simple Storage Service AWS Lambda Amazon Kinesis Fail up the stack

rights reserved. Building Aim for single- purpose functions

rights reserved. Building Retries are good, right?

rights reserved. Building – Retries • Synchronous Lambdas return failures to the invoker for retry • Asynchronous Lambdas will retry up to 2 times and 6 hours • Stream-based Lambdas will store events up to 7 days for up to 10 000 retry attempts • Poll-based Lambdas will return the message to the queue up to 1 000 times for retry • SDK retries differs between runtimes and services • Beware the retry storm

rights reserved. Building Make use of the circuit breaker pattern

rights reserved. Building – Circuit breaker pattern AWS Lambda Amazon DynamoDB Down stream service Status check

rights reserved. Building – Circuit breaker pattern

rights reserved. Building Use dead letter queues to capture events that fail to process

rights reserved. Building – Dead letter queues Amazon SNS AWS Lambda Amazon SQS (DLQ) Client Amazon Simple Storage Service

rights reserved. Building – Dead letter queues • You can add dead letter queues to • SQS • SNS • Lambda • EventBridge • SQS uses SQS as DLQ • SNS uses SQS as DLQ • Lambda uses SQS or SNS as DLQ • EventBridge uses SQS as DLQ

rights reserved. Building Use Lambda destinations to capture function failures

rights reserved. Building – Lambda destinations • For asynchronous Lambda executions • Route execution record based on function result • Success • Failure • Use another Lambda function, SQS, SNS or EventBridge as destination • Record contains details about request and response in JSON

rights reserved. Building – Lambda destinations Amazon Simple Storage Service Amazon Simple Storage Service AWS Lambda Amazon SQS On failure

rights reserved. AWS Lambda Building – Lambda destinations Amazon Simple Storage Service Amazon Simple Storage Service AWS Lambda On success

rights reserved. Building Fallbacks are great – when used often

rights reserved. Building – Fallbacks “Such attempts at a completely different mechanism to try to achieve the same result are called fallback behavior, and are an anti-pattern to be avoided” Reliability Pillar AWS Well-Architected Framework

rights reserved. Building Use chaos engineering to find weaknesses in your system

rights reserved. Building – Chaos engineering “Chaos engineering should be done regularly” Reliability Pillar AWS Well-Architected Framework

rights reserved. Building – Chaos engineering What if my function takes an extra 300 ms for each invocation? What if my function returns an error code? What if I can’t get data from DynamoDB?

rights reserved. Building – Chaos engineering

rights reserved. Building – Chaos engineering “Chaos engineering should be done regularly, and be part of your CI/CD cycle” Reliability Pillar AWS Well-Architected Framework

rights reserved. Building – Chaos engineering What if my function takes an extra 300 ms for each invocation? What if my function returns an error code? What if I can’t get data from DynamoDB? Failure injected through CI/CD

rights reserved. Summary Resilience isn’t something you have, it’s something you do Decouple architectures Let AWS handle errors and retries Use the circuit breaker pattern to avoid retry storms Use dead letter queues to capture events that fail to process Use Lambda destinations for function failures Fallbacks are great – when used, tested and verified often Chaos engineering helps us find weaknesses and fix them

rights reserved. Do you want more? Patterns and practices for building resilient Serverless applications (Yan Cui) https://www.slideshare.net/theburningmonk/patterns-and-practices-for-building-resilient-serverless-applications Serverless Microservice Patterns for AWS (Jeremy Daly) https://www.jeremydaly.com/serverless-microservice-patterns-for-aws/ The Amazon Builders' Library https://aws.amazon.com/builders-library/ Timeouts, retries and backoff with jitter (Yan Cui) https://lumigo.io/blog/amazon-builders-library-in-focus-1-timeouts-retries-and-backoff-with-jitter/ Serverless Chaos Demo app https://demo.serverlesschaos.com Serverless Chaos Demo Circuit Breaker app https://circuitbreaker.serverlesschaos.com

rights reserved. Thank you! Gunnar Grosch @gunnargrosch

Building reliable serverless applications - AWS...

Building reliable serverless applications - AWS Community Day Dublin October 13 2020

More Decks by Gunnar Grosch

Other Decks in Technology

Featured

Transcript