$30 off During Our Annual Pro Sale. View Details »

control theory + declarative API = Kubernetes

Lucas Käldström
March 28, 2023
Technology
0
15

control theory + declarative API = Kubernetes

Presented at Automaatiopäivät 2023: https://www.automaatioseura.fi/automaatiopaivat2023/

Lucas Käldström

March 28, 2023
Tweet

More Decks by Lucas Käldström

See All by Lucas Käldström
Beyond RBAC: Implementing Relation-based Access Control for Kubernetes with OpenFGA
luxas
1
36
Managing scalable database clusters with the TiDB Operator
luxas
0
26
Understanding Kubernetes Through Real-World Phenomena and Analogies
luxas
0
59
Exploring modern and secure operations of Kubernetes clusters on the Edge
luxas
1
140
Introducing Racklet, a commoditized, educational and open source data center scale-model for tinkerers
luxas
1
270
Kubernetes & CNCF Meetup: Helsinki November 2019
luxas
0
210
Building and Scaling Cloud Native Nordics; Tips, Tricks, and Lessons Learned
luxas
0
200
Intro to the cloud-native world of Kubernetes -- October 2019
luxas
0
330
Kubernetes & CNCF Meetup -- Turku October 2019
luxas
0
89

Other Decks in Technology

See All in Technology
EventStormingとRDRA2.0で大規模レガシーシステムのフルリニューアルPJに挑む
leveragestech
0
1.6k
大規模Webアプリケーションプラットフォームを開発して軌道に乗るまでにやったこと / How to Put Platforms on Track
hhiroshell
0
1.3k
go-ldap Contribution
kazamori
0
120
ECサイト向け決済機能の開発で学んだ外部決済サービスの活用ポイント
k1style
1
210
The future is already here – Mastering the challenges of the coming years
ufried
0
320
JPPC2023_BI08_セマンティックモデルを覗き見る(公開用)
hanaseleb
0
200
継続的なコツコツ技術広報とブランディング磨き込みの過程と課題/engineering-brand
nishiuma
0
120
Garoon 開発チーム / Garoon development team
cybozuinsideout
PRO
0
2.3k
EMのスケールとマネジメントがチームになるということ / Team Building And Scaling Engineering Managers
yoshikiiida
1
710
AWSに関わる全ての エンジニアへの変革!
ysasago
2
140
朝起こしてくれるメイドさんが欲しい (LT) - NIFTY Tech Day 2023
niftycorp
1
130
kintone テクニカルライター採用ピッチ資料
cybozuinsideout
PRO
0
890

Featured

See All Featured
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
10
1.3k
Robots, Beer and Maslow
schacon
154
7.7k
The Language of Interfaces
destraynor
149
22k
Producing Creativity
orderedlist
PRO
335
38k
Making the Leap to Tech Lead
cromwellryan
120
8.2k
Unsuck your backbone
ammeep
660
56k
Principles of Awesome APIs and How to Build Them.
keavy
119
16k
Facilitating Awesome Meetings
lara
37
5.2k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
226
16k
Why Our Code Smells
bkeepers
PRO
329
56k
Statistics for Hackers
jakevdp
788
220k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
152
14k

Transcript

  1. control theory + declarative API = Kubernetes
    Lucas Käldström - CNCF Ambassador
    March 28, 2023 – Helsinki
    Image credit: CNCF

    View Slide

  2. © 2023 Lucas Käldström
    2
    $ whoami
    Lucas Käldström, 1st-year MSc student at Aalto University, Finland
    CNCF Ambassador, Certified Kubernetes Administrator
    and Former Kubernetes maintainer
    KubeCon Speaker in Berlin, Austin, Copenhagen,
    Shanghai, Seattle, San Diego & Valencia
    KubeCon Keynote Speaker in Barcelona
    kubeadm, Weave Ignite & libgitops co-author, Entrepreneur
    Cloud Native Nordics co-founder & meetup organizer
    Guild of Automation and Systems Technology Head of Corporate Relations

    View Slide

  3. © 2023 Lucas Käldström
    3
    est. 2014

    View Slide

  4. © 2023 Lucas Käldström
    4
    Based on decades of experience at Google

    View Slide

  5. © 2023 Lucas Käldström
    5
    Fast-forward 7 years, has 75000+ contributors
    Cloud Native Computing Foundation is a non-profit under Linux Foundation
    CNCF hosts 153 “cloud native” projects under it’s vendor-neutral umbrella
    Kubernetes was the first project donated to CNCF by Google in 2015
    It is one of the top 10 most actively developed open source projects

    View Slide

  6. © 2023 Lucas Käldström
    6
    Let’s start by defining it

    View Slide

  7. © 2023 Lucas Käldström
    7
    A Container Orchestrator? Yes

    View Slide

  8. © 2023 Lucas Käldström
    8
    A Container Orchestrator? Yes
    But in fact, even more than that

    View Slide

  9. © 2023 Lucas Käldström
    9
    Kubernetes: A Control Plane for (any) infrastructure

    View Slide

  10. © 2023 Lucas Käldström
    10
    Kubernetes: A Control Plane for (any) infrastructure
    = A set of automated controllers with operational
    knowledge of how to control a target system

    View Slide

  11. Not: Humans Operating Servers

    View Slide

  12. Instead: Humans Operating Automation,
    that in turn Operate Servers

    View Slide

  13. © 2023 Lucas Käldström
    13 Credits to Simon Sinek

    View Slide

  14. © 2023 Lucas Käldström
    14
    Run anywhere
    Self-healing
    Scalable
    workload
    scheduling
    Service discovery
    + config mgmt
    What?

    View Slide

  15. © 2023 Lucas Käldström
    15
    Specify once; Kubernetes makes your dream true
    JSON
    container
    workload
    specification
    REST API
    server
    HTTP POST JSON object
    Container
    Workload
    Controller
    read
    desired
    state
    *The process doesn’t look exactly like this, it is a simplified mental model for now
    pull
    start
    re-start
    monitor

    View Slide

  16. © 2023 Lucas Käldström
    16 Credits to Simon Sinek

    View Slide

  17. © 2023 Lucas Käldström
    17
    Run anywhere
    Self-healing
    Scalable
    workload
    scheduling
    Service discovery
    + config mgmt
    How?
    Closed-loop controllers Uniform, declarative and extensible API

    View Slide

  18. © 2023 Lucas Käldström
    18
    Sysadmin Servers/Applications
    controls
    business value
    (e.g. webservice)
    business
    objective
    narrative
    Classic system administration (Imperative)
    e.g. “start 5 virtual machines through GUI”

    View Slide

  19. © 2023 Lucas Käldström
    19
    Sysadmin Servers/Applications
    controls
    business value
    (e.g. webservice)
    Monitoring dashboard
    -
    business
    objective
    narrative
    (desired state
    in PDF)
    +
    human
    diff
    actual state
    Classic system administration (Declarative)
    e.g. “start 2 static web server processes per VM, send alerts via email if CPU exhausted”

    View Slide

  20. © 2023 Lucas Käldström
    20
    Controller Servers/Applications
    controls
    business value
    (e.g. webservice)
    Monitoring data
    -
    declarative
    business
    objective
    (desired state
    in JSON)
    +
    programmatic
    diff
    actual state
    System Administration by Kubernetes Operators
    REST API
    desired state
    REST API
    actual state
    e.g. “I want at least 10 web servers always running, scale up to 20 if load is high. I
    don’t care where the web servers run as long as they are reachable in this subnet”

    View Slide

  21. © 2023 Lucas Käldström
    21
    declarative
    business
    objective
    (desired state
    in JSON)
    Notice that desired and actual state are separated
    REST API
    desired state
    REST API
    actual state
    REST API is
    uniform, i.e.
    all resources
    has the same
    structure:
    kind,
    apiVersion,
    metadata,
    spec,
    Status
    REST API is
    extensible,
    you can add
    your own
    objects freely
    kind: Pod # What kind of object is this?
    apiVersion: v1 # What schema version is used?
    metadata: # Metadata about this object
    name: my-pod
    labels:
    app: web
    spec: # Desired state, set by user
    containers:
    - image: nginx:1.23
    ports:
    - containerPort: 80
    status: # Actual, observed state, set by controller
    conditions:
    - type: Ready
    status: "True"
    lastTransitionTime: 2018-01-01T00:00:00Z

    View Slide

  22. © 2023 Lucas Käldström
    22
    controllers + extensible API = abstraction layer

    View Slide

  23. © 2023 Lucas Käldström
    23
    Kubernetes is a “platform for platforms”
    Platform A Platform B
    Platform C
    Platform D

    View Slide

  24. © 2023 Lucas Käldström
    24
    Kubernetes is a “platform for platforms”
    Platform A Platform B
    Platform C
    Platform D

    View Slide

  25. © 2023 Lucas Käldström
    25
    Let’s say I create a “Workload” controller
    with the following API:
    kind: Workload # What kind of object is this?
    apiVersion: luxas.dev/v1 # What schema version is used?
    metadata: # Metadata about this object
    name: my-workload
    spec: # Desired state, set by user
    type: VM
    osImage: https://luxas.dev/ubuntu-2204
    status: # Actual, observed state, set by controller
    phase: Running
    bootTime: 2023-03-28T00:00:00Z

    View Slide

  26. © 2023 Lucas Käldström
    26
    Workload
    Controller
    Target Servers
    controls
    business value,
    running workloads
    Inspect server state
    -
    +
    programmatic
    diff
    actual state
    Controller implemented as:
    Workload
    spec
    Workload
    status

    View Slide

  27. © 2023 Lucas Käldström
    27
    I need to make two new controllers:
    1) a replicated Workload, which creates multiple
    workloads based on a template
    2) a “Job” workload, which runs until completion

    View Slide

  28. © 2023 Lucas Käldström
    28
    But I don’t want to duplicate the implementation of
    the Workload controller!

    View Slide

  29. © 2023 Lucas Käldström
    29
    Workload
    Controller
    Target
    Servers
    running
    workloads
    Inspect server state
    -
    +
    Workload
    API object
    spec+status
    ReplicatedWorkload
    Controller
    Observe
    status
    -
    +
    ReplicatedWorkload
    spec
    ReplicatedWorkload
    status
    JobWorkload
    Controller
    Observe
    status
    -
    +
    JobWorkload
    spec
    JobWorkload
    status
    create “child” Workload object
    create “child” Workload object

    View Slide

  30. © 2023 Lucas Käldström
    30
    Now the declarative implementation of controlling
    the Workload can be re-used and built upon!

    View Slide

  31. © 2023 Lucas Käldström
    31
    This forms a loosely coupled microservice
    architecture!
    REST API server
    JobWorkload Workload ReplicatedWorkload
    JobWorkload
    controller
    ReplicatedWorkload
    controller
    Workload
    controller
    declare intent declare intent

    View Slide

  32. © 2023 Lucas Käldström
    32
    Run anywhere
    Self-healing
    Scalable
    workload
    scheduling
    Service discovery
    + config mgmt
    How?
    Closed-loop controllers Uniform, declarative and extensible API

    View Slide

  33. © 2023 Lucas Käldström
    33
    Kubernetes: A Control Plane for (any) infrastructure

    View Slide

  34. Not: Humans Operating Servers

    View Slide

  35. Instead: Humans Operating Automation,
    that in turn Operate Servers

    View Slide

  36. Summary
    Baim Hanif on Unsplash
    Thank you!
    @luxas on Github
    @luxas on LinkedIn
    @luxas on SpeakerDeck
    @kubernetesonarm on Twitter
    [email protected]

    View Slide