Slide 1
Slide 1 text
͘͞ΒΠϯλʔωοτגࣜձࣾ
(C) Copyright 1996-2018 SAKURA Internet Inc
͘͞ΒΠϯλʔωοτݚڀॴ
ΠϯϑϥΤϯδχΞͱͯ͠ͷΘͨ͠ͷ
ݚڀ։ൃͱ͜Ε͔Βͷίϯςφٕज़
2018/11/01 ্ڃݚڀһ দຊ ྄հ
ԬΏΔͬͱITަྲྀձ vol.8ʮΠϯϑϥΤϯδχΞͷΛฉ͜͏ʯ
Slide 2
Slide 2 text
2
ɾ͘͞ΒΠϯλʔωοτݚڀॴ ্ڃݚڀһ (ॳग़ࣾ!)
ɾגࣜձࣾGrooves Forkewll ٕज़ސ
ɾϖύϘݚڀॴ ٬һݚڀһ ݚڀސ
ɾηΩϡϦςΟɾΩϟϯϓߨࢣ
ɾใॲཧֶձ Πϯλʔωοτͱӡ༻ٕज़ݚڀձ ֤छҕһ
ɾژେֶത࢜ʢใֶʣ
দຊ྄հ / ·ͭͱΓʔ / @matsumotory
Slide 3
Slide 3 text
3
1. ͜Ε·ͰͷΠϯϑϥΤϯδχΞͱͯ͠ͷࢲͷݚڀ։ൃ
ɾത࢜՝ఔ࣌ͱϖύϘݚڀॴ࣌ͷऔΓΈ
2. ͜ΕΒ͔ΒͷΠϯϑϥΤϯδχΞͱͯ͠ͷࢲͷݚڀ։ൃ
ɾ͜Ε͔Βݚڀ։ൃ͖͢ͷίϯςφٕज़ͱͦͷཧ༝
3. ·ͱΊ
࣍
Slide 4
Slide 4 text
1.
͜Ε·ͰͷΠϯϑϥΤϯδχΞͱͯ͠ͷ
Θͨ͠ͷݚڀ։ൃ
Slide 5
Slide 5 text
5
ɾStudies on Highly Integrated Multi-Tenant Architecture for Web
Servers [1]
ɾʦഎܠʧݸਓͷଟ͕͘WebαΠτΛ࣋ͭ࣌
ɾʦʧWebαʔόͷߴूੵϚϧνςφϯτΞʔΩςΫνϟ
ɾʦߩݙʧӡ༻ٕज़ɺηΩϡϦςΟɺੑೳɺϦιʔεཧΛߟྀͨ͠
࠷దͳΞʔΩςΫνϟ
ത࢜՝ఔ࣌ͷςʔϚ
[1] Ryosuke M, Studies on Highly Integrated Multi-Tenant Architecture for Web Servers, https://repository.kulib.kyoto-
u.ac.jp/dspace/handle/2433/225954, Kyoto University, Ph.D. thesis, 2017.
Slide 6
Slide 6 text
6
ɾ1990͔ΒWebαʔόͷߴूੵϚϧνςφϯτʹ͓͍ͯɺಈతί
ϯςϯπ͕ීٴͯ͠ίϯςϯπ͕ϦονʹͳΓɺWebαʔόΛڞ༗
͠ͳ͕ΒϔϏʔ͔ͭࣗ༝ʹΘΕΔΑ͏ʹͳͬͨ
ɾͦͷঢ়گԼͰɺ͍͔ʹηΩϡϦςΟΛ୲อ͠ͳ͕ΒੑೳΛҾ͖ग़͠
҆ఆԽͤ͞Δ͔ΛɺOSɾϛυϧΣΞͷ؍͔Βݚڀ։ൃ͖ͯͨ͠
ത࢜՝ఔ࣌ͷ·ͱΊ
Slide 7
Slide 7 text
7
ϖύϘݚڀॴ࣌
https://speakerdeck.com/matsumoto_r/pepaboyan-jiu-suo-falsejin-kuang-tojin-hou-falsezhan-wang
Slide 8
Slide 8 text
8
ϖύϘݚڀॴ࣌
https://speakerdeck.com/matsumoto_r/pepaboyan-jiu-suo-falsejin-kuang-tojin-hou-falsezhan-wang
Slide 9
Slide 9 text
9
ϖύϘݚڀॴ࣌
https://speakerdeck.com/matsumoto_r/pepaboyan-jiu-suo-falsejin-kuang-tojin-hou-falsezhan-wang
Slide 10
Slide 10 text
2.
͜Ε͔ΒͷΠϯϑϥΤϯδχΞͱͯ͠ͷ
Θͨ͠ͷݚڀ։ൃ
Slide 11
Slide 11 text
11
Γ͍ͨݚڀϝϞʑ૿͍͑ͯ͘
Slide 12
Slide 12 text
ࠓίϯςφͷݚڀʹϑΥʔΧε
Slide 13
Slide 13 text
13
ίϯςφ࣌ͷWebαʔϏεج൫Ϟσϧ
ίϯςφ࣌ͷWebαʔϏεج൫Ϟσϧ - FastContainerͷݚڀൃදΛ͖ͯ͠·ͨ͠
https://rand.pepabo.com/article/2017/06/28/iot38-matsumotory/
← ͜͜Λߋʹਂ۷Γ
Slide 14
Slide 14 text
14
ίϯςφϥϯλΠϜͷϨΠϠʔϞσϧԽ
CRI
ίϯςφϥϯλΠϜ
ϥϯλΠϜ
্هͷΑ͏ʹఆٛ͞ΕΔ͜ͱ͕ଟ͍͕ɺ
ίϯςφϥϯλΠϜͷதʹruncͳͲͷ
ϥϯλΠϜ͕͋Δͱ͍͏ͷগ͠Θ͔
Γʹ͍͘ɻ
CRI
CRIϥϯλΠϜ
OCI
OCIϥϯλΠϜ
ίϯςφϥϯλΠϜ
ΛϥϯλΠϜͷׂ
ͰϨΠϠʔϞσϧԽ
CRIϥϯλΠϜͱOCIϥϯλΠϜͱఆٛ※1ɻ͜ͷ2ͭ
ͷϥϯλΠϜΛ·ͱΊͯίϯςφϥϯλΠϜͱ͢Δɻ
CRI : Container Runtime Interface
OCI: Open Container Initiative Runtime/Format Specification
※1 Google CloudͷIan LewisࢯCRIϥϯλΠϜΛHigh-Level RuntimeɺOCIϥϯλΠϜΛLow-Level Runtimesͱఆٛ
https://www.ianlewis.org/en/container-runtimes-part-1-introduction-container-r
Slide 15
Slide 15 text
15
ίϯςφपลͷجຊϨΠϠʔϞσϧ
ΦʔέετϨʔγϣϯ
CRI
CRIϥϯλΠϜ
OCI
OCIϥϯλΠϜ
ίϯςφ܈
CRIܦ༝ͰΦʔέετϨʔγϣϯʹجͮ
͖ίϯςφߏใΛड͚औͬͨΓίϯ
ςφΠϝʔδΛཧ͢ΔCRIϥϯλΠϜ
ʢcri-oɺcontainerdͳͲʣ
ίϯςφͷߏใΠϝʔδͳͲ͔Β
ίϯςφͷϦιʔεׂݖݶΛߦͬ
ͯίϯςφΛىಈͤ͞ΔOCIϥϯλΠϜ
ʢrunCɺrunscɺrunncɺrunVɺkata-
runtimeɺcc-runtimeͳͲʣ
Slide 16
Slide 16 text
16
ྫɿίϯςφपลͷجຊϨΠϠʔϞσϧ
kubelet
CRI
containerd
OCI
runC
ίϯςφ܈
ίϯςφͷߏใΠϝʔδͳͲ͔Β
ίϯςφͷϦιʔεׂݖݶΛߦͬ
ͯίϯςφΛىಈͤ͞ΔOCIϥϯλΠϜ
ʢrunCɺrunscɺrunncɺrunVɺkata-
runtimeɺcc-runtimeͳͲʣ
CRIͱOCIʹ४ڌ͍ͯ͠Εɺ
ΦʔέετϨʔγϣϯ
kubernetesΛ͍ͭͭɺ͖ʹ
CRIϥϯλΠϜOCIϥϯλΠϜ
Λஔ͖͑Մೳ
CRIܦ༝ͰΦʔέετϨʔγϣϯʹجͮ
͖ίϯςφߏใΛड͚औͬͨΓίϯ
ςφΠϝʔδΛཧ͢ΔCRIϥϯλΠϜ
ʢcri-oɺcontainerdͳͲʣ
Slide 17
Slide 17 text
Docker
17
ࢀߟɿίϯςφपลͷDockerϨΠϠʔϞσϧ
kubelet
CRI
containerd
OCI
runC
ίϯςφ܈
dockershim
جຊతͳϨΠϠʔϞσϧಉͩ͡
͕DockerΠϯλϑΣʔε͕શମΛ
แΜͰΦʔέετϨʔγϣϯʹ
แ͞Εͨdockershim͕Docker
ϨΠϠʔΛதܧ͢Δɻ
CRIϥϯλΠϜʹcontainerdɺ
OCIϥϯλΠϜʹrunC͕σϑΥ
ϧτͰΘΕΔɻ
Slide 18
Slide 18 text
18
ɾΦʔέετϨʔγϣϯk8s͕ελϯμʔυʹͳΓͭͭ͋Δ
ɾCRIͱOCIڞʹ४ڌ͖͢ඪ४༷
ɾίϯςφΛϔϏʔʹѻ͏߹ʹ؊ʹͳͬͯ͘Δཁૉͳʹ͔ʁ
ɾίϯςφͷݖݶɺϦιʔεɺେنରԠɺߴूੵϚϧνς
φϯτɺӡ༻ɾཧٕज़ɺίϯςφؒͷׯবΛ࠷খԽ
ɾίϯςφͷঢ়ଶมԽ(ఀࢭɾىಈɾෳɾҠಈ)ͷύϑΥʔϚϯε
ɾ͜ͷҙࣝ՝Ͳ͔͜طࢹײ͕͋Δ
CRI/OCIϥϯλΠϜͷߟ
Slide 19
Slide 19 text
19
ɾ1990͔ΒWebαʔόͷߴूੵϚϧνςφϯτʹ͓͍ͯɺಈతί
ϯςϯπ͕ීٴͯ͠ίϯςϯπ͕ϦονʹͳΓɺWebαʔόΛڞ༗
͠ͳ͕ΒϔϏʔ͔ͭࣗ༝ʹWebαʔό͕ΘΕΔΑ͏ʹͳͬͨ
ɾͦͷঢ়گԼͰɺ͍͔ʹηΩϡϦςΟΛ୲อ͠ͳ͕ΒੑೳΛҾ͖ग़͠
҆ఆԽͤ͞Δ͔ΛɺOSɾϛυϧΣΞͷ؍͔Βݚڀ։ൃ͖ͯͨ͠
࠶ܝɿത࢜՝ఔ࣌ͷ·ͱΊ
Slide 20
Slide 20 text
20
ɾ2010͔ΒίϯςφͷߴूੵϚϧνςφϯτʹ͓͍ͯɺDocker
͕ීٴ࣮ͯ͠ߦڥ͕ϦονʹͳΓɺΧʔωϧΛڞ༗͠ͳ͕Βϔ
Ϗʔ͔ͭࣗ༝ʹίϯςφ͕ΘΕΔΑ͏ʹͳ͍ͬͯ͘
ɾͦͷঢ়گԼͰɺ͍͔ʹηΩϡϦςΟΛ୲อ͠ͳ͕ΒੑೳΛҾ͖ग़͠
҆ఆԽͤ͞Δ͔ΛɺOSɾϋʔυΣΞͷ؍͔Βݚڀ։ൃ͍ͯ͘͠
࠶ܝɿത࢜՝ఔ࣌ͷ·ͱΊɹ͜Ε͔Β
Slide 21
Slide 21 text
ࢲ͕͜ͷྖҬΛݚڀ͢ΔͷࣗવͳྲྀΕ
Slide 22
Slide 22 text
22
࠶ܝɿίϯςφपลͷجຊϨΠϠʔϞσϧ
ΦʔέετϨʔγϣϯ
CRI
CRIϥϯλΠϜ
OCI
OCIϥϯλΠϜ
ίϯςφ܈
ίϯςφͷߏใΠϝʔδͳͲ͔Β
ίϯςφͷϦιʔεׂݖݶΛߦͬ
ͯίϯςφΛىಈͤ͞ΔOCIϥϯλΠϜ
ʢrunCɺrunscɺrunncɺrunVɺkata-
runtimeɺcc-runtimeͳͲʣ
CRIܦ༝ͰΦʔέετϨʔγϣϯʹجͮ
͖ίϯςφߏใΛड͚औͬͨΓίϯ
ςφΠϝʔδΛཧ͢ΔCRIϥϯλΠϜ
ʢcri-oɺcontainerdͳͲʣ
Slide 23
Slide 23 text
ίϯςφͷηΩϡϦςΟੑೳॾʑΛ࢘Δ
ͷOCIϥϯλΠϜ
Slide 24
Slide 24 text
ྺ࢙ʹֶ
OCIϥϯλΠϜ͕͘ͳ͍ͬͯͣ͘
Slide 25
Slide 25 text
࣮طʹΘΓͱ͍
Slide 26
Slide 26 text
26
ɾݖݶαϯυϘοΫεɺΧʔωϧͷ֤छڝ߹ͷӨڹ࠷খԽ
ɾϢʔβϥϯυͰͷϢχΧʔωϧʢϥΠϒϥϦOSʣͷΞϓϩʔν
ɾgVisor(runsc)ɺNabla Containers(runnc)ͳͲ
ɾΧʔωϧϋΠύʔόΠβɾϋʔυΣΞԾԽͷΞϓϩʔν
ɾKata Containers(kata-runtime)ɺHyper runV(runv)ɺClear
Containers(cc-runtime)ͳͲ
OCIϥϯλΠϜͷ༷ʑͳΞϓϩʔν
Slide 27
Slide 27 text
27
ɾOCIϥϯλΠϜWebαʔόͷݖݶੑೳͷྺ࢙Λײ͡Δ
ɾOSɾϛυϧΣΞͰ͍͖ͬͯͨ͜ͱΛϋʔυΣΞɾOSͰΔ
ɾPHPͷηʔϑϞʔυͷෳࡶ͞ʹࣅͨϢχΧʔωϧ
ɾݖݶͱίϯςφͷܰྔੑΛͲ͏ཱ྆͢Δ͔
ɾίϯςφ͕ϔϏʔʹѻΘΕͯΧʔωϧʹӨڹΛ༩͑ͳ͍҆ఆੑ
ɾোରԠͷӡ༻ٕज़Λߟྀͯ͠ϥϯλΠϜΛෳࡶʹ͗͢͠ͳ͍
͕OCIϥϯλΠϜΛݚڀ։ൃ͢Δͷࣗવ
Slide 28
Slide 28 text
28
ɾrunm(atsumotory)cΛݚڀ։ൃ͍ͯ͘͠
ɾϢχΧʔωϧͷαϯυϘοΫεԽͷෳࡶ͞Λγϯϓϧ͔ͭಈతʹ
ɾίϯςφͷঢ়ଶมԽΛۃྗߴʹ(FastContainerతͳํੑ[1])
ɾಛఆͷίϯςφ͕Χʔωϧʹڧ͘ׯব͢Δࡍͷڝ߹
ɾݖݶͱੑೳͷཱ྆Λঢ়گʹ߹ΘͤͯΧελϚΠζՄೳʹ
runmc͕׆༂͢Δະདྷ
[1] দຊ ྄հ, தా ༟و, ܀ྛ ݈ଠ, HTTPϦΫΤετ୯ҐͰΠϯελϯεͷ࠶ஔ͕ՄೳͳίετͰߴͳεέδϡʔϦϯάख
๏, ݚڀใࠂΠϯλʔωοτͱӡ༻ٕज़ʢIOTʣ, Vol.2018-IOT-42, pp.1-8, Jun 2018.
Slide 29
Slide 29 text
3.
·ͱΊ
Slide 30
Slide 30 text
30
ɾ৭ʑϓϩμΫτʹ͍ۙͱ͜ΖͰݚڀ։ൃΛ͖ͬͯͨ
ɾϓϩμΫτ࣮ફతͳγεςϜͷΛֶज़ݚڀʹམͱ͠ࠐΜͩ
ɾࠓޙҾ͖ଓ͖࣮ફͱΫϦΤΠςΟϏςΟΛཱ྆ͨ͠ݚڀΛ͢Δ
ɾྺ࢙ʹֶOCIϥϯλΠϜͷݚڀ։ൃ͕ॏཁʹͳͬͯ͘Δͣ
ɾOCIϥϯλΠϜ͕ࣗͷڵຯઐʹϐολϦ͍ͩ͠
ɾrunm(atsumotory)c
·ͱΊ