Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Whitebox Controller

Moto Ishizawa
April 22, 2019
Technology
5
1.6k

Whitebox Controller

Introducing Whitebox Controller.

Moto Ishizawa

April 22, 2019
Tweet

More Decks by Moto Ishizawa

See All by Moto Ishizawa
カンムにおけるプロダクトセキュリティのこれまでとこれから
summerwind
1
1.7k
Sharing test cases of internet protocols with Go and OCI Artifacts
summerwind
0
480
Using Thanos as a long-term storage for your Prometheus metrics
summerwind
1
9.9k
Using Kubernetes as a datastore for SPIRE
summerwind
1
780
Managing Kubernetes manifests with Spruce
summerwind
2
3.7k
Understanding HTTP/2 prioritization
summerwind
17
5.5k
HTTP/2 Deep Dive: Priority & Server Push
summerwind
17
3.1k
HTTP/2 Server Push Considered Harmful
summerwind
1
1.9k
Implementing HTTP/2 client in 60 minutes
summerwind
3
2.3k

Other Decks in Technology

See All in Technology
Oracle Database Technology Night #67 Oracle Database High Availability concept
oracle4engineer
PRO
0
510
監視からオブザーバビリティへ〜オブザーバビリティの成熟度/From Monitoring to Observability - Maturity of Observability
newrelic2023
0
440
ジェネレーティブAIとの共創
yuyakakizaki08
1
310
時系列データをChatGPTで読み解いてみる【IoT-Tech Meetup】
soracom
PRO
0
510
バクラクのAI-OCR機能の体験を支える良質なデータセット作成の仕組み / data-centric-ai-bakuraku-dataset
yuya4
1
130
NestJS をかじってみた / MIERUNE BBQ #01 / #mierune
tacck
0
150
C# の async/await は実際にどうやって動いているか
nenonaninu
3
10k
Semantic KernelでGPTと外部ツールを連携する
takashi1029
1
820
高さ比べじゃない、キャリアは歩んできた道
dzeyelid
0
220
Save the state
keithyokoma
0
220
2023.06.01_LangChain/Llamaindex/Whisperを使ったアプリケーション開発のまとめと展望
pharma_x_tech
0
130
Datadogで実現するセキュリティ オブザーバビリティ
taka2noda
1
160

Featured

See All Featured
Adopting Sorbet at Scale
ufuk
66
8k
Stop Working from a Prison Cell
hatefulcrawdad
264
18k
The Straight Up "How To Draw Better" Workshop
denniskardys
226
130k
Fontdeck: Realign not Redesign
paulrobertlloyd
74
4.5k
Raft: Consensus for Rubyists
vanstee
130
5.8k
jQuery: Nuts, Bolts and Bling
dougneiner
57
6.7k
Navigating Team Friction
lara
177
12k
Building Effective Engineering Teams - LeadDev
addyosmani
5
590
Optimizing for Happiness
mojombo
366
66k
Scaling GitHub
holman
453
140k
Making Projects Easy
brettharned
102
5k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
123
29k

Transcript

  1. Whitebox Controller
    Extensible generic controller for Kubernetes
    Moto Ishizawa
    @summerwind Kubernetes Meetup Tokyo #18

    View Slide

  2. View Slide

  3. View Slide

  4. Implementing controller is hard…

    workqueue
    informers
    controller-tools
    controller-runtime
    reconciliation loop
    Golang
    controller-gen
    admission webhook
    owner reference
    vendor
    metav1
    apimachinery
    CustomResourceDefinition
    finalizer
    client-go corev1

    View Slide

  5. • Allow to make a controller without specific knowledges
    • Allow to implement a controller in familiar programming languages
    • Allow to validate new controller ideas more quickly
    Motivation

    View Slide

  6. Whitebox Controller
    • https://github.com/summerwind/whitebox-controller
    • Extensible generic controller for Kubernetes
    • It is possible to replace “reconciler” with any command or HTTP server
    • Very similar to Metacontroller, but executes command
    • Just like "Whitebox Switch" but it is for Kubernetes controller

    View Slide

  7. Extensible reconciler

    View Slide

  8. Whitebox Controller
    Managing resource state
    Exec hander
    Command
    {
    "object": {
    "apiVersion": "example.dev/v1alpha1",
    "kind": "Issue",
    "metadata": {
    "name": "example",
    "namespace": "default"
    },
    "spec": {
    "title": "Hello World!",
    "body": "This is an example."
    }
    }
    }
    Request

    (stdin)
    {
    "object": {
    "apiVersion": "example.dev/v1alpha1",
    "kind": "Issue",
    "metadata": {
    "name": "example",
    "namespace": "default"
    },
    "spec": {
    "title": "Hello World!",
    "body": "This is an example."
    },
    "status": {
    "url": "https://github.com/...",
    "creationTime": 12345
    }
    }
    }
    Response

    (stdout)

    View Slide

  9. Implementing controller in bash (1)
    controllers:
    - name: issue-controller
    resource:
    group: example.summerwind.dev
    version: v1alpha1
    kind: Issue
    reconciler:
    exec:
    command: ./reconcile.sh
    timeout: 60s
    debug: true
    Create the configuration file for Whitebox Controller.
    config.yaml

    View Slide

  10. Implementing controller in bash (2)
    #!/bin/bash
    # Read current state from stdio.
    state=$(cat -)
    # Do something based on the state.
    url=$(echo "${state}" | jq -r ".object.status.url|select (.!=null)")
    if [ "${url}" == "" ]; then
    url=$(create_issue "${state}")
    fi
    # Update state.
    updated_state=$(echo "${state}" | jq -r ".object.status.url = \"${url}\"")
    # Write updated state to stdout.
    echo "${updated_state}"
    Write your reconciler in bash.
    reconcile.sh

    View Slide

  11. Implementing controller in bash (3)
    $ whitebox-gen manifest -c config.yaml | kubectl apply -f -
    customresourcedefinition.apiextensions.k8s.io "issue.example.summerwind.dev" created
    Generate and apply CRDs.

    View Slide

  12. Implementing controller in bash (4)
    $ whitebox-controller -c config.yaml

    {"level":"info","ts":1555560138.050401,"logger":"controller-
    runtime.controller","msg":"Starting workers","controller":"issue-controller","worker
    count”:1}
    Run whitebox-controller command.

    View Slide

  13. …and more!
    • Handler for finalizer
    • Handler for validation webhook
    • Handler for mutation webhook
    • Handler for injection webhook (Experimental resource injection endpoint)
    • Observer mode (“watch” only reconciler)
    • Periodic state sync

    View Slide

  14. Thank you!

    View Slide