Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Speaker Deck
PRO
Sign in
Sign up
for free
最近のLinuxコンテナの進化 / TechFeed Summit #3
tenforward
August 20, 2020
Technology
3
710
最近のLinuxコンテナの進化 / TechFeed Summit #3
TechFeed Summit #3 中の LT 資料です。
tenforward
August 20, 2020
Tweet
Share
More Decks by tenforward
See All by tenforward
tenforward
9
2.4k
tenforward
0
270
tenforward
1
320
tenforward
2
400
tenforward
3
400
tenforward
27
7.2k
tenforward
2
550
tenforward
7
3.4k
tenforward
22
7.9k
Other Decks in Technology
See All in Technology
mito201
0
370
enkuma
0
280
sugarcrm
PRO
0
160
kken78
0
140
kelvinksps
1
120
oracle4engineer
PRO
0
290
soracom
PRO
0
200
ikkou
0
150
iketomo1207
0
210
nwiizo
3
2.2k
emiki
2
210
gakumura
0
120
Featured
See All Featured
imathis
482
150k
mza
82
4.3k
garrettdimon
291
110k
skipperchong
13
920
scottboms
253
11k
chrislema
231
16k
roundedbygravity
247
21k
qrush
287
19k
kneath
297
39k
ufuk
60
7.1k
brettharned
96
3.2k
bryan
104
11k
Transcript
࠷ۙ〣 Linux ぢアふべ〣ਐԽ TechFeed Summit #3 Ճ౻ହจ 2020-08-20 1/9
ࣗݾհ • TenForward(@ten_forward) / Ճ౻ହจ • linuxcontainers.org 〹 LXC/LXD ؔ࿈〣༁
• LXC 〜ֶ〫ぢアふべೖ ʵܰྔԾԽڥぇ࣮ݱ『ٕज़ • Plamo Linux ゐアふべが 2/9
Linux 〣ʮぢアふべʯ〝⿶⿸ݬӨ Linux 〠⿼々ʮぢアふべʯ • Linux kernel 〠ʮぢアふべʯ〝⿶⿸ػೳ〤⿴〿〳【えʢաڈ〠ʮぢアふべʯざゅでこぜぷ ⿿ఏҊ《ぁ〔〈〝〤⿴〿〳『ʼࠓ〣ॴ٫Լ《ぁ〛〳『ʣ •
৭ʑ〟ػೳ〣〴߹い【〜ʮぢアふべʯ⿿〜 〛⿶〳『 • ʮぢアふべʯ〝〤Կ〾⿾〣ܗ〜りとぷ〹ଞ〣ʮぢアふべʯ⿾〾のとぜ〹のとぜび゙がぇִ 「〛⿶〳『ʢݟ〔〜〷ɺ゙ぬがとফඅ〣໘〜〷ʣ Linux 〜ʮぢアふべʯぇߏங『ػೳ〣ද • NamespaceʢKubernetes 〣〒ぁ〝〤ؔ⿴〿〳【えʣ • cgroup 〒〣ଞ৭ʑ〟ػೳ〣〴߹い【〜ʮぢアふべʯ〝⿶⿸ܗ〣〟⿶〷〣⿿〜 ⿴⿿〘〛⿶〳『ɻ〒〣 ଟ〣ػೳ〣࠷ۙ〣ߋ৽ぇհ「〳『ɻ 3/9
2013 ɾDocker ݩ 〳』〤গ「લ〣ྺ࢙⿾〾ʜ • 2013 〤 Docker ݩ〜⿴〝ಉ࣌〠 Linux
じがぼ゚〠ぢアふべؔ࿈〣ओཁ〟ػೳ⿿ ଗ〘〔〜「〔ʢ〷⿸ 7 લ!!ʣ • 〒〣ޙ〷 Linux じがぼ゚〠〤〴〟《え〠〝〘〛ॏཁ〕〘〔〿ɺ〒⿸〜〷〟⿾〘〔〿『ػ ೳ⿿Ճ《ぁଓ々〛⿶〳『 4/9
User Namespace 〈〣ػೳ〣〜ɺݱࡏいぁ〛⿶ぢアふべ〣ओཁػೳ⿿〰〱ଗ⿶〳「〔: • root Ҏ֎〣ゕがづが〜ぢアふべぇىಈ〜 ػೳʢrootlessʣ • ࣮։࢝⿿ 2007 〜⿿
2013 !! • 〈ぁ⿿〟⿶〝ʮぢアふべ〣 root=りとぷ〣 rootʯ〜『〽ɻةݥ〟߳〿 5/9
Overlayfs • Docker 〣やきぐ゚てとふわ〣ずゑ〤゛ぐんがߏ • ゙゙がとॳ〣 Docker 〤 aufs 〝⿶⿸じがぼ゚〠ろがで《ぁ〛⿶〟⿶゛ぐんがへ〟やき
ぐ゚てとふわલఏ〜「〔 • 3.18 じがぼ゚ʢ2014 ʣ〠 Overlayfs ⿿ろがで《ぁɺじがぼ゚ඪ४〣゛ぐんがへ〟 やきぐ゚てとふわ⿿⿺〽⿸〠〟〿〳「〔 6/9
cgroup v2 • 4.5 じがぼ゚ʢ2014 ʣ〠ਖ਼ࣜ〠ろがでʢstable 〟ػೳ〠ʣ • ࠓ〜〷やびが〠いぁ〛⿶ cgroup
v1 ⿿⿴〣〠〟え〜〈え〟ػೳ։ൃ「〔〣? • cgroup v1 ⿿ろがで《ぁ〔ࠒ〤ʮぢアふべべぺぬ゛ʁʯ〟࣌ظ〜「〔 • ࠓޙ〤ঃʑ〠〈〖〾〠Ҡߦ『〤』ɻv1 ⿿࣋〘〛⿶〔৭ʑ〟⿿ղܾ《ぁ〛⿶〳『 7/9
࠷ۙ〣ߋ৽ ʮ࠷ۙʯ〝ݴ〘〛〷 CloudNative ք۾〣࣌ؒ〣ྲྀぁ⿾〾『〝⿶⿾〷?ʢେମ 2017 Ҏ߱ 〣⿼ʣ • ぢアふべ〣ོぇ 〘⿾々〠ぢアふべؔ࿈〣ػೳ〕々〜〟。ɺぢアふべҎ֎〜〷いぁػ ೳ〠վྑ⿿ࢪ《ぁ〛⿶〳『
• ぢアふべؔ࿈ • cgroup Namespace • ඇಛݖぢアふべ〜やきぐ゚てとふわろげアぷʢぶみぐとやきぐ゚〷࡞ぁ〽⿸〠〟〿〳「〔ʣ • ⿶ 〟〿త〣 cgroup 〠ゆ゜なとぇॴଐ《【〾ぁ〽⿸〠〟〘〔 • Time Namespace • ぢアふべҎ֎〜〷Մೳੑ⿿⿿ • PSIʢゐゑ゙ɺCPUɺI/O 〟〞〣゙ぬがと〣ඡഭ߹⿶ぇ؍ଌʣˡ〒〷〒〷 cgroup 〤ぢアふべ Ҏ֎〜〷〙⿾⿺ • pidfdʢPID 〣〘〛্ݶ⿿⿴〘〛্ݶ〠ୡ「〔ޙ〤࠶ར༻《ぁ〳『ʣ 8/9
〳〝〶 ݁ہԿ⿿ݴ⿶〔⿶〣? ˠ Linux ぢアふべ〣৽ػೳぇ〘⿾々〣〘〛ʜ • ৽「⿶ػೳぇࢼ『〣〘〛ָ「⿶〜『〽〢ʂʢˡҰ൪ॏཁʣKubernetes 〣৽ػೳぇࢼ『〣 〷ָ「⿶々〞じがぼ゚〣৽ػೳࢼ『〣〷⿼〷「あ⿶〜『〽ʂ •
Docker 〹 Kubernetes 〜ઃఆ〜 〜〷みひぜごアへ〜〞〣〽⿸〠ઃఆ《ぁ〛⿶ ⿾ʁ ઃఆ〣《ぁํぇཧղ『〈〝〜ޮՌత〠ઃఆぇར༻〜 〤』ʢ〈⿸⿶⿸੍ݶ⿿⿴ ⿾〾〈え〟ઃఆ「〛〷ҙຯ⿿〟⿶〽ʁ 〝⿾ʣ • Docker 〹 Kubernetes 〜৽ػೳ⿿࣮《ぁ〔⿴⿾〙 〠〤ਅ〘ઌ〠ʮ〒〣ҙຯぇཧղ「 〟⿿〾ʯ৽ػೳぇࢼ【ʢՄೳੑ⿿⿴〿〳『ʣʂ એ • じがぼ゚〣৽ػೳ〤ਅ〘ઌ〠 LXC/LXD 〠࣮《ぁʢ〈〝⿿ଟ⿶ʣ〣〜ɺLXC/LXD ぇ ⿼〘⿾々〣〤ָ「⿶〜『〽 • ࠷৽ػೳぇ⿼〘⿾々جૅࣝぇ〙々〔〶〠〷 gihyo.jp 〜࿈ࡌத〣ʮLXC 〜ֶ〫ぢア ふべೖʯぇ〽あ「。〜『 9/9
tenforward
mito201
enkuma
sugarcrm
kken78
kelvinksps
oracle4engineer
soracom
ikkou
iketomo1207
nwiizo
emiki
gakumura
imathis
mza
garrettdimon
skipperchong
scottboms
chrislema
roundedbygravity
qrush
kneath
ufuk
brettharned
bryan
