Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Haconiwa - mrubyによるLinuxコンテナランタイム / haconiwa-fu...

Avatar for KONDO Uchio KONDO Uchio
March 01, 2017
Technology
3
7.5k

Haconiwa - mrubyによるLinuxコンテナランタイム / haconiwa-fukuoka-ruby-award-presentation-2017

福岡Ruby大賞本審査資料 @ 2017/03/01

Avatar for KONDO Uchio

KONDO Uchio

March 01, 2017
Tweet

More Decks by KONDO Uchio

See All by KONDO Uchio
大規模レガシーテストを 倒すための CI基盤の作り方 / #CICD2023
Avatar for KONDO Uchio udzura
5
2.5k
Ruby x BPF in Action / RubyKaigi 2022
Avatar for KONDO Uchio udzura
0
280
Narrative of Ruby & Rust
Avatar for KONDO Uchio udzura
0
250
開発者生産性指標の可視化 / pepabo-four-keys
Avatar for KONDO Uchio udzura
3
1.8k
Talk of RBS
Avatar for KONDO Uchio udzura
0
480
Re: みなさん最近どうですか? / FGN tech meetup in 2021
Avatar for KONDO Uchio udzura
0
830
Dockerとやわらかい仮想化 - ProSec-IT/SECKUN 2021 edition -
Avatar for KONDO Uchio udzura
2
780
Device access filtering in cgroup v2
Avatar for KONDO Uchio udzura
1
980
"Story of Rucy" on RubyKaigi takeout 2021
Avatar for KONDO Uchio udzura
0
880

Other Decks in Technology

See All in Technology
マーケットプレイス版Oracle WebCenter Content For OCI
Avatar for oracle4engineer oracle4engineer
PRO
5
1.6k
茨城の思い出を振り返る ~CDKのセキュリティを添えて~ / 20260201 Mitsutoshi Matsuo
Avatar for SHIFT EVOLVE shift_evolve
PRO
1
400
AWS Network Firewall Proxyを触ってみた
Avatar for nagisa_53 nagisa53
1
240
生成AIと余白 〜開発スピードが向上した今、何に向き合う?〜
Avatar for KAKEHASHI kakehashi
PRO
0
150
~Everything as Codeを諦めない~ 後からCDK
Avatar for mu7889yoon / Yuta Nakamura mu7889yoon
3
500
AWS DevOps Agent x ECS on Fargate検証 / AWS DevOps Agent x ECS on Fargate
Avatar for Masanori Yamaguchi kinunori
2
140
生成AIを活用した音声文字起こしシステムの2つの構築パターンについて
Avatar for Kazuki Miura miu_crescent
PRO
3
220
ブロックテーマ、WordPress でウェブサイトをつくるということ / 2026.02.07 Gifu WordPress Meetup
Avatar for Toro_Unit (Hiroshi Urabe) torounit
0
200
コミュニティが変えるキャリアの地平線:コロナ禍新卒入社のエンジニアがAWSコミュニティで見つけた成長の羅針盤
Avatar for Kento Suzuki kentosuzuki
0
130
学生・新卒・ジュニアから目指すSRE
Avatar for Hiroya Onoe hiroyaonoe
2
760
SRE Enabling戦記 - 急成長する組織にSREを浸透させる戦いの歴史
Avatar for Masaki Ishigaki markie1009
0
170
SREじゃなかった僕らがenablingを通じて「SRE実践者」になるまでのリアル / SRE Kaigi 2026
Avatar for AEON aeonpeople
6
2.6k

Featured

See All Featured
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
Avatar for Sam Stephenson sstephenson
162
16k
Bioeconomy Workshop: Dr. Julius Ecuru, Opportunities for a Bioeconomy in West Africa
Avatar for AKADEMIYA2063 akademiya2063
PRO
1
55
Build your cross-platform service in a week with App Engine
Avatar for Jose L jlugia
234
18k
Documentation Writing (for coders)
Avatar for Carmen Chung carmenintech
77
5.3k
Paper Plane (Part 1)
Avatar for Katie Cordina Lindsey katiecoart
PRO
0
4.3k
Java REST API Framework Comparison - PWX 2021
Avatar for Matt Raible mraible
34
9.1k
The SEO identity crisis: Don't let AI make you average
Avatar for Varn varn
0
330
Reflections from 52 weeks, 52 projects
Avatar for Jefferson Lam jeffersonlam
356
21k
Self-Hosted WebAssembly Runtime for Runtime-Neutral Checkpoint/Restore in Edge–Cloud Continuum
Avatar for Yuki Nakata chikuwait chikuwait
0
340
[RailsConf 2023] Rails as a piece of cake
Avatar for Vladimir Dementyev palkan
59
6.3k
What does AI have to do with Human Rights?
Avatar for Per Axbom axbom
PRO
0
2k
Discover your Explorer Soul
Avatar for Emna emna__ayadi
2
1.1k

Transcript

  1. Haconiwa mrubyʹΑΔॊೈ͔ͭಈతͳɺOSSͷLinuxίϯςφϥϯλΠϜ Presentation by Uchio Kondo

  2. ൃදऀʹ͍ͭͯ • ۙ౻͏͓ͪ / GMOϖύϘٕज़ج൫νʔϜ ϓϦϯγύϧ • ग़਎͸౦ࡾՏɺݱࡏ෱Ԭࢢ಺ࡏॅ • ίϛϡχςΟ:

    Fukuoka.rb
 ·ͨɺRailsGirls Fukuoka #1 ΦʔΨφΠβʔ • RubyKaigi 2016 Speaker

  3. ΞδΣϯμ 1. ιϑτ΢ΣΞͷ֓ཁ 2. औΓ૊ΈͷಈػͳͲ 3. ιϑτ΢ΣΞͷಛ௃ɾ༏Ґੑ 4. ࣮੷ͱࠓޙʹ͍ͭͯ 5.

    ࢀߟࢿྉ

  4. ιϑτ΢ΣΞͷ֓ཁ

  5. Haconiwaͱ͸ʁ • LinuxίϯςφͷϥϯλΠϜͰ͋Δ • Linuxίϯςφͱ͸...LinuxͷΧʔωϧͷ༷ʑͳػೳΛ༻͍ ͯಠཱͨ͠ҰछͷԾ૝؀ڥΛ࡞Δٕज़ • ϥϯλΠϜͱ͸...ͦͷԾ૝؀ڥΛ࡞੒͠ɺ্ཱͪ͛ɺϥΠ ϑαΠΫϧΛ؅ཧ͢Διϑτ΢ΣΞ

  6. Haconiwa͸Ͳ͏͍͏ϥϯλΠϜ͔ • LinuxίϯςφϥϯλΠϜʹ͸ɺޙड़͢Δ௨Γઌߦ࣮૷͕ ͍͔ͭ͘ଘࡏ͢ΔʢLXC, Docker, rkt, ...ʣɻ • Haconiwa͸ɺLinuxίϯςφϥϯλΠϜͷதͰ΋ɺ Ruby(mruby)ͷεΫϦϓτʹΑͬͯConfiguration

    as Code Λ࣮ݱ͢Δ
 ʢॊೈͳઃఆͷهड़ɺϑοΫͷهड़ͳͲʣ

  7. औΓ૊Έͷಈػ

  8. ݩʑͷಈػ • ͍ΘΏΔSaaSαʔϏε(*)ͷ։ൃɾӡ༻ͷܦݧ্ɺ಺෦Ͱ ར༻͍ͯ͠ΔίϯςφϥϯλΠϜ࣮૷ʹෆ଍Λײ͡ɺࣗ෼ ͷඞཁͱ͢ΔػೳΛ࣮૷ͨ͠΋ͷΛ࡞ͬͨɻ • ϗεςΟϯάܥαʔϏεͷதͰ࢖͏ͷ͕ͦ΋ͦ΋ͷಈػ • RubyKaigi 2016ͷCFPʹԠื͠ɺ௨աͨ͜͠ͱ΋͖͔ͬ

    ͚ͷҰͭ (*) http://sqale.jp/

  9. ։ൃͷաఔͰͷؾ͖ͮ • Πϯλʔωοτ͕େ͍ʹීٴ͠ɺ΢ΣϒαΠτ΁ͷΞΫηεٸ ૿ͳͲʹର͢ΔॊೈͳαʔόϦιʔεͷίϯτϩʔϧ͕՝୊ͱ ͳ͍ͬͯΔɻ • KubernetesͳͲͷ஫໨౓΋͋Δ௨ΓɺίϯςφԾ૝Խٕज़ʹ͓ ͚Δٕज़ֵ৽ʹظ଴͕͋Δ • ͦ͏͍ͬͨഎܠΛ౿·͑ɺΑΓ൚༻తͳίϯςφϥϯλΠϜʹ

    ͢΂͘։ൃΛଓ͚͍ͯΔ

  10. Rubyͷ࠾༻ಈػ • ։ൃͷ౰ॳ͔ΒɺʮॊೈͰϓϩάϥϚϒϧʯͳ͜ͱΛ૝ఆ • PaaS಺෦ͰͷϦιʔεׂΓ౰ͯɺΞΫηεٸ૿࣌ͷϦιʔ εͷߜΓࠐΈɺFastContainer(*)ͳͲ৽ΞʔΩςΫνϟ΁ ͷରԠ • ͦ͏͍ͬͨ໨తʹRuby͸ඇৗʹ޲͍͍ͯΔ (*)

    http://hb.matsumoto-r.jp/entry/2016/11/11/234915

  11. RubyͷϝϦοτ ͦͷ1 • ಺෦DSLͱͷ૬ੑͷྑ͞
 ίϯςφهड़ݴޠ͸ɺઃఆͱϓϩάϥϜͷͪΐ͏Ͳதؒ • namespace/cgroup/capabilityͳͲͷࢦఆʹઃఆ • ίϯςφىಈ࣌ͷಉظ/ඇಈػͷϑοΫɺγάφϧϋϯυϥ
 ʹϓϩάϥϜ

    • Rubyͷจ๏Ͱ͋Ε͹ɺ಺෦DSLͱͯ͠౷Ұతʹهड़Մೳ

  12. RubyͷϝϦοτ ͦͷ2 • mruby͸૊ΈࠐΈʹ޲͍ͨɺચ࿅͞ΕͨCͷAPIΛ࣮૷͍ͯ͠ Δɻͦͷ෭࢈෺ͱͯ͠ɺCݴޠΛܦ༝ͨ͠γεςϜίʔϧͷόΠ ϯσΟϯά͕ඇৗʹॻ͖΍͘͢ͳ͍ͬͯΔ • ·ͨɺΞΫηε͢ΔͨΊͷίʔυྔ΋Cͱͯ͠͸খ͘͞ࡁΉ • ࣮੷ͱͯ͠ɺ༷ʑͳmruby

    gemΛ࡞੒ࡁΈ:
 ɹcgroup, capability, linux namespace, seccomp...

  13. ιϑτ΢ΣΞͷ ಛ௃ɾ༏Ґੑ

  14. طଘ࣮૷ʹൺ΂ͨ༏Ґੑ - ॊೈੑ • ྫ͑͹Dockerͱൺ΂ͯ: • Docker͸Ծ૝؀ڥͱͯ͠ͷಠཱੑΛॏࢹͨ݁͠Ռɺີ݁߹ͷ ίϯςφͰ͋Δ • ҰํͰHaconiwa͸ɺඞཁͳίϯϙʔωϯτΛ૊Έ߹Θͤɺঢ়

    گʹԠͯ͡ແޮԽ͢Δ͜ͱ͑͞Ͱ͖·͢ɻྫ͑͹ىಈ࣌ͷΦʔ όϔουͷ࡟ݮͳͲɺΑΓଟ͘ͷ༻్ʹίϯςφΛར༻Ͱ͖Δ

  15. طଘ࣮૷ʹൺ΂ͨ༏Ґੑ - ಈతͳੑ࣭ • ྫ͑͹LXCͱൺ΂ͯ: • LXC΋APIΛ࣋ͪɺόΠϯσΟϯάΛ࡞੒Ͱ͖Δɻ͔ͦ͠͠ͷAPI ͸ىಈɺఀࢭͳͲɺݶఆతͳૢ࡞ͷΈ • ҰํͰHaconiwa͸ɺίϯςφʹؔ͢Δઃఆ஋͸Ұ௨Γ͢΂ͯ

    DSLͰઃఆՄೳɻͳ͓͔ͭɺىಈͷ༷ʑͳλΠϛϯάͰ͋ͬͨ Γɺ͋Δ͍͸γάφϧϋϯυϥ΍ɺىಈޙͷඇಉظతϑοΫॲཧ ΋αϙʔτ͢ΔͨΊɺΑΓϓϩάϥϜͳͲͰͷ੍ޚ͕༰қͰ͋Δ

  16. طଘ࣮૷ʹൺ΂ͨ༏Ґੑ - อकੑ • ྫ͑͹rkt(CoreOS)/Kubernetesͱൺ΂ͯ: • rkt͸ଟ͘ͷઃఆΛαϙʔτ͢Δ͕ɺίϚϯυϥΠϯΦϓγϣ ϯͰͷड͚ೖΕͱͳΔ
 Kubernetes͸ΦʔέετϨʔγϣϯπʔϧ͕ͩɺHaconiwaͷ ໨ࢦ͢ํ޲ੑʹ͍ۙ΋ͷ͕͋Δɻ


    ҰํͰɺઃఆ͸ڊେͳyamlϑΝΠϧͷΈ

  17. طଘ࣮૷ʹൺ΂ͨ༏Ґੑ - อकੑ • ʢঝલʣॊೈͰෳࡶͳίϯςφઃఆɺ͋Δ͍͸ΦʔέετϨʔ γϣϯ૚ͱͷ࿈ܞΛߟ͑ΔͱɺͦΕΒͷઃఆ΍ಈ࡞ΛRuby ͷΑ͏ͳݴޠͰهड़ͨ͘͠ͳΔ͜ͱ͕ߟ͑ΒΕΔɻ • HaconiwaͷΑ͏ʹઃܭࢥ૝ͷஈ֊ͰDSLʹΑΔ੍ޚΛα ϙʔτͨ͠ίϯςφ͸ɺͦ͏͍ͬͨཁ๬Λड͚ࢭΊΒΕΔɻ


    RubyΛ࠾༻͍ͯ͠ΔͷͰֶश͠΍͢͞/Մಡੑ΋ߴ͍

  18. ֵ৽ੑʹ͍ͭͯ • ઌड़ͨ͠Α͏ʹɺHaconiwa͸DSLΛࠜຊͱͨ͠ॊೈੑɺ ಈతੑΛ࣮ݱ͍ͯ͠Δ • ͦͷ݁ՌɺʮίϯςφʯΛݻఆతͳԾ૝؀ڥͰ͸ͳ͘ɺ
 ϓϩάϥϜͰ੍ޚ͕ՄೳͳεϨουతͳ΋ͷ΁ͱൃలͤ͞ ͏Δɺͱߟ͑Δ

  19. HaconiwaͷγεςϜίʔϧతଆ໘ • ίϯςφ࣮ߦج൫ͱͯ͠ɺOSͷू߹ମΛҰͭͷʮOSʯɺ ͋Δ͍͸ϦιʔεͷϓʔϧͱΈͳ͢ͱɺίϯςφͷάϧʔ ϓ͕ϓϩηεతɺίϯςφҰͭҰͭ͸εϨουతͳɺ͋Δ छ࢖͍ࣺͯͷαϒϧʔνϯͱ؃၏ͤΔ • ͦ͏ߟ͑ΔͱɺͦͷίϯςφΛࣗ༝ࣗࡏʹ࡞੒ɺΞΫηε Ͱ͖ΔHaconiwaͷ಺෦API͸ɺγεςϜίʔϧతͰ͋Δ

  20. • චऀൃදʮHaconiwaͷத਎ͱઃܭࢥ૝ʯp. 36

  21. “Haconiwa API”ͷҰ࣮૷͕Haconiwa • c.f. specinfra/Serverspec • ʮHaconiwaͷ಺෦APIʯΛΑΓ൚༻తʹൈ͖ग़͢ͱɺ Haconiwaࣗ਎ͷଞʹɺίϯςφΛར༻༷ͨ͠ʑͳϛυϧ ΢ΣΞΛ࡞Δ͜ͱ͕Ͱ͖ΔͷͰ͸ͳ͍͔

  22. ࣮੷ͱࠓޙͷల๬

  23. ٕज़ൃදଞɺ࣮੷ʹ͍ͭͯ • RubyKaigi 2016ɺ໊ݹ԰Rubyձٞ03Λ࢝ΊɺRubyίϛϡ χςΟத৺ʹHaconiwaʹؔ͢ΔτʔΫΛॏͶ͍ͯΔஈ֊ • ଞɺ஫໨౓ͱͯ͠͸ɺGitHubͷϓϩδΣΫτͷ
 ελʔ਺͕97 (2017೥2݄22೔ݱࡏ)

  24. ࠓޙʹ͍ͭͯ 1 • ઌड़ͨ͠ίϯςφ࣮ߦج൫ͱͯ͠ͷOSΫϥελͷൃ૝Λ͞Βʹਐ Ίͨɺদຊ྄հࢯͷFastContainerߏ૝(*)Λ౿·͑ɺॴଐձࣾͰ
 ϗεςΟϯάܥWebαʔϏεͷ։ൃΛਐΊ͍ͯΔஈ֊Ͱ͋Δ • FastContainerͷΑ͏ͳੜଘظؒͷίϯτϩʔϧ͞Εͨίϯςφ ͸Haconiwaͱ૬ੑ͕͍͍ •

    ྫ͑͹ɺʮαʔόϨεΞʔΩςΫνϟʯͷ࣮ݱʹ޲͍͍ͯΔ

  25. • ʮFactContainerΞʔΩςΫνϟ֓࿦ʯΑΓ

  26. ࠓޙʹ͍ͭͯ 2 • ίϯςφϥϯλΠϜͱͯ͠ͷ׬੒౓ͷ޲্Λ໨ࢦ͢ • ۩ମతʹ͸ɺseccomp/apparmorͱ͍ͬͨηΩϡϦςΟؔ ܎ͷAPIͷαϙʔτ΍ɺCRIUͱ͍ͬͨίϯςφىಈͷߴ଎ Խʹ໾ཱٕͭज़ͱͷ࿈ܞΛߟ͍͑ͯΔ • ಉ࣌ʹυΩϡϝϯτͷॆ࣮΋......͍ͨ͠

  27. ૯ׅ

  28. Haconiwaͷ·ͱΊ • Haconiwa͸ɺྨࣅͷ࣮૷ͱൺ΂ͯඇৗʹಈతͰॊೈͳίϯςφΛ࡞੒ Ͱ͖ΔϥϯλΠϜͰ͋Γɺͦͷ࣮ݱͷͨΊʹRuby/mrubyͷੑ࣭Λ׆༻ ͍ͯ͠Δɻ • Haconiwa͸ɺίϯςφ࣮૷ج൫ͷOSͷΫϥελΛͻͱ·ͱ·ΓͷOS ͱΈͳ͢ͱɺҰछͷγεςϜίʔϧͱߟ͑Δ͜ͱ΋Ͱ͖Δ • ্ड़ͨ͠Α͏ͳHaconiwaͷಛ௃Λ׆༻͠ɺ࣍ੈ୅తͳϗεςΟϯάܥ

    ͷαʔϏεΛߟҊɾ։ൃ͍ͯ͠Δ

  29. ࢀߟࢿྉ

  30. ࢿྉҰཡ 1. Haconiwaʹؔ͢Δࢿྉ
 The introduction of mRuby on Container https://speakerdeck.com/udzura/mruby-on-container


    Haconiwaͷ͜Ε·Ͱͱ͜Ε͔Β https://speakerdeck.com/udzura/haconiwa-on-the-pavement
 Haconiwa ͷத਎ͱઃܭࢥ૝ https://speakerdeck.com/udzura/the-haconiwa-internals 2. FastContainer/DAOSߏ૝ʹ͍ͭͯ
 FastContainerΞʔΩςΫνϟ֓࿦ https://speakerdeck.com/matsumoto_r/reactive-stateless-and-mortal- architecture-for-web-applications
 ະདྷͷαʔόج൫΁ͷHaconiwa/mrubyͷؔΘΓ https://speakerdeck.com/udzura/haconiwa-and-future-os 3. Serverspecͱspecinfraʹ͍ͭͯ
 ࠷ॳͷݴٴ https://github.com/mizzy/serverspec-thesis/pull/13#issuecomment-32700180 4. αʔόϨεΞʔΩςΫνϟʹ͍ͭͯ
 http://www.publickey1.jp/blog/16/qcon_tokyo_2016.html