Podman with WebAssembly

Transcript

1. Podman with WebAssembly
 Toru Komatsu(@utam0k)

2. 2 Preferred Networks, Inc. 社内向けオンプレML基盤の開発‧運⽤ OSS Activities as My Hobby

   Maintainer opencontainers/runtime-spec containers/youki Reviwer containerd/runwasi CNCF Ambassador Fall 2023 @utam0k Toru Komatsu

3. 3 Preferred Networks, Inc. 社内向けオンプレML基盤の開発‧運⽤ OSS Activities as My Hobby

   Maintainer opencontainers/runtime-spec containers/youki Reviwer containerd/runwasi CNCF Ambassador Fall 2023 @utam0k Toru Komatsu

4. Podman with WebAssembly


5. Let’s try anyway 5 00

6. Preparing for hello world in WebAssembly
 $ cargo new hello

   && cd hello $ cargo build --target wasm32-wasi $ cp target/wasm32-wasi/debug/hello.wasm .

7. Preparing for a hello world in WebAssembly
 $ cargo new

   hello && cd hello $ cargo build --target wasm32-wasi $ cp target/wasm32-wasi/debug/hello.wasm . $ file hello.wasm hello.wasm: WebAssembly (wasm) binary module version 0x1 (MVP) $ ./hello.wasm zsh: exec format error: ./hello.wasm $ wasmedge hello.wasm Hello, world!

8. Preparing Dockerfile
 $ cargo new hello && cd hello $

   cargo build --target wasm32-wasi $ cp target/wasm32-wasi/debug/hello.wasm . $ file hello.wasm hello.wasm: WebAssembly (wasm) binary module version 0x1 (MVP) $ ./hello.wasm zsh: exec format error: ./hello.wasm $ wasmedge hello.wasm Hello, world! $ cat Dockerfile FROM scratch COPY hello.wasm / ENTRYPOINT ["/hello.wasm"]

9. Building container images for Wasm
 $ buildah build --annotation "module.wasm.image/variant=compat"

   -t hello-wasm . STEP 1/3: FROM scratch … snip … Successfully tagged localhost/hello-wasm:latest ca9fbef8860afe406c2ca37841f05c0def1ad23dde427fd06b2d5dda979cb58f

10. Run
 $ buildah build --annotation "module.wasm.image/variant=compat" -t hello-wasm . STEP

    1/3: FROM scratch … snip … Successfully tagged localhost/hello-wasm:latest ca9fbef8860afe406c2ca37841f05c0def1ad23dde427fd06b2d5dda979cb58f $ podman run -it localhost/hello-wasm:latest Hello, world!

11. Check if Podman Supports Wasm Execution
 $ podman info |

    grep -A 9 ociRuntime ociRuntime: name: crun package: 'crun: /usr/bin/crun' path: /usr/bin/crun version: |- crun version 1.11.2.0.0.0.9-e079 commit: e079a879a3f37b33d2a0f33289adc8902c144fb8 rundir: /run/crun spec: 1.0.0 +SYSTEMD +SELINUX +APPARMOR +CAP +SECCOMP +EBPF +WASM:wasmedge +YAJL $ # If your environment doesn’t meet, please refer to https://wasmedge.org/docs/develop/deploy/oci-runtime/crun/#prerequisites

12. Spoiler - ネタバレ -
 $ cat Dockerfile FROM docker.io/wasmedge/slim:0.13.5 COPY

    hello.wasm / ENTRYPOINT ["wasmedge", "/hello.wasm"]

13. Spoiler - ネタバレ -
 $ cat Dockerfile FROM docker.io/wasmedge/slim:0.13.5 COPY

    hello.wasm / ENTRYPOINT ["wasmedge", "/hello.wasm"] $ buildah build -t hello-wasmedge . STEP 1/3: FROM docker.io/wasmedge/slim:0.13.5 … snip … Successfully tagged localhost/hello-wasmedge:latest f1afe57d5771f82467ea4f23857dc6622faecba8d54fec335e97a06974c9be6e $ podman run -it --rm localhost/hello-wasmedge:latest Hello, world!

14. WebAssembly in Container 14 01

15. Linux etc…
 Container Runtime High-Level Low-Level OCI Runtime Spec Typical

    Workflow of Container Execution
 15

16. Linux etc..
 Container Runtime Low-Level OCI Runtime Spec Workflow of

    Podman Execution
 16

17. Linux etc..
 Container Runtime Low-Level OCI Runtime Spec Default Low-Level

    Runtime of Podman
 17

18. Linux etc..
 Container Runtime Low-Level OCI Runtime Spec Workflow of

    Executing Wasm in Podman
 18

19. History of WebAssembly Support in Low-Level Runtime 19 off-topic

20. WasmEdge Actively Begins Engagement in Low-Level Runtime Development crun second-state/crunw#6

    Nov 8, 2021 containers/cun#774#6 Nov 8, 2021 youki WasmEdge/WasmEdge#664 Nov 19, 2021 containers/youki#548e#664 Dec 20, 2021 runwasi Jan 23, 2022 ~

21. Announcement of the Collaboration between runwasi and youki at KubeDay

    Japan, Dec 7, 2022 WebAssembly on Kubernetes runwasi Successfully Integrates with youki Apr 22, 2023 containerd/runwasi#78 Annoucement Docker + WebAssembly Oct 24, 2022 ← Now!

22. Linux etc..
 Container Runtime Low-Level OCI Runtime Spec Workflow of

    Executing Wasm in Podman
 22

23. Linux etc..
 Container Runtime Low-Level OCI Runtime Spec Low-Level CRs

    Capable of Executing Wasm
 23

24. Summery 24 03

25. $ cat Dockerfile FROM scratch COPY hello.wasm / ENTRYPOINT ["/hello.wasm"]

    $ buildah build --annotation "module.wasm.image/variant=compat" -t hello-wasm . STEP 1/3: FROM scratch … snip … Successfully tagged localhost/hello-wasm:latest ca9fbef8860afe406c2ca37841f05c0def1ad23dde427fd06b2d5dda979cb58f $ podman run -it localhost/hello-wasm:latest Hello, world!

26. $ cat Dockerfile FROM scratch COPY hello.wasm / ENTRYPOINT ["/hello.wasm"]

    $ buildah build --annotation "module.wasm.image/variant=compat" -t hello-wasm . STEP 1/3: FROM scratch … snip … Successfully tagged localhost/hello-wasm:latest ca9fbef8860afe406c2ca37841f05c0def1ad23dde427fd06b2d5dda979cb58f $ podman run -it localhost/hello-wasm:latest Hello, world! $ cat Dockerfile FROM docker.io/wasmedge/slim:0.13.5 COPY hello.wasm / ENTRYPOINT ["wasmedge", "/hello.wasm"] $ sudo podman run -it --rm localhost/hello-wasmedge:latest Hello, world!

27. Cutting-Edge of WebAssembly Containers
 Mixing Containers and Wasm Containers within

    a Kubernetes Pod • containerd/runwasi#64 • For Example, Sidecars Facilitating Easy Handling of Wasm with Images (OCI Artifacts) Support for Arbitrary Entry Point in WebAssembly • containerd/runwasi#102 [WIP] Definition and Support of Media Types for Wasm • containerd/containerd#8699 • bytecodealliance/registry#87

28. Thanks, any questions?