George Lestaris, profile picture
Uploaded byGeorge Lestaris
PDF, PPTX367 views

Alternatives to layer-based image distribution: using CERN filesystem for images

The document discusses alternatives to layer-based image distribution using a CERN filesystem for container images. It highlights the structure of container images, including layers and metadata, and introduces CERNVM-FS, a network file system that supports efficient file fetching and caching. Additionally, it compares performance metrics and explores other distribution approaches, including decentralized systems and serverless options.

Embed presentation

Download as PDF, PPTX
Alternatives to 
 layer-based 
 image distribution using a CERN filesystem for 
 distributing container images George Lestaris
 @glestaris
• Software engineer at Pivotal • working for Cloud Foundry GrootFS • github.com/cloudfoundry/ grootfs • ex-CERNois About me
docker run elasticsearch:2.3.5 Container image
Container image format • Container images are formalized in: Docker, AppC (ACI) and OCI Image spec • Generally: image is the combination of: • a set of layers • metadata
Building an image FROM python:3.5 ADD . /myapp RUN pip install -r /myapp/requirements.txt ENTRYPOINT python /myapp/manage.py runserver 0.0.0.0:8000
Container images are composed of layers Layer is a set of files and directories
FROM python:3.5 Layers help us to inherit images
FROM python:3.5 ADD . /myapp RUN pip install …
• Different image formats - different distributions mechanisms • Docker: download layers through HTTP connections from a registry • Helps reusing layers of base images • Efficient container image fetching by parallelizing the downloads Container image distribution
Registry ClientClientClientClient New image From cached base Update dependencies
Distributing software in HEP
Data Data Data Data Data Data Data Data Frequent
 releases Simulation engine Analysis framework Experiment geometry Experiment software Dependencies Simulation engine Analysis framework Experiment geometry Experiment software Dependencies Simulation engine Analysis framework Experiment geometry Experiment software Dependencies Simulation engine Analysis framework Experiment geometry Experiment software Dependencies Simulation engine Analysis framework Experiment geometry Experiment software Dependencies Simulation engine Analysis framework Experiment geometry Experiment software Dependencies Simulation engine Analysis framework Experiment geometry Experiment software Dependencies Simulation engine Analysis framework Experiment geometry Experiment software Dependencies
WLCG 170 computing centres 
 in 42 countries
CernVM-FS
• Network file system • no packages and layers —> files and directories • FUSE • Lazily downloads the used files • Deduplication Downloaded files get cached using a content addressable storage using a network filesystem
User application VFS FUSE kernel module CernVM-FS FUSE CernVM-FS service GET catalog Cache stat sha256:… GET /blob/sha256:… open /dir/file catalog /dir/file 
 —> sha256:…
Similarities between HEP software and container images
• Most images are based on a Linux distribution • redis 3.2.3 • Image size: 190 MB (Compressed 74 MB) • Used to boot: 11 MB - 5.7 % • node 6.5.0 5.4 % • nginx 1.11 3.1 % Applications use a small fragment of the image
• nginx 1.10 to 1.11: • Real changes: 4.02 MB • Layer changes: 58 MB (two of the three layers) • 14.4 times the size of the diff • nginx 1.9 to 1.10: 4.8 times the size of the diff Small changes between versions
Demo CernVM-FS and runC
• Small tool to create containers • Low-level interface - not supposed to be a container runtime • Used by container runtimes (Docker, Garden) internally runC
Performance comparison
• http://github.com/glestaris/container-camp • Used iCE - see PyCon UK 2015 • 20 AWS VMs in eu-west (m4.large) • 1 CernVM-FS server on an AWS VM (m4.large) in eu-central • Dockerhub Experiment setup
• All VMs create a redis:3.2.3 container in parallel • Comparing runC, Docker and Docker with warm cache • Run the server and ping (wait for the server to came up) Scenario redis-server --daemonize yes while ! redis-cli ping; do echo 'retrying' done
• IPFS: InterPlanetary file system • Deduplication Content addressed storage for object • History Versioned objects • Decentralized P2P transfers • Objects are files, directories or changes (commits) Other approaches
• CI server • Large clusters that parallelly fetch images • Network contention • Maintaining a private registry • Serverless (?) Use cases

More Related Content

PDF
Docker on a Diet
byKuan Yen Heng
 
PDF
Project Moby
byNeependra Khare
 
PPTX
Fission: Serverless Functions for Kubernetes
bySoam Vasani
 
PPTX
Docker intro
byOleg Z
 
PDF
Michigan IT Symposium 2017 - Container BOF
byJeffrey Sica
 
PDF
Embedding Containerd For Fun and Profit
byPhil Estes
 
PDF
Docker Engine Evolution: From Monolith to Discrete Components
byPhil Estes
 
PDF
DockerCon SF 2015: Getting Started w/ Docker
byDocker, Inc.
 
Docker on a Diet
byKuan Yen Heng
 
Project Moby
byNeependra Khare
 
Fission: Serverless Functions for Kubernetes
bySoam Vasani
 
Docker intro
byOleg Z
 
Michigan IT Symposium 2017 - Container BOF
byJeffrey Sica
 
Embedding Containerd For Fun and Profit
byPhil Estes
 
Docker Engine Evolution: From Monolith to Discrete Components
byPhil Estes
 
DockerCon SF 2015: Getting Started w/ Docker
byDocker, Inc.
 

What's hot

PDF
Docker Introduction
byw_akram
 
PDF
faastRuby - Building a FaaS platform with Redis (RedisConf19)
byPaulo Arruda
 
PDF
[Draft] Fast Prototyping with DPDK and eBPF in Containernet
byAndrew Wang
 
PDF
DockerCon 2015: Docker Engine Breakout Session
byDocker, Inc.
 
PDF
Docker multi-stage build
byAlexei Ledenev
 
PPTX
DockerCon SF 2015: Networking Breakout
byDocker, Inc.
 
PDF
Docker architecture-04-1
byMohammadreza Amini
 
PPTX
OpenWhisk Go Runtime
byMichele Sciabarrà
 
PPTX
Kubernetes Introduction
byEric Gustafson
 
PDF
DockerCon SF 2015: Orchestration for Sysadmins
byDocker, Inc.
 
PDF
DockerCon US 2015 - Engine Breakout Session
byArnaud Porterie
 
PPTX
Introduction to Docker - What is it and how is it compared to VM's
byJeremy Haas
 
PPTX
Docker crash course
bynispas
 
PPTX
OpenWhisk Go/Swift/Binaries Runtime
byMichele Sciabarrà
 
PDF
Build & Deploy Multi-Container Applications to AWS
byDocker, Inc.
 
PDF
ContainerDayVietnam2016: Docker at scale with Mesos
byDocker-Hanoi
 
PPTX
Kubernetes Workshop
byloodse
 
PDF
Docker Fundamentals
byAnshul Patel
 
PDF
Kubernetes overview and Exploitation
byOWASPSeasides
 
PDF
Docker for HPC: how E4 is using it
byE4 Computer Engineering SpA
 
Docker Introduction
byw_akram
 
faastRuby - Building a FaaS platform with Redis (RedisConf19)
byPaulo Arruda
 
[Draft] Fast Prototyping with DPDK and eBPF in Containernet
byAndrew Wang
 
DockerCon 2015: Docker Engine Breakout Session
byDocker, Inc.
 
Docker multi-stage build
byAlexei Ledenev
 
DockerCon SF 2015: Networking Breakout
byDocker, Inc.
 
Docker architecture-04-1
byMohammadreza Amini
 
OpenWhisk Go Runtime
byMichele Sciabarrà
 
Kubernetes Introduction
byEric Gustafson
 
DockerCon SF 2015: Orchestration for Sysadmins
byDocker, Inc.
 
DockerCon US 2015 - Engine Breakout Session
byArnaud Porterie
 
Introduction to Docker - What is it and how is it compared to VM's
byJeremy Haas
 
Docker crash course
bynispas
 
OpenWhisk Go/Swift/Binaries Runtime
byMichele Sciabarrà
 
Build & Deploy Multi-Container Applications to AWS
byDocker, Inc.
 
ContainerDayVietnam2016: Docker at scale with Mesos
byDocker-Hanoi
 
Kubernetes Workshop
byloodse
 
Docker Fundamentals
byAnshul Patel
 
Kubernetes overview and Exploitation
byOWASPSeasides
 
Docker for HPC: how E4 is using it
byE4 Computer Engineering SpA
 

Similar to Alternatives to layer-based image distribution: using CERN filesystem for images

PDF
CernVM-FS for Docker image distribution in Cloud Foundry
byGeorge Lestaris
 
PPTX
Taking Docker to Dance: Continuous Delivery on AWS
byJessie Yi Wei
 
PDF
Introduction to Docker at SF Peninsula Software Development Meetup @Guidewire
bydotCloud
 
PDF
Introduction to Docker and all things containers, Docker Meetup at RelateIQ
bydotCloud
 
PDF
A Gentle Introduction To Docker And All Things Containers
byJérôme Petazzoni
 
PDF
A Gentle Introduction to Docker and Containers
byDocker, Inc.
 
PDF
The Docker "Gauntlet" - Introduction, Ecosystem, Deployment, Orchestration
byErica Windisch
 
PDF
[KubeCon EU 2020] containerd Deep Dive
byAkihiro Suda
 
PDF
Navigating container technology for enhanced security by Niklas Saari
byMetosin Oy
 
PDF
Docker 0.11 at MaxCDN meetup in Los Angeles
byJérôme Petazzoni
 
PPTX
Docker Fundamasadsasdasdassadentals 101 - Dark.pptx
byMuhamedAhmed35
 
PDF
Shipping Applications to Production in Containers with Docker
byJérôme Petazzoni
 
PDF
Docker and friends at Linux Days 2014 in Prague
bytomasbart
 
PDF
Docker Intro at the Google Developer Group and Google Cloud Platform Meet Up
byJérôme Petazzoni
 
ODP
Linux containers & Devops
byMaciej Lasyk
 
PPTX
State of the Container Ecosystem
byVinay Rao
 
ODP
Orchestrating docker containers at scale (#DockerKRK edition)
byMaciej Lasyk
 
PDF
presentation @ docker meetup
byDaniël van Gils
 
PDF
Introduction to Docker (as presented at December 2013 Global Hackathon)
byJérôme Petazzoni
 
PPTX
Csa container-security-in-aws-dw
byCloud Security Alliance, UK chapter
 
CernVM-FS for Docker image distribution in Cloud Foundry
byGeorge Lestaris
 
Taking Docker to Dance: Continuous Delivery on AWS
byJessie Yi Wei
 
Introduction to Docker at SF Peninsula Software Development Meetup @Guidewire
bydotCloud
 
Introduction to Docker and all things containers, Docker Meetup at RelateIQ
bydotCloud
 
A Gentle Introduction To Docker And All Things Containers
byJérôme Petazzoni
 
A Gentle Introduction to Docker and Containers
byDocker, Inc.
 
The Docker "Gauntlet" - Introduction, Ecosystem, Deployment, Orchestration
byErica Windisch
 
[KubeCon EU 2020] containerd Deep Dive
byAkihiro Suda
 
Navigating container technology for enhanced security by Niklas Saari
byMetosin Oy
 
Docker 0.11 at MaxCDN meetup in Los Angeles
byJérôme Petazzoni
 
Docker Fundamasadsasdasdassadentals 101 - Dark.pptx
byMuhamedAhmed35
 
Shipping Applications to Production in Containers with Docker
byJérôme Petazzoni
 
Docker and friends at Linux Days 2014 in Prague
bytomasbart
 
Docker Intro at the Google Developer Group and Google Cloud Platform Meet Up
byJérôme Petazzoni
 
Linux containers & Devops
byMaciej Lasyk
 
State of the Container Ecosystem
byVinay Rao
 
Orchestrating docker containers at scale (#DockerKRK edition)
byMaciej Lasyk
 
presentation @ docker meetup
byDaniël van Gils
 
Introduction to Docker (as presented at December 2013 Global Hackathon)
byJérôme Petazzoni
 
Csa container-security-in-aws-dw
byCloud Security Alliance, UK chapter
 

Recently uploaded

PDF
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
PDF
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
PDF
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
PDF
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
PDF
Top Cybersecurity Threats 2025 Guide by Sureshdas
byPrintersassist
 
PDF
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
PDF
Incident Response Planning with a Foundation Model
byKim Hammar
 
PDF
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
PDF
The year in review - MarvelClient in 2025
bypanagenda
 
PDF
Recursive Self Improvement vs Continuous Learning
byBob Marcus
 
PPTX
The Landscape of Computer Software Development Companies
byYash Singh
 
PDF
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
PDF
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
PPTX
RISE with SAP for Automotive - S4 HANA Value.pptx
byAmira Jemi
 
PDF
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
PDF
Accelerating Responsible AI Adoption in Public Sector and Private Organizations.
byYasir Naveed Riaz
 
PDF
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
PDF
Top 7 Manufacturing Software for Small Businesses Boosting Growth in 2025
byEnvertis Software Solutions
 
PPTX
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
PDF
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
Top Cybersecurity Threats 2025 Guide by Sureshdas
byPrintersassist
 
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
Incident Response Planning with a Foundation Model
byKim Hammar
 
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
The year in review - MarvelClient in 2025
bypanagenda
 
Recursive Self Improvement vs Continuous Learning
byBob Marcus
 
The Landscape of Computer Software Development Companies
byYash Singh
 
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
RISE with SAP for Automotive - S4 HANA Value.pptx
byAmira Jemi
 
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
Accelerating Responsible AI Adoption in Public Sector and Private Organizations.
byYasir Naveed Riaz
 
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
Top 7 Manufacturing Software for Small Businesses Boosting Growth in 2025
byEnvertis Software Solutions
 
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 

Alternatives to layer-based image distribution: using CERN filesystem for images