Mandi Walls, profile picture
Uploaded byMandi Walls
PPTX, PDF334 views

Habitat talk at CodeMonsters Sofia, Bulgaria Nov 27 2018

The document discusses Habitat, a tool for application automation that aims to simplify the complexity of infrastructure management by focusing on application-centric operations. It highlights features such as immutable artifacts, runtime configuration management, and seamless integration across different operating systems and environments. Additionally, it details the application's workflow, package management, and automatic updates, emphasizing its benefits for developers, operators, and security teams.

Embed presentation

Download to read offline
Mandi Walls Technical Community Manager @lnxchk mandi@chef.io https://habitat.sh #habitatsh http://slack.habitat.sh/
Chef and Automation • Infrastructure Automation • Cloud early adopters • Digital Transformation • Compliance Automation with InSpec • Application Automation with Habitat
How Do We Run Applications? • On a computer • With an OS • And some libraries • And some configuration • And some way to start it and stop it
We’ve been moving complexity around rather than reducing it
Complexity Multiplies as Infrastructure Ages def default_apache_version return '2.2' if node['platform_family'] == 'debian' && node['platform_version'] == '10.04' return '2.2' if node['platform_family'] == 'debian' && node['platform_version'] == '12.04' return '2.2' if node['platform_family'] == 'debian' && node['platform_version'] == '13.04' return '2.2' if node['platform_family'] == 'debian' && node['platform_version'] == '13.10' return '2.2' if node['platform_family'] == 'debian' && node['platform_version'].to_i == 6 return '2.2' if node['platform_family'] == 'debian' && node['platform_version'].to_i == 7 return '2.2' if node['platform_family'] == 'freebsd' return '2.2' if node['platform_family'] == 'omnios' return '2.2' if node['platform_family'] == 'rhel' && node['platform_version'].to_i == 5 return '2.2' if node['platform_family'] == 'rhel' && node['platform_version'].to_i == 6 return '2.2' if node['platform_family'] == 'suse' return '2.4' if node['platform_family'] == 'debian' && node['platform_version'] == '14.04' return '2.4' if node['platform_family'] == 'debian' && node['platform_version'] == '14.10' ... end
Value and Work is Shifting Application centric operations Infrastructure centric operations UNIT OF VALUE is app UNIT OF WORK is deployment UNIT OF VALUE is server UNIT OF WORK is configuration Cloud Containers Microservices
Artifact Inclusions Libraries and Runtimes Operating System Application Application Libraries Application, Runtimes, & Libraries OS Container formats recreate the traditional model of infrastructure and applications. Poor at abstracting the Build + Run aspects of Applications Ties dependencies to OS versions Habitat builds from the application down Small lightweight OS included Embedded Supervisor for Application Management Builds have strict dependency version control Container Habitat Hart
So. Habitat. • Ignore the underlying platform as much as possible • Support microservices • Manage container creep • Make your workflow smoother https://www.bonanza.com/listings/Premier-Food-Storage-Containers-20-Piece-Set-Grey/443972348
How Does Habitat Benefit Your Team • Build once, run anywhere immutable artifacts • Developers – Get the exact libraries needed, regardless of OS version • Test / QA – Easier maintenance of test environments • Operators – Run Linux habs on any distro • Security – Query live services at runtime for potential vulnerabilities
Other Features • Defer configuration decisions to runtime • Build in a "clean room" : no accidental dependencies • Service runtime and discovery • Configuration exposed via API • Signed packages for your organization
Cloud Native Applications with Habitat Habitat Supervisor Habitat Builder BUILD DEPLOY MANAGE Habitat Supervisor PUBLIC ORIGIN PRIVATE ORIGIN
Sample Application • container_sched_backend – small rust application • Runs on Linux in a cluster • The code is plugged into the Habitat Builder service for automatic builds • Application has a configuration setting for "favorite color"
Github Repository
Builder Package Registry
Leave it to Builder • Build service • And an artifact store • Private repos • Check code in to GitHub, let Builder create your artifact • On-Prem version is depot only right now CLOUD/INFRA BUILDSERVICE APPLICATION RUNTIME APPLICATIONSUPERVISION APPLICATION & DATA SERVICES SCHEDULING AND ORCHESTRATION APPLICATION CODE ARTIFACTSTORE
Container Integrations
Habitat Files Travel with the App Code
Have a Plan pkg_name=container_sched_backend pkg_origin=lnxchk pkg_version="0.1.0" pkg_build_deps=(core/rust) pkg_deps=(core/glibc core/gcc core/gcc-libs) pkg_bin_dirs=(bin) bin="container_sched_backend" pkg_exports=([out]=cfg.out) do_build() { cargo build } do_install() { install -v -D "$PLAN_CONTEXT/../target/debug/$bin" "$pkg_prefix/bin/$bin” } pkg_svc_run="$bin" Metadata Build Install Run
Build Output • By default, it’s a hart – a compressed tarball with some metadata and a signature • You can export to other formats, like Docker containers • The hart itself it runnable
Run a Hart • Set up a first host: leader/follower topology and rolling updates sudo hab sup run lnxchk/container_sched_backend -- topology leader --strategy rolling • Connect additional nodes to the ring, giving them a peer to attach to sudo hab sup run lnxchk/container_sched_backend -- strategy rolling --peer 172.31.37.193
Updating Configuration at Runtime • Update all or part of the configuration while the apps are running • Send the update to a member of the mesh and they will all update sudo hab config apply container_sched_backend.default 2 new.toml
Channels and Service Groups • Builder can have multiple channels where harts are published Default is "unstable", can promote via CLI or web A cluster can subscribe to any channel, will use "stable" by default • Service groups in the cluster have their name appended to the artifact name container_sched_backend.default
Querying the API • Rest api on port 9631 • /services endpoint for information about the running services • Query it with some simple tools https://github.com/lnxchk/hab_tools
Show the dependencies $ ./hab_deps.rb lnxchk/container_sched_backend/0.1.3/20181003183354 |- core/binutils/2.30/20180608050633 |- core/gcc-libs/7.3.0/20180608091701 |- core/gcc/7.3.0/20180608051919 |- core/glibc/2.27/20180608041157 |- core/gmp/6.1.2/20180608051426 |- core/libmpc/1.1.0/20180608051824 |- core/linux-headers/4.15.9/20180608041107 |- core/mpfr/4.0.1/20180608051629 |- core/zlib/1.2.11/20180608050617
Search for a package with a vulnerability $ ./hab_deps_search.rb -d core/mpfr/4.0.1/20180608051629 searching host localhost for dep core/mpfr/4.0.1/20180608051629 lnxchk/container_sched_backend/0.1.3/20181003183354 matches
Check the whole group is on the same version $ ./hab_service_versions.rb -h localhost -g container_sched_backend.default searching host localhost for dep container_sched_backend.default 172.31.39.99 has version lnxchk/container_sched_backend/0.1.3/20181003183354 172.31.37.152 has version lnxchk/container_sched_backend/0.1.3/20181003183354 172.31.46.78 has version lnxchk/container_sched_backend/0.1.3/20181003183354 172.31.35.43 has version lnxchk/container_sched_backend/0.1.3/20181003183354
Automatic Updates • Started the supervisors with "--strategy rolling" to allow for rolling updates Also none – no auto updates; and at-once for all at once updates • This app is hooked through builder, so update from github can push updates to the running instances • Packages published to channels Promote to stable for subscriber updates or subscribe to other channels at runtime
Shortcut for common platforms: Scaffolding • Default core-built dependencies for common runtimes • Ruby and Node so farpkg_name=MY_APP pkg_origin=MY_ORIGIN pkg_version=MY_VERSION pkg_scaffolding=core/scaffolding-ruby https://www.habitat.sh/docs/concepts-scaffolding/
Summary • Single build pathway from Github through to deployment • Run Linux-based instances on any distribution • Update configuration at runtime • Verify the live environment via REST API • Targeted platforms: Java, node.js, Ruby, Windows .NET
Join Us! • On Slack http://slack.habitat.sh • Online! With Tutorials https://www.habitat.sh/ • On Github https://github.com/habitat-sh

More Related Content

PDF
The Docker Ecosystem
byDmitry Skaredov
 
PPTX
Docker Datacenter Overview and Production Setup Slides
byDocker, Inc.
 
PPTX
Why kubernetes matters
byPlatform9
 
PDF
Kubernetes for Serverless - Serverless Summit 2017 - Krishna Kumar
byCodeOps Technologies LLP
 
PDF
Network Infrastructure as Code with Chef and Cisco
byMatt Ray
 
PPTX
All the troubles you get into when setting up a production ready Kubernetes c...
byJimmy Lu
 
PDF
Ansible @ Red Hat | December 2015 Ansible Meetup in Melbourne
byKen Thompson
 
PDF
ContainerDays NYC 2015: "Container Orchestration Compared: Kubernetes and Doc...
byDynamicInfraDays
 
The Docker Ecosystem
byDmitry Skaredov
 
Docker Datacenter Overview and Production Setup Slides
byDocker, Inc.
 
Why kubernetes matters
byPlatform9
 
Kubernetes for Serverless - Serverless Summit 2017 - Krishna Kumar
byCodeOps Technologies LLP
 
Network Infrastructure as Code with Chef and Cisco
byMatt Ray
 
All the troubles you get into when setting up a production ready Kubernetes c...
byJimmy Lu
 
Ansible @ Red Hat | December 2015 Ansible Meetup in Melbourne
byKen Thompson
 
ContainerDays NYC 2015: "Container Orchestration Compared: Kubernetes and Doc...
byDynamicInfraDays
 

What's hot

PPTX
DevOps: Infrastructure as Code
byJulio Aziz Flores Casab
 
PDF
DCEU 18: Docker Containers in a Serverless World
byDocker, Inc.
 
PPTX
A New Centralized Volume Storage Solution for Docker and Container Cloud by W...
byDocker, Inc.
 
PDF
On Prem Container Cloud - Lessons Learned
byCodeOps Technologies LLP
 
PPT
Docker swarm
byKalkey
 
PPTX
Monitoring docker container and dockerized applications
byAnanth Padmanabhan
 
PPTX
The Mushroom Cloud Effect or What Happens When Containers Fail? by Alois Mayr...
byDocker, Inc.
 
PPTX
Container Conf 2017: Rancher Kubernetes
byVishal Biyani
 
PDF
DCEU 18: Building Your Development Pipeline
byDocker, Inc.
 
PDF
ContainerDayVietnam2016: Dockerize a small business
byDocker-Hanoi
 
PDF
Spinnaker Summit 2018: CI/CD Patterns for Kubernetes with Spinnaker
byAndrew Phillips
 
PDF
Containers in depth – Understanding how containers work to better work with c...
byAll Things Open
 
PDF
Java one kubernetes, jenkins and microservices
byChristian Posta
 
PPTX
How HashiCorp platform tools can make the difference in development and deplo...
byDmytro Mykhailov
 
PDF
DCSF19 How To Build Your Containerization Strategy
byDocker, Inc.
 
PPTX
Intro to kubernetes
byElad Hirsch
 
PPTX
Dell Trials and Triumphs using Docker on Client Systems by Sean McGinnis and ...
byDocker, Inc.
 
PPTX
Deploying OpenStack Using Docker in Production
byclayton_oneill
 
PPTX
Webcast - Making kubernetes production ready
byApplatix
 
PDF
DCEU 18: 5 Patterns for Success in Application Transformation
byDocker, Inc.
 
DevOps: Infrastructure as Code
byJulio Aziz Flores Casab
 
DCEU 18: Docker Containers in a Serverless World
byDocker, Inc.
 
A New Centralized Volume Storage Solution for Docker and Container Cloud by W...
byDocker, Inc.
 
On Prem Container Cloud - Lessons Learned
byCodeOps Technologies LLP
 
Docker swarm
byKalkey
 
Monitoring docker container and dockerized applications
byAnanth Padmanabhan
 
The Mushroom Cloud Effect or What Happens When Containers Fail? by Alois Mayr...
byDocker, Inc.
 
Container Conf 2017: Rancher Kubernetes
byVishal Biyani
 
DCEU 18: Building Your Development Pipeline
byDocker, Inc.
 
ContainerDayVietnam2016: Dockerize a small business
byDocker-Hanoi
 
Spinnaker Summit 2018: CI/CD Patterns for Kubernetes with Spinnaker
byAndrew Phillips
 
Containers in depth – Understanding how containers work to better work with c...
byAll Things Open
 
Java one kubernetes, jenkins and microservices
byChristian Posta
 
How HashiCorp platform tools can make the difference in development and deplo...
byDmytro Mykhailov
 
DCSF19 How To Build Your Containerization Strategy
byDocker, Inc.
 
Intro to kubernetes
byElad Hirsch
 
Dell Trials and Triumphs using Docker on Client Systems by Sean McGinnis and ...
byDocker, Inc.
 
Deploying OpenStack Using Docker in Production
byclayton_oneill
 
Webcast - Making kubernetes production ready
byApplatix
 
DCEU 18: 5 Patterns for Success in Application Transformation
byDocker, Inc.
 

Similar to Habitat talk at CodeMonsters Sofia, Bulgaria Nov 27 2018

PPTX
habitat at docker bud
byMandi Walls
 
PPTX
Habitat Overview
byMandi Walls
 
PDF
Habitat at SRECon
byMandi Walls
 
PDF
TXLF: Automated Deployment of OpenStack with Chef
byMatt Ray
 
PPTX
Habitat Managed Chef
byChef
 
PPTX
Habitat Workshop at Velocity London 2017
byMandi Walls
 
PPTX
Containerdays Intro to Habitat
byMandi Walls
 
PPTX
Habitat at LinuxLab IT
byMandi Walls
 
PPTX
Containers, Habitat and Orchestration - Infracoders Meetup Graz
byInfralovers
 
PDF
DevOps LA Meetup Intro to Habitat
byJessica DeVita
 
PDF
Nike pop up habitat
byChef
 
PDF
DevOpsDays Singapore Habitat Ignite
byMatt Ray
 
PDF
DevOps Talks Melbourne 2018: Whales, Cats and Kubernetes
byMatt Ray
 
PPTX
SoCal DevOps Meetup 1/26/2017 - Habitat by Chef
byTrevor Hess
 
PDF
SCALE 2011 Deploying OpenStack with Chef
byMatt Ray
 
PDF
Automating Applications with Habitat - Sydney Cloud Native Meetup
byMatt Ray
 
PDF
Habitat hack slides - Infracoders Meetup Graz
byInfralovers
 
PPTX
Creating Packages that Run Anywhere with Chef Habitat
byNell Shamrell-Harrington
 
PDF
ContainerDays NYC 2016: "Introduction to Application Automation with Habitat"...
byDynamicInfraDays
 
PDF
Wellington DevOps: Bringing Your Applications into the Future with Habitat
byMatt Ray
 
habitat at docker bud
byMandi Walls
 
Habitat Overview
byMandi Walls
 
Habitat at SRECon
byMandi Walls
 
TXLF: Automated Deployment of OpenStack with Chef
byMatt Ray
 
Habitat Managed Chef
byChef
 
Habitat Workshop at Velocity London 2017
byMandi Walls
 
Containerdays Intro to Habitat
byMandi Walls
 
Habitat at LinuxLab IT
byMandi Walls
 
Containers, Habitat and Orchestration - Infracoders Meetup Graz
byInfralovers
 
DevOps LA Meetup Intro to Habitat
byJessica DeVita
 
Nike pop up habitat
byChef
 
DevOpsDays Singapore Habitat Ignite
byMatt Ray
 
DevOps Talks Melbourne 2018: Whales, Cats and Kubernetes
byMatt Ray
 
SoCal DevOps Meetup 1/26/2017 - Habitat by Chef
byTrevor Hess
 
SCALE 2011 Deploying OpenStack with Chef
byMatt Ray
 
Automating Applications with Habitat - Sydney Cloud Native Meetup
byMatt Ray
 
Habitat hack slides - Infracoders Meetup Graz
byInfralovers
 
Creating Packages that Run Anywhere with Chef Habitat
byNell Shamrell-Harrington
 
ContainerDays NYC 2016: "Introduction to Application Automation with Habitat"...
byDynamicInfraDays
 
Wellington DevOps: Bringing Your Applications into the Future with Habitat
byMatt Ray
 

More from Mandi Walls

PPTX
Using Chef InSpec for Infrastructure Security
byMandi Walls
 
PDF
Full Service Ownership
byMandi Walls
 
PPTX
Ingite Slides for InSpec
byMandi Walls
 
PDF
PagerDuty: Best Practices for On Call Teams
byMandi Walls
 
PDF
DOD Kansas City 2025 - Managing Vendor Incidents.pdf
byMandi Walls
 
PPTX
Adding Security and Compliance to Your Workflow with InSpec
byMandi Walls
 
PPTX
Prescriptive Security with InSpec - All Things Open 2019
byMandi Walls
 
PPTX
InSpec at DevOps ATL Meetup January 22, 2020
byMandi Walls
 
PPTX
InSpec For DevOpsDays Amsterdam 2017
byMandi Walls
 
PPTX
InSpec Workflow for DevOpsDays Riga 2017
byMandi Walls
 
PPTX
InSpec - June 2018 at Open28.be
byMandi Walls
 
PPTX
Adding Security to Your Workflow with InSpec (MAY 2017)
byMandi Walls
 
PDF
DOD Raleigh Gamedays with Chaos Engineering.pdf
byMandi Walls
 
PPTX
BuildStuff.LT 2018 InSpec Workshop
byMandi Walls
 
PPTX
DevOpsDays InSpec Workshop
byMandi Walls
 
PPTX
InSpec Workshop DevSecCon 2017
byMandi Walls
 
PPTX
Adding Security to Your Workflow With InSpec - SCaLE17x
byMandi Walls
 
PPTX
InSpec Workshop at Velocity London 2018
byMandi Walls
 
PPTX
Configuration Management is Old and Boring
byMandi Walls
 
PDF
Addo reducing trauma in organizations with SLOs and chaos engineering
byMandi Walls
 
Using Chef InSpec for Infrastructure Security
byMandi Walls
 
Full Service Ownership
byMandi Walls
 
Ingite Slides for InSpec
byMandi Walls
 
PagerDuty: Best Practices for On Call Teams
byMandi Walls
 
DOD Kansas City 2025 - Managing Vendor Incidents.pdf
byMandi Walls
 
Adding Security and Compliance to Your Workflow with InSpec
byMandi Walls
 
Prescriptive Security with InSpec - All Things Open 2019
byMandi Walls
 
InSpec at DevOps ATL Meetup January 22, 2020
byMandi Walls
 
InSpec For DevOpsDays Amsterdam 2017
byMandi Walls
 
InSpec Workflow for DevOpsDays Riga 2017
byMandi Walls
 
InSpec - June 2018 at Open28.be
byMandi Walls
 
Adding Security to Your Workflow with InSpec (MAY 2017)
byMandi Walls
 
DOD Raleigh Gamedays with Chaos Engineering.pdf
byMandi Walls
 
BuildStuff.LT 2018 InSpec Workshop
byMandi Walls
 
DevOpsDays InSpec Workshop
byMandi Walls
 
InSpec Workshop DevSecCon 2017
byMandi Walls
 
Adding Security to Your Workflow With InSpec - SCaLE17x
byMandi Walls
 
InSpec Workshop at Velocity London 2018
byMandi Walls
 
Configuration Management is Old and Boring
byMandi Walls
 
Addo reducing trauma in organizations with SLOs and chaos engineering
byMandi Walls
 

Recently uploaded

PDF
[BDD 2025 - Full-Stack Development] The Modern Stack: Building Web & AI Appli...
byWintari Yasmin
 
PPTX
kernel PPT (Explanation of Windows Kernal).pptx
byINFOBYTES1
 
PPTX
"Feelings versus facts: why metrics are more important than intuition", Igor ...
byFwdays
 
PDF
ODSC AI West: Agent Optimization: Beyond Context engineering
byShashikant Jagtap
 
PPTX
UFCD 0797 - SISTEMAS OPERATIVOS_Unidade Completa.pptx
byscribddobruno
 
PDF
DUBAI IT MODERNIZATION WITH AZURE MANAGED SERVICES.pdf
byLogicEra
 
PDF
Transforming Content Operations in the Age of AI
byEnterprise Knowledge
 
PDF
Mastering UiPath Maestro – Session 2 – Building a Live Use Case - Session 2
byDianaGray10
 
PDF
Dev Dives: Build smarter agents with UiPath Agent Builder
byUiPathCommunity
 
PDF
Transforming Supply Chains with Amazon Bedrock AgentCore (AWS Swiss User Grou...
byChris Bingham
 
PDF
[BDD 2025 - Full-Stack Development] Digital Accessibility: Why Developers nee...
bywintari3
 
PDF
Accessibility & Inclusion: What Comes Next. Presentation of the Digital Acces...
byAssociazione Digital Days
 
PPTX
Connecting the unconnectable: Exploring LoRaWAN for IoT
byasasiraarthur
 
PDF
Top Crypto Supers 15th Report November 2025
byStephen Perrenod
 
PDF
Mastering Agentic Orchestration with UiPath Maestro | Hands on Workshop
byUiPathCommunity
 
PPTX
Guardrails in Action - Ensuring Safe AI with Azure AI Content Safety.pptx
byUdaiappa Ramachandran
 
PDF
KMWorld - KM & AI Bring Collectivity, Nostalgia, & Selectivity
byJonathan Ralton
 
PDF
Transcript: The partnership effect: Libraries and publishers on collaborating...
byBookNet Canada
 
PDF
Integrating AI with Meaningful Human Collaboration
byCadabra Studio
 
PDF
Crane Accident Prevention Guide: Key OSHA Regulations for Safer Operations
bySharpEagle Technology
 
[BDD 2025 - Full-Stack Development] The Modern Stack: Building Web & AI Appli...
byWintari Yasmin
 
kernel PPT (Explanation of Windows Kernal).pptx
byINFOBYTES1
 
"Feelings versus facts: why metrics are more important than intuition", Igor ...
byFwdays
 
ODSC AI West: Agent Optimization: Beyond Context engineering
byShashikant Jagtap
 
UFCD 0797 - SISTEMAS OPERATIVOS_Unidade Completa.pptx
byscribddobruno
 
DUBAI IT MODERNIZATION WITH AZURE MANAGED SERVICES.pdf
byLogicEra
 
Transforming Content Operations in the Age of AI
byEnterprise Knowledge
 
Mastering UiPath Maestro – Session 2 – Building a Live Use Case - Session 2
byDianaGray10
 
Dev Dives: Build smarter agents with UiPath Agent Builder
byUiPathCommunity
 
Transforming Supply Chains with Amazon Bedrock AgentCore (AWS Swiss User Grou...
byChris Bingham
 
[BDD 2025 - Full-Stack Development] Digital Accessibility: Why Developers nee...
bywintari3
 
Accessibility & Inclusion: What Comes Next. Presentation of the Digital Acces...
byAssociazione Digital Days
 
Connecting the unconnectable: Exploring LoRaWAN for IoT
byasasiraarthur
 
Top Crypto Supers 15th Report November 2025
byStephen Perrenod
 
Mastering Agentic Orchestration with UiPath Maestro | Hands on Workshop
byUiPathCommunity
 
Guardrails in Action - Ensuring Safe AI with Azure AI Content Safety.pptx
byUdaiappa Ramachandran
 
KMWorld - KM & AI Bring Collectivity, Nostalgia, & Selectivity
byJonathan Ralton
 
Transcript: The partnership effect: Libraries and publishers on collaborating...
byBookNet Canada
 
Integrating AI with Meaningful Human Collaboration
byCadabra Studio
 
Crane Accident Prevention Guide: Key OSHA Regulations for Safer Operations
bySharpEagle Technology
 

Habitat talk at CodeMonsters Sofia, Bulgaria Nov 27 2018

  • 2.
    Mandi Walls Technical CommunityManager @lnxchk mandi@chef.io https://habitat.sh #habitatsh http://slack.habitat.sh/
  • 3.
    Chef and Automation •Infrastructure Automation • Cloud early adopters • Digital Transformation • Compliance Automation with InSpec • Application Automation with Habitat
  • 4.
    How Do WeRun Applications? • On a computer • With an OS • And some libraries • And some configuration • And some way to start it and stop it
  • 5.
    We’ve been movingcomplexity around rather than reducing it
  • 6.
    Complexity Multiplies asInfrastructure Ages def default_apache_version return '2.2' if node['platform_family'] == 'debian' && node['platform_version'] == '10.04' return '2.2' if node['platform_family'] == 'debian' && node['platform_version'] == '12.04' return '2.2' if node['platform_family'] == 'debian' && node['platform_version'] == '13.04' return '2.2' if node['platform_family'] == 'debian' && node['platform_version'] == '13.10' return '2.2' if node['platform_family'] == 'debian' && node['platform_version'].to_i == 6 return '2.2' if node['platform_family'] == 'debian' && node['platform_version'].to_i == 7 return '2.2' if node['platform_family'] == 'freebsd' return '2.2' if node['platform_family'] == 'omnios' return '2.2' if node['platform_family'] == 'rhel' && node['platform_version'].to_i == 5 return '2.2' if node['platform_family'] == 'rhel' && node['platform_version'].to_i == 6 return '2.2' if node['platform_family'] == 'suse' return '2.4' if node['platform_family'] == 'debian' && node['platform_version'] == '14.04' return '2.4' if node['platform_family'] == 'debian' && node['platform_version'] == '14.10' ... end
  • 7.
    Value and Workis Shifting Application centric operations Infrastructure centric operations UNIT OF VALUE is app UNIT OF WORK is deployment UNIT OF VALUE is server UNIT OF WORK is configuration Cloud Containers Microservices
  • 8.
    Artifact Inclusions Libraries and Runtimes OperatingSystem Application Application Libraries Application, Runtimes, & Libraries OS Container formats recreate the traditional model of infrastructure and applications. Poor at abstracting the Build + Run aspects of Applications Ties dependencies to OS versions Habitat builds from the application down Small lightweight OS included Embedded Supervisor for Application Management Builds have strict dependency version control Container Habitat Hart
  • 9.
    So. Habitat. • Ignorethe underlying platform as much as possible • Support microservices • Manage container creep • Make your workflow smoother https://www.bonanza.com/listings/Premier-Food-Storage-Containers-20-Piece-Set-Grey/443972348
  • 10.
    How Does HabitatBenefit Your Team • Build once, run anywhere immutable artifacts • Developers – Get the exact libraries needed, regardless of OS version • Test / QA – Easier maintenance of test environments • Operators – Run Linux habs on any distro • Security – Query live services at runtime for potential vulnerabilities
  • 11.
    Other Features • Deferconfiguration decisions to runtime • Build in a "clean room" : no accidental dependencies • Service runtime and discovery • Configuration exposed via API • Signed packages for your organization
  • 12.
    Cloud Native Applicationswith Habitat Habitat Supervisor Habitat Builder BUILD DEPLOY MANAGE Habitat Supervisor PUBLIC ORIGIN PRIVATE ORIGIN
  • 13.
    Sample Application • container_sched_backend– small rust application • Runs on Linux in a cluster • The code is plugged into the Habitat Builder service for automatic builds • Application has a configuration setting for "favorite color"
  • 14.
  • 15.
  • 16.
    Leave it toBuilder • Build service • And an artifact store • Private repos • Check code in to GitHub, let Builder create your artifact • On-Prem version is depot only right now CLOUD/INFRA BUILDSERVICE APPLICATION RUNTIME APPLICATIONSUPERVISION APPLICATION & DATA SERVICES SCHEDULING AND ORCHESTRATION APPLICATION CODE ARTIFACTSTORE
  • 17.
  • 18.
    Habitat Files Travelwith the App Code
  • 19.
    Have a Plan pkg_name=container_sched_backend pkg_origin=lnxchkpkg_version="0.1.0" pkg_build_deps=(core/rust) pkg_deps=(core/glibc core/gcc core/gcc-libs) pkg_bin_dirs=(bin) bin="container_sched_backend" pkg_exports=([out]=cfg.out) do_build() { cargo build } do_install() { install -v -D "$PLAN_CONTEXT/../target/debug/$bin" "$pkg_prefix/bin/$bin” } pkg_svc_run="$bin" Metadata Build Install Run
  • 20.
    Build Output • Bydefault, it’s a hart – a compressed tarball with some metadata and a signature • You can export to other formats, like Docker containers • The hart itself it runnable
  • 21.
    Run a Hart •Set up a first host: leader/follower topology and rolling updates sudo hab sup run lnxchk/container_sched_backend -- topology leader --strategy rolling • Connect additional nodes to the ring, giving them a peer to attach to sudo hab sup run lnxchk/container_sched_backend -- strategy rolling --peer 172.31.37.193
  • 22.
    Updating Configuration atRuntime • Update all or part of the configuration while the apps are running • Send the update to a member of the mesh and they will all update sudo hab config apply container_sched_backend.default 2 new.toml
  • 23.
    Channels and ServiceGroups • Builder can have multiple channels where harts are published Default is "unstable", can promote via CLI or web A cluster can subscribe to any channel, will use "stable" by default • Service groups in the cluster have their name appended to the artifact name container_sched_backend.default
  • 24.
    Querying the API •Rest api on port 9631 • /services endpoint for information about the running services • Query it with some simple tools https://github.com/lnxchk/hab_tools
  • 25.
    Show the dependencies $./hab_deps.rb lnxchk/container_sched_backend/0.1.3/20181003183354 |- core/binutils/2.30/20180608050633 |- core/gcc-libs/7.3.0/20180608091701 |- core/gcc/7.3.0/20180608051919 |- core/glibc/2.27/20180608041157 |- core/gmp/6.1.2/20180608051426 |- core/libmpc/1.1.0/20180608051824 |- core/linux-headers/4.15.9/20180608041107 |- core/mpfr/4.0.1/20180608051629 |- core/zlib/1.2.11/20180608050617
  • 26.
    Search for apackage with a vulnerability $ ./hab_deps_search.rb -d core/mpfr/4.0.1/20180608051629 searching host localhost for dep core/mpfr/4.0.1/20180608051629 lnxchk/container_sched_backend/0.1.3/20181003183354 matches
  • 27.
    Check the wholegroup is on the same version $ ./hab_service_versions.rb -h localhost -g container_sched_backend.default searching host localhost for dep container_sched_backend.default 172.31.39.99 has version lnxchk/container_sched_backend/0.1.3/20181003183354 172.31.37.152 has version lnxchk/container_sched_backend/0.1.3/20181003183354 172.31.46.78 has version lnxchk/container_sched_backend/0.1.3/20181003183354 172.31.35.43 has version lnxchk/container_sched_backend/0.1.3/20181003183354
  • 28.
    Automatic Updates • Startedthe supervisors with "--strategy rolling" to allow for rolling updates Also none – no auto updates; and at-once for all at once updates • This app is hooked through builder, so update from github can push updates to the running instances • Packages published to channels Promote to stable for subscriber updates or subscribe to other channels at runtime
  • 29.
    Shortcut for commonplatforms: Scaffolding • Default core-built dependencies for common runtimes • Ruby and Node so farpkg_name=MY_APP pkg_origin=MY_ORIGIN pkg_version=MY_VERSION pkg_scaffolding=core/scaffolding-ruby https://www.habitat.sh/docs/concepts-scaffolding/
  • 30.
    Summary • Single buildpathway from Github through to deployment • Run Linux-based instances on any distribution • Update configuration at runtime • Verify the live environment via REST API • Targeted platforms: Java, node.js, Ruby, Windows .NET
  • 31.
    Join Us! • OnSlack http://slack.habitat.sh • Online! With Tutorials https://www.habitat.sh/ • On Github https://github.com/habitat-sh

Editor's Notes

  • #5 On prem or in the cloud. Or in a hybrid cloud. Or in containers. Or something. On Ubuntu. Or on Red Hat. Or on CentOS if it’s not production. Or that one weird team that wants something else. OS, distribution, version? Packaging type? Initialization system type? Omg it’s systemd Where does it live? /opt /bin /company How to config? .conf .json .yml .dat What version of the language runtime??
  • #8 There are still plenty of projects and workloads that are in the process of being modernized and rehomed on new architectures. Newer projects are often considering a containers-first approach
  • #9 Because the part of the habitat package that interfaces with the OS is small, hab packages can be run in a much more distribution-agnostic way, especially on Linux. If you're targeting a linux platform, it can be Debian/Ubuntu, CentOS/RedHat, or other distributions (aws, oracle cloud, arch linux, etc)
  • #10 Habitat aims to take the chaos and snowflakeness out of running applications With the move towards microservices and increasingly distributed systems, taming this chaos is important The application comes first
  • #11 Single build can be run natively or in containers Run one, run many. Hook them together via the supervisor or not Don’t have to care what’s already on the target systems. Bring all your stuff with you – and only what you need Share your plan.sh files with others via depot