Upload File

java container images

27
LEVEL UP Your Java Container Images Melissa McKay Developer Advocate @JFrog

Upload: others

Post on 20-Apr-2022

1 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Java Container Images

LEVEL UPYour

Java Container Images

Melissa McKayDeveloper Advocate @JFrog

Page 2: Java Container Images

MELISSA MCKAYDeveloper Advocate @JFrog @melissajmckay

linkedin.com/in/melissajmckay

https://twitter.com/melissajmckay
https://twitter.com/melisajmckay
https://www.linkedin.com/in/melissajmckay/
Page 3: Java Container Images

THE AGENDA

• Brief History

• The Container Market

• What is Docker?

• What is a Container?

• Container Gotchas

Page 4: Java Container Images

HOW ARE YOU USING CONTAINERS TODAY???

• LOCALLY

• TEST/QA ENVIRONMENTS

• PRODUCTION

• WE DON’T USE THEM TODAY

• WE ARE CONSIDERING USING THEM

Page 5: Java Container Images

ALLABOUT . . .

CONTAINERS

Page 6: Java Container Images

SHARING LIMITED RESOURCES

1979 / 1982- chroot

Page 7: Java Container Images

PROGRESS TOWARD VIRTUALIZATION▪ 2000 - FreeBSD jail

▪ 2004 - Solaris Zones / snapshots

▪ 2006 - Google Process Containers / cgroups

▪ 2008 - IBM LinuX Containers (LXC)

▪ 2013 - Docker (open source!) - Google LMCTFY (open source!)

▪ 2014 - Docker trades LXC for libcontainer

▪ … more stuff happened

▪ June 2015 - Open Container Project/Initiative (OCI)

○ Runtime Specification (runtime-spec)

○ Image Specification (image-spec)

▪ … even more stuff happened and is still happening!

2011

Java 7

2014Java 8

Page 8: Java Container Images

THE CONTAINER MARKET (according to Sysdig)

18

2017 - 45,000 Containers, 99% Docker

2018 - 90,000 Containers

Fig. 1. 2018 Container Runtimes from: "2018 Docker usage report," 29 May. 2018, sysdig.com/blog/2018-docker-usage-report/. Accessed 10 Jun. 2020.

Page 9: Java Container Images

THE CONTAINER MARKET (according to Sysdig)

19

2019 - 2 million Containers(includes both SaaS & on prem users)

Fig. 2. 2019 Container Runtimes from: "Sysdig 2019 Container Usage Report: New Kubernetes and security insights," 29 Oct. 2019, sysdig.com/blog/sysdig-2019-container-usage-report/. Accessed 10 Jun. 2020.

Page 10: Java Container Images

THE CONTAINER MARKET (according to Sysdig)

20

2020/21 - 2 million Containers(a subset of customer containers)

Fig. 3. Container runtimes from: "REPORT.2021 Container Security And Usage Report," Jan 2021, https://dig.sysdig.com/c/pf-2021-container-security-and-usage-report?x=u_WFRi. Accessed 21 Jan. 2021.

Page 11: Java Container Images

WHATEXACTLYIS DOCKER?

21

Page 12: Java Container Images

22

WHAT DO WE ACTUALLY NEED/WANT?

• An isolated environment where a user/application can operate, sharing the

host system’s OS/kernel without interfering with the operation of another

isolated environment on the same system (a container)

• A way to define a container (an image format)

• A way to build an image of a container

• A way to manage container images

• A way to distribute/share container images

• A way to create a container environment

• A way to launch/run a container (a container runtime)

• A way to manage the lifecycle of container instances

Page 13: Java Container Images

DOCKER, THE WHOLE PACKAGE

23

DOCKER ENGINEDOCKER IMAGE FORMATDockerfile docker build

docker images

docker rm

docker pushdocker pull

DOCKER HUB

docker run docker stop docker ps

Page 14: Java Container Images

BREAKING UP THE MONOLITH

24

OCI CONTAINER RUNTIME

OCI IMAGE FORMAT

• Docker V2 Image Spec

• runC (which used to be libcontainer... which was

written by Docker)

OTHERS - containerd, rkt, cri-o, Kata, etc...

https://lwn.net/Articles/741897/

https://www.ianlewis.org/en/container-runtimes-part-1-introduction-container-r

https://lwn.net/Articles/741897/
https://www.ianlewis.org/en/container-runtimes-part-1-introduction-container-r
Page 15: Java Container Images

WHAT IF I DON’T WANNA DOCKAH??

25

& Skopeohttps://developers.redhat.com/blog/2019/02/21/podman-and-buildah-for-docker-users/https://www.redhat.com/en/blog/say-hello-buildah-podman-and-skopeohttps://developers.redhat.com/blog/2020/02/12/podman-for-macos-sort-of/

Page 16: Java Container Images

WHATEXACTLYIS A CONTAINER?

26

Page 17: Java Container Images

CONTAINER COMPONENTS

27

TARBALL OF A FILESYSTEM

LINUX FEATURES

• namespaces

• cgroups

• Union File systems

Mix these together to create and run a container! Voila!

https://docs.docker.com/get-started/overview/

https://docs.docker.com/get-started/overview/
Page 18: Java Container Images

FILESYSTEM DETAILS

28

...

...

NOTE: On OSX, containers will actually be running in a tiny Linux VM (use screen)screen ~/Library/Containers/com.docker.docker/Data/vms/0/ttyscreen ~/Library/Containers/com.docker.docker/Data/vms/0/tty

Page 19: Java Container Images

FILESYSTEM DETAILS

29

...

...

Page 20: Java Container Images

FILESYSTEM DETAILS

30

Page 21: Java Container Images

CONTAINER GOTCHAS

31

Page 22: Java Container Images

CONTAINER GOTCHAS - RUNNING AS ROOT

32

Page 23: Java Container Images

CONTAINER GOTCHAS - NO CONSTRAINTS

33

Page 24: Java Container Images

CONTAINER GOTCHAS - NEVER UPDATING

34

Page 25: Java Container Images

CONTAINER GOTCHAS - JAVA/JVM GOTCHAS

35

Page 26: Java Container Images

CONTAINER GOTCHAS - IMAGE BLOAT

36

Page 27: Java Container Images

MANAGING YOUR IMAGES - REMOTE BY DEFAULT

38

START FREE: http://jfrog.co/FreeDevOpsTools_STLJUG

https://dzone.com/refcardz/getting-started-with-container-registries

https://dzone.com/refcardz/getting-started-with-container-registries

16. Images in Java Applets and Applicationsindex-of.co.uk/Java/Chapter 16 Images in Java Applets and... · 2019. 3. 7. · The applet displaying these images is shown in Fig 14-1,

Java Multimedia: Images, Animation, Audio and Video

OpenShift Container Platform 3 · 2019-10-04 · OpenShift Container Platform 3.11 Using Images OpenShift Container Platform 3.11 Guide to Using Images Last Updated: 2019-10-04

JAX-RS 3.0 The Next Generation - Java Forum Stuttgart · JAX-RS Container Java Runtime Docker Container Docker Container Docker Container Docker Container Docker Container Docker

Docker, the Container Technology for Java

Kubernetes on Oracle Cloud Infrastructure · Container orchestrators aim to solve problems with scaling these applications. Container Images ... engine, such as Docker, the container

Java EE 7: the New Cloud Platform - Java User Group … · 2013-10-17 · Web Container Extensions JMS 2.0 Jcache 1.0 ... – Java API for RESTful Services 2.0 (JSR 339) ... Java

Margus Hanni, Nortal AS Servlet, JSP 30.03.2015. Millest räägime JAVA Web Container Servlet JSP

ECE 462 Object-Oriented Programming using C++ and Java ...YHL Container Class 1 ECE 462 Object-Oriented Programming using C++ and Java Container Classes Yung-Hsiang Lu [email protected]

Red Hat Software Collections 2 Using Red Hat Software ... · Container Images Based on Red Hat Software Collections 2.4 Container Images Based on Red Hat Software Collections 2.3

Pace Web Server: A Pure Java Web Server with a Servlet Container

OpenShift Container Platform 3.3 Architecture...container images. Kubernetes provides the cluster management and orchestrates containers on multiple hosts. OpenShift Container Platform

Build and deploy multiarch Linux and Windows Container images

Use OpenStack to run Java programs inside a Docker container

Precise Memory Leak Detection for Java Software Using Container Profiling

Use of Java™ Technology-Based Class Loaders to Design and Implement a Java Platform, Micro Edition (JavaME™ Platform) Container

Lesson 35: Review of the Java GUI. The JFrame, Container and JButton

CHAPTER 1ptgmedia.pearsoncmg.com/images/020170921X/samplechapter/genenderch1.pdfservlets. Sometimes the Java servlet container is a pluggable component of a Web server built with the

SOA with Java - pearsoncmg.comptgmedia.pearsoncmg.com/images/9780133859034/samplepages/... · SOA with Java Realizing Service-Orientation with Java Technologies Thomas Erl, Andre

Lecture 4 The Java Collections Framework. Java Container Classes

Chapter 3. Java Servlets3.1. Getting a Servlet Environment You need a servlet container to run servlets. A servlet container uses a Java virtual machine to run servlet code as requested

Managing Container Images with Amazon ECR - AWS Online Tech Talks

A PHUSE Working Group for Validating Container Images

Inspecting Security of Docker formatted Container Images

A Security Evaluation Methodology for Container Images

Web Development Module Overview...review bootstrap semantic ui container segment grid stackable tables icons images row col 7: Applications sites apps frameworks command line ide java

your container images Ansible and Buildah can create

Continuous delivery of Java applications...Docker Containers Container Placement. Using WebLogic + Java EE For Microservices A proven, enterprise-grade platform for application development

No Container: a Modern Java Stack with Bootique

Developing ArcGIS Server Application With Java - rivm.nl · Developing ArcGIS Server Application With Java. ... J2EE Container Web Browser ArcGIS Explorer ... –Publish Java Web

clipsoft.co.krclipsoft.co.kr/wp/wp-content/themes/clipsoft/images/CLIP... · 2020. 3. 26. · Web Reporting CLIP report Server HTTP Server Report Container CINE-TX Java 14, JEUS4-SS

Safe Harbor Statement - Oracle...–Application Container Cloud Service •Java SE for Non-WebLogic Java Workloads •Node for Javascript Workloads –Polyglot Platform for Lightweight

Using Oracle Application Container Cloud Serviceservices and the technologies that Oracle Application Container Cloud Service uses, such as Java SE, Java Flight Recorder, and Java

Practical Container Scenarios in Azure · Practical Container Scenarios in ... Getting/Creating Containers • Images – code, runtimes, libraries, environment variables • Registries

Manipulating Images in 7 Java 2D