Loading…
This event has ended. Visit the official site or create your own event on Sched.
October 23-26, 2017 - Prague, Czech Republic
Click Here For Information & Registration
Simple
Expanded
Grid
By Venue
ContainerCon Tracks [clear filter]
Monday, October 23
 

11:15 CEST

A Look at Running Containers in a Hostile Environment - Stéphane Graber, Canonical Canada Ltd.
NorthSec is one of the biggest on-location security contests (Capture The Flag) in the world. It's also one of the biggest deployments of LXC, albeit only for a weekend. It is unique not only because of its size but because of the way it works. Every team gets its own simulation of the real world, including its own fake internet and various fake companies and organizations connected to it. Each edition comes with its own original scenario which drives the event and gets the team going from one challenge to the next, earning points in the process. Everything is simulated using containers, several hundreds of them PER TEAM. Those run internet routers or simulate corporate servers. Some are deliberately vulnerable to attacks; some can't ever fail. In this talk, we'll look at the NorthSec 2017 infrastructure, what it looked like, how it was made and what we learned from it.
Speakers
avatar for Stephane Graber

Stephane Graber

Project leader for LXD, Canonical Ltd.
Stéphane Graber is the upstream project leader for LXC and LXD at Canonical and a frequent speaker and track leader at events related to containers and Linux. Stéphane is a longtime contributor to the Ubuntu Linux distribution as an Ubuntu core developer and previous Ubuntu technical... Read More →

OSS Europe 2017 Containers in a hostile environment pdf
Monday October 23, 2017 11:15 - 11:55 CEST
Palmovka
  ContainerCon Tracks

11:15 CEST

Effective Ingress Traffic Management with Traefik - Emile Vauge, Containous
How to effectively manage ingress network traffic in your container based infrastructure? This talk will be a deep dive into Traefik, a modern reverse-proxy and load balancer made to deploy microservices with ease.
Speakers
avatar for Emile Vauge

Emile Vauge

CEO, Containous
Creator of traefik.io, founder of containo.us

Monday October 23, 2017 11:15 - 11:55 CEST
Karlin I
  ContainerCon Tracks

11:15 CEST

Kubernetes 1.8 - What’s New in the Release? - Ihor Dvoretskyi, CNCF
Kubernetes 1.8 has been released a few weeks ago bringing with it new notable features and enhancements. This is a third release of the project in 2017 and this talk will highlight how the traditional operational experience with Kubernetes are being improved with the fresh release.
Speakers
avatar for Ihor Dvoretskyi

Ihor Dvoretskyi

Developer Advocate, Cloud Native Computing Foundation

Monday October 23, 2017 11:15 - 11:55 CEST
Chez Louis
  ContainerCon Tracks

12:05 CEST

Cloud Foundry GrootFS: A Daemonless Container Image Manager That You Can Use With runC - George Lestaris, Pivotal
runC, OCI’s implementation of the runtime spec, has been very successful since the initiative was launched back in 2015. Cloud Foundry and others have been running with runC in production for a while now with hundreds of thousands of runC containers being spawned around the world on every day. For us, in Open Source Summit, runC is quickly becoming the standard implementation of containers in Linux. runC, however, does not deal with the container packaging techniques which currently get standardised as well through the image spec initiative.

In this talk, George will introduce you to GrootFS, a deamonless container image manager, which can run seamlessly as a non-root user in Linux and provide runC with various types of container images. GrootFS is dealing with the low-level filesystem operations required to make container images efficient as well as the distribution of images.
Speakers
avatar for George Lestaris

George Lestaris

Product Manager,  Pivotal

ossummit prague 2017 light pdf
Monday October 23, 2017 12:05 - 12:45 CEST
Palmovka
  ContainerCon Tracks

12:05 CEST

Dude, Where's My Microservice? - Tomasz Janiszewski, Allegro
In this talk I will focus on Discovery Service and communication between microservices. I'll present possible methods and show strong and weak sides of them. For each method I'll provide reference implementation. This presentation will be technology agnostic and present general ideas that could be applied for any container scheduler like Mesos/Kubernetes/Swarm/Nomad.
Speakers
avatar for Tomasz Janiszewski

Tomasz Janiszewski

Software Engineer, Allegro
Tomasz is a software engineer passionate about distributed systems. He believes in free and open source philosophy and occasionally contributes to projects on GitHub. At Allegro he works as a Software Engineer working with Mesos and Marathon cluster.

Dude, Where's My Microservice Open Source Summit Tomek Janiszewski pdf
Monday October 23, 2017 12:05 - 12:45 CEST
Chez Louis
  ContainerCon Tracks

12:05 CEST

Secure Container Deployment In Multi-Tenant Environments - K Y Srinivasan, Microsoft & Jun Nakajima, Intel
Containers offer many advantages ranging from extremely fast boot times (measured in milliseconds) to high deployment densities (number of container instances that can be launched on a physical node). While these attributes make containers ideal for realizing IaaS on cloud infrastructures, security and isolation concerns make traditional containers unsuitable for multi-tenant public cloud infrastructures. We present here a new capability on the Windows platform to host Linux containers that while retaining the traditional advantages of containers adds the necessary hardware enforced isolation to make them suitable for multi-tenant environments. We present here the architectural choices we have made in realizing this functionality as well the performance of Hyper-V Linux containers.
Speakers
avatar for Jun Nakajima

Jun Nakajima

Sr. Principal Engineer, Intel Corporation
Jun Nakajima is a Senior Principal Engineer at the Intel Open Source Technology Center, leading virtualization and security for open source projects. Jun presented a number of times at technical conferences, including LSS, KVM Forum, Xen Summit, LinuxCon, OpenStack Summit, and USENIX... Read More →
avatar for Dr. K Y Srinivasan

Dr. K Y Srinivasan

Distinguished Engineer, Microsoft
K Y is an Architect at Microsoft where he focuses on making Linux run well on Hyper-V and Azure cloud environment. K Y is currently a Distinguished Engineer and was responsible for founding the Linux Systems Group at Microsoft. K Y comes to Microsoft from Novell where he was a Distinguished... Read More →

Monday October 23, 2017 12:05 - 12:45 CEST
Karlin I
  ContainerCon Tracks

14:20 CEST

Container Migration Around The World - Adrian Reber, Red Hat and Mike Rapoport, IBM Research
This presentation is heavily based on a demo of a running container which is live migrated around the world while the clients connection will stay alive. The example application used in the demonstration is Xonotic (The Free and Fast Arena Shooter). The server will be running in a runC container which will be live migrated around the world while the client is running locally. On the basis of the migrated container the involved technologies will be explained. This is mainly CRIU (Checkpoint/Restore In Userspace) and migration optimizations to decrease the downtime of migrations over long distances (from one continent to another) and the runC-CRIU integration. Depending on the available network infrastructure the demo will be live or pre-recorded.
Speakers
MR

Mike Rapoport

Researcher, IBM
Mike has lots of programming experience in different areas ranging from medical equipment to visual simulation, but most of all he likes hacking on Linux kernel and low level stuff. Throughout his career Mike promoted use of free and open source software and made quite a few contributions... Read More →
avatar for Adrian Reber

Adrian Reber

Principal Software Engineer, Red Hat
Adrian is a Principal Software Engineer at Red Hat and is migrating processes at least since 2010. He started to migrate processes in a high performance computing environment and at some point he migrated so many processes that he got a PhD for that. Occasionally he still migrates... Read More →

container migration around the world pdf
Monday October 23, 2017 14:20 - 15:00 CEST
Palmovka
  ContainerCon Tracks

14:20 CEST

Lightweight Containerization at Facebook - Zoltan Puskas, Facebook
In Facebook's new container system we started to heavily utilize Btrfs, cgroups2 and systemd. The combination of these tools and some additional internal code allowed us to create a lightweight, fast and efficient container system that along with our schedulers allows us to deploy, migrate and manage the life cycle of different jobs on a large scale.

We would like to present an effective alternative to existing systems (e.g. Docker, Kubernetes, etc.) that will grant a broader choice to anyone involved in containers. Our solution is aimed at systems where full virtualization is not required, making more efficient usage of available hardware and enabling fast startup/shutdown times, easy debugability, and good fault tolerance while still providing proper isolation at large scales.
Speakers
ZP

Zoltan Puskas

Production Engineer, Facebook
I'm Zoltan Puskas, currently working for Facebook's Infrastructure group improving the company's internal container systems. I previously worked on teams building distributed ETL systems. Before Facebook I have worked on embedded and HPC systems in the spaces of digital signage, nuclear... Read More →

container con lightweight containerization facebook pdf
Monday October 23, 2017 14:20 - 15:00 CEST
Chez Louis
  ContainerCon Tracks

14:20 CEST

Migrating Legacy Monoliths to Cloud Native Microservices Architectures on Kubernetes - Dan Kohn, Cloud Native Computing Foundation
Cloud Native architectures, such as those built on Kubernetes, are envied for their ability to segment different parts of an application into microservices that can separately be containerized, so that each microservice can be written in its own language, with its own framework, and its unique set of libraries. This has been shown to significantly increase developer and team productivity by decoupling dependencies between different parts of a team.

However, most legacy code consists of a large monolithic code base, not microservices applications. And, the lesson of second system syndrome is that many attempted code rewrites will end in failure, as the first system will evolve faster than the replacement system can be developed to displace it. A cloud native architecture that is only useful for new greenfield deployments is not very useful at all. So, how can monoliths evolve into modern cloud native architectures, in order to take advantage of the dev ops revolution and the resulting developer productivity gains?

This talk will look at several real-world cases where existing monolithic, legacy applications deployed in multi-billion dollar companies were slowly evolved into cloud native microservices architectures on Kubernetes. They did so step-by-step, shaving off individual pieces of functionality into new applications that were packaged into new microservices applications, until the original monolith was eventually cut down to a reasonable size. In doing so, they demonstrated that the cloud native architecture is suitable across most categories of computing, including both greenfield and brownfield development.
Speakers
avatar for Dan Kohn

Dan Kohn

General Manager, Linux Foundation Public Health, Linux Foundation
Dan leads Linux Foundation Public Health, a new initiative to use open source software to help public health authorities combat COVID-19 and serves as VP, Strategic Programs for the Cloud Native Computing Foundation, which sustains and integrates open source technologies like Kubernetes... Read More →

Monday October 23, 2017 14:20 - 15:00 CEST
Karlin I
  ContainerCon Tracks

15:10 CEST

Everything You Need to Know About Kubernetes Persistent Storage - Kenny Coleman, {code}
Applications need data. Containers remain an ephemeral technology but we don't want our data to disappear either. So how does Kubernetes do it?

This session will examine all the individual pieces required for creating persistent applications in Kubernetes. You will learn about in-tree and out-of-tree storage drivers, PersistentVolumes (PV), PersistentVolumeClaims (PVC), Dyanamic Provisioning, how to use all of these in your Deployments and Pods, high availability, and what happens to the volumes when you delete objects. Get ramped up on everything you need to know about using persistent storage for your applications in Kubernetes
Speakers
avatar for Kendrick Coleman

Kendrick Coleman

Developer Advocate, {code}
Kendrick Coleman is a reformed sysadmin and virtualization junkie. His attention has shifted from hypervisors to cloud native platforms focused on containers. In his role as a Developer Advocate for {code} by Dell EMC, he works with a team to write solutions for running persistent... Read More →

Everything Storage K8s OSS EU pdf
Monday October 23, 2017 15:10 - 15:50 CEST
Palmovka
  ContainerCon Tracks

15:10 CEST

From Zero to Hero: Scalable 4K Video Encoding with Kubernetes and Other Open Source Tools - Hygo Reinaldo, Xite Networks International
From zero to hero: Scalable 4k video encoding with kubernetes and other open source tools (Hygo Reinaldo, Xite Networks) - Encoding 4k videos can be very challenging due to aspects like encoding time, price, scaling, managing huge amount of data, failure recovery and reliability. In this presentation, Hygo explains a real life case of migration from a non-reliable On-premises platform and proprietary encoding software to a new continuous delivery platform running on cloud and using open source tools like kubernetes, linux, docker containers and ffmpeg for fast and efficient encoding 4k videos process, 15x faster encoding than On-premises. It's a great example of how powerful the right set of open source tools can be when implemented together.

This presentation it's also a good opportunity for professionals to get more familiarized with kubernetes, including it's core components and main features, containers and good DevOps practices.
Speakers
avatar for Hygo Reinaldo

Hygo Reinaldo

Senior Cloud Engineer, Xite Networks International
Hygo Reinaldo is a Senior Cloud Engineer with more than 12 years experience in Linux and Networking administration. Open Source it's on his blood. He has been automating all the daily boring stuff with Python and bash. Nowadays, he builds continuous delivery platforms using the most... Read More →

xite from zero to hero with k8s pdf
Monday October 23, 2017 15:10 - 15:50 CEST
Chez Louis
  ContainerCon Tracks

15:10 CEST

High Performance Microservices on Linux with Apache Thrift - Jens Geyer, VSX & Randy Abernethy, RX-M LLC
The world is rapidly adopting cloud native approaches to software development, reaping the synergies produced by combining microservices, Linux container technology and dynamic application orchestration. Containers offer performance gains and simplified operations, however maximizing microservice performance involves API level considerations. In this demonstration and talk we will take a look at how Apache Thrift can be used to generate material performance gains in container packaged microservices. We'll contrast Apache Thrift with REST and gRPC, describing the strengths and weaknesses of each. We'll also demonstrate how to seamlessly package Apache Thrift microservices with Docker and how to scale them with Kubernetes on a Linux cluster. The talk will conclude with a demonstration of microservice interface evolution and rolling upgrades.
Speakers
RA

Randy Abernethy

Managing Partner, RX-M, LLC
Tech Entrepreneur, coder, startup adviser, financial technology pioneer, Apache Thrift committer, author and highly experienced Destiny guardian.
avatar for Jens Geyer

Jens Geyer

Senior Software Engineer, VSX Vogel Software GmbH
Addicted to software, full stack developer, active Thrift committer & PMC member and technical writer. Committed to the goal to create high-quality, scalable software efficiently. Working for customers in the EU and worldwide. Love to learn, teach and laugh.

High Performance Microservices with Apache Thrift pdf
Monday October 23, 2017 15:10 - 15:50 CEST
Karlin I
  ContainerCon Tracks

16:20 CEST

From Dockerfiles to Ansible Container - Tomas Tomecek, Red Hat
Come and discover how you can utilize Ansible language paired with ansible-container tool for a complete lifecycle of your containerized project. This talk contains lessons learnt from turning a docker-compose & Dockerfile based project into ansible-container. In this session you will see: real examples, real problems, hopefully solutions and fresh news.
Speakers
avatar for Tomas Tomecek

Tomas Tomecek

Senior Software Engineer, Red Hat
Engineer. Hacker. Speaker. Tinker. Red Hatter. Likes containers, linux, open source, python 3, ansible, zsh, tmux, rust.

From Dockerfiles to Ansible Container pdf
Monday October 23, 2017 16:20 - 17:00 CEST
Palmovka
  ContainerCon Tracks

16:20 CEST

GPU, USB, NICs and Other Physical Devices in Your Containers - Stéphane Graber, Canonical Canada Ltd.
The very definition of a container is that it's a set of processes, or in this case full operating system which is sharing the kernel with the host machine. This opens a full array of possibilities as far as what can be shared between
host and container.

This talk will be covering some of the most common use cases, such as sharing one or multiple GPUs with a container for compute use, accessing USB devices or physical network interfaces. Then go into slightly
weirder cases of kernel device passthrough and see what can be done in such containers.

Outside of the obvious GPU compute use case, device passthrough can also be used to consolidate a number of distinct, mostly idle or old machines into just a single one, including any custom hardware that they may
have attached to them and with very little hassle. It's also ideal for testing environments with hardware needs.
Speakers
avatar for Stephane Graber

Stephane Graber

Project leader for LXD, Canonical Ltd.
Stéphane Graber is the upstream project leader for LXC and LXD at Canonical and a frequent speaker and track leader at events related to containers and Linux. Stéphane is a longtime contributor to the Ubuntu Linux distribution as an Ubuntu core developer and previous Ubuntu technical... Read More →

OSS Europe 2017 GPU, USB, NICs and other physical devices in your containers pdf
Monday October 23, 2017 16:20 - 17:00 CEST
Chez Louis
  ContainerCon Tracks

16:20 CEST

Highway to Helm: Deploying Kubernetes Native Applications - Michelle Noorali & Matt Butcher, Microsoft
Kubernetes has gained unprecedented traction in the last few years. This talk will explore how Helm, the package manager for Kubernetes, streamlines the on boarding and managing of applications running on Kubernetes. Kubernetes packages, called Charts, provide a way to deploy configurable, out-of-the-box applications, or package your own applications. In this demo-led session, we’ll show how you can use Helm to improve your deployment workflows, best practices for creating and configuring Kubernetes Charts, and lessons we’ve learned building Helm along the way.
Speakers
avatar for Matt Butcher

Matt Butcher

Principal Software Development Engineer, Microsoft Azure
Matt does cloud native open source development at Microsoft, where he has worked on Brigade, Helm, Krustlet and others. Matt is the author of a bunch of books and articles, most recently O'Reilly's book "Learn Helm" (with Matt Farina and Josh Dolitsky). When not coding, Matt enjoys... Read More →
avatar for Michelle Noorali

Michelle Noorali

Senior Software Engineer, Microsoft
Michelle Noorali is a Sr. Software Engineer at Microsoft and was Co-Chair for KubeCon+CloudNativeCon 2017. She is a member of the CNCF Technical Oversight Committee and serves as a developer representative on the CNCF Governing Board. Michelle is also a core maintainer of several... Read More →

Monday October 23, 2017 16:20 - 17:00 CEST
Karlin I
  ContainerCon Tracks
  • Experience Level Any

17:10 CEST

Containerd Internals: Building a Core Container Runtime - Stephen Day, Docker & Phil Estes, IBM
Containerd is the core container runtime used in Docker to execute containers and distribute images. It was designed from the ground up to support the OCI image and runtime specifications. The design of containerd is carefully crafted to fit the use cases of modern container orchestrators like Kubernetes and Swarm. In this talk, we dive into design decisions that help containerd meet a diverse set of requirements for a growing container world. Developing an understanding of the decoupled components will provide attendees a grasp where they can leverage functionality in their platforms. By slicing the components of a container runtime into the right pieces, integrators can choose only what they need.
Speakers
avatar for Stephen Day

Stephen Day

Containerd Maintainer, Cruise Automation
Stephen Day is a software engineer at Docker. His many contributions to Docker ecosystem projects include SwarmKit and the version 2 specification for the Docker Registry HTTP API, and evolving the available models for container image distribution. He currently works on containerd... Read More →
avatar for Phil Estes

Phil Estes

Principal Engineer, AWS
Phil is a Principal Engineer for Amazon Web Services (AWS), focused on core container technologies that power AWS container offerings like Fargate, EKS, and ECS.Phil is currently an active contributor and maintainer for the CNCF containerd runtime project, and participates in the... Read More →

containerd 2017 OSS EU pdf
Monday October 23, 2017 17:10 - 17:50 CEST
Palmovka
  ContainerCon Tracks

17:10 CEST

OpenSDS Meets Kubernetes Service Catalog - Howard Huang, Huawei
OpenSDS is a new Linux Foundation collaborative project that was established late 2016. OpenSDS aims to provide a software defined storage management framework through an intent driven API, policy driven orchestration, and distributed southbound hub that enables vendor or open source solution.

In this topic, we will demonstrate our latest effort on providing OpenSDS as a service broker to Kubernetes using the Service Catalog mechanism. We will also show that by utilizing OpenSDS as a out-of-band enhanced storage service, it could provide Kubernetes an interesting storage option for the user.
Speakers
avatar for Zhipeng Huang

Zhipeng Huang

Director of Open Source, Huawei
Zhipeng Huang currently serve as Director of Open Source for Huawei Compute Product line, in charge of openEuler, MindSpore and openGauss community operation. Zhipeng is now the TAC member of LFAI, TAC and Outreach member of the Confidential Computing Consortium, co-lead of the Kubernetes... Read More →

Monday October 23, 2017 17:10 - 17:50 CEST
Karlin I
  ContainerCon Tracks

17:10 CEST

Unikernelized Real Time Linux & IoT - Tiejun Chen, Vmware
Unikernel is a novel software technology that links an application with OS in the form of a library and packages them into a specialized image that facilitates direct deployment on a hypervisor. But why these existing unikernels have yet to gain large popularity broadly? I'll talk what challenges Unikernels are facing, and discuss exploration of if-how we could convert Linux as Unikernel, and IoT could be a valuable one of use cases because the feature of smaller size & footprint are good for those resource-strained IoT platforms. Those existing unikernels are not designed to address those IoT characters like power consumption and real time requirement, and they also doesn't support versatile architectures. Most existing Unikernels just focus on X86/ARM. As a paravirtualized unikenelized Linux, especially Unikernelized Real Time Linux, really makes Unikernels to succeed.
Speakers
avatar for Tiejun Chen

Tiejun Chen

Sr. Technical Lead, VMware
Tiejun Chen is Sr. technical leader from VMware OCTO, also strategic Representative of RISC-V International TSC 2023. He's been working on a lot of areas - cloud native, edge computing, ML/AI, RISC-V, WebAssembly, etc. He ever made many presentations at kubecon China 2021, Kube Edge... Read More →

Monday October 23, 2017 17:10 - 17:50 CEST
Chez Louis
  ContainerCon Tracks

18:00 CEST

BoF: Open Source Delivered in Containers and Their Licenses - Gergely Csatari, Nokia
Linux containers are a great way to deliver (not just) open source software and they are used everywhere for this purpose. From open source aspect the problem with container images is that they hide what kind of open source software is in the image, and what are the licenses of the software. When an organization complies with open source licenses, it needs to check and ensure the license terms of all the open source software used in the organization and follow accordingly (e.g. place licenses to product documentation or share source code), but the current situation makes this laborious and not effective. In this BoF I would like discuss if it is a good idea to collect the open source software and their licenses into the metadata of the container images. If it turns out to be a good idea I would like to ask for some advices how to make the first steps to design and implement this.
Speakers
avatar for Gergely Csatari

Gergely Csatari

Senior Open Source Specialist, Nokia
Working in the telecom industry in the last two decades it was possible for Gergely to see the evolution from vendor specific hardware to virtualisation and cloud and a to cloud native. Currently Gergely is part of the OSPO team of Nokia CTO which is reponsible for open source. In... Read More →

BoF Open Source Delivered in Containers and Their Licenses Csatari pdf
Monday October 23, 2017 18:00 - 18:45 CEST
Palmovka
  ContainerCon Tracks

18:00 CEST

BoF: Why Containers Are Really Just Fancy Files and Fancy Processes - Scott McCarty, Red Hat
It took years to boil containers down to this simple explanation - containers are just fancy files and fancy processes. Let me explain…Containers, in a way, are not terribly different than regular programs. They can be moved around, started, and stopped. But, what is a program when you really think about it? Well, it depends on what it’s doing.
Speakers
avatar for Scott McCarty

Scott McCarty

Technical Product Manager, Red Hat
At Red Hat, Scott McCarty is technical product manager for the container subsystem team, which enables key product capabilities in OpenShift Container Platform and Red Hat Enterprise Linux. Focus areas includes container runtimes, tools, and images. Working closely with engineering... Read More →

Fancy Files Fancy Processes pdf
Monday October 23, 2017 18:00 - 18:45 CEST
Chez Louis
  ContainerCon Tracks
 
Tuesday, October 24
 

10:55 CEST

Developer Tools for Kubernetes - Michelle Noorali & Matt Butcher, Microsoft

The rise of containers and Kubernetes has made deploying and upgrading applications as well as operating clusters of machines much easier. However, it's still daunting to develop applications in this new world. Developers have to learn lots of new information, tools, and technologies before they can even begin to productive. In this session, we will talk about open source tools that make developing applications for Kubernetes easier.

Speakers
avatar for Matt Butcher

Matt Butcher

Principal Software Development Engineer, Microsoft Azure
Matt does cloud native open source development at Microsoft, where he has worked on Brigade, Helm, Krustlet and others. Matt is the author of a bunch of books and articles, most recently O'Reilly's book "Learn Helm" (with Matt Farina and Josh Dolitsky). When not coding, Matt enjoys... Read More →
avatar for Michelle Noorali

Michelle Noorali

Senior Software Engineer, Microsoft
Michelle Noorali is a Sr. Software Engineer at Microsoft and was Co-Chair for KubeCon+CloudNativeCon 2017. She is a member of the CNCF Technical Oversight Committee and serves as a developer representative on the CNCF Governing Board. Michelle is also a core maintainer of several... Read More →

Tuesday October 24, 2017 10:55 - 11:35 CEST
Karlin I
  ContainerCon Tracks

10:55 CEST

Kubernetes Day 2: Monitoring - Frederic Branczyk, CoreOS
There are plenty of ways to setup a Kubernetes cluster, kubeadm, bootkube, kargo, and a lot more, but what happens after setup? Monitoring your cluster health as well as the workload running in the cluster is one of the most important aspects of operating a Kubernetes cluster.

The Prometheus monitoring system is a match made in heaven for monitoring Kubernetes clusters. Not only are many concepts similar, but Prometheus is able to keep up with the dynamic environment that Kubernetes holds.

In this talk Frederic will describe and showcase best practices of end to end monitoring using Prometheus with the Prometheus Operator, from metric collection to notifying operators about alerts.
Speakers
avatar for Frederic Branczyk

Frederic Branczyk

Software Engineer, CoreOS
Frederic is an engineer at CoreOS contributing to Prometheus and Kubernetes to build state of the art modern infrastructure and monitoring tools. He discovered his interest in monitoring tools and distributed systems in his previous jobs, where he used machine learning to detect anomalies... Read More →

Kubernetes Day 2 Monitoring pdf
Tuesday October 24, 2017 10:55 - 11:35 CEST
Palmovka
  ContainerCon Tracks

10:55 CEST

Tutorial: An Introduction to Stateful Applications on #K8s - Steve Wong & Kenny Coleman, {code}

Steve and Kenny will address how Kubernetes storage works in the context of supporting stateful applications. The talk will cover how Kubernetes storage is implemented now, and what's next for storage in future releases. Also addressed will be mechanisms like StorageClasses and StatefulSets which can provide advanced features when deploying stateful applications. The talk will include a demonstration, with audience participation, showing how a stateful application can be deployed in a platform neutral way, and unchanged way to both a public and an on-prem cloud.

Speakers
avatar for Kendrick Coleman

Kendrick Coleman

Developer Advocate, {code}
Kendrick Coleman is a reformed sysadmin and virtualization junkie. His attention has shifted from hypervisors to cloud native platforms focused on containers. In his role as a Developer Advocate for {code} by Dell EMC, he works with a team to write solutions for running persistent... Read More →
avatar for Steve Wong

Steve Wong

Strategic Open Source Partner Engineer, {code}
Steve Wong is an Open Source Engineer with the {code} team. Steve has been participating in the Apache Mesos, DC/OS, Kubernetes, and REX-Ray projects.

Intro to Stateful Apps on K8s OSS EU pdf
Tuesday October 24, 2017 10:55 - 12:25 CEST
Chez Louis
  ContainerCon Tracks  Tutorial

11:45 CEST

Kubernetes. In Real Life. - Ian Crosby, Container Solutions
When developing Cloud Native applications, a robust orchestration layer is crucial. Deployment and management of your containerised applications is not something which can be performed manually. Of the many tools which aim to solve this problem Kubernetes has emerged as a leader in the space.

While the underlying technologies have existed for much longer, Kubernetes itself is still relatively young. There are many resources available to show you how to ‘quickly’ get up and running, But when it comes to running Kubernetes in production, it is still a learning process.

In this talk I will take a look at the best practices as well as the common mistakes we have seen while working with companies who are running Kubernetes in production. From running your own local highly available Kubernetes cluster to leveraging a cloud hosted solution, I will share the lessons we’ve learned, as well as the most important points to consider when looking to take Kubernetes into the wild.
Speakers
avatar for Ian Crosby

Ian Crosby

Senior Engineer, Container Solutions
Ian Crosby is a long time software developer, enthusiast, and advocate. He cut his teeth developing military defence systems and has since aimed to use his powers for good. In his current role as Senior Engineer at Container Solutions in Amsterdam he assists companies move into the... Read More →

Tuesday October 24, 2017 11:45 - 12:25 CEST
Palmovka
  ContainerCon Tracks

11:45 CEST

Selecting the Right Persistent Storage Option for Apps in Containers - Bipin Kunal and Niels de Vos, Red Hat
No matter where an application is running, it will most likely need some form of storage. When running application in container environment, persistent storage is needed. There are plenty of storage plugins available which can provide persistent storage for application containers. With plenty of persistent storage available, it becomes evident to understand the different access modes and how it works so that applications can make better use of persistent storage. Join us and be able to choose right persistent access mode for your applications. We will take you through : what all various persistent storage access method we have, how access mode suites your workload, and how these modes works internally.
Speakers
avatar for Bipin Kunal

Bipin Kunal

Senior Software Maintenance Engineer, Red Hat
Bipin is product lead for gluster support and maintenance engineer at Red Hat. He works on various customer issues with gluster and its integration with virtualization platform and openshift container platform. He works closely with gluster and container native storage engineering... Read More →
avatar for Niels de Vos

Niels de Vos

Senior Software Engineer, Red Hat
Niels is a core-developer and maintainer for Gluster. He is employed by Red Hat and works together with other teams who provide professional support for Red Hat Gluster Storage. The main areas where Niels is active include network protocols, low-level/Operating Systems improvements... Read More →

Selecting the Right Persistent Storage Options for Apps in Containers OSS Europe 2017 pdf
Tuesday October 24, 2017 11:45 - 12:25 CEST
Karlin I
  ContainerCon Tracks
  • Experience Level Any

14:05 CEST

Kubernetes with Mixed Linux and Windows Deployments - Alessandro Pilotti, Cloudbase Solutions and Michael Michael, Apprenda
Windows Server 2016 introduced support for Docker containers, so the next logical step was to have Kubernetes running on Windows!

The #sig-windows team did a great job in overcoming portability and other issues, with the ultimate result of having a fully functional Windows Kubelet. The networking stack in particular proved to be tricky, but enter Open vSwitch and OVN to save the day and allow cross-platform networking across Linux and Windows nodes with heterogeneous deployments.

The result? Think about containerized ASP.NET Windows applications talking to databases or other services running on Linux pods, all orchestrated by Kubernetes!

During this session we will show how this whole deployment works on premise and on public clouds, with plenty of demos!
Speakers
avatar for Michael Michael

Michael Michael

Director of Product Management, VMware
Michael Michael (or M2) is a Maintainer of Harbor and Contour, co-chairs Kubernetes' SIG-Windows, and is the product lead for Velero, Octant, and Sonobuoy. M2 is focused on cloud native technologies, delivering agility and simplicity to developers and accelerating the modernization... Read More →
avatar for Alessandro Pilotti

Alessandro Pilotti

CEO, Cloudbase Solutions
Alessandro Pilotti is the CEO of Cloudbase Solutions, a company focused on cloud computing interoperability, contributing in particular the OpenStack Windows and Hyper-V components and the Open vSwitch support for Hyper-V and Windows Containers. Alessandro is a Microsoft Cloud and... Read More →

SIG Windows for Open Source Summit pptx
Tuesday October 24, 2017 14:05 - 14:45 CEST
Palmovka
  ContainerCon Tracks

14:05 CEST

Serverless - Is It For Your Organization? - Michael Bright, HPE
This talk will examine the Serverless phenomenon, popularized by AWS Lambda but now proposed by many public cloud providers such as Google and Microsoft.

We’ll look at what Serverless is, what advantages it brings to developers and operators as well as why the cloud providers would offer such a service.

The cloud provider frameworks tend to be specific to their environment but open source frameworks exist to facilitate deployment to multiple cloud providers or to implement independent frameworks without lock-in. We’ll compare them.

Let’s also look at what are the real-world services which can be built with the Serverless paradigm. Learn about the event driven programming pattern and the importance of APIs to implement interesting use cases

There are many Open Source Serverless implementations - some aim to emulate AWS Lambda for testing or deployment, whilst other projects such as OpenWhisk and FaaS provide much richer execution environments or the ability to interwork with serveral cloud backends.

Learn how to get started with this technology by deploying your own Server for Serverless ;-), or just using online resources.

Learn also about the latest developments from Twilio and AWS in this fast moving domain
Speakers
avatar for Michael Bright

Michael Bright

Technical Trainer, @mjbright Consulting
Michael Bright, is a Technical Trainer for Kubernetes, Terraform, Docker. Based in Grenoble, France, he runs a Python user group, and is a co-organizer of the Docker and FOSS Meetup groups. He has a keen interest in Containers, Orchestration, Unikernels and Serverless technologies... Read More →

2017 Oct OSS Serverless pdf
Tuesday October 24, 2017 14:05 - 14:45 CEST
Karlin I
  ContainerCon Tracks

14:05 CEST

The New Prometheus Storage Engine - Fabian Reinartz, CoreOS, Inc.
Prometheus was built as a monitoring system with Cloud Native environments in mind.

Orchestration systems such as Kubernetes are rapidly gaining traction and unlock features of highly dynamic environments, such as frequent rolling updates and auto-scaling, for everyone. This inevitably puts new strains on Prometheus as well.

In this talk we explore what the challenges are and how we are addressing them by building a new storage layer from the ground up.

The new design enables consistent performance with thousands of concurrent writers inserting millions of new samples per second on a single machine.

We will discuss how the new approach significantly reduces resource requirements for CPU, memory, and disk IO alike. At the same time its more efficient indexing techniques increase query performance and allow us to gracefully handle high turnover rates of monitored application instances.
Speakers
avatar for Fabian Reinartz

Fabian Reinartz

Software engineer, CoreOS, Inc.
Fabian Reinartz is an engineer at CoreOS and one of the Prometheus core developers. Previously, he was a production engineer at SoundCloud.

Tuesday October 24, 2017 14:05 - 14:45 CEST
Chez Louis
  ContainerCon Tracks

14:55 CEST

Simplify Your Kubernetes Deployments with Helm - Lukas Eichler, utinity GmbH
Kubernetes is moving to be a core technology in the new cloud space. Despite seeing a rapid adoption from different projects, actually using Kubernetes in an efficient way for complex problems is still a complicated task. Lukas Eichler will show in this presentation a solution for this by using the official Kubernetes application package manager "Helm".
He will give an introduction into using Helm and show how to easily manage multiple deployment stages of your application on Kubernetes with it. In Addition he will present a Continuous Deployment pipeline with Helm and more advanced deployment features like setting up complete staging environments with one command, canary deployments and zero downtime deployments.
Speakers
avatar for Lukas Eichler

Lukas Eichler

Cloud Architect, utinity GmbH
I am a Cloud Architect at utinity, Germany where I help Clients build cool projects based on cloud native solutions.

Tuesday October 24, 2017 14:55 - 15:35 CEST
Karlin I
  ContainerCon Tracks

14:55 CEST

Unikernels: What Have They Been Up To? - Amir Chaudhry, Docker
Unikernels represent an extreme approach to application specialisation, and have typically been associated with virtual machines running on hypervisors. However, the technology is much more widely useful, can run on different targets, and has steadily made its way into other projects and products.

In this talk we'll review the progress across the unikernel ecosystem and highlight advances of the most active open-source projects:
- MirageOS, which has improved the dev experience and supports new cloud targets.
- HaLVM, which created a product to help detect network intrusions.
- IncludeOS, which has made rapid progress and introduced POSIX compatibility.

We'll also discuss how the underlying ideas behind unikernels, of minimalism, composability, and security, have found their way into other projects and products, and the questions this poses for building maintainable systems.
Speakers
AC

Amir Chaudhry

Member of Technical Staff, Docker
Amir Chaudhry is the Community Manager for MirageOS and works at Docker to make unikernels accessible to developers everywhere. Most of his time is spent on open source efforts and he's a big fan of automation to maximise developer impact. In previous lives he led operations at a... Read More →

Tuesday October 24, 2017 14:55 - 15:35 CEST
Chez Louis
  ContainerCon Tracks

14:55 CEST

Using BPF in Kubernetes - Alban Crequy, Kinvolk
In this talk, I will present different use cases for using BPF in a Kubernetes cluster. BPF is a Linux in-kernel virtual machine and there are different kinds of BPF programs for different subsystems that will be considered: kprobes, traffic control, cgroups, LSM. I’ll follow with concrete examples, such as Weave Scope’s HTTP Statistics plugin. Finally, I’ll share tips and tricks on how to develop your own BPF programs in Kubernetes with the libraries bcc and gobpf, and show ways of easily test those with SemaphoreCI and rkt.
Speakers
avatar for Alban Crequy

Alban Crequy

Co-founder and Director of Kinvolk Labs, Kinvolk
Alban is Co-founder of Kinvolk and director of engineering for Kinvolk Labs. He has a particular interest in integrating BPF into Kubernetes. He’s a maintainer of the gobpf library and has worked on software in the cloud space using BPF with Golang: Weave Scope, Traceleft, Project... Read More →

talk using bpf in kubernetes pdf
Tuesday October 24, 2017 14:55 - 15:35 CEST
Palmovka
  ContainerCon Tracks

16:05 CEST

Ten Layers of Container Security - Daniel Oh, Red Hat
In this session, we'll identify the 10 most common layers in a typical container deployment, and the best ways to build security into each layer. These layers include: 1) container host: Multi-tenancy at the container layer, 2) content security container registries, and secure access to container images, 3) build process controlling what can be deployed with a cluster container platform authentication and authorization, 4) networking isolation, 5) attached storage API management, 6) endpoint security, 7) SSO roles, 8) access management in a cluster federation. Increasingly complicated applications and demands for faster development are putting even more pressure on infrastructure, IT teams, and processes. It's more important than ever to have the right technologies in place. Containers deliver applications faster and scale them more rapidly.
Speakers
avatar for Daniel Oh

Daniel Oh

Senior Principal Developer Advocate, Red Hat
Daniel Oh is Java Champion and Senior Principal Developer Advocate at Red Hat to evangelize developers for building Cloud-Native Microservices and Serverless Functions with Cloud-Native Runtimes(i.e. Quarkus, Spring Boot, Node.js) and OpenShift/Kubernetes. Daniel also continues to... Read More →

[OSSEU2017]Ten Layers of Container Security pdf
Tuesday October 24, 2017 16:05 - 16:45 CEST
Chez Louis
  ContainerCon Tracks
  • Experience Level Any

16:05 CEST

Using Containers and Continuous Packaging to Build Native Fossology Packages - Bruno Cornec, Hewlett Packard Enterprise and Michael Jaeger, Siemens
During last LinuxCon, Bruno presented the continuous packaging approach used
with a tool like project-builder.org to package upstream projects for hundreds
of Linux distributions tuples in an automatic manner. Discussions happened
there with the FOSSology project which wanted to benefit from this approach to
produce Linux packages for their users. Both projects have since that worked
jointly to make it a reality, and want to share their return of experience on
this journey, benefits obtained, issues encountered and how they were fixed.
After a reminder of the basics on continuous packing, the presentation will
give a concrete example of what was setup using the infrastructure of the
LinuxFoudation to enable the automatic creation of rpm and deb packages for
FOSSology, launched during the continuous integration process already in
place. A demo of the build process will also be made.
Speakers
avatar for Bruno Cornec

Bruno Cornec

Open Source & Technology Strategist, HPE
Bruno Cornec has been managing various Unix systems since 1987 and Linux since 1993 (0.99pl14).Bruno first worked 8 years around Software Engineering and Configuration Management Systems in Unix environments.Since 1995, he is Open Source and Linux (OSL) Technology Strategist, Linux... Read More →
avatar for Michael C. Jaeger

Michael C. Jaeger

Project Lead, Siemens AG
Michael C. Jaeger is one of the maintainers for Linux Foundation\\'s FOSSology and Eclipse SW360 projects, both available on Github and both in the area of OSS handling w.r.t. license compliance and component management. At Siemens Corporate Technology in Munich, Germany, Michael... Read More →

OSS EU 17 FOSSOlogy+PB pdf
Tuesday October 24, 2017 16:05 - 16:45 CEST
Palmovka
  ContainerCon Tracks

16:05 CEST

Why mount() is a Liability for Container Engines, and How They Address It - Tycho Andersen, Docker Inc
One of the most obvious features of containers to new users is that they allow for isolated root filesystem environments. The way container engines achieve this is through careful manipulation mount namespaces and mount sharing flags. If one of these steps is handled incorrectly, attackers may be able to control the host. Further, even if mounts are configured correctly, things like binding or moving mounts, or simply creating a whole new copy of a virtual filesystem can make host filesystem security more difficult to reason about. And on top of that, malicious users could also exploit unknown bugs in filesystem block parsers.

While most container engines heavily lock down mount() by default, it is useful to understand *why* this is the case and what possible exploits look like. In this talk, I’ll cover basics of how a container’s rootfs is configured, as well as how mount flags interact with namespaces, and what container engines do about all this.
Speakers
TA

Tycho Andersen

Software Engineer, Docker, Inc
Tycho is an engineer at Docker working on LinuxKit, a toolkit for building container-focused host operating systems out of Linux. In his spare time he rides bikes and does improv comedy. Tycho has been fortunate to speak at a number of industry conferences including linux.conf.au... Read More →

Tuesday October 24, 2017 16:05 - 16:45 CEST
Karlin I
  ContainerCon Tracks

16:55 CEST

OpenSDS and Hyperscale Storage Design at NTT and Yahoo Japan - Steven Tan, Huawei & Kei Kusunoki, NTT & Yusuke Sato, Yahoo Japan
OpenSDS is an open-source project created to address the storage challenges, particularly in scale-out cloud native environments, with heterogeneous storage platforms. In this session, we will introduce OpenSDS architecture and design. Kei, from NTT Communications, and Yusuke from Yahoo Japan will also be presenting their storage designs, and the different challenges they faced when approaching designing for hyperscale.
Speakers
avatar for Kei Kusunoki

Kei Kusunoki

Technology Development, Storage Engineer, NTT Communications
avatar for Yusuke Sato

Yusuke Sato

Manager, yahoo japan corporation
Yusuke Sato is responsible for private cloud compute and storage at Yahoo Japan Corporation. He has been engaged mainly in verification of server hardware, operation of storage systems, and establishment and operation of virtual environments. He led the server and OS team from 2013... Read More →
avatar for Steven Tan

Steven Tan

VP & CTO Cloud Solution, SODA Foundation Chair, Futurewei
Steven Tan is VP & CTO Cloud Solution, Storage at Futurewei where he is responsible for open source strategy and collaboration. Steven brought together leaders across industries and founded the SODA Foundation which he currently serves as chair. SODA Foundation is a transformation... Read More →

Tuesday October 24, 2017 16:55 - 17:35 CEST
Palmovka
  ContainerCon Tracks

16:55 CEST

Using Docker Containers to Serve Deep Learing Predictions at Booking.com - Sahil Dua, Booking.com
Each day, over 1.2 million room nights are reserved on Booking.com. That gives us access to huge amount of data which we can utilise in order to provide a better experience to our customers.

We understand that while there are a lot of machine learning frameworks and libraries available, putting the models in production at large scale is still a challenge. I’d like to talk about how we took on the challenge of deploying deep learning models in production: how we chose our tools and developed our internal deep learning infrastructure. I’ll cover how we do model training in Docker containers, distributed TensorFlow training in a cluster of containers, automated re-training of models and finally - deployment of models using Kubernetes. I’ll also talk about how we optimise our model prediction infrastructure for latency or throughput depending on the use case.
Speakers
avatar for Sahil Dua

Sahil Dua

Software Developer, Booking.com
Sahil is a software developer at Booking.com. He has been involved in leveraging container infrastructure to help Booking.com’s internal teams in taking advantage of deep learning techniques at scale. An open source software enthusiast, Sahil is a core contributor and community... Read More →

OSSummit Prague 2017 (1) pptx
OSSummit Prague 2017 (1) pdf
Tuesday October 24, 2017 16:55 - 17:35 CEST
Chez Louis
  ContainerCon Tracks

16:55 CEST

Zombie Kubernetes! : Making Nodes Rise From the Dead - Michael Johnston, Supergiant.io
How to install Kubernetes using immutable configuration. Remove points of provisioning failure by leveraging cloud-config for configuration.
Speakers
MJ

Michael Johnston

Devops Engineer, Supergiant.io
Mike Johnston is an Infrastructure engineer with over 15 years of experience developing stable and performant infrastructure for Wal-Mart Stores Inc. and startups in northwest Arkansas. Mike is also one of the core creators of Supergiant, a infrastructure management tool for Kube... Read More →

EU Presentation “Zombie Kubernetes! Raising Nodes from the Dead.“ pdf
Tuesday October 24, 2017 16:55 - 17:35 CEST
Karlin I
  ContainerCon Tracks
 
Wednesday, October 25
 

11:15 CEST

Connecting Brokers to Kubernetes Clusters with the Kubernetes Service Catalog and the Open Service Broker API - Aaron Schlesinger, Microsoft
Kubernetes enables complex, powerful and reliable microservice based applications. These applications still lack a standard way to connect to the vast selection of services on the market.

The service-catalog project connects Open Service Broker API (OSB API) compatible brokers to any Kubernetes cluster, providing standardized integration with multiple clouds and vendors.

In this presentation, I’ll show exactly how service-catalog achieves this elusive standardization along with the OSB API. I’ll detail the architecture, where the project is, and how we got to where we are. And, of course, I’ll show the service-catalog in action with a demo. And to conclude, I’ll explain how you can get involved with the Kubernetes Special Interest Group (SIG) that is building service-catalog.
Speakers
A

Aaron

Sr. Software Engineer, Microsoft Azure, Microsoft
Aaron Schlesinger is a Sr. Software Engineer at Microsoft where he works on Kubernetes and related projects. He is a co-lead on the Kubernetes Service-Catalog special interest group, and is deeply involved with connecting external services to Kubernetes clusters in a manageable way... Read More →

Wednesday October 25, 2017 11:15 - 11:55 CEST
Chez Louis
  ContainerCon Tracks

11:15 CEST

Deep Dive in Docker Overlay Networks - Laurent Bernaille, D2SI
The Docker network overlay driver relies on several technologies: network namespaces, VXLAN, Netlink and a distributed key-value store. This talk will present each of these mechanisms one by one along with their userland tools and show hands-on how they interact together when setting up an overlay to connect containers.

The talk will continue with a demo showing how to build your own simple overlay using these technologies.
Speakers
avatar for Laurent Bernaille

Laurent Bernaille

Principal Engineer, Datadog
Laurent Bernaille worked several years as a consultant specializing in cloud, containers, and automation and helped organizations migrate to the public cloud and adopt containers. He is now Principal Engineer at Datadog and works closely with infrastructure teams, which are responsible... Read More →

docker network overlay pdf
Wednesday October 25, 2017 11:15 - 11:55 CEST
Palmovka
  ContainerCon Tracks

11:15 CEST

No One Puts the JVM in a Container - Joerg Schad & Johannes Unterstein, Mesosphere
The current craze of Docker has everyone sticking their processes inside a container... but do you really understand cgroups and how they work? Do you understand the difference between CPU Sets and CPU Shares?
Spark is a Scala application that lives inside a Java Runtime, do you understand the consequence of what impact the cgroup constraints have on the JRE?
This talk starts with a deep understand of Java's memory management and GC characteristics and how JRE characteristics change based on core count.
We will continue the talk looking at containers and how resource isolation works. The session will detail specifically the difference between CPU sets and CPU shares and memory management.
The session will close with a deep understanding of the consequences of running the JRE in a CPU share environment and the potential for pseudo-random behavior of running in a heterogeneous datacenter.
Speakers
avatar for Jörg Schad

Jörg Schad

CTO, ArangoDB
Jörg Schad is the CTO at ArangoDB. In a previous life, he has worked on or built machine learning pipelines in healthcare, distributed systems, including early Kubernetes code at Mesosphere, and in-memory databases. He received his Ph.D. for research about distributed databases and... Read More →
avatar for Johannes Unterstein

Johannes Unterstein

Graphs, containers and fun, Neo4j
Johannes is doing things with containers and graphs, check it out: https://neo4j.com/cloud/

Java in Containers pdf
Wednesday October 25, 2017 11:15 - 11:55 CEST
Karlin I
  ContainerCon Tracks

12:05 CEST

Connected Intelligence: Edge-Native Design for IoT Apps and Microservices Beyond the Cloud - Rishikesh Palve, TIBCO
We are entering the next phase of distributed computing where we find ourselves immersed in ubiquitous & cheap compute in the form of IoT devices all around us. This presents an opportunity to evolve design principles for applications and microservices running on these devices. How do we build applications that run natively on the edge devices and interact with cloud? What are the do’s and dont’s for building edge applications? Do cloud-native design principles map directly to edge-native, or does it diverge away in certain areas? How do we leverage machine learning frameworks to embed intelligence in the edge apps? We explore these questions in the context of Project Flogo, an Open Source Integration Framework and real-world Industrial IoT problems.
Speakers
avatar for Rishikesh Palve

Rishikesh Palve

Product Manager, TIBCO
Rishikesh is a Product Manager at TIBCO. He has worked in different groups such as engineering, pre-sales and product management over last 7 years. In his various roles, he has been instrumental in product releases as well as in solution design, architecture and POCs for TIBCO customers... Read More →

Connected Intelligence Edge Native design for IoT Apps and Microservices beyond the Cloud pdf
Wednesday October 25, 2017 12:05 - 12:45 CEST
Karlin I
  ContainerCon Tracks

12:05 CEST

Docker, Moby is Killing Your #devops Efforts - Kris Buytaert, Inuits.eu
Containers have been a round for over a decade, Docker for almost half of that, the new hipster tool is touted to be the ultimate devops tool, but is it ? This talk will show that docker sometimes is the antipattern , that it does exactly the opposite of what devops is trying to achieve. Often Docker is effectively widening the gaps between development and operations and reenforcing the silos we have been trying to break down. We'll show how Docker is a nice development tool, but an operational nightmare. This talk is based on real life situations and will focus on both the cultural and the technical aspect of adopting containers. Next to showing the problems Docker brings we will also provide guidelines/example on how to do Docker right, as a team.
Speakers
avatar for Kris Buytaert

Kris Buytaert

Chief Yak Shaver, Inuits.eu
Kris Buytaert is a long time Linux and Open Source Consultant. He's one of instigators of the devops movement, currently working for Inuits He is frequently speaking at, or organizing different international conferences He spends most of his time working on bridging the gap between... Read More →

DockerIsKilling pdf
Wednesday October 25, 2017 12:05 - 12:45 CEST
Chez Louis
  ContainerCon Tracks
  • Experience Level Any

12:05 CEST

Mixing cgroupfs v1 and cgroupfs v2: Finding Solutions for Container Runtimes - Christian Brauner, Canonical Ltd.
With the release of kernel 4.5 the new cgroupfs v2 API was declared non-experimental. But the missing feature parity between cgroupfs v2 with cgroupfs v1 makes it nearly impossible for container runtimes to use it. Especially before the cpu controller is merged, no runtime is expected to switch to it by default. Nonetheless cgroupfs v2 is slowly making its way into various distributions. This brings with it a new set of problems and challenges which container runtimes must tackle. For example, one of the core problems container runtimes will have to face is how to support running cgroupfs v1 hierarchies inside a container while the host is running a cgroupfs v2 hierarchy and vica versa. This talk will try to outline some of these problems more clearly, and suggest possible solutions and hopefully inspire a fruitful discussion that leads to further solutions or at least helps to identify and specify various problems more clearly.
Speakers
avatar for Christian Brauner

Christian Brauner

Principal Software Engineer, Microsoft
Christian Brauner is a kernel developer and maintainer of the LXD and LXC projects currently working at Microsoft. He works mostly upstream on the Linux Kernel maintaining various bits and pieces. He is strongly committed to working in the open, and an avid proponent of Free Software... Read More →

oss eu 2017 mixing cgroupfs pdf
Wednesday October 25, 2017 12:05 - 12:45 CEST
Palmovka
  ContainerCon Tracks

14:15 CEST

Continuous Integration of an Operating System in Kubernetes - Stef Walter, Red Hat
At Red Hat we use Kubernetes to do continuous integration of an entire operating system, booting tens of thousands of operating systems a day in Kubernetes.

I’ll share some surprising results we found while using Kubernetes in this way. We achieved six times the task density by deploying Kubernetes on the same hardware resources.

We’ll also look at what we had to change in Kubernetes to enable this, including bringing necessary devices into Kubernetes pods. You’ll also see Cockpit based dashboard that lets us jump into any container and diagnose issues or visualize scaling.
Speakers
avatar for Stef Walter

Stef Walter

Hacker, manager, and CI freak., Red Hat
Stef is an avid open source hacker. He's contributed to over a hundred open source projects, and can currently be found working on the Cockpit Linux admin interface. He's a usability freak. Stef lives in Germany, and works at Red Hat.

stefw continuous integration of an operating system in kubernetes pdf
Wednesday October 25, 2017 14:15 - 14:55 CEST
Karlin I
  ContainerCon Tracks

14:15 CEST

Docker Adoption Patterns - Ilan Rabinovitch, Datadog
As a SaaS monitoring solution specializing in dynamic infrastructure, Datadog has a unique vantage point into the container usage patterns at a global scale. What patterns are organizations finding most successful in their adoption? Which technologies are being containerized? Join us as we open up the data and discuss real world container, orchestration and scheduler usage in organizations large and small, from startup to enterprise.
Speakers
avatar for Ilan Rabinovitch

Ilan Rabinovitch

Ilan is long time advocate for open source and cloud native.  He lead product, community, and technical partnerships for 8 years as a Senior Vice President at a Datadog. Prior to this he spent a number of years leading infrastructure and reliability engineering teams at organizations... Read More →

Wednesday October 25, 2017 14:15 - 14:55 CEST
Chez Louis
  ContainerCon Tracks
  • Experience Level Any

14:15 CEST

Docker?!?! But I am a SysAdmin! - Mike Coleman, Docker
Your developers just walked into your cube and said "here's the new app, I built it with Docker, and it's ready to go live". What do you do next? In this session we'll talk about what containers are and what they are not. And we'll step through a series of considerations that need to be examined when deploying containerized workloads - VMs or Container? Bare Metal or Cloud? What about capacity planning? Security? Disaster Recovery? How do I even get started?
Speakers
avatar for Mike Coleman

Mike Coleman

Technology Evangelist, Docker
Mike works at docker as an evangelist specializing in helping the community understand how to operationalize Docker. Prior to joining Docker he worked at Puppet Labs, VMware, Intel, and Microsoft in a variety of product management and technical marketing roles. Before all that Mike... Read More →

docker but I'm a sysadmin oss pptx
Wednesday October 25, 2017 14:15 - 14:55 CEST
Palmovka
  ContainerCon Tracks

15:05 CEST

Container Orchestration: The State of Play - Michael Bright, HPE
As containers continue to disrupt the IT and Cloud industries competition continues to increase for container technologies and especially container and infrastructure orchestration.

In this talk we will look at why we need Container Orchestration and the main contenders amongst Docker Swarm, Kubernetes and Apache Mesos as well as other upcoming solutions such as Morpheus, Nomad and Cattle.

This is one of the most hotly contended technology areas in computing today with very rapid advances in capabilities amongst the competing open source implementations.

So how should you choose your solution?

We’ll compare and contrast the existing solutions, look at where they are heading and how you can use them in your solution today and tomorrow

A separate hands-on lab session will also be proposed.
Speakers
avatar for Michael Bright

Michael Bright

Technical Trainer, @mjbright Consulting
Michael Bright, is a Technical Trainer for Kubernetes, Terraform, Docker. Based in Grenoble, France, he runs a Python user group, and is a co-organizer of the Docker and FOSS Meetup groups. He has a keen interest in Containers, Orchestration, Unikernels and Serverless technologies... Read More →

ContainerOrchestration Pres pdf
Wednesday October 25, 2017 15:05 - 15:45 CEST
Palmovka
  ContainerCon Tracks

15:05 CEST

Death of the ESB: 10 Pitfalls in the Trasition to Cloud-Native Integration - Rishikesh Palve, TIBCO
As we move from an ESB world to an API focused microservices world, the need for integration does not go away. In fact, it is arguably far more important today than ever. Based on customer engagements, this session discusses the 10 pitfalls one has to avoid when plotting the transition from an ESB-centric integration architecture to a distributed API-centric microservices architecture on platforms such as CloudFoundry, Kubernetes etc.
Examples of pitfalls
• SOAPful APIs
• Server-side conversations
• Roll your own key management
• Coupling of apps & API lifecycle
• Let’s migrate everything as-is
Speakers
avatar for Rishikesh Palve

Rishikesh Palve

Product Manager, TIBCO
Rishikesh is a Product Manager at TIBCO. He has worked in different groups such as engineering, pre-sales and product management over last 7 years. In his various roles, he has been instrumental in product releases as well as in solution design, architecture and POCs for TIBCO customers... Read More →

Death of the ESB 10 Pitfalls in the Transition to Cloud Native Integration pdf
Wednesday October 25, 2017 15:05 - 15:45 CEST
Karlin I
  ContainerCon Tracks

15:05 CEST

Everything You Always Wanted to Know About Object Storage - Orit Wasserman, Red Hat
The rapid growth of unstructured data is fueling the need for a next generation storage that’s flexible, economical, and scalable enough to handle the petabytes of data being created every day. Object storage is the answer!

Ceph is a highly available distributed software defined storage, that provides two object storage interfaces:
  • Rados provides native object storage API using a rich library with C/C++, java, python, go and several others bindings.
  • Ceph RGW (Rados Gateway) provides HTTP REST API that is Amazon S3 and openstack swift compatible.
In this talk I will introduce object storage foundations, best practices and Ceph object storage solution.
Speakers
avatar for Orit Wasserman

Orit Wasserman

Senior Principal Software Engineer, Red Hat
Orit is a senior principal software engineer at Red Hat, focusing on Container and multi cloud storage. She was a principal architect at Lightbits labs working on NVMe/TCP software-defined storage. At Red Hat, she worked on Ceph object storage (Ceph Rados Gateway), a highly available... Read More →

OSSEU2017 object pdf
Wednesday October 25, 2017 15:05 - 15:45 CEST
Chez Louis
  ContainerCon Tracks

16:15 CEST

System Containers - Christan Brauner, Canonical Ltd.
The last couple of years have seen an increased interest in container-related technologies. When people speak of containers they usually mean process containers. They often view a container as being much more comparable to a single process than to a virtual machine. But this is not the only way that containers can be used. The features that the Linux kernel provides allow for much more, up to running a whole Linux system unmodified inside a single container. For the last couple of years the LXD team has worked on just that: making containers behave much more like a virtual machine. This talk is going to introduce the concept of a system container in depth and touch on some of the more challenging aspects one faces when containerizing a whole init system and not just a single process. We will also show how system containers allow you to do things like running other container runtimes like runC, Docker/Moby, and LXD inside them and allow for device passthrough for GPU and USB devices in a much easier way than actual virtual machines can.
Speakers
avatar for Christian Brauner

Christian Brauner

Principal Software Engineer, Microsoft
Christian Brauner is a kernel developer and maintainer of the LXD and LXC projects currently working at Microsoft. He works mostly upstream on the Linux Kernel maintaining various bits and pieces. He is strongly committed to working in the open, and an avid proponent of Free Software... Read More →

oss eu 2017 system containers pdf
Wednesday October 25, 2017 16:15 - 16:55 CEST
Chez Louis
  ContainerCon Tracks

16:15 CEST

Tutorial: Container Orchestration: Hands-On with the Technologies - Michael Bright, HPE
As containers continue to disrupt the IT and Cloud industries competition continues to increase for container technologies and especially container and infrastructure orchestration.

In this tutorial we will demonstrate hands-on experience with the main contenders for Container Orchestration today which are Docker Swarm, Kubernetes and Apache Mesos and upcoming solutions amongst Morpheus, Nomad and Cattle.

This is one of the most hotly contended technology areas in computing today with very rapid advances in capabilities amongst the competing open source implementations.

This tutorial will allow to see what it means to use these technologies and to compare them to appreciate their ease of use and or complexity.

Updated materials will be made available here:
https://github.com/ContainerOrchestration/Labs


Speakers
avatar for Michael Bright

Michael Bright

Technical Trainer, @mjbright Consulting
Michael Bright, is a Technical Trainer for Kubernetes, Terraform, Docker. Based in Grenoble, France, he runs a Python user group, and is a co-organizer of the Docker and FOSS Meetup groups. He has a keen interest in Containers, Orchestration, Unikernels and Serverless technologies... Read More →

Wednesday October 25, 2017 16:15 - 17:45 CEST
Palmovka
  ContainerCon Tracks

16:15 CEST

Lab: Linux Container Internals - Scott McCarty & Marcos Entenza Garcia, Red Hat
Have you ever wondered how Linux containers work? How they really work, deep down inside? Questions like: How does sVirt/SELinux, SECCOMP, namespaces, and isolation really work? How does the Docker Daemon work? How does Kubernetes talk to the Docker Daemon? How are container images made? In this lab, we'll answer all these questions and more. If you want a deep technical understanding of containers, this is the lab for you. An engineering walk through the deep, dark internals of the container host, what’s packaged in the container image, and how container orchestration work. You'll get the knowledge and confidence it takes to apply your current Linux technical knowledge to containers.
Speakers
avatar for Marcos Entenza Garcia

Marcos Entenza Garcia

SRE - Open Innovation Labs, Red Hat
At Red Hat's Open Innovation Labs, Marcos Entenza (aka Mak), helps build our Push Button Infrastructure that we use to accelerate customer residencies. He is part of the Consulting Team, where he has been played Consultant and Architect roles for Customer's engagements, helping Enterprise... Read More →
avatar for Scott McCarty

Scott McCarty

Technical Product Manager, Red Hat
At Red Hat, Scott McCarty is technical product manager for the container subsystem team, which enables key product capabilities in OpenShift Container Platform and Red Hat Enterprise Linux. Focus areas includes container runtimes, tools, and images. Working closely with engineering... Read More →

Container Internals Lab Presentation pdf
Wednesday October 25, 2017 16:15 - 17:45 CEST
Congress Hall III
  ContainerCon Tracks  Tutorial

17:05 CEST

Bringing Multi-Container to Constrained Devices: The Case of the IoT Gateway - Csaba Kiraly & Koustabh Dolui, Bruno Kessler Foundation
Containerization has been driving the scene in cloud technology, but it stretches far beyond the cloud domain. In fact, the AGILE project develops a container based open software framework for IoT gateways, bringing several of these advantages to the IoT edge domain.

We show how we bring docker-based containerization to the constrained gateway platform ensuring support for a diversity of gateway hardware architectures below, dependence conflict free code reuse as part of, and language-agnostic application runtime on top of the framework.

The talk will focus on streamlining the process of bringing docker-based containerization to these devices, discussing architectural aspects, developer workflow, and the use of base image hierarchies and image layering for in-container and cross-container performance optimizations.
Speakers
avatar for Koustabh Dolui

Koustabh Dolui

Research Engineer, Bruno Kessler Foundation
Koustabh Dolui is a research engineer at FBK, Trento, Italy. His research interests lie in Edge computing and cloud platforms for IoT. He has graduated in Telecommunications Engineering from Politecnico di Milano, Italy in 2016. He is a developer for the AGILE H2020 project and an... Read More →
CK

Csaba Kiraly

Senior Researcher, FBK CREATE-NET
"Csaba Kiraly is a senior researcher at the Bruno Kessler Foundation, Trento, Italy, as member of the OpenIoT team. His main interests are in design and performance evaluation of IoT systems and networking protocols. In the past, he was also working on virtualization technologies... Read More →

OSS Europe 2017 Talk v09 csaba pdf
Wednesday October 25, 2017 17:05 - 17:45 CEST
Chez Louis
  ContainerCon Tracks
 
Filter sessions
Apply filters to sessions.
Saturday, October 21
Sunday, October 22
Monday, October 23
Tuesday, October 24
Wednesday, October 25
Thursday, October 26
Friday, October 27
Athens
Athens/Barcelona
Athens/Barcelona/Berlin
Atrium Café & Congress Foyer
Attendees On Own
Berlin/Brussels
Brussels
Chez Louis
Congress Hall
Congress Hall Foyer, Lobby & Mezzanine Levels
Congress Hall I
Congress Hall II
Congress Hall III
Czech Technical University - Room 209
Grand Ballroom
Grand Ballroom Foyer
Group Entrance Foyer
Hercovka
Hergatova Cihelna
Hilton Prague Lobby Level LL
Karlin I
Karlin I-III
Karlin II
Karlin III
LivingWell (Level M)
London
Mezannine
Municipal House
Palmovka
Prague City Courtyard Marriot
Rokoska
Sofia
Tyrolka
Tyrolka/Hercovka
Vienna
  • CloudOpen Tracks
  • ContainerCon Tracks
  • Diversity Summit
  • Embedded Linux Conference
  • Evening Events
  • Joint KVM Forum Track
  • Kernel Summit
  • Keynote
  • LinuxCon Tracks
  • Open Community Conference
  • Registration & Meals
  • Special Events & Activities
  • Tutorial
  • Wildcard & Business Tracks
  • Experience Level
  • Advanced
  • Any
  • Beginner
  • Intermediate
  • Audience
  • Advanced
  • Any
  • Beginner
  • Intermediate
  • Popular