logo

2023-04-17 ~ 2023-04-21

Presentations (with video): 316 (265)

The Cloud Native Computing Foundation’s KubeCon + CloudNativeCon EU 2023 is their flagship conference for Kubernetes users. The event features early adopters and technologists from leading open source and cloud native communities, and it is being held at the RAI in Amsterdam, Netherlands from April 18-21, 2023.

Sort by:  

Authors: Greg Kroah Hartman, Philippe Ensarguet, Gabriele Columbro, Sachiko Muto
2023-04-21

The EU Cyber Resilience Act aims to address a vital need for improved security across the software supply chain, but there’s broad consensus that, in its current draft, it risks imposing undue burden on individuals and non profit organizations with the risk of stifling European open source innovation with ripple effects to it’s global ecosystem. We welcome representatives from all the different constituents of the Community, from individual maintainers to companies consuming and contributing to open source, from representatives of the public sector to open source foundations, to join us for an open discussion to learn more on the real life impacts of the CRA and where do we go from here
Authors: Shuning Chen, Ping Yu
2023-04-21

To meet the requirement of Multi-Tenancy and Change Data Capture (for RawKV), TiKV introduces significant changes as follows: Separate data space into logical sub ranges for different tenancies, and add timestamp as key postfix for MVCC. But these changes bring great challenge includes: * Region management becomes a bottleneck of region lookup while multi-tenancy brings many more regions, and it is difficult to limit blast radius among tenancies. * TSO service become a bottleneck of performance and resilience, as every write requires a timestamp. To make multi-tenancy elastic and resilient, we first refactor region management and TSO service as micro-services, and isolate tenancies according to their scale and QoS. Second, we implement an TSO cache in TiKV, to acquire TSO in batch for performance and tolerate service interruption during fault and failover of PD. At the same time, handle the causality consistence brought by TSO cache with caption.
Authors: Jonathan Berkhahn, Per Gonçalves da Silva
2023-04-21

tldr - powered by Generative AI

The presentation discusses the Operator SDK and the new hybrid Helm operator, as well as future plans for external bundle validation.
  • The Operator SDK is a toolset for building Kubernetes operators
  • The hybrid Helm operator allows for more control and customization than the original Helm operator
  • Future plans for the Operator SDK include external bundle validation
  • Quarkus is a faster alternative to JVM for building operators
Authors: Jianbo Sun, Da Yin
2023-04-21

tldr - powered by Generative AI

KubeVela is a modern software platform that simplifies delivering and operating applications across hybrid multi-cloud environments. The platform provides an infrastructure-agnostic layer to render or deploy software and fully observability for the whole platform. The main challenges of KubeVela are balancing extension and user experience, powerful orchestration, resource management, and large scale and stability.
  • KubeVela is an application-centric control plan that connects with traditional CI systems or modern Github and provides best practices for platform engineering.
  • The Open Application Model provides a consistent model for application delivery and infrastructure-agnostic model that allows developers to focus on components trades and deploy to different runtime platforms.
  • KubeVela balances extensibility and user experience by leveraging the Kubernetes API and CRD ecosystem, providing API systems, SDKs, and a UI console.
  • KubeVela provides powerful orchestration by allowing data passing for application components dependency, overriding parameters for multi-environments delivery, defining rollout and traffic splitting ways, and checking metrics with quality gates to ensure safe delivery.
  • KubeVela manages resource management by sharing resources in multiple applications, defining the replicas of application at initialization while working with an HPA later, and defining different garbage collection policies for data storage and workload metadata.
  • KubeVela ensures large scale and stability by horizontally scaling the controller, improving performance for different scenarios, and providing a catalog of add-ons that can connect to the whole community.
Authors: Katrina Verey
2023-04-21

tldr - powered by Generative AI

The presentation discusses the design principles and implementation of a new system for managing configuration and deployment of applications. The system aims to strike a balance between exposing changes and ensuring meaningful review, while also accommodating the needs of a wide range of users.
  • The system was designed with the goal of making it easy for developers to get started and ensuring commonly needed changes would be simple to make
  • The system includes a config CLI and API, a version schema, and a customization system
  • The config CLI provides a familiar interactive workflow for developers to modify production configuration
  • The config API simplifies the user experience by explicitly encoding the main application properties that developers need to control
  • The version schema allows for formal versioning and evolution of the system over time
  • The customization system allows for advanced users to leverage the full power of Kubernetes APIs when needed
  • The system strikes a balance between exposing changes and ensuring meaningful review, while also accommodating the needs of a wide range of users
Authors: Damien Grisonnet
2023-04-21

tldr - powered by Generative AI

The presentation discusses the importance of capacity planning, metrics, and logging in Kubernetes and the need for stability and automation in these areas.
  • Capacity planning requires up-to-date and fresh data, and aggregation at collection time to reduce scope.
  • The project provides a tool for capacity planning that does not require knowledge of prompt URL.
  • The metrics framework provides stability levels to prevent breaking changes and automation to prevent users from making breaking changes.
  • Structured logging in JSON format is easier to query and analyze than text-based logging.
  • Contextual logging allows for attaching context and data to log lines for better analysis and correlation with tracing.
  • The structured logging working group is actively working on migrating the code base to structured and contextual logging.
Authors: James Callaghan
2023-04-21

tldr - powered by Generative AI

The presentation discusses the use of threat modeling in a fictitious example of a workload architecture, and the importance of prototyping early to understand how technologies integrate with each other and what can go wrong.
  • The example architecture includes an external facing service using TLS, mutual TLS for service communication, and web identity federation for accessing AWS services
  • Two approaches are presented: a simple web service and a service mesh approach using Istio and OPA
  • Data flow diagrams are essential for threat modeling and can be used to apply STRIDE to individual communications
  • Prototyping early helps to understand technology integration and potential issues
  • The presentation includes a relevant anecdote about a last-minute issue with AWS policies on S3 buckets
Authors: Dan Sun, Theofilos Papapanagiotou
2023-04-21

tldr - powered by Generative AI

K-Serve is a tool for deploying machine learning models that can handle large language models with billions of parameters. It allows for easy deployment and management of models, as well as the ability to observe and analyze model performance.
  • K-Serve allows for easy deployment and management of machine learning models
  • It can handle large language models with billions of parameters
  • Observation and analysis of model performance is possible with K-Serve
  • The future of K-Serve is to support even larger language models
Authors: Sonja Chevre, Ahmet Soormally
2023-04-21

tldr - powered by Generative AI

OpenTelemetry can help monitor GraphQL queries in production and improve troubleshooting for developers and SREs.
  • GraphQL is a query language and server-side runtime that provides a monolithic facade on top of complex microservice architecture
  • Using GraphQL introduces new challenges when isolating failures and troubleshooting performance issues
  • OpenTelemetry can help monitor and improve troubleshooting for GraphQL queries in production
  • The RED method can be used to monitor the health and performance of distributed systems
  • Instrumenting GraphQL services with OpenTelemetry can provide distributed traces for monitoring
Authors: Mark Mandel
2023-04-21

tldr - powered by Generative AI

The presentation discusses the implementation of UDP proxies in the gaming industry and the potential for open source standard tooling for this kind of work.
  • UDP proxies can make game servers harder to take down and provide more redundancy
  • Open source standard tooling can be established for this kind of work
  • The iguana's XDS provider can manipulate all the rest of the proxies
  • Active communities exist for game servers, game server orchestration, and extending Kubernetes in weird and wonderful ways