Hall D - San Diego Convention Center [clear filter]
Wednesday, November 20

11:50am PST

From Brownfield to Greenfield: Istio Service Mesh Journey at Freddie Mac - Shriram Rajagopalan, Tetrate & Lixun Qi, Freddie Mac
Freddie Mac is one of the two mortgage loan corporations in the United States managing trillions of dollars of assets across the country. Our infrastructure is spread across different Kubernetes providers, hardware load balancers, and large swaths of virtual machines. In this talk, we describe our service mesh adoption journey in a highly regulated financial compliance environment. We will discuss both greenfield and brownfield environments, to gain full visibility and traffic management capabilities using Istio/Envoy. We will highlight the changes to our GitOps development workflow, changes to our age old organizational practices, and how the service mesh journey forced us to foster deeper co-operation between traditionally siloed security, platform and application development teams as we tried to weave a mesh over the old and new.

avatar for Shriram Rajagopalan

Shriram Rajagopalan

Unprincipled Engineer, Tetrate
Shriram Rajagopalan is one of the founding engineers behind the Istio service mesh project, and an early contributor to Envoy. He currently maintains the networking subsystem within Istio. Prior to working on Istio/Envoy, he worked on the Xen hypervisor, the Linux kernel, network... Read More →
avatar for Lixun Qi

Lixun Qi

Sr Tech Lead, Freddie Mac
Lixun Qi is a Sr Tech Lead at Freddie Mac, focused on building company-wide cloud native computing platforms. His responsibilities include Kubernetes, service mesh, software defined networking, information security and all the automation through GitOps. Much of time these days is... Read More →

Wednesday November 20, 2019 11:50am - 12:25pm PST
Hall D - San Diego Convention Center
  Service Mesh

2:25pm PST

There's a Bug in My Service Mesh! What Do You Do When the Mesh is At Fault? - Ana Calin, Paybase & Risha Mars, Buoyant
A service mesh is an increasingly necessary tool when running and debugging modern applications. But what do you do when there’s a bug in the mesh itself?

Paybase offers the most flexible, developer-native, API-driven solution for payments, compliance and risk. They use the Linkerd service mesh to process all requests that come through their complex system of microservices, where it is highly useful for out of the box gRPC load balancing which allows Paybase to scale their application.

In this talk, Ana and Risha will talk about different Linkerd bugs that Paybase encountered after deploying Linkerd to their staging environment, and how they worked with the Linkerd maintainers to track them down and squash them.

This talk also explores the relationship between companies that rely on open source software and their interactions with maintainers in the path to getting bugs fixed.

avatar for Ana Calin

Ana Calin

Systems Engineer, Paybase
Ana is a Systems Engineer at Paybase, an emerging London FinTech. As a Systems Engineer Ana builds the infrastructure of Paybase’s service oriented platform, creates, updates and maintains monitoring and logging systems and incident response management systems. Previously Ana has... Read More →
avatar for Risha Mars

Risha Mars

Software Engineer, Buoyant
Risha is a Software Engineer at Buoyant, and is a core contributor to the Linkerd project. She worked on the CLI and controller (Golang) as well as the Linkerd dashboard (React). Currently Risha is working on Dive, Buoyant’s newest product. Previously, Risha worked on the Ads team... Read More →

Wednesday November 20, 2019 2:25pm - 3:00pm PST
Hall D - San Diego Convention Center
  Service Mesh

3:20pm PST

Mitigating Noisy Neighbours: Advanced Container Resource Management - Alexander Kanevskiy, Intel
In large clusters, some applications attempt to consume a majority of shared resources. These "noisy neighbours" cause performance degradation for other workloads in the cluster. At this time, Kubernetes has mechanisms to mitigate this behaviour for CPU and memory only. This talk discusses methods for extending fine-grained resource control on other shared resources, such as block and PCIe I/O, shared CPU caches, and others. It demonstrates how to utilize extensibility points of CRI-O and containerd runtimes to achieve fine-grained resource control. The talk also presents an approach for evolving this method into an extensive and fully dynamic resource management solution for Kubernetes.

- Problem Statement: different types of "noisy neighbours"
- Resource management on kernel, OCI, and Kubernetes levels
- Stitching the pieces together: dynamic container resource management

avatar for Alexander Kanevskiy

Alexander Kanevskiy

Principal Engineer, Cloud Software, Intel
Alexander is currently employed by Intel as Principal Engineer, Cloud Software, focusing on various aspects in Kubernetes: Resource Management, Device plugins for hardware accelerators, Cluster Lifecycle and Cluster APIs. Alexander has over 25+ years of experience in areas of Linux... Read More →

Wednesday November 20, 2019 3:20pm - 3:55pm PST
Hall D - San Diego Convention Center

4:25pm PST

Developing Operators with the Kubernetes Operator Pythonic Framework (kopf) - Sergey Vasilyev, Zalando SE
The Kubernetes operator pattern has revolutionized the way applications are deployed and managed in Kubernetes, but much of the tooling around building operators has focused on easing development in Golang. The Kubernetes Operator Pythonic Framework (kopf) levels the playing field, bringing much of the tooling to the Python ecosystem, and expanding it in several areas. Kopf provides powerful, high-level abstractions that make it simple to write Kubernetes operators in Python, allowing you to focus on your application logic without needing to dive headfirst into Kubernetes internals. In this talk, you will learn how to make your own Kubernetes operators in a few lines of Python code, and how to bring your own domain entities directly to Kubernetes.

avatar for Sergey Vasilyev

Sergey Vasilyev

Senior Backend Engineer, Zalando SE
Sergey is a Senior Backend Engineer working at Zalando SE. His experience with Kubernetes includes migrating the data processing and sales forecasting pipelines from raw AWS and Zalando STUPS to Kubernetes (including the Kubernetes operators and custom resources to orchestrate in... Read More →

Wednesday November 20, 2019 4:25pm - 5:00pm PST
Hall D - San Diego Convention Center
  Application + Development

5:20pm PST

CoreDNS Deep Dive - John Belamaric, Google
A close look at the CoreDNS extension points for developers. Learn how to customize build custom DNS applications based on CoreDNS, including: * Building a custom CoreDNS binary that includes external plugins * Building a specialized binary that uses CoreDNS as a library * Building your own CoreDNS plugin

avatar for John Belamaric

John Belamaric

Senior Staff Software Engineer, Google
John Belamaric is a Senior Staff Software Engineer at Google with over 25 years of software design and development experience. As a co-chair of Kubernetes SIG Architecture, he provides leadership on production readiness, conformance, and overall software architecture for the Kubernetes... Read More →

Wednesday November 20, 2019 5:20pm - 5:55pm PST
Hall D - San Diego Convention Center
  Maintainer Track Sessions
Thursday, November 21

10:55am PST

Tutorial: Zero to Operator in 90 Minutes! - Solly Ross, Google (Limited Available Seating; First-Come, First-Served Basis)
Please bring your laptop fully charged as we will have limited charging stations available in the room.

Please complete the following steps ahead of time to make your tutorial easier: https://gist.github.com/DirectXMan12/ad7b35327c2816125a45cdc11ff78476

Come learn how to quickly get off the ground running with building an operator using KubeBuilder v2!

Come write a Kubernetes-style API to manage a bespoke application, complete with declarative validation and defaulting. Discover what kind of requirements go into an API type, and how to write API types that work and feel like they're part of Kubernetes, and can be easily consumed as part of a larger system.

Once you've got an API type, you'll make use of the new server-side apply functionality to make implementing your core logic a breeze, and learn how to think about writing well-behaved controller logic that deals with different interactions with other parts of Kubernetes.

Finally, you'll learn how to actually run your controller locally for development and on a remote cluster for production.

avatar for Solly Ross

Solly Ross

Software Engineer, Google
Solly is one of the leads of the Kubebuilder project, and works on Kubernetes at Google with a focus on custom controller tooling. Solly previously worked on metrics and autoscaling, and has been hacking on various parts of Kubernetes since Kubernetes 1.2. When not writing PRs or... Read More →

Thursday November 21, 2019 10:55am - 12:25pm PST
Hall D - San Diego Convention Center

2:25pm PST

Tutorial: From Notebook to Kubeflow Pipelines: An End-to-End Data Science Workflow - Michelle Casbon, Google, Stefano Fioravanzo, Fondazione Bruno Kessler, & Ilias Katsakioris, Arrikto (Limited Available Seating; First-Come, First-Served Basis)
Please bring your laptop fully charged as we will have limited charging stations available in the room.

This session targets data scientists and ML engineers who want to leverage Kubernetes to scale up their Machine Learning experiments. Attendees will learn a) the basics of Kubeflow, the ML toolkit for K8s, and b) how to build and deploy complex data science pipelines on-prem and on the Cloud with Kubeflow Pipelines.

The tutorial will focus on two essential aspects:
1. Low barrier to entry: deploy a Jupyter Notebook to Kubeflow Pipelines on the cloud using a fully GUI-based approach. This workflow enables data scientists to exploit the scaling potential of K8s - no CLI commands, SDKs, or K8s knowledge required.
2. Reproducibility: automatic data versioning and volume snapshots will enable full reproducibility and collaborative development, as well as fine grained analysis and visualizations after pipeline executions.

Setup: must bring own laptop. Qwiklab/GCP credits will be provided

avatar for Michelle Casbon

Michelle Casbon

Senior Engineer, Google
Michelle Casbon is a Senior Engineer at Google, where she focuses on open source for machine learning and big data tools. Prior to joining Google, she was at Qordoba as Director of Data Science and Idibon as a Senior Data Science Engineer. Within these roles, she built and shipped... Read More →
avatar for Stefano Fioravanzo

Stefano Fioravanzo

Research Software Engineer, Fondazione Bruno Kessler
Stefano Fioravanzo is a Research Software Engineer at Fondazione Bruno Kessler, an ICT research center leading AI research in Italy for 40 years. His interests lie in building AI platforms based on Cloud Native technologies, empowering local communities and producers with smart tools... Read More →
avatar for Ilias Katsakioris

Ilias Katsakioris

Software Engineer, Arrikto
Ilias Katsakioris is a Software Engineer at Arrikto. He holds a Diploma in Electrical and Computer Engineering from the National Technical University of Athens. He is a Kubernetes and Kubeflow enthusiast, and he has been contributing to the Kubeflow project for almost a year. His... Read More →

Thursday November 21, 2019 2:25pm - 3:55pm PST
Hall D - San Diego Convention Center

4:25pm PST

Tutorial: Deep Dive into the Operator Framework for Kubernetes - Melvin Hillsman, Michael Hrivnak, & Matt Dorn, Red Hat (Limited Available Seating; First-Come, First-Served Basis)
Please bring your laptop fully charged as we will have limited charging stations available in the room.

This is an entry-level tutorial session for both application developers and system administrators interested in building and managing Operators for Kubernetes environments. It is designed for those who have a basic knowledge of Kubernetes and want to learn how to apply domain or application-specific knowledge to automate common operational tasks.

Attendees will understand the past difficulties with building Operators with existing client-libraries and discover how the Operator Framework can ease development workflow.

Step-by-step guidance will be given on the process of creating real-world Operators with Go, Ansible and Helm charts while mastering methodologies, design patterns, and strategies that can assist in avoiding common pitfalls.

Attendees will use the Operator Lifecycle Manager (OLM) to define, install and upgrade Operators as well.

avatar for Michael Hrivnak

Michael Hrivnak

Senior Principal Software Engineer, Red Hat
Michael Hrivnak is a Senior Principal Software Engineer and Software Architect at Red Hat, where he’s been focused on container technology since 2014. He’s been a leader in developing early registry and distribution technology, the Operator SDK, and Kubernetes-native infrastructure... Read More →
avatar for Matt Dorn

Matt Dorn

Principal Engineer, Red Hat
Matt Dorn is a Principal Software Engineer at Red Hat and helps hundreds of IT teams around the world succeed with cloud native technology. He is the author of the “Preparing for the Certified OpenStack Administrator Exam” book, creator of the O’Reilly “Getting Starting with... Read More →
avatar for Melvin Hillsman

Melvin Hillsman

Senior SRE, Operator Enablement, Red Hat
Melvin Hillsman is a Senior SRE at Red Hat. He is passionate about user and developer collaboration and cross-community interaction and communication. Prior to Red Hat he helped launch OpenLab while working closely with members of the Kubernetes, OpenStack, CNCF, CloudFoundry, AdoptOpenJDK... Read More →

Thursday November 21, 2019 4:25pm - 5:55pm PST
Hall D - San Diego Convention Center

Filter sessions
Apply filters to sessions.