ProHoster > Pūnaewele > Nā Administration > Kūkulu, Kaʻana like, Hui pū

Kūkulu, Kaʻana like, Hui pū

ʻO nā pahu he mana māmā o ka wahi hoʻohana o ka ʻōnaehana hana Linux - ʻoiaʻiʻo, ʻo ia ka liʻiliʻi loa. Eia nō naʻe, he ʻōnaehana holoʻokoʻa holoʻokoʻa ia, a no laila ʻo ka maikaʻi o kēia pahu ponoʻī e like me ka mea nui e like me ka ʻōnaehana hana piha. ʻO ia ke kumu no ka manawa lōʻihi mākou i hāʻawi ai Nā kiʻi Red Hat Enterprise Linux (RHEL)., i hiki i nā mea hoʻohana ke loaʻa i nā ipu ʻoihana i hōʻoia ʻia, hou, a me nā mea hou. Hoʻolana kiʻi ipu (nā kiʻi pahu) ʻO RHEL ma nā pahu pahu RHEL hāʻawi i ka hoʻohālikelike a me ka portability ma waena o nā kaiapuni, ʻaʻole e haʻi i ka ʻoiaʻiʻo he mau mea hana maʻamau kēia. Aia naʻe, hoʻokahi pilikia. ʻAʻole hiki iā ʻoe ke hāʻawi wale i kēlā kiʻi i kekahi mea ʻē aʻe, ʻoiai inā he mea kūʻai a hoa paha ia e hoʻohana ana iā Red Hat Enterprise Linux.

Kūkulu, Kaʻana like, Hui pū

Akā i kēia manawa ua loli nā mea a pau

Me ka hoʻokuʻu ʻana o ka Red Hat Universal Base Image (UBI), hiki iā ʻoe ke loaʻa i ka hilinaʻi, palekana, a me ka hana āu i manaʻo ai mai nā kiʻi pahu pahu Red Hat mana, inā he kau inoa a ʻaʻole paha. ʻO ia ke ʻano hiki iā ʻoe ke kūkulu i kahi noi containerized ma UBI, e hoʻokomo iā ia i loko o ka waihona waihona o kāu koho, a kaʻana like me ka honua. Hāʻawi ʻo Red Hat Universal Base Image iā ʻoe e kūkulu, kaʻana like, a hui pū me kahi noi pahu pahu i kēlā me kēia kaiapuni - kahi āu e makemake ai.

Kūkulu, Kaʻana like, Hui pū

Me UBI, hiki iā ʻoe ke paʻi a holo i kāu mau noi ma kahi kokoke i nā ʻōnaehana. Akā inā ʻoe e holo iā lākou ma nā kahua ʻo Red Hat e like me Red Hat OpenShift a me Red Hat Enterprise Linux, hiki iā ʻoe ke loaʻa nā pōmaikaʻi hou aku (ʻoi aku ke gula!). A ma mua o ko mākou neʻe ʻana i kahi wehewehe kikoʻī o UBI, e hāʻawi iaʻu i kahi FAQ pōkole no ke kumu e pono ai ke kau inoa ʻo RHEL. No laila, he aha ka mea e holo ana i kahi kiʻi UBI ma ka RHEL/OpenShift platform?

Kūkulu, Kaʻana like, Hui pū

A i kēia manawa ke hauʻoli nei mākou i ke kūʻai aku ʻana, e kamaʻilio hou mākou e pili ana iā UBI

Nā kumu e hoʻohana ai iā UBI

Pehea kou manaʻo e ʻike e pōmaikaʻi ʻo UBI iā ʻoe:

  • My nā mea hoʻomohala makemake e hoʻohana i nā kiʻi pahu i hiki ke puʻunaue ʻia a holo i loko o kekahi kaiapuni
  • ʻO koʻu hui ana makemake i ke kiʻi kumu i kākoʻo ʻia me ka pōʻaiapuni o ka ʻoihana
  • My nā kākela makemake e hāʻawi Mea hoʻohana Kubernetes i kaʻu mau mea kūʻai/mea hoʻohana hope
  • My nā mea kūʻai ʻAʻole lākou makemake e puhi i ko lākou mau manaʻo me ke kākoʻo ʻoihana ʻoihana no kā lākou puni Red Hat holoʻokoʻa
  • Loʻu ke kaiāulu makemake e kaʻana like, holo, hoʻolaha i nā noi containerized maoli ma nā wahi āpau

Inā kūpono kekahi o nā hiʻohiʻona iā ʻoe, a laila pono ʻoe e nānā iā UBI.

ʻOi aku ma mua o kahi kiʻi kumu

ʻOi aku ka liʻiliʻi o UBI ma mua o kahi OS piha, akā ʻekolu mau mea koʻikoʻi ʻo UBI:

  1. He pūʻulu o nā kiʻi kumu ʻekolu (ubi, ubi-minimal, ubi-init)
  2. Nā kiʻi me nā kaiapuni runtime mākaukau no nā ʻōlelo papahana like ʻole (nodejs, ruby, python, php, perl, etc.)
  3. ʻO kahi pūʻulu pili pili i ka waihona YUM me nā mea hilinaʻi maʻamau

Kūkulu, Kaʻana like, Hui pū

Ua hoʻokumu ʻia ʻo UBI ma ke ʻano he kumu no ke ao a me nā noi pūnaewele i kūkulu ʻia a hāʻawi ʻia i loko o nā ipu. ʻO nā ʻike āpau ma UBI kahi ʻāpana o RHEL. Hāʻawi ʻia nā pūʻolo āpau ma UBI ma o nā kahawai RHEL a kākoʻo ʻia e like me RHEL i ka wā e holo ana ma nā kahua kākoʻo Red Hat e like me OpenShift a me RHEL.

Kūkulu, Kaʻana like, Hui pū

ʻO ka hōʻoia ʻana i ke kākoʻo kiʻekiʻe no nā ipu e pono ai ka hoʻoikaika nui mai nā ʻenekinia, nā loea palekana a me nā kumuwaiwai ʻē aʻe. ʻAʻole pono kēia i ka hoʻāʻo ʻana i nā kiʻi kumu, akā ke kālailai pū ʻana i kā lākou ʻano ma nā mea hoʻokipa i kākoʻo ʻia.

No ke kōkua ʻana i ke kaumaha o ka hoʻonui ʻana, hoʻomohala a kākoʻo ʻo Red Hat i hiki iā UBI 7 ke holo ma luna o nā pūʻali RHEL 8, no ka laʻana, a hiki i ka UBI 8 ke holo ma nā pūʻali RHEL 7. Hāʻawi kēia i nā mea hoʻohana i ka maʻalahi, hilinaʻi, a me ka maluhia o noʻonoʻo e pono ai lākou i ka wā o ke kaʻina hana. , no ka laʻana, nā hoʻolaha hou i nā kiʻi pahu a i ʻole nā ​​​​host i hoʻohana ʻia. I kēia manawa hiki ke hoʻokaʻawale ʻia kēia mau mea i ʻelua mau papahana kūʻokoʻa.

ʻEkolu kiʻi kumu

Kūkulu, Kaʻana like, Hui pū

Ka liʻiliʻi - i hoʻolālā ʻia no nā noi me nā mea hilinaʻi āpau (Python, Node.js, .NET, etc.)

  • Hoʻonohonoho liʻiliʻi o nā maʻiʻo i hoʻokomo mua ʻia
  • ʻAʻohe mea hoʻokō suid
  • Nā mea hana hoʻokele pūʻolo liʻiliʻi (hoʻokomo, hoʻohou a wehe)

Platform - no nā noi e holo ana ma RHEL

  • OpenSSL Unified Cryptographic Stack
  • Pūʻulu YUM piha
  • Hoʻokomo ʻia nā pono pono OS maʻamau (tar, gzip, vi, etc.)

Multi-Service - maʻalahi ka holo ʻana i nā lawelawe he nui i hoʻokahi pahu

  • Hoʻonohonoho ʻia e holo systemd ma ka hoʻomaka
  • Hiki ke hiki i nā lawelawe ma ke kahua kūkulu

Nā kiʻi paʻa me nā kaiapuni manawa holo ʻōlelo papahana i mākaukau

Ma waho aʻe o nā kiʻi kumu e ʻae iā ʻoe e hoʻokomo i ke kākoʻo ʻōlelo hoʻolālā, ua hoʻokomo ʻia nā UBI i nā kiʻi i kūkulu mua ʻia me nā kaiapuni manawa holo mākaukau no kekahi mau ʻōlelo papahana. Hiki i nā mea hoʻomohala he nui ke hopu wale i ke kiʻi a hoʻomaka e hana i ka noi a lākou e hoʻomohala nei.

Me ka hoʻomakaʻana o UBI, hāʻawiʻo Red Hat iʻelua mau kiʻi kiʻi - ma muli o RHEL 7 a ma muli o RHEL 8. Ua hoʻokumuʻia lākou ma Red Hat Software Collections (RHEL 7) a me Application Streams (RHEL 8), i kēlā me kēia. Mālama ʻia kēia mau manawa holo a loaʻa iā ʻoe i ʻehā mau mea hou i kēlā me kēia makahiki ma ke ʻano maʻamau, no laila ke holo mau nei ʻoe i nā mana hou a paʻa loa.

Eia ka papa inoa o nā kiʻi pahu UBI 7:

Kūkulu, Kaʻana like, Hui pū

Eia ka papa inoa o nā kiʻi pahu no UBI 8:

Kūkulu, Kaʻana like, Hui pū

Nā pūʻolo pili

ʻO ka hoʻohana ʻana i nā kiʻi i hoʻomākaukau ʻia he kūpono loa. Mālama ʻo Red Hat iā lākou i kēia lā a hōʻano hou iā lākou me ka hoʻokuʻu ʻana i kahi mana hou o RHEL, a me ka wā e loaʻa ai nā mea hou CVE koʻikoʻi e like me ke kulekele hou. Kumukānāwai kiʻi RHEL i hiki iā ʻoe ke lawe i kekahi o kēia mau kiʻi a hoʻomaka koke e hana i ka noi.

Kūkulu, Kaʻana like, Hui pū

Akā i kekahi manawa, i ka wā e hana ai i kahi noi, pono koke ʻoe i kahi pūʻolo hou. A i ʻole, i kekahi manawa, no ka hoʻohana ʻana i ka noi, pono ʻoe e hoʻonui i kekahi a i ʻole kekahi pūʻolo. ʻO ia ke kumu e hele mai ai nā kiʻi UBI me kahi pūʻulu o nā RPM i loaʻa ma o yum, a ua puʻunaue ʻia me ka hoʻohana ʻana i kahi ʻoihana hoʻolaha ʻike wikiwiki a loaʻa loa (ua loaʻa iā ʻoe ka pūʻolo!). Ke holo ʻoe i kahi hōʻano hou yum ma kāu CI/CD ma kēlā wahi hoʻokuʻu koʻikoʻi, hiki iā ʻoe ke maopopo e hana ia.

ʻO RHEL ke kumu

ʻAʻole mākou luhi i ka haʻi hou ʻana ʻo RHEL ke kumu o nā mea āpau. ʻIke paha ʻoe i nā hui ma Red Hat e hana nei i ka hana ʻana i nā kiʻi kumu? Eia kekahi laʻana:

  • ʻO ka hui ʻenekinia ke kuleana no ka hōʻoia ʻana i nā hale waihona puke e like me glibc a me OpenSSL, a me nā manawa holo ʻōlelo e like me Python a me Ruby, e hāʻawi i ka hana maʻamau a holo pono i nā haʻawina ke hoʻohana ʻia i loko o nā pahu.
  • ʻO ka hui palekana huahana ke kuleana no ka hoʻoponopono ʻana i nā hewa a me nā pilikia palekana i nā hale waihona puke a me nā wahi ʻōlelo, loiloi ʻia ka maikaʻi o kā lākou hana me ka hoʻohana ʻana i kahi kuhikuhi kūikawā. Papa Ola Ola Loa.
  • Hoʻolaʻa ʻia kahi hui o nā luna huahana a me nā ʻenekinia i ka hoʻohui ʻana i nā hiʻohiʻona hou a me ka hōʻoia ʻana i kahi ola lōʻihi o ka huahana, hāʻawi iā ʻoe i ka hilinaʻi i kāu hoʻopukapuka e kūkulu ai.

Hana ʻo Red Hat Enterprise Linux i mea hoʻokipa maikaʻi loa a me ke kiʻi no nā ipu, akā nui nā mea hoʻomohala e manaʻo nui i ka hiki ke hana me ka ʻōnaehana ma nā ʻano ʻano like ʻole, aia kekahi o ia mau mea ma waho o nā hihia hoʻohana kākoʻo o ka ʻōnaehana Linux. ʻO kēia kahi e hele mai ai nā kiʻi UBI āpau e hoʻopakele.

E ʻōlelo kākou i kēia manawa, i kēia manawa, ke ʻimi nei ʻoe i kahi kiʻi kumu e hoʻomaka ai e hana i kahi noi containerized maʻalahi. A i ʻole ua kokoke ʻoe i ka wā e hiki mai ana a ke neʻe nei mai nā ipu kūʻokoʻa e holo ana ma luna o kahi mīkini pahu i kahi mōʻaukala ʻōiwi me ka hoʻohana ʻana i ka hale a me ka hōʻoia ʻana i nā Operator e holo ana ma OpenShift. I kēlā me kēia hihia, hāʻawi ʻo UBI i kumu kūpono no kēia.

Kūkulu, Kaʻana like, Hui pū

Loaʻa i nā pahu kahi mana māmā o ka lumi hoʻohana o ka ʻōnaehana hana ma kahi ʻano hōʻano hou. ʻO ka hoʻokuʻu ʻia ʻana o nā kiʻi UBI e hoʻonohonoho i kahi kūlana ʻoihana hou no ka hoʻomohala ʻana i ka pahu, e hoʻolako ana i nā ipu papa ʻoihana i nā mea hoʻohana, nā mea hoʻomohala polokalamu kūʻokoʻa, a me nā kaiāulu open source. ʻO ka mea kūikawā, hiki i nā mea hoʻomohala polokalamu ke hoʻohālikelike i kā lākou huahana me ka hoʻohana ʻana i kahi kumu hoʻokahi, i hōʻoia ʻia no kā lākou mau mea pahu pahu, me Nā mea hana Kubernetes. Hiki i nā hui hoʻomohala e hoʻohana ana iā UBI ke komo i ka Red Hat Container Certification a me Red Hat OpenShift Operator Certification, a laila e ʻae i ka hōʻoia mau ʻana o nā polokalamu e holo ana ma nā kahua Red Hat e like me OpenShift.

Kūkulu, Kaʻana like, Hui pū

Pehea e hoʻomaka ai e hana me kahi kiʻi

I ka pōkole, maʻalahi loa. Loaʻa ʻo Podman ʻaʻole ma RHEL wale nō, akā ma Fedora, CentOS a me kekahi mau māhele Linux ʻē aʻe. ʻO nā mea a pau āu e hana ai, ʻo ke kiʻi ʻana i ke kiʻi mai kekahi o kēia mau waihona a maikaʻi ʻoe e hele.

No UBI 8: 

podman pull registry.access.redhat.com/ubi8/ubi
podman pull registry.access.redhat.com/ubi8/ubi-minimal
podman pull registry.access.redhat.com/ubi8/ubi-init

No UBI 7: 

podman pull registry.access.redhat.com/ubi7/ubi
podman pull registry.access.redhat.com/ubi7/ubi-minimal
podman pull registry.access.redhat.com/ubi7/ubi-init

ʻAe, e nānā i ka Universal Base Image Guide

Source: www.habr.com

Pākuʻi i ka manaʻo hoʻopuka