Ngokulangazela Vitaly Khabarov kuxoxwa naye UDmitry Stolyarov (), umqondisi wezobuchwepheshe kanye nomsunguli wenkampani yeFlant. U-Vitaly ubuze uDmitry ngalokho uFlant akwenzayo, mayelana ne-Kubernetes, ukuthuthukiswa kwe-ecosystem, ukusekelwa. Sixoxile ngokuthi kungani i-Kubernetes idingeka nokuthi iyadingeka yini. Futhi mayelana nama-microservices, i-Amazon AWS, indlela ethi “Ngizoba nenhlanhla” ku-DevOps, ikusasa le-Kubernetes uqobo, kungani, izowuthatha nini futhi kanjani umhlaba, amathemba e-DevOps nokuthi yini onjiniyela okufanele bayilungiselele ku- ikusasa eliqhakazile neliseduze ngokwenza lula kanye namanethiwekhi emizwa.
lalela njenge-podcast ku-DevOps Deflop - i-podcast yolimi lwesiRashiya mayelana ne-DevOps, futhi ngezansi kunenguqulo yombhalo.
Lapha nangezansi ubuza imibuzo unjiniyela kusuka Express42.
Mayelana ne-"Flant"
- Sawubona Dima. Ungumqondisi wezobuchwepheshe ""kanye nomsunguli wayo. Sicela usitshele ukuthi inkampani yenzani futhi ingabe ukuyo?
Dmitry: Ngaphandle kubonakala sengathi singabafana abahamba befaka i-Kubernetes yawo wonke umuntu futhi senze okuthile ngayo. Kodwa lokho akulona iqiniso. Saqala njengenkampani esebenzelana ne-Linux, kodwa isikhathi eside kakhulu umsebenzi wethu oyinhloko ubulokhu uhlinzeka ngamaphrojekthi wokukhiqiza kanye nomthwalo ophezulu we-turnkey. Ngokuvamile sakha yonke ingqalasizinda kusukela ekuqaleni bese siba nesibopho sayo isikhathi eside, eside. Ngakho-ke, umsebenzi oyinhloko owenziwa "Flant", lapho ithola khona imali ukuthatha umthwalo wemfanelo kanye nokusebenzisa ukukhiqizwa kwe-turnkey.
Mina, njengomqondisi wezobuchwepheshe kanye nomunye wabasunguli benkampani, ngichitha ubusuku nemini ngizama ukuthola indlela yokwandisa ukufinyeleleka kokukhiqiza, ukwenza lula ukusebenza kwayo, ukwenza impilo yabaphathi ibe lula, nempilo yabathuthukisi ibe mnandi kakhulu. .
Mayelana ne-Kubernetes
- Muva nje bengilokhu ngibona imibiko eminingi evela kuFlant kanye mayelana Kubernetes. Ufike kanjani kukho?
Dmitry: Sengikhulume ngalokhu izikhathi eziningi, kodwa anginankinga nokukuphinda nhlobo. Ngicabanga ukuthi kulungile ukusiphinda lesi sihloko ngoba kunokudideka phakathi kwembangela nomphumela.
Sasilidinga ngempela ithuluzi. Sabhekana nezinkinga eziningi, sazabalaza, sazinqoba ngezinduku ezihlukahlukene futhi sazizwa sidinga ithuluzi. Sadlula ezintweni eziningi ezihlukene, sazakhela awethu amabhayisikili, futhi sazuza nolwazi. Kancane kancane safika lapho saqala khona ukusebenzisa i-Docker ngokushesha nje lapho ivele - cishe ngo-2013. Ngesikhathi sokuvela kwayo, sase sinolwazi oluningi ngeziqukathi, sase sibhale i-analogue ye-"Docker" - ezinye zezinduku zethu ku-Python. Ngokufika kwe-Docker, kwaba nokwenzeka ukulahla izinduku futhi kusetshenziswe isisombululo esithembekile nesisekelwa umphakathi.
NgoKubernetes indaba iyafana. Ngesikhathi iqala ukuba nomfutho - kithina lena inguqulo 1.2 - sase sinenqwaba yezinduku kuShell nakuChef, esazama ngandlela thize ukuyihlanganisa noDocker. Besibheke ngabomvu ku-Rancher nezinye izixazululo ezahlukahlukene, kodwa kwabe sekubonakala u-Kubernetes, lapho yonke into yenziwa ngendlela ebesingayenza ngayo noma kangcono nakakhulu. Akukho ongakhononda ngakho.
Yebo, kukhona uhlobo oluthile lokungapheleli lapha, kukhona uhlobo oluthile lokungapheleli lapho - kukhona ukungapheleli okuningi, futhi i-1.2 ngokuvamile imbi kakhulu, kodwa ... I-Kubernetes ifana nesakhiwo esakhiwayo - ubheka iphrojekthi futhi uyaqonda. ukuthi kuzoba lula. Uma isakhiwo manje sinesisekelo kanye nezitezi ezimbili, khona-ke uyaqonda ukuthi kungcono ukungangeni okwamanje, kodwa azikho izinkinga ezinjalo nge-software - usungakwazi ukuyisebenzisa kakade.
Asibanga naso isikhathi lapho sicabange ukusebenzisa i-Kubernetes noma cha. Besiyilindile isikhathi eside ngaphambi kokuthi ivele, futhi sazama ukwenza ama-analogue ngokwethu.
Mayelana ne-Kubernetes
- Ingabe uhileleke ngokuqondile ekuthuthukisweni kwe-Kubernetes ngokwayo?
Dmitry: Mediocre. Kunalokho, sibamba iqhaza ekuthuthukisweni kwe-ecosystem. Sithumela inombolo ethile yezicelo zokudonsa: ku-Prometheus, kuma-opharetha ahlukahlukene, ku-Helm - ku-ecosystem. Ngeshwa, angikwazi ukulandelela konke esikwenzayo futhi ngingaba nephutha, kodwa alikho nelilodwa iphuli elisuka kithi eliya kumnyombo.
- Ngasikhathi sinye, uyawakha amathuluzi akho amaningi eKubernetes?
Dmitry: Isu yilo: sihamba siyodonsa izicelo kukho konke osekuvele kukhona. Uma izicelo zokudonsa zingamukelwa lapho, simane sizifoloko thina futhi siphile zize zamukelwe ngezakhiwo zethu. Bese, uma ifika enhla nomfula, sibuyela enguqulweni yasenhla nomfula.
Isibonelo, sino-opharetha we-Prometheus, esishintshe ngayo emuva naphambili ukuya phezulu komhlangano wethu cishe izikhathi ezi-5 kakade. Sidinga uhlobo oluthile lwesici, sithumele isicelo sokudonsa, sidinga ukusikhipha kusasa, kodwa asifuni ukulinda ukuthi sikhishwe phezulu. Ngakho-ke, siyaziqoqa ngokwethu, sikhiphe umhlangano wethu ngesici sethu, esisidinga ngesizathu esithile, kuwo wonke amaqoqo ethu. Bese-ke, ngokwesibonelo, basiphendulele enhla nomfula ngamagama athi: “Bafo, asikwenzele icala elijwayelekile,” thina, noma omunye umuntu, siyaliqeda, futhi ngokuhamba kwesikhathi liphinde lihlangane libuye.
Sizama ukuthuthukisa konke okukhona. Izakhi eziningi ezingakabi khona, ezingakasungulwa, noma ezingakasungulwa, kodwa ezingakabi naso isikhathi sokuzisebenzisa - siyakwenza. Futhi hhayi ngoba sithanda inqubo noma isakhiwo samabhayisikili njengemboni, kodwa ngoba nje sidinga leli thuluzi. Umbuzo uvame ukubuzwa, kungani senze lokhu noma lokho? Impendulo ilula - yebo, ngoba bekufanele siqhubekele phambili, sixazulule inkinga ethile esebenzayo, futhi siyixazulule ngale tula.
Indlela ihlale inje: sicinga ngokucophelela futhi, uma singatholi sixazululo sendlela yokwenza i-trolleybus ngesinkwa, bese sizenzela isinkwa sethu kanye ne-trolleybus yethu.
Amathuluzi e-Flanta
- Ngiyazi ukuthi i-Flant manje inabasebenzisi be-addon, ama-shell operator, namathuluzi e-dapp/werf. Njengoba ngikuqonda, leli yithuluzi elifanayo ekufakweni okuhlukile. Ngiyaqonda futhi ukuthi kunamathuluzi amaningi ahlukene ngaphakathi kwe-Flaunt. Yiqiniso lokhu?
Dmitry: Sinokuningi ku-GitHub. Ngokwalokho engikukhumbulayo manje, sinemephu yesimo - iphaneli yeGrafana wonke umuntu ahlangane nayo. Kukhulunywa cishe kuzo zonke izihloko zesibili mayelana nokuqapha kwe-Kubernetes ku-Medium. Akunakwenzeka ukuchaza kafushane ukuthi iyini imephu yesimo - idinga i-athikili ehlukile, kodwa kuyinto ewusizo kakhulu ekuhloleni isimo ngokuhamba kwesikhathi, njengoba ku-Kubernetes ngokuvamile sidinga ukubonisa isimo ngokuhamba kwesikhathi. Siphinde sibe ne-LogHouse - lena into esekelwe ku-ClickHouse kanye nomlingo omnyama wokuqoqa izingodo ku-Kubernetes.
Izinsiza eziningi! Futhi kuzoba nokunye okwengeziwe, ngoba izixazululo eziningi zangaphakathi zizokhishwa kulo nyaka. Kulezi ezinkulu kakhulu ezisekelwe ku-addon opharetha, kunenqwaba yama-addons we-Kubernetes, ala indlela yokufaka kahle umphathi we-sert - ithuluzi lokuphatha izitifiketi, indlela yokufaka kahle i-Prometheus ngeqoqo lezesekeli - lezi zihlukene cishe ezingamashumi amabili. kanambambili abathumela idatha futhi baqoqe okuthile, kule Prometheus inezithombe ezimangalisa kakhulu nezixwayiso. Konke lokhu kumane kuyinqwaba yama-addons ku-Kubernetes, afakwe kuqoqo, futhi iphenduka isuka kokulula iye kokupholile, eyinkimbinkimbi, ezenzakalelayo, lapho izinkinga eziningi sezixazululiwe. Yebo, kuningi esikwenzayo.
Ukuthuthukiswa kwe-Ecosystem
"Kimina kubonakala sengathi lokhu kungumnikelo omkhulu kakhulu ekuthuthukisweni kwaleli thuluzi nezindlela zalo zokulisebenzisa." Ungakwazi yini ukulinganisa cishe ukuthi ubani omunye ongenza umnikelo ofanayo ekuthuthukisweni kwe-ecosystem?
Dmitry: E-Russia, ezinkampanini ezisebenza emakethe yethu, akekho osondele. Yiqiniso, lokhu kuyisitatimende esikhulu, ngoba kukhona abadlali abakhulu abafana ne-Mail ne-Yandex - nabo benza okuthile nge-Kubernetes, kodwa ngisho nabo abasondeli umnikelo wezinkampani emhlabeni wonke ezenza okungaphezu kwethu. Kunzima ukuqhathanisa i-Flant, enabasebenzi abangu-80, kanye ne-Red Hat, enonjiniyela abangu-300 nge-Kubernetes kuphela, uma ngingenzi iphutha. Kunzima ukuqhathanisa. Sinabantu abayisi-6 emnyangweni we-RnD, okuhlanganisa nami, abasike wonke amathuluzi ethu. Abantu abayi-6 uma kuqhathaniswa nonjiniyela abangama-Red Hat abangama-300 - kunzima ngandlela thize ukuqhathanisa.
- Kodwa-ke, lapho ngisho nalaba bantu abangu-6 bengenza okuthile okuwusizo futhi okuhlukanisayo ngempela, lapho bebhekene nenkinga engokoqobo futhi banikeze isisombululo emphakathini - icala elithakazelisayo. Ngiyaqonda ukuthi ezinkampanini ezinkulu zobuchwepheshe, lapho zineqembu labo lokuthuthukiswa kwe-Kubernetes kanye nokusekela, ngokuyisisekelo, amathuluzi afanayo angathuthukiswa. Lesi isibonelo sabo salokho okungathuthukiswa futhi kunikezwe umphakathi, okunikeza umfutho kuwo wonke umphakathi osebenzisa i-Kubernetes.
Dmitry: Lokhu cishe kuyisici sesihlanganisi, okukhethekile kwaso. Sinamaphrojekthi amaningi futhi sibona izimo eziningi ezahlukene. Kithina, indlela eyinhloko yokudala inani elingeziwe ukuhlaziya lezi zimo, thola ukufana futhi uzenze zishibhile ngangokunokwenzeka kithi. Sisebenza ngenkuthalo kulokhu. Kunzima kimi ukukhuluma ngeRussia kanye nomhlaba, kodwa sinonjiniyela abangaba ngu-40 be-DevOps enkampanini abasebenza ku-Kubernetes. Angicabangi ukuthi kunezinkampani eziningi eRussia ezinenani eliqhathaniswayo lochwepheshe abaqonda i-Kubernetes, uma bekhona.
Ngiyakuqonda konke mayelana nesihloko somsebenzi unjiniyela we-DevOps, wonke umuntu uqonda yonke into futhi ujwayele ukubiza onjiniyela be-DevOps ngonjiniyela be-DevOps, ngeke sikuxoxe ngalokhu. Bonke laba onjiniyela be-DevOps abangama-40 abamangalisayo babhekana futhi baxazulule izinkinga nsuku zonke, sivele sihlaziye lokhu okwenziwayo bese sizama ukwenza okuvamile. Siyaqonda ukuthi uma ihlala ngaphakathi kwethu, khona-ke ngonyaka noma emibili ithuluzi ngeke lisebenzise, ngoba endaweni ethile emphakathini kuzovela iTula esenziwe ngomumo. Asikho isidingo sokuqongelela lokhu okuhlangenwe nakho ngaphakathi - kumane kuqede amandla nesikhathi ku-dev/null. Futhi asiyizweli nhlobo. Sishicilela yonke into ngenjabulo enkulu futhi siyaqonda ukuthi idinga ukushicilelwa, ukuthuthukiswa, ukukhuthazwa, ukukhuthazwa, ukuze abantu bayisebenzise futhi bengeze ulwazi lwabo - khona-ke yonke into iyakhula futhi iphile. Bese kuthi ngemva kweminyaka emibili ithuluzi lingangeni kudoti. Akuyona into edabukisayo ukuqhubeka nokuthulula amandla, ngoba kuyacaca ukuthi othile usebenzisa ithuluzi lakho, futhi ngemva kweminyaka emibili wonke umuntu uyalisebenzisa.
Lokhu kuyingxenye yesu lethu elikhulu nge-dapp/werf. Angikhumbuli ukuthi saqala nini ukuwenza, kubonakala sengathi eminyakeni emi-3 edlule. Ekuqaleni, yayihlala egobolondweni. Bekuwubufakazi obuhle kakhulu bomqondo, saxazulula ezinye zezinkinga zethu ezithile - kusebenzile! Kodwa kunezinkinga ngegobolondo, akunakwenzeka ukulikhulisa ngokuqhubekayo, ukuhlela kugobolondo kungomunye umsebenzi. Sasinomkhuba wokubhala ngoRuby, ngakho-ke, sakha kabusha okuthile ku-Ruby, kwathuthukiswa, kwathuthukiswa, futhi sagijimela eqinisweni lokuthi umphakathi, isixuku esingasho ukuthi "siyayifuna noma asiyifuni, ” ephendulela ikhala lakhe kuRuby, kuhlekisa kangakanani lokho? Sibone ukuthi kufanele sibhale zonke lezi zinto kokuthi Go ukuze nje sihlangabezane nephuzu lokuqala ohlwini lokuhlola: Ithuluzi le-DevOps kufanele libe kanambambili emile. Ukuba Hamba noma cha akubalulekile kangako, kodwa kanambambili emile ebhalwe kokuthi Go ingcono.
Sasebenzisa amandla ethu, sabhala kabusha i-dapp kokuthi Go futhi sayibiza ngokuthi i-werf. I-Dapp ayisasekelwa, ayisathuthukisiwe, isebenza ngenguqulo yakamuva, kodwa kukhona indlela yokuthuthukisa ngokuphelele eya phezulu, futhi ungayilandela.
Kungani i-dapp yakhiwe?
— Ungakwazi yini ukusitshela kafushane ukuthi kungani i-dapp yadalwa, yiziphi izinkinga eziyixazululayo?
Dmitry: Isizathu sokuqala sisemihlanganweni. Ekuqaleni, saba nezinkinga ezinkulu ngokwakhiwa lapho i-Docker ingenawo amakhono ezigaba eziningi, ngakho-ke senza izigaba eziningi sisodwa. Sabe sesiba nenqwaba yezinkinga ngokuhlanza isithombe. Wonke umuntu owenza i-CI / CD, ngokushesha kunokuba kamuva, ubhekene nenkinga yokuthi kunenqwaba yezithombe eziqoqiwe, udinga ngandlela-thile ukuhlanza okungadingeki futhi ushiye okudingekayo.
Isizathu sesibili ukuthunyelwa. Yebo, kukhona iHelm, kepha ixazulula ezinye zezinkinga kuphela. Ngokujabulisayo, kubhaliwe ukuthi "UHelm Ungumphathi Wephakheji we-Kubernetes." Impela lokho "the". Kukhona namagama athi “Umphathi Wephakheji” - ikuphi okulindelekile okujwayelekile Kumphathi Wephakheji? Sithi: “Umphathi Wephakheji - faka iphakheji!” futhi silindele ukuthi asitshele: “Iphasela selihanjisiwe.”
Kuyathakazelisa ukuthi sithi: "Helm, faka iphakheji," futhi lapho ephendula ukuthi uyifakile, kuvela ukuthi usanda kuqala ukufakwa - wabonisa uKubernetes: "Yethula le nto!", nokuthi iqalile noma cha. , kungakhathaliseki ukuthi iyasebenza noma cha, i-Helm ayiluxazululi nhlobo lolu daba.
Kuvele ukuthi iHelm imane iyiprosesa yombhalo elayisha idatha ku-Kubernetes.
Kodwa njengengxenye yanoma yikuphi ukuthunyelwa, sifuna ukwazi ukuthi isicelo sikhishelwe ukukhiqizwa noma cha? Ukukhishwa ku-prod kusho ukuthi uhlelo lokusebenza luthuthele lapho, inguqulo entsha isetshenzisiwe, futhi okungenani ayiphahlazeki lapho futhi iphendule ngendlela efanele. I-Helm ayixazululi le nkinga nganoma iyiphi indlela. Ukuze uyixazulule, udinga ukusebenzisa umzamo omkhulu, ngoba udinga ukunikeza i-Kubernetes umyalo wokukhipha nokuqapha okwenzeka lapho - kungakhathaliseki ukuthi kusetshenziswe noma kukhishwe. Futhi kunemisebenzi eminingi ehlobene nokuthunyelwa, ukuhlanza, nokuhlanganisa.
Izinhlelo
Kulo nyaka sizoqala intuthuko yasekhaya. Sifuna ukuzuza okwakukade kuyi-Vagrant - sibhale ukuthi “vagrant up” futhi sasebenzisa imishini ebonakalayo. Sifuna ukufika lapho kunephrojekthi e-Git, sibhala "werf up" lapho, futhi iletha ikhophi yendawo yale phrojekthi, efakwe ku-mini-Kub yendawo, nazo zonke izinkomba ezilungele ukuthuthukiswa zixhunyiwe. . Kuye ngolimi lokuthuthukiswa, lokhu kwenziwa ngendlela ehlukile, kodwa noma kunjalo, ukuze ukuthuthukiswa kwendawo kungenziwa kalula ngaphansi kwamafayela afakwe.
Isinyathelo esilandelayo kithi tshala ukuze kube lula konjiniyela. Ukuze usebenzise ngokushesha iphrojekthi endaweni ngethuluzi elilodwa, uyithuthukise, uyiphushele ku-Git, futhi izophuma iye esiteji noma ekuhlolweni, kuye ngamapayipi, bese usebenzisa ithuluzi elifanayo ukuya ekukhiqizeni. Lokhu kubumbana, ukuhlanganisa, ukuphindaphindeka kwengqalasizinda kusuka endaweni yendawo kuya ekuthengisweni kuyiphuzu elibaluleke kakhulu kithi. Kodwa lokhu akukabi yi-werf okwamanje - sihlela ukukwenza nje.
Kodwa indlela eya ku-dapp/werf ibilokhu ifana ne-Kubernetes ekuqaleni. Sihlangabezane nezinkinga, sazixazulula ngama-workaround - saqhamuka nezixazululo zethu kugobolondo, kunoma yini. Base bezama ngandlela thize ukulungisa lezi zindlela zokusebenza, ukuzihlanganisa futhi bazihlanganise zibe ngamabhanari kulesi simo, esivele sabelane ngazo.
Kukhona enye indlela yokubuka yonke le ndaba, ngezifaniso.
I-Kubernetes wuhlaka lwemoto olunenjini. Ayikho iminyango, ingilazi, umsakazo, isihlahla sikaKhisimusi - lutho nhlobo. Uhlaka kanye nenjini nje. Futhi kukhona iHelm - leli isondo lokuqondisa. Kupholile - kukhona isondo lokuqondisa, kodwa futhi udinga iphini lokuqondisa, i-steering rack, i-gearbox namasondo, futhi awukwazi ukwenza ngaphandle kwabo.
Endabeni ye-werf, lena enye ingxenye ye-Kubernetes. Kuphela manje kunguqulo ye-alpha ye-werf, isibonelo, i-Helm ihlanganiswa ngaphakathi kwe-werf, ngoba sikhathele ukuzenzela thina. Kunezizathu eziningi zokwenza lokhu, ngizokutshela ngokuningiliziwe mayelana nokuthi kungani sihlanganise yonke i-helm kanye ne-tiller ngaphakathi kwe-werf .
Manje i-werf isiyingxenye edidiyelwe kakhudlwana. Sithola isondo lokuqondisa eliqediwe, iphinikhodi - angikwazi kahle kakhulu ezimotweni, kodwa lokhu kuyibhulokhi enkulu esivele ixazulula izinkinga eziningi. Asidingi ukuthi sidlule kukhathalogi ngokwethu, sikhethe ingxenye eyodwa kwenye, sicabange ukuthi singazihlanganisa kanjani. Sithola inhlanganisela eyenziwe ngomumo exazulula izinkinga eziningi ngesikhathi esisodwa. Kepha ngaphakathi kwayo yakhiwe ngezinto ezifanayo zomthombo ovulekile, isasebenzisa i-Docker yokuhlanganisa, iHelm kokunye ukusebenza, futhi kuneminye imitapo yolwazi eminingana. Leli ithuluzi elihlanganisiwe lokukhipha i-CI/CD epholile ebhokisini ngokushesha nangokufanele.
Ingabe i-Kubernetes inzima ukuyinakekela?
- Ukhuluma ngolwazi oqale ngalo ukusebenzisa i-Kubernetes, lolu wuhlaka lwakho, injini, futhi ongalengisa izinto eziningi ezihlukene kulo: umzimba, isiteringi, isikulufu kumaphedali, izihlalo. Umbuzo ophakamayo - kunzima kangakanani ukusekelwa kwe-Kubernetes kuwe? Unolwazi oluningi, singakanani isikhathi nezinsiza ozisebenzisayo ekusekeleni u-Kubernetes eyedwa kukho konke okunye?
Dmitry: Lona umbuzo onzima kakhulu futhi ukuwuphendula, sidinga ukuqonda ukuthi kuyini ukwesekwa nokuthi sifunani ku-Kubernetes. Mhlawumbe ungadalula?
- Ngokwazi kwami nanjengokubona kwami, manje amaqembu amaningi afuna ukuzama i-Kubernetes. Wonke umuntu uzibophela kuyo, ayibeke emadolweni. Nginomuzwa wokuthi abantu abaqondi ngaso sonke isikhathi inkimbinkimbi yalesi simiso.
Dmitry: Kunjalo.
- Kunzima kangakanani ukuthatha nokufaka i-Kubernetes kusukela ekuqaleni ukuze isilungele ukukhiqizwa?
Dmitry: Ucabanga ukuthi kunzima kangakanani ukufakelwa inhliziyo? Ngiyaqonda ukuthi lo ngumbuzo oyekethisayo. Ukusebenzisa i-scalpel futhi ungenzi iphutha akunzima kangako. Uma bekutshela ukuthi kufanele usike kuphi futhi kuphi ukuthunga, khona-ke inqubo ngokwayo ayiyona inkimbinkimbi. Kunzima ukuqinisekisa isikhathi nesikhathi ukuthi konke kuzolunga.
Ukufaka i-Kubernetes nokuyenza isebenze kulula: chick! - ifakiwe, ziningi izindlela zokufaka. Kodwa kwenzekani lapho kuphakama izinkinga?
Imibuzo ihlala iphakama - yini esingakayicabangi? Yini esingakenzi? Imaphi amapharamitha e-Linux kernel ashiwo ngokungalungile? Nkosi, saze sazisho na?! Yiziphi izingxenye ze-Kubernetes esizilethile futhi yiziphi esingakazilethanga? Izinkulungwane zemibuzo ziphakama, futhi ukuze uziphendule, udinga ukuchitha iminyaka engu-15-20 kulo mkhakha.
Nginesibonelo sakamuva kulesi sihloko esingase siveze incazelo yenkinga ethi “Ingabe i-Kubernetes inzima ukuyinakekela?” Esikhathini esithile esidlule sicabange ngokujulile ukuthi kufanele sizame yini ukusebenzisa i-Cilium njengenethiwekhi e-Kubernetes.
Ake ngichaze ukuthi yini iKiliyu. I-Kubernetes inokuqaliswa okuningi okuhlukene kwesistimu engaphansi yokuxhumana, futhi enye yazo ipholile kakhulu - i-Cilium. Ithini incazelo yalo? Ku-kernel, esikhathini esithile esidlule kwakwazi ukubhala izingwegwe ze-kernel, okuthi ngandlela thize ihlasele i-subsystem yenethiwekhi nezinye izinhlelo ezingaphansi ezihlukahlukene, futhi ikuvumela ukuba udlule izingcezu ezinkulu ku-kernel.
I-Linux kernel ngokomlando ine-ip rout, isihlungi esingaphezulu, amabhuloho kanye nezingxenye eziningi zakudala ezineminyaka eyi-15, 20, 30 ubudala. Ngokuvamile, bayasebenza, konke kuhle, kodwa manje banqwabelanisa iziqukathi, futhi kubukeka njengombhoshongo wezitini ezingu-15 phezu komunye nomunye, futhi ume kuwo ngomlenze owodwa - umuzwa ongavamile. Lolu hlelo selwakhiwe ngokomlando ngamanuances amaningi, njenge-appendix emzimbeni. Kwezinye izimo kunezinkinga zokusebenza, isibonelo.
Kukhona i-BPF emangalisayo kanye nekhono lokubhala izingwegwe ze-kernel - abafana babhala izingwegwe zabo ze-kernel. Iphakheji ingena ku-Linux kernel, bayikhiphe khona lapho okokufaka, bayicubungule ngokwabo njengoba kufanele ngaphandle kwamabhuloho, ngaphandle kwe-TCP, ngaphandle kwesitaki se-IP - ngamafuphi, bedlula yonke into ebhalwe ku-Linux kernel, bese bekhafula. aphumele esitsheni.
Kwenzenjani? Ukusebenza okuhle kakhulu, izici ezipholile - kupholile nje! Kodwa sibheka lokhu futhi siyabona ukuthi emshinini ngamunye kukhona uhlelo oluxhuma ku-Kubernetes API futhi, ngokusekelwe kudatha elithola kule API, likhiqiza ikhodi ye-C futhi lihlanganise amabhinari alayishwa ku-kernel ukuze lezi zingwegwe zisebenze. endaweni ye-kernel.
Kwenzekani uma kukhona okungahambi kahle? Asazi. Ukuze uqonde lokhu, udinga ukufunda yonke le khodi, uqonde wonke umqondo, futhi kuyamangalisa ukuthi kunzima kangakanani. Kodwa, ngakolunye uhlangothi, kunalawa mabhuloho, izihlungi zenetha, i-ip rout - angikayifundi ikhodi yabo yomthombo, futhi anginabo onjiniyela abangama-40 abasebenza enkampanini yethu. Mhlawumbe abambalwa kuphela abaqonda izingxenye ezithile.
Futhi uyini umehluko? Kuvele ukuthi kukhona i-ip rout, i-Linux kernel, futhi kukhona ithuluzi elisha - lenza mehluko muni, asiqondi eyodwa noma enye. Kodwa siyesaba ukusebenzisa into entsha - ngani? Ngoba uma ithuluzi lineminyaka engu-30 ubudala, khona-ke eminyakeni engu-30 zonke izimbungulu zitholakele, wonke amaphutha anyathelwe futhi awudingi ukwazi ngakho konke - isebenza njengebhokisi elimnyama futhi isebenza njalo. Wonke umuntu uyazi ukuthi iyiphi i-screwdriver yokuxilonga okufanele inamathele kuyiphi indawo, iyiphi i-tcpdump okufanele isebenze ngasiphi isikhathi. Wonke umuntu uzazi kahle izinsiza zokuxilonga futhi uyaqonda ukuthi le sethi yezingxenye isebenza kanjani ku-Linux kernel - hhayi ukuthi isebenza kanjani, kodwa ukuthi isetshenziswa kanjani.
Futhi i-Cilium epholile emangalisayo ayineminyaka engama-30 ubudala, ayikakagugi. U-Kubernetes unenkinga efanayo, kopisha. Lokho i-Cilium ifakwe ngokuphelele, ukuthi i-Kubernetes ifakwe ngokuphelele, kodwa uma kukhona okungahambi kahle ekukhiqizeni, uyakwazi ukuqonda ngokushesha esimweni esibucayi ukuthi yini engalungile?
Uma sithi kunzima ukugcina i-Kubernetes - cha, kulula kakhulu, futhi yebo, kunzima kakhulu. I-Kubernetes isebenza kahle iyodwa, kodwa ngama-nuances ayizigidi eziyinkulungwane.
Mayelana nendlela ethi "Ngizoba nenhlanhla".
- Ingabe zikhona izinkampani lapho lawa ma-nuances cishe aqinisekisiwe ukuthi azovela? Ake sithi i-Yandex ngokuzumayo idlulisela zonke izinsizakalo ku-Kubernetes, kuzoba nomthwalo omkhulu lapho.
Dmitry: Cha, lena akuyona ingxoxo mayelana nomthwalo, kodwa mayelana nezinto ezilula. Isibonelo, sine-Kubernetes, sithumele isicelo lapho. Wazi kanjani ukuthi iyasebenza? Alikho nje ithuluzi elenziwe ngomumo lokuqonda ukuthi uhlelo lokusebenza aluphahlazeka. Alukho uhlelo olwenziwe ngomumo oluthumela izexwayiso; udinga ukulungisa lezi zixwayiso nohlelo ngalunye. Futhi sibuyekeza i-Kubernetes.
Ngino-Ubuntu 16.04. Ungasho ukuthi lena inguqulo endala, kodwa sisaphezu kwayo ngoba iyi-LTS. Kukhona i-systemd, i-nuance yayo ukuthi ayihlanzi amaqembu e-C. U-Kubernetes wethula ama-pods, udala amaqembu e-C, bese esusa ama-pods, futhi ngandlela thile kuvele - angikhumbuli imininingwane, ngiyaxolisa - ukuthi izingcezu ze-systemd zisele. Lokhu kuholela eqinisweni lokuthi ngokuhamba kwesikhathi, noma iyiphi imoto iqala ukwehla kakhulu. Lokhu akuwona ngisho umbuzo mayelana nokulayisha okuphezulu. Uma kuqalwa ama-pods angunaphakade, isibonelo, uma kukhona i-Cron Job ehlala ikhiqiza ama-pods, khona-ke umshini ono-Ubuntu 16.04 uzoqala ukwehla ngemva kwesonto. Kuzoba khona isilinganiso esiphezulu sokulayisha njalo ngenxa yokuthi inqwaba yama-C-groups idaliwe. Lena inkinga noma yimuphi umuntu ovele afake i-Ubuntu 16 ne-Kubernetes phezulu azobhekana nayo.
Ake sithi ngandlela thize ubuyekeza i-systemd noma enye into, kodwa ku-Linux kernel kufika ku-4.16 kuyahlekisa nakakhulu - uma ususa amaqembu e-C, ayavuza ku-kernel futhi awasuswanga ngempela. Ngakho-ke, ngemva kwenyanga yokusebenza kulo mshini, ngeke ukwazi ukubheka izibalo zememori yezinhliziyo. Sikhipha ifayela, siligoqe ohlelweni, futhi ifayela elilodwa ligoqa imizuzwana engu-15, ngoba i-kernel ithatha isikhathi eside kakhulu ukubala ama-C-groups ayisigidi ngaphakathi kwayo, abonakala sengathi asusiwe, kodwa cha - ayavuza. .
Ziseziningi izinto ezincane ezinjalo lapha nalaphaya. Lena akuyona inkinga izinkampani ezinkulu ngezinye izikhathi ezingabhekana nazo ngaphansi kwemithwalo esindayo - cha, yindaba yezinto zansuku zonke. Abantu bangaphila kanje izinyanga - bafake i-Kubernetes, basebenzise uhlelo lokusebenza - kubonakala lusebenza. Kubantu abaningi lokhu kuvamile. Ngeke baze bazi ukuthi lolu hlelo lokusebenza luzophahlazeka ngesizathu esithile, ngeke bathole isexwayiso, kodwa kubo lokhu kuyinto evamile. Ngaphambilini, besihlala emishinini ebonakalayo ngaphandle kokuqapha, manje sesithuthele e-Kubernetes, futhi ngaphandle kokuqapha - uyini umehluko?
Umbuzo uthi uma sihamba eqhweni asikwazi ukushuba kwalo ngaphandle kokuthi sililinganise kusenesikhathi. Abantu abaningi bahamba futhi abakhathazeki, ngoba bake bahamba ngaphambili.
Ngokombono wami, i-nuance kanye yinkimbinkimbi yokusebenza noma yiluphi uhlelo ukuqinisekisa ukuthi ukushuba kweqhwa kwanele ukuxazulula izinkinga zethu. Yilokhu esikhuluma ngakho.
Ku-IT, kubonakala kimi, kunezindlela eziningi kakhulu zokuthi "Ngizoba nenhlanhla". Abantu abaningi bafaka isoftware futhi basebenzise imitapo yolwazi yesoftware ngethemba lokuthi bazoba nenhlanhla. Ngokuvamile, abantu abaningi banenhlanhla. Cishe yingakho kusebenza.
- Kusukela ekuhloleni kwami okungenathemba, kubukeka kanje: lapho izingozi ziphezulu, futhi isicelo kufanele sisebenze, khona-ke ukusekelwa kuyadingeka ku-Flaunt, mhlawumbe kusuka ku-Red Hat, noma udinga ithimba lakho langaphakathi elizinikezele ngokuqondile ku-Kubernetes, elilungile. ukuyikhipha.
Dmitry: Ngokuqondile, lokhu kunjalo. Ukungena endabeni ye-Kubernetes yeqembu elincane uwedwa kuhlanganisa inqwaba yezingozi.
Ingabe siyazidinga iziqukathi?
- Ungasitshela ukuthi i-Kubernetes isakazeke kangakanani eRussia?
Dmitry: Anginayo le datha, futhi angiqiniseki ukuthi omunye umuntu unayo. Sithi: “Kubernetes, Kubernetes,” kodwa kunenye indlela yokubuka lolu daba. Angazi futhi ukuthi iziqukathi zisakazeke kangakanani, kodwa ngiyazi isibalo esivela emibikweni eku-inthanethi yokuthi ama-70% weziqukathi ahlelwa ngabakwaKubernetes. Bekuwumthombo onokwethenjelwa wesampula enkulu emhlabeni jikelele.
Bese kuba omunye umbuzo - siyazidinga iziqukathi? Umuzwa wami siqu kanye nesimo sonke senkampani ye-Flant ukuthi i-Kubernetes iyindinganiso ye-de facto.
Ngeke kube khona lutho ngaphandle kukaKubernetes.
Lokhu kuwushintsho oluphelele emkhakheni wokuphathwa kwengqalasizinda. Impela - yilokho kuphela, akusekho i-Ansible, Chef, imishini ebonakalayo, iTerraform. Angikhulumi ngezindlela zakudala zepulazi ezihlangene. UKubernetes ushintshe ngokuphelele, futhi manje kuzoba njena.
Kuyacaca ukuthi kwabanye kuthatha iminyaka embalwa, kanti kwabanye amashumi ambalwa eminyaka, ukuqaphela lokhu. Angingabazi ukuthi ngeke kube khona lutho ngaphandle kukaKubernetes kanye nalokhu kubukeka okusha: asisalimazi uhlelo lokusebenza, kodwa sebenzisa ingqalasizinda njengekhodi, hhayi kuphela ngekhodi, kodwa nge-yml - ingqalasizinda echazwe ngokumemezela. Nginomuzwa wokuthi kuyohlale kunje.
- Okusho ukuthi, lezo zinkampani ezingakashintshile ku-Kubernetes nakanjani zizoshintshela kuyo noma zihlale zilibaleka. Ngikuqonde kahle?
Dmitry: Lokhu nakho akulona iqiniso ngokuphelele. Isibonelo, uma sinomsebenzi wokusebenzisa iseva ye-DNS, khona-ke ingasetshenziswa ku-FreeBSD 4.10 futhi ingasebenza kahle iminyaka engu-20. Vele usebenze futhi kunjalo. Mhlawumbe eminyakeni engu-20 okuthile kuzodinga ukubuyekezwa kanye. Uma sikhuluma nge-software ngefomethi esiyethule futhi empeleni isebenza iminyaka eminingi ngaphandle kokubuyekezwa, ngaphandle kokwenza izinguquko, khona-ke, ngeke kube khona i-Kubernetes. Akadingeki lapho.
Konke okuhlobene ne-CI/CD - noma kuphi lapho kudingeka khona ukulethwa Okuqhubekayo, lapho udinga ukuvuselela izinguqulo, wenze izinguquko ezisebenzayo, noma kuphi lapho udinga ukwakha ukubekezelelana kwamaphutha - i-Kubernetes kuphela.
Mayelana nama-microservices
- Lapha ngine-dissonance encane. Ukuze usebenze noKubernetes, udinga ukusekelwa kwangaphandle noma kwangaphakathi - leli yiphuzu lokuqala. Okwesibili, lapho siqala ukuthuthukiswa, siyisiqalo esincane, asinalutho okwamanje, ukuthuthukiswa kwe-Kubernetes noma i-microservice architecture ngokuvamile ingaba yinkimbinkimbi futhi ingahlali ilungile ngokwezomnotho. Nginentshisekelo embonweni wakho - ingabe abaqalisi badinga ukuqala ngokushesha ukubhalela u-Kubernetes kusukela ekuqaleni, noma basengabhala i-monolith, bese beza e-Kubernetes kuphela?
Dmitry: Umbuzo omuhle. Nginenkulumo mayelana nama-microservices Izikhathi eziningi ngiye ngahlangana nabantu bezama ukubethela izipikili ngesibonakhulu. Indlela ngokwayo ilungile; thina ngokwethu siklama isofthiwe yethu yangaphakathi ngale ndlela. Kodwa lapho wenza lokhu, udinga ukuqonda ngokucacile lokho okwenzayo. Igama engilizonda kakhulu ngama-microservices lithi “micro.” Ngokomlando, leli gama lavela lapho, futhi ngesizathu esithile abantu bacabanga ukuthi i-micro incane kakhulu, ingaphansi kwemilimitha, njenge-micrometer. Lokhu akulungile.
Isibonelo, kukhona i-monolith ebhalwe ngabantu abangu-300, futhi wonke umuntu obambe iqhaza ekuthuthukisweni uyaqonda ukuthi kunezinkinga lapho, futhi kufanele iphulwe ibe yizicucu ezincane - izingcezu ezingaba ngu-10, ngayinye ebhalwe ngabantu abangu-30. ngenguqulo encane. Lokhu kubalulekile, kuyadingeka futhi kupholile. Kodwa lapho isiqalo sifika kithi, lapho abafana aba-3 abapholile kakhulu nabanekhono babhala ama-microservices angu-60 emadolweni abo, njalo lapho ngibheka i-Corvalol.
Kubonakala kimi ukuthi lokhu sekuvele kukhulunywe ngakho izikhathi eziyizinkulungwane - sithole i-monolith esabalalisiwe ngendlela eyodwa noma enye. Lokhu akulungile ngokomnotho, kunzima kakhulu ngokujwayelekile kukho konke. Sengikubone kaningi lokhu ukuthi kungiphatha kabi kakhulu, ngakho ngisaqhubeka nokukhuluma ngakho.
Embuzweni wokuqala, kukhona ukungqubuzana phakathi kweqiniso lokuthi, ngakolunye uhlangothi, uKubernetes uyesaba ukusebenzisa, ngoba akucaci ukuthi yini engase iphule lapho noma ingasebenzi, ngakolunye uhlangothi, kuyacaca ukuthi yonke into iya lapho. futhi akukho lutho ngaphandle kukaKubernetes oluyoba khona . Phendula - kala inani lenzuzo ezayo, inani lemisebenzi ongayixazulula. Lokhu kuhlangothini olulodwa lwesikali. Ngakolunye uhlangothi, kunezingozi ezihlobene nesikhathi sokuphumula noma ngokuncipha kwesikhathi sokuphendula, izinga lokutholakala - ngokuncipha kwezinkomba zokusebenza.
Nakhu - noma sihamba ngokushesha, futhi i-Kubernetes isivumela ukuthi senze izinto eziningi ngokushesha nangcono kakhulu, noma sisebenzisa izixazululo ezithembekile, ezihlolwe isikhathi, kodwa sihamba kancane kakhulu. Lokhu ukukhetha okufanele kwenziwe yizo zonke izinkampani. Ungacabanga ngayo njengendlela yasehlathini - lapho uhamba okokuqala, ungahlangana nenyoka, ingwe noma ibheha elihlanya, futhi lapho usuhambe izikhathi ezingu-10, unyathele indlela, wasuswa. amagatsha futhi uhambe kalula. Isikhathi ngasinye indlela iba banzi. Bese kuba umgwaqo wetiyela, futhi kamuva i-boulevard enhle.
U-Kubernetes akamile. Umbuzo futhi: I-Kubernetes, ngakolunye uhlangothi, i-4-5 binaries, ngakolunye uhlangothi, iyonke i-ecosystem. Lolu uhlelo lokusebenza esinalo emishinini yethu. Kuyini lokhu? Ubuntu or Curios? Lena i-Linux kernel, inqwaba yezingxenye ezengeziwe. Zonke lezi zinto lapha, inyoka eyodwa enobuthi yaphonswa ngaphandle komgwaqo, kwabiyelwa lapho. I-Kubernetes ikhula ngokushesha okukhulu futhi ngokuguquguqukayo, futhi umthamo wezingozi, umthamo wokungaziwa uyancipha njalo ngenyanga futhi, ngokufanele, lezi zilinganiso ziphinde zilinganise.
Ukuphendula umbuzo wokuthi yini ukuqalisa okufanele yenze, ngingathi - woza ku-Flaunt, ukhokhe ama-ruble ayizinkulungwane ezingu-150 futhi uthole isevisi elula ye-DevOps ye-turnkey. Uma uyisiqalo esincane esinonjiniyela abambalwa, lokhu kuyasebenza. Esikhundleni sokuqasha ama-DevOps akho, ozodinga ukufunda ukuxazulula izinkinga zakho futhi akhokhe iholo ngalesi sikhathi, uzothola isisombululo se-turnkey kuzo zonke izinkinga. Yebo, kukhona ukungalungi okuthile. Thina, njengomsebenzi wangaphandle, asikwazi ukubandakanyeka kakhulu futhi siphendule ngokushesha izinguquko. Kodwa sinobuchwepheshe obuningi kanye nezinqubo esezilungile. Siyaqinisekisa ukuthi kunoma yisiphi isimo sizokucacisa ngokushesha futhi siphakamise noma yimuphi u-Kubernetes kwabafileyo.
Ngincoma kakhulu ukukhishwa kwamabhizinisi okuqala kanye namabhizinisi asungulwe kuze kube usayizi lapho unganikezela khona iqembu labantu abangu-10 ekusebenzeni, ngoba ngaphandle kwalokho akukho phuzu. Kunengqondo ngempela ukukhipha lokhu.
Mayelana ne-Amazon ne-Google
- Ingabe umsingathi ovela kusixazululo esivela e-Amazon noma ku-Google angabhekwa njengomthombo wangaphandle?
Dmitry: Yebo, kunjalo, lokhu kuxazulula izinkinga ezimbalwa. Kodwa futhi kukhona ama-nuances. Usadinga ukuqonda ukuthi isetshenziswa kanjani. Isibonelo, kunezinto ezincane eziyinkulungwane emsebenzini we-Amazon AWS: I-Balancer Yomthwalo idinga ukufudunyezwa noma isicelo kufanele sibhalwe kusenesikhathi ukuthi "bafo, sizothola ithrafikhi, sifudumale Isilinganisi Somthwalo wethu!" Udinga ukwazi lawa ma-nuances.
Uma uphendukela kubantu abangochwepheshe kulokhu, uthola cishe zonke izinto ezijwayelekile zivaliwe. Manje sesinonjiniyela abangu-40, ekupheleni konyaka cishe bazobe sebengama-60 - nakanjani sesihlangabezane nazo zonke lezi zinto. Ngisho noma siphinde sihlangabezane nale nkinga kuphrojekthi ethile, siyabuzana ngokushesha futhi sazi ukuthi siyixazulula kanjani.
Mhlawumbe impendulo ithi - kunjalo, indaba ephethwe yenza ingxenye ethile ibe lula. Umbuzo uthi ngabe ukulungele yini ukubethemba laba basokhaya nokuthi bazozixazulula yini izinkinga zakho. I-Amazon ne-Google benze kahle. Kuzo zonke izimo zethu - ngqo. Asisenaso isipiliyoni esihle. Wonke amanye amafu esizame ukusebenza nawo adala izinkinga eziningi - i-Ager, nayo yonke into eseRussia, nazo zonke izinhlobo ze-OpenStack ekusetshenzisweni okuhlukile: I-Headster, Overage - noma yini oyifunayo. Zonke zidala izinkinga ongafuni ukuzixazulula.
Ngakho-ke, impendulo inguyebo, kodwa, eqinisweni, azikho izixazululo eziningi ezisingathiwe ezivuthiwe.
Ubani odinga i-Kubernetes?
- Kodwa-ke, ubani odinga i-Kubernetes? Ubani okufanele vele ashintshele ku-Kubernetes, oyiklayenti elijwayelekile le-Flaunt eliza ngokukhethekile ku-Kubernetes?
Dmitry: Lona umbuzo othakazelisayo, ngoba njengamanje, ngemva kukaKubernetes, abantu abaningi beza kithi: "Bafo, siyazi ukuthi nenza i-Kubernetes, yenzeleni thina!" Siyabaphendula: “Madoda, asiyenzi i-Kubernetes, senza i-prod nakho konke okuhlobene nakho.” Ngoba okwamanje akunakwenzeka ukwenza umkhiqizo ngaphandle kokwenza yonke i-CI/CD nayo yonke le ndaba. Wonke umuntu usesukile ekwehlukaneni esinakho nentuthuko ngentuthuko, bese sixhashazwa ngokuxhashazwa.
Amakhasimende ethu alindele izinto ezahlukene, kodwa wonke umuntu ulindele isimangaliso esithile ukuthi banezinkinga ezithile, futhi manje - hop! - UKubernetes uzozixazulula. Abantu bakholelwa ezimangalisweni. Ezingqondweni zabo bayaqonda ukuthi ngeke kube khona isimangaliso, kodwa emiphefumulweni yabo banethemba - kuthiwani uma le Kubernetes manje izosixazululela yonke into, bakhuluma kakhulu ngakho! Ngokushesha manje - thimula! - kanye nenhlamvu yesiliva, thimula! - futhi sinesikhathi sokuphumula esingu-100%, bonke onjiniyela bangakhulula noma yini engena emkhiqizweni izikhathi ezingu-50, futhi ayiphahlazeki. Ngokuvamile, isimangaliso!
Lapho abantu abanjalo beza kithi, sithi: “Uxolo, kodwa asikho isimangaliso.” Ukuze ube nempilo enhle, kudingeka udle kahle futhi uzivocavoce. Ukuze ube nomkhiqizo onokwethenjelwa, udinga ukwenziwa ngokuthembekile. Ukuze ube ne-CI/CD elula, udinga ukuyenza kanje. Mningi-ke lowo msebenzi okufanele wenziwe.
Ukuphendula umbuzo wokuthi ubani odinga i-Kubernetes - akekho odinga u-Kubernetes.
Abanye abantu banombono oyiphutha wokuthi badinga i-Kubernetes. Abantu badinga, banesidingo esijulile sokuyeka ukucabanga, ukufunda, nokuba nentshisekelo kuzo zonke izinkinga zengqalasizinda kanye nezinkinga zokuqhuba izicelo zabo. Bafuna ukuthi izinhlelo zokusebenza zivele zisebenze futhi zivele zisetshenziswe. Kubo, uKubernetes unethemba lokuthi bazoyeka ukuzwa indaba yokuthi “besilele lapho,” noma “ngeke siyikhiphe,” noma enye into.
Umqondisi wezobuchwepheshe uvame ukuza kithi. Bambuza izinto ezimbili: ngakolunye uhlangothi, asinike izici, ngakolunye uhlangothi, ukuzinza. Siphakamisa ukuthi uzithathele yona futhi ukwenze. Inhlamvu yesiliva, noma kunalokho isiliva-plated, ukuthi uzoyeka ukucabanga ngalezi zinkinga futhi uchithe isikhathi. Uzoba nabantu abakhethekile abazovala lolu daba.
Amagama esiwadingayo thina noma omunye umuntu u-Kubernetes awalungile.
Abaphathi bayayidinga ngempela i-Kubernetes, ngoba iyithoyizi elithakazelisa kakhulu ongadlala ngalo futhi uxoxe ngalo. Masikhulume iqiniso - wonke umuntu uyawathanda amathoyizi. Sonke singabantwana endaweni ethile, futhi lapho sibona entsha, sifuna ukuyidlala. Kwabanye, lokhu kuye kwadumazeka, isibonelo, ekuphathweni, ngoba sebevele badlala ngokwanele futhi sebevele bekhathele kangangokuthi abafuni nje. Kodwa lokhu akulahleki ngokuphelele kunoma ubani. Isibonelo, uma ngikhathele amathoyizi emkhakheni wokuphatha uhlelo kanye ne-DevOps isikhathi eside, khona-ke ngisawathanda amathoyizi, ngisawathenga amasha. Bonke abantu, ngandlela thize, basafuna uhlobo oluthile lwamathoyizi.
Asikho isidingo sokudlala ngokukhiqiza. Noma yini engincoma ukuthi ngingayenzi nalokho engikubona manje ngobuningi: “O, ithoyizi elisha!” — bagijima bayoyithenga, bayithenga futhi: “Asiyise esikoleni manje futhi siyibonise bonke abangane bethu.” Ungakwenzi lokhu. Ngiyaxolisa, izingane zami ziyakhula, ngihlale ngibona okuthile ezinganeni, ngikuqaphele kimi, bese ngikwenza kwabanye.
Impendulo yokugcina ithi: awudingi i-Kubernetes. Udinga ukuxazulula izinkinga zakho.
Ongakuzuza yilokhu:
- i-prod ayiwi;
- ngisho noma ezama ukuwa, siyazi ngakho kusengaphambili, futhi singafaka okuthile kuwo;
- singayishintsha ngesivinini ibhizinisi lethu elikudinga ngaso, futhi singakwenza kalula; ayisibangeli izinkinga.
Kunezidingo zangempela ezimbili: ukwethembeka kanye namandla/ukuguquguquka kokukhishwa. Wonke umuntu okwamanje owenza uhlobo oluthile lwamaphrojekthi we-IT, kungakhathaliseki ukuthi hlobo luni lwebhizinisi - elithambile ukuze enze umhlaba ube lula, futhi okuqondayo lokhu, udinga ukuxazulula lezi zidingo. I-Kubernetes ngendlela efanele, ngokuqonda okufanele kanye nesipiliyoni esanele ikuvumela ukuba uxazulule.
Mayelana ne-serverless
- Uma ubheka kancane esikhathini esizayo, bese uzama ukuxazulula inkinga yokungabikho kwekhanda ngengqalasizinda, ngesivinini sokukhishwa kanye nesivinini sokushintsha kwesicelo, izixazululo ezintsha zivela, isibonelo, ezingenasici. Ingabe uzizwa unamandla kulokhu futhi, ake sithi, ingozi ye-Kubernetes nezixazululo ezifanayo?
Dmitry: Lapha kumele siphinde sikuphawule ukuthi angiyena umboni obheka phambili athi - kuzoba njena! Nakuba ngenza into efanayo. Ngibheka izinyawo zami futhi ngibona inqwaba yezinkinga lapho, isibonelo, indlela ama-transistors asebenza ngayo kukhompyutha. Kuyahlekisa, akunjalo? Sihlangabezana neziphazamisi ku-CPU.
Yenza iseva ingabi nokwethenjwa, ishibhile, isebenze kahle futhi ifaneleke, ixazulula zonke izinkinga ze-ecosystem. Lapha ngivumelana no-Elon Musk ukuthi iplanethi yesibili iyadingeka ukudala ukubekezelelana kwamaphutha esintwini. Nakuba ngingazi ukuthi uthini, ngiyaqonda ukuthi angikakakulungeli ukundiza ngiye kuMars futhi ngeke kwenzeke kusasa.
Nge-serverless kusobala ngokusobala ukuthi lokhu kuyinto elungile ngokombono, njengokubekezelela amaphutha esintwini - ukuba namaplanethi amabili kungcono kunoyedwa. Kodwa kwenziwa kanjani manje? Ukuthumela uhambo olulodwa akuyona inkinga uma ugxilisa imizamo yakho kukho. Ukuthumela izinkambo ezimbalwa kanye nokuxazulula izinkulungwane ezimbalwa zabantu lapho, ngicabanga ukuthi, nakho kunengqondo. Kodwa ukwenza kube nokubekezelelana kwamaphutha ngokuphelele ukuze ingxenye yesintu ihlale lapho, kubonakala kimi manje kungenakwenzeka, kungacatshangwa.
Ngokungena-server eyodwa eyodwa: into ipholile, kepha ikude nezinkinga zika-2019. Sekusondele u-2030 - asiphile ukuze sikubone. Angingabazi ukuthi sizophila, nakanjani sizophila (phinda ngaphambi kokulala), kodwa manje sidinga ukuxazulula ezinye izinkinga. Kufana nokukholelwa enganekwaneni iponi elithi Rainbow. Yebo, amaphesenti ambalwa wamacala axazululiwe, futhi axazululwa ngokuphelele, kodwa ngokuzithoba, i-serverless inguthingo... Kimi, lesi sihloko sikude kakhulu futhi asiqondakali kakhulu. Angikakalungeli ukukhuluma. Ngo-2019, awukwazi ukubhala uhlelo lokusebenza olulodwa olungenaseva.
I-Kubernetes izovela kanjani
- Njengoba siqhubekela kuleli kusasa elimangalisayo elikude, ucabanga ukuthi i-Kubernetes kanye ne-ecosystem ezungezile kuzothuthuka?
Dmitry: Sengikucabange kakhulu lokhu futhi nginempendulo ecacile. Eyokuqala i-statefull - emva kwakho konke, i-stateless kulula ukuyenza. UKubernetes ekuqaleni watshala imali eningi kulokhu, konke kwaqala ngakho. I-Stateless isebenza cishe ngokuphelele e-Kubernetes, akukho lutho ongakhononda ngakho. Kusenezinkinga eziningi, noma kunalokho, ama-nuances. Konke lapho kakade kusisebenzela kahle, kodwa yithina. Kuzothatha okungenani iminyaka embalwa ukuze lokhu kusebenzele wonke umuntu. Lokhu akusona inkomba ebaliwe, kodwa umuzwa wami ovela ekhanda lami.
Ngamafuphi, i-statefull kufanele - futhi izothuthuka kakhulu, ngoba zonke izinhlelo zethu zokusebenza zesitolo; azikho izinhlelo zokusebenza ezingenasici. Lokhu kuwukukhohlisa; udinga njalo uhlobo oluthile lwesizindalwazi nokunye. I-Statefull imayelana nokuqondisa konke okungenzeka, ukulungisa zonke iziphazamisi, ukuthuthukisa zonke izinkinga ezibhekene nazo njengamanje - ake sikubize ngokuthi ukutholwa.
Izinga lokungaziwa, izinga lezinkinga ezingakaxazululwa, izinga lamathuba okuhlangana nokuthile lizokwehla kakhulu. Lena indaba ebalulekile. Futhi ama-opharetha - yonke into ehlobene nokufakwa kwekhodi ye-logic yokuphatha, ukulawula i-logic ukuze uthole isevisi elula: Isevisi elula ye-MySQL, isevisi elula ye-RabbitMQ, isevisi elula ye-Memcache - ngokuvamile, zonke lezi zingxenye esidinga ukuqinisekiswa ukuze sisebenze kuzo. ibhokisi. Lokhu kumane kuxazulule izinhlungu esizifunayo, kodwa asifuni ukuyiphatha, noma sifuna i-Kubernetes, kodwa asifuni ukuyiphatha.
Le ndaba yokuthuthukiswa komsebenzisi ngendlela eyodwa izobaluleka eminyakeni embalwa ezayo.
Ngicabanga ukuthi ukusebenziseka kalula kufanele kwande kakhulu - ibhokisi lizoba mnyama kakhulu, lithembeke kakhulu, libe nama-knobs alula kakhulu.
Ngake ngalalela inhlolokhono endala no-Isaac Asimov kusukela ngeminyaka yawo-80s ku-YouTube kuSaturday Night Live - uhlelo olufana ne-Urgant, oluthokozisayo kuphela. Bambuza ngekusasa lamakhompyutha. Uthe ikusasa lilula, njengomsakazo. Umamukeli womsakazo ekuqaleni kwakuyinto eyinkimbinkimbi. Ukuze ubambe igagasi, kwakudingeka uphendule ama-knobs imizuzu engu-15, uphendule ama-skewers futhi ngokuvamile wazi ukuthi yonke into isebenza kanjani, uqonde i-physics ye-radio wave transmission. Ngenxa yalokho, kwase kusele induku eyodwa emsakazweni.
Manje ngo-2019 yimuphi umsakazo? Emotweni, isamukeli somsakazo sithola wonke amagagasi namagama eziteshi. I-physics yenqubo ayishintshile eminyakeni eyi-100, kodwa ukusetshenziswa kalula sekushintshile. Manje, hhayi manje kuphela, ngo-1980, lapho kwakukhona ingxoxo no-Azimov, wonke umuntu wasebenzisa umsakazo futhi akekho owacabanga ukuthi usebenza kanjani. Kwasebenza njalo - lokho kunikezwe.
U-Azimov wabe esethi kuzoba okufanayo namakhompyutha - ukusebenziseka kalula kuzokwanda. Ngenkathi ngo-1980 kwadingeka uqeqeshelwe ukucindezela izinkinobho kukhompyutha, lokho ngeke kube njalo esikhathini esizayo.
Nginomuzwa wokuthi nge-Kubernetes kanye nengqalasizinda kuzoba nokwanda okukhulu kokusebenziseka kalula. Lokhu, ngokubona kwami, kusobala - kulele phezulu.
Yini okufanele uyenze ngonjiniyela?
- Kuzokwenzekani-ke konjiniyela nabaphathi bezinhlelo abeseka uKubernetes?
Dmitry: Kwenzekani ku-accountant ngemuva kokufika kuka-1C? Cishe okufanayo. Ngaphambi kwalokhu, babala ephepheni - manje ohlelweni. Ukukhiqiza kwezabasebenzi kuye kwanda ngokwemiyalo yobukhulu, kodwa umsebenzi wona awukashabalali. Uma phambilini bekuthatha onjiniyela abayi-10 ukuthi bafice isibani sesibani, manje eyodwa izokwanela.
Inani lesofthiwe kanye nenani lemisebenzi, kubonakala kimi, manje likhula ngesivinini esisheshayo kune-DevOps entsha evelayo futhi ukusebenza kahle kuyanda. Kukhona ukushoda okuthile emakethe njengamanje futhi kuzohlala isikhathi eside. Kamuva, yonke into izobuyela kolunye uhlobo olujwayelekile, lapho ukusebenza kahle komsebenzi kuzokwanda khona, kuzoba ne-server engapheli, i-neuron izoxhunywa ku-Kubernetes, ezokhetha zonke izinsiza njengoba kudingeka, futhi ngokuvamile yenza yonke into ngokwayo, njengoba kufanele - umuntu uvele asuke futhi angaphazamisi.
Kodwa othile usazodinga ukwenza izinqumo. Kuyacaca ukuthi izinga leziqu nokufunda kwalo muntu liphezulu. Namuhla, emnyangweni we-accounting, awudingi abasebenzi abayi-10 abagcina izincwadi ukuze izandla zabo zingakhathali. Akudingekile. Amadokhumenti amaningi askenwa ngokuzenzakalelayo futhi aqashelwe uhlelo lokuphatha imibhalo ye-elekthronikhi. I-accountant eyodwa eyinhloko ehlakaniphile yanele, kakade inamakhono amakhulu kakhulu, nokuqonda okuhle.
Ngokuvamile, lena indlela yokuhamba kuzo zonke izimboni. Kuyafana nangezimoto: phambilini, kwafika imoto nomakhenikha nabashayeli abathathu. Namuhla, ukushayela imoto kuyinqubo elula lapho sonke sihlanganyela khona nsuku zonke. Akekho ocabanga ukuthi imoto iyinkimbinkimbi.
I-DevOps noma ubunjiniyela bezinhlelo ngeke buphele - umsebenzi wezinga eliphezulu nokusebenza kahle kuzokhula.
- Ngiphinde ngezwa umbono othokozisayo wokuthi umsebenzi uzokwanda.
Dmitry: Yebo, amaphesenti ayikhulu! Ngoba inani le-software esiyibhalayo likhula njalo. Inani lezinkinga esizixazulula nge-software likhula njalo. Inani lomsebenzi liyakhula. Manje imakethe ye-DevOps ishisa kakhulu. Lokhu kungabonakala ekulindelweni kwamaholo. Ngendlela enhle, ngaphandle kokungena emininingwaneni, kufanele kube nabancane abafuna u-X, abaphakathi abafuna i-1,5X, kanye nabadala abafuna i-2X. Futhi manje, uma ubheka imakethe yomholo yaseMoscow DevOps, omncane ufuna ukusuka ku-X kuye ku-3X kanti umuntu omdala ufuna ukusuka ku-X kuye ku-3X.
Akekho owaziyo ukuthi kubiza malini. Izinga lomholo likalwa ngokuzethemba kwakho - i-madhouse ephelele, ukwethembeka, imakethe eshisa kakhulu.
Yiqiniso, lesi simo sizoshintsha maduze - ukugcwaliswa okuthile kufanele kwenzeke. Lokhu akunjalo ngokuthuthukiswa kwesofthiwe - naphezu kokuthi wonke umuntu udinga abathuthukisi, futhi wonke umuntu udinga abathuthukisi abahle, imakethe iyaqonda ukuthi ubani ofanele lokho - imboni isizinzile. Akunjalo nge-DevOps kulezi zinsuku.
- Ngokwalokho engikuzwile, ngaphetha ngokuthi umphathi wesistimu wamanje akufanele akhathazeke kakhulu, kodwa sekuyisikhathi sokuthuthukisa amakhono akhe futhi alungiselele iqiniso lokuthi kusasa kuzoba nomsebenzi omningi, kodwa kuzoba ofaneleka kakhulu.
Dmitry: Amaphesenti ayikhulu. Ngokuvamile, siphila ku-2019 futhi umthetho wempilo uthi: ukufunda impilo yonke - sifunda kuzo zonke izimpilo zethu. Kubonakala kimi ukuthi manje wonke umuntu useyazi futhi uyakuzwa lokhu, kodwa akwanele ukwazi - kufanele ukwenze. Nsuku zonke kufanele sishintshe. Uma singakwenzi lokhu, khona-ke ngokushesha noma kamuva sizokwehliswa eceleni komsebenzi.
Zilungiselele ukujika okubukhali kwe-180-degree. Angisikhiphi isimo lapho okuthile kushintsha kakhulu, kuqanjwe okuthile okusha - kuyenzeka. Hop! - futhi manje senza ngendlela ehlukile. Kubalulekile ukuba uzilungiselele lokhu futhi ungakhathazeki. Kungase kwenzeke ukuthi kusasa konke engikwenzayo kuzovela kungenasidingo - lutho, ngifunde impilo yami yonke futhi ngilungele ukufunda okunye. Akuyona inkinga. Asikho isidingo sokwesaba ukuphepha komsebenzi, kodwa udinga ukulungele ukufunda okuthile okusha njalo.
Izifiso kanye nomzuzu wokukhangisa
- Ingabe unaso isifiso?
Dmitry: Yebo, nginezifiso ezimbalwa.
Okokuqala kanye ne-mercantile - bhalisa ku . Bafundi abathandekayo, yiyani ku-YouTube futhi nibhalisele isiteshi sethu. Esikhathini esingangenyanga sizoqala ukunwetshwa okusebenzayo kwensizakalo yevidiyo. Sizoba nokuqukethwe okuningi okufundisayo mayelana ne-Kubernetes, okuvulekile futhi okuhlukahlukene: kusukela ezintweni ezingokoqobo, kusukela phansi kuye kuma-laboratories, kuya ezintweni ezijulile zethiyori kanye nendlela yokusebenzisa i-Kubernetes izinga lezimiso namaphethini.
Isifiso sesibili se-mercantile - hamba ku futhi sibeke izinkanyezi ngoba sidla kuzo. Uma ungasiniki izinkanyezi, ngeke sibe nokudla. Kufana ne-mana emdlalweni wekhompyutha. Senza okuthile, senza, siyazama, othile uthi lawa amabhayisikili esabekayo, othile ukuthi konke akulungile ngokuphelele, kodwa siyaqhubeka futhi senze ngokwethembeka ngokuphelele. Sibona inkinga, siyixazulule futhi sabelane ngolwazi lwethu. Ngakho-ke, sinikeze inkanyezi, ngeke isuke kuwe, kodwa izoza kithi, ngoba sidla kuzo.
Okwesithathu, okubalulekile, futhi akusekho isifiso sokuthengisa - yeka ukukholelwa ezinganekwaneni. Ningochwepheshe. I-DevOps iwumsebenzi obucayi kakhulu futhi onesibopho. Yeka ukudlala emsebenzini. Livumele likuchofoze futhi uzoliqonda. Ake sithi ufika esibhedlela, futhi udokotela uyakuhlola. Ngiyaqonda ukuthi lokhu kungase kucasule othile, kodwa, cishe, lokhu akukhona ngawe, kodwa ngomunye umuntu. Tshela abanye ukuthi nabo bayeke. Lokhu kucekela phansi impilo yethu sonke - abaningi baqala ukuphatha imisebenzi, ama-admins kanye nama-DevOps njengabaduni abaphule okuthile futhi. Lokhu “kwaphuka” kaningi ngenxa yokuthi sasiyodlala, futhi asizange sibheke ngokubanda ukuthi kunjani, futhi kunjalo.
Lokhu akusho ukuthi akufanele uzame. Sidinga ukuzama, sizenzela thina. Uma sikhuluma iqiniso, thina ngokwethu ngezinye izikhathi sidlala imidlalo - lokhu, kunjalo, kubi kakhulu, kodwa akukho lutho lomuntu olungavamile kithi. Masimemezele u-2019 unyaka wesivivinyo esibucayi, esicatshangelwe kahle, hhayi imidlalo yokukhiqiza. Mhlawumbe kunjalo.
- Ngibona kakhulu!
Dmitry: Ngiyabonga, Vitaly, kokubili ngesikhathi nangengxoxo. Bafundi abathandekayo, ngiyabonga kakhulu uma nifinyelele kuleli qophelo kungazelelwe. Ngethemba ukuthi sikulethele okungenani imicabango embalwa.
Engxoxweni, uDmitry uthinte udaba lwe-werf. Manje lona ummese waseSwitzerland oxazulula cishe zonke izinkinga. Kodwa kwakungenjalo ngaso sonke isikhathi. Vuliwe emkhosini UDmitry Stolyarov uzokutshela mayelana naleli thuluzi ngokuningiliziwe. embikweni kuzoba khona konke: izinkinga nama-nuances afihliwe we-Kubernetes, izinketho zokuxazulula lobu bunzima kanye nokuqaliswa kwamanje kwe-werf ngokuningiliziwe. Hlanganyela nathi ngoMeyi 27 no-28, sizodala amathuluzi amahle kakhulu.
Source: www.habr.com