JavaOne 2016 "Java, Microservices, Cloud and Containers"

Java, Microservices, Cloud and Containers:
Migrating without the Tiers (or Tears)
Daniel Bryant @danielbryantuk
Steve Poole @spoole167
22/09/2016 @danielbryantuk | @spoole167 1

The pitch
• Moving to the cloud requires a fundamental change in mindset
• Technology
• Skills (architectural, operational, QA)
• Organisational design
• DevOps, container technology and microservices are complementary
• Migrating in non-trivial
• Learn from some of our successes (and mistakes)…

Who are we?
Steve Poole
IBM
Developer
@spoole167
Daniel Bryant
Chief Scientist,
OpenCredo
CTO SpectoLabs
@danielbryantuk
Making Java Real Since Version 0.9
Open Source Advocate
DevOps Practitioner (whatever that means!)
Driving Change
“Biz-dev-QA-ops”
Leading change in organisations
Experience of Docker, k8s, Go, Java
InfoQ, DZone, Voxxed contributor

Introduction

What ‘Cloud’ promises
a virtual, dynamic environment which
maximizes use, is infinitely scalable, always
available and needs minimal upfront
investment or commitment
Take your code – host it on someone else's
machine pay only for the resource you use for the
time you use it AND be able to do that very quickly
and repeatedly in parallel

https://www.flickr.com/photos/skohlmann/
The ability to have ‘cloud burst’ capacity is
changing the way software is being designed,
developed and supported
We’re moving to a more industrial scale:
Why buy one computer for a year when you
can hire 365 computers for a day..

https://www.flickr.com/photos/vuhung/
“Compute on demand” – it’s what we always
wanted

Cloud computing:
compute == money
Money changes everything
With a measureable and direct relationship
between $£€¥ and CPU/RAM, disk etc the
financial success or failure of a project is
even easier to see
And that means…
Even more focus on value for money.

American Society of Civil Engineers
Someone
will be
looking at
your leaky
app

Loosing unnecessary baggage - (you have loads)
Java applications have to get lighter.
Java 9 modularity will help but you have to consider
footprint across the board.
Choose your dependencies wisely
Your choice of OS & distribution is important.
The aim is ‘carry on only’
Your application isn’t going on a long trip
https://www.flickr.com/photos/armydre2008/

Startup times
How long do you want to wait?
How long do you have to wait?
Do you need to preemptively start instances ‘just in case’ due
to start up time? To bad – that costs
If the unit of deployment and scaling is an instance of a service
it needs to start FAST
https://www.flickr.com/photos/91295117@N08/

https://www.flickr.com/photos/isherwoodchris/
• Q: How much RAM does
your application use?
• A: Too much

Runtime costs
Most cloud providers will charge you for your RAM usage over time:
$GB/hr. (Sometimes the charge is $0)
Increasing –Xmx directly effects cost. Something businesses can
understand
Net effect : you’ll be tuning your application to fit into specific RAM sizes.
Smaller than you use today.
You need to measure where the storage goes.
You’ll be picking some components based on memory usage
Note that increasing the amount of memory for 1 service increases the bill
by the number of concurrent instances
https://www.flickr.com/photos/erix/

Simply
Java applications are going to be running
in a remote, constrained and metered
environment
There will be precise limits on how much
disk, CPU, RAM, Bandwidth an application
can use and for how long
Whether your application is large or small,
granular or monolithic. Someone will be
paying for each unit used
That person will want to get the most out
of that investment
https://www.flickr.com/photos/rvoegtli/

Where you code runs day-to-day and moment-to-
moment will be driven by economics, legal
requirements and how much risk your business
wants to take.
Your code has to scale better, be more efficient,
resilient, secure and work in constrained
environments
You will have to design, code, deliver, support and
debug code in new ways
It’s going to be scary

How scary?
design, coding, deployment ,
startup, execution, scaling
debugging, security, resilience …
Almost everything
about your
application is
effected
https://www.flickr.com/photos/mjtmail/

Resilient
applications
Design for short term failure: something fails all the time. Expect data and service outages regularly
Fail and recover: don’t diagnose problems in running systems. Kill it and move on
Every IO operation you perform may fail – do as few as possible
Every IO operation may stall – costing you GB/hrs and resources– timeout everything quickly
Every piece of data you receive may be badly formed – check everything
Retry, compensation, backout strategies– these are your new friends
“Everything in the cloud
fails all the time” : Werner
Vogels

Debugging
Remote support for your family?
Fancy having to do that for your own apps?
You have to assume:
You will never be able to log into a remote server.
You will never be able to attach a remote debugger to
a failing app
Ever.
All problems must be resolved by local reproduction
or logs and dumps (discuss)
https://www.flickr.com/photos/carbonnyc/

Debugging
It gets more challenging.
Failures during deployment
or initial startup can be difficult or impossible to
diagnose.
If your service instance didn’t start there is is little
chance of logs being kept!
Learn to love logs, dumps and traces.
Remote log stores and tools are going to be your best
friend
BTW: they’ll cost too
https://www.flickr.com/photos/hinkelstone/

Security
When you deploy to public cloud your system will be
attacked in minutes.
Certainly in < 1hr
Your systems will always be under threat
https://www.flickr.com/photos/ahmadhammoudphotography/

It’s all change
How you design, code, deploy, debug,
support etc will be effected by the metrics
and limits imposed on you.
Financial metrics and limits always
change behavior. It also creates
opportunity
Java applications have to get leaner and
meaner
You have to learn new techniques and
tools
https://www.flickr.com/photos/beigephotos/

Case studies

“Just make it do what the old one does (but better)”
• Case studies
• ‘Teflon shouldered’ product owner
• Rebuilding a service three times
• Problem
• Performing migration without a
clear definition of ‘done’
• Accepting feature creep

“Just make it do what the old one does (but better)”
• Attempt to retrofit BDD/regression tests around application
• Serenity BDD, Cucumber, Jbehave
• Work incrementally with QA team
• Manually test everything
• Create tests for new functionality
• Compare input/output
• Traffic: Twitter’s Diffy
• Datastores: Reconsiliator pattern

Twitter’s Diffy and mysqldbcompare
blog.twitter.com/2015/diffy-testing-services-without-writing-tests dev.mysql.com/doc/mysql-utilities/1.5/en/mysqldbcompare.html

www.infoq.com/news/2015/04/raffi-krikorian-rearchitecting
My ‘re-architecting’ bible…

“Bounding the context”
• Case studies
• Large business software provider
thought they knew their domain
• Small CRM company had let
domain model entropy
• Problem
• Development team lost sight of
the application big picture
• Lack of architectural awareness
and ‘broken windows’

Context mapping (static) & event storming (dynamic)
www.infoq.com/articles/ddd-contextmapping
ziobrando.blogspot.co.uk/2013/11/introducing-event-storming.html

“Bounding the context”
• Create ‘seams’ within codebase
• Natural domain boundaries
• Single responsibility principle
• Look for points of ‘friction’
• Extreme ownership
• Seize (identify)
• Clear (refactor logic / data)
• Hold (metrics and rachets)
• Build (move code to service)

“How small is micro?”
• Case studies
• UK retailer looking to migrate to
cloud and microservices
• Keen to minimise risk
• Problem
• Previous attempts of gradual
migration had failed
• Integration issues - services either
too big or too small
• Spent a long time building a
‘microservice platform’

“How small is micro?”
• Understand microservice principles and Self-Contained Systems (SCS)
• Utilise the strangler pattern
• ‘Service Virtualisation’ is valuable for testing
• Don’t underestimate the value of PaaS

zeroturnaround.com/rebellabs/microservices-for-the-enterprise/

Self-contained systems (SCS)
http://scs-architecture.org/
UI / Biz / Repo
Monolith
Domains
Modules, components,
frameworks, libraries

Self-contained systems (SCS)
SCS
Microservices

Strangling your software (not your manager!)
paulhammant.com/2013/07/14/legacy-application-strangulation-case-studies/
www.nginx.com/blog/refactoring-a-monolith-into-microservices/

Service Virtualisation (for Dev and Test)
• Existing tooling
• Hoverfly
• Wiremock
• VCR/Betamax
• Mountebank
• mirage

Hoverfly
• Lightweight Service virtualisation
• Open source (Apache 2.0)
• Go-based / single binary
• Written by @Spectolabs
• Flexible API simulation
• HTTP / HTTPS
• More Protocols to follow?

• Middleware
• Remove PII
• Rate limit
• Add headers
• Middleware
• Fault injection
• Chaos monkey

The value of PaaS…

“Cloud native or ‘lift and shift’”
• Case studies
• Price comparison website
performance dipped upon a
migration to the cloud
• Problems
• Not coding for distributed or
ephemeral nature of cloud
• No reliable creation of cloud
environment
• Not testing in the cloud

“Cloud native or ‘lift and shift’”
• Push apps through to production as early as possible (CI/CD)
• Build POCs appropriately
• Include building infrastructure in the pipeline
• Include NFR testing in the build pipeline
• Dev, QA and Ops must cultivate ‘mechanical sympathy’
• Everything in the cloud is networked
• Configure local development environments as appropriate

NFR testing in the (cloud) pipeline

NFRs testing in the (container) pipeline

NFR testing resources
• Performance
• JMeter
• Gatling
• Fault-tolerance
• Hoverfly
• Wiremock/Saboteur
• Security
• bdd-security (OWASP ZAP)
• OWASP Dependency-Check
• Docker Bench for Security

Security is vital (but often ignored)
www.youtube.com/watch?v=c9uvV4ChIXw
www.infoq.com/news/2016/08/secure-docker-microservices

Shameless plugs…
www.youtube.com/watch?v=A1982GdXXSA

“Containerise all the things”
• Problem
• JVM respecting resource limits
• OOM: Unable to create thread
• Random application stalling
• Case studies
• www.notonthehighstreet.com

“Containerise all the things”
• Set container memory appropriately
• docker - - memory=”Xg”
• JVM requirements = Heap size (Xmx) + Metaspace + JVM overhead
• Account for native thread requirements e.g. thread stack size (Xss)
• Watch out for ulimits
• Entropy
• Host entropy can soon be exhausted by crypto operations
• –Djava.security.egd=file:/dev/urandom
• Be aware of security ramifications

Containerising our knowledge

Key lessons learned

Lessons learned from the trenches
• Specify goals and targets of migration (and retrospect)
• Undertake just enough up front design (contexts, APIs, integration)
• Understand distributed systems (12 factors etc)
• Start pushing to production ASAP
• There is nothing wrong with PaaS
• Programmable infrastructure is a key enabler
• Don’t forget the NFRs
• Containers and microservices are complementary to cloud

JavaOne 2016 "Java, Microservices, Cloud and Containers"

More Related Content

What's hot (20)

Viewers also liked (13)

Similar to JavaOne 2016 "Java, Microservices, Cloud and Containers" (20)

More from Daniel Bryant (20)

Recently uploaded (20)

JavaOne 2016 "Java, Microservices, Cloud and Containers"