Skip to content

dippynark/containerd-shim-wasm

BranchesTags
 
 

Repository files navigation

containerd-shim-wasm

containerd-shim-wasm is a fork of containerd-wasm that implements the containerd shim API v2 for running WebAssembly modules. The current implementation uses the wasmer runtime.

Warning: this project is a proof of concept and not suitable for production

Quickstart

We can demonstrate the capabilities of the shim by running the hello-wasm module on a local kind cluster. To do this we must first install Docker, kind and kubectl.

Deploy

Once the prerequisites are installed we can deploy our cluster using make deploy. This will do the following:

  • Build containerd-shim-wasm-v1 and download the wasmer runtime
  • Create a local kind cluster and bind mount the binaries
  • Deploy the hello-wasm WebAssembly module to the cluster

Logs

All the module does is print some system information, arguments and environment variables and then sleeps on a loop. We can view that information as follows:

$ kubectl get pods
NAME                          READY   STATUS    RESTARTS   AGE
hello-wasm-6fc67bb895-67jzh   1/1     Running   0          52s
$ kubectl logs hello-wasm-6fc67bb895-67jzh -f
OS name: wasi
Hardware identifier: wasm32

Arguments:
argv[0]: /run/containerd/io.containerd.runtime.v2.task/k8s.io/4f0848f754e5585454dd135fcc74c8e0e4d8787b8c6a845c99d7d183498742fa/rootfs/hello-wasm

Environment:
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
HOSTNAME=hello-wasm-6fc67bb895-67jzh
KUBERNETES_PORT_443_TCP=tcp://10.96.0.1:443
KUBERNETES_PORT_443_TCP_PROTO=tcp
KUBERNETES_PORT_443_TCP_PORT=443
KUBERNETES_PORT_443_TCP_ADDR=10.96.0.1
KUBERNETES_SERVICE_HOST=10.96.0.1
KUBERNETES_SERVICE_PORT=443
KUBERNETES_SERVICE_PORT_HTTPS=443
KUBERNETES_PORT=tcp://10.96.0.1:443

Waiting 10 seconds (1)...
Waiting 10 seconds (2)...
Waiting 10 seconds (3)...
...

Cleanup

make delete

Alternatives

One difficulty with this shim implementation is that the shim API assumes a container runtime (as that's what it was designed for), but this doens't align as well with running WebAssmebly modules (for example currently you can't exec into a WebAssmebly module as you would a container). The Krustlet project implements a Kubelet replacement that treats wasi/wasm modules as first class citizens.

About

A containerd shim implementation for WebAssembly modules

Resources

Readme

License

Apache-2.0 license
Activity

Stars

7 stars

Watchers

0 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Go 91.4%
  • Makefile 4.2%
  • Dockerfile 2.3%
  • C 2.1%