sidecar icon indicating copy to clipboard operation
sidecar copied to clipboard

Published 20 hours ago verified publisher icon hammerstonedev

How To Deploy And Execute A Native Linux Binary

Open MannikJ opened this issue 3 years ago • 5 comments

Hi! Thank you for this great package, which takes away so much of the annoying configuration work normally needed to create lambda functions manually!

I would like to ask some questions about something I thought could be realized by using lambda and the help of this package.

I have a compiled Linux binary that I can execute on my local linux 64Bit machine (Linux Mint 20.3 Cinnamon 64Bit; Kernel 5.4.0-100-generic). It gets a file as input and produces a different output file inside the folder it is executed.

Is there some way I could deploy a tool like this to Lambda by using sidecar?

There are some questions that come to my mind: First of all and regardless of the specific file handling part of the program in question, I have not yet understood which kind of runtime I would need to choose and how I would actually execute such a native linux binary from inside the lambda function. Second question is about the file handling bit. As I said, at the moment this program requires the files to be locally accessible via paths and it needs write access to the disk to store the result file. So what are the possibilities I have to provide the files for the program to work. Normally in my production setup the input and output files would actually be stored inside a s3 bucket, so is there any way I can provide them so the tool can use it?

How would you implement something like this? I know for sure that some parts of this issue go way beyond the responsibilities of sidecar. I don't expect anybody to explain exactly how to do it, but maybe to give a short overview of the options and pitfalls and hopefully some further resources I can use to figure it out myself.

Thanks in advance to everyone who leaves some information!

MannikJ avatar Feb 18 '22 18:02 MannikJ

Yes! we are doing this kind of thing in various ways, one of which is to use Sidecar's ability to run any container you like to provide: https://hammerstone.dev/sidecar/docs/main/functions/handlers-and-packages#container-images

In that way, you can have any complete Linux system with any installed software called through Sidecar. You can choose what language you use for the actual event handler function on the container (we are e.g. using JS in one example, just because we had it available, and calling our application from the JS).

Getting files in and out via S3, I would recommend using AWS pre-signed URLs (aka temporary URLs in Laravel) - generate them, pass them to the container, then the container can fetch the data directly.

Same in the other direction, your container can place a file on S3 and pass a URL back to your backend. Laravel does not have this function, but it can be done "manually" (also your container will likely not have Laravel), here's an example: https://beckermanyaakov.medium.com/uploading-files-directly-to-s3-digital-ocean-with-laravel-9efc30eb44c8 where the AWS SDK is being called directly to do the same thing.

danatemple avatar Feb 18 '22 19:02 danatemple

Thank you very much for the quick answer! It sounds very promising and I'm getting a better picture about how I will implement it.

Getting files in and out via S3, I would recommend using AWS pre-signed URLs (aka temporary URLs in Laravel) - generate them, pass them to the container, then the container can fetch the data directly.

You say 'directly' but actually it sounds rather indirect. I mean the lambda function lives somewhere in AWS ecospace as well as the files. So making it accessible to the public web with a pre-signed url seems like a detour. Isn't it possible to reference the s3 files directly? Maybe by using some AWS library inside the Lambda handler?

MannikJ avatar Feb 18 '22 22:02 MannikJ

If you install the AWS SDK in your container, and provide the authentication keys via some method, then you'll be able to do any S3 operation from the container.

In my case it's just a lot simpler to pass a URL to the container and then use any native fetch via HTTP, in the language of choice depending on what you're doing. Avoiding yet another AWS authentication operation is also good.

danatemple avatar Feb 19 '22 08:02 danatemple

Thank you very much for your help! I have another related question:

Ideally I would like to version-control the binary file together with my app. So the binary file should live in the same private repository. But to build the container I need access the file.

I'm thinking about some command to create and deploy the container similar as I would deploy the lambda function using sidecar so the complete deployment process for the lambda function can be done with laravel commands.

Is there some package I can use for that process?
I saw the AWS PHP SDK has a EcrClient I could probably use...

MannikJ avatar Feb 21 '22 14:02 MannikJ

Not sure about that actually. I just use docker commands together with an ECR repository.

danatemple avatar Feb 21 '22 14:02 danatemple