# Decentralized server orchestration
---
_Rick van de Loo_<br>
https://github.com/vdloo

DevOps @ Byte

# High available websites on mobile phones

<img src="media/logos.png">

# Moving devices are not that different from flaky containers/VMs

A phone losing wifi is conceptually the same as a freezing VM

# In the cloud everything breaks and great software exists to deal with that

- service discovery
- load balancing
- automated failovers

# We can't just use that cloud stuff to cluster mobile phones

.. or can we?

# What are the problems?

- mobile phones move fast (WIFI / 3G / offline)
- not in one zone / routes change
- often behind NAT (no inbound traffic)
- Android is not GNU/Linux

## I need a decentralized virtual network

- Can't do VPN -> single point of failure
- Can't do SSH jumphosts -> paths to nodes change
- Solution: overlay mesh networking

## CJDNS

- DHT mesh routing
- End-to-end encryption
- IPv6 address derived from public key
- TUN virtual network interface

## Finds a path transparently

<img src="media/network1.png">

## The TUN network is flat, hops are abstracted out

<img src="media/network2.png">

## Connect directly to any peer

<img src="media/shell1.png">


## Running GNU/Linux on Android

- Root the phone
- Install the LinuxDeploy Android (APK on github)
- Create a chroot (Archlinux ARM)
- Now you've got a shell with a full Linux userland!


## Now we can just treat it like any server

<img src="media/shell2.png">



## Only have one real phone though

Let's find a way to virtualize more

<img src="media/phone.jpg">


## Android-x86


<img src="media/x86.png">

AOSP port to x86


## vdloo/android-x86-64-vagrant

Packer script to bootstrap an Archlinux chroot in Android 6.0 Marshmallow and package a Vagrant box.

<img src="media/shell3.png">


### Dealing with outages

- Consul by Hashicorp
- Distributed DNS interface
- Distributed service discovery
- Distributed failure detection
- Distributed key value store

# Raft consensus algorithm


<img src="media/raft1.gif">

Also notice my perfect gif cropping skills

# Leader election

<img src="media/raft2.gif">

Source: https://raft.github.io/

## Quorum requires (n/2)+1 nodes to be online

I'm misusing it by making all nodes 'server' nodes

## Taping it all together with Python

<img src="media/shell4.png">

https://github.com/vdloo/raptiformica




## Framework for decentralized server provisioning

<img src="media/kv1.png">


## Uses Consul KV to store data about peers

<img src="media/kv2.png">


## vdloo/consul-kv

Python 3 client for the consul key/value store.

In [3]:
# from consul_kv import Connection
# conn = Connection(endpoint='http://localhost:8500/v1/kv')
# conn.put_dict({'a_dict_key': 'some_value'})

# Now we have all we need to host distributed applications on mobile phones

## Distributed LEMP stack on Android

<img src="media/lemp1.png">


## Runs PHP just fine

<img src="media/lemp2.png">


## Webshop in your pocket, no problem

<img src="media/androidmagento.png">


## Building a webapp specifically for this platform

- Completely decentralized
- Reverse proxy through meshnet
- Round robin DNS with consul
- Use distributed KV as a database
- Autoscaling -> more nodes online == more workers



## Forked fc00.org -> public CJDNS network map (Flask)

<img src="media/fc00.png">


## Modified to map my private network

<img src="media/raptiformica_map1.png">


## Rewrote backend to use consul-kv

<img src="media/raptiformica_map2.png">


## Bind a gunicorn on the IPv6 interface

<img src="media/raptiformica_map3.png">


## All nodes use the Consul DNS server

<img src="media/raptiformica_map4.png">


## Register the service so it is loadbalanced

<img src="media/raptiformica_map5.png">


## Picking a reverse proxy

- Using Consul with DNSmasq to loadbalance
- Nginx can't resolve DNS per request
- HAProxy can't resolve DNS per request
- H2O -> super lightweight and CAN resolve DNS per request!

See: https://github.com/h2o/h2o


## Reverse proxy to round robin load balanced consul service

<img src="media/shell5.png">


## Path of a request

<img src="media/diagram2.png">


## Result

- Self registering and redundant
- Distributed and decentralized
- As long as there is a path any node can join
- Goes through firewalls / cross zones
- Nodes can switch from WIFI to mobile data transparently

## 25 node network

<img src="media/raptiformica_map6.png">


## Future

- Move away from Consul to something with commutative properties
- Cluster more unconventional hardware
- Define triggers for cluster changes (less than x nodes -> do something)


# That's it. Questions?
---
## You can find these slides and the Jupyter notebook here: https://github.com/vdloo/slides
