Lambda Layer Architecture¶
Redshift Spectra uses a Lambda Layer pattern to optimize deployment size, cold start times, and dependency management.
Overview¶
flowchart TB
subgraph Layer["Lambda Layer (~50MB)"]
DEPS[Shared Dependencies]
PT[aws-lambda-powertools]
PYD[pydantic]
BOTO[boto3]
ARROW[pyarrow]
end
subgraph Functions["Function Code (~KB each)"]
API[api-handler.zip]
WORKER[worker.zip]
AUTH[authorizer.zip]
end
Layer --> API
Layer --> WORKER
Layer --> AUTHWhy Use Layers?¶
| Aspect | Without Layer | With Layer |
|---|---|---|
| Package Size | 50MB × 3 = 150MB | 50MB + 3×KB |
| Deploy Time | Slow (upload 150MB) | Fast (upload layer once) |
| Cold Start | Consistent | Optimized caching |
| Updates | Redeploy everything | Update only what changed |
Build Process¶
flowchart LR
subgraph Source["Source"]
PYPROJECT[pyproject.toml]
SRC[src/spectra/]
end
subgraph Build["Build (Docker)"]
REQ[requirements.txt]
LAYER[layer.zip]
FUNCS[function.zip]
end
subgraph Deploy["Deploy"]
L_LAYER[Lambda Layer]
L_FUNC[Lambda Functions]
end
PYPROJECT -->|"uv export"| REQ
REQ -->|"Docker + pip"| LAYER
SRC -->|"zip"| FUNCS
LAYER --> L_LAYER
FUNCS --> L_FUNCBuilding the Layer¶
The layer is built using Docker with Amazon Linux 2 to ensure Lambda runtime compatibility.
Quick Build¶
Using the Build Script¶
# Build layer (uses Docker by default)
python scripts/build_layer.py --output dist/lambda/layer.zip
# Skip size validation
python scripts/build_layer.py --skip-validation
Manual Docker Build¶
# 1. Generate requirements.txt
uv export --no-hashes --no-dev --no-emit-project > requirements.txt
# 2. Build using Docker with Amazon Linux 2
docker run --rm -v $(pwd):/build public.ecr.aws/lambda/python:3.11 \
pip install -r /build/requirements.txt -t /build/dist/lambda/layer/python --quiet
# 3. Create zip
cd dist/lambda/layer && zip -r ../layer.zip .
Why Docker?
Docker builds ensure 100% compatibility with the Lambda runtime environment
(Amazon Linux 2). Local builds may have platform-specific binary incompatibilities,
especially for packages like pyarrow that include native extensions.
Building Function Packages¶
Function packages contain only your application code:
This creates:
dist/lambda/
├── layer.zip # Shared dependencies
├── api-handler.zip # API handler code only
├── worker.zip # Worker code only
└── authorizer.zip # Authorizer code only
Fat Lambda Packages (LocalStack Community)¶
For LocalStack Community Edition
Lambda Layers are a LocalStack Pro feature. If you're using LocalStack Community (free version), you need to use "fat" Lambda packages with all dependencies bundled inside.
What are Fat Packages?¶
Fat packages bundle all dependencies directly into the Lambda deployment package, eliminating the need for Lambda Layers:
flowchart TB
subgraph Fat["Fat Package (~50MB each)"]
CODE1[Handler Code]
DEPS1[All Dependencies]
end
subgraph Layer["Layer + Slim Package"]
subgraph L["Layer (~50MB)"]
DEPS2[Shared Dependencies]
end
subgraph S["Slim Package (~KB)"]
CODE2[Handler Code Only]
end
end
Fat --> LS[LocalStack Community]
Layer --> AWS[AWS / LocalStack Pro]Building Fat Packages¶
# Build fat packages for LocalStack Community
task build:lambda-fat
# Or using the script directly
./scripts/package_lambda.sh --fat --clean
This creates:
dist/lambda/
├── api-handler-fat.zip # API handler + all dependencies
├── worker-fat.zip # Worker + all dependencies
└── authorizer-fat.zip # Authorizer + all dependencies
When to Use Each Mode¶
| Mode | Command | Use Case | Package Size |
|---|---|---|---|
| Layer + Slim | task build:layer |
AWS Production, LocalStack Pro | Layer: ~50MB, Functions: ~KB |
| Fat | task build:lambda-fat |
LocalStack Community (free) | Each: ~50MB |
Size Comparison¶
| Package Type | api-handler | worker | authorizer | Total |
|---|---|---|---|---|
| Fat (bundled) | ~50MB | ~50MB | ~50MB | ~150MB |
| Slim (with layer) | ~10KB | ~10KB | ~10KB | ~30KB + 50MB layer |
Fat Package Limitations
- Larger deployment size (dependencies duplicated in each package)
- Slower deployments due to larger upload size
- Not recommended for production AWS deployments
- Use only for LocalStack Community local testing
Packaging Script Options¶
The scripts/package_lambda.sh script supports the following options:
./scripts/package_lambda.sh [OPTIONS]
Options:
--fat Create fat packages with bundled dependencies (for LocalStack Community)
--layer Create layer + slim packages (default, for AWS/LocalStack Pro)
--clean Clean previous builds before packaging
Environment Variables:
PYTHON_VERSION Python version to use (default: 3.11)
OUTPUT_DIR Output directory for packages (default: dist/lambda)
How It Works¶
The packaging script uses Docker to ensure Linux x86_64 compatibility:
- Generate requirements.txt from
pyproject.tomlusinguv export - Start Docker container with Python slim image (linux/amd64)
- Install dependencies into temporary directory
- Optimize size by removing
__pycache__,*.dist-info, tests, etc. - Create zip packages with proper structure
For fat packages, boto3/botocore are excluded since they're already in the Lambda runtime.
Layer Contents¶
The layer includes these dependencies:
python/
├── aws_lambda_powertools/ # Logging, tracing, metrics
├── pydantic/ # Data validation
├── pydantic_settings/ # Configuration management
├── boto3/ # AWS SDK
├── botocore/ # AWS SDK core
├── pyarrow/ # Parquet support
└── ... # Transitive dependencies
Size Optimization¶
AWS Lambda layers have a 50MB zipped / 250MB unzipped limit.
Optimization Techniques¶
The build script automatically removes unnecessary files:
__pycache__directories*.dist-infoand*.egg-infometadatatestsdirectories- Compiled Python files (
*.pyc,*.pyo)
Validate Size¶
Expected output:
Deployment¶
Via Terragrunt¶
The Lambda module automatically manages layer deployment:
# terraform/modules/lambda/main.tf
resource "aws_lambda_layer_version" "dependencies" {
filename = var.layer_zip_path
layer_name = "${var.project_name}-dependencies"
compatible_runtimes = ["python3.11"]
}
resource "aws_lambda_function" "api_handler" {
layers = [aws_lambda_layer_version.dependencies.arn]
# ...
}
Manual Upload¶
# Upload layer
aws lambda publish-layer-version \
--layer-name spectra-dependencies \
--zip-file fileb://dist/lambda/layer.zip \
--compatible-runtimes python3.11
# Update function to use new layer
aws lambda update-function-configuration \
--function-name spectra-api-handler \
--layers arn:aws:lambda:us-east-1:123456789012:layer:spectra-dependencies:2
Version Management¶
flowchart LR
V1[Layer v1] --> F1[Function v1.0]
V1 --> F2[Function v1.1]
V2[Layer v2] --> F3[Function v2.0]
V2 --> F4[Function v2.1]- Layer versions are immutable
- Functions reference specific layer versions
- Rolling updates: update layer first, then functions
Troubleshooting¶
Import Errors¶
If you see ModuleNotFoundError, check:
- Layer is attached to the function
- Dependencies are in
python/directory within layer - Compatible runtime versions match
Size Exceeded¶
If layer exceeds 50MB:
# Check what's taking space
du -sh dist/lambda/layer/python/* | sort -h
# Consider excluding large optional dependencies
pip install --no-deps package-name
Docker Not Available¶
If Docker is not installed or running:
# Check Docker status
docker info
# Install Docker (macOS)
brew install --cask docker
# Start Docker Desktop
open -a Docker
Best Practices¶
Separate Code and Dependencies
Always use layers for dependencies. This enables fast code-only deployments.
Pin Dependency Versions
Use uv.lock to ensure reproducible builds across environments.
Always Use Docker Builds
Docker builds with Amazon Linux 2 ensure binary compatibility with the Lambda runtime. Never use local builds for production deployments.