1
0
Fork 0
mirror of https://github.com/moby/moby.git synced 2022-11-09 12:21:53 -05:00
Moby Project - a collaborative project for the container ecosystem to assemble container-based systems
Find a file
Alexander Larsson c199ed228b devmapper: Move init layer to top rather than bottom
The init layer needs to be topmost to make sure certain files
are always there (for instance, the ubuntu:12.10 image wrongly
has /dev/shm being a symlink to /run/shm, and we need to override
that). However, previously the devmapper code implemented the
init layer by putting it in the base devmapper device, which meant
layers above it could override these files (so that ubuntu:12.10
broke).

So, instead we put the base layer in *each* images devmapper device.
This is "safe" because we still have the pristine layer data
in the layer directory. Also, it means we diff the container
against the image with the init layer applied, so it won't show
up in diffs/commits.
2013-09-26 15:09:32 +00:00
auth Minor spelling correction of protocoll -> protocol 2013-09-23 23:14:42 -04:00
contrib Add a few tweaks and fixes to contrib/mkimage-debian.sh 2013-09-23 22:39:57 -06:00
devmapper devmapper: Move init layer to top rather than bottom 2013-09-26 15:09:32 +00:00
docker Server: Pass in device-mapper DeviceSet to server 2013-09-26 15:08:54 +00:00
docker-init Add a separate docker-init binary 2013-09-26 15:08:54 +00:00
docs Merge pull request #2000 from tianon/deprecated-docker-latest-tgz 2013-09-25 13:47:48 -07:00
hack Add several of the small make.sh fixes from #1920, and make the output more consistent and contributor-friendly, since release instructions already exist in release.sh 2013-09-24 14:36:20 -06:00
library Add GitHub usernames to MAINTAINERS 2013-08-09 21:16:44 -04:00
packaging Start docker after lxc-net to prevent ip forwarding race 2013-08-26 09:43:49 -05:00
registry fix the error message so it is the same as the regex issue #1999 2013-09-25 11:33:09 -04:00
term Fix syscall name. 2013-08-29 11:46:42 -07:00
testing testing, issue #1620: Add index functional test on docker-ci 2013-09-03 15:38:06 -07:00
utils Utils: Add ShellQuoteArguments 2013-09-26 15:09:32 +00:00
vendor/src Update tar dependency to newest version 2013-09-23 09:59:04 -07:00
.gitignore hack/vendor.sh: overwrite existing dependencies and remove .git so they can be checked in 2013-09-11 18:38:09 -07:00
.mailmap Update AUTHORS 2013-08-09 20:09:42 -04:00
api.go Merge pull request #1894 from dotcloud/1891-remove_useless_warnings 2013-09-16 13:48:17 -07:00
api_params.go Bumped API version in api.go ; added <1.5 behavior to getContainersJSON 2013-09-04 23:41:44 +02:00
api_test.go api_test: Fix PostContainersCreate 2013-09-26 15:09:32 +00:00
archive.go Make TarFilter more useful 2013-09-26 15:08:55 +00:00
archive_test.go Make TarFilter more useful 2013-09-26 15:08:55 +00:00
AUTHORS add Brian Olsen to AUTHORS 2013-09-10 16:55:27 +00:00
buildfile.go Merge pull request #1848 from dotcloud/build-clean 2013-09-13 10:58:59 -07:00
buildfile_test.go Add rm option to docker build to remove intermediate containers 2013-09-12 16:55:36 +00:00
CHANGELOG.md Bump to version v0.6.3 2013-09-23 11:29:11 -07:00
changes.go Implement docker diff for device-mapper 2013-09-26 15:08:55 +00:00
commands.go Merge pull request #1948 from dotcloud/fix_attach 2013-09-23 02:15:51 -07:00
commands_test.go Improve detach unit tests 2013-09-20 13:36:19 -07:00
container.go lxc: Work around lxc-start need for private mounts 2013-09-26 15:09:32 +00:00
container_test.go Merge pull request #1934 from dotcloud/host-permissions 2013-09-22 09:40:52 -07:00
CONTRIBUTING.md hack/MAINTAINERS.md: a maintainer's manual. 2013-09-23 11:26:04 -07:00
deviceset.go deviceset: Cleanup device sets on test end 2013-09-26 15:09:32 +00:00
Dockerfile Hack: use vendored dependencies in-place, for less moving parts when developing 2013-09-09 15:05:25 -07:00
FIXME Added FIXME for iproute → netlink as advised in issue #925. 2013-08-29 01:50:37 +02:00
graph.go Merge pull request #1759 from bdon/graph-map 2013-09-10 08:49:11 -07:00
graph_test.go graph test: Unmount image via image.Unmount() 2013-09-26 15:09:32 +00:00
image.go devmapper: Move init layer to top rather than bottom 2013-09-26 15:09:32 +00:00
LICENSE Docker is now licensed under the Apache 2.0 license 2013-02-18 09:56:20 -08:00
lxc_template.go Only mount hostname files if config exists 2013-09-16 17:53:24 +00:00
MAINTAINERS Add GitHub usernames to MAINTAINERS 2013-08-09 21:16:44 -04:00
mount.go run auplink before unmounting aufs 2013-06-14 21:38:15 +03:00
mount_darwin.go Moved server and client logic into sub-packages docker/server and docker/client, respectively. The UI is not affected. 2013-02-13 17:10:00 -08:00
mount_linux.go go fmt 2013-02-26 17:26:46 -08:00
network.go gofmt 2013-09-09 15:11:30 -07:00
network_proxy.go Always stop the opposite goroutine in network_proxy.go (closes #1213) 2013-07-17 01:05:11 -07:00
network_proxy_test.go Add support for UDP (closes #33) 2013-07-09 17:42:35 -07:00
network_test.go Make sure the routes IP are taken into consideration + add unit test for network overlap detection 2013-08-01 18:12:39 -07:00
NOTICE Update NOTICE 2013-06-12 15:50:30 -06:00
README.md README: remove original shipping containers 'manifesto'. It's a little long to stay here. 2013-09-06 15:09:40 -07:00
runtime.go Runtime: Only remove device on destroy if it exists 2013-09-26 15:09:32 +00:00
runtime_test.go deviceset: Cleanup device sets on test end 2013-09-26 15:09:32 +00:00
server.go Delete corresponding Devices when deleting Images 2013-09-26 15:09:31 +00:00
server_test.go filter image listing using path.Match 2013-09-06 16:16:10 -04:00
sorter.go Sort images by tag name when the creation date is the same. 2013-08-17 22:11:34 -07:00
sorter_test.go Sort images by tag name when the creation date is the same. 2013-08-17 22:11:34 -07:00
state.go Make sure container is not marked as ghost when it starts 2013-07-09 10:48:33 -07:00
sysinit.go bind mount /etc/hosts and /etc/hostname 2013-09-09 20:29:57 +00:00
tags.go Reverse priority of tag lookup in TagStore.GetImage 2013-07-12 23:56:36 +01:00
tags_test.go Simplify unit tests code with mkRuntime() 2013-07-11 17:59:25 -07:00
utils.go lxc: Work around lxc-start need for private mounts 2013-09-26 15:09:32 +00:00
utils_test.go Reuse a single DeviceSetDM for all the tests 2013-09-26 15:09:31 +00:00
Vagrantfile deployment, issue #1578: Avoid pinning kernel headers. Add Vagrantfile assumptions 2013-09-04 14:41:09 -07:00
VERSION Update VERSION to 0.6.3-dev 2013-09-24 19:54:13 -07:00
z_final_test.go deviceset: Cleanup device sets on test end 2013-09-26 15:09:32 +00:00

Docker: the Linux container engine

Docker is an open source project to pack, ship and run any application as a lightweight container

Docker containers are both hardware-agnostic and platform-agnostic. This means that they can run anywhere, from your laptop to the largest EC2 compute instance and everything in between - and they don't require that you use a particular language, framework or packaging system. That makes them great building blocks for deploying and scaling web apps, databases and backend services without depending on a particular stack or provider.

Docker is an open-source implementation of the deployment engine which powers dotCloud, a popular Platform-as-a-Service. It benefits directly from the experience accumulated over several years of large-scale operation and support of hundreds of thousands of applications and databases.

Docker L

Better than VMs

A common method for distributing applications and sandbox their execution is to use virtual machines, or VMs. Typical VM formats are VMWare's vmdk, Oracle Virtualbox's vdi, and Amazon EC2's ami. In theory these formats should allow every developer to automatically package their application into a "machine" for easy distribution and deployment. In practice, that almost never happens, for a few reasons:

  • Size: VMs are very large which makes them impractical to store and transfer.
  • Performance: running VMs consumes significant CPU and memory, which makes them impractical in many scenarios, for example local development of multi-tier applications, and large-scale deployment of cpu and memory-intensive applications on large numbers of machines.
  • Portability: competing VM environments don't play well with each other. Although conversion tools do exist, they are limited and add even more overhead.
  • Hardware-centric: VMs were designed with machine operators in mind, not software developers. As a result, they offer very limited tooling for what developers need most: building, testing and running their software. For example, VMs offer no facilities for application versioning, monitoring, configuration, logging or service discovery.

By contrast, Docker relies on a different sandboxing method known as containerization. Unlike traditional virtualization, containerization takes place at the kernel level. Most modern operating system kernels now support the primitives necessary for containerization, including Linux with openvz, vserver and more recently lxc, Solaris with zones and FreeBSD with Jails.

Docker builds on top of these low-level primitives to offer developers a portable format and runtime environment that solves all 4 problems. Docker containers are small (and their transfer can be optimized with layers), they have basically zero memory and cpu overhead, they are completely portable and are designed from the ground up with an application-centric design.

The best part: because docker operates at the OS level, it can still be run inside a VM!

Plays well with others

Docker does not require that you buy into a particular programming language, framework, packaging system or configuration language.

Is your application a Unix process? Does it use files, tcp connections, environment variables, standard Unix streams and command-line arguments as inputs and outputs? Then docker can run it.

Can your application's build be expressed as a sequence of such commands? Then docker can build it.

Escape dependency hell

A common problem for developers is the difficulty of managing all their application's dependencies in a simple and automated way.

This is usually difficult for several reasons:

  • Cross-platform dependencies. Modern applications often depend on a combination of system libraries and binaries, language-specific packages, framework-specific modules, internal components developed for another project, etc. These dependencies live in different "worlds" and require different tools - these tools typically don't work well with each other, requiring awkward custom integrations.

  • Conflicting dependencies. Different applications may depend on different versions of the same dependency. Packaging tools handle these situations with various degrees of ease - but they all handle them in different and incompatible ways, which again forces the developer to do extra work.

  • Custom dependencies. A developer may need to prepare a custom version of their application's dependency. Some packaging systems can handle custom versions of a dependency, others can't - and all of them handle it differently.

Docker solves dependency hell by giving the developer a simple way to express all their application's dependencies in one place, and streamline the process of assembling them. If this makes you think of XKCD 927, don't worry. Docker doesn't replace your favorite packaging systems. It simply orchestrates their use in a simple and repeatable way. How does it do that? With layers.

Docker defines a build as running a sequence of Unix commands, one after the other, in the same container. Build commands modify the contents of the container (usually by installing new files on the filesystem), the next command modifies it some more, etc. Since each build command inherits the result of the previous commands, the order in which the commands are executed expresses dependencies.

Here's a typical Docker build process:

from ubuntu:12.10
run apt-get update
run DEBIAN_FRONTEND=noninteractive apt-get install -q -y python
run DEBIAN_FRONTEND=noninteractive apt-get install -q -y python-pip
run pip install django
run DEBIAN_FRONTEND=noninteractive apt-get install -q -y curl
run curl -L https://github.com/shykes/helloflask/archive/master.tar.gz | tar -xzv
run cd helloflask-master && pip install -r requirements.txt

Note that Docker doesn't care how dependencies are built - as long as they can be built by running a Unix command in a container.

Getting started

Docker can be installed on your local machine as well as servers - both bare metal and virtualized. It is available as a binary on most modern Linux systems, or as a VM on Windows, Mac and other systems.

We also offer an interactive tutorial for quickly learning the basics of using Docker.

For up-to-date install instructions and online tutorials, see the Getting Started page.

Usage examples

Docker can be used to run short-lived commands, long-running daemons (app servers, databases etc.), interactive shell sessions, etc.

You can find a list of real-world examples in the documentation.

Under the hood

Under the hood, Docker is built on the following components:

  • The cgroup and namespacing capabilities of the Linux kernel;
  • AUFS, a powerful union filesystem with copy-on-write capabilities;
  • The Go programming language;
  • lxc, a set of convenience scripts to simplify the creation of Linux containers.

Contributing to Docker

Want to hack on Docker? Awesome! There are instructions to get you started here.

They are probably not perfect, please let us know if anything feels wrong or incomplete.

Transfers of Docker shall be in accordance with applicable export controls of any country and all other applicable legal requirements. Docker shall not be distributed or downloaded to or in Cuba, Iran, North Korea, Sudan or Syria and shall not be distributed or downloaded to any person on the Denied Persons List administered by the U.S. Department of Commerce.