Workgroup:Container: Difference between revisions
imported>Profpatsch image-tools, runtime-tools |
imported>Profpatsch add links to nixpkgs where packaged |
||
| Line 8: | Line 8: | ||
* [https://www.opencontainers.org/ opencontainers.org] | * [https://www.opencontainers.org/ opencontainers.org] | ||
** [https://github.com/opencontainers/runc runc]: spawn and run OCI containers | ** [https://github.com/opencontainers/runc runc]: spawn and run OCI containers (nixpkgs: [https://github.com/NixOS/nixpkgs/blob/master/pkgs/applications/virtualization/runc/default.nix runc]) | ||
** [https://github.com/opencontainers/image-spec image-spec]: container image specification | ** [https://github.com/opencontainers/image-spec image-spec]: container image specification | ||
** [https://github.com/opencontainers/runtime-spec runtime-spec]: container runtime specification | ** [https://github.com/opencontainers/runtime-spec runtime-spec]: container runtime specification | ||
| Line 14: | Line 14: | ||
** [https://github.com/opencontainers/runtime-tools runtime-tools]: tools for working with the runtime-spec | ** [https://github.com/opencontainers/runtime-tools runtime-tools]: tools for working with the runtime-spec | ||
* [https://www.projectatomic.io/ projectatomic.io] | * [https://www.projectatomic.io/ projectatomic.io] | ||
** [https://github.com/projectatomic/skopeo skopeo]: modify and inspect images on registries | ** [https://github.com/projectatomic/skopeo skopeo]: modify and inspect images on registries (nixpkgs: [https://github.com/NixOS/nixpkgs/blob/master/pkgs/development/tools/skopeo/default.nix skopeo]) | ||
** [https://github.com/projectatomic/buildah buildah]: build/generate OCI images | ** [https://github.com/projectatomic/buildah buildah]: build/generate OCI images | ||
Revision as of 10:11, 12 February 2018
We are interested in directly building (minimal) OCI containers from the nixpkgs ecosystem.
People
Tooling
- opencontainers.org
- runc: spawn and run OCI containers (nixpkgs: runc)
- image-spec: container image specification
- runtime-spec: container runtime specification
- image-tools: tools for working with the image-spec
- runtime-tools: tools for working with the runtime-spec
- projectatomic.io
Projects
Self-Hosted, Minimal Docker/OSI Images
For our platform at Techcultivation we want to generate docker images for all parts of our system. Those images should come in two flavors, development (to quickly spin up local test services, with mock data) and deployment (secure/production-ready). We chose to generate these images purely out of nixpkgs code, so no binary (base) images have to be included.
The current version of the deployment code can be found on our Gitlab.
A basic (pretty messy) postgres image is already done, complete with in-build setup of a mock database. The resulting image is smaller than the “official” one in the docker registry, only uses nixpkgs-native dependencies and only contains the most minimal filetree needed to run the postgres binary.
Still to do: rabbitmq, frontend code, api, refactor, various others.
— Profpatsch (talk) 02:47, 10 February 2018 (UTC)