Workgroup:Container: Difference between revisions

From NixOS Wiki
imported>Profpatsch
image-tools, runtime-tools
imported>Profpatsch
add links to nixpkgs where packaged
Line 8: Line 8:


* [https://www.opencontainers.org/ opencontainers.org]
* [https://www.opencontainers.org/ opencontainers.org]
** [https://github.com/opencontainers/runc runc]: spawn and run OCI containers
** [https://github.com/opencontainers/runc runc]: spawn and run OCI containers (nixpkgs: [https://github.com/NixOS/nixpkgs/blob/master/pkgs/applications/virtualization/runc/default.nix runc])
** [https://github.com/opencontainers/image-spec image-spec]: container image specification
** [https://github.com/opencontainers/image-spec image-spec]: container image specification
** [https://github.com/opencontainers/runtime-spec runtime-spec]: container runtime specification
** [https://github.com/opencontainers/runtime-spec runtime-spec]: container runtime specification
Line 14: Line 14:
** [https://github.com/opencontainers/runtime-tools runtime-tools]: tools for working with the runtime-spec
** [https://github.com/opencontainers/runtime-tools runtime-tools]: tools for working with the runtime-spec
* [https://www.projectatomic.io/ projectatomic.io]
* [https://www.projectatomic.io/ projectatomic.io]
** [https://github.com/projectatomic/skopeo skopeo]: modify and inspect images on registries
** [https://github.com/projectatomic/skopeo skopeo]: modify and inspect images on registries (nixpkgs: [https://github.com/NixOS/nixpkgs/blob/master/pkgs/development/tools/skopeo/default.nix skopeo])
** [https://github.com/projectatomic/buildah buildah]: build/generate OCI images
** [https://github.com/projectatomic/buildah buildah]: build/generate OCI images



Revision as of 10:11, 12 February 2018

We are interested in directly building (minimal) OCI containers from the nixpkgs ecosystem.

People

Tooling

Projects

Self-Hosted, Minimal Docker/OSI Images

For our platform at Techcultivation we want to generate docker images for all parts of our system. Those images should come in two flavors, development (to quickly spin up local test services, with mock data) and deployment (secure/production-ready). We chose to generate these images purely out of nixpkgs code, so no binary (base) images have to be included.

The current version of the deployment code can be found on our Gitlab.

A basic (pretty messy) postgres image is already done, complete with in-build setup of a mock database. The resulting image is smaller than the “official” one in the docker registry, only uses nixpkgs-native dependencies and only contains the most minimal filetree needed to run the postgres binary.

Still to do: rabbitmq, frontend code, api, refactor, various others.

Profpatsch (talk) 02:47, 10 February 2018 (UTC)