DockerCon14 The Road Ahead by Solomon

Docker: the road ahead1Tuesday, June 10, 14

So... what do we do now?aka

2Tuesday, June 10, 14

Why are we here?






We have a blueprint


“My thought in the 70s was that the Internet was a really good scalable design, and we should make a virtual internet of virtual machines that could be cached by the hardware machines.

It’s really too bad this didn’t happen

Alan Kay9Tuesday, June 10, 14

Upgrade the Internettime to


We have the technologybandwidth, storage, compute, sandboxing,

crypto, compression, copy-on-write filesystems, paxos/raft...


We have standard interfaces

Time to fix this!


It’s getting people to agree on something

The real value of Docker is not technology


1. Packaging and distribution


2. Sandboxing


libcontainerA standard interface to OS sandboxing

namespaces, cgroups, capabilities, netlink, selinux, apparmor

Core Docker component...But also usable standalone


libcontainerA standard interface to OS sandboxing

A few announcements.


libcontainer

github.com/docker/libcontainer

Now a standalone project

#libcontainer on Freenode18Tuesday, June 10, 14

https://github.com/docker/libcontainer




libcontainer

Contributing SELinux and systemd integration

Welcome Dan and Alex!19Tuesday, June 10, 14

libcontainer

Joining as core maintainers

Welcome Victor and Rohit!


libcontainer

Contributing C implementation and OpenVZ support

Welcome Pavel and John!21Tuesday, June 10, 14

libcontainer

collaborating on unified cgroup interface

Welcome Serge!

& LXC


libcontainer

Join the fun!github.com/docker/libcontainer

#libcontainer on Freenode23Tuesday, June 10, 14





3.Networking


libchana lightweight communication

protocol for distributed systems


libchanLike Go channels over the network

Simple message passing

Synchronization without sharing state

Raw socket passing: channels as gateways to any other protocol

Nesting: channels can send channels26Tuesday, June 10, 14

libchanAvailable transports:SPDY/TLS,websocket,raw TCP,high-perf unix sockets (with fd passing),in-memory go channels.

Designed to be simple and portable


libchan

A standard communication layer for Docker:

internal components, plugins,inter-container communication.


libchan

github.com/docker/libchan




4. Orchestration


Docker API



Shipper


Shipper Mesosor


Shipper or Mesos or Coreos/FleetGeardor



or or orConsul Helios Centurion




EC2 Rackspace GCE Orchard Tutum




EC2 Rackspace GCE Orchard Tutum


libswarmA minimalist toolkit

to compose network services39Tuesday, June 10, 14

libswarmA standard interface to combine and organize

services in a distributed system.

Compose complex architectures from standard building blocks

Avoid vendor lock-in by swapping any service out with another

Pick services from a built-in library, or write your own with a simple API.


libswarmCommunity-contributed adapters:

Docker server & clientMesos

Atomic / geardFleet / etcd

OrchardGoogle cloud

Rackspace cloudTutum.comShipyard

TLS tunnel41Tuesday, June 10, 14

libswarmFirst-class Docker compatibility

If you develop on libswarm, we guarantee compatibility with the

Docker ecosystem.



libswarm

github.com/docker/libswarm




libcontainer libchan

libswarm45Tuesday, June 10, 14

What’s next?


5. Identity47Tuesday, June 10, 14

6. Authorization48Tuesday, June 10, 14

Coming soon!

“But I need it naow!”Come say hi, maybe we can hook you up



Let’s go build it!

Happy hacking!Drawings by @laurelcomics

#docker-dev on Freenode


Documents

DockerCon14 The Road Ahead by Solomon