ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Check my 2 min audio theory on Containers

    Scheduled Pinned Locked Moved IT Discussion
    containerscontainerdockervirtualization
    111 Posts 6 Posters 14.7k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • scottalanmillerS
      scottalanmiller @stacksofplates
      last edited by

      @stacksofplates said in Check my 2 min audio theory on Containers:

      @scottalanmiller said in Check my 2 min audio theory on Containers:

      @stacksofplates said in Check my 2 min audio theory on Containers:

      @scottalanmiller said in Check my 2 min audio theory on Containers:

      She is correct, of course, that the designs are different. Each OS approaches the problem from a unique angle. But all are containers and use a shared kernel to manage resources.

      Docker doesn't require a shared kernel is my point. You can run a single process that requires nothing shared from the kernel. It's effectively like starting a normal so process.

      I'm confused, though. "Normal processes" use shared kernels. If we use Linux or Windows, and no containerization at all, all processes use shared kernels, that's the core of normal operating system functions.

      Hypervisors are what allow us to use non-shared kernels, whether for OSes or something else (rare.) Docker either has to provide another kernel that isn't shared, or must share the one that is there. That the workloads aren't tied to a specific kernel is very different than not requiring that they share whatever one is there.

      Kernel agnostic isn't the same as kernel-free. You can't be kernel free, not really. You always need the kernel unless you have no multi-tasking on the system whatsoever.

      But by that definition if you used Ansible to start a process you would say Ansible is using a shared kernel. That's such a weird way of saying it. Obviously a process has to use a kernel. The "sharing" comes in where you have a whole set of different libraries, etc and have to rely on a kernel that's outside of itself.

      Correct, we don't say that because it's obvious and necessary so stating it is like saying that Ansible requires an OS. But obviously Ansible requires a shared kernel. What makes us mention it with containers is that unlike all other forms of virtualization that use a hypervisor to use non-shared kernels, containers are shared kernel virtualization. So it is mentioned all the time because it's necessary to understand that it is truly a container and not some other thing.

      stacksofplatesS 1 Reply Last reply Reply Quote 0
      • stacksofplatesS
        stacksofplates @scottalanmiller
        last edited by

        @scottalanmiller said in Check my 2 min audio theory on Containers:

        @stacksofplates said in Check my 2 min audio theory on Containers:

        @scottalanmiller said in Check my 2 min audio theory on Containers:

        @stacksofplates said in Check my 2 min audio theory on Containers:

        Here's a decent article from Jess Frazelle. She was on the core Docker Dev team and is a Linux kernel dev.

        https://blog.jessfraz.com/post/containers-zones-jails-vms/

        Except she gets the basics wrong. I'm sure she knows the ins and outs of Linux containers, but she is using "container" incorrectly in a new, made up way. BSD Jails and Solaris Zones are both containers. In fact, the term containers started with the Jail system, it predates everything else. Any other use of container is a new use, like cloud. Cloud computing is a very well defined thing and the term originated there. Similar with containers. Now she's trying to use it in some unique way and trying to say that the "founding fathers" of containerization aren't containers at all, that's total BS.

        We were using containers before Linux started using the term, and Linux copied it both in name and technology from those that came before it.

        She even mentioned Solaris Zones which are explicitly containers. And jails is a synonymous term with containers. We could call LXC a form of jails and be correct.

        https://en.wikipedia.org/wiki/Operating-system-level_virtualization

        "..containerization, refers to an operating system feature in which the kernel allows the existence of multiple isolated user-space instances. Such instances, called containers,[1] partitions, virtualization engines (VEs) or jails (FreeBSD jail or chroot jail), may.."

        She's saying "Docker containers" aren't a thing. She's separating them out because people are calling them "containers" when they aren't. Whereas LXC/zones/jails are.

        She never says that, ever. She once refers to Linux containers, but that's LXC, not Docker. Otherwise, she just says "containers." From where do you get the impression she's even aware of Docker, let alone speaking about it? Docker isn't mentioned a single time in the article, DockerCon is, but that's a conference and easily people talk about other things there, too.

        The article doesn't appear to be about Docker at all, but contrasting LXC with Zones, Jails, and VMs.

        From where do you get the impression she's even aware of Docker, let alone speaking about it?

        These are the kind of things you say that people get annoyed with. Well first she's written a decent part of Docker so there is that. Second, she's speaking to the myriad of people who have heard of Docker and think it's something that it isn't. She's pretty famous for understanding how all of this works together.

        scottalanmillerS 1 Reply Last reply Reply Quote 0
        • scottalanmillerS
          scottalanmiller @stacksofplates
          last edited by

          @stacksofplates said in Check my 2 min audio theory on Containers:

          Obviously a process has to use a kernel. The "sharing" comes in where you have a whole set of different libraries, etc and have to rely on a kernel that's outside of itself.

          Right, but with normal VMs, it's not a shared kernel (with the host.) So the term "shared kernel" in this context is another way of saying "containter." And something that "runs a workload without a shared kernel" is another way of saying "full or para virtualization".

          Shared Kernel Virtualization = Container (or Type C, Jails, etc.)
          Non-Shared Kernel Virtualization = Full or Para Virtualization (or Type 1 and Type 2)

          The term container means that it is virtual, but the kernel is shared.

          1 Reply Last reply Reply Quote 1
          • F
            flaxking @Emad R
            last edited by flaxking

            @emad-r said in Check my 2 min audio theory on Containers:

            DevOps

            DevOps Engineer maybe could be a job title, but it's almost certainly not what you are doing in your job.

            DevOps Admin could possibly be a job title, for someone who administers the DevOps tools.

            DevOps is not a department, and companies that uses titles like DevOps Engineer probably aren't really doing DevOps, just using some DevOps tools.

            scottalanmillerS 1 Reply Last reply Reply Quote 1
            • scottalanmillerS
              scottalanmiller @stacksofplates
              last edited by

              @stacksofplates said in Check my 2 min audio theory on Containers:

              @scottalanmiller said in Check my 2 min audio theory on Containers:

              @stacksofplates said in Check my 2 min audio theory on Containers:

              @scottalanmiller said in Check my 2 min audio theory on Containers:

              @stacksofplates said in Check my 2 min audio theory on Containers:

              Here's a decent article from Jess Frazelle. She was on the core Docker Dev team and is a Linux kernel dev.

              https://blog.jessfraz.com/post/containers-zones-jails-vms/

              Except she gets the basics wrong. I'm sure she knows the ins and outs of Linux containers, but she is using "container" incorrectly in a new, made up way. BSD Jails and Solaris Zones are both containers. In fact, the term containers started with the Jail system, it predates everything else. Any other use of container is a new use, like cloud. Cloud computing is a very well defined thing and the term originated there. Similar with containers. Now she's trying to use it in some unique way and trying to say that the "founding fathers" of containerization aren't containers at all, that's total BS.

              We were using containers before Linux started using the term, and Linux copied it both in name and technology from those that came before it.

              She even mentioned Solaris Zones which are explicitly containers. And jails is a synonymous term with containers. We could call LXC a form of jails and be correct.

              https://en.wikipedia.org/wiki/Operating-system-level_virtualization

              "..containerization, refers to an operating system feature in which the kernel allows the existence of multiple isolated user-space instances. Such instances, called containers,[1] partitions, virtualization engines (VEs) or jails (FreeBSD jail or chroot jail), may.."

              She's saying "Docker containers" aren't a thing. She's separating them out because people are calling them "containers" when they aren't. Whereas LXC/zones/jails are.

              She never says that, ever. She once refers to Linux containers, but that's LXC, not Docker. Otherwise, she just says "containers." From where do you get the impression she's even aware of Docker, let alone speaking about it? Docker isn't mentioned a single time in the article, DockerCon is, but that's a conference and easily people talk about other things there, too.

              The article doesn't appear to be about Docker at all, but contrasting LXC with Zones, Jails, and VMs.

              From where do you get the impression she's even aware of Docker, let alone speaking about it?

              These are the kind of things you say that people get annoyed with. Well first she's written a decent part of Docker so there is that. Second, she's speaking to the myriad of people who have heard of Docker and think it's something that it isn't. She's pretty famous for understanding how all of this works together.

              Of course her AUDIENCE has HEARD of Docker. But you can't actually say that she's talking about Docker when she never once even implies it, and specifically says something very different (that it is LXC.) You are adding your own interpretation to her words. Maybe she means Docker, if so, she's a terrible writer. You don't use the wrong term for something you use every day and just assume people think you meant the opposite. That's insane.

              It's not ME doing something annoying here. You are showing me an article that clearly says one thing that isn't too bad. But are claiming it's actually referencing something very different, and meaning something it doesn't say. Instead of taking it at face value, you are twisting her words into a meaning that isn't there at all. And then saying I'm being annoying for not having added my own interpretation to the article that isn't there in any form.

              Even if you are correct, how could I without the goal of making it be about Docker, possible think it was about something never mentioned and explicitly ruled out? LXC is Linux containers, Docker is not. It can't be me being annoying here. If I claimed the article did that, you'd jump all over me for making up its meaning.

              stacksofplatesS 1 Reply Last reply Reply Quote 0
              • stacksofplatesS
                stacksofplates @scottalanmiller
                last edited by

                @scottalanmiller said in Check my 2 min audio theory on Containers:

                @stacksofplates said in Check my 2 min audio theory on Containers:

                @scottalanmiller said in Check my 2 min audio theory on Containers:

                @stacksofplates said in Check my 2 min audio theory on Containers:

                @scottalanmiller said in Check my 2 min audio theory on Containers:

                She is correct, of course, that the designs are different. Each OS approaches the problem from a unique angle. But all are containers and use a shared kernel to manage resources.

                Docker doesn't require a shared kernel is my point. You can run a single process that requires nothing shared from the kernel. It's effectively like starting a normal so process.

                I'm confused, though. "Normal processes" use shared kernels. If we use Linux or Windows, and no containerization at all, all processes use shared kernels, that's the core of normal operating system functions.

                Hypervisors are what allow us to use non-shared kernels, whether for OSes or something else (rare.) Docker either has to provide another kernel that isn't shared, or must share the one that is there. That the workloads aren't tied to a specific kernel is very different than not requiring that they share whatever one is there.

                Kernel agnostic isn't the same as kernel-free. You can't be kernel free, not really. You always need the kernel unless you have no multi-tasking on the system whatsoever.

                But by that definition if you used Ansible to start a process you would say Ansible is using a shared kernel. That's such a weird way of saying it. Obviously a process has to use a kernel. The "sharing" comes in where you have a whole set of different libraries, etc and have to rely on a kernel that's outside of itself.

                Correct, we don't say that because it's obvious and necessary so stating it is like saying that Ansible requires an OS. But obviously Ansible requires a shared kernel. What makes us mention it with containers is that unlike all other forms of virtualization that use a hypervisor to use non-shared kernels, containers are shared kernel virtualization. So it is mentioned all the time because it's necessary to understand that it is truly a container and not some other thing.

                By that definition every process would be virtualized because every process would need a "shared kernel"

                scottalanmillerS 1 Reply Last reply Reply Quote 0
                • scottalanmillerS
                  scottalanmiller @flaxking
                  last edited by

                  @flaxking said in Check my 2 min audio theory on Containers:

                  DevOps is not a department, and companies that uses titles like DevOps Engineer probably aren't really doing DevOps, just using some DevOps tools.

                  As someone who was in a DevOps department, separate from the non-DevOps SA department, it really is. Uncommon, but real.

                  F 1 Reply Last reply Reply Quote 0
                  • stacksofplatesS
                    stacksofplates @scottalanmiller
                    last edited by

                    @scottalanmiller said in Check my 2 min audio theory on Containers:

                    @stacksofplates said in Check my 2 min audio theory on Containers:

                    @scottalanmiller said in Check my 2 min audio theory on Containers:

                    @stacksofplates said in Check my 2 min audio theory on Containers:

                    @scottalanmiller said in Check my 2 min audio theory on Containers:

                    @stacksofplates said in Check my 2 min audio theory on Containers:

                    Here's a decent article from Jess Frazelle. She was on the core Docker Dev team and is a Linux kernel dev.

                    https://blog.jessfraz.com/post/containers-zones-jails-vms/

                    Except she gets the basics wrong. I'm sure she knows the ins and outs of Linux containers, but she is using "container" incorrectly in a new, made up way. BSD Jails and Solaris Zones are both containers. In fact, the term containers started with the Jail system, it predates everything else. Any other use of container is a new use, like cloud. Cloud computing is a very well defined thing and the term originated there. Similar with containers. Now she's trying to use it in some unique way and trying to say that the "founding fathers" of containerization aren't containers at all, that's total BS.

                    We were using containers before Linux started using the term, and Linux copied it both in name and technology from those that came before it.

                    She even mentioned Solaris Zones which are explicitly containers. And jails is a synonymous term with containers. We could call LXC a form of jails and be correct.

                    https://en.wikipedia.org/wiki/Operating-system-level_virtualization

                    "..containerization, refers to an operating system feature in which the kernel allows the existence of multiple isolated user-space instances. Such instances, called containers,[1] partitions, virtualization engines (VEs) or jails (FreeBSD jail or chroot jail), may.."

                    She's saying "Docker containers" aren't a thing. She's separating them out because people are calling them "containers" when they aren't. Whereas LXC/zones/jails are.

                    She never says that, ever. She once refers to Linux containers, but that's LXC, not Docker. Otherwise, she just says "containers." From where do you get the impression she's even aware of Docker, let alone speaking about it? Docker isn't mentioned a single time in the article, DockerCon is, but that's a conference and easily people talk about other things there, too.

                    The article doesn't appear to be about Docker at all, but contrasting LXC with Zones, Jails, and VMs.

                    From where do you get the impression she's even aware of Docker, let alone speaking about it?

                    These are the kind of things you say that people get annoyed with. Well first she's written a decent part of Docker so there is that. Second, she's speaking to the myriad of people who have heard of Docker and think it's something that it isn't. She's pretty famous for understanding how all of this works together.

                    Of course her AUDIENCE has HEARD of Docker. But you can't actually say that she's talking about Docker when she never once even implies it, and specifically says something very different (that it is LXC.) You are adding your own interpretation to her words. Maybe she means Docker, if so, she's a terrible writer. You don't use the wrong term for something you use every day and just assume people think you meant the opposite. That's insane.

                    It's not ME doing something annoying here. You are showing me an article that clearly says one thing that isn't too bad. But are claiming it's actually referencing something very different, and meaning something it doesn't say. Instead of taking it at face value, you are twisting her words into a meaning that isn't there at all. And then saying I'm being annoying for not having added my own interpretation to the article that isn't there in any form.

                    Even if you are correct, how could I without the goal of making it be about Docker, possible think it was about something never mentioned and explicitly ruled out? LXC is Linux containers, Docker is not. It can't be me being annoying here. If I claimed the article did that, you'd jump all over me for making up its meaning.

                    No I'm looking at historically what she has said. Of course you can look at one sentence out of a thousand and construe it to mean someone doesn't know what theyre talking about.

                    scottalanmillerS 1 Reply Last reply Reply Quote 0
                    • scottalanmillerS
                      scottalanmiller @stacksofplates
                      last edited by

                      @stacksofplates said in Check my 2 min audio theory on Containers:

                      @scottalanmiller said in Check my 2 min audio theory on Containers:

                      @stacksofplates said in Check my 2 min audio theory on Containers:

                      @scottalanmiller said in Check my 2 min audio theory on Containers:

                      @stacksofplates said in Check my 2 min audio theory on Containers:

                      @scottalanmiller said in Check my 2 min audio theory on Containers:

                      She is correct, of course, that the designs are different. Each OS approaches the problem from a unique angle. But all are containers and use a shared kernel to manage resources.

                      Docker doesn't require a shared kernel is my point. You can run a single process that requires nothing shared from the kernel. It's effectively like starting a normal so process.

                      I'm confused, though. "Normal processes" use shared kernels. If we use Linux or Windows, and no containerization at all, all processes use shared kernels, that's the core of normal operating system functions.

                      Hypervisors are what allow us to use non-shared kernels, whether for OSes or something else (rare.) Docker either has to provide another kernel that isn't shared, or must share the one that is there. That the workloads aren't tied to a specific kernel is very different than not requiring that they share whatever one is there.

                      Kernel agnostic isn't the same as kernel-free. You can't be kernel free, not really. You always need the kernel unless you have no multi-tasking on the system whatsoever.

                      But by that definition if you used Ansible to start a process you would say Ansible is using a shared kernel. That's such a weird way of saying it. Obviously a process has to use a kernel. The "sharing" comes in where you have a whole set of different libraries, etc and have to rely on a kernel that's outside of itself.

                      Correct, we don't say that because it's obvious and necessary so stating it is like saying that Ansible requires an OS. But obviously Ansible requires a shared kernel. What makes us mention it with containers is that unlike all other forms of virtualization that use a hypervisor to use non-shared kernels, containers are shared kernel virtualization. So it is mentioned all the time because it's necessary to understand that it is truly a container and not some other thing.

                      By that definition every process would be virtualized because every process would need a "shared kernel"

                      You are being intentionally obtuse. You pointed out how absurd it is to mention shared kernel for things that are obvious, so we don't. All mentioned of shared kernel, except when explaining kernel sharing explicitly, is a reference to container virtualization. Any reference to not being shared kernel, is a reference to Type 1 or Type 2 para/full virtualization.

                      stacksofplatesS 1 Reply Last reply Reply Quote 0
                      • stacksofplatesS
                        stacksofplates
                        last edited by

                        I've officially run out of time to argue with you today. Maybe another day we can continue another pointless back and forth.

                        scottalanmillerS 1 Reply Last reply Reply Quote 0
                        • scottalanmillerS
                          scottalanmiller @stacksofplates
                          last edited by

                          @stacksofplates said in Check my 2 min audio theory on Containers:

                          @scottalanmiller said in Check my 2 min audio theory on Containers:

                          @stacksofplates said in Check my 2 min audio theory on Containers:

                          @scottalanmiller said in Check my 2 min audio theory on Containers:

                          @stacksofplates said in Check my 2 min audio theory on Containers:

                          @scottalanmiller said in Check my 2 min audio theory on Containers:

                          @stacksofplates said in Check my 2 min audio theory on Containers:

                          Here's a decent article from Jess Frazelle. She was on the core Docker Dev team and is a Linux kernel dev.

                          https://blog.jessfraz.com/post/containers-zones-jails-vms/

                          Except she gets the basics wrong. I'm sure she knows the ins and outs of Linux containers, but she is using "container" incorrectly in a new, made up way. BSD Jails and Solaris Zones are both containers. In fact, the term containers started with the Jail system, it predates everything else. Any other use of container is a new use, like cloud. Cloud computing is a very well defined thing and the term originated there. Similar with containers. Now she's trying to use it in some unique way and trying to say that the "founding fathers" of containerization aren't containers at all, that's total BS.

                          We were using containers before Linux started using the term, and Linux copied it both in name and technology from those that came before it.

                          She even mentioned Solaris Zones which are explicitly containers. And jails is a synonymous term with containers. We could call LXC a form of jails and be correct.

                          https://en.wikipedia.org/wiki/Operating-system-level_virtualization

                          "..containerization, refers to an operating system feature in which the kernel allows the existence of multiple isolated user-space instances. Such instances, called containers,[1] partitions, virtualization engines (VEs) or jails (FreeBSD jail or chroot jail), may.."

                          She's saying "Docker containers" aren't a thing. She's separating them out because people are calling them "containers" when they aren't. Whereas LXC/zones/jails are.

                          She never says that, ever. She once refers to Linux containers, but that's LXC, not Docker. Otherwise, she just says "containers." From where do you get the impression she's even aware of Docker, let alone speaking about it? Docker isn't mentioned a single time in the article, DockerCon is, but that's a conference and easily people talk about other things there, too.

                          The article doesn't appear to be about Docker at all, but contrasting LXC with Zones, Jails, and VMs.

                          From where do you get the impression she's even aware of Docker, let alone speaking about it?

                          These are the kind of things you say that people get annoyed with. Well first she's written a decent part of Docker so there is that. Second, she's speaking to the myriad of people who have heard of Docker and think it's something that it isn't. She's pretty famous for understanding how all of this works together.

                          Of course her AUDIENCE has HEARD of Docker. But you can't actually say that she's talking about Docker when she never once even implies it, and specifically says something very different (that it is LXC.) You are adding your own interpretation to her words. Maybe she means Docker, if so, she's a terrible writer. You don't use the wrong term for something you use every day and just assume people think you meant the opposite. That's insane.

                          It's not ME doing something annoying here. You are showing me an article that clearly says one thing that isn't too bad. But are claiming it's actually referencing something very different, and meaning something it doesn't say. Instead of taking it at face value, you are twisting her words into a meaning that isn't there at all. And then saying I'm being annoying for not having added my own interpretation to the article that isn't there in any form.

                          Even if you are correct, how could I without the goal of making it be about Docker, possible think it was about something never mentioned and explicitly ruled out? LXC is Linux containers, Docker is not. It can't be me being annoying here. If I claimed the article did that, you'd jump all over me for making up its meaning.

                          No I'm looking at historically what she has said. Of course you can look at one sentence out of a thousand and construe it to mean someone doesn't know what theyre talking about.

                          I looked through the ENTIRE article. That she has written about other things in the past would never be a reason to assume she got it all wrong here. I've written about Linux a lot, but if I write about Windows, it would be insane and totally wrong to claim that based on my having written about Linux previously that all of the times that I mention Windows that "obviously you are supposed to know that I actually meant Linux." That's nuts.

                          I assume she's not just some Docker drone but a human capable of and expected to discuss more than one specific topic. No amount of other writings on Docker should rule out her being allowed to discuss LXC.

                          That she is aware of Docker, all the more that we'd note expect her to confuse Docker with other things that aren't Docker. The more she knows Docker, the more likely this article isn't about Docker but can be taken at face value of being about Linux containers.

                          1 Reply Last reply Reply Quote 0
                          • scottalanmillerS
                            scottalanmiller @stacksofplates
                            last edited by scottalanmiller

                            @stacksofplates said in Check my 2 min audio theory on Containers:

                            I've officially run out of time to argue with you today. Maybe another day we can continue another pointless back and forth.

                            Honestly, I feel like you are arguing just to argue. You are using all kinds of weird terms and saying you didn't say them or describing them clearly.

                            You say Docker uses a shared kernel obviously, but over and over again say it doesn't. But you don't see that conflicting?

                            1 Reply Last reply Reply Quote 0
                            • stacksofplatesS
                              stacksofplates @scottalanmiller
                              last edited by

                              @scottalanmiller said in Check my 2 min audio theory on Containers:

                              @stacksofplates said in Check my 2 min audio theory on Containers:

                              @scottalanmiller said in Check my 2 min audio theory on Containers:

                              @stacksofplates said in Check my 2 min audio theory on Containers:

                              @scottalanmiller said in Check my 2 min audio theory on Containers:

                              @stacksofplates said in Check my 2 min audio theory on Containers:

                              @scottalanmiller said in Check my 2 min audio theory on Containers:

                              She is correct, of course, that the designs are different. Each OS approaches the problem from a unique angle. But all are containers and use a shared kernel to manage resources.

                              Docker doesn't require a shared kernel is my point. You can run a single process that requires nothing shared from the kernel. It's effectively like starting a normal so process.

                              I'm confused, though. "Normal processes" use shared kernels. If we use Linux or Windows, and no containerization at all, all processes use shared kernels, that's the core of normal operating system functions.

                              Hypervisors are what allow us to use non-shared kernels, whether for OSes or something else (rare.) Docker either has to provide another kernel that isn't shared, or must share the one that is there. That the workloads aren't tied to a specific kernel is very different than not requiring that they share whatever one is there.

                              Kernel agnostic isn't the same as kernel-free. You can't be kernel free, not really. You always need the kernel unless you have no multi-tasking on the system whatsoever.

                              But by that definition if you used Ansible to start a process you would say Ansible is using a shared kernel. That's such a weird way of saying it. Obviously a process has to use a kernel. The "sharing" comes in where you have a whole set of different libraries, etc and have to rely on a kernel that's outside of itself.

                              Correct, we don't say that because it's obvious and necessary so stating it is like saying that Ansible requires an OS. But obviously Ansible requires a shared kernel. What makes us mention it with containers is that unlike all other forms of virtualization that use a hypervisor to use non-shared kernels, containers are shared kernel virtualization. So it is mentioned all the time because it's necessary to understand that it is truly a container and not some other thing.

                              By that definition every process would be virtualized because every process would need a "shared kernel"

                              You are being intentionally obtuse. You pointed out how absurd it is to mention shared kernel for things that are obvious, so we don't. All mentioned of shared kernel, except when explaining kernel sharing explicitly, is a reference to container virtualization. Any reference to not being shared kernel, is a reference to Type 1 or Type 2 para/full virtualization.

                              Last comment. There is nothing ovtuse about it. It is literally exactly what you said.

                              But obviously Ansible requires a shared kernel.

                              scottalanmillerS 1 Reply Last reply Reply Quote 0
                              • scottalanmillerS
                                scottalanmiller @stacksofplates
                                last edited by scottalanmiller

                                @stacksofplates said in Check my 2 min audio theory on Containers:

                                @scottalanmiller said in Check my 2 min audio theory on Containers:

                                @stacksofplates said in Check my 2 min audio theory on Containers:

                                @scottalanmiller said in Check my 2 min audio theory on Containers:

                                @stacksofplates said in Check my 2 min audio theory on Containers:

                                @scottalanmiller said in Check my 2 min audio theory on Containers:

                                @stacksofplates said in Check my 2 min audio theory on Containers:

                                @scottalanmiller said in Check my 2 min audio theory on Containers:

                                She is correct, of course, that the designs are different. Each OS approaches the problem from a unique angle. But all are containers and use a shared kernel to manage resources.

                                Docker doesn't require a shared kernel is my point. You can run a single process that requires nothing shared from the kernel. It's effectively like starting a normal so process.

                                I'm confused, though. "Normal processes" use shared kernels. If we use Linux or Windows, and no containerization at all, all processes use shared kernels, that's the core of normal operating system functions.

                                Hypervisors are what allow us to use non-shared kernels, whether for OSes or something else (rare.) Docker either has to provide another kernel that isn't shared, or must share the one that is there. That the workloads aren't tied to a specific kernel is very different than not requiring that they share whatever one is there.

                                Kernel agnostic isn't the same as kernel-free. You can't be kernel free, not really. You always need the kernel unless you have no multi-tasking on the system whatsoever.

                                But by that definition if you used Ansible to start a process you would say Ansible is using a shared kernel. That's such a weird way of saying it. Obviously a process has to use a kernel. The "sharing" comes in where you have a whole set of different libraries, etc and have to rely on a kernel that's outside of itself.

                                Correct, we don't say that because it's obvious and necessary so stating it is like saying that Ansible requires an OS. But obviously Ansible requires a shared kernel. What makes us mention it with containers is that unlike all other forms of virtualization that use a hypervisor to use non-shared kernels, containers are shared kernel virtualization. So it is mentioned all the time because it's necessary to understand that it is truly a container and not some other thing.

                                By that definition every process would be virtualized because every process would need a "shared kernel"

                                You are being intentionally obtuse. You pointed out how absurd it is to mention shared kernel for things that are obvious, so we don't. All mentioned of shared kernel, except when explaining kernel sharing explicitly, is a reference to container virtualization. Any reference to not being shared kernel, is a reference to Type 1 or Type 2 para/full virtualization.

                                Last comment. There is nothing ovtuse about it. It is literally exactly what you said.

                                But obviously Ansible requires a shared kernel.

                                Yes, because we were discussing what you said about how processes share a kernel. We had to stop using the term in the virtualization sense. Keep in context.

                                I had literally just explained why we had to mention in there when normally you never would.

                                But that is all just misdirection. Why were you so passionate about Docker not sharing a kernel, if you knew that it did? You said it many times. You argued over it. Then you said that obviously it had to.

                                It's one thing not to mention it because we all know it has to share a kernel. But you were explicit in that it did NOT share a kernel.

                                That's why I feel you are arguing just to argue and being intentionally obtuse to make it seem like I'm trying to argue. Containerization, including Docker, means virtualization with a shared kernel. That's what makes it that. But you said Docker wasn't this. But now say it is. You are going back and forth. My point hasn't changed. Docker is a container. First it was a form of LXC, now it is its own. Docker doesn't run full VMs, it uses shared kernels. Maybe Docker can manage KVM, but that's an unrelated topic.

                                1 Reply Last reply Reply Quote 0
                                • F
                                  flaxking @scottalanmiller
                                  last edited by

                                  @scottalanmiller said in Check my 2 min audio theory on Containers:

                                  @flaxking said in Check my 2 min audio theory on Containers:

                                  DevOps is not a department, and companies that uses titles like DevOps Engineer probably aren't really doing DevOps, just using some DevOps tools.

                                  As someone who was in a DevOps department, separate from the non-DevOps SA department, it really is. Uncommon, but real.

                                  DevOps is supposed to be interdepartmental. I would imagine this DevOps department would just be IT with the experience to support Development.

                                  scottalanmillerS 1 Reply Last reply Reply Quote 0
                                  • scottalanmillerS
                                    scottalanmiller @flaxking
                                    last edited by

                                    @flaxking said in Check my 2 min audio theory on Containers:

                                    @scottalanmiller said in Check my 2 min audio theory on Containers:

                                    @flaxking said in Check my 2 min audio theory on Containers:

                                    DevOps is not a department, and companies that uses titles like DevOps Engineer probably aren't really doing DevOps, just using some DevOps tools.

                                    As someone who was in a DevOps department, separate from the non-DevOps SA department, it really is. Uncommon, but real.

                                    DevOps is supposed to be interdepartmental. I would imagine this DevOps department would just be IT with the experience to support Development.

                                    DevOps is using traditionally development processes to do SA work, "Software Defined Administration" it is sometimes called. You don't need developers to have DevOps, In fact, most DevOps shops have none.

                                    Normal SAs support developers, probably better than DevOps does.

                                    F 1 Reply Last reply Reply Quote 0
                                    • F
                                      flaxking @scottalanmiller
                                      last edited by

                                      @scottalanmiller said in Check my 2 min audio theory on Containers:

                                      @flaxking said in Check my 2 min audio theory on Containers:

                                      @scottalanmiller said in Check my 2 min audio theory on Containers:

                                      @flaxking said in Check my 2 min audio theory on Containers:

                                      DevOps is not a department, and companies that uses titles like DevOps Engineer probably aren't really doing DevOps, just using some DevOps tools.

                                      As someone who was in a DevOps department, separate from the non-DevOps SA department, it really is. Uncommon, but real.

                                      DevOps is supposed to be interdepartmental. I would imagine this DevOps department would just be IT with the experience to support Development.

                                      DevOps is using traditionally development processes to do SA work, "Software Defined Administration" it is sometimes called. You don't need developers to have DevOps, In fact, most DevOps shops have none.

                                      Normal SAs support developers, probably better than DevOps does.

                                      That is not DevOps. DevOps is a refactoring of Lean Manufacturing in order to apply to software companies. You can adopt DevOps principals without your own developers, but it you cannot do real DevOps without developers participating in the feedback loop.

                                      scottalanmillerS 2 Replies Last reply Reply Quote 0
                                      • scottalanmillerS
                                        scottalanmiller @flaxking
                                        last edited by

                                        @flaxking said in Check my 2 min audio theory on Containers:

                                        @scottalanmiller said in Check my 2 min audio theory on Containers:

                                        @flaxking said in Check my 2 min audio theory on Containers:

                                        @scottalanmiller said in Check my 2 min audio theory on Containers:

                                        @flaxking said in Check my 2 min audio theory on Containers:

                                        DevOps is not a department, and companies that uses titles like DevOps Engineer probably aren't really doing DevOps, just using some DevOps tools.

                                        As someone who was in a DevOps department, separate from the non-DevOps SA department, it really is. Uncommon, but real.

                                        DevOps is supposed to be interdepartmental. I would imagine this DevOps department would just be IT with the experience to support Development.

                                        DevOps is using traditionally development processes to do SA work, "Software Defined Administration" it is sometimes called. You don't need developers to have DevOps, In fact, most DevOps shops have none.

                                        Normal SAs support developers, probably better than DevOps does.

                                        That is not DevOps. DevOps is a refactoring of Lean Manufacturing in order to apply to software companies. You can adopt DevOps principals without your own developers, but it you cannot do real DevOps without developers participating in the feedback loop.

                                        We're talking the IT DevOps here, not the software teams using the term for their own stuff. That's the newer (AFAIK) add on term after the fact.

                                        A proposed definition is "DevOps is a set of practices intended to reduce the time between committing a change to a system and the change being placed into normal production, while ensuring high quality." Which is key that it's an ops (aka IT) concern, not a software one. DevOps starts after dev stops. Dev makes a change, Ops puts it into production. DevOps is a type of ops designed to do so quicker and more accurately. But nowhere does that definition suggest that dev start doing ops, that ops start doing dev (of the software itself), or that the two merge or even talk. It's still a pure ops thing, just using techniques learned from dev.

                                        Admittedly the name is ridiculous and probably intended to be misleading, although it didn't originate in English so maybe it's just poor English usage. Calling any form of ops with a "dev" title is just dumb. Ops is ops, dev is dev, using dev concepts in ops doesn't change it from being ops.

                                        F 1 Reply Last reply Reply Quote 0
                                        • scottalanmillerS
                                          scottalanmiller
                                          last edited by

                                          It can be confusing in DevOps, because ops uses dev toolchains. So CI, build, release, etc. happen within the ops cycle, which makes it sound like they are overlapping with the same cycles that the devs have. But the dev CI and the ops CI are different things. Same concept, but one happens independent of the other.

                                          1 Reply Last reply Reply Quote 0
                                          • scottalanmillerS
                                            scottalanmiller @flaxking
                                            last edited by

                                            @flaxking said in Check my 2 min audio theory on Containers:

                                            That is not DevOps. DevOps is a refactoring of Lean Manufacturing in order to apply to software companies.

                                            That's definitely not a thing. As someone from both a manufacturing systems background and a software engineering background, nothing is less related. They are polar opposite concepts. Because one sounds cool, a lot of things in SE take manufacturing names and some incredibly bad shops actually make the mistake of trying to apply manufacturing concepts to SE, but it's the biggest failures around.

                                            You can't take something from manufacturing and apply it to SE, because SE doesn't have manufacturing.

                                            In traditional manufacturing, you have a mix of something like 1% engineering (designing a product) and 99% manufacturing (reproducing that design.) Take a car, 1% of the cost is designing it, and 99% or more of the cost is shaping the metal and leather into the car you want to drive. Refactoring manufacturing to make it cheaper and better is worth a fortune in cost savings. No one does this to the car designers because all you care about is a good design, if it costs a little extra to design, no big deal, it's a cheap piece anyway.

                                            Software Engineering has no manufacturing side, it's only the design side. So no amount of manufacturing processes applied to SE would "do anything." There is no component of software engineering to apply them to. It's pure design. You COULD call copying the software or downloading it the manufacturing piece, but that's just a bit silly. If you want to do that, then SE is 99.99999999999% design and .000000000001% reproduction. So we'd always ignore it. Because refactoring that, even cutting the effort in half, isn't worth even pressing a button to do, it's that trivial.

                                            The terrible thing that sometimes happens is people who don't know engineering confuse engineering with manufacturing and try to apply things like defect rates or efficiency studies to creative design processes used in engineering. No one would ever do this to a mechanical engineer, but some people manage to get in control of software shops and don't remember that they are engineers and try this resulting in epic disasters. As designs can't have "defect rates" in the way manufacturing does, it makes no sense. Reducing defects doesn't have benefit, it might actually bring problems.

                                            Agile methodologies in software are nothing like similar sounding things in manufacturing. In one it is about increasing defects and fixing them faster to improve design processes. In the other it is about reducing initial defects. Very different, essentially opposite things.

                                            1 Reply Last reply Reply Quote 0
                                            • 1
                                            • 2
                                            • 3
                                            • 4
                                            • 5
                                            • 6
                                            • 1 / 6
                                            • First post
                                              Last post