Composition patterns for Moby tool #92
Comments
|
The assumption has been that there might well be another stage that covers the assembly of each package that happens before final assembly, that the tool would also control. That would include teh functionality of the (How many stages it actually ends up as is less clear, probably more a UI issue; now the tool is being split out into a library that can be split out more) |
I am not thinking about constructing , e.g. It probably isn't correct to refer to that is runtime, since runtime really is
I refer specifically to compose time, how we compose the linuxkit image. Or are you suggesting that instead of the current flow of (a) we build Separately, I agree wholeheartedly that the "build" process (using the above language) could use a lot in reproducibility and ease of construction. |
|
Just found this discussion after investigating LinuxKit to the point where I had a 'nfs-client' pkg and the docker-ce-dind pulled in... Now I want to expose these two services (and their binaries) to the SSHD service, and find that this is not at all easy to do (in fact I can't work it out with the current tooling, perhaps someone can enlighten me as to how it can even be achieved, it probably has something to do with bind mounts, but I can't work it out from the current documentation, an example/use-case perhaps). The solution (suggested in #89) of producing a docker image that does all 3 things seems to go completely against the 'do one thing and do it well' approach that has been the mainstay of docker images so far. Starting docker and SSH and NFS within a single docker image means introducing extra levels of unnecessary complexity. It seems completely sensible to be able to write an ssh service that borrows what it needs from the other services, i.e. a mixin like approach. |
|
We should move this to LinuxKit repo. |
This is a general topic, opened per request by @justincormack, to discuss composition patterns. It also is intended as a general discussion place for the right way to make things capable like #89 opened by @samoht .
/cc: @rn
In docker, if we need to add some binaries (e.g. ssh client or git) to an existing standard image (e.g. nginx), we use a
Dockerfileand extend it withFROM.For building linuxkit images using moby, we may not want or be able to do so with custom extension images. Moby's purpose is a tool to "compose" to "weave" together various OCI images to create a new image. In the case of LinuxKit, that is a bootable OS image (although it could be generalized to other non-OS cases as well).
Moby currently supports the following composition patterns:
#89 was requesting a new pattern, wherein onboot and/or services can be stacked. Essentially, it is trying to solve the "I need this standard image with the capabilities of a few more mixed in." It is similar to the mixin capabilities of some programming languages.
Another example is tools availability on login. The standard
linuxkit/gettyandlinuxkit/sshdimages provide standard services. If someone needs, e.g. the git client or some other tools available at login, the only ways to provide them are messy:.ymlinstead of standard getty or sshd - also brittle and easy to lose track, when all you want is one package#89 proposed stacking layers for services like we stack for onboot. There are alternate ways of doing this. However, I believe we do need a way for moby to weave together images.
In a larger sense, I think moby needs to be able to weave without config files at all, e.g.
moby build https://github.com/foo/bar/foo.yml --std getty,git --files ...That may not be the best example, and there are ways to change that, but the general sense of weaving together existing "templates" and images without actually extending each one is important. This could be generalized to
docker build ...as well?The text was updated successfully, but these errors were encountered: