From owner-freebsd-virtualization@freebsd.org Tue Jan 22 02:57:43 2019 Return-Path: Delivered-To: freebsd-virtualization@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 4609114A93E0 for ; Tue, 22 Jan 2019 02:57:43 +0000 (UTC) (envelope-from crodr001@gmail.com) Received: from mail-ot1-f54.google.com (mail-ot1-f54.google.com [209.85.210.54]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 17CC76CFA4; Tue, 22 Jan 2019 02:57:41 +0000 (UTC) (envelope-from crodr001@gmail.com) Received: by mail-ot1-f54.google.com with SMTP id s13so22398041otq.4; Mon, 21 Jan 2019 18:57:41 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Y76b4oEUH68N4OeKE7lYdej7xTiN6w/AH06zyG7QA64=; b=pSXmDdUzZJetWCCF6mW2FHPzK5yt1Qj8ltqkuELeafkYV/BYGzIbCLE/mYWhWpn3l9 QBm0tmoJ5Dp2kx85SaKwjjQucr11O+Z0tvs5uGpxSqHzdEwE9e9bzuDgTpsangba2uGe NgoCSW1J98Sdqod5/PINNzyJM4ggw7xCxv52JACYDGzbNWZacmLbZ6KhgZfk677zLrI+ G/hLAyPKRQNYDvUrjBpwfwHhr1k774e4hlji+vFdW2mnzps5YgqRHjAisWcbkIFyQobS XxQR5iDDLGEucO0dPGR+ZVjkyNLKxHYDzd7o68BM4wIrAKN8+B3Hr1zTLhbl2xeYXS2p Tg2Q== X-Gm-Message-State: AJcUukdwbUKabzZwgBXIAqAXpA6vR40b+be6+k69bdvtx/DzrRmRUpZ3 E9q/sH4rFTHqIQO9DG/gNQMvnrsg6nPJViEVBGQsAUx1 X-Google-Smtp-Source: ALg8bN6X2EOqGhhgEcnT59hWuC5W/euZGC04xMD1R1z4qQdmeQ9CWDQcYs3VburC4lBIy81RTv4tvI7qNCH0/VVmq5U= X-Received: by 2002:a9d:6293:: with SMTP id x19mr22071544otk.133.1548125860690; Mon, 21 Jan 2019 18:57:40 -0800 (PST) MIME-Version: 1.0 References: <089e330d-2761-2440-3b7f-dd22e9088af5@gjunka.com> <9A01020A-7CC6-4893-A425-11A7BF736F4E@ultra-secure.de> <42f59b63-fdc7-306f-d836-83533741a86c@FreeBSD.org> In-Reply-To: <42f59b63-fdc7-306f-d836-83533741a86c@FreeBSD.org> From: Craig Rodrigues Date: Mon, 21 Jan 2019 18:57:29 -0800 Message-ID: Subject: Re: The status of docker To: Jochen Neumeister Cc: Rainer Duffner , Grzegorz Junka , "freebsd-virtualization@freebsd.org" X-Rspamd-Queue-Id: 17CC76CFA4 X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; spf=pass (mx1.freebsd.org: domain of crodr001@gmail.com designates 209.85.210.54 as permitted sender) smtp.mailfrom=crodr001@gmail.com X-Spamd-Result: default: False [-4.07 / 15.00]; ARC_NA(0.00)[]; TO_DN_EQ_ADDR_SOME(0.00)[]; NEURAL_HAM_MEDIUM(-0.99)[-0.988,0]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[4]; R_SPF_ALLOW(-0.20)[+ip4:209.85.128.0/17]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; RCVD_TLS_LAST(0.00)[]; DMARC_NA(0.00)[freebsd.org]; TO_DN_SOME(0.00)[]; TO_MATCH_ENVRCPT_SOME(0.00)[]; MX_GOOD(-0.01)[cached: alt3.gmail-smtp-in.l.google.com]; NEURAL_HAM_SHORT(-0.87)[-0.873,0]; RCVD_IN_DNSWL_NONE(0.00)[54.210.85.209.list.dnswl.org : 127.0.5.0]; IP_SCORE(-1.20)[ip: (-0.28), ipnet: 209.85.128.0/17(-3.75), asn: 15169(-1.87), country: US(-0.08)]; FORGED_SENDER(0.30)[rodrigc@freebsd.org,crodr001@gmail.com]; MIME_TRACE(0.00)[0:+,1:+]; R_DKIM_NA(0.00)[]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:209.85.128.0/17, country:US]; FROM_NEQ_ENVFROM(0.00)[rodrigc@freebsd.org,crodr001@gmail.com]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.29 X-BeenThere: freebsd-virtualization@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "Discussion of various virtualization techniques FreeBSD supports." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 22 Jan 2019 02:57:43 -0000 On Mon, Jan 21, 2019 at 4:50 AM Jochen Neumeister wrote: > > Not quite. I took over the docker freebsd port. Currently I am trying to > change him to moby project on GH. > > Also, I'll take a closer look at Kubernetes for FreeBSD in the near future. > > > Jochen, Thank you for taking on the Docker FreeBSD port. If you can get this to work on FreeBSD, that would be a very good thing. I hope I am wrong, but unfortunately I think getting Docker to work on natively on FreeBSD is ultimately a losing battle, unless you can get a team of several developers to work on it full time. Docker is heavily Linux-based, and makes very serious use of Linux-specific features at the file system (aufs, overlayfs, etc.) and at the networking level (iptables). FreeBSD lacks a solid union file system which could be used in place of aufs and overlayfs. At the networking level it might be possible to port the iptable stuff to equivalent firewall features in FreeBSD, but that would be a lot of work. If you look at this picture: https://www.docker.com/company you will see that Docker is supported by a company which employees a lot of people. The team at Docker is moving very fast, and tweaking, tuning, and adding new features. The team works on userland, and Linux kernel stuff. So getting all the features to work on FreeBSD *plus* catching up to all the new stuff being done is a huge task. If you can get Docker and Kubernetes to work natively on FreeBSD, that would be a huge win, and I hope you get it to work. However, for people who just need to run Docker and have it work, running Linux (Centos, Ubuntu, whatever) in a VM (bhyve or whatever), will probably get you something workable. But if you are going down that path, you might as well just run Linux natively on hardware, and use Docker in that. -- Craig