evaluate_Docker.mdwn 1.74 KB
Newer Older
Tails developers's avatar
Tails developers committed
1
2
3
For an overview of the more general problem, see [[blueprint/replace_vagrant]].
For the detailed plans and things to evaluate in Docker, see [[!tails_ticket 7530]].

4
5
6
7
8
[[!toc levels=1]]

Availability on target platforms
================================

Tails developers's avatar
Tails developers committed
9
(as of 20150120)
10
11
12
13
14

Primary target platforms:

* Debian Wheezy: no, even in backports; installation is [possible
  using ugly methods](https://docs.docker.com/installation/debian/)
Tails developers's avatar
Tails developers committed
15
16
* Debian Jessie: 1.3.3~dfsg1-2
* Debian sid: 1.3.3~dfsg1-2
17
18
19
20
21
* Ubuntu 14.04 LTS: 0.9.1, with 1.0.1 available in trusty-updates
* Ubuntu 14.10: 1.2.0

Bonus:

Tails developers's avatar
Tails developers committed
22
* Arch: 1.4.1
23
24
25

Random notes
============
Tails developers's avatar
Tails developers committed
26
27
28
29
30
31
32
33
34
35
36
37

* Since Docker 0.9, the default execution environment is libcontainer,
  instead of LXC. It now supports e.g. systemd-nspawn, libvirt-lxc,
  libvirt-sandbox, qemu/kvm, in addition to LXC.
* Docker seems to support sharing a directory between the host and
  a container, so on this front, we would not lose anything compared
  to Vagrant.
* Docker supports Linux and OSX.
* According to
  <https://stackoverflow.com/questions/17989306/what-does-docker-add-to-just-plain-lxc>,
  Docker comes with tools to automatically build a container from
  source, version it, and upgrade it incrementally.
Tails developers's avatar
Tails developers committed
38
39
40
* Michael Prokop [gives
  pointers](http://michael-prokop.at/blog/2014/07/23/book-review-the-docker-book/)
  about Docker integration with Jenkins.
Tails developers's avatar
Tails developers committed
41
42
43
* As far as our build system is concerned, we don't care much to
  protect the host system from the build container. The main goal is
  to produce a reliable build environment.
44
45
* For security info about Linux containers in general, see the
  [[dedicated blueprint|blueprint/Linux_containers]].
46
47
* [overclockix](https://github.com/mbentley/overclockix) uses
  live-build and provides a Dockerfile for easier building.