Victor Coisne

Your Docker Agenda for LinuxCon

Victor Coisne

Docker and containers are making a big splash in Seattle next week!

LinuxCon runs from Monday, August 17 through Wednesday, August 19 but there are plenty of co-located events during the week including ContainerCon, MesosCon and the Linux Plumbers Conference.


Below is our list of the must-attend talks at the different events in Seattle next week. We know the timing of several talks conflict – thankfully, they will be recorded! Docker’s SVP of Engineering Marianna Tessel will be delivering a keynote during the morning on Monday, August 17th – click here to sign up for the livestream of her talk!

Sunday, August 16th

Monday, August 17th

Tuesday, August 18th

Wednesday, August 19th

Thursday, August 20th

Friday, August 21st

Sunday, August 16

6:00 pm

[Meetup] An Evening with Containers

pre-conference warm-up event, featuring lightning talks, an “un-panel,” and a few breakouts including:

“Why Docker?” by Boyd Hemphill of Stack Engine, and using Flocker to Manage Containerized Databases” by Madhuri Yechuri of ClusterHQ. We’ve seen this demo of Flocker in San Francisco, it features migration of a database container from a Docker host to another and it answers a bunch of questions about “How am I going to run databases in containers?”click here to register and for more information

Monday, August 17

10:10 am

[Keynote] Full Sail Ahead: What’s Next For Container Technology – Marianna Tessel, SVP Engineering at Docker

We’ll look at the recent evolution of containers and see what’s coming next in the field, as well as in the incredibly diverse Docker container ecosystem – read more

11:00 am

[ContainerCon] Xen and Docker: Uniting Best of Both Worlds – Oliver Lambert, Vates

Devs love Docker, but Ops are often scared or wary about it. Olivier will explain how to unite containers and hypervisors to get the best of both worlds – read more

[ContainerCon] Taking Containers to the Next Level – James Bottomley, Odin

If you don’t know James, he’s the CTO of the company behind OpenVZ. So he knows containers. He’ll talk about how cloud applications might evolve thanks to the very nature of containers (e.g. the fact that they allow fine-grained sharing of resources instead of the strict isolation of hypervisors) – read more

[ContainerCon] Libcontainer: One Lib to Rule Them All – Andrew Vagin, OpenVZ

Deeply technical tech talk on how libcontainer exposes container features via an unified library which can be used with different languages. Andrew will explain the origins of this library, its current development status and its future goals – read more

[ContainerCon] Running Distributed Services at Scale in the Cloud – Chris Barclay, Amazon

Product presentation covering the architecture and principles of Amazon EC2 Container Service (ECS), which uses the Docker engine. In particular, it will explain how to maintain application health by restarting failed containers and load balancing across containers thanks to the Amazon ECS Service Scheduler – read more


12:00 pm

[ContainerCon] Anatomy of a Container: Namespaces, cgroups & Some Filesystem Magic – Jerome Petazzoni, Docker

Tech talk with Jérôme discussing namespaces, control groups and copy-on-write systems with a demo on how to build containers from scratch—so the next time you do “docker run” you will know what happens under the hood – read more

[ContainerCon] Docker for Developers – Michael Hrivnak, Red Hat

Best practices and getting started talk discussing how Docker is great in development and in production… But also for many things in between: running unit tests in many environments with little overhead; making integration tests easy to run; simulating advanced network topologies; and more – read more



[ContainerCon] Lightweight Openstack Benchmarking Service with Rally and Docker – Swapnil Kuikarni, Red Hat

We’re required to benchmark products in production environments, and there are several tools you can use to collect data on both live and staged OpenStack deployments. Rally is a benchmarking tool for OpenStack, and when it isconfigured in a Docker container, it can provide benchmark statistics for a live OpenStack deployment. The presentation provides insights for the similar feature development and demos. In the future, we will integrate this feature in an OpenStack project such as refstack – read more



[ContainerCon] Containerizing your Desktop – Jessica Frazelle

As a Docker Core Team member, Jessie use Docker daily. This includes running Docker on my laptop (which is a Debian host). Jessie containerizes various desktop apps and try to run everything in containers. This would be a pretty obscure in nature talk. Most people only think of containers as production apps, but you can actually run most applications and GUIs even in containers by bind mounting the X11 socket. A lot of operating systems are coming to form with “running everything in containers” like project atomic and ubuntu core. This would be an interesting look on the fact you could actually use one of those distros for your desktop by containerizing GUIs. If you can run it on your normal distro you can containerize it, and this talk will prove that.

Most recently Jessie put steam (OpenGL) in a container to play video games – read more

[ContainerCon] Private Cloud is Dead, Long Live Public Cloud – James Bottomley, Odin

A recent report by Gartner showed that the number of virtual instances belonging to the enterprise but not running in the enterprise data centre is growing rapidly (up from 3% in 2011 to 20% in 2014). This rapid flight is generated by novel technologies (like containers) which are being delivered by outside service providers but are not available within the enterprise data centre. The primary trend the enterprise is questing for is agility, which aligns very well with Docker and the Container ecosystem.

This talk will explain how containers drive agility, why the enterprise is seeking it and also explore what the future holds in this brave new world (how much flight does there have to be before the enterprise data centre ceases to exist in its own right). We will also review some of the technologies designed to save the enterprise data centre and why they are doomed to failure – read more

[ContainerCon] The Truth About Docker Container Lifecycles – Kevin McGuire, New Relic

There has been much conjecture about the lifecycle of containers in their use as either more efficient virtual machine substitutes or lightweight microservice hosts. The former suggests the ability to run more containers than VMs due to resource efficiency but with the same long running dynamics. The latter suggests very short lived containers that exist only to perform the task at hand then disappear.

Join us as we discuss our voyage of instrumenting and understanding Docker usage in the wild. Sometimes the results have been in line with our assumptions, but oftentimes the results have been surprising. The practical consequences of this data is that it may help you to understand how to deliver the right container technology or adopt de-facto best practices. But at the larger level, with our best data nerd t-shirts on, it’s just darned interesting to see evidence that containerization is representing new usage patterns which point to this being a game-changer – read more

[ContainerCon] The 7 Characteristics of Container Native Infrastructure – Casey Bisson, Joyent

Containers are changing the manner in which applications are run across all data centers. However, it’s time to improve the efficiency of containers by removing VMs altogether and enabling containers to exist as first class citizens in the datacenter. The removal of the VM is just one of the seven characteristics of container-native infrastructure that offers specific performance and operational advantages to Docker in production.

From more convenient networking to improved host management and overall better performance, container-native infrastructure is the future of the data center. In this session, Joyent Product Manager Casey Bisson will explore the difference between container-native and legacy infrastructure, including a side-by-side demonstration of clear differences – read more


6:00 pm

[Keynote] Container Keynote Panel: James Bottomley, Odin; Amy Unruh, Google; Brandon Philips, CoreOS; Jérôme Petazzoni, Docker; Joe Brockmeier, Red Hat (Moderator)

A panel of container community thought leaders discussing expectations for the next twelve months – read more

Tuesday, August 18

10:30 am

[LinuxCon] How to Contribute to Large Open Source Projects – Thea Lamkin, Docker & Jerome Petazzoni, Docker

Contributing to a large open source project can seem daunting at first; but fear not! You too can join thousands of successful contributors. First, you don’t have to be an expert in Golang, Python, or C, to contribute to Docker, OpenStack, or the Linux Kernel. Many projects also need help with documentation, translation, testing, triaging issues, and more. Very often, just going through bug reports to reproduce them and confirm “this also happens on my setup, with version XYZ” is extremely helpful.

If you decide to take the leap and propose a change (be it code or documentation), each open source project has different contribution guidelines and workflows.

In this talk, Thea and Jérôme will explain some of those workflows, how maintainers review your patches, and highlight the details that make your changes more likely to be merged into the project – read more


[ContainerCon] Container Performance Monitoring and Management Using cAdvisor – Victor Marmol, Google

Monitoring the performance of applications today is difficult. It typically entails deep understanding and knowledge of an application and all its components. Containers have begun to make this easier by allowing us to break down applications and provide finer-grained information than ever before. cAdvisor has begun exposing higher level performance metrics aimed at answering the question “how are my applications performing?”. We will present what metrics are exposed and how these metrics can be used to automatically tune the performance of your containers – read more


[ContainerCon] The Dark Art of Container Monitoring – Loris Degioanni, Sysdig

Containers are revolutionizing the way we deploy and maintain our infrastructures, but monitoring and troubleshooting in a containerized environment can still be painful and impractical. Understanding even basic resource usage is difficult – let alone tracking network connections or malicious activity. This talk will cover the current state of the art for container monitoring and visibility, including pros / cons and live demonstrations of each method. Special emphasis will be put on sysdig, an open source troubleshooting tool authored by the presenter. Sysdig offers unprecedented container visibility without the need to break the “sanctity” of the container – read more


11:30 am

[ContainerCon] Docker, Containers & Security: State of the Union – Jerome Petazzoni, Docker

Docker is two years old. While security has always been at the core of the questions revolving around Docker, the nature of those questions has changed. Last year, the main concern was “can I safely colocate containers on the same machine?” and it elicited various responses. Dan Walsh, SELinux expert, notoriously said: “containers do not contain!”, and at last year’s LinuxCon, Jérôme delivered a presentation detailing how to harden Docker and containers to isolate them better.

Today, people have new concerns. They include image transport, vulnerability mitigation, and more.

After a recap about the current state of container security, Jérôme will explain why those new questions showed up, and most importantly, how to address them and safely deploy containers in general, and Docker in particular – read more


[ContainerCon] A Brief History of Containers – Kirill Kolyshkin, Odin

While this is the first ContainerCon, Linux Containers has been around for about 15 years. The talk will go through that history, highlighting some major achievements along the way. Some technical implementation details of various container-related technologies, mostly from the kernel point of view, will be explained and discussed – read more


2:00 pm

[ContainerCon] Tutorial: Minimum Viable Production with Docker Containers – Boyd Hemphill

Many operations teams feel the need to gain Docker experience, but are struggling to conceptualize how this can be done in a low risk way. Further, they must do this in an often hectic work environment that is not conducive to learning a completely new operational paradigm.

The talk first covers the identification of a low risk, high value “sandbox” where an application can be deployed to production in Docker containers. Key points will be around identifying metrics for measuring success and learning. This will be about 15 minutes.

We will then move on to what a _minimum_ viable production environment might look like. This will include log aggregation, monitoring, a private registry, service discovery and scheduling. In the end, a small python/redis app will run in production. Time permitting a Docker Dev Environment will be demonstrated – read more


[ContainerCon] Converting Existing Installed OS and Applications to Docker – Marc Merlin, Google

Google has been using the same shared server image between the booting OS and the applications that runs in containers. Container solutions like docker were designed to let you run an application on a vanilla OS image. This is great if you want to totally decouple a new application from the underlying OS. This is not great if you don’t want to have to maintain 2 operating systems (the host one and the container one) if you already have well customized OS, and if you simply want to run some existing applications in a container. This gives you the security benefit from resource/disk/network separation between untrusted applications and the rest of your operating system without having to start from scratch with a base OS and lots duplicate packages between the container and the host OS. More importantly this lets you switch existing working applications to a state where half their functionality (like the web facing portion with untrusted php code) runs in a read only container, while the backend that needs access to local disk and network resources, run outside the container, and post the data to a filesystem that is only read only in the container but sufficient for serving results.

You also benefit from completely controlling the container image and not relying on an image retrieved from the internet that may not be trustworthy by reusing the exact same OS image inside and outside the container, also minimizing upgrade time and cost.

This talk will show how to use docker to achieve those goals and get a chance to containerize applications that you probably wouldn’t get around to run in containers otherwise – read more


3:00 pm

[ContainerCon] Writing Applications for the Containers World – Ahmet Alp Balkan, Microsoft

Let’s turn back the clock to the 1960’s and see how we can adopt the mindset and philosophy of Unix to design our tools, applications and micro-services in this new world of containers. We will talk about the best practices for configuration, logging, secrets, command line interfaces, output streams and inter-process communication and show examples, both good and bad, applied by real-world open source projects and tools – read more

[ContainerCon] Doing Big Data for Real with Docker – Elizabeth Lingg, Mesosphere

Containers, especially Docker-based ones have become the method du jour for configuring applications, but how well do they mix with another popular IT trend: Big Data? Some unique considerations here include how to implement a shared storage environment (HDFS, C*, Kafka, etc.), appropriate resource allocation per container across a distributed system, and managing and troubleshooting cluster health in production environments. This talk will explain the realities of launching popular data frameworks such as Hadoop, YARN, Spark and NoSQL databases inside Docker containers while ensuring acceptable levels of performance, security and reliability – read more



[CloudOpen] Virtualization & Cloud Developer Panel – Paolo Bonzini, Red Hat; Glauber Costa; Jérôme Petazzoni, Docker; Stefano Stabellini, Citrix; Russell Bryant, Red Hat (Moderator)

This panel will bring together core developers in various areas of cloud and virtualization, including: the maintainer of KVM, one of the maintainers of the Xen hypervisor, a lead developer of OSv (the open source operating system designed for the cloud), and a lead developer of Docker.

The moderator of the panel is also a cloud developer, namely a developer for OpenStack – read more

[ContainerCon] Denser Containers With PF Cache – Pavel Emelyanov, Odin

Two greatest benefits of containers over VMs are — much higher density and elasticity. One of the reasons for the former one is that containers can share most of their disk memory cache due to libraries (and sometimes binaries) being the same. Depending on the way containers’ files are stored, different techniques to disk cache deduplication should be used. The growing popular approach based on device-mapper requires cross-disks cache manager.

In this presentation Pavel will review different approaches to organizing container’s storage and their pros-n-cons, will describe the benefits of disk cache sharing and then will proceed to the PFCache technology from Odin that implements the mentioned cross-disk cache sharing and gives times larger density for containers – read more

[ContainerCon] Using Clocker With Calico and Docker to Run Workloads in the Cloud – Andrew Kennedy, Cloudsoft

This talk will show how to use Clocker to test and deploy Apache Brooklyn blueprints for your worloads in the Cloud. Using Docker containers instead of virtual machines, Clocker enables testing of a full simulation of your production topology, allowing every aspect of your resilience, failover and scaling policies to be tested thoroughly. We will show how a multi tier, multi network application can be deployed a Clocker managed Docker Cloud, using Calico SDN technology to provide a full suite of network choices. Clocker uses Apache jclouds to provide this seamless access to both containers and virtual machines, thanks to its provider agnostic API, and Apache Brooklyn allows complex topologies to be described using industry standard YAML blueprints – read more


[ContainerCon] Pitfall: A Docker Adventure – Daniel Selans & Didip Kerabat, New Relic

Docker has dramatically transformed the workflow for many organizations, including ours. We’ve been running it in production for 1.5 years and in that time it has enabled us to overcome many hurdles, such as simplifying horizontal scaling, increasing our deployment speed and most importantly, streamlining our development process.

But, adopting new technologies comes with an inherent risk – best practices are not yet well known, standards may not be fully fleshed out and the underlying technology can rapidly change between releases. It’s a lot like an adventure into the unknown: pitfalls await the unwary, and the road to glory can be a rocky one. Luckily for you, we’ve mapped some of that territory.

Join us on an adventure which will shed light on some potential pitfalls that you can avoid when adopting Docker in your organization. We will be flying through a number of topics including operating system choice, backend storage, logging, resource management and more. During each topic, we will be providing real world examples and personal experiences of working through some of these problems.

By the end of the talk, you will have gained valuable information that will help you build an even more stable, reliable, and performant Docker platform – read more


5:45 pm

[Keynote] Warning May Contain Clouds! – Duncan Johnston-Watt, Founder and CEO, Cloudsoft

Duncan Johnston-Watt, Founder and Chief Executive Officer of Cloudsoft will provide a behind the scenes look at – the Apache licensed open source Docker cloud maker – read more


6:00 pm

[Meetup] Docker Meetup #9: Developer Driven Infra, Namespaces, Security, Notary and more!

Featuring talks by Arjan Van de Ven on Clear Containers, or how one can use hardware features to make containers more secure, Avi Cavale on Developer Driven Infrastructure, Phil Estes on Namespaces feature in Docker, and Diogo Monica on Docker Notary – read more

Wednesday, August 19

9:45 am

[Keynote] The Evolution of Computing in the Cloud – Deepak Singh, General Manager of Amazon EC2 Container Service

Amazon EC2 has become synonymous with many of the patterns customers associate with the cloud – API driven VM provisioning, on-demand availability, pay-per-use computing, and Auto Scaling.  Our customers have built highly resilient services by leveraging the capabilities provided by Amazon EC2.  In recent months, we have launched two new computing primitives to help customers run highly scalable, resilient, applications.  The Amazon EC2 Container Service (ECS) provides a task-based abstraction on top of Docker containers, and AWS Lamda provides an event-driven computing primitive that requires no servers. ECS and Lambda extend the EC2 model with even more fine grained control over resources and execution time respectively, unlocking newer architectures and improving developer productivity.  This talk will cover the continuum of use cases that cover EC2, ECS, and Lambda, the motivations for developing these services, and common patterns that we have observed as our customers adopt new computing patterns – read more


10:25 am

[ContainerCon] Rooting out Root: User Namespaces in Docker – Phil Estes, IBM

While Docker as a container runtime has been available for two years now, and uses various Linux kernel features for namespacing to isolate the container processes, user namespace support in the Go language and libcontainer was only made available earlier this year. Now that support exists in these underlying technologies, Phil will discuss the details of exposing user namespace support to Docker operators and users, and some of the complexities of offering full user namespace mappings to containers.

Most importantly, the key benefit to user namespace support being available in Docker is that the host system’s root user will no longer be exposed as the container’s “root”. Phil will detail the improved security posture provided and discuss future enhancements to container user and group isolation based on this Linux kernel feature – read more


2:00 pm

[ContainerCon] Securing Containers Using Hardware Technology – Arjan van de Ven, Intel

Container security is one of the hot topics in the container space, and various approaches to using hardware features to improve security exist today. This presentation will cover the different types of security angles (who is the attacker, and what is protected) and the different hardware features that are used to increase security in these different scenarios. As part of this, the various tradeoffs between the solutions are covered as well – read more


4:00 pm

[ContainerCon] Dude, Where’s My Data? Persistence with Docker – Kendrick Coleman, EMC Code

While most microservices discussions have centered around stateless apps, this trend fragments the data world and container world. Hear about the projects that EMC Code is bringing to the Docker ecosystem to enable persistent data use-cases in a container-centric world – read more

Thursday, August 20th

9:30 am

[Linux Plumbers Conference] Containers track

Includes talks on “Running Docker inside VZ containers” and “Open Container Specifications” – read more


9:45 am

[OpenStack Day Seattle 2015] Just Enough OpenStack for Docker

OpenStack is a large collection of complicated projects that join together to form a hard to deploy and harder to run distributed system. This talk will show you how you can harness the concepts of bimodal IT to increase agility in your IT organization by utilizing a minimal Openstack install and various Docker based tools to build a platform that will increase developer productivity – read more

Friday, August 21st

11:30 am

[MesosCon] Enabling Hybrid Workloads with Docker/Mesos at Orbitz – Steve Hoffman, Orbitz

The promise of Mesos to create a datacenter-centric resource pool is a great idea. However, a decade old company with many different types of existing systems and unique workloads can’t simply mass migrate to Mesos. That doesn’t mean Mesos can’t pay a huge part in unifying disparate workloads that construct existing systems while opening the door to new Mesos-centric development.

In this presentation, Steve will cover 3 very different use cases that are being unified under Apache Mesos including: Automated builds of existing code artifacts, automated builds of AWS AMIs via packer in EC2, and rolling deploys & supervision of Docker microservices across environments. The addition of Docker on Mesos has enabled this, but that doesn’t mean that all Mesos slaves should be identical. See how the addition of localized support services on slaves can compliment your Docker on Mesos use cases – read more


1:30 pm

[MesosCon] Docker Swarm on Mesos – Tim Chen, Mesosphere & Victor Vieux, Docker

Docker has become a popular way for developers to package their applications for deployment, but as applications get more complex there is a growing need to deploy them at scale, orchestrating them across dozens or thousands of machines. With Docker Swarm, you can talk to Mesos using the Docker command line client and start Docker containers on your Mesos cluster as easily as you would do it on your development laptop. In this presentation, Victor Vieux (Docker Engineer, Docker) and Timothy Chen (Mesosphere Engineer, Mesosphere) will explain why Mesos is the “gold standard” for running Docker containers at scale and will demo how to setup Docker Swarm on Mesos (using DCOS) and how to do a `docker run` against your Mesos cluster easily – read more



 Learn More about Docker



One thought on “Your Docker Agenda for LinuxCon

Leave a Reply