Docker and containers are making a big splash in Seattle next week!
Below is our list of the must-attend talks at the different events in Seattle next week. We know the timing of several talks conflict – thankfully, they will be recorded! Docker’s SVP of Engineering Marianna Tessel will be delivering a keynote during the morning on Monday, August 17th – click here to sign up for the livestream of her talk!
Sunday, August 16
[Meetup] An Evening with Containers
pre-conference warm-up event, featuring lightning talks, an “un-panel,” and a few breakouts including:
“Why Docker?” by Boyd Hemphill of Stack Engine, and using Flocker to Manage Containerized Databases” by Madhuri Yechuri of ClusterHQ. We’ve seen this demo of Flocker in San Francisco, it features migration of a database container from a Docker host to another and it answers a bunch of questions about “How am I going to run databases in containers?” – click here to register and for more information
Monday, August 17
[Keynote] Full Sail Ahead: What’s Next For Container Technology – Marianna Tessel, SVP Engineering at Docker
We’ll look at the recent evolution of containers and see what’s coming next in the field, as well as in the incredibly diverse Docker container ecosystem – read more
Devs love Docker, but Ops are often scared or wary about it. Olivier will explain how to unite containers and hypervisors to get the best of both worlds – read more
[ContainerCon] Taking Containers to the Next Level – James Bottomley, Odin
If you don’t know James, he’s the CTO of the company behind OpenVZ. So he knows containers. He’ll talk about how cloud applications might evolve thanks to the very nature of containers (e.g. the fact that they allow fine-grained sharing of resources instead of the strict isolation of hypervisors) – read more
Deeply technical tech talk on how libcontainer exposes container features via an unified library which can be used with different languages. Andrew will explain the origins of this library, its current development status and its future goals – read more
Product presentation covering the architecture and principles of Amazon EC2 Container Service (ECS), which uses the Docker engine. In particular, it will explain how to maintain application health by restarting failed containers and load balancing across containers thanks to the Amazon ECS Service Scheduler – read more
[ContainerCon] Anatomy of a Container: Namespaces, cgroups & Some Filesystem Magic – Jerome Petazzoni, Docker
Tech talk with Jérôme discussing namespaces, control groups and copy-on-write systems with a demo on how to build containers from scratch—so the next time you do “docker run” you will know what happens under the hood – read more
[ContainerCon] Docker for Developers – Michael Hrivnak, Red Hat
Best practices and getting started talk discussing how Docker is great in development and in production… But also for many things in between: running unit tests in many environments with little overhead; making integration tests easy to run; simulating advanced network topologies; and more – read more
[ContainerCon] Lightweight Openstack Benchmarking Service with Rally and Docker – Swapnil Kuikarni, Red Hat
We’re required to benchmark products in production environments, and there are several tools you can use to collect data on both live and staged OpenStack deployments. Rally is a benchmarking tool for OpenStack, and when it isconfigured in a Docker container, it can provide benchmark statistics for a live OpenStack deployment. The presentation provides insights for the similar feature development and demos. In the future, we will integrate this feature in an OpenStack project such as refstack – read more
[ContainerCon] Containerizing your Desktop – Jessica Frazelle
As a Docker Core Team member, Jessie use Docker daily. This includes running Docker on my laptop (which is a Debian host). Jessie containerizes various desktop apps and try to run everything in containers. This would be a pretty obscure in nature talk. Most people only think of containers as production apps, but you can actually run most applications and GUIs even in containers by bind mounting the X11 socket. A lot of operating systems are coming to form with “running everything in containers” like project atomic and ubuntu core. This would be an interesting look on the fact you could actually use one of those distros for your desktop by containerizing GUIs. If you can run it on your normal distro you can containerize it, and this talk will prove that.
Most recently Jessie put steam (OpenGL) in a container to play video games – read more
A recent report by Gartner showed that the number of virtual instances belonging to the enterprise but not running in the enterprise data centre is growing rapidly (up from 3% in 2011 to 20% in 2014). This rapid flight is generated by novel technologies (like containers) which are being delivered by outside service providers but are not available within the enterprise data centre. The primary trend the enterprise is questing for is agility, which aligns very well with Docker and the Container ecosystem.
This talk will explain how containers drive agility, why the enterprise is seeking it and also explore what the future holds in this brave new world (how much flight does there have to be before the enterprise data centre ceases to exist in its own right). We will also review some of the technologies designed to save the enterprise data centre and why they are doomed to failure – read more
There has been much conjecture about the lifecycle of containers in their use as either more efficient virtual machine substitutes or lightweight microservice hosts. The former suggests the ability to run more containers than VMs due to resource efficiency but with the same long running dynamics. The latter suggests very short lived containers that exist only to perform the task at hand then disappear.
Join us as we discuss our voyage of instrumenting and understanding Docker usage in the wild. Sometimes the results have been in line with our assumptions, but oftentimes the results have been surprising. The practical consequences of this data is that it may help you to understand how to deliver the right container technology or adopt de-facto best practices. But at the larger level, with our best data nerd t-shirts on, it’s just darned interesting to see evidence that containerization is representing new usage patterns which point to this being a game-changer – read more
Containers are changing the manner in which applications are run across all data centers. However, it’s time to improve the efficiency of containers by removing VMs altogether and enabling containers to exist as first class citizens in the datacenter. The removal of the VM is just one of the seven characteristics of container-native infrastructure that offers specific performance and operational advantages to Docker in production.
From more convenient networking to improved host management and overall better performance, container-native infrastructure is the future of the data center. In this session, Joyent Product Manager Casey Bisson will explore the difference between container-native and legacy infrastructure, including a side-by-side demonstration of clear differences – read more
[Keynote] Container Keynote Panel: James Bottomley, Odin; Amy Unruh, Google; Brandon Philips, CoreOS; Jérôme Petazzoni, Docker; Joe Brockmeier, Red Hat (Moderator)
A panel of container community thought leaders discussing expectations for the next twelve months – read more
Tuesday, August 18
[LinuxCon] How to Contribute to Large Open Source Projects – Thea Lamkin, Docker & Jerome Petazzoni, Docker
Contributing to a large open source project can seem daunting at first; but fear not! You too can join thousands of successful contributors. First, you don’t have to be an expert in Golang, Python, or C, to contribute to Docker, OpenStack, or the Linux Kernel. Many projects also need help with documentation, translation, testing, triaging issues, and more. Very often, just going through bug reports to reproduce them and confirm “this also happens on my setup, with version XYZ” is extremely helpful.
If you decide to take the leap and propose a change (be it code or documentation), each open source project has different contribution guidelines and workflows.
In this talk, Thea and Jérôme will explain some of those workflows, how maintainers review your patches, and highlight the details that make your changes more likely to be merged into the project – read more
[ContainerCon] Container Performance Monitoring and Management Using cAdvisor – Victor Marmol, Google
Monitoring the performance of applications today is difficult. It typically entails deep understanding and knowledge of an application and all its components. Containers have begun to make this easier by allowing us to break down applications and provide finer-grained information than ever before. cAdvisor has begun exposing higher level performance metrics aimed at answering the question “how are my applications performing?”. We will present what metrics are exposed and how these metrics can be used to automatically tune the performance of your containers – read more
Containers are revolutionizing the way we deploy and maintain our infrastructures, but monitoring and troubleshooting in a containerized environment can still be painful and impractical. Understanding even basic resource usage is difficult – let alone tracking network connections or malicious activity. This talk will cover the current state of the art for container monitoring and visibility, including pros / cons and live demonstrations of each method. Special emphasis will be put on sysdig, an open source troubleshooting tool authored by the presenter. Sysdig offers unprecedented container visibility without the need to break the “sanctity” of the container – read more
Docker is two years old. While security has always been at the core of the questions revolving around Docker, the nature of those questions has changed. Last year, the main concern was “can I safely colocate containers on the same machine?” and it elicited various responses. Dan Walsh, SELinux expert, notoriously said: “containers do not contain!”, and at last year’s LinuxCon, Jérôme delivered a presentation detailing how to harden Docker and containers to isolate them better.
Today, people have new concerns. They include image transport, vulnerability mitigation, and more.
After a recap about the current state of container security, Jérôme will explain why those new questions showed up, and most importantly, how to address them and safely deploy containers in general, and Docker in particular – read more
[ContainerCon] A Brief History of Containers – Kirill Kolyshkin, Odin
While this is the first ContainerCon, Linux Containers has been around for about 15 years. The talk will go through that history, highlighting some major achievements along the way. Some technical implementation details of various container-related technologies, mostly from the kernel point of view, will be explained and discussed – read more
Many operations teams feel the need to gain Docker experience, but are struggling to conceptualize how this can be done in a low risk way. Further, they must do this in an often hectic work environment that is not conducive to learning a completely new operational paradigm.
The talk first covers the identification of a low risk, high value “sandbox” where an application can be deployed to production in Docker containers. Key points will be around identifying metrics for measuring success and learning. This will be about 15 minutes.
We will then move on to what a _minimum_ viable production environment might look like. This will include log aggregation, monitoring, a private registry, service discovery and scheduling. In the end, a small python/redis app will run in production. Time permitting a Docker Dev Environment will be demonstrated – read more
Google has been using the same shared server image between the booting OS and the applications that runs in containers. Container solutions like docker were designed to let you run an application on a vanilla OS image. This is great if you want to totally decouple a new application from the underlying OS. This is not great if you don’t want to have to maintain 2 operating systems (the host one and the container one) if you already have well customized OS, and if you simply want to run some existing applications in a container. This gives you the security benefit from resource/disk/network separation between untrusted applications and the rest of your operating system without having to start from scratch with a base OS and lots duplicate packages between the container and the host OS. More importantly this lets you switch existing working applications to a state where half their functionality (like the web facing portion with untrusted php code) runs in a read only container, while the backend that needs access to local disk and network resources, run outside the container, and post the data to a filesystem that is only read only in the container but sufficient for serving results.
You also benefit from completely controlling the container image and not relying on an image retrieved from the internet that may not be trustworthy by reusing the exact same OS image inside and outside the container, also minimizing upgrade time and cost.
This talk will show how to use docker to achieve those goals and get a chance to containerize applications that you probably wouldn’t get around to run in containers otherwise – read more
Let’s turn back the clock to the 1960’s and see how we can adopt the mindset and philosophy of Unix to design our tools, applications and micro-services in this new world of containers. We will talk about the best practices for configuration, logging, secrets, command line interfaces, output streams and inter-process communication and show examples, both good and bad, applied by real-world open source projects and tools – read more
Containers, especially Docker-based ones have become the method du jour for configuring applications, but how well do they mix with another popular IT trend: Big Data? Some unique considerations here include how to implement a shared storage environment (HDFS, C*, Kafka, etc.), appropriate resource allocation per container across a distributed system, and managing and troubleshooting cluster health in production environments. This talk will explain the realities of launching popular data frameworks such as Hadoop, YARN, Spark and NoSQL databases inside Docker containers while ensuring acceptable levels of performance, security and reliability – read more
[CloudOpen] Virtualization & Cloud Developer Panel – Paolo Bonzini, Red Hat; Glauber Costa; Jérôme Petazzoni, Docker; Stefano Stabellini, Citrix; Russell Bryant, Red Hat (Moderator)
This panel will bring together core developers in various areas of cloud and virtualization, including: the maintainer of KVM, one of the maintainers of the Xen hypervisor, a lead developer of OSv (the open source operating system designed for the cloud), and a lead developer of Docker.
The moderator of the panel is also a cloud developer, namely a developer for OpenStack – read more
[ContainerCon] Denser Containers With PF Cache – Pavel Emelyanov, Odin
Two greatest benefits of containers over VMs are — much higher density and elasticity. One of the reasons for the former one is that containers can share most of their disk memory cache due to libraries (and sometimes binaries) being the same. Depending on the way containers’ files are stored, different techniques to disk cache deduplication should be used. The growing popular approach based on device-mapper requires cross-disks cache manager.
In this presentation Pavel will review different approaches to organizing container’s storage and their pros-n-cons, will describe the benefits of disk cache sharing and then will proceed to the PFCache technology from Odin that implements the mentioned cross-disk cache sharing and gives times larger density for containers – read more
[ContainerCon] Using Clocker With Calico and Docker to Run Workloads in the Cloud – Andrew Kennedy, Cloudsoft
This talk will show how to use Clocker to test and deploy Apache Brooklyn blueprints for your worloads in the Cloud. Using Docker containers instead of virtual machines, Clocker enables testing of a full simulation of your production topology, allowing every aspect of your resilience, failover and scaling policies to be tested thoroughly. We will show how a multi tier, multi network application can be deployed a Clocker managed Docker Cloud, using Calico SDN technology to provide a full suite of network choices. Clocker uses Apache jclouds to provide this seamless access to both containers and virtual machines, thanks to its provider agnostic API, and Apache Brooklyn allows complex topologies to be described using industry standard YAML blueprints – read more
Docker has dramatically transformed the workflow for many organizations, including ours. We’ve been running it in production for 1.5 years and in that time it has enabled us to overcome many hurdles, such as simplifying horizontal scaling, increasing our deployment speed and most importantly, streamlining our development process.
But, adopting new technologies comes with an inherent risk – best practices are not yet well known, standards may not be fully fleshed out and the underlying technology can rapidly change between releases. It’s a lot like an adventure into the unknown: pitfalls await the unwary, and the road to glory can be a rocky one. Luckily for you, we’ve mapped some of that territory.
Join us on an adventure which will shed light on some potential pitfalls that you can avoid when adopting Docker in your organization. We will be flying through a number of topics including operating system choice, backend storage, logging, resource management and more. During each topic, we will be providing real world examples and personal experiences of working through some of these problems.
Featuring talks by Arjan Van de Ven on Clear Containers, or how one can use hardware features to make containers more secure, Avi Cavale on Developer Driven Infrastructure, Phil Estes on Namespaces feature in Docker, and Diogo Monica on Docker Notary – read more
Wednesday, August 19
[Keynote] The Evolution of Computing in the Cloud – Deepak Singh, General Manager of Amazon EC2 Container Service
Amazon EC2 has become synonymous with many of the patterns customers associate with the cloud – API driven VM provisioning, on-demand availability, pay-per-use computing, and Auto Scaling. Our customers have built highly resilient services by leveraging the capabilities provided by Amazon EC2. In recent months, we have launched two new computing primitives to help customers run highly scalable, resilient, applications. The Amazon EC2 Container Service (ECS) provides a task-based abstraction on top of Docker containers, and AWS Lamda provides an event-driven computing primitive that requires no servers. ECS and Lambda extend the EC2 model with even more fine grained control over resources and execution time respectively, unlocking newer architectures and improving developer productivity. This talk will cover the continuum of use cases that cover EC2, ECS, and Lambda, the motivations for developing these services, and common patterns that we have observed as our customers adopt new computing patterns – read more
While Docker as a container runtime has been available for two years now, and uses various Linux kernel features for namespacing to isolate the container processes, user namespace support in the Go language and libcontainer was only made available earlier this year. Now that support exists in these underlying technologies, Phil will discuss the details of exposing user namespace support to Docker operators and users, and some of the complexities of offering full user namespace mappings to containers.
Most importantly, the key benefit to user namespace support being available in Docker is that the host system’s root user will no longer be exposed as the container’s “root”. Phil will detail the improved security posture provided and discuss future enhancements to container user and group isolation based on this Linux kernel feature – read more
Container security is one of the hot topics in the container space, and various approaches to using hardware features to improve security exist today. This presentation will cover the different types of security angles (who is the attacker, and what is protected) and the different hardware features that are used to increase security in these different scenarios. As part of this, the various tradeoffs between the solutions are covered as well – read more
While most microservices discussions have centered around stateless apps, this trend fragments the data world and container world. Hear about the projects that EMC Code is bringing to the Docker ecosystem to enable persistent data use-cases in a container-centric world – read more
Thursday, August 20th
[Linux Plumbers Conference] Containers track
[OpenStack Day Seattle 2015] Just Enough OpenStack for Docker
OpenStack is a large collection of complicated projects that join together to form a hard to deploy and harder to run distributed system. This talk will show you how you can harness the concepts of bimodal IT to increase agility in your IT organization by utilizing a minimal Openstack install and various Docker based tools to build a platform that will increase developer productivity – read more
Friday, August 21st
The promise of Mesos to create a datacenter-centric resource pool is a great idea. However, a decade old company with many different types of existing systems and unique workloads can’t simply mass migrate to Mesos. That doesn’t mean Mesos can’t pay a huge part in unifying disparate workloads that construct existing systems while opening the door to new Mesos-centric development.
In this presentation, Steve will cover 3 very different use cases that are being unified under Apache Mesos including: Automated builds of existing code artifacts, automated builds of AWS AMIs via packer in EC2, and rolling deploys & supervision of Docker microservices across environments. The addition of Docker on Mesos has enabled this, but that doesn’t mean that all Mesos slaves should be identical. See how the addition of localized support services on slaves can compliment your Docker on Mesos use cases – read more
Docker has become a popular way for developers to package their applications for deployment, but as applications get more complex there is a growing need to deploy them at scale, orchestrating them across dozens or thousands of machines. With Docker Swarm, you can talk to Mesos using the Docker command line client and start Docker containers on your Mesos cluster as easily as you would do it on your development laptop. In this presentation, Victor Vieux (Docker Engineer, Docker) and Timothy Chen (Mesosphere Engineer, Mesosphere) will explain why Mesos is the “gold standard” for running Docker containers at scale and will demo how to setup Docker Swarm on Mesos (using DCOS) and how to do a `docker run` against your Mesos cluster easily – read more
Learn More about Docker
- New to Docker? Try our 10 min online tutorial
- Share images, automate builds, and more with a free Docker Hub account
- Read the Docker 1.8 Release Notes
- Subscribe to Docker Weekly
- Register for upcoming Docker Online Meetups
- Attend upcoming Docker Meetups
- Register for DockerCon Europe 2015
- Start contributing to Docker