CoreOS's Docker-rival Rocket: We drill into new container contender

Can CoreOS achieve liftoff in Linux container space race?


Analysis CoreOS CEO Alex Polvi certainly got the attention of the Docker community on Monday when he announced Rocket, his company's alternative to the Docker container file format and runtime. But just what is Rocket and what does it offer that Docker doesn't?

Simply put, the answer for now is a resounding "not much." In fact, as deployable software goes, it's safe to say that Rocket doesn't even exist. The code posted to GitHub on Monday is not even of alpha quality and is best described as a prototype.

"Docker killer" probably isn't the most constructive way to think about Rocket, either – despite Polvi's incendiary Monday blog post, in which he described Docker's security as "broken" and its process model as "fundamentally flawed."

During a well-attended CoreOS community meet-up in San Francisco on Monday evening, Polvi backpedaled a bit from his earlier rhetoric, saying he and the CoreOS team merely disagreed with Docker's direction.

"I do not think Docker overall is fundamentally flawed, I just think it's going down a different path than we originally signed up for," Polvi said.

Specifically, that path includes adding new features to the Docker Engine software that will take it from being a simple set of tools to a full-fledged platform – an approach that Polvi said he feels is fundamentally flawed, which is why CoreOS wants to do something different.

Back to container basics

What the CoreOS team likes is the idea of a container as a basic building block of application development, where each container provides a "microservice" that can be combined with other microservices to form distributed applications.

In this development model, Polvi argues, you probably want the software that you use to run your containers to do that and nothing else. Any additional platform services the software provides will be redundant if you're already building on another platform – such as CoreOS, for example, or Amazon Web Services with its recently announced EC2 Container Service.

Adding features to the Docker software also makes it less secure. As its footprint grows and it becomes more complex, the likelihood that the code contains exploitable vulnerabilities increases.

Paring down the process of creating and running containers, then, is Rocket's first goal. As it stands now, the software consists of two components, each of which is a simple, standalone command-line tool.

The first is actool, which handles building containers and container validation and discovery. The second is rkt – so named, according to CoreOS developer advocate Kelsey Hightower, because "all the best Unix commands are three letters" – which takes care of fetching and running container images.

Significantly, and unlike Docker's approach, these tools aren't just a UI for talking to some other server. In the Rocket model, there's no external daemon involved. When you invoke rkt to run a container, it runs that container directly, within its own process tree and cgroup.

And although it's still very early days for Rocket, it probably won't evolve much further beyond that simple idea.

"We're really just focused on that piece of application container deployment, particularly for large scale web infrastructure," Polvi said during Monday's meet-up. "There need to be better tools for building minimal containers."

Similar topics


Other stories you might like

  • Uncle Sam to clip wings of Pegasus-like spyware – sorry, 'intrusion software' – with proposed export controls

    Surveillance tech faces trade limits as America syncs policy with treaty obligations

    More than six years after proposing export restrictions on "intrusion software," the US Commerce Department's Bureau of Industry and Security (BIS) has formulated a rule that it believes balances the latitude required to investigate cyber threats with the need to limit dangerous code.

    The BIS on Wednesday announced an interim final rule that defines when an export license will be required to distribute what is basically commercial spyware, in order to align US policy with the 1996 Wassenaar Arrangement, an international arms control regime.

    The rule [PDF] – which spans 65 pages – aims to prevent the distribution of surveillance tools, like NSO Group's Pegasus, to countries subject to arms controls, like China and Russia, while allowing legitimate security research and transactions to continue. Made available for public comment over the next 45 days, the rule is scheduled to be finalized in 90 days.

    Continue reading
  • Global IT spending to hit $4.5 trillion in 2022, says Gartner

    The future's bright, and expensive

    Corporate technology soothsayer Gartner is forecasting worldwide IT spending will hit $4.5tr in 2022, up 5.5 per cent from 2021.

    The strongest growth is set to come from enterprise software, which the analyst firm expects to increase by 11.5 per cent in 2022 to reach a global spending level of £670bn. Growth has fallen slightly, though. In 2021 it was 13.6 per cent for this market segment. The increase was driven by infrastructure software spending, which outpaced application software spending.

    The largest chunk of IT spending is set to remain communication services, which will reach £1.48tr next year, after modest growth of 2.1 per cent. The next largest category is IT services, which is set to grow by 8.9 per cent to reach $1.29tr over the next year, according to the analysts.

    Continue reading
  • Memory maker Micron moots $150bn mega manufacturing moneybag

    AI and 5G to fuel demand for new plants and R&D

    Chip giant Micron has announced a $150bn global investment plan designed to support manufacturing and research over the next decade.

    The memory maker said it would include expansion of its fabrication facilities to help meet demand.

    As well as chip shortages due to COVID-19 disruption, the $21bn-revenue company said it wanted to take advantage of the fact memory and storage accounts for around 30 per cent of the global semiconductor industry today.

    Continue reading

Biting the hand that feeds IT © 1998–2021