Docker emits InfraKit to wrangle containers on competing clouds

Customization and abstraction in container king's future


LinuxCon Docker is removing some of the hurdles to running its poster-child technology on various cloud platforms.

On Tuesday at LinuxCon Europe, Docker founder and chief technology officer Solomon Hykes released under the Apache 2.0 license InfraKit, a set of software tools for managing containers on cloud services.

“It's the magical ingredient that lets you adapt Docker to other infrastructures,” Hykes told The Register.

InfraKit smoothes over the complex ways in which various competing cloud providers describe and deploy their servers, send out alerts, and let subscribers control their rented systems. Amazon's AWS and Microsoft's Azure do things differently, for instance, and InfraKit is supposed to provide a neat layer to manage it all – allowing developers to slide their setups between platforms as required.

InfraKit is a family of plugin components that communicate via HTTP. "These plugins are active controllers that can look at current infrastructure state and take action when the state diverges from user specification," the documentation explains.

It’s the work of the brains behind Conductant, which Docker bought in March. Staff at the gobbled-up startup have previously built serious scale-out systems at Google, Zynga and Twitter. Some of them worked on Twitter’s Apache Aurora scheduling system that works with Mesos, which is described as a data center operating system that hides server complexity from developers.

But Docker isn’t stopping at InfraKit and similar tools are promised for authentication and security, Hykes said.

“The process is we write the code for Docker and see opportunity to extract that to something, like infrastructure ... we will do that over time for many, many areas. We are getting a lot of demand to extend the Docker authentication kit,” he added.

Docker, the soaraway leader in containerization with a near monopoly on the technology, is at pains to give people choice – choice over their infrastructure all the way down to the choice of their operating system. Earlier this year, Docker hired Natanael Copa, creator of the minimalist Alpine Linux, to shift the Docker official image library away from Ubuntu to Alpine. Of course, you can use pretty much whichever distro you want in a Docker container provided the underlying kernel meets Docker Engine's requirements.

“If somebody wants to built their own container platform and they want to use their own Linux and they don’t want to reuse ours, we want to allow them to do that,” Hykes told The Reg.

“A lot [of people] are asking for custom configuration,” he added. ®


Other stories you might like

  • Mega's unbreakable encryption proves to be anything but
    Boffins devise five attacks to expose private files

    Mega, the New Zealand-based file-sharing biz co-founded a decade ago by Kim Dotcom, promotes its "privacy by design" and user-controlled encryption keys to claim that data stored on Mega's servers can only be accessed by customers, even if its main system is taken over by law enforcement or others.

    The design of the service, however, falls short of that promise thanks to poorly implemented encryption. Cryptography experts at ETH Zurich in Switzerland on Tuesday published a paper describing five possible attacks that can compromise the confidentiality of users' files.

    The paper [PDF], titled "Mega: Malleable Encryption Goes Awry," by ETH cryptography researchers Matilda Backendal and Miro Haller, and computer science professor Kenneth Paterson, identifies "significant shortcomings in Mega’s cryptographic architecture" that allow Mega, or those able to mount a TLS MITM attack on Mega's client software, to access user files.

    Continue reading
  • HashiCorp tool sniffs out configuration drift
    OK, which of those engineers tweaked the settings? When infrastructure shifts away from state defined by original code

    HashiConf HashiCorp has kicked off its Amsterdam conference with a raft of product announcements, including a worthwhile look into infrastructure drift and a private beta for HCP Waypoint.

    The first, currently in public beta, is called Drift Detection for Terraform Cloud, and is designed to keep an eye on the state of an organization's infrastructure and notify when changes occur.

    Drift Detection is a useful thing, although an organization would be forgiven for thinking that buying into the infrastructure-as-code world of Terraform should mean everything should remain in the state it was when defined.

    Continue reading
  • End of the road for biz living off free G Suite legacy edition
    Firms accustomed to freebies miffed that web giant's largess doesn't last

    After offering free G Suite apps for more than a decade, Google next week plans to discontinue its legacy service – which hasn't been offered to new customers since 2012 – and force business users to transition to a paid subscription for the service's successor, Google Workspace.

    "For businesses, the G Suite legacy free edition will no longer be available after June 27, 2022," Google explains in its support document. "Your account will be automatically transitioned to a paid Google Workspace subscription where we continue to deliver new capabilities to help businesses transform the way they work."

    Small business owners who have relied on the G Suite legacy free edition aren't thrilled that they will have to pay for Workspace or migrate to a rival like Microsoft, which happens to be actively encouraging defectors. As noted by The New York Times on Monday, the approaching deadline has elicited complaints from small firms that bet on Google's cloud productivity apps in the 2006-2012 period and have enjoyed the lack of billing since then.

    Continue reading

Biting the hand that feeds IT © 1998–2022