We're sorry but this page doesn't work properly without JavaScript enabled. Please enable it to continue.
Feedback

Being compliant with Open Container Initiative Spec

00:00
subtitles
off
playback rate
1
subtitles
off
English (auto-generated)
playback rate
0.25
0.5
0.75
1
1.25
1.5
1.75
2
quality
576p
5
 Cite
 Share
 Related Material
 Download Purchase
No logo availableAll Systems Go!
 Park, Dongsu

Formal Metadata

Title
Being compliant with Open Container Initiative Spec
Title of Series
Number of Parts
50
Author
Contributors
License
CC Attribution 3.0 Unported:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.
Identifiers
Publisher
Release Date
Language

Content Metadata

Subject Area
Genre
Abstract
Open Container Initiative (OCI) started in 2015 to make different implementations of container runtimes and images compliant with well-defined specifications. Together with other folks at Kinvolk, I have been involved in various OCI projects since months, and encountered various issues that occur in runtime specs and runtime-tools for verification. Since we live in a real world, not everything works well as expected. I’m going to talk about practical issues, and possible ways to get it improved. Open Container Initiative (OCI) defines container runtime specs (https://github.com/opencontainers/runtime-spec) as well as container image specs (https://github.com/opencontainers/image-spec) and distribution spec (https://github.com/opencontainers/distribution-spec). There is also runtime-tools (https://github.com/opencontainers/runtime-tools) that helps container runtime to verify compliance of the runtime specifications. The standard container runtime is runc (https://github.com/opencontainers/runc) that is included in multiple high-level container managers like Docker or containerd. Most of the practical issues arise when specification is not clearly defined in the first place, or when container runtimes have own reasons for not being compliant with the specs, or when there’s no consensus in the community how it should proceed. On the other hand, container orchestration systems like Kubernetes have defined their own interfaces such as Container Runtime Interface (CRI). The different interfaces (OCI runtime and CRI) exist at different layers in the software stack. I'll show how CRI depends on OCI and some mismatches between them. In this talk I want to introduce such practical issues, and try to suggest how we should proceed regarding spec compliance.
00:00
SpacetimeSystem programmingOpen setSoftware engineeringLecture/ConferenceMeeting/Interview
00:24
SoftwareSpacetimeKernel (computing)EmailProduct (business)Process (computing)Data managementBlogTwitterCore dumpOpen setRun time (program lifecycle phase)Computer-generated imageryDistribution (mathematics)System programmingInstallable File SystemMathematical singularity3 (number)Fiber bundleFile systemMiniDiscComputer fileOperations researchConfiguration spaceRootNormed vector spaceMereologyRepository (publishing)Run time (program lifecycle phase)Software repositorySet (mathematics)Server (computing)Client (computing)Configuration spaceDistribution (mathematics)Operator (mathematics)Latent heatFiber bundleFile systemDifferent (Kate Ryan album)TelecommunicationArithmetic progressionProjective planeComputer architectureWebsiteCommunications protocolMiniDiscOpen setOpen sourceProxy serverSlide ruleMetadataMultiplication signRootMusical ensembleConnectivity (graph theory)Computer fileCore dumpAreaTwitterSpacetimeBlogCubeFlagBuildingOcean currentData structureImage registrationComputer animation
05:53
Menu (computing)Configuration spaceDistribution (mathematics)Computer-generated imageryComputing platformFile systemCommunications protocolUniform resource locatorRun time (program lifecycle phase)Standard deviationMaizeOracleNetwork topologyFiber bundleLatent heatPersonal digital assistantMKS system of unitsSource codeCompact spaceTheoryMultiplication signPhase transitionExterior algebraRevision controlConfiguration spaceFiber bundleDescriptive statisticsSinc functionProjective planeLine (geometry)Validity (statistics)Computer architectureMereologySoftware testingCommunications protocolLatent heatComputing platformCASE <Informatik>RootLaptopDistribution (mathematics)Software repositoryArithmetic progressionInformationNeuroinformatikDiagramRun time (program lifecycle phase)Standard deviationFile formatGoodness of fitVector space2 (number)Bounded variationSerial portRepository (publishing)Cartesian coordinate systemCovering spaceGastropod shellComputer fileSlide rulePoint (geometry)Directory serviceOcean currentFile systemDefault (computer science)NamespaceRule of inferenceSystem callMultiplicationImplementationGraphical user interfaceResultantSingle-precision floating-point formatComputer animation
13:03
Computer configurationCASE <Informatik>Data Encryption StandardState of matterBeer steinDigital signalGame controllerKernel (computing)Run time (program lifecycle phase)Asynchronous Transfer ModeInterface (computing)Similarity (geometry)Configuration spaceMKS system of unitsSystem programmingFlow separationValidity (statistics)Revision controlHierarchySoftware testingNetwork socketGame controllerImplementationMultiplication signNear-ringRun time (program lifecycle phase)Standard deviationPhysical systemHookingSynchronizationType theoryProduct (business)Line (geometry)Point (geometry)Similarity (geometry)Latent heatSpacetimeComputer configuration1 (number)Asynchronous Transfer ModeCASE <Informatik>TheorySingle-precision floating-point formatOcean currentSoftware maintenanceLevel (video gaming)MultiplicationState of matterComputer animation
20:13
Software testingLatent heatDisintegrationRun time (program lifecycle phase)Similarity (geometry)TwitterEmailINTEGRALTelecommunicationMultiplication signBootingSoftware testingCommunications protocolValidity (statistics)Latent heatSoftware maintenanceSimilarity (geometry)Entropie <Informationstheorie>Level (video gaming)Point (geometry)NamespaceRun time (program lifecycle phase)Right angleConformal mapConfiguration spaceComputer animation
22:15
System programmingSimulated annealingMereologyOpen setFigurate numberLatent heatCASE <Informatik>Run time (program lifecycle phase)Multiplication signGoodness of fitSinc functionContent (media)Meeting/Interview
24:25
System programming
Transcript: English(auto-generated)