Английская Википедия:Container Linux

Шаблон:Short description Шаблон:Use mdy dates Шаблон:Redirect Шаблон:Infobox OS

Container Linux (formerly CoreOS Linux) is a discontinued open-source lightweight operating system based on the Linux kernel and designed for providing infrastructure for clustered deployments while focusing on automation, ease of application deployment, security, reliability, and scalability. As an operating system, Container Linux provided only the minimal functionality required for deploying applications inside software containers, together with built-in mechanisms for service discovery and configuration sharing.^{[1][2][3][4][5]}

Container Linux shares foundations with Gentoo Linux,^[6][7] ChromeOS, and ChromiumOS through a common software development kit (SDK). Container Linux adds new functionality and customization to this shared foundation to support server hardware and use cases.^[4][8]Шаблон:Rp CoreOS was developed primarily by Alex Polvi, Brandon Philips, and Michael Marineau,^[3] with its major features available as a stable release.^[9][10][11]

The CoreOS team announced the end-of-life for Container Linux on May 26, 2020,^[12] offering Fedora CoreOS,^[13] and RHEL CoreOS as its replacement, both based on Red Hat Enterprise Linux.

Шаблон:AnchorOverview

Container Linux provides no package manager as a way for distributing payload applications, requiring instead all applications to run inside their containers. Serving as a single control host, a Container Linux instance uses the underlying operating-system-level virtualization features of the Linux kernel to create and configure multiple containers that perform as isolated Linux systems. That way, resource partitioning between containers is performed through multiple isolated userspace instances, instead of using a hypervisor and providing full-fledged virtual machines. This approach relies on the Linux kernel's cgroups and namespaces functionalities,^[14][15] which together provide abilities to limit, account and isolate resource usage (CPU, memory, disk I/O, etc.) for the collections of userspace processes.^[2][5][16]

Initially, Container Linux exclusively used Docker as a component providing an additional layer of abstraction and interface^[17] to the operating-system-level virtualization features of the Linux kernel, as well as providing a standardized format for containers that allows applications to run in different environments.^[2][16] In December 2014, CoreOS released and started to support rkt (initially released as Rocket) as an alternative to Docker, providing through it another standardized format of the application-container images, the related definition of the container runtime environment, and a protocol for discovering and retrieving container images.^{[18][19][20][21]} CoreOS provides rkt as an implementation of the so-called app container (appc) specification that describes the required properties of the application container image (ACI). CoreOS created appc and ACI as an independent committee-steered set of specifications^[22][23] aimed to become part of the vendor- and operating-system-independent Open Container Initiative, or OCI, initially named the Open Container Project (OCP) containerization standard,^[24] which was announcedШаблон:By whom in June 2015.^[25][26][27]

Container Linux uses ebuild scripts from Gentoo Linux for automated compilation of its system components,^[6][7] and uses systemd as its primary init system, with tight integration between systemd and various Container Linux's internal mechanisms.^[2][28]

Шаблон:AnchorUpdates distribution

Container Linux achieves additional security and reliability of its operating system updates by employing FastPatch as a dual-partition scheme for the read-only part of its installation, meaning that the updates are performed as a whole and installed onto a passive secondary boot partition that becomes active upon a reboot or kexec. This approach avoids possible issues arising from updating only certain parts of the operating system, ensures easy rollbacks to a known-to-be-stable version of the operating system, and allows each boot partition to be signed for additional security.^[2][5][29] The root partition and its root file system are automatically resized to fill all available disk-space upon reboots; while the root partition provides read-write storage space, the operating system itself is mounted read-only under Шаблон:Mono.^[30][31][32]

To ensure that only a certain part of the cluster reboots at once when the operating system updates are applied, preserving the resources required for running deployed applications, CoreOS provides locksmith as a reboot manager for Container Linux.^[33] Using locksmith, one can select between different update strategies that are determined by how the reboots are performed as the last step in applying updates; for example, one can configure how many cluster members are allowed to reboot simultaneously. Internally, locksmith operates as the Шаблон:Mono daemon that runs on cluster members, while the Шаблон:Mono command-line utility manages configuration parameters.^[34][35] Locksmith is written in the Go language and distributed under the terms of the Apache License 2.0.^[36]

The updates distribution system employed by Container Linux is based on Google's open-source Omaha project, which provides a mechanism for rolling out updates and the underlying request–response protocol based on XML.^[37][38][39] Additionally, CoreOS provides CoreUpdate as a web-based dashboard for the management of cluster-wide updates. Operations available through CoreUpdate include assigning cluster members to different groups that share customized update policies, reviewing cluster-wide breakdowns of Container Linux versions, stopping and restarting updates, and reviewing recorded update logs. CoreUpdate also provides an HTTP-based API that allows its integration into third-party utilities or deployment systems.^[29][40][41]

Шаблон:AnchorCluster infrastructure

Файл:CoreOS Architecture Diagram.svg

Container Linux provides etcd, a daemon that runs across all computers in a cluster and provides a dynamic configuration registry, allowing various configuration data to be easily and reliably shared between the cluster members.^[37][30] Since the key–value data stored within Шаблон:Mono is automatically distributed and replicated with automated master election and consensus establishment using the Raft algorithm, all changes in stored data are reflected across the entire cluster, while the achieved redundancy prevents failures of single cluster members from causing data loss.^[21][43] Beside the configuration management, Шаблон:Mono also provides service discovery by allowing deployed applications to announce themselves and the services they offer. Communication with Шаблон:Mono is performed through an exposed REST-based API, which internally uses JSON on top of HTTP; the API may be used directly (through Шаблон:Mono or Шаблон:Mono, for example), or indirectly through Шаблон:Mono, which is a specialized command-line utility also supplied by CoreOS.^{[2][5][44][45][46]} etcd is also used in Kubernetes software.

Container Linux also provides the Шаблон:Mono cluster manager, which controls Container Linux's separate systemd instances at the cluster level. As of 2017, "fleet" is no longer actively developed and is deprecated in favor of Kubernetes.^[47] By using Шаблон:Mono, Container Linux creates a distributed init system that ties together separate systemd instances and a cluster-wide Шаблон:Mono deployment;^[43] internally, Шаблон:Mono daemon communicates with local Шаблон:Mono instances over D-Bus, and with the Шаблон:Mono deployment through its exposed API. Using Шаблон:Mono allows the deployment of single or multiple containers cluster-wide, with more advanced options including redundancy, failover, deployment to specific cluster members, dependencies between containers, and grouped deployment of containers. A command-line utility called Шаблон:Mono is used to configure and monitor this distributed init system;^[48] internally, it communicates with the Шаблон:Mono daemon using a JSON-based API on top of HTTP, which may also be used directly. When used locally on a cluster member, Шаблон:Mono communicates with the local Шаблон:Mono instance over a Unix domain socket; when used from an external host, SSH tunneling is used with authentication provided through public SSH keys.^{[49][50][51][52][53]}

All of the above-mentioned daemons and command-line utilities (Шаблон:Mono, Шаблон:Mono, Шаблон:Mono and Шаблон:Mono) are written in the Go language and distributed under the terms of the Apache License 2.0.^[54][55]

Шаблон:AnchorDeployment

When running on dedicated hardware, Container Linux can be either permanently installed on local storage, such as a hard disk drive (HDD) or solid-state drive (SSD),^[56] or booted remotely over a network using Preboot Execution Environment (PXE) in general, or iPXE as one of its implementations.^[57][58] CoreOS also supports deployments on various hardware virtualization platforms, including Amazon EC2, DigitalOcean, Google Compute Engine, Microsoft Azure, OpenStack, QEMU/KVM, Vagrant and VMware.^{[5][59][60][61]} Container Linux may also be installed on Citrix XenServer, noting that a "template" for CoreOS exists.

Container Linux can also be deployed through its commercial distribution called Tectonic, which additionally integrates Google's Kubernetes as a cluster management utility. Шаблон:As of, Tectonic is planned to be offered as beta software to select customers.^[22][62][63] Furthermore, CoreOS provides Flannel as a component, implementing an overlay network required primarily for the integration with Kubernetes.^[22][64][65]

Шаблон:As of, Container Linux supports only the x86-64 architecture.^[37]

Шаблон:AnchorDerivatives

Following its acquisition of CoreOS, Inc.^[66] in January 2018, Red Hat announced^[67] that it would be merging CoreOS Container Linux with Red Hat's Project Atomic to create a new operating system, Red Hat CoreOS, while aligning the upstream Fedora Project open source community around Fedora CoreOS, combining technologies from both predecessors.

On March 6, 2018, Kinvolk GmbH announced^[68] Flatcar Container Linux, a derivative of CoreOS Container Linux. This tracks the upstream CoreOS alpha, beta, and stable channel releases, with an experimental Edge release channel added in May 2019.^[69]

Reception

LWN.net reviewed CoreOS in 2014:^[70] Шаблон:Quote

See also

Шаблон:Portal

• Application virtualizationШаблон:Snd software technology that encapsulates application software from the operating system on which it is executed
• Comparison of application virtualization softwareШаблон:Snd various portable and scripting language virtual machines
• Comparison of platform virtualization softwareШаблон:Snd various emulators and hypervisors, which emulate the whole physical computers
• LXC (Linux Containers)Шаблон:Snd an environment for running multiple isolated Linux systems (containers) on a single Linux control host
• Operating-system-level virtualization implementationsШаблон:Snd based on operating system kernel's support for multiple isolated userspace instances
• Software as a service (SaaS)Шаблон:Snd a software licensing and delivery model that hosts the software centrally and licenses it on a subscription basis
• VirtualizationШаблон:Snd a general concept of providing virtual versions of computer hardware platforms, operating systems, storage devices, etc.

References

Шаблон:Reflist

External links

Шаблон:Commons category

• Official Шаблон:Official website and GitHub source code repositories: Шаблон:GitHub, Шаблон:GitHub, Шаблон:GitHub, Шаблон:GitHub and Шаблон:GitHub
• Шаблон:DistroWatch
• First glimpse at CoreOS, September 3, 2013, by Sébastien Han
• CoreOS: Linux for the cloud and the datacenter, ZDNet, July 2, 2014, by Steven J. Vaughan-Nichols
• What's CoreOS? An existential threat to Linux vendors, InfoWorld, October 9, 2014, by Matt Asay
• Understanding CoreOS distributed architecture, March 4, 2015, a talk to Alex Polvi by Aaron Delp and Brian Gracely
• CoreOS fleet architecture, August 26, 2014, by Brian Waldon et al.
• Running CoreOS on Google Compute Engine, May 23, 2014
• CoreOS moves from Btrfs to Ext4 + OverlayFS, Phoronix, January 18, 2015, by Michael Larabel
• Containers and persistent data, LWN.net, May 28, 2015, by Josh Berkus

Шаблон:Virtualization software Шаблон:Linux Шаблон:Linux kernel Шаблон:Linux containers

Партнерские ресурсы
Криптовалюты	Обмен криптовалют - www.bestchange.ru Криптовалютная биржа CoinEx Криптовалютная биржа Binance HIVE OS - операционная система для майнинга e4pool - Мультивалютный пул для майнинга.
Магазины	AliExpress — глобальная виртуальная (в Интернете) торговая площадка, предоставляющая возможность покупать товары производителей из КНР; computeruniverse.net - Интернет-магазин компьютеров(Промо код 5 Евро на первую покупку:FWWC3ZKQ);
Хостинг	DigitalOcean - американский провайдер облачных инфраструктур, с главным офисом в Нью-Йорке и с центрами обработки данных по всему миру;
Разное	Викиум - Онлайн-тренажер для мозга Like Центр - Центр поддержки и развития предпринимательства. Gamersbay - лучший магазин по бустингу для World of Warcraft. Ноотропы OmniMind N°1 - Усиливает мозговую активность. Повышает мотивацию. Улучшает память. Санкт-Петербургская школа телевидения - это федеральная сеть образовательных центров, которая имеет филиалы в 37 городах России. Lingualeo.com — интерактивный онлайн-сервис для изучения и практики английского языка в увлекательной игровой форме. Junyschool (Джунискул) – международная школа программирования и дизайна для детей и подростков от 5 до 17 лет, где ученики осваивают компьютерную грамотность, развивают алгоритмическое и креативное мышление, изучают основы программирования и компьютерной графики, создают собственные проекты: игры, сайты, программы, приложения, анимации, 3D-модели, монтируют видео. Умназия - Интерактивные онлайн-курсы и тренажеры для развития мышления детей 6-13 лет SkillBox - это один из лидеров российского рынка онлайн-образования. Среди партнеров Skillbox ведущий разработчик сервисного дизайна AIC, медиа-компания Yoola, первое и самое крупное русскоязычное аналитическое агентство Tagline, онлайн-школа дизайна и иллюстрации Bang! Bang! Education, оператор PR-рынка PACO, студия рисования Draw&Go, агентство performance-маркетинга Ingate, scrum-студия Sibirix, имидж-лаборатория Персона. «Нетология» — это университет по подготовке и дополнительному обучению специалистов в области интернет-маркетинга, управления проектами и продуктами, дизайна, Data Science и разработки. В рамках Нетологии студенты получают ценные теоретические знания от лучших экспертов Рунета, выполняют практические задания на отработку полученных навыков, общаются с экспертами и единомышленниками. Познакомиться со всеми продуктами подробнее можно на сайте https://netology.ru, линейка курсов и профессий постоянно обновляется. StudyBay Brazil – это онлайн биржа для португалоговорящих студентов и авторов! Студент получает уникальную работу любого уровня сложности и больше свободного времени, в то время как у автора появляется дополнительный заработок и бесценный опыт. Автор24 — самая большая в России площадка по написанию учебных работ: контрольные и курсовые работы, дипломы, рефераты, решение задач, отчеты по практике, а так же любой другой вид работы. Сервис сотрудничает с более 70 000 авторов. Более 1 000 000 работ уже выполнено. StudyBay – это онлайн биржа для англоязычных студентов и авторов! Студент получает уникальную работу любого уровня сложности и больше свободного времени, в то время как у автора появляется дополнительный заработок и бесценный опыт.