Baohua Yang, IBM researcher on datacenter networking.

His interests include:

• High performance issues
• Network security
• Distributed systems

• Container
• Docker
• Component
• Key Projects
• Q&A

• FreeBSD jails (2000)
• Solaris Containers (2004)
• OpenVZ (2005)
• LXC (?)

• Isolation
  • File
  • User/Group
  • PID
  • Network
  • IPC
• Resource Restriction
  • CPU
  • Memory
  • IO

• libvirt
• LXC
• systemd-nspawn

• UFS (brought in)
• API
• Version Management(Dockerfile, Registry)

• aufs、devicemapper、btrfs
• /var/lib/docker/

• Running 'image' with writable layer.

• Store images, like Git Repo.

Based on Chrome OS, a minimal Linux-based operating system aimed at large-scale server deployments.

• Low resource requirement (114 MB)
• Consistent update
• Every program in single container

A highly available, distributed key value store.

• Simple, curl-able API (HTTP + JSON)
• Optional SSL client cert authentication
• Benchmarked 1000s of writes/s per instance
• Properly distributed using Raft protocol
• Keys support TTL
• Atomic test and set
• Easily listen for changes to a prefix via HTTP long-polling

Tool for service discovery, monitoring and configuration.

• Service Discovery
• Health Checking
• Key/Value Storage
• Multi-Datacenter

A configuration management tool built on top of etcd.

• Sync configuration files
• Reloading applications

• Unify the API for container's drivers
• Combine cgroups，capability，namespaces，apparmor and seLinux
• Replace LXC

Channel for network services

• Simple message passing
• Synchronization for concurrent programming
• Nesting: channels can send channels

• A toolkit for composing network services.
• Or a communication middleware