1407 - Podman 简介一款开源容器引擎.pdf

1、V0000000an open source container enginePodmanAshley CuiSoftware EngineerRed Hat1V0000000Daemonless,open source,Linux native tool designed to make it easy to find,run,build,share and deploy applications using(OCI)Containersand Container Images.2V0000000Container Running instance of an image Isolated

2、from host system using linux kernel featuresOptional section marker or title3Container image(OCI)TarballFilesystem(rootfs)Json file(Manifest)Stored,pushed,pulled from a registryquay.iodocker.ioWhat is a container?V0000000Optional section marker or title4VM:Virtualizes hardware,so OSs can be run on t

3、op Contains kernel More resource intensiveContainer vs VMContainer:Shares kernel Virtualizes software layersV0000000Containers5 NamespacesUserPIDNetworkMount CGroups SECComp SELinuxV0000000Lots of theory,what does it look like when I use it?6V0000000Oh wait isnt this just Docker?7Dockers great,but w

4、e can do better!Rootless Daemonless Open source Other cool features!And you dont even have to learn something new Podmans CLI is Dockers CLIV0000000Daemonless&Rootless8 Podman executes the container,then goes away No intermediate layer Classic fork exec model Rootless-under user namespaceV0000000Ope

5、n source9 Now a CNCF Project!Free to use and contribute toV0000000Podman Desktop10V000000011Cool FeaturesOptional section marker or titleV0000000Pods&Kubernetes12 PodsGroup of containers that share resources Create a kubernetes yaml from podman podspodman pod create-name my-pod-namepodman kube gener

6、ate my-pod-name Run podman pods from a kube.yamlpodman kube playV0000000Quadlet13 Systemd-natural way to run containersfork/exec model Systemd generator Declarative syntax Creates systemd service files from a quadlet fileV0000000REST API14V0000000Podman Machin