LXD Container Hypervisor

Danial Behzadi

dani.behzi@ubuntu.com

2016 LXD Container Hypervisor 2

Hypervisor

2016 LXD Container Hypervisor 3

Container

2016 LXD Container Hypervisor 4

LXC

● The Linux Container

● Kernel feature since 2008

● makes chroot available

● Apparmor and SELinux aware

● liblxc library with bindings in Python & Lua

● A set of standard tools for control

2016 LXD Container Hypervisor 5

LXD over LXC

● Plain LXC

● Secure by default

● Simpler and less confusing tools

● Rely on container images

● Checkpoint and restore support

● No drastic change

2016 LXD Container Hypervisor 6

LXD vs. Docker

LXD docker

Machine Management Software Distribution

Doesn’t care about content Cares about what is running

Can host docker instances Can use LXD for goods

Share underlying kernel capabilities

2016 LXD Container Hypervisor 7

Main LXD components

● Containers

● Snapshots

● Images

● Profiles

● Remotes

2016 LXD Container Hypervisor 8

LXD Containers

● Filesystem

● List of configuration options

● Devices

● Set of profiles

● Properties

● Runtime states

2016 LXD Container Hypervisor 9

LXD Snapshots

● A copy of containers

● Immutable

● Can be renamed, destroyed or restored

● Stateful

● Ability to rollback

● Includes CPU and memory state

2016 LXD Container Hypervisor 10

LXD Images

● Clean GNU/Linux distributions

● Ability to publish

● Identified by SHA256 hash

● Can have properties applied to

● Cached and kept for a number of days

● Automatically updates

2016 LXD Container Hypervisor 11

LXD Profiles

● Defines configs and devices

● Multiple applicable

● Applied by order

● Override ancestors

● Default: defines eth0

● Docker: container nesting

2016 LXD Container Hypervisor 12

LXD Remotes

● Local

● Ubuntu

● Ubuntu-daily

● Images

● …

● Your own remote

2016 LXD Container Hypervisor 13

A case study story…

2016 LXD Container Hypervisor 14

Thanks!