DevOps

Intel's Clear Containers creep toward being useful: Now plays nicer with Docker, Kubernetes

Like virtual machines but, well, like virtual machines

By Thomas Claburn in San Francisco

SHARE

Intel has tweaked its Clear Containers software so that it is compatible with Docker Swarm and Kubernetes orchestration.

Virtual machines, governed by a hypervisor, enforce data isolation in hardware; containers, while less secure, can be launched and deployed faster and offer flexibility in terms of portability across machines, shared repositories, and maintenance.

Clear Containers, now at version 2.1.1, represents Intel's attempt to have the best of both worlds, to combine the security advantages of virtual machines with the deployment advantages of containers.

The software is compatible withthe Open Container Initiative (OCI) and so can integrate with Docker 1.12 (and its Swarm toolkit) via the OCI runtime method.

It relies on a kernel-based virtual machine (KVM) QEMU hypervisor, in conjunction with systemd and kernel optimizations, to minimize memory consumption while maximizing performance, at least in theory.

A version bump last month to 2.1.0 added a slew of other improvements. These include:

There's still further work to do, however. As Intel's Damien Lespiau points out in one of many GitHub issues posts, installation on Redhat Enterprise Linux requires 71 commands.

DevOps is not for the faint of heart. ®

Sign up to our NewsletterGet IT in your inbox daily

Post a comment

More from The Register

Ex-Intel exec Diane Bryant exits Google cloud

Could Chipzilla replace Brian with a Bryant?

ME! ME! ME! – Intel's management tech gets a quartet of security fixes

Check your computer makers for patches

Intel finds a cure for its software security pain: Window Snyder

Microsoft, Mozilla veteran will also handle external researcher work

NVMe? Well, quite. Now Intel, too, is pumping out consumer QLC SSDs

Chipzilla has a few flash drives for the data centre as well

Intel finally emits Puma 1Gbps modem fixes – just as new ping-of-death bug emerges

Broadband-throttling bug finally gets a write-up and CVE

Intel confirms it’ll release GPUs in 2020

They sell like hot cakes so why wouldn’t Chipzilla want in?

Intel's still-in-beta drone flight planning software gets update

Chipzilla is doing a little aviating of its own, we see

Intel buys eASIC because FPGAs aren't always the answer

Chipzilla wants to stick its nose into yet more sections of semiconductor design cycles

Intel gives Broadwells and Haswells their Meltdown medicine

Chipzilla and Oracle are working their way back through time to deliver fixes

Hmm, there's something fishy about this graph charting AMD's push into Intel's server turf

Epyc chips nibble bits off Xeon's x86 revenue share