105

I see that a lot of docker images in the docker repository are made with an Ubuntu base.

What does that mean? Does each container bundle a stripped down version of the Linux kernel?

Do containers sit on top of their own kernels? But I thought containers share the kernel of the host (which in some cases is boot2docker, a custom Tiny Core Linux build, and in others something like CoreOS).

EDIT: Clarifying the question a bit. Yes I know docker is a process container, not a full VM. But since there are "Ubuntu" containers in the official docker hub registry and other OSes like CentOS, what does it mean to run Ubuntu in a container?

Answer: Ahh it just dawned on me. It is the Ubuntu user land processes, containing apt-get and other configuration processes for a particular Ubuntu build. Similarly for CentOS. Docker is not single process, just single entry. So for these distributions the entry point is some sort of init process that spawns other processes.

Improve this question
1
  • 2
    "It is the Ubuntu user land processes," - not only processes, but also libraries.
    – osgx
    Commented Mar 14, 2015 at 19:08

3 Answers 3

Reset to default
58

Docker uses host OS kernel, there is no custom or additional kernel inside container. All containers which run on a machine are sharing this "host" kernel.

Wikipedia says http://en.wikipedia.org/wiki/Docker_(software) that

Docker uses resource isolation features of the Linux kernel such as cgroups and kernel namespaces to allow independent "containers" to run within a single Linux instance, avoiding the overhead of starting virtual machines.

cgroups, namespaces and LXC are features of Linux kernel to isolate groups of processes; there is still single kernel, single scheduler, and one instance of kernel memory manager.

Boot2docker and CoreOS are just lightweight Linux distributions with some host kernel; they can be used to load Docker containers.

http://boot2docker.io/

boot2docker is a lightweight Linux distribution based on Tiny Core Linux made specifically to run Docker containers. It runs completely from RAM, weighs ~27MB and boots in ~5s (YMMV).

http://en.wikipedia.org/wiki/CoreOS

A single control host (CoreOS instance) runs multiple isolated Linux systems (containers), using Docker as an additional layer of abstraction and interface[14] to the underlying operating-system-level virtualization features of the Linux kernel. ... This approach relies on the Linux kernel's cgroups functionality, which provides namespace isolation and abilities to limit, account and isolate resource usage (CPU, memory, disk I/O, etc.) for the collections of processes.

Improve this answer
5
  • 2
    This doesn't answer the question.
    – EML
    Commented Mar 26, 2017 at 10:10
  • 3
    EML, which question? By default all Docker containers have no own kernels. There is only one host kernel for all Docker containers.
    – osgx
    Commented Mar 26, 2017 at 14:00
  • sure, your answer is fine in as far as it goes, but the OP wanted to know why he must FROM a Ubuntu base image when the host is already running Ubuntu. To answer the question you have to explain what a base image is.
    – EML
    Commented Mar 26, 2017 at 14:50
  • 4
    EML, the question was edited with "Clarifying"(superuser.com/posts/889472/revisions) after my answer had been posted, so it is answer to original question without clarification. If you have some information to share about base images and kernels in docker, add another answer.
    – osgx
    Commented Mar 26, 2017 at 15:05
  • 1
    Is the boot2docker link dead? It is telling me something about washing backpacks...
    – SOFe
    Commented Dec 8, 2020 at 13:51
30

In almost all cases, the host OS kernel is shared. To run a different kernel you need to use virtualization. This is rare and only used when necessary due to performance degradation.

"The Docker Engine container comprises just the application and its dependencies. It runs as an isolated process in userspace on the host operating system, sharing the kernel with other containers. Thus, it enjoys the resource isolation and allocation benefits of VMs but is much more portable and efficient."

This might help explain how it works: enter image description here

Source: https://www.docker.com/whatisdocker/

Improve this answer
8
  • 4
    Any source for "Packages may use different kernels" ??? Docker itself can't use several kernels, there is always only single host kernel. Only when combined with hypervisor (virtualization) we can start several hosts each with own kernel version and run one Docker per virtual host; but for any host there will be only one kernel for host and for its Docked containers)
    – osgx
    Commented Mar 14, 2015 at 6:46
  • 2
    What is package? Docker container has no kernel inside it; it just installed and started on the kernel which is used on the host. So: one Docker = one server = one kernel, just as shown in picture. No way to use two kernels with single Docker engine; all containers inside this engine will use same kernel. I think correct answer is "No, Docker containers can't use different kernels within single instance of Docker Engine"
    – osgx
    Commented Mar 14, 2015 at 6:58
  • 1
    Each docker container can run whatever code it wants, including virtualization software that is able to load any kernel your software may require. You can run Windows in a container if you want to.
    – JeremiahBarrar
    Commented Mar 14, 2015 at 7:40
  • 1
    JeremiahBarrar, Got it, thank you for explanation. Is running virtualization software from inside of Docker container documented and is it supported by Docker? What kind of virtualization will work from Docker (software qemu, qemu+kvm, xen,...)?
    – osgx
    Commented Mar 14, 2015 at 8:10
  • 2
    This is a misleading answer.
    – Chris Beach
    Commented Sep 28, 2018 at 8:35
7

All the docker containers use the host kernel.

It would also mean, that some incompatibility between a host kernel and the container distro could cause problems. In theory. For example, if a containerized software would want to use some kernel feature what was not compiled into the host kernel, then it would not work.

The practice is that this does not happen. The main trouble source of the docker containers are the (often unexplainable) limitations of the docker itself, and not some host-guest kernel incompatibility.

(P.s. It is because practically all Linux distros work with any Linux kernel.)

Improve this answer
10
  • "practically all Linux distros work with any Linux kernel" - this is too broad a generalisation
    – scytale
    Commented Nov 28, 2021 at 0:34
  • @scytale That is the reality.
    – peterh
    Commented Nov 28, 2021 at 9:02
  • An image containing windows software will not run on a linux system only able to create linux kernel based containers from it.
    – Oliver Meyer
    Commented Jul 28, 2022 at 7:29
  • 1
    @SummerSun It won't. But it happens very rarely - practically all the tools and softwares what an ordinary user (and most developer) needs is supported by the current mainstream kernel. If a new, patched kernel X has a function Y, which is used by an essential software of your distro, then yes, that won't work. But I did not see such a thing since decades (although nothing prevents them to exist).
    – peterh
    Commented Oct 14, 2022 at 13:01
  • 1
    thanks @peterh! I get it. I just went through a cross-platform docker based project. For windows containers the host OS version (even windows build no.) must match with image OS closely, but on linux I can run ubuntu 18.04 container (kernel 4.15) on centos 7 host (kernel 3.10.0) with nothing wrong. That's why i have a doubt for kernel compability problem and find your answer. So I am not going to consider the compability issue for my project anymore XDDDD
    – Summer Sun
    Commented Oct 17, 2022 at 6:53

You must log in to answer this question.

Not the answer you're looking for? Browse other questions tagged .