Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Is it "safe" to commit a running container in docker?

Tags:

docker

As the title goes, safe means... the proper way?

Safe = consistent, no data loss, professional, legit way.

Hope to share some experiences with pro docker users.

Q. Commit is safe for running docker containers (with the exception of rapidly changing realtime stuff and database stuff, your own commentary is appreciated.)

Yes or No answer is accepted with comment. Thanks.

like image 971
stashfree Avatar asked Dec 04 '14 07:12

stashfree

1 Answers

All memory and harddisk storage is saved inside the container instance. You should, as long as you don't use any external mounts/docker volumes and servers (externally connected DBs?) never get in trouble for stopping/restarting and comitting dockers. Please read on to go more in depth on this topic.

A question that you might want to ask yourself initially, is how does docker store changes that it makes to its disk on runtime? What is really sweet to check out, is how docker actually manages to get this working. The original state of the container's hard disk is what is given to it from the image. It can NOT write to this image. Instead of writing to the image, a diff is made of what is changed in the containers internal state in comparison to what is in the docker image. Docker uses a technology called "Union Filesystem", which creates a diff layer on top of the initial state of the docker image.

This "diff" (referenced as the writable container in the image below) is stored in memory and disappears when you delete your container. When you use docker commit, the writable container that is retained in the temporary "state" of the container is stored inside a new image, however: I don't recommend this. The state of your new docker image is not represented in a dockerfile and can not easily be regenerated from a rebuild. Making a new dockerfile should not be hard. So that is alway the way-to-go for me personally.

When your docker is working with mounted volumes, external servers/DBs, you might want to make sure you don't get out of sync and temporary stop your services inside the docker container. When you would use a dockerfile you can start up a bootstrap shell script inside your container to start up connections, perform checks and initialize the running process to get your application durably set up. Again, running a committed container makes it harder to do something like this.

Union Filesystem

like image 168
RoyB Avatar answered Oct 06 '22 01:10

RoyB
Sign in to Comment

Related questions

Docker trouble with too many link
docker service update vs docker stack deploy with existing stack
Device or resource busy - Docker
Trouble connecting to SQL Server with sqlcmd from inside Docker
Kubernetes Minikube Docker trying and failing to pull image
Customizing RStudio environment in Docker container
How to add pod dependency in kubernetes as like 'depends_on' in docker-compose.yml
Docker Mac alternative to --net=host
Kubernetes support for docker user namespace remapping
Error connecting: Error while fetching server API version: Ansible
Sequelize cannot sync to MySQL in a docker container from Node/express app (ECONNREFUSED)
Why do "docker run -t" outputs include \r in the command output?
Docker and file locking
Docker build fails "COPY failed: no source files were specified"
Build X86 docker image on ARM?
Headless chromium in ubuntu docker container
GitHub Codespaces: how to set x86_64, AMD64, ARM64 platform?
Editing files using editors in Docker with Vagrant (on Mac)
Shared Volume in Docker through Vagrant
How does Docker share resources

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!