C++ 開發中的 Docker 使用 (2) - 熱身
在這一篇裏,暫時把 C++ 放在一邊,先來單獨看一下 docker 怎麼用。其實主要仍是由於跟前面脫節過久,忘了當時想寫什麼了😂。node
下面進入正題linux
- 查看基本信息,經常使用的是
docker info
$ docker info Containers: 0 Running: 0 Paused: 0 Stopped: 0 Images: 115 Server Version: 18.09.2 Storage Driver: overlay2 Backing Filesystem: extfs Supports d_type: true Native Overlay Diff: true Logging Driver: json-file Cgroup Driver: cgroupfs Plugins: Volume: local Network: bridge host ipvlan macvlan null overlay Log: awslogs fluentd gcplogs gelf journald json-file local logentries splunk syslog Swarm: inactive Runtimes: runc Default Runtime: runc Init Binary: docker-init containerd version: 9754871865f7fe2f4e74d43e2fc7ccd237edcbce runc version: 09c8266bf2fcf9519a651b04ae54c967b9ab86ec init version: fec3683 Security Options: seccomp Profile: default Kernel Version: 4.9.125-linuxkit Operating System: Docker for Mac OSType: linux Architecture: x86_64 CPUs: 2 Total Memory: 1.952GiB Name: linuxkit-025000000001 ID: ZC3Y:VIOJ:ZU26:TBJY:F3LA:TCC2:3QPN:BMQM:5EKU:HWU7:5JX5:UTTK Docker Root Dir: /var/lib/docker Debug Mode (client): false Debug Mode (server): true File Descriptors: 24 Goroutines: 50 System Time: 2019-04-07T07:34:25.691475611Z EventsListeners: 2 HTTP Proxy: gateway.docker.internal:3128 HTTPS Proxy: gateway.docker.internal:3129 Registry: https://index.docker.io/v1/ Labels: Experimental: true Insecure Registries: 127.0.0.0/8 Registry Mirrors: https://registry.docker-cn.com/ Live Restore Enabled: false Product License: Community Engine
一般用於查驗的幾個信息docker
# cli 鏈接的 docker 服務的版本 Server Version: 18.09.2 # docker 服務使用的存儲驅動,當下的建議是 overlay2,會比 aufs 好一些 Storage Driver: overlay2 # 支持的數據卷、網絡和日誌插件,能夠用來確認本身能折騰哪些 Plugins: Volume: local Network: bridge host ipvlan macvlan null overlay Log: awslogs fluentd gcplogs gelf journald json-file local logentries splunk syslog # 後面會講到一個特別輕量的集羣方式,雖然有傳言說 docker 官方想放棄,至少目前仍是很是好用 Swarm: inactive # 檢查存儲的大頭放在哪兒了,確保這個位置對應的剩餘磁盤空間和 inode 都足夠多(free inode 1M 起,測試環境) Docker Root Dir: /var/lib/docker # 倉庫相關的信息,尤爲是官方鏡像有沒有配好 Registry: https://index.docker.io/v1/ Insecure Registries: 127.0.0.0/8 Registry Mirrors: https://registry.docker-cn.com/
- 瞭解完本身把 docker 安裝成了什麼樣以後,再來看看 cli 都提供了哪些功能
$ docker
Usage: docker [OPTIONS] COMMAND
A self-sufficient runtime for containers
Options:
--config string Location of client config files (default "/Users/maxwell/.docker")
-D, --debug Enable debug mode
-H, --host list Daemon socket(s) to connect to
-l, --log-level string Set the logging level ("debug"|"info"|"warn"|"error"|"fatal")
(default "info")
--tls Use TLS; implied by --tlsverify
--tlscacert string Trust certs signed only by this CA (default
"/Users/user/.docker/ca.pem")
--tlscert string Path to TLS certificate file (default "/Users/user/.docker/cert.pem")
--tlskey string Path to TLS key file (default "/Users/user/.docker/key.pem")
--tlsverify Use TLS and verify the remote
-v, --version Print version information and quit
Management Commands:
builder Manage builds
checkpoint Manage checkpoints
config Manage Docker configs
container Manage containers
image Manage images
network Manage networks
node Manage Swarm nodes
plugin Manage plugins
secret Manage Docker secrets
service Manage services
stack Manage Docker stacks
swarm Manage Swarm
system Manage Docker
trust Manage trust on Docker images
volume Manage volumes
Commands:
attach Attach local standard input, output, and error streams to a running container
build Build an image from a Dockerfile
commit Create a new image from a container's changes
cp Copy files/folders between a container and the local filesystem
create Create a new container
deploy Deploy a new stack or update an existing stack
diff Inspect changes to files or directories on a container's filesystem
events Get real time events from the server
exec Run a command in a running container
export Export a container's filesystem as a tar archive
history Show the history of an image
images List images
import Import the contents from a tarball to create a filesystem image
info Display system-wide information
inspect Return low-level information on Docker objects
kill Kill one or more running containers
load Load an image from a tar archive or STDIN
login Log in to a Docker registry
logout Log out from a Docker registry
logs Fetch the logs of a container
pause Pause all processes within one or more containers
port List port mappings or a specific mapping for the container
ps List containers
pull Pull an image or a repository from a registry
push Push an image or a repository to a registry
rename Rename a container
restart Restart one or more containers
rm Remove one or more containers
rmi Remove one or more images
run Run a command in a new container
save Save one or more images to a tar archive (streamed to STDOUT by default)
search Search the Docker Hub for images
start Start one or more stopped containers
stats Display a live stream of container(s) resource usage statistics
stop Stop one or more running containers
tag Create a tag TARGET_IMAGE that refers to SOURCE_IMAGE
top Display the running processes of a container
unpause Unpause all processes within one or more containers
update Update configuration of one or more containers
version Show the Docker version information
wait Block until one or more containers stop, then print their exit codes
Run 'docker COMMAND --help' for more information on a command.
須要注意的是顯示的信息內分紅了 Management Commands 和 Commands 兩部分,其中 Commands 是早期的命令,把容器和鏡像的命令混雜在一塊兒,隨着 volume、network、swarm 等不斷加入,後綴開始不夠用的了(rmi 的 i 是 image),因而就有告終構更加清晰的 Management Commands 系列。json
按照官方說法,Commands 中操做鏡像和容器的命令未來會取消,已經不推薦使用了。所以,那些百度來的 docker run / docker ps 之類的教程如今能夠關掉了(固然,想反駁的話能夠說,docker 官方文檔裏的老文檔也還沒更新呢)。ubuntu
咱們還能夠繼續向下探索,好比看一下 container 命令能夠提供什麼bash
$ docker container --help Usage: docker container COMMAND Manage containers Commands: attach Attach local standard input, output, and error streams to a running container commit Create a new image from a container's changes cp Copy files/folders between a container and the local filesystem create Create a new container diff Inspect changes to files or directories on a container's filesystem exec Run a command in a running container export Export a container's filesystem as a tar archive inspect Display detailed information on one or more containers kill Kill one or more running containers logs Fetch the logs of a container ls List containers pause Pause all processes within one or more containers port List port mappings or a specific mapping for the container prune Remove all stopped containers rename Rename a container restart Restart one or more containers rm Remove one or more containers run Run a command in a new container start Start one or more stopped containers stats Display a live stream of container(s) resource usage statistics stop Stop one or more running containers top Display the running processes of a container unpause Unpause all processes within one or more containers update Update configuration of one or more containers wait Block until one or more containers stop, then print their exit codes Run 'docker container COMMAND --help' for more information on a command.
再來看下 docker container run 能幹什麼網絡
$ docker container run --help
Usage: docker container run [OPTIONS] IMAGE [COMMAND] [ARG...]
Run a command in a new container
Options:
--add-host list Add a custom host-to-IP mapping (host:ip)
-a, --attach list Attach to STDIN, STDOUT or STDERR
--blkio-weight uint16 Block IO (relative weight), between 10 and 1000, or 0 to
disable (default 0)
--blkio-weight-device list Block IO weight (relative device weight) (default [])
--cap-add list Add Linux capabilities
--cap-drop list Drop Linux capabilities
--cgroup-parent string Optional parent cgroup for the container
--cidfile string Write the container ID to the file
--cpu-period int Limit CPU CFS (Completely Fair Scheduler) period
--cpu-quota int Limit CPU CFS (Completely Fair Scheduler) quota
--cpu-rt-period int Limit CPU real-time period in microseconds
--cpu-rt-runtime int Limit CPU real-time runtime in microseconds
-c, --cpu-shares int CPU shares (relative weight)
--cpus decimal Number of CPUs
--cpuset-cpus string CPUs in which to allow execution (0-3, 0,1)
--cpuset-mems string MEMs in which to allow execution (0-3, 0,1)
-d, --detach Run container in background and print container ID
--detach-keys string Override the key sequence for detaching a container
--device list Add a host device to the container
--device-cgroup-rule list Add a rule to the cgroup allowed devices list
--device-read-bps list Limit read rate (bytes per second) from a device (default [])
--device-read-iops list Limit read rate (IO per second) from a device (default [])
--device-write-bps list Limit write rate (bytes per second) to a device (default [])
--device-write-iops list Limit write rate (IO per second) to a device (default [])
--disable-content-trust Skip image verification (default true)
--dns list Set custom DNS servers
--dns-option list Set DNS options
--dns-search list Set custom DNS search domains
--entrypoint string Overwrite the default ENTRYPOINT of the image
-e, --env list Set environment variables
--env-file list Read in a file of environment variables
--expose list Expose a port or a range of ports
--group-add list Add additional groups to join
--health-cmd string Command to run to check health
--health-interval duration Time between running the check (ms|s|m|h) (default 0s)
--health-retries int Consecutive failures needed to report unhealthy
--health-start-period duration Start period for the container to initialize before
starting health-retries countdown (ms|s|m|h) (default 0s)
--health-timeout duration Maximum time to allow one check to run (ms|s|m|h)
(default 0s)
--help Print usage
-h, --hostname string Container host name
--init Run an init inside the container that forwards signals
and reaps processes
-i, --interactive Keep STDIN open even if not attached
--ip string IPv4 address (e.g., 172.30.100.104)
--ip6 string IPv6 address (e.g., 2001:db8::33)
--ipc string IPC mode to use
--isolation string Container isolation technology
--kernel-memory bytes Kernel memory limit
-l, --label list Set meta data on a container
--label-file list Read in a line delimited file of labels
--link list Add link to another container
--link-local-ip list Container IPv4/IPv6 link-local addresses
--log-driver string Logging driver for the container
--log-opt list Log driver options
--mac-address string Container MAC address (e.g., 92:d0:c6:0a:29:33)
-m, --memory bytes Memory limit
--memory-reservation bytes Memory soft limit
--memory-swap bytes Swap limit equal to memory plus swap: '-1' to enable
unlimited swap
--memory-swappiness int Tune container memory swappiness (0 to 100) (default -1)
--mount mount Attach a filesystem mount to the container
--name string Assign a name to the container
--network string Connect a container to a network (default "default")
--network-alias list Add network-scoped alias for the container
--no-healthcheck Disable any container-specified HEALTHCHECK
--oom-kill-disable Disable OOM Killer
--oom-score-adj int Tune host's OOM preferences (-1000 to 1000)
--pid string PID namespace to use
--pids-limit int Tune container pids limit (set -1 for unlimited)
--platform string Set platform if server is multi-platform capable
--privileged Give extended privileges to this container
-p, --publish list Publish a container's port(s) to the host
-P, --publish-all Publish all exposed ports to random ports
--read-only Mount the container's root filesystem as read only
--restart string Restart policy to apply when a container exits (default "no")
--rm Automatically remove the container when it exits
--runtime string Runtime to use for this container
--security-opt list Security Options
--shm-size bytes Size of /dev/shm
--sig-proxy Proxy received signals to the process (default true)
--stop-signal string Signal to stop a container (default "SIGTERM")
--stop-timeout int Timeout (in seconds) to stop a container
--storage-opt list Storage driver options for the container
--sysctl map Sysctl options (default map[])
--tmpfs list Mount a tmpfs directory
-t, --tty Allocate a pseudo-TTY
--ulimit ulimit Ulimit options (default [])
-u, --user string Username or UID (format: <name|uid>[:<group|gid>])
--userns string User namespace to use
--uts string UTS namespace to use
-v, --volume list Bind mount a volume
--volume-driver string Optional volume driver for the container
--volumes-from list Mount volumes from the specified container(s)
-w, --workdir string Working directory inside the container
- 看了上面的幫助文檔,貌似咱們能夠乾點兒什麼了,能夠試試這個命令
$ docker container run hello-world
Unable to find image 'hello-world:latest' locally
latest: Pulling from library/hello-world
1b930d010525: Pull complete
Digest: sha256:2557e3c07ed1e38f26e389462d03ed943586f744621577a99efb77324b0fe535
Status: Downloaded newer image for hello-world:latest
Hello from Docker!
This message shows that your installation appears to be working correctly.
To generate this message, Docker took the following steps:
1. The Docker client contacted the Docker daemon.
2. The Docker daemon pulled the "hello-world" image from the Docker Hub.
(amd64)
3. The Docker daemon created a new container from that image which runs the
executable that produces the output you are currently reading.
4. The Docker daemon streamed that output to the Docker client, which sent it
to your terminal.
To try something more ambitious, you can run an Ubuntu container with:
$ docker run -it ubuntu bash
Share images, automate workflows, and more with a free Docker ID:
https://hub.docker.com/
For more examples and ideas, visit:
https://docs.docker.com/get-started/
實際上輸出的前 5 行跟後面的是兩個不一樣的階段,前面實際上是在下載本地不存在的鏡像,當再次運行命令時就不會有這 5 行了。然後面的輸出其實是運行了一個執行完就退出的容器,執行結果就是輸出了這些內容。app
- 看看執行留下的痕跡
$ docker container ls -a CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES cef4a37a529e hello-world "/hello" 2 minutes ago Exited (0) 2 minutes ago epic_ride 916b416a6d4e hello-world "/hello" 3 minutes ago Exited (0) 3 minutes ago sharp_lewin
我運行了 2 次,因此有 2 行輸出。由於這些容器並不是正在運行的,因此須要 -a 參數把沒在運行的也包含進來,相似於 ls -a 查看隱藏文件。只看正在運行的容器就只須要 docker container ls 就能夠了。dom
- 每當建立一個容器時,鏡像原有的部分是共享的不會複製到容器中,而是會建立一個新的層用於寫入,新的層與鏡像疊加的結果是這個容器中看到的數據。不運行的容器多了也會佔用空間,能夠用這個命令刪除
$ docker container rm c c
還記得前面 docker container ls -a 的輸出中的 cef4a37a529e 嗎?輸入 container id 的前幾位,只要沒有重複就能夠指示一個容器,在這個例子裏僅輸入 c 就能夠了。除此以外還能夠用名字刪除socket
$ docker container rm sharp_lewin sharp_lewin
操做完以後已經什麼都沒有了
$ docker container ls -a CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
- 鏡像也不想要了怎麼辦?有
Management Commands的好處是命令都是結構化的,很容易能夠猜到怎麼查看鏡像和怎麼刪除鏡像
$ docker image ls REPOSITORY TAG IMAGE ID CREATED SIZE hello-world latest fce289e99eb9 3 months ago 1.84kB $ docker image rm fce Untagged: hello-world:latest Untagged: hello-world@sha256:2557e3c07ed1e38f26e389462d03ed943586f744621577a99efb77324b0fe535 Deleted: sha256:fce289e99eb9bca977dae136fbe2a82b6b7d4c372474c9235adc1741675f587e Deleted: sha256:af0b15c8625bb1938f1d7b17081031f649fd14e6b233688eea3c5483994a66a3
一樣的 docker image rm hello-world 也能夠起到相同的做用。
今天的熱身就到這裏了,用 Windows 和 macOS 的讀者能夠點開 Docker 圖標看看有個叫 Kitematic 的東西,若是不喜歡 cli 能夠試試它。
相關文章
- 1. C++ 開發中的 Docker 使用 (0) - 前言
- 2. Linux中docker的使用(2)
- 3. C++ 開發中的 Docker 使用 (1) - 安裝部署
- 4. 使用docker構建本身的php7+nginx開發環境
- 5. 【Docker】2.使用Docker鏡像
- 6. 使用Docker開發NodeJs APP
- 7. 使用Python開發IOT Edge應用(2)
- 8. Centos7中的docker使用教程(2)
- 9. Unity3D開發中熱更新爲何不能使用C#的思考
- 10. docker在web開發中得使用流程是怎樣的?
- 更多相關文章...
- • Docker 鏡像使用 - Docker教程
- • Docker 容器使用 - Docker教程
- • C# 中 foreach 遍歷的用法
- • PHP開發工具
相關標籤/搜索
每日一句
-
每一个你不满意的现在,都有一个你没有努力的曾经。
最新文章
歡迎關注本站公眾號,獲取更多信息
