New Package Request: LXD #1319
Description
Package name and purpose
LXD is a modern, secure and powerful system container and virtual machine manager. It provides a unified experience for running and managing full Linux systems inside containers.
- Package upstream repo: https://github.com/canonical/lxd
- Gentoo ebuild: https://github.com/gentoo/gentoo/blob/master/app-containers/lxd/lxd-5.20.ebuild
Impact of adding this package to the Flatcar OS image
The ability to run container workload types other than Docker when a Docker image is unavailable or not the best fit.
The package improves on the following core values:
- Secure by default
- Always up to date
- Improve container experience
- Operate at scale / automation / telemetry
The package will increase the image size by: 4 MBytes.
How might this package increase the attack surface:
- Arguably similar to running Docker depending on configuration. The container itself might be more exposed with more services running and more ports open. However, LXC containers run unprivileged by default, so the host is relatively protected if the container is compromised.
Benefits of adding this package
LXD/LXC provides a means of deploying workloads that do not have Docker implementations or where Docker is not suitable for running the required application. In addition, LXC could be used alongside Docker to host elements of an application stack not runnable as Docker containers in a hybrid deployment.
Additional information
[ Please add any information that does not fit into any of the above sections here ]