Post Ax5z6vxvP0Xh4Ap8nw by alxlg@mastodon.social
(DIR) More posts by alxlg@mastodon.social
(DIR) Post #Ax5VjOxj2nNlNT9oga by darkghosthunter@mastodon.social
2025-08-11T22:57:05Z
0 likes, 0 repeats
Very glad that Docker (and containers) exists.You don't know how tedious is to set up a development environment to fix one line.It would be great if you could mount a file as a filesystem but I guess the performance penalty would be greater than... well, just mounting a folder.#Docker #Programming #Software #SoftwareDevelopment #Containers #OCI #WebDevelopment #Coding #Code #Rancher #Podman
(DIR) Post #Ax5VjQHy71AXUXdUsS by sharlatan@mastodon.social
2025-08-11T23:00:12Z
0 likes, 0 repeats
@darkghosthunter why not #Nix or #Guix?
(DIR) Post #Ax5VjRlmbec05IaozI by alxlg@mastodon.social
2025-08-11T23:37:09Z
0 likes, 0 repeats
@sharlatan @darkghosthunter All-in-one solutions like Java failed. Containers are agnostic to whatever method you use to build images. You can use Nix or Guix to build containers images if you like Nix or Guix. But replacing containers with Nix or Guix? It's just a step back to entangling concerns that containers finally disentangled...
(DIR) Post #Ax5VjSOQHzWK18fgDQ by sharlatan@mastodon.social
2025-08-11T23:50:39Z
1 likes, 0 repeats
@alxlg @darkghosthunter I'm not sure I've followed your reasoning :blobpats:Containers just wrap the mess leaving without elegant solution, and there is 0 guarantee of bit-to-bit reproducibility
(DIR) Post #Ax5VnD4HD0qje82Nf6 by alxlg@mastodon.social
2025-08-12T00:04:01Z
0 likes, 0 repeats
@sharlatan @darkghosthunter Nix and Guix are about reproducibility of the deployment, if you have no build reproducibility saying "bit-to-bit reproducibility" is misleading.You can have the former with containers too, depending on how you build the images and you can build those with Nix and Guix if you prefer them.Why would you entangle again the build phase, the packaging phase and the deployment phase when containers allow you to choose and mix whatever you want for each phase?
(DIR) Post #Ax5VnE03kB4QXL4WjA by alxlg@mastodon.social
2025-08-12T00:10:53Z
0 likes, 0 repeats
@sharlatan @darkghosthunter> Containers just wrap the mess leaving without elegant solutionI think you are familiar only with mess by other people. What other people choose to do with containers doesn't prevent you from using containers as tools. If you really like Nix/ Guix, then containers are a tool to deploy whatever you put together with Nix/GuixI can't understand why you would see containers and Nix/Guix as competitors. Maybe this is a "Java syndrome" as opposed to Unix philosophy?
(DIR) Post #Ax5VnEokhhcV4Yn0k4 by alxlg@mastodon.social
2025-08-12T00:15:43Z
0 likes, 0 repeats
@sharlatan @darkghosthunter About Nix/Guix reproducibility check this please:https://linderud.dev/blog/nixos-is-not-reproducible/
(DIR) Post #Ax5VnFWM5aUxFnBpho by darkghosthunter@mastodon.social
2025-08-12T00:27:14Z
0 likes, 0 repeats
@alxlg @sharlatan Same here. OCI are highly reproducible, surprisingly more than I hoped for. #Nix are great... for deploying an OS and let it change through time.I don't have too much experience for Nix, except what my coworkers used for their agency, that there is a reason why they use OCI for their software work.
(DIR) Post #Ax5VnG8dnF7hAX6PNg by kirschwipfel@nerdculture.de
2025-08-12T07:19:29Z
1 likes, 0 repeats
> OCI are highly reproducible, surprisingly more than I hoped for.Hmm, almost all Docker files I've seen so far start with some variant if "FROM some-os:version" or are based on an image build like this and contain "RUN apt install some-package". I wonder how this is reproducible, given that both the base image and the version of some-package may change at any time.(I can't remember I've ever seen images build from an empty one and defining precise versions of all the components to be installed. Even instructions how to build from an empty image are rare and quite hidden - and " best" practice is not to so this.)@darkghosthunter @alxlg @sharlatan
(DIR) Post #Ax5z6uAc4rVHUwkFIu by sharlatan@mastodon.social
2025-08-12T06:53:44Z
0 likes, 0 repeats
@alxlg @darkghosthunter it's not relevant, see: https://guix.gnu.org/manual/en/html_node/Reduced-Binary-Seed-Bootstrap.html
(DIR) Post #Ax5z6utzM9ndlfyU1w by alxlg@mastodon.social
2025-08-12T08:03:14Z
0 likes, 0 repeats
@sharlatan @darkghosthunter Are you sure that is the page you wanted to share? It seems completely unrelated to reproducible builds:https://en.wikipedia.org/wiki/Reproducible_buildsOtherwise please explain how they are related.
(DIR) Post #Ax5z6vRfKwjpS7jNWS by sharlatan@mastodon.social
2025-08-12T11:20:51Z
0 likes, 0 repeats
@alxlg @darkghosthunter I think so, it highlighted the minimal verifiable seedMore academic one: https://www.nature.com/articles/s41597-022-01720-9
(DIR) Post #Ax5z6vxvP0Xh4Ap8nw by alxlg@mastodon.social
2025-08-12T11:50:42Z
0 likes, 0 repeats
@sharlatan @darkghosthunter Do you understand the difference between reproducible builds and reproducible deployments as explained in the article I shared?If yes why do you think Nix and Guix are special with reference to *reproducible builds* compared to Debian, Fedora etc?
(DIR) Post #Ax5z6wZ9AcJgvcErp2 by sharlatan@mastodon.social
2025-08-12T13:08:16Z
1 likes, 0 repeats
@alxlg @darkghosthunter I think so, I refer to this statement from the wiki page you shared: "Source code compiled using deterministic compilation will always output the same binary."In that light none of the images build with OCI/Docker can't guarantee it in other words it's not the right tool to atcheav it."reproducibility" was mentioned with bit-to-bit in mind not that I can run something and have something but every time a little different 😉