Let’s break the workflow :
✅ When a request comes to start a #container, #kubelet calls the CRI that invokes the internal CRI-O daemon in the #kernel
✅ The daemon uses a compliant storage and image library on disk
✅ The CRI-O interacts with a remote registry to pull the image if not present on disk while the daemon exposes a [#grpc] server with endpoints to create, start, stop (and many more other actions) on the #containers.
✅ Under the hood, cri-o can use any OCI-compliant [low-level] runtimes to work with containers
✅ However the default one is again #runc that interacts with #linux kernel to invoke processes in namespace & #Cgroup context!
DevOps - DevSecOps - SRE Coach at Rent Bikes and Cars Now using MOTOSHARE
Join my following certification courses...
- DevOps Certified Professionals (DCP)
- Site Reliability Engineering Certified Professionals (SRECP)
- Master in DevOps Engineering (MDE)
- DevSecOps Certified Professionals (DSOCP)
URL - https://www.devopsschool.com/certification/
My Linkedin - https://www.linkedin.com/in/rajeshkumarin
- DevOps Certified Professionals (DCP)
- Site Reliability Engineering Certified Professionals (SRECP)
- Master in DevOps Engineering (MDE)
- DevSecOps Certified Professionals (DSOCP)
URL - https://www.devopsschool.com/certification/
My Linkedin - https://www.linkedin.com/in/rajeshkumarin
Latest posts by Rajesh Kumar (see all)
- Atlassian Jira Demo - January 4, 2025
- Revolutionizing Business Management with Microsoft Business Central - January 4, 2025
- Key Benefits of Converting HTML to PDF File Format - January 2, 2025
