CODEBROWSER

KDAB|Training

Expertise

Trusted Software Excellence across Desktop and Embedded

Take a glance at the areas of expertise where KDAB excels ranging from swift troubleshooting, ongoing consulting and training to multi-year, large-scale software development projects.

Find out why customers from innovative industries rely on our extensive expertise, including Medical, Biotech, Science, Renewable Energy, Transportation, Mobility, Aviation, Automation, Electronics, Agriculture and Defense.

Embedded Devices Embedded Devices

High-quality Embedded Engineering across the Stack

To successfully develop an embedded device that meets your expectations regarding quality, budget and time to market, all parts of the project need to fit perfectly together.

Learn more about KDAB's expertise in embedded software development.

Read More

Cross-platform Desktop Cross-platform Desktop

Create complex Applications for the Desktop

Where the capabilities of modern mobile devices or web browsers fall short, KDAB engineers help you expertly architect and build high-functioning desktop and workstation applications.

Read More

Medical Medical

Extensible, Safety-compliant Software for the Medical Sector

Create intelligent, patient-focused medical software and devices and stay ahead with technology that adapts to your needs.

KDAB offers you expertise in developing a broad spectrum of clinical and home-healthcare devices, including but not limited to, internal imaging systems, robotic surgery devices, ventilators and non-invasive monitoring systems.

Read More

Vehicle Dashboards Vehicle Dashboards

Fluid animations and gesture-controlled UIs

Building digital dashboards and cockpits with fluid animations and gesture-controlled touchscreens is a big challenge.

In over two decades of developing intricate UI solutions for cars, trucks, tractors, scooters, ships, airplanes and more, the KDAB team has gained market leading expertise in this realm.

Read More

Custom Industrial HMI Custom Industrial HMI

Build on Advanced Expertise when creating Modern UIs

KDAB assists you in the creation of user-friendly interfaces designed specifically for industrial process control, manufacturing, and fabrication.

Our specialties encompass the custom design and development of HMIs, enabling product accessibility from embedded systems, remote desktops, and mobile devices on the move.

Read More

Modernizing Legacy Software Modernizing Legacy Software

Reduce Technical Debt

Legacy software is a growing but often ignored problem across all industries. KDAB helps you elevate your aging code base to meet the dynamic needs of the future.

Whether you want to migrate from an old to a modern GUI toolkit, update to a more recent version, or modernize your code base, you can rely on over 25 years of modernization experience.

Read More

Services

Software Consulting, Development and Training

KDAB offers a wide range of services to address your software needs including consulting, development, workshops and training tailored to your requirements.

Our expertise spans cross-platform desktop, embedded and 3D application development, using the proven technologies for the job.

Software Consulting Software Consulting

Guidance for your Software Project across the Stack

Get expert advice on any phase of your project's journey, from inception to execution, across multiple platforms and hardware.

KDAB provides guidance on architectural approach, UI strategy, development tooling, test infrastructure, deployment model, runtime execution and more.

Read More

Code Modernization

UI Modernization

CI/CD

Performance optimization

Software Architecture

Migration from legacy frameworks

Qt Services Qt Services

Expert Qt Solutions for Your Needs

When working with KDAB, the first-ever Qt consultancy, you benefit from a deep understanding of Qt internals, that allows us to provide effective solutions, irrespective of the depth or scale of your Qt project.

Qt Services include developing applications, building runtimes, mixing native and web technologies, solving performance issues, and porting problems.

Read More

Qt 5 to Qt 6 Migration Services

Embedded Development Embedded Development

Build rich embedded applications for your embedded UI

Turn your vision into reality and unleash the potential of your embedded development projects.

KDAB helps you navigate the complex landscape of embedded development, ensuring your software performs optimally on your chosen hardware.

Read More

Cross-platform Development Cross-platform Development

Get help with all Aspects of Desktop Applications

KDAB helps create commercial, scientific or industrial desktop applications from scratch, or update its code or framework to benefit from modern features.

Discover clean, efficient solutions that precisely meet your requirements.

Read More

3D Software 3D Software

Simplify the complexity of 3D

Creating 3D applications can be overwhelming due to terminology, visual concepts, and advanced math.

KDAB simplifies this task, providing you with the best solution for your 3D project, easing complexities and maximizing efficiency.

Read More

OpenGL Expert Services

Vulkan

Developer Training Developer Training

Professional Developer Training Courses

Boost your team's programming skills with in-depth, constantly updated, hands-on training courses delivered by active software engineers who love to teach and share their knowledge.

Our courses cover Modern C++, Qt/QML, Rust, 3D programming, Debugging, Profiling and more.

Read More

Technologies

Make the right Technology Choices

The collective expertise of KDAB's engineering team is at your disposal to help you choose the software stack for your project or master domain-specific challenges.

Our particular focus is on software technologies you use for cross-platform applications or for embedded devices.

Qt / QML Qt / QML

Leading Qt Expertise

Since 1999, KDAB has been the largest independent Qt consultancy worldwide and today is a Qt Platinum partner. Our experts can help you with any aspect of software development with Qt and QML.

Read More

Modern C++ Modern C++

Deep understanding of Modern C++

KDAB specializes in Modern C++ development, with a focus on desktop applications, GUI, embedded software, and operating systems.

Our experts are industry-recognized contributors and trainers, leveraging C++'s power and relevance across these domains to deliver high-quality software solutions.

Read More

Rust Rust

Integrate Rust into your application

KDAB can guide you incorporating Rust into your project, from as overlapping element to your existing C++ codebase to a complete replacement of your legacy code.

Read More

How to build Hybrid Rust and C++ Applications

Memory-Safety Roadmap for Secure Programming

Platforms Platforms

Unique Expertise for Desktop and Embedded Platforms

Whether you are using Linux, Windows, MacOS, Android, iOS or real-time OS, KDAB helps you create performance optimized applications on your preferred platform.

Read More

Windows

MacOS/iOS

QNX

Unix / X11 (Motif)

Android

Web Engines

Linux

Embedded Linux

Slint Slint

A lightweight GUI toolkit

If you are planning to create projects with Slint, a lightweight alternative to standard GUI frameworks especially on low-end hardware, you can rely on the expertise of KDAB being one of the earliest adopters and official service partner of Slint.

Read More

Flutter Flutter

Flutter for Embedded and Desktop

KDAB has deep expertise in embedded systems, which coupled with Flutter proficiency, allows us to provide comprehensive support throughout the software development lifecycle.

Our engineers are constantly contributing to the Flutter ecosystem, for example by developing flutter-pi, one of the most used embedders.

Read More

3D / OpenGL / Vulkan 3D / OpenGL / Vulkan

Cutting-edge 3D / XR

Incorporating 3D into 2D UIs or creating compelling XR experiences can be challenging.

Create visually stunning, ultra-realistic 3D graphics, dynamic 2D user interfaces, or leveraging the power of hardware-accelerated computation.

The 3D experts at KDAB bring incisive know-how for your project.

Read More

Qt 3D

Vulkan – next generation graphics & compute

OpenGL expert services

Developer Tools Developer Tools

Developer Tools from KDAB

The right tools and libraries can skyrocket developers' productivity.

Take advantage of KDAB's popular open source tools for tasks including profiling, debugging and continuous integration (CI).

Read More

GammaRay

KD Reports

KD Chart

Hotspot

KD SOAP

KDDockWidgets

KDAB Labs KDAB Labs

Research & Development at KDAB

KDAB invests significant time in exploring new software technologies to maintain its position as software authority. Benefit from this research and incorporate it eventually into your own project.

Read More

KDGpu

Resources

Start here to browse information on the KDAB website(s) and take advantage of useful developer resources like blogs, publications and videos about Qt, C++, Rust, 3D technologies like OpenGL and Vulkan, the KDAB developer tools and more.

Blogs Blogs

KDAB engineers and designers constantly share cutting-edge technology insights with regard to Qt, QML, C++, Rust, Linux, Vulkan, OpenGL, Qt 3D, scalable UIs and more topics.

Stay up-to-date and be inspired with their blogs.

Read More

Events Events

Get a quick overview of events relevant to the software industry and with involvment of KDAB, be it as speakers, sponsors, exhibitors or organizer.

Take the opportunity to reach out to our experts directly. See you there!

Read More

Publications Publications

KDAB regularly publishes in-depth papers, brochures and other material on topics relevant to software developers and desicion makers.

Have a look at the list of KDAB publictions.

Read More

Videos Videos

The KDAB Youtube channel has become a go-to source for developers looking for high-quality tutorial and information material around software development with Qt/QML, C++, Rust and other technologies.

Click to navigate the all KDAB videos directly on this website.

Read More

Why KDAB

A software supplier you can rely on

In over 25 years KDAB has served hundreds of customers from various industries, many of them having become long-term customers who value our unique expertise and dedication.

Learn more about KDAB as a company, understand why we are considered a trusted partner by many and explore project examples in which we have proven to be the right supplier.

About KDAB About KDAB

Committed, compassionate, trustworthy

The KDAB Group is a globally recognized provider for software consulting, development and training, specializing in embedded devices and complex cross-platform desktop applications.

Read more about the history, the values, the team and the founder of the company.

Read More

Proven Excellence Proven Excellence

Customer Success Stories

When working with KDAB you can expect quality software and the desired business outcomes thanks to decades of experience gathered in hundreds of projects of different sizes in various industries.

Have a look at selected examples where KDAB has helped customers to succeed with their projects.

Read More

Trusted Partner Trusted Partner

Benefit from a strong partner network

Lasting relationships reduce frictions in software development projects and help to guarantee success.

Benefit from the established relationships KDAB has with well-selected hardware suppliers and specialized domain experts.

Read More

Software Excellence for Texas Instruments

Better Software Better Software

Constantly improving Software Quality

KDAB is committed to developing high-quality and high-performance software, and helping other developers deliver to the same high standards.

We create software with pride to improve your engineering and your business, making your products more resilient and maintainable with better performance.

Read More

ISO 9001 ISO 9001

ISO 9001 certified software services

KDAB has been the first certified Qt consulting and software development company in the world, and continues to deliver quality processes that meet or exceed the highest expectations.

Read More

Working at KDAB Working at KDAB

Looking for a new challenge?

In KDAB we value practical software development experience and skills higher than academic degrees. We strive to ensure equal treatment of all our employees regardless of age, ethnicity, gender, sexual orientation, nationality.

Interested? Read more about working at KDAB and how to apply for a job in software engineering or business administration.

Read More

Contact

Search

Better_Software_Header_Mobile Better_Software_Header_Web

Find what you need - explore our website and developer resources

Containers - Cloud Tech Comes to Embedded

Till Adam ,

Sven Knebel

Advanced Search

Tags

embedded
Containers-thumb.jpg

Download PDF:

KDAB_whitepaper_Containers_in_Embedded_2020

Containers in embedded

Software developed for embedded applications is often distinct from its desktop and cloud cousins due to the constraints of embedded hardware and the integration of non-mainstream devices. But problem-solving technologies developed in other places tend to migrate to embedded systems once the hardware catches up. Containers are one of these – and they’re not just for cloud developers anymore.

While containerization is starting to appear in embedded, it is definitely not yet commonplace. At KDAB, we see the increasing interest in embedded containers come with a host of questions. What exactly are they, are they the right fit for my product, what advantages do they bring, what are the disadvantages, and are those disadvantages something we can live with?

This white paper provides a general overview of containers in embedded from our own knowledge, research, and experience, as well as that from our partner Toradex, a hardware vendor that is also an expert in embedded containers. Hopefully it will help you answer if now is the right time to add this technology to your embedded tool chest.

What is a container?

Containers are sometimes called “packaging abstractions” since they can wrap up a program along with all its dependences (binary executables, libraries, configuration files, etc) into a single, isolated executable environment. Although this description is true, it doesn’t communicate the true value of the technology.

People also often compare containers to lightweight virtual machines (VMs). This underscores one of the main use cases of containers: isolating multiple applications running on the same machine. While that description feels close to how containers are used in practice, it fails to deliver the right architectural sense. VMs are associated with hypervisors, full OS stacks, hard disk images, virtualized devices, and hardware-dependent isolation, all things a container doesn’t have.

A more appropriate analogue would be comparing a container to a super-powered chroot since a container bundles an application with all of the filesystem pieces it needs to operate. In other words, all the libraries, utilities, data, and configuration files that the app depends on during runtime. This part is like chroot – or a BSD jail, which is in fact the original genesis of the concept. In addition to the filesystem part, the container also gives the bundle dedicated namespace, memory, and networking views, insulating it from the rest of the system.

This is the container’s “superpower”, and it’s reliant on Linux namespace technology. (Although containers can operate on Windows too, Linux containers are much more common especially in embedded applications, and throughout this paper we’ll be describing containers in Linux terms.)

What is chroot?

A shortened form of “change root”, chroot changes the top-level root directory for a specified process to be somewhere else in the directory tree. The ancestor of today’s containers, chroot originally comes from Unix and allows the system to restrict the process to a limited subset of the computer’s file system. This prevents the process from being able to tamper with unrelated files even if it has (or is given) elevated privileges. This technique was commonly employed with applications such as web browsers, so that hackers would do limited damage if they exploited a vulnerability.

Benefits of containers

Containers have a lot of similarities to VMs without a comparatively heavy drain on resources, which is ideal from an embedded point-of- view. What are some practical benefits of this technology in day-to-day use?

In development

Although containers can be used on the embedded target (as we discuss later), embedded developers can also use them to great effect even if the containers are only used within the development environment and are never deployed on the target hardware. Here are several ways they’re useful.

Guaranteed toolkits

Developers can place their development tools into a container, which allows them to use tools on multiple platforms without an installation. This helps ensure all team members are using the exact same tools and build environment. It also makes it trivial to spin up a new development environment for new developers or new machines. And it can guarantee that the build server is always using the same tools as the development team.

Different tool chains

Separate containers can hold different variants of a tool chain. This lets developers test an application against multiple tool chains without worrying about how those tool chains can co-exist, or whether they’re installed correctly. It allows developers to tinker with experimental software in a controlled way without polluting their development environment. And developers can make software patches against an older version of tools when the mainline development has already moved to a later release.

Multistage containers

With multistage containers, developers can create a container structure that layers the development environment on top of the production environment. That way, all of the tools that developers rely on to create software are stripped out safely without impacting the production build.

Complete snapshot

Because containers are easily versioned, it’s easier to snapshot the entire runtime environment for branches, forks, and releases. This tight control also helps when certifying software, allowing external auditors to identify exactly what software and libraries are in use.

Distributed deployment

It’s easier to build complex distributed systems with containers since they support modular software building and deployment. This is becoming especially important in IoT, industrial, and automation applications, where you need to orchestrate many different components over a long period of time at scale.

The power behind containers: namespaces

Namespaces are the Linux technology that container software uses to implement process isolation. They provide the ability to control which resources an application can see and how they appear. These resources are divided into different domains; here are some of the most common.

mnt – mount points of the namespace; in other words, the process’ view of the file system. Mounts give the container the ability to use its own files (from the host system) or share files between containers

pid – process IDs (PIDs), independent for each container. The pid namespace follows the same behavior as Linux in general, such as the first process within the namespace is assigned a PID of 1 and terminating this process will end all other processes within the namespace

net – a virtualized network stack that has its own devices, IP addresses, routing, firewall, sockets, etc. The network resources within a namespace may be redirected back to net- work resources within the parent namespace

ipc – inter process communication, such as messages, semaphores, or shared memory, letting processes in different namespaces use the same names for objects without having them collide at a system level

user – the creation of independent non-conflicting user ids for each name space

With targets

Using containers on an embedded target provides additional benefits beyond the development sphere. Containers make it much easier to develop software that’s hardware independent, minimizing the pain of switching between hardware platforms or hardware vendors. This hardware flexibility supports a development workflow and configuration management system that’s needed to deliver multiple product variants or scalable product families from a single code base.

There are other benefits too. Placing the target environment into a container helps with provisioning. With a container, the setup of a fresh target environment becomes much faster than provisioning a raw target and much more reliable than cleaning off a target that has already been used. And with proper configuration, container behavior differences between the development and embedded systems can be minimized. This allows much of the development to proceed even in the absence of target hardware. The software team then becomes less dependent on sufficient hardware availability or affected by delays in hardware-production timing.

Containers also help broaden the talent pool necessary for embedded development. Rather than requiring a lot of complex configuration procedures to bring up an embedded target, a pre-containerized target makes it possible for nearly any developer to start using an embedded system right away. While arguably that might also be true for any hardware vendor who’s provided a sufficiently complete and well-documented BSP, containers can provide a consistent interface between vendors that’s also well-understood outside the embedded space. That means that cloud and web developers who are moving into the embedded space and already have experience with containers can easily bring up a target that’s out-of-the-box. Containers can open up embedded and IoT programming to a whole new talent pool and partially side-step the need for specialized hardware bring-up expertise.

In testing

Container start up is fast enough to allow a new container to be spun up for each test, making test reproducibility much more reliable and consistent. They are also lightweight enough to allow several containers running at the same time for parallel test sessions.

With containers shared between a development machine and embedded target, some tests can be run on the faster development host instead of the slower embedded target. And for applications that need to talk between peers, clients, and servers, a container supports the creation of multiple nodes within a virtual network on the same machine, drastically simplifying the creation of a test environment.

In deployment

Containers allow application development to be decoupled from the hardware vendor’s Linux stack. That is, the hardware vendor uses a Yocto base system while the application developer implements a container-based environment on top. This lets a hardware vendor provide quick patches and support new hardware while the application remains stable and unperturbed, even when the release cycles of the two sides are mismatched (as they often are). Eliminating issues caused by swapping out the application’s underlying OS and drivers helps ensure that products will get the latest security updates, bug fixes, and performance improvements.

Updating containers with an OTA (over-the-air) solution takes advantage of an already modular architecture and can provide software updates with very little disruption to the underlying application.

For security

Containers provide an additional layer of protection for applications and services, making it even harder for hackers to misuse the underlying system or other applications. For one, containers can be signed so that unsigned containers (which are untrusted) can be prevented from running. They enable modular updates to system components, making it easier to keep security-critical software updated without interfering with the application. They also decrease the attack surface exposed by an application, which helps reduce the risk of vulnerabilities being exploited.

Architecting with containers

All these benefits are great, but how do you actually build an embedded application using a container? There are at least three common approaches, depending on the requirements of your embedded device and whether you’re starting from scratch or have an existing code base.

Headless

Headless and IoT edge devices don’t need a display and are very easy to containerize. They’re already similar in many ways to cloud or web applications and in fact may use web services to communicate, making them a natural fit. A containerized application will still probably need to access sensors, peripherals, or other hardware on the embedded device. This will require an embedded-savvy container environment, since you’re very unlikely to see web or cloud containers that are able to write to hardware.

Monolithic

A monolithic container encapsulates the embedded application into a single container for use on a target. This is often the case for devices that have a display and need to run a graphical framework such as Qt. However, the structure of the container itself is very basic; this is probably where most people with existing embedded applications would start.

Microservices

By decomposing the embedded software into microservices, each independent service can be placed into its own container. This is a very modular approach, and it allows changes to modules individually without impacting the rest of the application. (In this model, external access could be provided by a web server that can host browser-based apps for remote access.) Even if you don’t believe the microservice model lives up to its hype, breaking the embedded application into independently containerized components can help insulate the application from its internal dependencies. For example, placing a third-party binary into a separate container can allow the rest of the system to be updated without breaking the app when the binary is static and cannot be changed. Similarly, any component with a different update cadence that your application requires (like partner apps, open source libraries, or protocol stacks) can be containerized with the precise version of the libraries, frameworks, and languages it has been tested against.

When not to use containers

With all of these positive attributes, are there any downsides to using containers for embedded development? If we’re looking exclusively on developer, build, and QA machines, there seems to be little reason not to use containers. You get a lot of bang for the buck in provisioning, versioning, testing, and building, and once you’re past the relatively quick learning curve, you can make your entire team more effective and your results more reproducible.

What about using containers on an embedded target?

Clearly, you’ll never see containers in deeply embedded applications where the target has an 8- or 16-bit processor, less than 1MB RAM, or is incapable of running Linux. But for the rest of SOCs that are 32-bit, understanding exactly where and when you might deploy a target with containers is a more nuanced question. Our recommendation would be to start by incorporating containers in your normal development workflow. Once you’ve accumulated some expertise in them, you’ll be better able to recognize if they’re viable for your project. Your team will also have acquired the skills necessary to deploy them successfully in an embedded context.

How are a container and a virtual machine different?

Few embedded developers would consider using a full VM on target hardware boards – they are rarely powerful enough. However, because many engineers are familiar with VMs through other devel- opment work, they can provide a useful comparative technology for understanding containers in more detail.

Specifically, this comparison can help you start developing the criteria needed to understand whether containers are right for your embedded target. By examining a few key areas where these technologies differ, you can get an idea of where and why containers may be sufficiently efficient to use in embedded applications.

ContainersVirtual machines (VMs)
Architecture• Containers are application-centric• VMs are hardware-centric
• OS-level virtualization is achieved through user-space abstractions and namespace isolation• The guest machine is emulated with a complete stack of virtualized hardware
• Hypervisors are unnecessary; container services use OS features• Hardware assistance and/or hyper-visors are required
Operating system (OS)• The OS and kernel are shared between all applications and the host OS• It’s possible to host a unique OS (Windows IoT, Linux, QNX, etc) in each VM
File system• Each container has its own files, which can be transparently mixed with files from shared volumes and host folders•VM filesystems reside completely within VM images
• Containers have more flexibility on how their files are managed•VMs can only access their host’s files through virtual networks and server apps
•VM filesystems do not have to be the same as host filesystems
Memory• Memory consumption for containers is nearly the same as for standard applications• VMs contain entire OS memory layouts so their memory consumption is much more than single applications
• App memory allocations come directly from operating systems• App memory allocations come from the VM OS, which requests pages from the host OS (or are reserved by the host OS)
• Containers can use any available memory or be constrained• VM memory use is generally fixed and instantiated for each VM
• Containers share read-only portions, so running multiple containers only pays a one-time hit on largest RAM use
Start-up time• Since the OS is already booted, only con- tainer initialization is required, generally taking much less time• A full OS boot is required; optimiz ing this takes additional work but regardless is generally longer
Image size• Containers are generally smaller than VMs• VMs are generally larger than containers
Layering / Versioning•Containers can be built from multiple layers (called multistage builds), allowing for clean isolation of developer and production environments, environment portability, and other build configurations• Layering must be done manually if needed
• Designed for easy versioning of container images with built-in version management• VM images are huge binary files not appropriate for version control
• Docker images are stateless and do not contain modified files• Without developer intervention, VM images aren’t automatically stateless making them much harder to archive, duplicate, and test reliably
Security• The barrier between containers and the OS is thinner• Virtualized hardware isolates VMs from each other
• Containers make syscalls into the kernel, providing a larger attack surface• VM calls the host OS services exclusively through the host hypervisor, so attack surfaces are much smaller

Embedded container products

Lots of companies are providing container solutions that will work in embedded systems. For starters companies like ARM, Daynix, Docker, Mentor, Toradex, Windriver, and Xilinx are investing in the technology. We’ll take a quick look at a couple of the more notable ones here, but as products and features are constantly being updated, it’s always best to check with the manufacturer for specifics.

Docker

This is the granddaddy of all container companies. As docker is the first and most comprehensive container (and it’s open source), it forms the core of most implementations. If you’re putting a container on your system, you’re almost certainly going to have to learn the ins and outs of the docker command and common development patterns. You might also want to look at a quick “getting started with docker on ARM” guide.

Toradex

With Torizon, Toradex provides a family of embedded SoCs that are already fully containerized. The embedded hardware ships with the Torizon image – a yocto kernel preloaded with Toradex tools and the docker command – so it’s able to load the developer’s containers out of the box. Toradex also provides many pre-built container images to enable quick and easy C/C++, Python, and .NET development as well as Qt and Crank Storyboard GUIs. Toradex also provides tutorials, videos, and articles focused on getting up to speed with embedded containers, making them a go-to resource for embedded developers.

Kubernetes

Also known as k8s for lazy typists, Kubernetes is a container management and orchestration system. With features to support scaling, storage orchestration, service discovery, load balancing, and automated rollouts, most embedded users (especially those who are new to containers) will find Kubernetes a bit of overkill. It’s also not a good fit for the resource requirements of most embedded devices in its current incarnation.

However k3s or Kubernetes-light is a better fit. Having been specifically developed for IoT and Edge computing, k3s replace the complex parts of Kubernetes with more limited alternatives to trim down the footprint, making them much more suitable for deployment on embedded devices. Developers who work on embedded applications with complex distributed deployments, large setups that span multiple systems, or systems that require regular online updates might want to investigate k3s to see if they make sense for their product.

Container wrap-up

It can take some getting used to the idea of containers, especially for established embedded practitioners who, approaching everything with a mindset of optimal efficiency, initially might find them a bit excessive. When considering just the off-target environment, an embedded development team using containers will see immediate gains from developer convenience, testing efficiency, and workflow streamlining.

Whether containers also make sense on-target is at present still an open question. There are many benefits like dependency insulation, simple provisioning, and runtime security. But to understand if it makes sense for your project, you’ll need to consider things like:

  • Does your hardware vendor provide images that are pre-loaded with container software?
  • Do you have reason to update different portions of your application independently (diverging dependencies, multiple suppliers, different update frequencies)?
  • Can your product be cleanly divided into independent components that are updated independently?
  • Do you have OTA requirements where a container-based solution could help you roll out new changes?
  • Does your product have large-scale complex services (such an industrial or building automation) where modular updates are essential?

Embedded containers are an exciting and evolving technology. We’ve provided a lot of ideas of where you may be able to use containers in your development practice and products. If you gradually incorporate containers into your development workflow, you’ll be experienced and ready when the time comes to containerize your targets. And as always, we’re happy to help you understand the right fit if you’re still looking for some answers after this brief introduction

Tags:

embedded
Till Adam and Sven Knebel