Yesterday we played around with our Go HTTP server and learned how to interact with containers. Today, letβs understand how Docker images are actually built and why containers are ephemeral.
Remember our Dockerfile from the last two days?
FROM golang
COPY . .
RUN go build -o main main.go
CMD ["./main"]
Each instruction in this Dockerfile creates a new layer (or multiple). A layer is basically a set of file changes. Letβs break down what happens when Docker builds this image:
FROM golang- Pulls all base layers with the Go runtimeCOPY . .- Adds a new layer containing our source filesRUN go build- Creates a layer with our compiled binaryCMD- Doesnβt create a layer (itβs just metadata)
You can actually see these layers with:
$ docker history hello-world-go
IMAGE CREATED CREATED BY SIZE COMMENT
a3c62afdbe9d 12 seconds ago CMD ["./main"] 0B buildkit.dockerfile.v0
<missing> 12 seconds ago EXPOSE map[8080/tcp:{}] 0B buildkit.dockerfile.v0
<missing> 12 seconds ago RUN /bin/sh -c go build -o main main.go # bu⦠81MB buildkit.dockerfile.v0
<missing> 16 seconds ago COPY . . # buildkit 322B buildkit.dockerfile.v0
<missing> 3 days ago WORKDIR /go 0B buildkit.dockerfile.v0
<missing> 3 days ago RUN /bin/sh -c mkdir -p "$GOPATH/src" "$GOPA⦠0B buildkit.dockerfile.v0
<missing> 3 days ago COPY /target/ / # buildkit 235MB buildkit.dockerfile.v0
<missing> 3 days ago ENV PATH=/go/bin:/usr/local/go/bin:/usr/loca⦠0B buildkit.dockerfile.v0
<missing> 3 days ago ENV GOPATH=/go 0B buildkit.dockerfile.v0
<missing> 3 days ago ENV GOTOOLCHAIN=local 0B buildkit.dockerfile.v0
<missing> 3 days ago ENV GOLANG_VERSION=1.23.4 0B buildkit.dockerfile.v0
<missing> 3 days ago RUN /bin/sh -c set -eux; apt-get update; a⦠239MB buildkit.dockerfile.v0
<missing> 11 months ago RUN /bin/sh -c set -eux; apt-get update; a⦠183MB buildkit.dockerfile.v0
<missing> 19 months ago RUN /bin/sh -c set -eux; apt-get update; a⦠47.8MB buildkit.dockerfile.v0
<missing> 19 months ago # debian.sh --arch 'arm64' out/ 'bookworm' 'β¦ 139MB debuerreotype 0.15
Why Layers Matter
Layers are what make Docker so efficient:
- Caching - If nothing changes in a layer, Docker reuses it from cache
- Storage - Layers are shared between images that use the same base
- Transfer - When pushing/pulling images, only changed layers are transferred
Container Layer
When you run a container, Docker adds one more special writable layer on top of your image layers. This is where all changes made during container runtime are stored.
Letβs see this in action. Start our container and exec into it:
bash
$ docker run -d -p 8080:8080 hello-world-go
$ docker exec -it <container_id> bash
root@container:/# touch newfile.txt
root@container:/# exit
Now stop the container and start a new one:
bash
$ docker stop <container_id>
$ docker run -d -p 8080:8080 hello-world-go
$ docker exec -it <container_id> bash
root@container:/# ls newfile.txt
ls: cannot access 'newfile.txt': No such file or directory
Where did our file go? This brings us to an important concept: containers are ephemeral. The writable layer exists only while the container is running. When you stop the container, all changes are lost.
This is actually a feature, not a bug! It ensures that your application starts in the same state every time. But what if you need persistent storage? Thatβs where volumes come in - but weβll save that for tomorrow π
Until then, happy coding! π³
Jonas
