Re: [Lse-tech] Re: [ckrm-tech] Re: [RFC][patch 00/21] PIDVirtualization: Overview and Patches

From: Hubertus Franke
Date: Fri Dec 16 2005 - 22:03:25 EST

Next message: Alan Stern: "Re: [PATCH] UHCI: add missing memory barriers"
Previous message: Randy.Dunlap: "Re: ENDEC port and MII interface"
In reply to: Matt Helsley: "Re: [ckrm-tech] Re: [RFC][patch 00/21] PID Virtualization:Overview and Patches"
Next in thread: Matt Helsley: "Re: [ckrm-tech] Re: [RFC][patch 00/21] PID Virtualization:Overview and Patches"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 2005-12-16 at 17:18 -0800, Matt Helsley wrote:
> On Fri, 2005-12-16 at 18:47 -0500, Hubertus Franke wrote:
> > On Fri, 2005-12-16 at 09:35 -0800, Dave Hansen wrote:
> <snip>
> > > I've been talking a lot lately about how important filesystem isolation
> > > between containers is to implement containers properly. Isolating the
> > > filesystem namespaces makes it much easier to do things like fs-based
> > > shared memory during a checkpoint/resume. If we want to allow tasks to
> > > move around, we'll have to throw out this entire concept. That means
> > > that a _lot_ of things get a notch closer to the too-costly-to-implement
> > > category.
> > >
> >
> > Not only that, as the example of pids already show, while at the surface
> > these might seem as desirable features ( particular since they came up
> > wrt to the CKRM discussion ), there are significant technical limitation
> > to these.
>
> Perhaps merging the container process grouping functionality is not a
> good idea.
>
> However, I think CKRM could be made minimally consistent with
> containers using a few small modifications. I suspect all that is
> necessary is:
>
<snip>
> I think this would be sufficient to make CKRM and containers play
> nicely with each other. I suspect further kernel-enforced constraints
> between CKRM and containers may constitute policy and not functionality.
>

I think that as a first step mutual coexistence is already quite
useful.
Once I containerize applications, having the ability to actually
constrain and manage the resources consumed by that application would
be a real plus. In that sense a container and CKRM class coincide.
So even enforcing that "alignment" at a higher level through some
awareness in the classification engine for instance would be quite
useful. Are they the same kernel object .. NO .. because of the
life cycle management of a process, namely once moved into a container
it stays there...

>
> Cheers,
> -Matt Helsley

Prost ...

Hubertus Franke <frankeh@xxxxxxxxxxxxxx>

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alan Stern: "Re: [PATCH] UHCI: add missing memory barriers"
Previous message: Randy.Dunlap: "Re: ENDEC port and MII interface"
In reply to: Matt Helsley: "Re: [ckrm-tech] Re: [RFC][patch 00/21] PID Virtualization:Overview and Patches"
Next in thread: Matt Helsley: "Re: [ckrm-tech] Re: [RFC][patch 00/21] PID Virtualization:Overview and Patches"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]