* containers and cgroups mini-summit @ Linux Plumbers @ 2012-07-11 21:41 Kir Kolyshkin [not found] ` <4FFDF321.4030103-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> 0 siblings, 1 reply; 39+ messages in thread From: Kir Kolyshkin @ 2012-07-11 21:41 UTC (permalink / raw) To: Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A Cc: Glauber Costa, James Bottomley, Pavel Emelyanov, Maxim Patlasov Gentlemen, We are organizing containers mini-summit during next Linux Plumbers (San Diego, August 29-31). The idea is to gather and discuss everything relevant to namespaces, cgroups, resource management, checkpoint-restore and so on. We are trying to come up with a list of topics to discuss, so please reply with topic suggestions, and let me know if you are going to come. I probably forgot a few more people (such as, I am not sure who else from Google is working on cgroups stuff), so fill free to forward this to anyone you believe should go, or just let me know whom I missed. Regards, Kir. ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <4FFDF321.4030103-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org>]
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <4FFDF321.4030103-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> @ 2012-07-12 3:47 ` Serge Hallyn 2012-07-13 15:09 ` Kir Kolyshkin 2012-07-12 13:26 ` Frederic Weisbecker ` (9 subsequent siblings) 10 siblings, 1 reply; 39+ messages in thread From: Serge Hallyn @ 2012-07-12 3:47 UTC (permalink / raw) To: Kir Kolyshkin Cc: Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, Glauber Costa, James Bottomley, Pavel Emelyanov, Maxim Patlasov, Stéphane Graber Quoting Kir Kolyshkin (kir-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org): > Gentlemen, > > We are organizing containers mini-summit during next Linux Plumbers > (San Diego, August 29-31). > The idea is to gather and discuss everything relevant to namespaces, > cgroups, resource management, > checkpoint-restore and so on. > We are trying to come up with a list of topics to discuss, so please > reply with topic suggestions, and > let me know if you are going to come. I won't be there. I hope it'll be possible to call in remotely one way or another. Topics I'm most interested in right now, beside completion of user namespace (if anything needs to be discussed there), is syslog namespace and what to do about loop devices and udev/uevents (devices namespace?). Checkpoint/restart is moving along nicely, perhaps only a progress update and discussion of any limitations? > I probably forgot a few more people (such as, I am not sure who else > from Google is working > on cgroups stuff), so fill free to forward this to anyone you > believe should go, > or just let me know whom I missed. > > Regards, > Kir. ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers 2012-07-12 3:47 ` Serge Hallyn @ 2012-07-13 15:09 ` Kir Kolyshkin [not found] ` <50003A13.4000201-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> 0 siblings, 1 reply; 39+ messages in thread From: Kir Kolyshkin @ 2012-07-13 15:09 UTC (permalink / raw) To: Serge Hallyn Cc: Kirill Kolyshkin, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, Glauber Costa, James Bottomley, Pavel Emelianov, Maxim Patlasov On 07/12/2012 07:47 AM, Serge Hallyn wrote: > Quoting Kir Kolyshkin (kir-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org): >> Gentlemen, >> >> We are organizing containers mini-summit during next Linux Plumbers >> (San Diego, August 29-31). >> The idea is to gather and discuss everything relevant to namespaces, >> cgroups, resource management, >> checkpoint-restore and so on. >> We are trying to come up with a list of topics to discuss, so please >> reply with topic suggestions, and >> let me know if you are going to come. > I won't be there. I hope it'll be possible to call in remotely one way or > another. We will try to set up something (Skype? Google+ Hangout? A conventional phone line from event organizers?) but from some previous experience it can't be very successful if there are more than about 10 people in the room. > Topics I'm most interested in right now, beside completion of user > namespace (if anything needs to be discussed there), is syslog > namespace and what to do about loop devices and udev/uevents (devices > namespace?). Checkpoint/restart is moving along nicely, perhaps only > a progress update and discussion of any limitations? Thanks, will add it to the list. > >> I probably forgot a few more people (such as, I am not sure who else >> from Google is working >> on cgroups stuff), so fill free to forward this to anyone you >> believe should go, >> or just let me know whom I missed. >> >> Regards, >> Kir. ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <50003A13.4000201-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org>]
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <50003A13.4000201-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> @ 2012-07-16 20:29 ` Serge Hallyn 0 siblings, 0 replies; 39+ messages in thread From: Serge Hallyn @ 2012-07-16 20:29 UTC (permalink / raw) To: Kir Kolyshkin Cc: Kirill Kolyshkin, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, Glauber Costa, James Bottomley, Pavel Emelianov, Maxim Patlasov Quoting Kir Kolyshkin (kir-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org): > On 07/12/2012 07:47 AM, Serge Hallyn wrote: > >Quoting Kir Kolyshkin (kir-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org): > >>Gentlemen, > >> > >>We are organizing containers mini-summit during next Linux Plumbers > >>(San Diego, August 29-31). > >>The idea is to gather and discuss everything relevant to namespaces, > >>cgroups, resource management, > >>checkpoint-restore and so on. > >>We are trying to come up with a list of topics to discuss, so please > >>reply with topic suggestions, and > >>let me know if you are going to come. > >I won't be there. I hope it'll be possible to call in remotely one way or > >another. > > We will try to set up something (Skype? Google+ Hangout? A > conventional phone line > from event organizers?) but from some previous experience it can't > be very successful > if there are more than about 10 people in the room. Yeah, I remember we tried it in 2007 or so... hangouts crash every computer I own. I'm fine with skype or a phone line. > >Topics I'm most interested in right now, beside completion of user > >namespace (if anything needs to be discussed there), is syslog > >namespace and what to do about loop devices and udev/uevents (devices > >namespace?). Checkpoint/restart is moving along nicely, perhaps only > >a progress update and discussion of any limitations? > > Thanks, will add it to the list. Great, thanks. > >>I probably forgot a few more people (such as, I am not sure who else > >>from Google is working > >>on cgroups stuff), so fill free to forward this to anyone you > >>believe should go, > >>or just let me know whom I missed. > >> > >>Regards, > >> Kir. > > -serge ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <4FFDF321.4030103-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> 2012-07-12 3:47 ` Serge Hallyn @ 2012-07-12 13:26 ` Frederic Weisbecker 2012-07-16 21:08 ` Dhaval Giani ` (8 subsequent siblings) 10 siblings, 0 replies; 39+ messages in thread From: Frederic Weisbecker @ 2012-07-12 13:26 UTC (permalink / raw) To: Kir Kolyshkin Cc: Serge Hallyn, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, Glauber Costa, James Bottomley, Pavel Emelyanov, Maxim Patlasov On Thu, Jul 12, 2012 at 01:41:53AM +0400, Kir Kolyshkin wrote: > Gentlemen, > > We are organizing containers mini-summit during next Linux Plumbers > (San Diego, August 29-31). > The idea is to gather and discuss everything relevant to namespaces, > cgroups, resource management, > checkpoint-restore and so on. > > We are trying to come up with a list of topics to discuss, so please > reply with topic suggestions, and > let me know if you are going to come. I wish I could, but this year's LPC date conflict with my holidays. Sorry. Thanks. > > I probably forgot a few more people (such as, I am not sure who else > from Google is working > on cgroups stuff), so fill free to forward this to anyone you > believe should go, > or just let me know whom I missed. > > Regards, > Kir. ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <4FFDF321.4030103-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> 2012-07-12 3:47 ` Serge Hallyn 2012-07-12 13:26 ` Frederic Weisbecker @ 2012-07-16 21:08 ` Dhaval Giani 2012-07-17 6:59 ` Balbir Singh ` (7 subsequent siblings) 10 siblings, 0 replies; 39+ messages in thread From: Dhaval Giani @ 2012-07-16 21:08 UTC (permalink / raw) To: Kir Kolyshkin Cc: Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, Glauber Costa, James Bottomley, Pavel Emelyanov, Maxim Patlasov Hi, On Wed, Jul 11, 2012 at 5:41 PM, Kir Kolyshkin <kir-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> wrote: > Gentlemen, > > We are organizing containers mini-summit during next Linux Plumbers (San > Diego, August 29-31). > The idea is to gather and discuss everything relevant to namespaces, > cgroups, resource management, > checkpoint-restore and so on. > > We are trying to come up with a list of topics to discuss, so please reply > with topic suggestions, and > let me know if you are going to come. > I will be at LPC, so I should be able to attend. > I probably forgot a few more people (such as, I am not sure who else from > Google is working > on cgroups stuff), so fill free to forward this to anyone you believe should > go, > or just let me know whom I missed. I would be interested mainly in discussing how cgroups core is changing, imposing a set of rules on how new subsystems are being designed (hierarchical vs non-hierarchical, and all that mess). Dhaval ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <4FFDF321.4030103-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> ` (2 preceding siblings ...) 2012-07-16 21:08 ` Dhaval Giani @ 2012-07-17 6:59 ` Balbir Singh [not found] ` <CAKTCnzmhWZa=_+EE9rA63NuJf3kQ-bXNYStXmZXt8r2w-N02ag-JsoAwUIsXosN+BqQ9rBEUg@public.gmane.org> 2012-07-17 7:26 ` Daniel Lezcano ` (6 subsequent siblings) 10 siblings, 1 reply; 39+ messages in thread From: Balbir Singh @ 2012-07-17 6:59 UTC (permalink / raw) To: Kir Kolyshkin Cc: Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, Glauber Costa, James Bottomley, Pavel Emelyanov, Maxim Patlasov On Thu, Jul 12, 2012 at 3:11 AM, Kir Kolyshkin <kir-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> wrote: > Gentlemen, > > We are organizing containers mini-summit during next Linux Plumbers (San > Diego, August 29-31). > The idea is to gather and discuss everything relevant to namespaces, > cgroups, resource management, > checkpoint-restore and so on. > > We are trying to come up with a list of topics to discuss, so please reply > with topic suggestions, and > let me know if you are going to come. > > I probably forgot a few more people (such as, I am not sure who else from > Google is working > on cgroups stuff), so fill free to forward this to anyone you believe should > go, > or just let me know whom I missed. I can be and would love to be there if I get an invite and get to know in advance. I'll need to work out my travel plans/budget to see if I can get an approval. I think there are other interesting cases for containers especially on new generation, new form factor devices. Thanks, Balbir ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <CAKTCnzmhWZa=_+EE9rA63NuJf3kQ-bXNYStXmZXt8r2w-N02ag-JsoAwUIsXosN+BqQ9rBEUg@public.gmane.org>]
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <CAKTCnzmhWZa=_+EE9rA63NuJf3kQ-bXNYStXmZXt8r2w-N02ag-JsoAwUIsXosN+BqQ9rBEUg@public.gmane.org> @ 2012-07-18 10:36 ` James Bottomley 0 siblings, 0 replies; 39+ messages in thread From: James Bottomley @ 2012-07-18 10:36 UTC (permalink / raw) To: Balbir Singh Cc: Kir Kolyshkin, Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, Glauber Costa, Pavel Emelyanov, Maxim Patlasov On Tue, 2012-07-17 at 12:29 +0530, Balbir Singh wrote: > On Thu, Jul 12, 2012 at 3:11 AM, Kir Kolyshkin <kir-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> wrote: > > Gentlemen, > > > > We are organizing containers mini-summit during next Linux Plumbers (San > > Diego, August 29-31). > > The idea is to gather and discuss everything relevant to namespaces, > > cgroups, resource management, > > checkpoint-restore and so on. > > > > We are trying to come up with a list of topics to discuss, so please reply > > with topic suggestions, and > > let me know if you are going to come. > > > > I probably forgot a few more people (such as, I am not sure who else from > > Google is working > > on cgroups stuff), so fill free to forward this to anyone you believe should > > go, > > or just let me know whom I missed. > > I can be and would love to be there if I get an invite and get to know > in advance. I'll need to work out my travel plans/budget to see if I > can get an approval. I think there are other interesting cases for > containers especially on new generation, new form factor devices. You don't need an invite: This is Plumbers, not the kernel summit. Plumbers Mini Summits/Micro Conferences are open to all registered Plumbers attendees. James ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <4FFDF321.4030103-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> @ 2012-07-17 7:26 ` Daniel Lezcano 2012-07-12 13:26 ` Frederic Weisbecker ` (9 subsequent siblings) 10 siblings, 0 replies; 39+ messages in thread From: Daniel Lezcano @ 2012-07-17 7:26 UTC (permalink / raw) To: Kir Kolyshkin Cc: Serge Hallyn, Frederic Weisbecker, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, Glauber Costa, James Bottomley, Pavel Emelyanov, Maxim Patlasov On 07/11/2012 11:41 PM, Kir Kolyshkin wrote: > Gentlemen, > > We are organizing containers mini-summit during next Linux Plumbers (San > Diego, August 29-31). > The idea is to gather and discuss everything relevant to namespaces, > cgroups, resource management, > checkpoint-restore and so on. > > We are trying to come up with a list of topics to discuss, so please > reply with topic suggestions, and > let me know if you are going to come. > > I probably forgot a few more people (such as, I am not sure who else > from Google is working > on cgroups stuff), so fill free to forward this to anyone you believe > should go, > or just let me know whom I missed. Hi Kir, I have a presentation for LPC and I am awaiting the approval for the funding. If it is accepted I will be there. One point to address could be the time virtualization. Thanks -- Daniel -- <http://www.linaro.org/> Linaro.org │ Open source software for ARM SoCs Follow Linaro: <http://www.facebook.com/pages/Linaro> Facebook | <http://twitter.com/#!/linaroorg> Twitter | <http://www.linaro.org/linaro-blog/> Blog ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers @ 2012-07-17 7:26 ` Daniel Lezcano 0 siblings, 0 replies; 39+ messages in thread From: Daniel Lezcano @ 2012-07-17 7:26 UTC (permalink / raw) To: Kir Kolyshkin Cc: Serge Hallyn, Frederic Weisbecker, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, Glauber Costa, James Bottomley, Pavel Emelyanov, Maxim Patlasov On 07/11/2012 11:41 PM, Kir Kolyshkin wrote: > Gentlemen, > > We are organizing containers mini-summit during next Linux Plumbers (San > Diego, August 29-31). > The idea is to gather and discuss everything relevant to namespaces, > cgroups, resource management, > checkpoint-restore and so on. > > We are trying to come up with a list of topics to discuss, so please > reply with topic suggestions, and > let me know if you are going to come. > > I probably forgot a few more people (such as, I am not sure who else > from Google is working > on cgroups stuff), so fill free to forward this to anyone you believe > should go, > or just let me know whom I missed. Hi Kir, I have a presentation for LPC and I am awaiting the approval for the funding. If it is accepted I will be there. One point to address could be the time virtualization. Thanks -- Daniel -- <http://www.linaro.org/> Linaro.org │ Open source software for ARM SoCs Follow Linaro: <http://www.facebook.com/pages/Linaro> Facebook | <http://twitter.com/#!/linaroorg> Twitter | <http://www.linaro.org/linaro-blog/> Blog ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <50051390.7010109-QSEj5FYQhm4dnm+yROfE0A@public.gmane.org>]
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <50051390.7010109-QSEj5FYQhm4dnm+yROfE0A@public.gmane.org> @ 2012-07-25 8:48 ` Glauber Costa 0 siblings, 0 replies; 39+ messages in thread From: Glauber Costa @ 2012-07-25 8:48 UTC (permalink / raw) To: Daniel Lezcano Cc: Kir Kolyshkin, Serge Hallyn, Frederic Weisbecker, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov On 07/17/2012 11:26 AM, Daniel Lezcano wrote: > On 07/11/2012 11:41 PM, Kir Kolyshkin wrote: >> Gentlemen, >> >> We are organizing containers mini-summit during next Linux Plumbers (San >> Diego, August 29-31). >> The idea is to gather and discuss everything relevant to namespaces, >> cgroups, resource management, >> checkpoint-restore and so on. >> >> We are trying to come up with a list of topics to discuss, so please >> reply with topic suggestions, and >> let me know if you are going to come. >> >> I probably forgot a few more people (such as, I am not sure who else >> from Google is working >> on cgroups stuff), so fill free to forward this to anyone you believe >> should go, >> or just let me know whom I missed. > > Hi Kir, > > I have a presentation for LPC and I am awaiting the approval for the > funding. If it is accepted I will be there. > > One point to address could be the time virtualization. > What exactly do you have in mind for that ? ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <4FFDF321.4030103-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> ` (4 preceding siblings ...) 2012-07-17 7:26 ` Daniel Lezcano @ 2012-07-17 20:06 ` Tejun Heo [not found] ` <20120717200606.GD24336-hpIqsD4AKlfQT0dZR+AlfA@public.gmane.org> 2012-07-20 16:30 ` Johannes Weiner ` (4 subsequent siblings) 10 siblings, 1 reply; 39+ messages in thread From: Tejun Heo @ 2012-07-17 20:06 UTC (permalink / raw) To: Kir Kolyshkin Cc: Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, Glauber Costa, James Bottomley, Pavel Emelyanov, Maxim Patlasov Hello, I think I can be there. Thanks. -- tejun ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <20120717200606.GD24336-hpIqsD4AKlfQT0dZR+AlfA@public.gmane.org>]
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <20120717200606.GD24336-hpIqsD4AKlfQT0dZR+AlfA@public.gmane.org> @ 2012-07-17 20:15 ` Paul Turner 0 siblings, 0 replies; 39+ messages in thread From: Paul Turner @ 2012-07-17 20:15 UTC (permalink / raw) To: Tejun Heo Cc: Kir Kolyshkin, Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, Glauber Costa, James Bottomley, Pavel Emelyanov, Maxim Patlasov On Tue, Jul 17, 2012 at 1:06 PM, Tejun Heo <tj-DgEjT+Ai2ygdnm+yROfE0A@public.gmane.org> wrote: > Hello, > > I think I can be there. > > Thanks. > > -- > tejun Likewise, - Paul ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <4FFDF321.4030103-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> ` (5 preceding siblings ...) 2012-07-17 20:06 ` Tejun Heo @ 2012-07-20 16:30 ` Johannes Weiner 2012-07-21 1:59 ` Kamezawa Hiroyuki ` (3 subsequent siblings) 10 siblings, 0 replies; 39+ messages in thread From: Johannes Weiner @ 2012-07-20 16:30 UTC (permalink / raw) To: Kir Kolyshkin Cc: Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, Glauber Costa, James Bottomley, Pavel Emelyanov, Maxim Patlasov On Thu, Jul 12, 2012 at 01:41:53AM +0400, Kir Kolyshkin wrote: > Gentlemen, > > We are organizing containers mini-summit during next Linux Plumbers > (San Diego, August 29-31). > The idea is to gather and discuss everything relevant to namespaces, > cgroups, resource management, > checkpoint-restore and so on. > > We are trying to come up with a list of topics to discuss, so please > reply with topic suggestions, and > let me know if you are going to come. I'll be there. ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <4FFDF321.4030103-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> ` (6 preceding siblings ...) 2012-07-20 16:30 ` Johannes Weiner @ 2012-07-21 1:59 ` Kamezawa Hiroyuki 2012-07-25 8:55 ` Glauber Costa ` (2 subsequent siblings) 10 siblings, 0 replies; 39+ messages in thread From: Kamezawa Hiroyuki @ 2012-07-21 1:59 UTC (permalink / raw) To: Kir Kolyshkin Cc: Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, Glauber Costa, James Bottomley, Pavel Emelyanov, Maxim Patlasov (2012/07/12 6:41), Kir Kolyshkin wrote: > Gentlemen, > > We are organizing containers mini-summit during next Linux Plumbers (San Diego, August 29-31). > The idea is to gather and discuss everything relevant to namespaces, cgroups, resource management, > checkpoint-restore and so on. > > We are trying to come up with a list of topics to discuss, so please reply with topic suggestions, and > let me know if you are going to come. > I think I'll be there. -Kame ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <4FFDF321.4030103-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> ` (7 preceding siblings ...) 2012-07-21 1:59 ` Kamezawa Hiroyuki @ 2012-07-25 8:55 ` Glauber Costa [not found] ` <500FB473.3090606-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-07-25 10:53 ` Glauber Costa 2012-08-02 8:37 ` Daniel Wagner 10 siblings, 1 reply; 39+ messages in thread From: Glauber Costa @ 2012-07-25 8:55 UTC (permalink / raw) To: Kir Kolyshkin Cc: Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov On 07/12/2012 01:41 AM, Kir Kolyshkin wrote: > Gentlemen, > > We are organizing containers mini-summit during next Linux Plumbers (San > Diego, August 29-31). > The idea is to gather and discuss everything relevant to namespaces, > cgroups, resource management, > checkpoint-restore and so on. > > We are trying to come up with a list of topics to discuss, so please > reply with topic suggestions, and > let me know if you are going to come. > > I probably forgot a few more people (such as, I am not sure who else > from Google is working > on cgroups stuff), so fill free to forward this to anyone you believe > should go, > or just let me know whom I missed. > > Regards, > Kir. BTW, sorry for not replying before (vacations + post-vacations laziness) I would be interested in adding /proc virtualization to the discussion. By now it seems userspace would be the best place for that to happen, in a fuse overlay. I know Daniel has an initial implementation of that, and it would be good to have it as library that both OpenVZ and LXC (and whoever else wants) can use. Shouldn't take much time... ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <500FB473.3090606-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org>]
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <500FB473.3090606-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> @ 2012-07-25 10:00 ` Eric W. Biederman [not found] ` <871uk0b1p4.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> 0 siblings, 1 reply; 39+ messages in thread From: Eric W. Biederman @ 2012-07-25 10:00 UTC (permalink / raw) To: Glauber Costa Cc: Kir Kolyshkin, Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov Glauber Costa <glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> writes: > On 07/12/2012 01:41 AM, Kir Kolyshkin wrote: >> Gentlemen, >> >> We are organizing containers mini-summit during next Linux Plumbers (San >> Diego, August 29-31). >> The idea is to gather and discuss everything relevant to namespaces, >> cgroups, resource management, >> checkpoint-restore and so on. >> >> We are trying to come up with a list of topics to discuss, so please >> reply with topic suggestions, and >> let me know if you are going to come. >> >> I probably forgot a few more people (such as, I am not sure who else >> from Google is working >> on cgroups stuff), so fill free to forward this to anyone you believe >> should go, >> or just let me know whom I missed. >> >> Regards, >> Kir. > > BTW, sorry for not replying before (vacations + post-vacations laziness) > > I would be interested in adding /proc virtualization to the discussion. > By now it seems userspace would be the best place for that to happen, in > a fuse overlay. I know Daniel has an initial implementation of that, and > it would be good to have it as library that both OpenVZ and LXC (and > whoever else wants) can use. > > Shouldn't take much time... What would you need proc virtualization for? Eric ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <871uk0b1p4.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org>]
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <871uk0b1p4.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> @ 2012-07-25 10:00 ` Glauber Costa [not found] ` <500FC3C9.4010005-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 0 siblings, 1 reply; 39+ messages in thread From: Glauber Costa @ 2012-07-25 10:00 UTC (permalink / raw) To: Eric W. Biederman Cc: Kir Kolyshkin, Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov On 07/25/2012 02:00 PM, Eric W. Biederman wrote: > Glauber Costa <glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> writes: > >> On 07/12/2012 01:41 AM, Kir Kolyshkin wrote: >>> Gentlemen, >>> >>> We are organizing containers mini-summit during next Linux Plumbers (San >>> Diego, August 29-31). >>> The idea is to gather and discuss everything relevant to namespaces, >>> cgroups, resource management, >>> checkpoint-restore and so on. >>> >>> We are trying to come up with a list of topics to discuss, so please >>> reply with topic suggestions, and >>> let me know if you are going to come. >>> >>> I probably forgot a few more people (such as, I am not sure who else >>> from Google is working >>> on cgroups stuff), so fill free to forward this to anyone you believe >>> should go, >>> or just let me know whom I missed. >>> >>> Regards, >>> Kir. >> >> BTW, sorry for not replying before (vacations + post-vacations laziness) >> >> I would be interested in adding /proc virtualization to the discussion. >> By now it seems userspace would be the best place for that to happen, in >> a fuse overlay. I know Daniel has an initial implementation of that, and >> it would be good to have it as library that both OpenVZ and LXC (and >> whoever else wants) can use. >> >> Shouldn't take much time... > > What would you need proc virtualization for? > proc provides a lot of information that userspace tools rely upon. For instance, when running top, you can draw per-process figures from what we have now, but you can't make sense of percentages without aggregating container-wide information. When you read /proc/cpuinfo, as well, you would expect to see something that matches your container configuration. "free" is another example. The list go on. ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <500FC3C9.4010005-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org>]
* Re: [Devel] Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <500FC3C9.4010005-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> @ 2012-07-25 10:02 ` Glauber Costa [not found] ` <500FC44C.1030606-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-07-26 11:16 ` Andrea Righi 1 sibling, 1 reply; 39+ messages in thread From: Glauber Costa @ 2012-07-25 10:02 UTC (permalink / raw) To: Eric W. Biederman Cc: Frederic Weisbecker, Balbir Singh, Pavel Emelyanov, Suleiman-GEFAQzZX7r8dnm+yROfE0A, Daniel Lezcano, Tim Hockin, Greg Thelen, Paul Turner, devel-GEFAQzZX7r8dnm+yROfE0A, Serge Hallyn, Souhlal, Tejun Heo, Dave Kleikamp, Dhaval Giani, cgroups-u79uwXL29TY76Z2rM5mHXA, KAMEZAWA Hiroyuki, Maxim-GEFAQzZX7r8dnm+yROfE0A, Johannes Weiner, Rohit Seth, Patlasov On 07/25/2012 02:00 PM, Glauber Costa wrote: > On 07/25/2012 02:00 PM, Eric W. Biederman wrote: >> Glauber Costa <glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> writes: >> >>> On 07/12/2012 01:41 AM, Kir Kolyshkin wrote: >>>> Gentlemen, >>>> >>>> We are organizing containers mini-summit during next Linux Plumbers (San >>>> Diego, August 29-31). >>>> The idea is to gather and discuss everything relevant to namespaces, >>>> cgroups, resource management, >>>> checkpoint-restore and so on. >>>> >>>> We are trying to come up with a list of topics to discuss, so please >>>> reply with topic suggestions, and >>>> let me know if you are going to come. >>>> >>>> I probably forgot a few more people (such as, I am not sure who else >>>> from Google is working >>>> on cgroups stuff), so fill free to forward this to anyone you believe >>>> should go, >>>> or just let me know whom I missed. >>>> >>>> Regards, >>>> Kir. >>> >>> BTW, sorry for not replying before (vacations + post-vacations laziness) >>> >>> I would be interested in adding /proc virtualization to the discussion. >>> By now it seems userspace would be the best place for that to happen, in >>> a fuse overlay. I know Daniel has an initial implementation of that, and >>> it would be good to have it as library that both OpenVZ and LXC (and >>> whoever else wants) can use. >>> >>> Shouldn't take much time... >> >> What would you need proc virtualization for? >> > > proc provides a lot of information that userspace tools rely upon. > For instance, when running top, you can draw per-process figures from > what we have now, but you can't make sense of percentages without > aggregating container-wide information. > > When you read /proc/cpuinfo, as well, you would expect to see something > that matches your container configuration. > > "free" is another example. The list go on. > > Also, Eric: Will you be around LPC? Would you be willing to hold a session about pid/user namespaces ? ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <500FC44C.1030606-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org>]
* Re: [Devel] Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <500FC44C.1030606-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> @ 2012-07-25 11:16 ` Eric W. Biederman 0 siblings, 0 replies; 39+ messages in thread From: Eric W. Biederman @ 2012-07-25 11:16 UTC (permalink / raw) To: Glauber Costa Cc: Frederic Weisbecker, Balbir Singh, Pavel Emelyanov, Suleiman-GEFAQzZX7r8dnm+yROfE0A, Daniel Lezcano, Tim Hockin, Greg Thelen, Paul Turner, devel-GEFAQzZX7r8dnm+yROfE0A, Serge Hallyn, Souhlal, Tejun Heo, Dave Kleikamp, Dhaval Giani, cgroups-u79uwXL29TY76Z2rM5mHXA, KAMEZAWA Hiroyuki, Maxim-GEFAQzZX7r8dnm+yROfE0A, Johannes Weiner, Rohit Seth, Patlasov Glauber Costa <glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> writes: > Also, Eric: Will you be around LPC? Would you be willing to hold a > session about pid/user namespaces ? Tenatively. My plans are not fixed in stone but I have some intention of figuring that out. Eric ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <500FC3C9.4010005-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-07-25 10:02 ` [Devel] " Glauber Costa @ 2012-07-26 11:16 ` Andrea Righi 1 sibling, 0 replies; 39+ messages in thread From: Andrea Righi @ 2012-07-26 11:16 UTC (permalink / raw) To: Glauber Costa Cc: Eric W. Biederman, Kir Kolyshkin, Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov On Wed, Jul 25, 2012 at 02:00:41PM +0400, Glauber Costa wrote: > On 07/25/2012 02:00 PM, Eric W. Biederman wrote: > > Glauber Costa <glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> writes: > > > >> On 07/12/2012 01:41 AM, Kir Kolyshkin wrote: > >>> Gentlemen, > >>> > >>> We are organizing containers mini-summit during next Linux Plumbers (San > >>> Diego, August 29-31). > >>> The idea is to gather and discuss everything relevant to namespaces, > >>> cgroups, resource management, > >>> checkpoint-restore and so on. > >>> > >>> We are trying to come up with a list of topics to discuss, so please > >>> reply with topic suggestions, and > >>> let me know if you are going to come. > >>> > >>> I probably forgot a few more people (such as, I am not sure who else > >>> from Google is working > >>> on cgroups stuff), so fill free to forward this to anyone you believe > >>> should go, > >>> or just let me know whom I missed. > >>> > >>> Regards, > >>> Kir. > >> > >> BTW, sorry for not replying before (vacations + post-vacations laziness) > >> > >> I would be interested in adding /proc virtualization to the discussion. > >> By now it seems userspace would be the best place for that to happen, in > >> a fuse overlay. I know Daniel has an initial implementation of that, and > >> it would be good to have it as library that both OpenVZ and LXC (and > >> whoever else wants) can use. > >> > >> Shouldn't take much time... > > > > What would you need proc virtualization for? > > > > proc provides a lot of information that userspace tools rely upon. > For instance, when running top, you can draw per-process figures from > what we have now, but you can't make sense of percentages without > aggregating container-wide information. > > When you read /proc/cpuinfo, as well, you would expect to see something > that matches your container configuration. > > "free" is another example. The list go on. Another interesting feature IMHO would be the per-cgroup loadavg. A typical use case could be a monitoring system that wants to know which containers are more overloaded than others, instead of using a single system-wide measure in /proc/loadavg. -Andrea ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <4FFDF321.4030103-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> ` (8 preceding siblings ...) 2012-07-25 8:55 ` Glauber Costa @ 2012-07-25 10:53 ` Glauber Costa [not found] ` <500FD022.6000608-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-08-02 8:37 ` Daniel Wagner 10 siblings, 1 reply; 39+ messages in thread From: Glauber Costa @ 2012-07-25 10:53 UTC (permalink / raw) To: Kir Kolyshkin Cc: Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov On 07/12/2012 01:41 AM, Kir Kolyshkin wrote: > Gentlemen, > > We are organizing containers mini-summit during next Linux Plumbers (San > Diego, August 29-31). > The idea is to gather and discuss everything relevant to namespaces, > cgroups, resource management, > checkpoint-restore and so on. > > We are trying to come up with a list of topics to discuss, so please > reply with topic suggestions, and > let me know if you are going to come. > > I probably forgot a few more people (such as, I am not sure who else > from Google is working > on cgroups stuff), so fill free to forward this to anyone you believe > should go, > or just let me know whom I missed. > > Regards, > Kir. I just came up with the following preliminary list of sessions: http://wiki.linuxplumbersconf.org/2012:containers Since people mostly said what they wanted to talk about, but without extensive descriptions, I took the liberty of coming up with a small text for each in the blueprints. If you believe this is inaccurate, or would like to see it extended (although I personally don't see the point about going into very formal and deep details here), just let me know and I will edit it. This is all still subject to change. ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <500FD022.6000608-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org>]
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <500FD022.6000608-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> @ 2012-07-25 11:51 ` Serge Hallyn 2012-07-25 11:52 ` Glauber Costa 2012-07-26 3:57 ` Eric W. Biederman 1 sibling, 1 reply; 39+ messages in thread From: Serge Hallyn @ 2012-07-25 11:51 UTC (permalink / raw) To: Glauber Costa Cc: Kir Kolyshkin, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov Quoting Glauber Costa (glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org): > On 07/12/2012 01:41 AM, Kir Kolyshkin wrote: > > Gentlemen, > > > > We are organizing containers mini-summit during next Linux Plumbers (San > > Diego, August 29-31). > > The idea is to gather and discuss everything relevant to namespaces, > > cgroups, resource management, > > checkpoint-restore and so on. > > > > We are trying to come up with a list of topics to discuss, so please > > reply with topic suggestions, and > > let me know if you are going to come. > > > > I probably forgot a few more people (such as, I am not sure who else > > from Google is working > > on cgroups stuff), so fill free to forward this to anyone you believe > > should go, > > or just let me know whom I missed. > > > > Regards, > > Kir. > > I just came up with the following preliminary list of sessions: > > http://wiki.linuxplumbersconf.org/2012:containers Thanks. We could also add devices namespace to the list. I'm fine NOT having it in the list, as I think we're agreed that it should come after user namespaces are complete. ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers 2012-07-25 11:51 ` Serge Hallyn @ 2012-07-25 11:52 ` Glauber Costa [not found] ` <500FDE1B.4090907-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 0 siblings, 1 reply; 39+ messages in thread From: Glauber Costa @ 2012-07-25 11:52 UTC (permalink / raw) To: Serge Hallyn Cc: Kir Kolyshkin, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov On 07/25/2012 03:51 PM, Serge Hallyn wrote: > Quoting Glauber Costa (glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org): >> On 07/12/2012 01:41 AM, Kir Kolyshkin wrote: >>> Gentlemen, >>> >>> We are organizing containers mini-summit during next Linux Plumbers (San >>> Diego, August 29-31). >>> The idea is to gather and discuss everything relevant to namespaces, >>> cgroups, resource management, >>> checkpoint-restore and so on. >>> >>> We are trying to come up with a list of topics to discuss, so please >>> reply with topic suggestions, and >>> let me know if you are going to come. >>> >>> I probably forgot a few more people (such as, I am not sure who else >>> from Google is working >>> on cgroups stuff), so fill free to forward this to anyone you believe >>> should go, >>> or just let me know whom I missed. >>> >>> Regards, >>> Kir. >> >> I just came up with the following preliminary list of sessions: >> >> http://wiki.linuxplumbersconf.org/2012:containers > > Thanks. We could also add devices namespace to the list. I'm fine NOT > having it in the list, as I think we're agreed that it should come after > user namespaces are complete. > How about a "future of namespaces" generic placeholder? ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <500FDE1B.4090907-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org>]
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <500FDE1B.4090907-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> @ 2012-07-25 12:15 ` Serge Hallyn 0 siblings, 0 replies; 39+ messages in thread From: Serge Hallyn @ 2012-07-25 12:15 UTC (permalink / raw) To: Glauber Costa Cc: Kir Kolyshkin, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov Quoting Glauber Costa (glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org): > On 07/25/2012 03:51 PM, Serge Hallyn wrote: > > Quoting Glauber Costa (glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org): > >> On 07/12/2012 01:41 AM, Kir Kolyshkin wrote: > >>> Gentlemen, > >>> > >>> We are organizing containers mini-summit during next Linux Plumbers (San > >>> Diego, August 29-31). > >>> The idea is to gather and discuss everything relevant to namespaces, > >>> cgroups, resource management, > >>> checkpoint-restore and so on. > >>> > >>> We are trying to come up with a list of topics to discuss, so please > >>> reply with topic suggestions, and > >>> let me know if you are going to come. > >>> > >>> I probably forgot a few more people (such as, I am not sure who else > >>> from Google is working > >>> on cgroups stuff), so fill free to forward this to anyone you believe > >>> should go, > >>> or just let me know whom I missed. > >>> > >>> Regards, > >>> Kir. > >> > >> I just came up with the following preliminary list of sessions: > >> > >> http://wiki.linuxplumbersconf.org/2012:containers > > > > Thanks. We could also add devices namespace to the list. I'm fine NOT > > having it in the list, as I think we're agreed that it should come after > > user namespaces are complete. > > > How about a "future of namespaces" generic placeholder? Sure. And I suppose syslog and time ns could also fall under that. Issues to discuss include: 1. what other namespaces do people expect to need? 2. justifications for the proposed namespaces, and other potential ways to address each. I.e., for devices ns, two justifications are (1) per-container loop devices (could be pre-allocated with containers aware of which /dev/loopN index they may use), and (2) filtering uevents only to appropriate containers to limit the uevent storm when containers do udevadm trigger --action=add (not sure, but we can brainstorm other solutions). 3. semantics for the namespace - I.e syslog namespace, how do we decide whether/when to unshare it, is it owned by a user namespace or a pid namespace, etc. ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <500FD022.6000608-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-07-25 11:51 ` Serge Hallyn @ 2012-07-26 3:57 ` Eric W. Biederman [not found] ` <877gtr6uo5.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> 1 sibling, 1 reply; 39+ messages in thread From: Eric W. Biederman @ 2012-07-26 3:57 UTC (permalink / raw) To: Glauber Costa Cc: Kir Kolyshkin, Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov Glauber Costa <glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> writes: > I just came up with the following preliminary list of sessions: > > http://wiki.linuxplumbersconf.org/2012:containers > > Since people mostly said what they wanted to talk about, but without > extensive descriptions, I took the liberty of coming up with a small > text for each in the blueprints. If you believe this is inaccurate, or > would like to see it extended (although I personally don't see the point > about going into very formal and deep details here), just let me know > and I will edit it. > > This is all still subject to change. Something that just came up recently and worth looking at if it hasn't already be resolved. The network namespace, the user namespace, and the memory control group are not meshing well. In particular we need some additional checks for an unprivileged user who can set tcp_mem. If you are the creator of a network namespace you should at least be able to set the values down. I don't know at all about increasing the amount of memory consumed by the tcp stack. The non-nesting nature of memory control groups with respect to the network stack also seems very bizarre. Another old issue is that unless I have missed something control groups are still broken for generic use in containers. Does anyone care? Are there any plans on fixing this issue? Eric ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <877gtr6uo5.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org>]
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <877gtr6uo5.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> @ 2012-07-26 9:16 ` Glauber Costa [not found] ` <50110AE6.2080701-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-07-26 18:09 ` Serge Hallyn 1 sibling, 1 reply; 39+ messages in thread From: Glauber Costa @ 2012-07-26 9:16 UTC (permalink / raw) To: Eric W. Biederman Cc: Kir Kolyshkin, Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov On 07/26/2012 07:57 AM, Eric W. Biederman wrote: > Glauber Costa <glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> writes: > >> I just came up with the following preliminary list of sessions: >> >> http://wiki.linuxplumbersconf.org/2012:containers >> >> Since people mostly said what they wanted to talk about, but without >> extensive descriptions, I took the liberty of coming up with a small >> text for each in the blueprints. If you believe this is inaccurate, or >> would like to see it extended (although I personally don't see the point >> about going into very formal and deep details here), just let me know >> and I will edit it. >> >> This is all still subject to change. > > Something that just came up recently and worth looking at if it hasn't > already be resolved. > > The network namespace, the user namespace, and the memory control group > are not meshing well. > > In particular we need some additional checks for an unprivileged user > who can set tcp_mem. If you are the creator of a network namespace you > should at least be able to set the values down. I don't know at all > about increasing the amount of memory consumed by the tcp stack. This is between the user namespace and net namespace only, right ? To be quite honest, I haven't looked thoroughly at UNS after your last work. How do you yourself believe this should be? > > The non-nesting nature of memory control groups with respect to the > network stack also seems very bizarre. Correction: The non-nesting nature of memory control groups is very bizarre. No need for modifiers. It does support nesting, though. Just that it is selectable, and not the default. But there is work in progress to change that. > > Another old issue is that unless I have missed something control groups > are still broken for generic use in containers. Does anyone care? > Are there any plans on fixing this issue? > > Eric > ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <50110AE6.2080701-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org>]
* Re: [Devel] Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <50110AE6.2080701-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> @ 2012-07-26 9:26 ` Glauber Costa [not found] ` <50110D53.2090407-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-07-26 10:57 ` Eric W. Biederman 1 sibling, 1 reply; 39+ messages in thread From: Glauber Costa @ 2012-07-26 9:26 UTC (permalink / raw) To: Eric W. Biederman Cc: Frederic Weisbecker, Balbir Singh, Pavel Emelyanov, Suleiman-GEFAQzZX7r8dnm+yROfE0A, Daniel Lezcano, Tim Hockin, Greg Thelen, Paul Turner, devel-GEFAQzZX7r8dnm+yROfE0A, Serge Hallyn, Souhlal, Tejun Heo, Dave Kleikamp, Dhaval Giani, cgroups-u79uwXL29TY76Z2rM5mHXA, KAMEZAWA Hiroyuki, Maxim-GEFAQzZX7r8dnm+yROfE0A, Johannes Weiner, Rohit Seth, Patlasov >> >> Another old issue is that unless I have missed something control groups >> are still broken for generic use in containers. Does anyone care? >> Are there any plans on fixing this issue? >> What is "generic use in containers" ? I am using them alright, but not sure if this counts as generic or specific =) ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <50110D53.2090407-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org>]
* Re: [Devel] Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <50110D53.2090407-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> @ 2012-07-26 10:42 ` Eric W. Biederman [not found] ` <874nou6bx1.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> 0 siblings, 1 reply; 39+ messages in thread From: Eric W. Biederman @ 2012-07-26 10:42 UTC (permalink / raw) To: Glauber Costa Cc: Frederic Weisbecker, Balbir Singh, Pavel Emelyanov, Suleiman-GEFAQzZX7r8dnm+yROfE0A, Daniel Lezcano, Tim Hockin, Greg Thelen, Paul Turner, devel-GEFAQzZX7r8dnm+yROfE0A, Serge Hallyn, Souhlal, Tejun Heo, Dave Kleikamp, Dhaval Giani, cgroups-u79uwXL29TY76Z2rM5mHXA, KAMEZAWA Hiroyuki, Maxim-GEFAQzZX7r8dnm+yROfE0A, Johannes Weiner, Rohit Seth, Patlasov Glauber Costa <glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> writes: >>> >>> Another old issue is that unless I have missed something control groups >>> are still broken for generic use in containers. Does anyone care? >>> Are there any plans on fixing this issue? >>> > > What is "generic use in containers" ? I am using them alright, but not > sure if this counts as generic or specific =) The general container use case would be. - Create a new mount namespace. - Create fresh mounts of all of the control groups like I would do at boot, with no consideration to any other control group state. - Start forking processes. The expected semantics would be something like chroot for control groups, where all of the control groups that are created by fresh mounts are relative to whatever state the process of being in a control group that the process that mounted them was in. Last I looked the closest you could come to that was bind mounts, and even with bind mounts you get into weird things where control groups are bound into hierarchies and you may be running a distribution that wants it's control groups bound into different hierarchies. Last I looked this was just about a total disaster, and the only thing that allowed systemd to run in containers was the fact that systemd did not user controllers. Eric ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <874nou6bx1.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org>]
* Re: [Devel] Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <874nou6bx1.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> @ 2012-07-26 18:15 ` Tejun Heo [not found] ` <20120726181528.GA25660-hpIqsD4AKlfQT0dZR+AlfA@public.gmane.org> 2012-07-26 18:16 ` Serge Hallyn 1 sibling, 1 reply; 39+ messages in thread From: Tejun Heo @ 2012-07-26 18:15 UTC (permalink / raw) To: Eric W. Biederman Cc: Glauber Costa, Frederic Weisbecker, Balbir Singh, Pavel Emelyanov, Suleiman-GEFAQzZX7r8dnm+yROfE0A, Daniel Lezcano, Tim Hockin, Greg Thelen, Paul Turner, devel-GEFAQzZX7r8dnm+yROfE0A, Serge Hallyn, Souhlal, Dave Kleikamp, Dhaval Giani, cgroups-u79uwXL29TY76Z2rM5mHXA, KAMEZAWA Hiroyuki, Maxim-GEFAQzZX7r8dnm+yROfE0A, Johannes Weiner, Rohit Seth, Patlasov Hello, Eric. On Thu, Jul 26, 2012 at 03:42:50AM -0700, Eric W. Biederman wrote: > - Create a new mount namespace. > - Create fresh mounts of all of the control groups like I would do at > boot, with no consideration to any other control group state. > - Start forking processes. > > The expected semantics would be something like chroot for control > groups, where all of the control groups that are created by fresh mounts > are relative to whatever state the process of being in a control group > that the process that mounted them was in. No, any attempt to build namespace support into cgroup core code will be nacked with strong prejudice. I still think it was a mistake to add that to sysfs. Thankfully, procfs is going the FUSE way and I hope in time we could convert sysfs to a similar mechanism and deprecate the in-kernel support. So, no, no, no, no, no, no, no, no, no, no, no, no. :P -- tejun ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <20120726181528.GA25660-hpIqsD4AKlfQT0dZR+AlfA@public.gmane.org>]
* Re: [Devel] Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <20120726181528.GA25660-hpIqsD4AKlfQT0dZR+AlfA@public.gmane.org> @ 2012-07-26 19:19 ` Eric W. Biederman [not found] ` <87a9ymwcsv.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> 0 siblings, 1 reply; 39+ messages in thread From: Eric W. Biederman @ 2012-07-26 19:19 UTC (permalink / raw) To: Tejun Heo Cc: Glauber Costa, Frederic Weisbecker, Balbir Singh, Pavel Emelyanov, Suleiman-GEFAQzZX7r8dnm+yROfE0A, Daniel Lezcano, Tim Hockin, Greg Thelen, Paul Turner, devel-GEFAQzZX7r8dnm+yROfE0A, Serge Hallyn, Souhlal, Dave Kleikamp, Dhaval Giani, cgroups-u79uwXL29TY76Z2rM5mHXA, KAMEZAWA Hiroyuki, Maxim-GEFAQzZX7r8dnm+yROfE0A, Johannes Weiner, Rohit Seth, Patlasov Tejun Heo <tj-DgEjT+Ai2ygdnm+yROfE0A@public.gmane.org> writes: > Hello, Eric. > > On Thu, Jul 26, 2012 at 03:42:50AM -0700, Eric W. Biederman wrote: >> - Create a new mount namespace. >> - Create fresh mounts of all of the control groups like I would do at >> boot, with no consideration to any other control group state. >> - Start forking processes. >> >> The expected semantics would be something like chroot for control >> groups, where all of the control groups that are created by fresh mounts >> are relative to whatever state the process of being in a control group >> that the process that mounted them was in. > > No, any attempt to build namespace support into cgroup core code will > be nacked with strong prejudice. The cgroup code was only merged with the understanding that this support was simple to add and it would be added. I am sorry that no one had the sense to follow up and make certain that promise was not fullfilled. > I still think it was a mistake to add that to sysfs. sysfs fundamentally can not represent all of the network devices in the hierarchy of objects that it chose. sysfs does not have namespace hacks. Sysfs has hacks for the limitations of the hiearchary of devices that was choosen for a sysfs user space ABI. > Thankfully, procfs is going the FUSE way. No procfs is not going the FUSE way. Hacks for programs that misuse information in procfs is going the FUSE way. The best example is there currently is not a good method for programs to figure out how parellel it is productive to be so the programs read /proc/cpuinfo and get the count of cpus. Control groups can limit you to fewer cpus but those programs have figured that out yet. But ultimately fuse for procfs is about the rare case where people want to lie to applications, because it is easier to lie to applications then to disabuse the applications of their mistaken asumptions. I have not seen a single suggest that any of the other procfs bits can go away. > and I hope in time we could convert sysfs to a similar mechanism and > deprecate the in-kernel support. I have nothing that even suggests there is a reasonable possibility of using fuse to deprecate any of the proc or sysfs support. > So, no, no, no, no, no, no, no, no, no, no, no, no. :P Bahahahahahahaha! :P I sort of wish I had the energy to tackle this. As it is control groups hierarchies have very severe usablilty problems supporting one of their core use cases. We should have our interfaces designed such that it is possible to run nested init's without hacks, and the only significant piece left on the hacks pile is control groups. Control group hiearchies are are really strange piece of work whose design makes very little sense to me. I think all I want from control groups is that a process that is bound into a control group hiearchy when it mounts that hiearchy will get not the normal control group root but instead the dentry of the directory for that processes place in the control group hiearchy. What is that maybe 15-30 lines of code to look up the right dentry? Eric ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <87a9ymwcsv.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org>]
* Re: [Devel] Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <87a9ymwcsv.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> @ 2012-07-26 19:44 ` Tejun Heo 0 siblings, 0 replies; 39+ messages in thread From: Tejun Heo @ 2012-07-26 19:44 UTC (permalink / raw) To: Eric W. Biederman Cc: Glauber Costa, Frederic Weisbecker, Balbir Singh, Pavel Emelyanov, Suleiman-GEFAQzZX7r8dnm+yROfE0A, Daniel Lezcano, Tim Hockin, Greg Thelen, Paul Turner, devel-GEFAQzZX7r8dnm+yROfE0A, Serge Hallyn, Souhlal, Dave Kleikamp, Dhaval Giani, cgroups-u79uwXL29TY76Z2rM5mHXA, KAMEZAWA Hiroyuki, Maxim-GEFAQzZX7r8dnm+yROfE0A, Johannes Weiner, Rohit Seth, Patlasov Hey, Eric. On Thu, Jul 26, 2012 at 12:19:12PM -0700, Eric W. Biederman wrote: > > No, any attempt to build namespace support into cgroup core code will > > be nacked with strong prejudice. > > The cgroup code was only merged with the understanding that this support > was simple to add and it would be added. I am sorry that no one had > the sense to follow up and make certain that promise was not fullfilled. Good chunk of cgroup is messy and I'm likely to continue to break a lot of whatever promises that have been made. :) > > Thankfully, procfs is going the FUSE way. > > No procfs is not going the FUSE way. Hacks for programs that misuse > information in procfs is going the FUSE way. All those were proposed to be solved by "teaching" kernel procfs how to present itself differently. > The best example is there currently is not a good method for programs > to figure out how parellel it is productive to be so the programs > read /proc/cpuinfo and get the count of cpus. Control groups can > limit you to fewer cpus but those programs have figured that out yet. Yeah, and you can handle that too nicely with FUSE. More on this later. > But ultimately fuse for procfs is about the rare case where people > want to lie to applications, because it is easier to lie to applications > then to disabuse the applications of their mistaken asumptions. I don't think so. They are necessary parts of representing a properly scoped environment. > I have not seen a single suggest that any of the other procfs bits > can go away. I think I made that a couple times now. I definitely intend to push things that way. Or, at least, I'll bark as hard as I can against adding more namespace stuff to system pseudo filesystems. > > and I hope in time we could convert sysfs to a similar mechanism and > > deprecate the in-kernel support. > > I have nothing that even suggests there is a reasonable possibility of > using fuse to deprecate any of the proc or sysfs support. Why not? If there's some deficiency in FUSE or notification mechanisms in pseudo FSes, let's fix them. > > So, no, no, no, no, no, no, no, no, no, no, no, no. :P > > Bahahahahahahaha! :P :) > I sort of wish I had the energy to tackle this. As it is control groups > hierarchies have very severe usablilty problems supporting one of their > core use cases. > > We should have our interfaces designed such that it is possible to run > nested init's without hacks, and the only significant piece left on the > hacks pile is control groups. > > Control group hiearchies are are really strange piece of work whose > design makes very little sense to me. cgroupfs is riddled with confused designs but this is not it. The confusion is that namespace should play a major role in the design of system pseudo filesystems and that it can be achieved by playing peekaboo with dentries. It obfuscates the code for niche use case - which in itself could be acceptable if that's the only / best way to achieve that - while not even being able to serve the said use case properly. Thanks. -- tejun ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: [Devel] Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <874nou6bx1.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> 2012-07-26 18:15 ` Tejun Heo @ 2012-07-26 18:16 ` Serge Hallyn 2012-07-26 19:38 ` Eric W. Biederman 1 sibling, 1 reply; 39+ messages in thread From: Serge Hallyn @ 2012-07-26 18:16 UTC (permalink / raw) To: Eric W. Biederman Cc: Glauber Costa, Frederic Weisbecker, Balbir Singh, Pavel Emelyanov, Suleiman-GEFAQzZX7r8dnm+yROfE0A, Daniel Lezcano, Tim Hockin, Greg Thelen, Paul Turner, devel-GEFAQzZX7r8dnm+yROfE0A, Souhlal, Tejun Heo, Dave Kleikamp, Dhaval Giani, cgroups-u79uwXL29TY76Z2rM5mHXA, KAMEZAWA Hiroyuki, Maxim-GEFAQzZX7r8dnm+yROfE0A, Johannes Weiner, Rohit Seth, Patlasov Quoting Eric W. Biederman (ebiederm-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org): > Glauber Costa <glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> writes: > > >>> > >>> Another old issue is that unless I have missed something control groups > >>> are still broken for generic use in containers. Does anyone care? > >>> Are there any plans on fixing this issue? > >>> > > > > What is "generic use in containers" ? I am using them alright, but not > > sure if this counts as generic or specific =) > > The general container use case would be. > > - Create a new mount namespace. > - Create fresh mounts of all of the control groups like I would do at > boot, with no consideration to any other control group state. > - Start forking processes. > > The expected semantics would be something like chroot for control > groups, where all of the control groups that are created by fresh mounts > are relative to whatever state the process of being in a control group > that the process that mounted them was in. > > Last I looked the closest you could come to that was bind mounts, and > even with bind mounts you get into weird things where control groups are > bound into hierarchies and you may be running a distribution that wants > it's control groups bound into different hierarchies. > > Last I looked this was just about a total disaster, and the only thing > that allowed systemd to run in containers was the fact that systemd did > not user controllers. > > Eric (Sorry, please disregard my last email :) Yes, what we do now in ubuntu quantal is the bind mounts you mention, and only optionally (using a startup hook). Each container is brought up in say /sys/fs/cgroup/devices/lxc/container1/container1.real, and that dir is bind-mounted under /sys/fs/cgroup/devices in the guest. The guest is not allowed to mount cgroup fs himself. It's certainly not ideal (and in cases where cgroup allows you to raise your own limits, worthless). The 'fake cgroup root' has been mentioned before to address this. Definately worth discussing. thanks, -serge ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: [Devel] Re: containers and cgroups mini-summit @ Linux Plumbers 2012-07-26 18:16 ` Serge Hallyn @ 2012-07-26 19:38 ` Eric W. Biederman 0 siblings, 0 replies; 39+ messages in thread From: Eric W. Biederman @ 2012-07-26 19:38 UTC (permalink / raw) To: Serge Hallyn Cc: Glauber Costa, Frederic Weisbecker, Balbir Singh, Pavel Emelyanov, Suleiman-GEFAQzZX7r8dnm+yROfE0A, Daniel Lezcano, Tim Hockin, Greg Thelen, Paul Turner, devel-GEFAQzZX7r8dnm+yROfE0A, Souhlal, Tejun Heo, Dave Kleikamp, Dhaval Giani, cgroups-u79uwXL29TY76Z2rM5mHXA, KAMEZAWA Hiroyuki, Maxim-GEFAQzZX7r8dnm+yROfE0A, Johannes Weiner, Rohit Seth, Patlasov Serge Hallyn <serge.hallyn-Z7WLFzj8eWMS+FvcfC7Uqw@public.gmane.org> writes: > (Sorry, please disregard my last email :) > > Yes, what we do now in ubuntu quantal is the bind mounts you mention, > and only optionally (using a startup hook). > Each container is brought up in say > /sys/fs/cgroup/devices/lxc/container1/container1.real, and that dir is > bind-mounted under /sys/fs/cgroup/devices in the guest. The guest > is not allowed to mount cgroup fs himself. > > It's certainly not ideal (and in cases where cgroup allows you to > raise your own limits, worthless). The 'fake cgroup root' has been > mentioned before to address this. Definately worth discussing. It is going to be interesting to see how all of the unprivileged operations work when the user-namespaces start allowing unprivileged users to do things (3.7 timeframe I hope). I can see it making things both easier and harder. I would hope not actually being root will make it easier to keep from raising your own limits. Running some operations as non-root will catch other places off guard where people were definitely expecting nothing of the kind. There are a couple of networking memory limits exposed through sysctl that I don't expect we want everyone changing, that I need to figure out how to separate out from the rest. A concept that hasn't existed before. Eric ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <50110AE6.2080701-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-07-26 9:26 ` [Devel] " Glauber Costa @ 2012-07-26 10:57 ` Eric W. Biederman 1 sibling, 0 replies; 39+ messages in thread From: Eric W. Biederman @ 2012-07-26 10:57 UTC (permalink / raw) To: Glauber Costa Cc: Kir Kolyshkin, Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov Glauber Costa <glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> writes: > On 07/26/2012 07:57 AM, Eric W. Biederman wrote: >> Glauber Costa <glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> writes: >> >>> I just came up with the following preliminary list of sessions: >>> >>> http://wiki.linuxplumbersconf.org/2012:containers >>> >>> Since people mostly said what they wanted to talk about, but without >>> extensive descriptions, I took the liberty of coming up with a small >>> text for each in the blueprints. If you believe this is inaccurate, or >>> would like to see it extended (although I personally don't see the point >>> about going into very formal and deep details here), just let me know >>> and I will edit it. >>> >>> This is all still subject to change. >> >> Something that just came up recently and worth looking at if it hasn't >> already be resolved. >> >> The network namespace, the user namespace, and the memory control group >> are not meshing well. >> >> In particular we need some additional checks for an unprivileged user >> who can set tcp_mem. If you are the creator of a network namespace you >> should at least be able to set the values down. I don't know at all >> about increasing the amount of memory consumed by the tcp stack. > > This is between the user namespace and net namespace only, right ? > > To be quite honest, I haven't looked thoroughly at UNS after your last > work. How do you yourself believe this should be? I looked a little deeper and there are a few more places in the networking stack besides tcp_mem, that are setting memory limits that unprivileged users should not be able to touch. What I would expect one of. - A global limit accross network namespaces that the per netns limit can not allow you to escape. - Something like rlimits where the limit can be reduced but not increased. - capability checks that prevent anyone except the global root from changing the value (of course this has the problem that creating a fresh network namespace allows memory limit escaping). The driving factor is that in the 3.7 time frame it will be possible to create user namespaces and network namespaces as unprivileged users. So we have to be careful that we setup the limits so that the global root on the host can set limits that are not trivially overridden. >> The non-nesting nature of memory control groups with respect to the >> network stack also seems very bizarre. > > Correction: > > The non-nesting nature of memory control groups is very bizarre. No need > for modifiers. It does support nesting, though. Just that it is > selectable, and not the default. But there is work in progress to change > that. Which leads to another bit of fun. It is possible to create containers in containers in containers, which has interesting implications for control groups in general, and especially interesting implications for control groups that don't nest. Eric ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <877gtr6uo5.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> 2012-07-26 9:16 ` Glauber Costa @ 2012-07-26 18:09 ` Serge Hallyn 1 sibling, 0 replies; 39+ messages in thread From: Serge Hallyn @ 2012-07-26 18:09 UTC (permalink / raw) To: Eric W. Biederman Cc: Glauber Costa, Kir Kolyshkin, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov Quoting Eric W. Biederman (ebiederm-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org): > Glauber Costa <glommer-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> writes: > > > I just came up with the following preliminary list of sessions: > > > > http://wiki.linuxplumbersconf.org/2012:containers > > > > Since people mostly said what they wanted to talk about, but without > > extensive descriptions, I took the liberty of coming up with a small > > text for each in the blueprints. If you believe this is inaccurate, or > > would like to see it extended (although I personally don't see the point > > about going into very formal and deep details here), just let me know > > and I will edit it. > > > > This is all still subject to change. > > Something that just came up recently and worth looking at if it hasn't > already be resolved. > > The network namespace, the user namespace, and the memory control group > are not meshing well. > > In particular we need some additional checks for an unprivileged user > who can set tcp_mem. If you are the creator of a network namespace you > should at least be able to set the values down. I don't know at all > about increasing the amount of memory consumed by the tcp stack. > > The non-nesting nature of memory control groups with respect to the > network stack also seems very bizarre. > > > Another old issue is that unless I have missed something control groups > are still broken for generic use in containers. Does anyone care? > Are there any plans on fixing this issue? Can you elaborate? Which specific breakages are you thinking of? ^ permalink raw reply [flat|nested] 39+ messages in thread
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <4FFDF321.4030103-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> ` (9 preceding siblings ...) 2012-07-25 10:53 ` Glauber Costa @ 2012-08-02 8:37 ` Daniel Wagner [not found] ` <501A3C48.6060607-kQCPcA+X3s7YtjvyW6yDsg@public.gmane.org> 10 siblings, 1 reply; 39+ messages in thread From: Daniel Wagner @ 2012-08-02 8:37 UTC (permalink / raw) To: Kir Kolyshkin Cc: Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, Glauber Costa, James Bottomley, Pavel Emelyanov, Maxim Patlasov Hi, On 11.07.2012 23:41, Kir Kolyshkin wrote: > Gentlemen, > > We are organizing containers mini-summit during next Linux Plumbers (San > Diego, August 29-31). > The idea is to gather and discuss everything relevant to namespaces, > cgroups, resource management, > checkpoint-restore and so on. > > We are trying to come up with a list of topics to discuss, so please > reply with topic suggestions, and > let me know if you are going to come. I'd like to give a short presentation on what we would like to do with cgroups and ConnMan including a demonstration. The demo will show what will happpen when orthogonal cgroup hierarchies are getting used by more than just systemd. Also I'd like to trigger some discussion on the future of the networking controllers (net_prio, net_cls). cheers, daniel ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <501A3C48.6060607-kQCPcA+X3s7YtjvyW6yDsg@public.gmane.org>]
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <501A3C48.6060607-kQCPcA+X3s7YtjvyW6yDsg@public.gmane.org> @ 2012-08-02 8:37 ` Glauber Costa [not found] ` <501A3C4D.1020101-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 0 siblings, 1 reply; 39+ messages in thread From: Glauber Costa @ 2012-08-02 8:37 UTC (permalink / raw) To: Daniel Wagner Cc: Kir Kolyshkin, Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov On 08/02/2012 12:37 PM, Daniel Wagner wrote: > Hi, > > On 11.07.2012 23:41, Kir Kolyshkin wrote: >> Gentlemen, >> >> We are organizing containers mini-summit during next Linux Plumbers (San >> Diego, August 29-31). >> The idea is to gather and discuss everything relevant to namespaces, >> cgroups, resource management, >> checkpoint-restore and so on. >> >> We are trying to come up with a list of topics to discuss, so please >> reply with topic suggestions, and >> let me know if you are going to come. > > I'd like to give a short presentation on what we would like to do with > cgroups and ConnMan including a demonstration. The demo will show what > will happpen when orthogonal cgroup hierarchies are getting used by more > than just systemd. Also I'd like to trigger some discussion on the > future of the networking controllers (net_prio, net_cls). > Daniel, could you fill up the details of this proposal in the plumbers system? I believe kir sent out the details on how to do it somewhere down this thread... ^ permalink raw reply [flat|nested] 39+ messages in thread
[parent not found: <501A3C4D.1020101-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org>]
* Re: containers and cgroups mini-summit @ Linux Plumbers [not found] ` <501A3C4D.1020101-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> @ 2012-08-02 9:42 ` Daniel Wagner 0 siblings, 0 replies; 39+ messages in thread From: Daniel Wagner @ 2012-08-02 9:42 UTC (permalink / raw) To: Glauber Costa Cc: Kir Kolyshkin, Serge Hallyn, Frederic Weisbecker, Daniel Lezcano, Johannes Weiner, Tejun Heo, Rohit Seth, Greg Thelen, Eric Biederman, Balbir Singh, Dhaval Giani, KAMEZAWA Hiroyuki, Paul Turner, Tim Hockin, Suleiman Souhlal, Dave Kleikamp, Linux Containers, cgroups-u79uwXL29TY76Z2rM5mHXA, devel-GEFAQzZX7r8dnm+yROfE0A, James Bottomley, Pavel Emelyanov, Maxim Patlasov Hi Glauber, On 02.08.2012 10:37, Glauber Costa wrote: > On 08/02/2012 12:37 PM, Daniel Wagner wrote: >> Hi, >> >> On 11.07.2012 23:41, Kir Kolyshkin wrote: >>> Gentlemen, >>> >>> We are organizing containers mini-summit during next Linux Plumbers (San >>> Diego, August 29-31). >>> The idea is to gather and discuss everything relevant to namespaces, >>> cgroups, resource management, >>> checkpoint-restore and so on. >>> >>> We are trying to come up with a list of topics to discuss, so please >>> reply with topic suggestions, and >>> let me know if you are going to come. >> >> I'd like to give a short presentation on what we would like to do with >> cgroups and ConnMan including a demonstration. The demo will show what >> will happpen when orthogonal cgroup hierarchies are getting used by more >> than just systemd. Also I'd like to trigger some discussion on the >> future of the networking controllers (net_prio, net_cls). >> > > Daniel, could you fill up the details of this proposal in the plumbers > system? I believe kir sent out the details on how to do it somewhere > down this thread... Thanks, just added this one here: https://blueprints.launchpad.net/lpc/+spec/lpc2012-cont-network cheers, daniel ^ permalink raw reply [flat|nested] 39+ messages in thread
end of thread, other threads:[~2012-08-02 9:42 UTC | newest] Thread overview: 39+ messages (download: mbox.gz / follow: Atom feed) -- links below jump to the message on this page -- 2012-07-11 21:41 containers and cgroups mini-summit @ Linux Plumbers Kir Kolyshkin [not found] ` <4FFDF321.4030103-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> 2012-07-12 3:47 ` Serge Hallyn 2012-07-13 15:09 ` Kir Kolyshkin [not found] ` <50003A13.4000201-GEFAQzZX7r8dnm+yROfE0A@public.gmane.org> 2012-07-16 20:29 ` Serge Hallyn 2012-07-12 13:26 ` Frederic Weisbecker 2012-07-16 21:08 ` Dhaval Giani 2012-07-17 6:59 ` Balbir Singh [not found] ` <CAKTCnzmhWZa=_+EE9rA63NuJf3kQ-bXNYStXmZXt8r2w-N02ag-JsoAwUIsXosN+BqQ9rBEUg@public.gmane.org> 2012-07-18 10:36 ` James Bottomley 2012-07-17 7:26 ` Daniel Lezcano 2012-07-17 7:26 ` Daniel Lezcano [not found] ` <50051390.7010109-QSEj5FYQhm4dnm+yROfE0A@public.gmane.org> 2012-07-25 8:48 ` Glauber Costa 2012-07-17 20:06 ` Tejun Heo [not found] ` <20120717200606.GD24336-hpIqsD4AKlfQT0dZR+AlfA@public.gmane.org> 2012-07-17 20:15 ` Paul Turner 2012-07-20 16:30 ` Johannes Weiner 2012-07-21 1:59 ` Kamezawa Hiroyuki 2012-07-25 8:55 ` Glauber Costa [not found] ` <500FB473.3090606-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-07-25 10:00 ` Eric W. Biederman [not found] ` <871uk0b1p4.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> 2012-07-25 10:00 ` Glauber Costa [not found] ` <500FC3C9.4010005-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-07-25 10:02 ` [Devel] " Glauber Costa [not found] ` <500FC44C.1030606-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-07-25 11:16 ` Eric W. Biederman 2012-07-26 11:16 ` Andrea Righi 2012-07-25 10:53 ` Glauber Costa [not found] ` <500FD022.6000608-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-07-25 11:51 ` Serge Hallyn 2012-07-25 11:52 ` Glauber Costa [not found] ` <500FDE1B.4090907-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-07-25 12:15 ` Serge Hallyn 2012-07-26 3:57 ` Eric W. Biederman [not found] ` <877gtr6uo5.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> 2012-07-26 9:16 ` Glauber Costa [not found] ` <50110AE6.2080701-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-07-26 9:26 ` [Devel] " Glauber Costa [not found] ` <50110D53.2090407-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-07-26 10:42 ` Eric W. Biederman [not found] ` <874nou6bx1.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> 2012-07-26 18:15 ` Tejun Heo [not found] ` <20120726181528.GA25660-hpIqsD4AKlfQT0dZR+AlfA@public.gmane.org> 2012-07-26 19:19 ` Eric W. Biederman [not found] ` <87a9ymwcsv.fsf-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org> 2012-07-26 19:44 ` Tejun Heo 2012-07-26 18:16 ` Serge Hallyn 2012-07-26 19:38 ` Eric W. Biederman 2012-07-26 10:57 ` Eric W. Biederman 2012-07-26 18:09 ` Serge Hallyn 2012-08-02 8:37 ` Daniel Wagner [not found] ` <501A3C48.6060607-kQCPcA+X3s7YtjvyW6yDsg@public.gmane.org> 2012-08-02 8:37 ` Glauber Costa [not found] ` <501A3C4D.1020101-bzQdu9zFT3WakBO8gow8eQ@public.gmane.org> 2012-08-02 9:42 ` Daniel Wagner
This is an external index of several public inboxes, see mirroring instructions on how to clone and mirror all data and code used by this external index.