CGroup Namespaces Support Set For Linux 4.6 Kernel

Written by Michael Larabel in Linux Kernel on 20 March 2016 at 09:19 AM EDT. 1 Comment
LINUX KERNEL
Here is another big feature coming for the Linux 4.6 kernel.

Following the cgroup pull request for the Linux 4.6 merge window, Tejun Heo sent in a second pull request and it goes ahead to provide cgroup namespaces support for the kernel.

The cgroup namespaces support has been in development for over two years and is now being mainlined. This feature comes down to just over 600 lines of new code in the kernel.

In terms of the cgroup namespaces use-case, an earlier patch series describes it as, "Cgroups and Namespaces are used together to create 'virtual' containers that isolates the host environment from the processes running in container. But since cgroups themselves are not 'virtualized', the task is always able to see global cgroups view through cgroupfs mount and via /proc/self/cgroup file."

Another cgroup NS patch went on to explain, "The main purpose of cgroup namespace is to virtualize the contents of /proc/self/cgroup file. Processes inside a cgroup namespace are only able to see paths relative to their namespace root (unless they are moved outside of their cgroupns-root, at which point they will see a relative path from their cgroupns-root). For a correctly setup container this enables container-tools (like libcontainer, lxc, lmctfy, etc.) to create completely virtualized containers without leaking system level cgroup hierarchy to the task."

The pull request with the cgroup namespaces support for Linux 4.6 can be found here.
1 Comment
Related News
Linux 6.9-rc5 Released: The Diffstat "Looks A Bit Wonky" But Not Bad
Linux 6.9-rc5 Picking Up Fixes For Intel FRED, BHI & GFNI/VAES Checks
Linux 6.10 Preps A Kernel Panic Screen - Sort Of A "Blue Screen of Death"
Linus Torvalds Injects Tabs To Thwart Kconfig Parsers Not Correctly Handling Them
Linux 6.9-rc4 Brings More Bcachefs Fixes, Native BHI Mitigation
Linux 6.10 To Account For NUMA Node When Allocating Per-CPU Cpumasks
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
Rust-Written LAVD Kernel Scheduler Shows Promising Results For Linux Gaming
Linus Torvalds Injects Tabs To Thwart Kconfig Parsers Not Correctly Handling Them
Former Nouveau Lead Developer Joins NVIDIA, Continues Working On Open-Source Driver
Fedora Linux 40 Cleared For Release Next Week
Mozilla Finally Begins Offering Firefox ARM64 Linux Binaries
Ubuntu 24.04 Supports Easy Installation Of OpenZFS Root File-System With Encryption
openSUSE Factory Achieves Bit-By-Bit Reproducible Builds
Linux 6.10 Preps A Kernel Panic Screen - Sort Of A "Blue Screen of Death"