Containers (Still Confusion!??) Chillax !! Unsharing is caring...
Its all about Cgroups and Namespaces:
Lets check it out!!!
Cgroups:
cgroups (abbreviated from control groups) is a Linux kernel feature that limits, accounts for, and isolates the resource usage (CPU, memory, disk I/O, network, etc.) of a collection of processes.
Inshort grouping processes and imposing limits
Namespaces:
- Linux kernel primitives,fundamental aspects of containers
Inshort providing isolation to controlled group of processes
- pid (process id)
- mnt(rootfs)
- net(network Stack)
- user(usermapping)
- uts(hostname)
- ipc(processes inside container share all)
Note: /proc/$pid/ns is a procfs dir which stores informations about namespaces
References
https://linuxcontainers.org/lxc/introduction/
No comments:
Post a Comment