Re: Net containers config and usage - chris-SqNQQPNds68nxqbYAscKCQ

All of lore.kernel.org
 help / color / mirror / Atom feed

From: chris-SqNQQPNds68nxqbYAscKCQ@public.gmane.org
To: "Serge E. Hallyn" <serue-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
Cc: "containers-qjLDD68F18O7TbgM5vRIOg@public.gmane.org"
	<containers-qjLDD68F18O7TbgM5vRIOg@public.gmane.org>,
	"Eric W. Biederman"
	<ebiederm-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org>
Subject: Re: Net containers config and usage
Date: Wed, 14 Jan 2009 11:39:44 -0800	[thread overview]
Message-ID: <20090114193944.GA14129@versecorp.net> (raw)
In-Reply-To: <20090114192633.GA8572-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>

On Wed, Jan 14, 2009 at 01:26:34PM -0600, Serge E. Hallyn wrote:
> Quoting Daniel Lezcano (daniel.lezcano-GANU6spQydw@public.gmane.org):
> > chris-SqNQQPNds68nxqbYAscKCQ@public.gmane.org wrote:
> > > On Wed, Jan 14, 2009 at 09:50:29AM +0100, Daniel Lezcano wrote:
> > >   
> > >> Guenter Roeck wrote:
> > >>     
> > >>> As far as I recall, if you have sysfs active and use the sysfs patch to
> > >>> let you configure both sysfs and network namespaces, you can only move
> > >>> virtual interfaces into a network namespace.
> > >>>
> > >>> Guenter
> > >>>  
> > >>>       
> > >> Ah ! yes, you are right :)
> > >>
> > >> The current upstream implementation allowing sysfs and netns to coexist 
> > >> together has one restriction, the physical network devices can not be 
> > >> moved if sysfs is enabled in the kernel. This is why Chris can not move 
> > >> the physical network device with this version of the kernel.
> > >> This restriction will be set until the sysfs per namespace is fully 
> > >> supported.
> > >>
> > >> This restriction does not exist with with the previous kernel version 
> > >> with the sysfs per namespace patchset.
> > >>
> > >> -- Daniel
> > >>
> > >>     
> > >
> > > Ah, great, thanks to all for your help on this.
> > > Do you have any rough estimate when the support for sysfs per namespace will
> > >   
> > The sysfs per namespace has been rejected because of some design 
> > problems related with the sysfs itself.
> > Perhaps Eric can tell more about that...
> 
> Chris, in the meantime, is using the physical device an absolute
> necessity, or could you work around it for now using a veth tunnel?
> 
> Even if Eric has been working on the sysfs locking rework quietly
> the last few months, i'd expect several months of back-and-forth
> trying to prove that the rework is correct...
> 
> -serge

Yes, ultimately we'll need the physical device inside the same namespace
as our application.  Our application does a lot of management on the interface,
monitoring things like the interface's link-pulse and such, and that wouldn't
be available through a virtual interface.  We can always redesign things
to have the management portion run in the namespace with the physical interface,
but for performance reasons we'd eventually want the physical interface to be
directly inside the namespace anyway - so that would probably be wasted effort.

Thanks,
Chris

next prev parent reply	other threads:[~2009-01-14 19:39 UTC|newest]

Thread overview: 22+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2009-01-12 22:35 Net containers config and usage chris-SqNQQPNds68nxqbYAscKCQ
     [not found] ` <20090112223545.GA15781-SqNQQPNds68nxqbYAscKCQ@public.gmane.org>
2009-01-12 22:51   ` Serge E. Hallyn
     [not found]     ` <20090112225140.GA29834-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2009-01-13  0:54       ` chris-SqNQQPNds68nxqbYAscKCQ
     [not found]         ` <20090113005436.GA26167-SqNQQPNds68nxqbYAscKCQ@public.gmane.org>
2009-01-13  8:20           ` Daniel Lezcano
     [not found]             ` <496C4EB0.30203-GANU6spQydw@public.gmane.org>
2009-01-13 14:29               ` Serge E. Hallyn
     [not found]                 ` <20090113142925.GA11767-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2009-01-13 19:18                   ` chris-SqNQQPNds68nxqbYAscKCQ
     [not found]                     ` <20090113191837.GA29900-SqNQQPNds68nxqbYAscKCQ@public.gmane.org>
2009-01-13 19:37                       ` Guenter Roeck
2009-01-13 19:49                         ` chris-SqNQQPNds68nxqbYAscKCQ
2009-01-13 19:52                       ` Daniel Lezcano
     [not found]                         ` <496CF11A.7090908-GANU6spQydw@public.gmane.org>
2009-01-13 21:47                           ` chris-SqNQQPNds68nxqbYAscKCQ
     [not found]                             ` <20090113214747.GA23742-SqNQQPNds68nxqbYAscKCQ@public.gmane.org>
2009-01-13 22:53                               ` Guenter Roeck
2009-01-14  8:50                                 ` Daniel Lezcano
     [not found]                                   ` <496DA755.1040001-GANU6spQydw@public.gmane.org>
2009-01-14 17:27                                     ` chris-SqNQQPNds68nxqbYAscKCQ
     [not found]                                       ` <20090114172739.GA13581-SqNQQPNds68nxqbYAscKCQ@public.gmane.org>
2009-01-14 17:41                                         ` Daniel Lezcano
     [not found]                                           ` <496E23DA.9080402-GANU6spQydw@public.gmane.org>
2009-01-14 19:26                                             ` Serge E. Hallyn
     [not found]                                               ` <20090114192633.GA8572-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org>
2009-01-14 19:39                                                 ` chris-SqNQQPNds68nxqbYAscKCQ [this message]
     [not found]                                                   ` <20090114193944.GA14129-SqNQQPNds68nxqbYAscKCQ@public.gmane.org>
2009-01-14 19:53                                                     ` Daniel Lezcano
     [not found]                                                       ` <496E42D6.2080306-GANU6spQydw@public.gmane.org>
2009-01-15 21:59                                                         ` chris-SqNQQPNds68nxqbYAscKCQ
     [not found]                                                           ` <20090115215900.GA30607-SqNQQPNds68nxqbYAscKCQ@public.gmane.org>
2009-01-15 22:21                                                             ` Daniel Lezcano
     [not found]                                                               ` <496FB6F7.9080906-GANU6spQydw@public.gmane.org>
2009-01-15 23:20                                                                 ` Chris R. Jones
     [not found]                                                                   ` <20090115232013.GA9722-SqNQQPNds68nxqbYAscKCQ@public.gmane.org>
2009-01-16  4:38                                                                     ` Eric W. Biederman
2009-01-14 22:10                                             ` Eric W. Biederman

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20090114193944.GA14129@versecorp.net \
    --to=chris-sqnqqpnds68nxqbyasckcq@public.gmane.org \
    --cc=containers-qjLDD68F18O7TbgM5vRIOg@public.gmane.org \
    --cc=ebiederm-aS9lmoZGLiVWk0Htik3J/w@public.gmane.org \
    --cc=serue-r/Jw6+rmf7HQT0dZR+AlfA@public.gmane.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.