LXC improvements
Some basic lxc container improvements:
∘ quick container cloning with snapshotting for lvm, btrfs, and aufs/unionfs
(based on ppa:serge-
∘ sandbox template using current user namespace
. limited use, but useful for locking child task such that it can only talk
to us over pipes.
∘ per container syslog
. Lack of this has prevented me from using containers for some bug
investiga
∘ proc virtualization
∘ container reboot and shutdown
∘ custom per-container firewall rules
∘ lsm integration
∘ templates for other distros (fedora, opensles, gentoo)
Blueprint information
- Status:
- Complete
- Approver:
- Robbie Williamson
- Priority:
- High
- Drafter:
- Serge Hallyn
- Direction:
- Approved
- Assignee:
- Ubuntu Server
- Definition:
- Approved
- Series goal:
- Accepted for oneiric
- Implementation:
- Implemented
- Milestone target:
- ubuntu-11.10
- Started by
- Robbie Williamson
- Completed by
- Dave Walker
Whiteboard
# NOTE: I s/ebiederman/
Plenty of other distro templates could use work, but a fedora one has been added.
Status: In progress
Work Items:
validate LXC support on ARM: DONE
[serge-hallyn] libcgroup integration: DONE
[serge-hallyn] ubuntu template cleanup: DONE
improve lxc-ps, lxc-netstat: DONE
[serge-hallyn] quick container cloning with snapshotting using LVM: DONE
templates for other distros (fedora, opensles, gentoo): DONE
[bootstrap31] push kernel patches supporting shutdown/reboot: POSTPONED
[bootstrap31] exploit container shutdown/reboot kernel support in lxc: POSTPONED
[bootstrap31] push lxc-attach when kernel patches are upstream: POSTPONED
[serge-hallyn] push lxc-attach kernel patches: POSTPONED
[zulcss] List of missing bits pieces of libvirt for lxc (libvirt 0.9.1-1 merge is pending): POSTPONED
[serge-hallyn] quick container cloning with snapshotting using overlayfs: DONE
[bootstrap31] push core proc virtualization support upstream: POSTPONED
udev and device namespaces: POSTPONED
[zulcss] Badger someone into writing libvirt-lxc bridge: POSTPONED
per container syslog: POSTPONED
lsm integration: POSTPONED
event notification: POSTPONED
custom per-container firewall rules: POSTPONED
Work Items
Dependency tree
* Blueprints in grey have been implemented.