Project Atomic, a Red Hat sponsored project, features an interesting new update system for RPM-based Linux operating systems called OSTree (rpm-ostree) which has been developed by Colin Walters over the last couple of years. Evidently OSTree supports atomic updates to an OS although I am not sure how that actually works because there is a lot of marketing hype and buzz words associated with Project Atomic including Docker containers. In the default model, the RPMs are composed on a server into an OSTree repository, and client systems can replicate in an image-like fashion, including incremental updates. However, unlike traditional Linus
|
|
||
|
The Linux kernel currently implements six (out of 10 proposed) namespaces for process separation: mnt – mount points, filesystems pid – processes net – network stack ipc – System V IPC uts – hostname, domainname user – UIDs, GIDs The last Linux namespace to be fully implemented was the user namespace (CLONE_NEWNS) whose implementation was finally completed in the 3.8 kernel after being started in the 2.6.23 kernel. The current kernel in RHEL7 is 3.10.0-121. Unfortunately it does not include the user namespace. According to Dan Walsh of Red Hat: We hope to add the user namespace support to a Linux namespaces are somewhat like Solaris zones in many ways from a user perspective but have significant differences under the hood. The term namespace isolation is often used because the purpose of namespaces is to provide a group of processes with the illusion that that they are the only processes on the system. This is an important requirement for implementing Linux Containers. Namespaces were developed over a number of years by Eric W. Biederman (user namespaces), Pavel Emelyanov, Al Viro, Cyrill Gorcunov, et al. Six user namespaces (out of 10 proposed) are implemented in RHEL7: mnt – mount points, filesystems |
 |
|
| Copyright © 2007-2024 Finnbarr P. Murphy. All Rights Reserved | ||