Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 454AA200B96 for ; Thu, 22 Sep 2016 03:34:22 +0200 (CEST) Received: by cust-asf.ponee.io (Postfix) id 40B70160ADE; Thu, 22 Sep 2016 01:34:22 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id 856EA160ADB for ; Thu, 22 Sep 2016 03:34:21 +0200 (CEST) Received: (qmail 72089 invoked by uid 500); 22 Sep 2016 01:34:20 -0000 Mailing-List: contact issues-help@mesos.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@mesos.apache.org Delivered-To: mailing list issues@mesos.apache.org Received: (qmail 72076 invoked by uid 99); 22 Sep 2016 01:34:20 -0000 Received: from arcas.apache.org (HELO arcas) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 22 Sep 2016 01:34:20 +0000 Received: from arcas.apache.org (localhost [127.0.0.1]) by arcas (Postfix) with ESMTP id 8941E2C0050 for ; Thu, 22 Sep 2016 01:34:20 +0000 (UTC) Date: Thu, 22 Sep 2016 01:34:20 +0000 (UTC) From: "Jie Yu (JIRA)" To: issues@mesos.apache.org Message-ID: In-Reply-To: References: Subject: [jira] [Commented] (MESOS-6156) Make the `network/cni` isolator nesting aware MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 archived-at: Thu, 22 Sep 2016 01:34:22 -0000 [ https://issues.apache.org/jira/browse/MESOS-6156?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15511777#comment-15511777 ] Jie Yu commented on MESOS-6156: ------------------------------- commit 2a8de6255494eed2c435ef2b80dc846e1c1b5e90 Author: Avinash sridharan Date: Wed Sep 21 17:16:37 2016 -0700 Modified the `network/cni` isolator to be nesting aware. The network file setup in the `network/cni` isolator is now nesting aware. Since the children share the network and UTS namespace with the parent, the network files need to be created only for the parent container. For the child containers, the network files will be simply a bind mount of the parents network files. Review: https://reviews.apache.org/r/51857/ > Make the `network/cni` isolator nesting aware > --------------------------------------------- > > Key: MESOS-6156 > URL: https://issues.apache.org/jira/browse/MESOS-6156 > Project: Mesos > Issue Type: Task > Components: containerization > Affects Versions: 1.1.0 > Reporter: Avinash Sridharan > Assignee: Avinash Sridharan > Labels: mesosphere > Fix For: 1.1.0 > > Original Estimate: 96h > Remaining Estimate: 96h > > In pods, child containers share the network and UTS namespace with the parent containers. This implies that during `prepare` and `isolate` the `network/cni` isolator needs to be aware the parent-child relationship between containers to make the following decisions: > a) During `prepare` a container should be allocated a new network namespace and UTS namespace only if the container is a top level container. > b) During `isolate` the network files (/etc/hosts, /etc/hostname, /etc/resolv.conf) should be created only for top level containers. The network files for child containers will just be symlinks to the parent containers network files. -- This message was sent by Atlassian JIRA (v6.3.4#6332)