limitations on jail style virtualization
Julian Elischer
julian at freebsd.org
Sat Nov 13 21:15:03 UTC 2010
We discussed this at MeetBSD last week and it woudl seem that the next
big hurdle for virtualization would seem to be a good concept to allow
jails to have virtual versions of various virtual devices..
for example
pf has been virtualized (when IS that patch going to get committed?)
but pfsync
and pflog use special devices in /dev.
similarly bpf uses /dev entries but the way they are used means they
are still useful.
so what happend when a device that is accessed from within a jail
creates a cloning device?
should it just turn up in the devfs for that jail?
and should it be visible in other jails that happen to be sharing the
same /dev?
I have no preconceived ideas abot this. Just possibilities.
should the cloning code work alongside a new devfs feature that would
make
'per jail' entries? i.e. tun0 would be a different device depending
on what jail
you were in looking at the /dev?
Julian
More information about the freebsd-virtualization
mailing list