Difference between revisions of "Talk:Linux Containers"

From ArchWiki
Jump to: navigation, search
(systemd support)
(Example using only netctl)
 
(18 intermediate revisions by 8 users not shown)
Line 1: Line 1:
 +
== burn down and rebuild ==
  
== systemd support ==
+
I'd like to take a crack at re-writting this article from the ground up as I feel that would be less work than trying to retrofit into this version. I'm thinking it might be ok for me to rename this page to 'linux_containers-legacy' or the like and others can take a look at whether some info on this page needs to be included in the new one I am proposing.  Any objections or thoughts? [[User:Graysky|Graysky]] ([[User talk:Graysky|talk]]) 22:21, 19 April 2015 (UTC)
  
LXC support for containers using systemd appears to be broken currently.
+
:OK I have taken a good stab at this now. Please review and keep this article neat and tidy. [[User:Graysky|Graysky]] ([[User talk:Graysky|talk]]) 10:07, 20 April 2015 (UTC)
  
http://sourceforge.net/mailarchive/message.php?msg_id=30058163
+
::I suppose you've tried to address the status templates that were at the top of the article, but since your edits didn't follow [[ArchWiki:Contributing#The_3_fundamental_rules]], I'll add the links to the previous revisions, to try and make it slightly easier to review this change for anyone who found the time to compare them:
----
+
::* previous "Linux Containers" article: [https://wiki.archlinux.org/index.php?title=Linux_Containers&oldid=368710]
I found [http://comments.gmane.org/gmane.linux.kernel.containers.lxc.general/4126 this thread] to contain both solutions and caveats/issues relating to systemd in LXC.
+
::* previous "Lxc-systemd" article, which has been merged here: [https://wiki.archlinux.org/index.php?title=Lxc-systemd&oldid=357182]
 +
::— [[User:Kynikos|Kynikos]] ([[User talk:Kynikos|talk]]) 13:30, 21 April 2015 (UTC)
  
<blockquote>First step appears to be to [http://www.freedesktop.org/wiki/Software/systemd/ContainerInterface set a container=LXC] (or some other short string) before invoking init in the container.  Is there a mechanism to do this?</blockquote>
+
:::Sorry, I didn't realize the edits were considered too complex.  I actually found it really tough to try to update, simplify, and combine the original page. Thank you for the linking. [[User:Graysky|Graysky]] ([[User talk:Graysky|talk]]) 19:24, 21 April 2015 (UTC)
  
<blockquote>Because of doing the devtmpfs thing, the guest can immediately see things like removable drives coming and going and might, presumably, be able to mount them.  Not thrilled with that from a security standpoint. Would also mean the guests could access things like my permanent forensic CDs that are in the CD drives.  I guess that can be restricted in the config but still makes me a bit uncomfortable that the guest has complete visibility into the hosts dev system.<br /><br />
+
::::Don't get me wrong, the previous revisions did need a thorough clean-up, and the current article does look more organized, so I appreciate your effort of course, it's just that without proper edit summaries it's very hard to double-check the change and understand where the apparently removed content has gone. Let's just leave this open and see if somebody wants to review it. — [[User:Kynikos|Kynikos]] ([[User talk:Kynikos|talk]]) 02:37, 22 April 2015 (UTC)
Another gotcha, albeit a much more minor one...  When systemd drops into this mode, you no longer have vty consoles available so lxc-console won't work.  That's actually on their page.<br /><br />
+
I remember seeing this:
+
<blockquote>If systemd detects it is run in a container it will spawn a single shell on /dev/console, and not care about VTs or multiple gettys on VTs</blockquote>
+
</blockquote>
+
  
<blockquote>Forgot to include the entry I added to the config file to make it all workie...
+
:::::No objections, peer review is welcomed. [[User:Graysky|Graysky]] ([[User talk:Graysky|talk]]) 07:42, 22 April 2015 (UTC)
</blockquote>
+
    lxc.mount.entry=devtmpfs /srv/lxc/rootfs/dev devtmpfs defaults 0 0
+
  
<blockquote>Container seems to hang if lxc-start is run in disconnected mode (lxc-start -d -o {log})Starts up fine with a console that's connected to pty's but not to a log it seems...</blockquote>
+
== Example using only netctl ==
 +
@Lahwaacz - While I agree that we don't want to duplicate content in other articles, I feel that providing a working configuration within the article is welcomed for completeness just as we do in the beginners guideTherefore, a few common set ups are needed in my opinion. See, https://wiki.archlinux.org/index.php?title=Linux_Containers&diff=373914&oldid=373913 [[User:Graysky|Graysky]] ([[User talk:Graysky|talk]]) 19:20, 16 May 2015 (UTC)
  
[[User:Takeshita kenji|Takeshita kenji]] ([[User talk:Takeshita kenji|talk]]) 04:26, 20 January 2013 (UTC)
+
:I'm sorry but these two approaches are opposite: we can either avoid duplication or follow the BG style. What is wrong with instructions such as "Create a bridge named ... as described in ..." which is still sufficiently (IMO) complete? -- [[User:Lahwaacz|Lahwaacz]] ([[User talk:Lahwaacz|talk]]) 21:16, 16 May 2015 (UTC)
----
+
The [https://wiki.gentoo.org/wiki/LXC#Arch_Linux Gentoo Wiki page] about LXC says to just go back to the systemd+sysvinit script setup:
+
  
    pacman -S systemd systemd-sysvcompat initscripts
+
::I think the article should keep the two examples following the BG style.  Just my $0.02. [[User:Graysky|Graysky]] ([[User talk:Graysky|talk]]) 01:24, 17 May 2015 (UTC)
  
However:
+
:::+1 for merging, the wired network section is practically a copy of [[Bridge with netctl]], I don't see anything specific to Linux Containers here. [[User:Kynikos|Kynikos]] ([[User talk:Kynikos|talk]]) 03:33, 18 May 2015 (UTC)
<blockquote>Further steps are needed to set-up a working archlinux container in gentoo.</blockquote>
+
[[User:Takeshita kenji|Takeshita kenji]] ([[User talk:Takeshita kenji|talk]]) 04:29, 20 January 2013 (UTC)
+
----
+
One last note: systemd support is a topic under active discussion on the lxc-devel mailing list.  [http://sourceforge.net/mailarchive/forum.php?thread_name=20130117170142.GA27967%40sergelap&forum_name=lxc-devel This thread], for example.
+
  
[[User:Takeshita kenji|Takeshita kenji]] ([[User talk:Takeshita kenji|talk]]) 04:37, 20 January 2013 (UTC)
+
:::-1 for merging the network stuff.  The examples provided in the article are appropriate.  For me as a consumer of information, the Archwiki merges the past couple years have led to more confusing, fragmented articles/how-to's because now, you end up having to flip back and forth between multiple browser tabs, searching entire articles for the one or two bits that relate to what you are actually trying to accomplish, rather than having relevant info provided in context, right where you need/want it.  Sure, have the larger, more exhaustive networking article that I can reference for the nitty, gritty details.  And I get that that may also be desirable from wiki maintainers perspective.  For a user perspective, however, it's much less efficient for me have to search through it all, try to figure out what context is applicable or not, etc.  Tough balancing act.  I've just been noticing that as of late things that used to be fairly easy and straight forward to follow, no longer are, and require much more jumping around to sort out the bits you're actually looking for.  Peace.  [[User:Kgunders|Kgunders]] ([[User talk:Kgunders|talk]]) 17:33, 28 September 2015 (UTC)
  
----
+
:::-1 for merging for the reasons nicely articulated by Kgunders. [[User:Graysky|Graysky]] ([[User talk:Graysky|talk]]) 19:11, 28 September 2015 (UTC)
[[User:starfry]] 21:47, 27 March 2013 (UTC)
+
 
+
I have a fully operational implementation of LXC inside a container that runs systemd. I have started a sub-page off the LXC wiki page to record my notes [[Lxc-systemd]]. It has been a hard slog with lots of disussion with both the lxc and systemd folks but I have it working now. Let me know if I can provide any more information.
+
----
+

Latest revision as of 19:11, 28 September 2015

burn down and rebuild

I'd like to take a crack at re-writting this article from the ground up as I feel that would be less work than trying to retrofit into this version. I'm thinking it might be ok for me to rename this page to 'linux_containers-legacy' or the like and others can take a look at whether some info on this page needs to be included in the new one I am proposing. Any objections or thoughts? Graysky (talk) 22:21, 19 April 2015 (UTC)

OK I have taken a good stab at this now. Please review and keep this article neat and tidy. Graysky (talk) 10:07, 20 April 2015 (UTC)
I suppose you've tried to address the status templates that were at the top of the article, but since your edits didn't follow ArchWiki:Contributing#The_3_fundamental_rules, I'll add the links to the previous revisions, to try and make it slightly easier to review this change for anyone who found the time to compare them:
  • previous "Linux Containers" article: [1]
  • previous "Lxc-systemd" article, which has been merged here: [2]
Kynikos (talk) 13:30, 21 April 2015 (UTC)
Sorry, I didn't realize the edits were considered too complex. I actually found it really tough to try to update, simplify, and combine the original page. Thank you for the linking. Graysky (talk) 19:24, 21 April 2015 (UTC)
Don't get me wrong, the previous revisions did need a thorough clean-up, and the current article does look more organized, so I appreciate your effort of course, it's just that without proper edit summaries it's very hard to double-check the change and understand where the apparently removed content has gone. Let's just leave this open and see if somebody wants to review it. — Kynikos (talk) 02:37, 22 April 2015 (UTC)
No objections, peer review is welcomed. Graysky (talk) 07:42, 22 April 2015 (UTC)

Example using only netctl

@Lahwaacz - While I agree that we don't want to duplicate content in other articles, I feel that providing a working configuration within the article is welcomed for completeness just as we do in the beginners guide. Therefore, a few common set ups are needed in my opinion. See, https://wiki.archlinux.org/index.php?title=Linux_Containers&diff=373914&oldid=373913 Graysky (talk) 19:20, 16 May 2015 (UTC)

I'm sorry but these two approaches are opposite: we can either avoid duplication or follow the BG style. What is wrong with instructions such as "Create a bridge named ... as described in ..." which is still sufficiently (IMO) complete? -- Lahwaacz (talk) 21:16, 16 May 2015 (UTC)
I think the article should keep the two examples following the BG style. Just my $0.02. Graysky (talk) 01:24, 17 May 2015 (UTC)
+1 for merging, the wired network section is practically a copy of Bridge with netctl, I don't see anything specific to Linux Containers here. — Kynikos (talk) 03:33, 18 May 2015 (UTC)
-1 for merging the network stuff. The examples provided in the article are appropriate. For me as a consumer of information, the Archwiki merges the past couple years have led to more confusing, fragmented articles/how-to's because now, you end up having to flip back and forth between multiple browser tabs, searching entire articles for the one or two bits that relate to what you are actually trying to accomplish, rather than having relevant info provided in context, right where you need/want it. Sure, have the larger, more exhaustive networking article that I can reference for the nitty, gritty details. And I get that that may also be desirable from wiki maintainers perspective. For a user perspective, however, it's much less efficient for me have to search through it all, try to figure out what context is applicable or not, etc. Tough balancing act. I've just been noticing that as of late things that used to be fairly easy and straight forward to follow, no longer are, and require much more jumping around to sort out the bits you're actually looking for. Peace. Kgunders (talk) 17:33, 28 September 2015 (UTC)
-1 for merging for the reasons nicely articulated by Kgunders. Graysky (talk) 19:11, 28 September 2015 (UTC)