|WikiProject Linux||(Rated Start-class, Low-importance)|
|WikiProject Computer Security / Computing||(Rated Start-class, Mid-importance)|
Does this derive from the similar project years ago out of Quebec by the author of linuxconf? I've lost track of where that went...
Dan Shearer 19:48, Nov 20, 2004 (UTC)
Do you talk about Jacques Gélinas ? If so, yes, this project replaces the "contexts" project launched by Jacques.
Xen does process migration, doesn't it?
"No clustering or process migration capability is included, so the host kernel and host computer is still a single point of failure for all virtual servers (similar to Xen and UML)." I don't know about UML, but I know Xen does allow migration from one hardware node to another.
When it started?
Can anybody clarify of when exactly the "contexts" project was started, and when the first working version of Linux-VServer (or "contexts") was available? Just curious. --K001 22:47, 19 June 2006 (UTC)
Vserver Can Be Migrated!
Vservers as a whole can be migrated easily as long as the filesystems it depends on are able to be mounted on different hosts. Fail over is described here
Two items: 1) terminology, 2) the "Advantages" section is inaccurate
1) The phrase "whole system emulation" is used in several places. Is this intended to refer to virtualization in general, to actual emulation such as is provided by Bochs (http://bochs.sourceforge.net/)? Assuming it's virtualization that's intended, my second question (below) becomes relevant.
2) The "Advantages" section says that VServer's approach is "somewhat more memory-efficient and I/O-efficient than whole-system emulation, which cannot return "unused" memory or share a disk cache with the host and other virtual servers.". This is incorrect. For example, VMware supports memory ballooning as a mechanism to return unused memory to the host, and Oracle's Transcendent Memory project (http://oss.oracle.com/projects/tmem/) can provide even greater gains with suitably modified Linux guests.
Does it support file descriptor passing across isolation contexts?
Most unices support a mechanism to 'pass' a file descriptor through a socket. (http://archives.neohapsis.com/archives/postfix/2000-09/1476.html) For example, you might have a virus scanning daemon running as an unpriviledge user, and then to scan a file, a client can pass an open file descriptor over the socket to the virus scanning daemon. The scanning daemon can then read that file to search for viruses, even though it is running under a user that normally cannot access the file.
Does Linux-VServer allow file descriptor passing of this type between security contexts?