From owner-freebsd-hackers@FreeBSD.ORG Mon Mar 17 03:19:09 2008 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4875A106564A; Mon, 17 Mar 2008 03:19:09 +0000 (UTC) (envelope-from shmukler@mail.ru) Received: from f69.mail.ru (f69.mail.ru [194.67.57.220]) by mx1.freebsd.org (Postfix) with ESMTP id E71328FC18; Mon, 17 Mar 2008 03:19:08 +0000 (UTC) (envelope-from shmukler@mail.ru) Received: from mail by f69.mail.ru with local id 1Jb5sQ-000Fju-00; Mon, 17 Mar 2008 06:19:06 +0300 Received: from [69.114.219.103] by win.mail.ru with HTTP; Mon, 17 Mar 2008 06:19:06 +0300 From: Igor Shmukler To: Matthew Dillon Mime-Version: 1.0 X-Mailer: mPOP Web-Mail 2.19 X-Originating-IP: [69.114.219.103] Date: Mon, 17 Mar 2008 06:19:06 +0300 In-Reply-To: <200803170012.m2H0C02i009972@apollo.backplane.com> References: <200803170012.m2H0C02i009972@apollo.backplane.com> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit Message-Id: Cc: jgordeev@dir.bg, "Andrey V. Elsukov" , Robert Watson , freebsd-hackers@freebsd.org Subject: Re[4]: vkernel & GSoC, some questions X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Igor Shmukler List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Mar 2008 03:19:09 -0000 Matt, You sure won't argue that UML isolation is inherently better than one that can be provided by a hypervisor. If the performance is the same, what are you gaining? Hypervisor while slow, allows treating a complete OS with all applications as a black box. Why would I choose UML over a hypervisor? I am not trying to say there cannot be a place for vkernel. [I don't even yet understand what is does or how.] However, as a hosting company, why would I choose UML over a hypervisor? I can provide a number of reasons to pick a hypervisor: 1. use the same platform to host Unix, Windows and other guests 2. load balance all available hardware [based on some policy] 3. better implies that a hypervisor upgrade is less likely to damage guests I am sure people hosting on hypervisors could write a longer list. Containers [including jail] provide significantly lower overhead[, but more difficult to maintain]. At least it can be argued [probably both ways] that containers are cheaper. Are there real world people hosting with UML today who could comment on this, perhaps supporting Matt's position? igor -----Original Message----- From: Matthew Dillon To: Igor Shmukler Date: Sun, 16 Mar 2008 17:12:00 -0700 (PDT) Subject: Re: Re[2]: vkernel & GSoC, some questions > > > : > :Given the fact that there are not as many developers as needed, what would be a practical purpose of vkernel? > : > :UML is typically used to debug drivers and/or for hosting. Now that Linux about to have or already has container technology, hosting on UML makes little sense. > > The single largest benefit UML or a hardware emulated environment has > over a jail is that it is virtually impossible to crash the real kernel > no matter what you are doing within the virtualized environment. I > don't know any ISP that is able to keep a user-accessible (shell prompt) > machine up consistently outside of a UML environment. The only reason > machines don't crash more is that they tend to run a subset of available > applications in a subset of possible load and resource related > circumstances. > > Neither jails no containers nor any other native-kernel technology will > EVER solve that problem. For that matter, no native-kernel technology > will ever come close to providing the same level of compartmentalization > from a security standpoint, and particularly not if you intend to run > general purposes applications in that environment. > > The reason UML is used, particularly for web hosting, is because > web developers require numerous non-trivial backend tools to be installed > each of which has the potential to hog resources, crash the machine, > create security holes, or otherwise create hell for everyone else. The > hell needs to be restricted and narrowed as much as possible so human > resources can focus on the cause rather then on the collateral damage. > For any compute-intensive business, collateral damage is the #1 IT issue, > the cost of power is the #2 issue, and network resources are the #3 > issue. Things like cpu and machines... those are in the noise. They're > basically free. > > With a virtual kernel like UML (or our vkernel), the worse that happens > is that the vkernel itself crashes and reboots in 5 seconds (+ fsck time > for that particular user). No other vkernel is effected, no other > customer is effected, no other compartmentalized resource is effected. > > Jails are great, no question about it, and there are numerous applications > which require the performance benefits that running in a jail verses > an emulated environment provides, but we will never, EVER see jails > replace UML. This is particularly true considering the resource being > put into improving emulated environments. The overhead for running an > emulated environment ten years from now is probably going to be a > fraction of the overhead it is now, as hardware catches up to desire. > > -Matt > Авто@Mail.Ru: Новый Bugatti – самый дорогой авто Женевы http://r.mail.ru/cln3686/auto.mail.ru