[
https://issues.apache.org/jira/browse/MESOS-1765?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14123270#comment-14123270
]
Cong Wang commented on MESOS-1765:
----------------------------------
According to man page, clone(CLONE_NEWPID) requires kernel >= 2.6.24,
unshare(CLONE_NEWPID) requires 3.8 at least. Mesos probably only needs
clone(CLONE_NEWPID), so it should be safe since the current network isolation
code already requires kernel > 3.4.
> Use PID namespace to avoid freezing cgroup
> ------------------------------------------
>
> Key: MESOS-1765
> URL: https://issues.apache.org/jira/browse/MESOS-1765
> Project: Mesos
> Issue Type: Story
> Components: containerization
> Reporter: Cong Wang
>
> There is some known kernel issue when we freeze the whole cgroup upon OOM.
> Mesos probably can just use PID namespace so that we will only need to kill
> the "init" of the pid namespace, instead of freezing all the processes and
> killing them one by one. But I am not quite sure if this would break the
> existing code.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
