[
https://issues.apache.org/jira/browse/MESOS-5900?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15610044#comment-15610044
]
Jie Yu commented on MESOS-5900:
-------------------------------
Thought about this a bit, here are the steps we need:
1) Add a new Socket::Kind called UNIX
2) Extend network::Address to support UNIX domain address. network::Address
currently is AF_INET only, but we should make it a general socket address
(i.e., sockaddr)
3) Add UnixSocketImpl to libprocss
4) In libprocess initialize, allow using UNIX socket if LIBPROCSS_UNIX_SOCKET
is specified.
To solve the agent <-> executor communication issue, we probably need to
support multiple listening endpoint in libprocess. Agent needs to talk to
master and executor, one using tcp and one using domain socket.
> Consider supporting Unix domain socket connections in libprocess
> ----------------------------------------------------------------
>
> Key: MESOS-5900
> URL: https://issues.apache.org/jira/browse/MESOS-5900
> Project: Mesos
> Issue Type: Improvement
> Components: libprocess
> Reporter: Neil Conway
> Labels: mesosphere
>
> We should consider allowing two programs on the same host using libprocess to
> communicate via Unix domain sockets rather than TCP. This has a few
> advantages:
> * Security: remote hosts cannot connect to the Unix socket. Domain sockets
> also offer additional support for
> [authentication|https://docs.fedoraproject.org/en-US/Fedora_Security_Team/1/html/Defensive_Coding/sect-Defensive_Coding-Authentication-UNIX_Domain.html].
> * Performance: domain sockets are marginally faster than localhost TCP.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
