Re: [systemd-devel] Why systemd-nspawn is slower than docker, podman and qemu?! how to Improve nspawn performance?
Problem solved, as Mantas Mikulėnas said I had to use export SYSTEMD_SECCOMP=0, because nspawn will still be processing syscalls when I whitelist them with --system-call-filter. and I was using systemd v241 of debian buster but SYSTEMD_SECCOMP was added in systemd v247 (so it had no effect when I first test it) . now nspawn is as quick as the baremetal host, perf and even the context switch benchmark improved and now it is as the baremetal. This is what I used (need systemd v247): export SYSTEMD_SECCOMP=0 systemd-nspawn --capability=all --private-users=false -D ./bbusterboot --boot Thank you very much for your help. badr On Mon, Jan 25, 2021 at 3:06 PM Greg KH wrote: > > On Mon, Jan 25, 2021 at 11:56:09AM +0100, Badr Elmers wrote: > > Hi, > > Why nspawn is slow compared to docker podman and even qemu?! > > CPU tasks take twice of the time it takes in docker, podman or qemu > > > > here I filled a request to improve nspawn performance which contain the > > steps and the full test result: > > https://github.com/systemd/systemd/issues/18370 > > > > Do you know why systemd-nspawn is slower? how can I improve it? > > As I pointed out in the above "issue", the benchmark isn't measuring > what anyone thinks it is measuring and should not be treated as a > reliable indication of anything. > > thanks, > > greg k-h ___ systemd-devel mailing list systemd-devel@lists.freedesktop.org https://lists.freedesktop.org/mailman/listinfo/systemd-devel
Re: [systemd-devel] Why systemd-nspawn is slower than docker, podman and qemu?! how to Improve nspawn performance?
Tomasz Torcz In fact I m just comparing containers, I have no need yet for context switch, but I hope to understand why nspawn is slower and if there is something I can do to improve it, for example disabling spectre/meltdown mitigations improved nspawn a lot, so I was wondering if there is something else I can do to make nspawn as quick as podman/docker/qemu. Mantas Mikulėnas I tested with Export SYSTEMD_SECCOMP=0 no improvement, I still get the same result thank you, badr On Mon, Jan 25, 2021 at 1:40 PM Badr Elmers wrote: > I tested with Export SYSTEMD_SECCOMP=0 > no improvement, I still get the same result > thank you, > badr > > On Mon, Jan 25, 2021 at 1:14 PM Mantas Mikulėnas > wrote: > >> On Mon, Jan 25, 2021, 12:56 Badr Elmers wrote: >> >>> Hi, >>> Why nspawn is slow compared to docker podman and even qemu?! >>> CPU tasks take twice of the time it takes in docker, podman or qemu >>> >>> here I filled a request to improve nspawn performance which contain the >>> steps and the full test result: >>> https://github.com/systemd/systemd/issues/18370 >>> >>> Do you know why systemd-nspawn is slower? how can I improve it? >>> >>> thank you >>> >>> >>> >> Have you tried completely *disabling* the syscall filtering and all other >> seccomp-based features? Export SYSTEMD_SECCOMP=0 before running nspawn and >> check if it makes any difference... >> > ___ systemd-devel mailing list systemd-devel@lists.freedesktop.org https://lists.freedesktop.org/mailman/listinfo/systemd-devel
[systemd-devel] Why systemd-nspawn is slower than docker, podman and qemu?! how to Improve nspawn performance?
Hi, Why nspawn is slow compared to docker podman and even qemu?! CPU tasks take twice of the time it takes in docker, podman or qemu here I filled a request to improve nspawn performance which contain the steps and the full test result: https://github.com/systemd/systemd/issues/18370 Do you know why systemd-nspawn is slower? how can I improve it? thank you badr ___ systemd-devel mailing list systemd-devel@lists.freedesktop.org https://lists.freedesktop.org/mailman/listinfo/systemd-devel
