-
-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Document and adjust Hoster
to be executed in a Jail
#66
Comments
Here is the rough implementation plan. Install process:
Related to
|
This was a really nice idea initially, but I've hit way too many blockers along the way (at least for now?). Rctl doesn't work within a Jail, a bunch of hardware based checks related to monitoring too, and it will require too much effort to support all these exceptions/workarounds. Closing for now. May come back to it later at some point, when there is more free time on my hands. |
Running
Hoster
in a Jail will bring a "true multi-tenancy" to life. You'll be able to simply create a new Jail, installHoster
in it, start the SSH service and pass the credentials down to the end user. Even if there are multiple users on the same host, they would not be able to know that someone else is using the same node and running even more VMs on it.For this feature to be implemented, I'll have to create some static files in the Jail's FS to indicate resource constrains applied by
rctl
and link those withHoster
. Otherwise the end user might over-provision and crash their Jail.I call this feature
Hoster-As-A-Service 🔥
🤣🤣Future refs:
churchers/vm-bhyve#267
https://github.com/lattera/articles/blob/master/freebsd/2018-10-27_jailed_bhyve/article.md
https://forums.freebsd.org/threads/bhyve-inside-jail.79935/
https://news.ycombinator.com/item?id=26742588
The text was updated successfully, but these errors were encountered: