[lxc-devel] Kernel Module isolation
Serge Hallyn
serge.hallyn at canonical.com
Mon Feb 4 17:39:16 UTC 2013
Quoting Fabio Patriarca (fabio.patriarca.2 at uniroma2.it):
> Hello,
> i'm Fabio Patriarca and i'm no expert about LXC.
>
> I would like to use core emulator based on LXC (and namespaces) to emulate
> different machines in a emulated wireless environement.
> Each machine should use a kernel module, that we have developed, called
> UPMT (http://netgroup.uniroma2.it/twiki/bin/view.cgi/Netgroup/UpMT).
> The UPMT module provides tunneling and handover over different wireless
> interfaces.
> Using LXC kernel virtualization all machines see the same istance of UPMT
> kernel module.
> Do you think is it possible to extend the network stack isolation provided
> by LXC in order to provide also isolation
No.
You could compile and install a bunch of separate modules, and have each
container only use a nic defined by one of the modules. But you can't
install a kernel module in only one container. That's not an
'extension" of network stack isolation.
> for a loaded kernel module?
> Any hint on how to proceed?
-serge
More information about the lxc-devel
mailing list