Using schroot with containers
Review various potential implementations for using containers with schroot.
Blueprint information
Whiteboard
Would like to review existing best-practices for containers both for development and security.
Agenda:
* what is everyone doing currently for containers and chroots?
* isolating daemon services
* doing builds
* what is needed for sane containerization of each use-case?
* CLONE_NEWUTS, ...NET, ...PID, etc
* http://
* can lxc be used directly?
Work items:
[allison] develop a simplified lxc wrapper to replace common usages of the userspace "chroot" tool: INPROGRESS
[kees] develop CLONE_NEWPID schroot helper: POSTPONED
[kees] develop test cases for CLONE_NEWPID and schroot: POSTPONED
[kees] package CLONE_NEWPID schroot helper: POSTPONED
[kees] document CLONE_NEWPID schroot helper: POSTPONED
[kees] send helper patches to upstream schroot: POSTPONED