You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@mesos.apache.org by qi...@apache.org on 2019/08/27 02:26:30 UTC

[mesos] branch master updated (50dcd56 -> 5dfa256)

This is an automated email from the ASF dual-hosted git repository.

qianzhang pushed a change to branch master
in repository https://gitbox.apache.org/repos/asf/mesos.git.


    from 50dcd56  Added agent reactivations to the existing agent draining tests.
     new 9a5b298  Added MESOS-9795 to the 1.9.0 release highlights.
     new 5dfa256  Updated `upgrades.md` for the configurable shared memory project.

The 2 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "add" were already present in the repository and have only
been added to this reference.


Summary of changes:
 CHANGELOG        | 23 +++++++++++++----------
 docs/upgrades.md |  6 ++++++
 2 files changed, 19 insertions(+), 10 deletions(-)

[mesos] 02/02: Updated `upgrades.md` for the configurable shared memory project.

Posted by qi...@apache.org.

This is an automated email from the ASF dual-hosted git repository.

qianzhang pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/mesos.git

commit 5dfa256ac63775b3942b68fdc99f6a58345f1ab8
Author: Qian Zhang <zh...@gmail.com>
AuthorDate: Tue Aug 27 10:16:52 2019 +0800

    Updated `upgrades.md` for the configurable shared memory project.
---
 docs/upgrades.md | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/docs/upgrades.md b/docs/upgrades.md
index 2be13fb..63eb1bb 100644
--- a/docs/upgrades.md
+++ b/docs/upgrades.md
@@ -51,17 +51,21 @@ We categorize the changes as follows:
       <li>A <a href="#1-9-x-linux-nnp-isolator">Linux NNP isolator</a></li>
       <li>A <a href="#1-9-x-hostname-validation-scheme">hostname_validation_scheme</a></li>
       <li>C <a href="#1-9-x-client-certificate-verification">TLS certificate verification behaviour</a></li>
+      <li>C <a href="#1-9-x-configurable-ipc">Configurable IPC namespace and /dev/shm</a></li>
     </ul>
  </td>
 
   <td style="word-wrap: break-word; overflow-wrap: break-word;"><!--Flags-->
     <ul style="padding-left:10px;">
       <li>A <a href="#1-9-x-docker-ignore-runtime">docker_ignore_runtime</a></li>
+      <li>A <a href="#1-9-x-configurable-ipc">disallow_sharing_agent_ipc_namespace</a></li>
+      <li>A <a href="#1-9-x-configurable-ipc">default_container_shm_size</a></li>
     </ul>
   </td>
 
   <td style="word-wrap: break-word; overflow-wrap: break-word;"><!--Framework API-->
     <ul style="padding-left:10px;">
+      <li>A <a href="#1-9-x-configurable-ipc">LinuxInfo.ipc_mode and LinuxInfo.shm_size</a></li>
     </ul>
   </td>
 
@@ -532,6 +536,8 @@ We categorize the changes as follows:
     would have been successfull. Users that rely on incoming connection requests presenting valid TLS certificates should make sure that
     the `LIBPROCESS_SSL_REQUIRE_CERT` option is set to true.
 
+<a name="1-9-x-configurable-ipc"></a>
+* The Mesos containerizer now supports configurable IPC namespace and /dev/shm. Container can be configured to have a private IPC namespace and /dev/shm or share them from its parent via the field `LinuxInfo.ipc_mode`, and the size of its private /dev/shm is also configurable via the field `LinuxInfo.shm_size`. Operators can control whether it is allowed to share host's IPC namespace and /dev/shm with top level containers via the agent flag `--disallow_sharing_agent_ipc_namespace`, and s [...]
 
 ## Upgrading from 1.7.x to 1.8.x ##

[mesos] 01/02: Added MESOS-9795 to the 1.9.0 release highlights.

Posted by qi...@apache.org.

This is an automated email from the ASF dual-hosted git repository.

qianzhang pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/mesos.git

commit 9a5b2986a74006cb68e2262b4b2d5f7e22058a27
Author: Qian Zhang <zh...@gmail.com>
AuthorDate: Tue Aug 27 09:29:21 2019 +0800

    Added MESOS-9795 to the 1.9.0 release highlights.
    
    The style of the Containerization section in the 1.9.0 release
    highlights was also updated to be consistent with other sections.
---
 CHANGELOG | 23 +++++++++++++----------
 1 file changed, 13 insertions(+), 10 deletions(-)

diff --git a/CHANGELOG b/CHANGELOG
index 58cf418..a5bb8d5 100644
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -14,19 +14,22 @@ This release contains the following highlights:
 
   * Containerization:
 
-    * [MESOS-9760] - A new `--docker_ignore_runtime` flag has been
-      added. This causes the agent to ignore any runtime configuration
-      present in Docker images.
+    * A new `--docker_ignore_runtime` flag has been added. This causes the agent
+      to ignore any runtime configuration present in Docker images. (MESOS-9760)
 
-    * [MESOS-9770] - Add no-new-privileges isolator. An additional
-      Linux isolator has been added to support enabling the no_new_privs
-      process control flag.
+    * Add no-new-privileges isolator. A new Linux isolator has been added to
+      support enabling the no_new_privs process control flag. (MESOS-9770)
 
-    * [MESOS-9771] - The Mesos containerizer now masks sensitive paths
-      in `/proc` for containers that do not share the host's PID namespace.
+    * The Mesos containerizer now masks sensitive paths in `/proc` for
+      containers that do not share the host's PID namespace. (MESOS-9771)
 
-    * [MESOS-9900] - The Mesos containerizer now includes ephemeral
-      overlayfs storage in the task disk quota as well as sandbox storage.
+    * The Mesos containerizer now supports configurable IPC namespace and
+      /dev/shm. Container can be configured to have a private IPC namespace
+      and /dev/shm or share them from its parent, and the size of its private
+      /dev/shm is also configurable. (MESOS-9795)
+
+    * The Mesos containerizer now includes ephemeral overlayfs storage in the
+      task disk quota as well as sandbox storage. (MESOS-9900)
 
 Additional API Changes: