You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi, I recently discovered that it's possible to group multiple pods into one runc shim by using the annotation io.containerd.runc.v2.group (provided it's being passed to the shim in the containerd config). I know this is generally used to group multiple containers of a pod into a single shim (using io.kubernetes.cri.sandbox-io) but this got me curious: what are the downsides to grouping multiple pods with one shim?
The one obvious downside seems to be that if the shim dies, all the grouped pods are affected. But is there anything else I missed, for example in terms of isolation? As far as I can tell each pod still gets their own network namespace etc.
The advantage of grouping some amount of pods would be reduced resource usage as there are simply fewer shim processes.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
Hi, I recently discovered that it's possible to group multiple pods into one runc shim by using the annotation
io.containerd.runc.v2.group
(provided it's being passed to the shim in the containerd config). I know this is generally used to group multiple containers of a pod into a single shim (usingio.kubernetes.cri.sandbox-io
) but this got me curious: what are the downsides to grouping multiple pods with one shim?The one obvious downside seems to be that if the shim dies, all the grouped pods are affected. But is there anything else I missed, for example in terms of isolation? As far as I can tell each pod still gets their own network namespace etc.
The advantage of grouping some amount of pods would be reduced resource usage as there are simply fewer shim processes.
Beta Was this translation helpful? Give feedback.
All reactions