On Thu, 4 Aug 2016 19:16:03 +0530 Aravinda Prasad <[email protected]> wrote:
> Separation is based on the context in which the function is called. > Hence, containers can see only those kernel functions that are > triggered/invoked by the processes running inside that container and > should not see other kernel functions, for example, called by RCU grace > period kthread or any other kthread. > What about interrupts and softirqs? They run under the container process's context, but service other processes outside the container. Same goes for trace events. -- Steve
