To those who believe #Firecracker is a good idea for running #containers in another protective layer, should just migrate to #QEMU #microvms on #SmartOS, which will protect the #VM within a container.
Hey @dexter@bsd.network, when will #bhyve support microvms (https://www.qemu.org/docs/master/system/i386/microvm.html) ? I am curious to see if @cperciva@mastodon.social 's #FreeBSD kernel work allowing it to boot in ~20ms, works over there, and gets carried over into #OmniOS.
I was inspired by https://jvns.ca/blog/2021/01/23/firecracker--start-a-vm-in-less-than-a-second/ and wanted to try out making a #firecracker #vm from a Dockerfile myself. Got it all up and running. But, as you'd expected from a hobby project, it's lacking a lot of polish. So I took a step back and started thinking if I could maybe opt for using BSD #jails instead? Any tips for how to get started with #jails as a long time Docker user?
Very interesting read from the #CodeSandbox blog
How we clone a running #VM in 2 seconds (September 2022)
https://codesandbox.io/blog/how-we-clone-a-running-vm-in-2-seconds
Amongst others, they are using #Firecracker and memory snapshots with Copy-On-Write to achieve this level of #performance
Very interesting and it clearly shows that even very complicated things that require a lot of heavy lifting can be made _blazingly fast_!
There is no excuse for software being slow! Make it #fast!
Ignite – Use Firecracker VMs with Docker images: https://github.com/weaveworks/ignite #linux #foss #update #release #ignite #firecracker #microvm #lambda #docker
Behind the scenes, AWS Lambda, using Firecracker on top of KVM to spin super fast Micro-VMs https://www.bschaatsbergen.com/behind-the-scenes-lambda #linux #aws #lambda #firecracker #vm
Linux Containers vs Google #gVisor vs Amazon #Firecracker...
Making #Containers More Isolated: An Overview of Sandboxed Container Technologies | #firecracker #gvisor #isolation #nabla #openstack #review #security https://unit42.paloaltonetworks.com/making-containers-more-isolated-an-overview-of-sandboxed-container-technologies/
triple prank...