oslo.rootwrap

rootwrap daemon mode

Registered by Yuriy Taraday on 2014-04-01

As it was pointed out several times on ML different services (most notably Neutron and Nova) suffer from performance penalty of having to run new instance of rootwrap executable for each call that needs root privileges.
I suggest spawning an external daemon process (agent) that will read configuration once and start receiving commands over RPC (not MQ-based) and spawning processes working with root priviledges passing back results.

Read the full specification

Blueprint information

Status:: Complete

Approver:: Doug Hellmann

Priority:: Undefined

Drafter:: Yuriy Taraday

Direction:: Needs approval

Assignee:: Yuriy Taraday

Definition:: Approved

Series goal:: None

Implementation:: Implemented

Milestone target:: 1.3.0

Started by: Doug Hellmann on 2014-07-11

Completed by: Thierry Carrez on 2014-08-26

Related branches

Related bugs

Sprints

Whiteboard

https://review.openstack.org/94613

Gerrit topic: https://review.openstack.org/#q,topic:bp/rootwrap-daemon-mode,n,z

Moving this to J-3 since I don't think it's likely to land in the next week. - dhellmann

(?)

Work Items

Dependency tree

* Blueprints in grey have been implemented.

This blueprint contains Public information

Everyone can see this information.

Subscribers

Sergey Lukjanov