On 1/23/20 2:29 PM, Alexander Duyck wrote: > Looking it over this kind of does what we would want to do, however we > would need to find a way to have this work without the cgroup requirement. > Essentially we would have the guest running this and then proactively > keeping its own resources in check. It's also worth noting that for Clear Linux, the guests are doing container-like things (https://katacontainers.io/) but inside virtual machines. The VM content in this case is known and relatively trusted, so generally isn't a stretch to assume that it can run a daemon and will mostly play nice.
