Linux namespaces

E745849

Linux kernel feature operating system isolation mechanism

Linux namespaces are a Linux kernel feature that isolate and virtualize global system resources—such as process IDs, networking, and file systems—so different sets of processes see separate, independent environments.

Try in SPARQL Jump to: Statements Referenced by

Statements (56)

Predicate	Object
instanceOf	Linux kernel feature ⓘ operating system isolation mechanism ⓘ
configuredVia	/proc filesystem interfaces ⓘ clone system call ⓘ setns system call NERFINISHED ⓘ unshare system call ⓘ
developedFor	Linux operating system NERFINISHED ⓘ
documentedIn	man 7 namespaces ⓘ
enables	per-container hostnames ⓘ per-container mount points ⓘ per-container network interfaces ⓘ per-container process trees ⓘ per-container routing tables ⓘ unprivileged containers via user namespaces ⓘ
hasDesignGoal	enable container-like environments ⓘ provide isolation between groups of processes ⓘ virtualize global system resources ⓘ
implementedIn	Linux kernel NERFINISHED ⓘ
introducedInVersion	Linux kernel 2.4.19 (mount namespace, initial form) NERFINISHED ⓘ Linux kernel 2.6.15 (PID namespaces, initial form) NERFINISHED ⓘ Linux kernel 2.6.19 (UTS namespaces) NERFINISHED ⓘ Linux kernel 2.6.24 (network namespaces) NERFINISHED ⓘ Linux kernel 2.6.26 (IPC namespaces) NERFINISHED ⓘ Linux kernel 2.6.30 (user namespaces, initial form) NERFINISHED ⓘ Linux kernel 3.8 (unprivileged user namespaces, widely usable) NERFINISHED ⓘ
isolates	POSIX message queues ⓘ System V IPC resources ⓘ cgroup hierarchy visibility ⓘ hostname and NIS domain name ⓘ mount and filesystem view ⓘ network stack ⓘ per-namespace time settings ⓘ process ID space ⓘ user and group ID mappings ⓘ
partOf	Linux kernel NERFINISHED ⓘ
provides	lightweight virtualization ⓘ resource isolation ⓘ
relatedTo	Linux control groups NERFINISHED ⓘ chroot ⓘ containers ⓘ
supports	IPC namespaces ⓘ PID namespaces ⓘ UTS namespaces ⓘ cgroup namespaces ⓘ control group isolation via cgroup namespaces ⓘ mount namespaces ⓘ network namespaces ⓘ time namespaces ⓘ user namespaces ⓘ
usedBy	Docker NERFINISHED ⓘ Kubernetes containers NERFINISHED ⓘ LXC NERFINISHED ⓘ Podman NERFINISHED ⓘ containerd NERFINISHED ⓘ runc NERFINISHED ⓘ systemd-nspawn NERFINISHED ⓘ

Referenced by (3)

Full triples — surface form annotated when it differs from this entity's canonical label.

Linux containers → usesKernelFeature → Linux namespaces ⓘ

LXC → usesKernelFeature → Linux namespaces ⓘ

runc → usesKernelFeature → Linux namespaces ⓘ