Phoronix is a leading source for Linux hardware reviews, benchmarking, and open-source news. With  performance analysis, hardware testing, and coverage of the latest developments in the Linux ecosystem, Phoronix provides  insights for Linux enthusiasts, developers, and system administrators, helping them make informed decisions about hardware compatibility, performance optimization, and software selection.

Phoronix

Linux 7.0 will introduce OPEN_TREE_NAMESPACE, a new flag for the open_tree() system call that significantly improves container launch performance. The feature eliminates wasteful copying of mount namespaces during container creation by allowing direct creation of new mount namespaces with only necessary mounts. Testing shows approximately 40% faster container creation (109k vs 73k containers in 60 seconds), with additional security benefits by preventing attacks that attempt to unmount container roots to access underlying mounts.

OPEN_TREE_NAMESPACE To Provide A Security & Performance Win For Dealing With Containers