[$] Containers as kernel objects — again Linus Torvalds once famously
saidthat there is no design behind the Linux kernel. That may be true, but
there are still some guiding principles behind the evolution of the kernel;
one of those, to date, has been that the kernel does not recognize
"containers" as objects in their own right. Instead, the kernel provides
the necessary low-level features, such as namespaces and control groups, to
allow user space to create its own container abstraction. This refusal to
dictate the nature of containers has led to a diverse variety of container
models and a lot of experimentation. But that doesn't stop those who would
still like to see the kernel recognize containers as first-class
kernel-supported objects.