Speaker
Andrew McNab
(University of Manchester)
Description
During 2017, LHCb created Docker and Singularity container definitions which allow sites to run all LHCb DIRAC workloads in containers as "black boxes". This parallels LHCb's previous work to encapsulate the execution of DIRAC payload jobs in virtual machines, and we explain how these three types of "logical machine" are related in LHCb's case and how they differ, in terms of architecture, operations, and security model. We demonstrate that a simple contextualization script and access to filesystem hierarchies provided by CernVM-FS allows us to accommodate the full range of LHCb workloads.
Primary author
Andrew McNab
(University of Manchester)
