Containers track

Wednesday, September 13, 2017 from 2:005:00pm
Diamond 1+2
 

The Linux Plumbers 2017 containers track is focusing on Linux containers, both kernel space and user space.

This is a good opportunity for maintainers of container runtimes to interact with kernel developers and users.

Etherpad

Microconference Leader

Stéphane Graber

Proposals for this track

* AppSwitch: Application Level Network Namespacing

This talk presents AppSwitch, a completely new TCP-layer network element similar to a router at IP layer or a bridge at link layer, that addresses a number of issues in modern environments, especially ones based on microservices.
Containers 08/14/2017
Dinesh Subhraveti

* CGroup v2 and its impact for containers

CGroup V2 is pretty different from CGroup V1 and the two can't fully operate in parallel leading to problems running containers which only support one or the other.
Containers 08/28/2017
Christian Brauner

* Defensively designed container runtimes

In this talk we will present current roadblocks to a more defensive design that affect all container runtimes.
Containers 07/10/2017
Christian Brauner, Aleksa Sarai

* Exposing resource limits to containers with LXCFS

Introduction to the problem of cgroup limits visibility to userspace and the approach taken by LXCFS. (slides)
Containers 08/16/2017
Serge Hallyn

* Namespaced file capabilities update

Why can't containers use file capabilities yet
Containers 08/15/2017
Serge Hallyn

* Namespacing and Stacking the LSM

Making Linux Security Modules available to containers. (slides)
Containers 08/25/2017
John Johansen, Casey Schaufler

* Namespacing IMA

Current status of namespacing of the Linux Integrity Measurement Architecture
Containers 07/31/2017
Stefan Berger

* Privileged actions in unprivileged containers

How to selectively allow privileged actions from otherwise unprivileged containers? (slides)
Containers 09/04/2017
Stéphane Graber

* Running OCI containers with LXC

Can LXC be used to run OCI application container images? (slides)
Containers 08/14/2017
Serge Hallyn

* UID/GID shifting filesystem overlays

An update on shiftfs and the next steps for remapping overlay filesystems.
Containers 09/04/2017
James E.J. Bottomley

* Welcome to the containers micro-conference

The usual introduction talk
Containers 09/04/2017
Stéphane Graber