SlideShare a Scribd company logo

Containers from scratch

J On The Beach, profile picture
J On The Beach

The document discusses building containers from scratch using Go, focusing on key concepts like namespaces and cgroups. It outlines how namespaces create isolated environments for processes and how cgroups manage resource allocation. The content is linked to additional resources on GitHub for further exploration.

Technology
1 of 7
Downloaded 13 times
1
2
3
4
5
6
7
Copyright @ 2017 Aqua Security Software Ltd. All Rights Reserved. @LizRice | @AquaSecTeam Containers from scratch Liz Rice Aqua Security
docker run <image>
3@lizrice Build my own container in Go ■ Namespaces ■ Chroot ■ Cgroups
4@lizrice Namespaces ■ What you can see ■ Created with syscalls ○ Unix Timesharing System ○ Process IDs ○ Mounts ○ Network ○ User IDs ○ InterProcess Comms
5@lizrice CGroups ■ What you can use ■ Filesystem interface ○ Memory ○ CPU ○ I/O ○ Process numbers ○ ...
:(){ :|: & };:
Copyright @ 2017 Aqua Security Software Ltd. All Rights Reserved. @LizRice | @AquaSecTeam github.com/lizrice/containers-from-scratch github.com/aquasecurity/microscanner @LizRice | @AquaSecTeam

More Related Content

PDF
Containers from scratch
Rakuten Group, Inc.
 
PDF
About linux japanese
Shota Ito
 
PPTX
CoreOS
Frik khechoomian
 
PDF
Смарт-контракты: базовые инструменты для разработки и тестирования. Спикер: Д...
Cyber Fund
 
PDF
OS入門 Fukuoka.php vol.18 LT資料
ichikaway
 
PPTX
Minio ♥ Go
Minio
 
PPTX
Disruptor.Net
Jed Lin
 
PDF
Build OS X Apps on Travis CI
Kiwamu Okabe
 
Containers from scratch
Rakuten Group, Inc.
 
About linux japanese
Shota Ito
 
CoreOS
Frik khechoomian
 
Смарт-контракты: базовые инструменты для разработки и тестирования. Спикер: Д...
Cyber Fund
 
OS入門 Fukuoka.php vol.18 LT資料
ichikaway
 
Minio ♥ Go
Minio
 
Disruptor.Net
Jed Lin
 
Build OS X Apps on Travis CI
Kiwamu Okabe
 

What's hot (19)

PPTX
Extending Cloud Foundry to .NET
Platform CF
 
PPTX
Minio Cloud Storage
Minio
 
PDF
사진형SNS 인스플
지승 한
 
PDF
2017대선 빅데이터 분석
지승 한
 
PDF
Minio: Associated projects in Go programming.
Atul Jha
 
ODP
What's missing from upstream kernel containers?
Kirill Kolyshkin
 
PDF
Caching in Docker - the hardest thing in computer science
Jarek Potiuk
 
PDF
tDiary開発環境!VMWarePlayer編
freedomcat
 
PPTX
Brief history of Linux containers
OpenVZ
 
ODP
A brief history of Linux Containers
Kirill Kolyshkin
 
PDF
OpenTimelineIO and GStreamer integration (SIGGRAPH 2019)
Igalia
 
PDF
Container and Microservice Meetup
Andrew Leung
 
ODP
Not so brief history of Linux Containers
Kirill Kolyshkin
 
PPTX
Rasperry Pi and TI CC2650 IPv6 border router
Nikolaos Monios
 
PDF
Cassandra 2.1 boot camp, exercise
Joshua McKenzie
 
PDF
pkgsrc 2014 - the record of the past year
Akio OBATA
 
PDF
Redecentralizing the Web: IPFS and Filecoin
Facultad de Informática UCM
 
PDF
Canonical Kubernetes on the Oracle Cloud (1)
Dustin Kirkland
 
PDF
Memory Forensics in AWS
MarcVilanova1
 
Extending Cloud Foundry to .NET
Platform CF
 
Minio Cloud Storage
Minio
 
사진형SNS 인스플
지승 한
 
2017대선 빅데이터 분석
지승 한
 
Minio: Associated projects in Go programming.
Atul Jha
 
What's missing from upstream kernel containers?
Kirill Kolyshkin
 
Caching in Docker - the hardest thing in computer science
Jarek Potiuk
 
tDiary開発環境!VMWarePlayer編
freedomcat
 
Brief history of Linux containers
OpenVZ
 
A brief history of Linux Containers
Kirill Kolyshkin
 
OpenTimelineIO and GStreamer integration (SIGGRAPH 2019)
Igalia
 
Container and Microservice Meetup
Andrew Leung
 
Not so brief history of Linux Containers
Kirill Kolyshkin
 
Rasperry Pi and TI CC2650 IPv6 border router
Nikolaos Monios
 
Cassandra 2.1 boot camp, exercise
Joshua McKenzie
 
pkgsrc 2014 - the record of the past year
Akio OBATA
 
Redecentralizing the Web: IPFS and Filecoin
Facultad de Informática UCM
 
Canonical Kubernetes on the Oracle Cloud (1)
Dustin Kirkland
 
Memory Forensics in AWS
MarcVilanova1
 
Ad

More from J On The Beach (20)

PDF
Massively scalable ETL in real world applications: the hard way
J On The Beach
 
PPTX
Big Data On Data You Don’t Have
J On The Beach
 
PPTX
Acoustic Time Series in Industry 4.0: Improved Reliability and Cyber-Security...
J On The Beach
 
PDF
Pushing it to the edge in IoT
J On The Beach
 
PDF
Drinking from the firehose, with virtual streams and virtual actors
J On The Beach
 
PDF
How do we deploy? From Punched cards to Immutable server pattern
J On The Beach
 
PDF
Java, Turbocharged
J On The Beach
 
PDF
When Cloud Native meets the Financial Sector
J On The Beach
 
PDF
The big data Universe. Literally.
J On The Beach
 
PDF
Streaming to a New Jakarta EE
J On The Beach
 
PDF
The TIPPSS Imperative for IoT - Ensuring Trust, Identity, Privacy, Protection...
J On The Beach
 
PDF
Pushing AI to the Client with WebAssembly and Blazor
J On The Beach
 
PDF
Axon Server went RAFTing
J On The Beach
 
PDF
The Six Pitfalls of building a Microservices Architecture (and how to avoid t...
J On The Beach
 
PDF
Madaari : Ordering For The Monkeys
J On The Beach
 
PDF
Servers are doomed to fail
J On The Beach
 
PDF
Interaction Protocols: It's all about good manners
J On The Beach
 
PDF
A race of two compilers: GraalVM JIT versus HotSpot JIT C2. Which one offers ...
J On The Beach
 
PDF
Leadership at every level
J On The Beach
 
PDF
Machine Learning: The Bare Math Behind Libraries
J On The Beach
 
Massively scalable ETL in real world applications: the hard way
J On The Beach
 
Big Data On Data You Don’t Have
J On The Beach
 
Acoustic Time Series in Industry 4.0: Improved Reliability and Cyber-Security...
J On The Beach
 
Pushing it to the edge in IoT
J On The Beach
 
Drinking from the firehose, with virtual streams and virtual actors
J On The Beach
 
How do we deploy? From Punched cards to Immutable server pattern
J On The Beach
 
Java, Turbocharged
J On The Beach
 
When Cloud Native meets the Financial Sector
J On The Beach
 
The big data Universe. Literally.
J On The Beach
 
Streaming to a New Jakarta EE
J On The Beach
 
The TIPPSS Imperative for IoT - Ensuring Trust, Identity, Privacy, Protection...
J On The Beach
 
Pushing AI to the Client with WebAssembly and Blazor
J On The Beach
 
Axon Server went RAFTing
J On The Beach
 
The Six Pitfalls of building a Microservices Architecture (and how to avoid t...
J On The Beach
 
Madaari : Ordering For The Monkeys
J On The Beach
 
Servers are doomed to fail
J On The Beach
 
Interaction Protocols: It's all about good manners
J On The Beach
 
A race of two compilers: GraalVM JIT versus HotSpot JIT C2. Which one offers ...
J On The Beach
 
Leadership at every level
J On The Beach
 
Machine Learning: The Bare Math Behind Libraries
J On The Beach
 
Ad

Recently uploaded (20)

PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 

Containers from scratch