-
Welcome
-
Subscribe to
Updating the kernel using CRIU and KExec
This proposal has been accepted as a session.
One Line Summary
Pros and cons of replacing the kernel seamlessly to running processes instead of live-patching it.
Abstract
Live-patching the running kernel has its limitations. Instead of doing this one can replace the whole kernel by doing
- save the state of running processes
- reboot into new kernel using kexec
- restore processes from state images
Steps 1 and 3 require the technology called “checkpoint-restore”, which is now becoming available with the CRIU project.
We will discuss the advantages of this approach and its limitations as compared to live-patching, and how kernel can help in optimizing the process.
Tags
kernel, CRIU, upgrade
Presentation Materials
slidesSpeaker
-
Biography
Pavel is a principal engineer at Parallels working on company’s Cloud Server projects. He holds a PhD degree in Applied Mathematics from the Moscow Institute of Physics and Technology. He now maintains CRIU and works on its integration with other Linux containers projects.
His speaking experience includes many talks and presentations of Containers and Checkpoint/Restore projects at such conferences as LSFMM summit, Kernel Summit, LinuxCon, Plumbers and Linux Conf AU in the recent years.
Sessions
-
- Title: Updating the kernel using CRIU and KExec
- Microconference: Live Kernel Patching
- Time: 2:00pm
-
One Line Summary:
Pros and cons of replacing the kernel seamlessly to running processes instead of live-patching it.
- slides
- Speakers: Pavel Emelyanov
-
- Title: Checkpoint/restore of containers with CRIU
- Microconference: Containers
- Time: 9:25am
-
One Line Summary:
Current status and plans for LXC/Docker and CRIU integration.
- slides
- Speakers: Pavel Emelyanov, Serge Hallyn, Tycho Andersen, Saied Kazemi
-
- Title: Are containers that we have now secure enough?
- Microconference: Containers
- Time: 9:15am
-
One Line Summary:
Let’s discuss what security aspects we may have with existing implementation of containers in the kernel
- slides
- Speakers: Pavel Emelyanov, Vladimir Davydov
-