Representative of IBM (partner of the UNICORE Consortium), Mike Rapoport, participated at the online Open Source Tech Conference on August 11th. The online Conference took place from August 10th to August 13thand covered topics like Linux kernel network stack, Linux networking APIs for user-space, High-performance networking in Linux, Networking for VMs and containers, Linux memory management, Linux-based electronic systems development, Open source mobile operating systems, Linux debugging and troubleshooting.
Mike gave a presentation on “Address Space Separation Inside the Linux Kernel”. In his talk, Rapoport presented a mechanism for “system call isolation” that allows running a system call with largely reduced page tables and provides the kernel with the ability to inspect the memory accesses and verify their safety based on a pre-defined policy. He also took a closer look at the possibility to assign an address space to the Linux namespaces, so that tasks running in namespace A have different view of kernel memory mappings than the tasks running in namespace B.
You can take a look at Mike Rapoport’s presentation at the Open Source Tech Conference!