You are viewing the 2025 edition of FOSDEM. Click here to view the 2026 edition

Implementing a rootless container manager from scratch

Name: Implementing a rootless container manager from scratch
Start: 2025-02-01T14:30:00
End: 2025-02-01T14:30:00
Location: UD2.218A

UD2.218A | Day 1 | 14:30 - 15:00 | Speakers: Luca Di Maio

Copy link

Copy link

Open in browser

Notes

Abstract

An introduction on the basic concepts underpinning a container manager: understanding what OCI images are, how they’re structured, and how to use them as rootfs. From there, we’ll dive into the core Linux primitives that make rootless containers possible: namespaces for isolation, UID/GID mappings and dropping privileges.

The talk will use my project Lilipod https://github.com/89luca89/lilipod as an example on what and how all of this has been implemented

Attachments

Slides

Speakers

Luca Di Maio

External Links

Notice: The placeholder video image is licensed under CC BY-SA 4.0. The original image can be found hereChanges made to the image are: Cropped the image to a new ratio, part of the image was cut off.