BEGIN:VCALENDAR VERSION:2.0 PRODID:-//Pentabarf//Schedule 0.3//EN CALSCALE:GREGORIAN METHOD:PUBLISH X-WR-CALDESC;VALUE=TEXT:Microkernels and Component-based OS devroom X-WR-CALNAME;VALUE=TEXT:Microkernels and Component-based OS devroom X-WR-TIMEZONE;VALUE=TEXT:Europe/Brussels BEGIN:VEVENT METHOD:PUBLISH UID:9647@FOSDEM20@fosdem.org TZID:Europe-Brussels DTSTART:20200202T090000 DTEND:20200202T095000 SUMMARY:seL4 Microkernel Status Update DESCRIPTION:
I will give an overview of where seL4 stands today in terms of functionality, verification, ecosystem, deployment and community. The focus will be on what has happened in seL4 land over the past 12 months, which is a lot: seL4 Foundation, RISC-V support and introducing time protection.
CLASS:PUBLIC STATUS:CONFIRMED CATEGORIES:Microkernels and Component-based OS URL:https:/fosdem.org/2020/schedule/2020/schedule/event/uk_sel4/ LOCATION:K.4.601 ATTENDEE;ROLE=REQ-PARTICIPANT;CUTYPE=INDIVIDUAL;CN="Gernot Heiser":invalid:nomail END:VEVENT BEGIN:VEVENT METHOD:PUBLISH UID:9408@FOSDEM20@fosdem.org TZID:Europe-Brussels DTSTART:20200202T100000 DTEND:20200202T103500 SUMMARY:M³: Taking Microkernels to the Next Level DESCRIPTION:Current microkernels have shown to provide advantages in terms of security, robustness, and flexibility of systems. However, in recent years, the hardware added new challenges that need to be addressed as well, demanding approaches that include the hardware into the picture. First, hardware is getting more and more heterogeneous and consists not only of general-purpose cores, but contains also various accelerators. Second, system designers need to integrate untrusted third-party components (e.g., accelerators or modems) to meet today's performance, energy, and development-time demands. And third, security vulnerabilities such as Meltdown, Spectre, and Fallout have shown that today's complex general-purpose cores should not be trusted anymore to properly enforce isolation boundaries between different software components.
In my talk, I will present a new system architecture that takes existing microkernel ideas to the "next level" to address the mentioned challenges. We use a hardware/operating system co-design consisting of a small and simple hardware component, called trusted communication unit (TCU), that we add next to each processing element (core, accelerator, modem, etc.) and an operating system, called M³, that takes advantage of it. The TCU provides a uniform interface for all processing elements, simplifying the management and usage of heterogeneous processing elements, and enables secure communication between arbitrary processing elements. M³ is designed as a microkernel-based system and runs its components on different processing elements with TCU-based communication channels between them. To account for the security vulnerabilities in today's cores, M³ places components onto different and physically isolated processing elements by default, but allows sharing of processing elements as a fallback.
CLASS:PUBLIC STATUS:CONFIRMED CATEGORIES:Microkernels and Component-based OS URL:https:/fosdem.org/2020/schedule/2020/schedule/event/uk_m3/ LOCATION:K.4.601 ATTENDEE;ROLE=REQ-PARTICIPANT;CUTYPE=INDIVIDUAL;CN="Nils Asmussen":invalid:nomail END:VEVENT BEGIN:VEVENT METHOD:PUBLISH UID:10419@FOSDEM20@fosdem.org TZID:Europe-Brussels DTSTART:20200202T104000 DTEND:20200202T105500 SUMMARY:HelenOS in the Year of the Pig DESCRIPTION:This is going to be an all-encompassing update talk for HelenOS developments that happened in the Year of the Pig (since the last FOSDEM).
CLASS:PUBLIC STATUS:CONFIRMED CATEGORIES:Microkernels and Component-based OS URL:https:/fosdem.org/2020/schedule/2020/schedule/event/uk_helenos/ LOCATION:K.4.601 ATTENDEE;ROLE=REQ-PARTICIPANT;CUTYPE=INDIVIDUAL;CN="Jakub Jermář":invalid:nomail END:VEVENT BEGIN:VEVENT METHOD:PUBLISH UID:9284@FOSDEM20@fosdem.org TZID:Europe-Brussels DTSTART:20200202T110000 DTEND:20200202T112500 SUMMARY:Linux Kernel Library DESCRIPTION:LKL (Linux Kernel Library) is aiming to allow reusing the Linux kernelcode as extensively as possible with minimal effort and reducedmaintenance overhead. It allows us to link the library with anyprograms (which wish to call as a function call) containing Linuxkernel code. There are many use cases: reading/writing files withoutgeneral system calls, putting experimental protocol implementationwithout neither of host kernel update nor kernel module installation,using customized kernel in container instance, building a unikernelbased on existing rumprun framework, or testing/fuzzing kernelimplementation in userspace execution, etc.
In this talk, we are going to present
Phantom OS is an Operating system based on the orthogonal persistence. Application does not feel OS shutdown and restart. Even abrupt restart. It is guaranteed that application will be restarted in consistent state.
CLASS:PUBLIC STATUS:CONFIRMED CATEGORIES:Microkernels and Component-based OS URL:https:/fosdem.org/2020/schedule/2020/schedule/event/uk_phantom/ LOCATION:K.4.601 ATTENDEE;ROLE=REQ-PARTICIPANT;CUTYPE=INDIVIDUAL;CN="Dmitry Zavalishin":invalid:nomail END:VEVENT BEGIN:VEVENT METHOD:PUBLISH UID:9111@FOSDEM20@fosdem.org TZID:Europe-Brussels DTSTART:20200202T120000 DTEND:20200202T122500 SUMMARY:Gneiss: A Nice Component Framework in SPARK DESCRIPTION:Gneiss is an abstraction layer for component based environments that aims toprovide a foundation for formally provable components. It enables the creationof platform independent, asynchronous components in SPARK and providesfunction contracts that allow to prove the correct interaction with theunderlying platform.
CLASS:PUBLIC STATUS:CONFIRMED CATEGORIES:Microkernels and Component-based OS URL:https:/fosdem.org/2020/schedule/2020/schedule/event/uk_gneiss/ LOCATION:K.4.601 ATTENDEE;ROLE=REQ-PARTICIPANT;CUTYPE=INDIVIDUAL;CN="Johannes Kliemann":invalid:nomail END:VEVENT BEGIN:VEVENT METHOD:PUBLISH UID:10020@FOSDEM20@fosdem.org TZID:Europe-Brussels DTSTART:20200202T123000 DTEND:20200202T125500 SUMMARY:A Component-based Environment for Android Apps DESCRIPTION:With 2.5 billions of active users Android is the most widely deployed mobile operating system in the world. Its vast complexity paired with a monolithic architecture regularly result in severe security issues like the infamous Stagefright bug. In this presentation we talk about an ongoing research project which aims at running Android applications on top of the component-based Genode OS framework and secure them using formally verified components. We discuss how Android applications interact, how well this matches the semantics of Genode and what it takes to support unmodified Android apps.
CLASS:PUBLIC STATUS:CONFIRMED CATEGORIES:Microkernels and Component-based OS URL:https:/fosdem.org/2020/schedule/2020/schedule/event/uk_android/ LOCATION:K.4.601 ATTENDEE;ROLE=REQ-PARTICIPANT;CUTYPE=INDIVIDUAL;CN="Alexander Senier":invalid:nomail END:VEVENT BEGIN:VEVENT METHOD:PUBLISH UID:10150@FOSDEM20@fosdem.org TZID:Europe-Brussels DTSTART:20200202T130000 DTEND:20200202T135000 SUMMARY:Demonstration of the Sculpt Operating System DESCRIPTION:Sculpt OS is a novel general-purpose operating system designed from the ground up and implemented using the building blocks of the Genode OS framework. It started with the vision of a truly trustworthy OS that combines a completely new system structure with microkernels, capability-based security, sandboxed device drivers, and virtual machines. The talk is a live demonstration of the current incarnation of Sculpt.
CLASS:PUBLIC STATUS:CONFIRMED CATEGORIES:Microkernels and Component-based OS URL:https:/fosdem.org/2020/schedule/2020/schedule/event/uk_sculpt/ LOCATION:K.4.601 ATTENDEE;ROLE=REQ-PARTICIPANT;CUTYPE=INDIVIDUAL;CN="Norman Feske":invalid:nomail END:VEVENT BEGIN:VEVENT METHOD:PUBLISH UID:10381@FOSDEM20@fosdem.org TZID:Europe-Brussels DTSTART:20200202T140000 DTEND:20200202T142500 SUMMARY:A Brief Survey through Genode's ARMv8 Playground DESCRIPTION:The Genode project has evolved over the past decade into a versatile toolkit for general-purpose computing. Even though support for ARM embedded devices is an inherent part of it since the very beginning, the focus of the past years was more x86-Architecture centered. Sculpt, the desktop incarnation of Genode, being the prime example. Recently, Genode's ARMv8 port ignited extensive development efforts to support more sophisticated workloads on top of modern embedded and mobile devices.
The talk provides an overview about the current ARMv8 Genode landscape, its ambitions and potential. It will live demonstrate recent achievements from device support up to hardware-assisted virtualization on top of the NXP i.MX8 SoC.
CLASS:PUBLIC STATUS:CONFIRMED CATEGORIES:Microkernels and Component-based OS URL:https:/fosdem.org/2020/schedule/2020/schedule/event/uk_genode_armv8/ LOCATION:K.4.601 ATTENDEE;ROLE=REQ-PARTICIPANT;CUTYPE=INDIVIDUAL;CN="Stefan Kalkowski":invalid:nomail END:VEVENT BEGIN:VEVENT METHOD:PUBLISH UID:10344@FOSDEM20@fosdem.org TZID:Europe-Brussels DTSTART:20200202T143000 DTEND:20200202T152000 SUMMARY:NOVA Microhypervisor on ARMv8-A DESCRIPTION:NOVA is a modern open-source microhypervisor that can host unmodified guest operating systems next to critical host applications. Although originally developed for the x86 virtualization extensions of Intel and AMD, the internals of the microhypervisor and its external API were designed with flexibility in mind, such that the code could also be ported to other architectures.
In this talk we present the first ever version of NOVA on ARMv8-A. We will show how the NOVA abstractions map onto the ARM architecture, how modern virtualization features such as GIC and SMMU are being used, discuss the ongoing evolution of the NOVA API and how the ARM port differs from the earlier x86 version.
The talk will conclude with a short demo, an outlook into the NOVA roadmap and the formal verification efforts around the code base, as well as opportunities for collaboration with the NOVA community.
CLASS:PUBLIC STATUS:CONFIRMED CATEGORIES:Microkernels and Component-based OS URL:https:/fosdem.org/2020/schedule/2020/schedule/event/uk_nova/ LOCATION:K.4.601 ATTENDEE;ROLE=REQ-PARTICIPANT;CUTYPE=INDIVIDUAL;CN="Udo Steinberg":invalid:nomail END:VEVENT BEGIN:VEVENT METHOD:PUBLISH UID:10376@FOSDEM20@fosdem.org TZID:Europe-Brussels DTSTART:20200202T153000 DTEND:20200202T155500 SUMMARY:The HIPPEROS RTOS DESCRIPTION:HIPPEROS is an upcoming open source RTOS that was developed at ULB and by a former spin-off company of ULB.The talk will be a presentation followed by an open discussion about the main architecture principles of the HIPPEROS kernel and OS, what platforms and architectures we support and our agenda regarding open source.
CLASS:PUBLIC STATUS:CONFIRMED CATEGORIES:Microkernels and Component-based OS URL:https:/fosdem.org/2020/schedule/2020/schedule/event/uk_hipperos/ LOCATION:K.4.601 ATTENDEE;ROLE=REQ-PARTICIPANT;CUTYPE=INDIVIDUAL;CN="Antonio Paolillo":invalid:nomail END:VEVENT BEGIN:VEVENT METHOD:PUBLISH UID:10215@FOSDEM20@fosdem.org TZID:Europe-Brussels DTSTART:20200202T160000 DTEND:20200202T162500 SUMMARY:Unikraft: A Unikernel Toolkit DESCRIPTION:Although unikernels - images containing specialized OS primitives and libraries targeting a specific application - have shown impressive performance potential (e.g., fast I/O of 40 Gbps, fast instantiation in the millisecond range, minimal memory footprints of only KBs and a minimal trusted compute base), creating them has proven to be a complicated and time-consuming process. This is mostly because operating system components have to be individually specialized and developed for each target application and target platform.
In this talk we give an update on the Unikraft open source project. Unikraft is a toolkit for creating specialized unikernels and it aims to remove the need for time-consuming, expert work. In the past two years, the community has put a lot of effort into supporting OS functionality, drivers, and platforms, porting libraries, and providing tools to ease porting of existing applications. We will give an overview of all the exciting achievements and conclude with an outlook of recent project directions: binary compatibility (Linux ABI), support for a wide range of compiled and interpreted languages (e.g., web assembly, Go, Python, Ruby, etc.), enhanced safety features, and the ability to seamlessly produce images ready to run as extremely lean VMs, containers, or directly on bare metal. The aim is that Unikraft will represent a step forward towards wider adoption of unikernels beyond the research community.
CLASS:PUBLIC STATUS:CONFIRMED CATEGORIES:Microkernels and Component-based OS URL:https:/fosdem.org/2020/schedule/2020/schedule/event/uk_unicraft/ LOCATION:K.4.601 ATTENDEE;ROLE=REQ-PARTICIPANT;CUTYPE=INDIVIDUAL;CN="Simon Kuenzer":invalid:nomail END:VEVENT BEGIN:VEVENT METHOD:PUBLISH UID:10510@FOSDEM20@fosdem.org TZID:Europe-Brussels DTSTART:20200202T163000 DTEND:20200202T165500 SUMMARY:VUOS: Give Your Processes a New VU DESCRIPTION:VUOS is a different perspective on namespaces, anykernels and related concepts. The main idea behind VUOS is that it is possible to give processes their own "view" using partial virtual machines.
A partial virtual machine intercepts the system call requests and operates like a filter: system calls can be forwarded to the kernel of the hosting system or processed by the partial virtual machine hypervisor.In this way processes can see a mix of resources provided by the kernel (on which they have the same view of the other processes) and virtual resource. It is possible to mount filesystems, load networking stacks, change the structure of the file system tree, create virtual devices.
The hypervisor is just a user process so while it gives new perspective for processes, it does not widen the attack surface of the kernel.
CLASS:PUBLIC STATUS:CONFIRMED CATEGORIES:Microkernels and Component-based OS URL:https:/fosdem.org/2020/schedule/2020/schedule/event/uk_vuos/ LOCATION:K.4.601 ATTENDEE;ROLE=REQ-PARTICIPANT;CUTYPE=INDIVIDUAL;CN="Renzo Davoli":invalid:nomail END:VEVENT END:VCALENDAR