Download to read offline
![Unikernel Power
▌Fast start/stop/migration times
● 10s of milliseconds or less (and as little as 2.3ms)
REFS: LigthVM [Manco SOSP 2017], Jitsu [Madhvapeddy, NSDI 2015]
▌Low memory footprint
● Few MBs of RAM or less
REFS: ClickOS [Martins NSDI 2014], Unikraft [Kuenzer, Eurosys 2021. Best Paper Award]
▌High density
● 8k guests on a singlex86 server
REFS: LigthVM [Manco SOSP 2017]
▌High Performance
● ~300K reqs/sec nginx with a single guest CPU
REFS: Unikraft [Kuenzer, Eurosys 2021. Best Paper Award], Elastic CDNs [Kuenzer VEE 2017]
▌Security Features
● Small trusted compute base
● Strong isolation by hypervisor
● Per-library isolation
REFS: FlexOS [Lefeuvre HotOS 2021], CubicleOS [Sartakov ASPLOS 2021])](https://image.slidesharecdn.com/unikraft-p99conf-felipe-huici-211003010004/75/Unikraft-Fast-Specialized-Unikernels-the-Easy-Way-4-2048.jpg)
Uploaded byScyllaDB
Unikraft: Fast, Specialized Unikernels the Easy Way
Unikraft is a project focused on building fast, specialized unikernels that are easy to construct and operate, requiring minimal application porting while delivering exceptional performance. It aims for low memory usage and high density, enabling multiple instances to run on a single server, with significant improvements in boot times and request handling. Unikraft features a fully modular design, robust security measures, and compatibility with various applications, featuring around 160 syscalls thus far.
In this document
Powered by AI
Introduction of Unikraft as a specialized unikernel solution emphasizing high performance and easy deployment.
Details on unikernels' modular design and significant performance advantages compared to traditional OS, including low memory usage and fast operation.
Outlines the key design principles of Unikraft focusing on modular architecture and specialized APIs for enhanced performance.
Strategies for integrating Unikraft with Kubernetes and Prometheus for streamlined deployment and monitoring.
Exploration of POSIX compatibility approaches in Unikraft and methods to facilitate easy application porting.
Comparison of syscall support between Unikraft and Linux, highlighting support of popular applications and resilience.
Summary of performance metrics for Unikraft, including boot times, memory requirements, and throughput capabilities.
Final remarks on Unikraft's advancements and resources available for further exploration.
More Related Content
![FreeNAS 企業應用經驗分享 [2016/12/17] @台中資策會](https://cdn.slidesharecdn.com/ss_thumbnails/nas-161217133708-thumbnail.jpg?width=640&height=640&fit=bounds)
Similar to Unikraft: Fast, Specialized Unikernels the Easy Way
![[BDD 2025 - Full-Stack Development] The Modern Stack: Building Web & AI Appli...](https://cdn.slidesharecdn.com/ss_thumbnails/fs-themodernstackbuildingwebaiapplicationswithserverless-251124030844-388cf04f-thumbnail.jpg?width=640&height=640&fit=bounds)
![[BDD 2025 - Full-Stack Development] PHP in AI Age: The Laravel Way. (Rizqy Hi...](https://cdn.slidesharecdn.com/ss_thumbnails/fs-phpinaiagethelaravelway-251125012602-ef9d330e-thumbnail.jpg?width=640&height=640&fit=bounds)
![[BDD 2025 - Artificial Intelligence] Building AI Systems That Users (and Comp...](https://cdn.slidesharecdn.com/ss_thumbnails/ai-buildingaisystemsthatusersandcompanieslove-251124030845-038f7732-thumbnail.jpg?width=640&height=640&fit=bounds)
![[DevFest Strasbourg 2025] - NodeJs Can do that !!](https://cdn.slidesharecdn.com/ss_thumbnails/devfeststrasbourg2025-nodejscandothat-251127142731-da65b6fd-thumbnail.jpg?width=640&height=640&fit=bounds)
![[BDD 2025 - Mobile Development] Mobile Engineer and Software Engineer: Are we...](https://cdn.slidesharecdn.com/ss_thumbnails/md-mobileengineerandsoftwareengineerarewestillrelevantsidiqpermana-251127010650-55224ef1-thumbnail.jpg?width=640&height=640&fit=bounds)
![[BDD 2025 - Full-Stack Development] Digital Accessibility: Why Developers nee...](https://cdn.slidesharecdn.com/ss_thumbnails/fs-digitalaccessibilitywhydevelopersneedtoknowandcarein2025-251127011019-0674441d-thumbnail.jpg?width=640&height=640&fit=bounds)
![[BDD 2025 - Artificial Intelligence] AI for the Underdogs: Innovation for Sma...](https://cdn.slidesharecdn.com/ss_thumbnails/ai-aifortheunderdogsinnovationforsmallbusinesses-251124030839-72a599a4-thumbnail.jpg?width=640&height=640&fit=bounds)
Unikraft: Fast, Specialized Unikernels the Easy Way
- 1. Brought to youby Unikraft: Fast, Specialized Unikernels the Easy Way Felipe Huici Chief Researcher NEC Europe Laboratories GmbH
- 2. Specialization = HighPerformance software hardware
- 3. Unikernels = SpecializedVirtual Machines GOALS • Easy to build and run • Easy or no app porting • Great performance
- 4. Unikernel Power ▌Fast start/stop/migrationtimes ● 10s of milliseconds or less (and as little as 2.3ms) REFS: LigthVM [Manco SOSP 2017], Jitsu [Madhvapeddy, NSDI 2015] ▌Low memory footprint ● Few MBs of RAM or less REFS: ClickOS [Martins NSDI 2014], Unikraft [Kuenzer, Eurosys 2021. Best Paper Award] ▌High density ● 8k guests on a singlex86 server REFS: LigthVM [Manco SOSP 2017] ▌High Performance ● ~300K reqs/sec nginx with a single guest CPU REFS: Unikraft [Kuenzer, Eurosys 2021. Best Paper Award], Elastic CDNs [Kuenzer VEE 2017] ▌Security Features ● Small trusted compute base ● Strong isolation by hypervisor ● Per-library isolation REFS: FlexOS [Lefeuvre HotOS 2021], CubicleOS [Sartakov ASPLOS 2021])
- 5. Unikernels in OneSlide Web server General Purpose OS (e.g., Linux) 3rd party libraries OS libraries OS kernel Web server Unikernel Lots of devel time!
- 6. Design Principles 1. Fullymodular kernel 2. Provide high performance specialized APIs
- 7. Design Principles 1. Fullymodular kernel
- 8. Why not Linux? Unikraftis built from scratch to be fully modular
- 9.
- 10. Doing it withexisting unikernels? (1) Require significant expert work to build (2) They are often non-POSIX compliant (3) The (uni)kernels are still monolithic Unikraft is built from scratch (with borrowing)
- 11.
- 12.
- 13. application LIBC LAYER musl newlib POSIX COMPAT LAYER syscall-shim posix-fdtab posix-processpthread … posix-socket ramfs OS PRIMITIVES LAYER PLATFORM LAYER vfscore lwip NW STACKS mtcp uknetdev 9pfs FILESYSTEMS ukblockdev ext4 uksched ukpreempt SCHEDULERS ukcoop ukboot dynamicboot BOOTERS ukcoop ukalloc buddyalloc MEM . ALLOC. tinyualloc tlsf mimalloc oscar KVM virtio-net clock virtio-block memregion XEN netfront clock blockfront memregion …
- 14. GOALS • Easy tobuild and run • Easy or no app porting • Great performance
- 15.
- 16.
- 18.
- 20.
- 22. GOALS • Easy tobuild and run • Easy or no app porting • Great performance
- 23. Application Binary (unmodified ELF) POSIXCompatibility – Two Approaches Application Sources (object files, native build) libc (musl) ELF reader/loader AUTO PORTING BINARY COMPATIBILITY syscall shim layer syscalls trap syscall musl link obj files closed source open sources
- 24. What about syscallsupport?
- 25. Syscall Support Unikraft: 160syscalls (so far) Linux: ~350 syscalls
- 26. Syscall Support Top 30Debian Popcon Apps 160 syscalls currently supported
- 27. Apps are Resilientto Missing Syscalls (Redis)
- 28. Dynamic Analysis: Whatwe Really Need
- 29. GOALS • Easy tobuild and run • Easy or no app porting • Great performance
- 30.
- 31.
- 32.
- 35. Unikraft: Fast, SpecializedUnikernels the Easy Way P99 Conf, October 6-7 2021 Simon Kuenzer Sharan Santhanam Cyril Soldani Costi Răducanu Răzvan Deaconescu Vlad-Andrei Bădoiu Alexander Jung Costin Lupu Cristian Banu Costin Raiciu Hugo Lefeuvre Gaulthier Gain Stefan Teodorescu Laurent Mathy Felipe Huici
- 36. Brought to youby Info: https://unikraft.org/ Code: https://github.com/unikraft High performance POSIX unikernels are now a reality!