exploring kubernetes secrets from the kubelet's perspective
into the details of resource reservation and oom killing
an overview of containerd (internal Concourse chat)
enabling stackDebug to see debug prints from golang runtime
an introductory talk on BPF
replicating the go way of cancelling a read over the network
installing containerd and getting a sole kubelet to create pods via CRI
kernel tracing to figure out a little mistake
how to use overlayfs and some analysis of its performance impact in certain situations
/usr/bin/time is great, but, what if you could have a system-wide "time" program that captures process execution time with neglebible overhead?
a dive into the mechanics of writing to /proc/pid/uid_gid when setting up user namespaces
exploring how tar deals with uid and gids when archiving and extracting under different types of users
a deep dive into the mechanism that allows sudo to work
a look into the translations performed under the hood
what if we cut the intermediaries?
what if we could use distributed tracing tools to better understand our builds?
some explorations on how sending signals work, and why a SIGKILL fails for frozen processes
exploring what glibc is, what ISO C and POSIX covers, and why golang might use glibc for some standard libraries.
going from source code to a working linux on qemu
a lightning talk on Prometheus
some thoughts on serving container images from a tarball as if you had a container images registry