Loading…
← Back to schedule
Monitoring filesystems with fanotify inside containers - Amir Goldstein, CTERA Networks
Thursday August 28, 2025 13:35 - 13:50 CEST
TBA
Filesystem monitoring was added to fanotify in kernel 5.1
and the first HSM feature was added to fanotify in kernel 6.12.
See this Linux Plumbers talk by fanotify maintainer Jan Kara for a
good overview:
https://lpc.events/event/18/contributions/1717/attachments/1648/3404/fanotify.pdf

This talk will present our work towards making those features available inside containers using two different strategies:

1. For filesystems that were mounted inside userns or idmapped into userns, userns admin would be able to use fanotify to monitor those filesystems.

2. For filesystems that were mounted by the host, container users would be able to subscribe to a service on the host to receive filesystem monitoring events contained to the scope of the container.
Speakers
avatar for Amir Goldstein

Amir Goldstein

Principal Software Engineer, CTERA Networks
Filesystem developer with affection for open source projects._x000D_ _x000D_ Lead technology groups at various start-up companies in the fields of Security, Filesystems, Networking and Virtualization._x000D_ _x000D_ Prominent fanotify developer and lead of fanotify HSM API project._x000D_... Read More →
Thursday August 28, 2025 13:35 - 13:50 CEST
TBA
  Lightning Talk

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Need help? View Support Guides
Event questions? Contact Event Planner
Powered by Sched Event Planning App
©2025 Sched About Privacy Terms
Share Modal

Share this link via

Or copy link