Keyboard shortcuts

Press or to navigate between chapters

Press S or / to search in the book

Press ? to show this help

Press Esc to hide this help

What is a Unikernel?

A unikernel is a specialized, single-address-space machine image constructed by using library operating systems. Unlike a traditional operating system (like Linux or Windows) where an application runs on top of a general-purpose kernel with many unused drivers and services, a unikernel compiles the application code together with only the specific operating system components it needs into a single bootable binary.

On the Mollymawk platform, this technology is characterized by the following:

  • Zero Configuration: Unikernels are designed to be “zero configuration” appliances that deploy in seconds. Because the network and storage logic is compiled directly into the application, there is no need to log in to a shell to configure IP addresses or mount points after booting; these are handled as boot arguments or configuration parameters.
  • Single Binary: Deployment does not involve installing an OS and then installing software. Instead, the user simply uploads a Unikernel Image Binary. This single file contains everything required for the application to run.
  • Robust Security: Mollymawk highlights “robust security” as a primary benefit. By removing unnecessary code, drivers, and utilities (like a shell or multi-user support), the attack surface of the application is significantly reduced.

Resource Efficiency

Unikernels are highly efficient regarding system resources. While a traditional virtual machine might require gigabytes of RAM just to boot the OS, unikernels show extremely low resource footprints.

  • Low Memory Usage: Running unikernels often utilize very small amounts of RAM, such as 32 MB, 64 MB, or 128 MB.
  • Granular Control: Administrators can set precise limits on Allowed Memory and Allowed Storage (measured in MB) and even assign specific CPU IDs to control exactly which hardware resources the unikernel consumes.

The Technical Stack (MirageOS & Solo5)

The specific type of unikernels supported by mollymawk are built using MirageOS.

  • Solo5: Solo5 is the interface layer that allows the MirageOS unikernel to talk to the host hardware or hypervisor.
  • Albatross: The orchestration system managing these unikernels is called Albatross. It acts as the backend that receives the binary stream and executes the unikernel, handling the lifecycle (create, destroy, restart),.

Think of a traditional operating system like a fully furnished house. Even if you only want to sleep there (run one application), you still have to maintain the kitchen, the garage, extra bedrooms, and the plumbing—all of which take up space and could potentially be broken into by burglars.

A unikernel is like a camping tent. It contains exactly what you need to sleep and nothing else. It is incredibly lightweight, takes seconds to set up, has no “extra rooms” for intruders to hide in, and you can pack hundreds of them into the same space that a single house would occupy.