eBPF is the future, losers
Don't believe me?
- eBPF o11y
- eBPF FIREWALL
- eBPF shell
- eBOF UEFI
- eBPF contraceptives
Still haters meow?
eBPF is the future, losers
Don't believe me?
- eBPF o11y
- eBPF FIREWALL
- eBPF shell
- eBOF UEFI
- eBPF contraceptives
Still haters meow?
A race condition in the #Cilium agent can cause the agent to ignore labels that should be applied to a node. This could in turn cause CiliumClusterwideNetworkPolicies intended for nodes with the ignored label to not apply, leading to policy bypass.
#ebpf
https://github.com/cilium/cilium/security/advisories/GHSA-q7w8-72mr-vpgw
#CrowdStrike: Sind EU und Ratingagenturen schuld? [Und: Updates] - Das Netz ist politisch https://dnip.ch/2024/08/05/crowdstrike-sind-eu-und-ratingagenturen-schuld-und-updates/ #DNIP #CrowdStrike #Cybersecurity #Microsoft #Windows #eBPF #EndpointSecurity #Risikomanagement #RiskManagement #Digitalisierung #digitalization #SecurityFramework
Now with KProbes for per-process info - dkorunic/pktstat-bpf: TC, XDP and KProbe eBPF based simple Ethernet interface traffic monitor and reporting tool https://github.com/dkorunic/pktstat-bpf #networking #linux #ebpf #kprobe #xdp #tc
There's a lot of content in our upcoming 1.8 release!
Here are two new blog posts that both relate to performance in #NetworkObservability :
1. How you can fine-tune NetObserv filters and sampling to collect precise information, hence reducing the overall footprint : https://netobserv.io/posts/enhancing-netobserv-by-introducing-multi-rules-flow-filtering-capability-in-ebpf/
2. How we optimized our #eBPF agent to divide by two its CPU load, with technical details inside : https://netobserv.io/posts/performance-improvements-in-1-8/
This release is planned in a week or two in OpenShift ; the community images are already out there!
I've added talk recordings to my list of eBPF papers, when available. That's 33 videos of ~20min discussing various aspects and use cases of #eBPF!
https://pchaigno.github.io/bpf/2025/01/07/research-papers-bpf.html
The list of papers to be presented at Usenix NSDI 2025 has been published: https://www.usenix.org/conference/nsdi25/technical-sessions!
I see at least three papers related to #eBPF, but as usual there are also lots of papers on network verification, queuing, RDMA, machine learning, cellular networks, etc.
Dinko Korunić - DEEP 2024 - eBPF: Features, capabilities and implementation (in Croatian language) https://www.youtube.com/watch?v=-h05Y-x48QE #ebpf #deep2024 #security #linux #networking
Cilium Netkit: Revolutionizing Container Networking Performance for AI Workloads
Cilium's latest feature, Netkit, is set to redefine container networking performance by eliminating traditional bottlenecks and achieving parity with host networking. This innovation is crucial for ba...
Hey #Pyroscope community!
Here's what's on the agenda:
Client side filtering via #Grafana Alloy
#eBPF profiler embedding
#k6+Profiles
Join us here: http://meet.google.com/evx-bquj-edw
Polar Signals couldn't figure out why it had so much expensive cross-zone traffic. So it turned to eBPF to deliver the answers, and cut its cloud bill in half.
By Joab Jackson | #eBPF #CloudServices #FinOps #Kubernetes
Rafael Roquetto and yours truly presenting "Zero-Code Distributed Traces for any programming language" with #Grafana #beyla and #eBPF in the #Monitoring and #Observability devroom at #fosdem. https://fosdem.org/2025/schedule/event/fosdem-2025-5028-zero-code-distributed-traces-for-any-programming-language/
Yet another talk about #eBPF and #opentelemetry auto-instrumentation on #FOSDEM by @fstab and Rafael Roquetto
It’s crazy to everyone heading to this direction these days!
Last session of the day, Mike Willard does an introduction to Netkit, and of the challenges faced when rolling it out in production at scale. A new kind of virtual, programmable device! We also used Netkit to improve performance in Cilium.
Johannes Bechberger (@parttimenerd) explains how to build a minimal scheduler for the Linux kernel with eBPF, sched_ext, and C. There's a demo! Nice introduction for anyone who wants to get started quick.
I discover sched_ext has a logo, and Johannes even brought stickers!
Nice demo, but sorry Johannes, you got the wrong password
Benchmarking eBPF programs may sometimes cause you to resort to quirky workarounds, and Dmitrii is talking about just that. He also introduces his workload generation tool called Berserker.
How can you use Rust to build your application _and_ the eBPF program it manages? Daniel Mellado does an introductory presentation about the Aya library, which offers a templating mechanism to write programs in Rust. Handy if you want to get started. There's even a demo of an XDP app