XDP closer integration with network stack

XDP (eXpress Data Path) is the new programmable in-kernel fast-path, which is placed as a layer before the existing Linux kernel network stack (netstack). We claim XDP is not kernel-bypass, as it is a layer before and it can easily fall-through to netstack. Reality is...

Suricata and XDP

Suricata is a network threat detection engine using network packets capture to reconstruct the traffic till the application layer and find threats on the network using rules that define behavior to detect. This task is really CPU intensive and discarding non...

BPF at Facebook

This talk will provide several examples of how Facebook engineers use BPF to scale the networking, prevent denial of service, secure containers, analyze performance. It’s suitable for BPF newbies and...

The Next Steps toward Software Freedom for Linux

Linux is likely the most important software project ever undertaken; it is essential to the future of freedom for users and developers alike. Many in our community believe that Linux’s continued success and certainty of collaborative shared development depends on its...