Upgrade to Pro — share decks privately, control downloads, hide ads and more …

eBPF in Microservices Observability

E7526ec3e801f8ba99f6746498a154a6?s=47 JBD
August 18, 2021
Programming
1
1.3k

eBPF in Microservices Observability

E7526ec3e801f8ba99f6746498a154a6?s=128

JBD

August 18, 2021
Tweet

More Decks by JBD

See All by JBD
eBPF in Microservices Observability at eBPF Day
E7526ec3e801f8ba99f6746498a154a6?s=48 rakyll
1
1.6k
OpenTelemetry at AWS
E7526ec3e801f8ba99f6746498a154a6?s=48 rakyll
1
1.6k
Debugging Code Generation in Go
E7526ec3e801f8ba99f6746498a154a6?s=48 rakyll
5
1.3k
Are you ready for production?
E7526ec3e801f8ba99f6746498a154a6?s=48 rakyll
8
2k
Servers are doomed to fail
E7526ec3e801f8ba99f6746498a154a6?s=48 rakyll
3
1.2k
Serverless Containers
E7526ec3e801f8ba99f6746498a154a6?s=48 rakyll
1
160
Critical Path Analysis
E7526ec3e801f8ba99f6746498a154a6?s=48 rakyll
0
230
Monitoring and Debugging Containers
E7526ec3e801f8ba99f6746498a154a6?s=48 rakyll
2
970
CPDD
E7526ec3e801f8ba99f6746498a154a6?s=48 rakyll
0
3.8k

Other Decks in Programming

See All in Programming
もしも、 上司に鬼退治を命じられたら~プロジェクト計画編~
Fb0a40e5e7a9dc85520f1646fd41eb44?s=48 higuuu
0
290
Reactでアプリケーションを構築する多様化
2917a3c430817eb71086f8973c06ebba?s=48 sakito
4
3.4k
The future of trust stores in Python
6638acfdb9c5979d11b4312984292c55?s=48 sethmlarson
0
180
競プロへの誘 -いざな-
Efbc292fd2e2c4caa0ede1d1532804a9?s=48 u76ner
0
380
[RailsConf 2022] The pitfalls of realtime-ification
52cc8a838bf44a589d2572833b2dd1b9?s=48 palkan
0
240
Explore Java 17 and beyond
F784a8de872a5d98f67ac5ccbd6683d0?s=48 josepaumard
3
660
モデリングの費用対効果
8f84b7d8869ef6005d89b378e8661f7c?s=48 masuda220
PRO
3
910
ソフトウェアテストなんて他人事!
だと思っていた私が始めた小さな取り組み
A524e2bed737555446c8720e3960397e?s=48 izumii19
0
240
職場にPythonistaを増やす方法
86b349524dfba1c635e944f2a9c92e91?s=48 soogie
0
320
Your Test Suite is Making Too Many Database Calls!
30b3743553757e5959534d3e1251634f?s=48 joelq
0
120
アプリのログをチーム外で活用してもらうためにやったこと
2f8b61ad31dd9c6ada4a90af746290fd?s=48 shotakashihara
0
190
How useEvent would change our applications
45daf58c77e9dbbab5a1c8a5afc7ac5c?s=48 koba04
1
1.7k

Featured

See All Featured
The Illustrated Children's Guide to Kubernetes
0438ae60cde4c7add6f9da48f28c15cc?s=48 chrisshort
14
35k
Embracing the Ebb and Flow
C9b18d9dff88a9dd2393364c2b3b21bd?s=48 colly
73
3.3k
Done Done
282d599b414022eba5096510f675b6e2?s=48 chrislema
174
14k
Art Directing for the Web. Five minutes with CSS Template Areas
433acaea1012b25d97ae66da9b998dad?s=48 malarkey
196
9.4k
Scaling GitHub
78b475797a14c84799063c7cd073962f?s=48 holman
451
140k
Bootstrapping a Software Product
A9179349dd2bdc67f377719f56d85656?s=48 garrettdimon
295
110k
Building Flexible Design Systems
91cefdf141106fa10674aae74ce05890?s=48 yeseniaperezcruz
310
33k
Visualization
170b760e0147792d0140e59ec78e9893?s=48 eitanlees
124
11k
Three Pipe Problems
11c84dff30266b907714802088852677?s=48 jasonvnalue
89
8.6k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
Fd55de4174accaf3b4f030e43a8a70c6?s=48 marcduiker
4
450
Fireside Chat
864a009ac73600c7c02e1f26629dd989?s=48 paigeccino
11
1.3k
Building Applications with DynamoDB
39488f9d172ab92fd352f2cd7b73258d?s=48 mza
83
4.6k

Transcript

  1. @rakyll eBPF in Microservices Observability Jaana Dogan Principal Engineer, AWS

    jbd@amazon.com

  2. @rakyll About me • Not a Linux developer. • Working

    on monitoring, observability and performance. • Multi-tenancy and microservices focus.

  3. @rakyll

  4. @rakyll How does eBPF work? process JIT compiler Verifier Sockets

    TCP/IP BPF Maps code (accessible from the user space)

  5. @rakyll Where can eBPF hook into? - Kernel and user

    functions - System calls - Network events - Kernel tracepoints

  6. @rakyll Challenges in microservices

  7. @rakyll Challenges in microservices We don’t just monitor VMs or

    processes. We monitor critical paths.

  8. @rakyll What’s next? service service database storage service

  9. @rakyll What’s next? service service database storage service

  10. @rakyll Challenges in microservices Context matters. Downstream stack don’t have

    context.

  11. @rakyll What’s next? process Linux kernel process process M:N Problem

  12. @rakyll What’s next? process Linux kernel process process RPCs M:N

    Problem

  13. @rakyll What’s next? process Linux kernel process process RPCs container

    container M:N Problem

  14. @rakyll What’s next? process Linux kernel process process RPCs container

    container Kubernetes pod, ECS task M:N Problem

  15. @rakyll Challenges in microservices We initially debug RPCs. We debug

    functions or syscalls secondarily.

  16. @rakyll Challenges in microservices Too much data. Need runtime controls

    to modify the collection.

  17. @rakyll Challenges in microservices Instrumentation is a two-year roadmap. Data

    is not consistent.

  18. @rakyll Networking observability is core. Out of the box instrumentation

    is essential. Extensibility in runtime is critical. Decoration and enrichment is needed.

  19. @rakyll How does eBPF help?

  20. @rakyll Network Diagnostics TCP, UDP, HTTP, gRPC metrics Inspect protocols

    (MySQL, Postgres, ...)

  21. @rakyll Service Maps

  22. @rakyll Distributed Traces Automatically create request span if a trace

    header is present. GET /users HTTP/1.1 Host: users.service Accept-Encoding: gzip, deflate Connection: Keep-Alive Traceparent: 00-4bf92f3577b34da6a3ce929d0e0e4736-00f067aa0ba902b7-01

  23. @rakyll Fleet-wide Profiling context kernel

  24. @rakyll Decorating with Context eBPF agent process JIT compiler Verifier

    Sockets TCP/IP BPF Maps API Server

  25. @rakyll Runtime Extensibility eBPF agent process JIT compiler Verifier Sockets

    TCP/IP BPF Maps code

  26. @rakyll Examples - Cillium/Hubble - Pixie - Flowmill

  27. @rakyll What’s next? - High level language to write probes.

    - Make eBPF agents widely available. - More platforms supporting eBPF. - Reusable eBPF event processing.

  28. @rakyll Thank you Jaana Dogan jbd@amazon.com