$30 off During Our Annual Pro Sale. View Details »

eBPF in Microservices Observability at eBPF Day

JBD
October 11, 2021
Programming
1
1.9k

eBPF in Microservices Observability at eBPF Day

JBD

October 11, 2021
Tweet

More Decks by JBD

See All by JBD
eBPF in Microservices Observability
rakyll
1
1.5k
OpenTelemetry at AWS
rakyll
1
1.7k
Debugging Code Generation in Go
rakyll
5
1.4k
Are you ready for production?
rakyll
8
2.3k
Servers are doomed to fail
rakyll
3
1.3k
Serverless Containers
rakyll
1
200
Critical Path Analysis
rakyll
0
350
Monitoring and Debugging Containers
rakyll
2
1.1k
CPDD
rakyll
0
4k

Other Decks in Programming

See All in Programming
From Spring Boot 2 to Spring Boot 3 with Java 21 and Jakarta EE
ivargrimstad
0
120
WantedlyでFeature Storeを導入する際に考えたこと
zerebom
1
420
フロントエンドエンジニアも知っておきたい HTTP/3 で変わること
yahiru
17
9.9k
JavaScript なしで動作するモダンなコードの書き方
azukiazusa1
15
9.7k
「価値」あるものを作るためにエンジニアができること - NIFTY Tech Day 2023
niftycorp
0
140
Comment choisir les « bons » composants open source ? (Capitole du Libre 2023)
pylapp
0
110
Introducing Kotlin Multiplatform in an existing mobile app - Workshop Edition | DevFest Berlin 23
prof18
0
230
Expert Tech Talk!〜ニフティスペシャリスト対談〜 - NIFTY Tech Day 2023
niftycorp
0
130
net/httpからnet.Connを掘り起こす
hiroyaonoe
1
450
C++20からC++23までの変化
faithandbrave
5
6.9k
車両情報のリアルタイム特徴量基盤の構築
mot_techtalk
2
780
re:Invent 2023 機械学習、アナリティクス系 "推し" アップデート紹介
cmnakamurashogo
0
120

Featured

See All Featured
[Rails World 2023 - Day 1 Closing Keynote] - The Magic of Rails
eileencodes
1
900
Building Adaptive Systems
keathley
29
1.6k
Large-scale JavaScript Application Architecture
addyosmani
501
110k
Fireside Chat
paigeccino
18
2.3k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
danielanewman
219
21k
Fashionably flexible responsive web design (full day workshop)
malarkey
396
64k
Into the Great Unknown - MozCon
thekraken
7
660
The Mythical Team-Month
searls
214
41k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
113
17k
Being A Developer After 40
akosma
52
580k
How to train your dragon (web standard)
notwaldorf
71
4.8k
GraphQLの誤解/rethinking-graphql
sonatard
45
8.7k

Transcript

  1. @rakyll
    eBPF in Microservices
    Observability
    Jaana Dogan
    Principal Engineer, AWS
    [email protected]

    View Slide

  2. @rakyll
    About me
    ● Not a Linux developer.
    ● Working on monitoring, observability and
    performance.
    ● Multi-tenancy and microservices focus.

    View Slide

  3. @rakyll

    View Slide

  4. @rakyll
    How does eBPF work?
    process
    JIT compiler
    Verifier Sockets
    TCP/IP
    BPF
    Maps
    code
    (accessible from the
    user space)

    View Slide

  5. @rakyll
    Where can eBPF hook into?
    - Kernel and user functions
    - System calls
    - Network events
    - Kernel tracepoints

    View Slide

  6. @rakyll
    Challenges in
    microservices

    View Slide

  7. @rakyll
    Challenges in microservices
    We don’t just monitor VMs or processes.
    We monitor critical paths.

    View Slide

  8. @rakyll
    What’s next?
    service
    service
    database storage
    service

    View Slide

  9. @rakyll
    What’s next?
    service
    service
    database storage
    service

    View Slide

  10. @rakyll
    Challenges in microservices
    Context matters.
    Downstream stack don’t have context.

    View Slide

  11. @rakyll
    What’s next?
    process
    Linux kernel
    process process
    M:N Problem

    View Slide

  12. @rakyll
    What’s next?
    process
    Linux kernel
    process process
    RPCs
    M:N Problem

    View Slide

  13. @rakyll
    What’s next?
    process
    Linux kernel
    process process
    RPCs
    container container
    M:N Problem

    View Slide

  14. @rakyll
    What’s next?
    process
    Linux kernel
    process process
    RPCs
    container container
    Kubernetes pod,
    ECS task
    M:N Problem

    View Slide

  15. @rakyll
    Challenges in microservices
    First, we debug the path of the request.
    We debug functions or syscalls secondarily.

    View Slide

  16. @rakyll
    Challenges in microservices
    Too much data.
    Need runtime controls to modify the collection.

    View Slide

  17. @rakyll
    Challenges in microservices
    Instrumentation is a two-year roadmap.
    Data is not consistent.

    View Slide

  18. @rakyll
    Recap
    Out of the box instrumentation is critical.
    Networking observability is essential.
    Extensibility in runtime is needed.
    Decoration and enrichment is needed.

    View Slide

  19. @rakyll
    How does eBPF help?

    View Slide

  20. @rakyll
    Network Diagnostics
    TCP, UDP, HTTP, gRPC metrics
    Inspect protocols (MySQL, Postgres, ...)

    View Slide

  21. @rakyll
    Network Diagnostics
    TCP, UDP, HTTP, gRPC metrics
    Inspect protocols (MySQL, Postgres, ...)

    View Slide

  22. @rakyll
    Service Maps

    View Slide

  23. @rakyll
    Distributed Traces
    Automatically create trace span if a trace header is present.
    Your job is to generate and propagate the header.
    GET /users HTTP/1.1
    Host: users.service
    Accept-Encoding: gzip, deflate
    Connection: Keep-Alive
    Traceparent: 00-4bf92f3577b34da6a3ce929d0e0e4736-00f067aa0ba902b7-01

    View Slide

  24. @rakyll
    Continuous Profiling

    View Slide

  25. @rakyll
    Extensibility

    View Slide

  26. @rakyll
    Decorating with Context
    eBPF agent process
    JIT compiler
    Verifier Sockets
    TCP/IP
    BPF
    Maps
    API Server

    View Slide

  27. @rakyll
    Decorating with Context

    View Slide

  28. @rakyll
    Several projects...
    - Cillium/Hubble
    - Pixie
    - Flowmill
    - Prodfiler
    - Parca

    View Slide

  29. @rakyll
    What’s next?
    - High level language?
    - More platforms supporting eBPF?
    - Reusable eBPF event processors?
    - Signed programs?

    View Slide

  30. @rakyll
    Thank you
    Jaana Dogan
    [email protected]

    View Slide

  31. @rakyll
    After party?
    Pixie KubeCon Happy Hour hosted by New Relic
    Tomorrow, 8:30 PM PDT
    RSVP: pixiehh.eventbrite.com

    View Slide

  32. @rakyll
    Runtime Extensibility
    eBPF agent process
    JIT compiler
    Verifier Sockets
    TCP/IP
    BPF
    Maps
    code

    View Slide