Upgrade to Pro — share decks privately, control downloads, hide ads and more …

eBPF in Microservices Observability at eBPF Day

Avatar for JBD JBD
October 11, 2021
Programming
1
2.1k

eBPF in Microservices Observability at eBPF Day

Avatar for JBD

JBD

October 11, 2021
Tweet

More Decks by JBD

See All by JBD
eBPF in Microservices Observability
Avatar for JBD rakyll
1
1.7k
OpenTelemetry at AWS
Avatar for JBD rakyll
1
1.8k
Debugging Code Generation in Go
Avatar for JBD rakyll
5
1.5k
Are you ready for production?
Avatar for JBD rakyll
8
2.8k
Servers are doomed to fail
Avatar for JBD rakyll
3
1.5k
Serverless Containers
Avatar for JBD rakyll
1
250
Critical Path Analysis
Avatar for JBD rakyll
0
590
Monitoring and Debugging Containers
Avatar for JBD rakyll
2
1.1k
CPDD
Avatar for JBD rakyll
0
4.2k

Other Decks in Programming

See All in Programming
ComposeでのPicture in Picture
Avatar for takathemax takathemax
0
130
2025-04-25 GitHub Copilot Agent ライブデモ(スクリプト)
Avatar for GOAMI Takaaki goataka
0
110
Improve my own Ruby
Avatar for monochrome sisshiki1969
1
110
Road to Ruby for A Linguistics Nerd
Avatar for Hayato Ishida hayat01sh1da
PRO
0
180
Ruby で作る RISC-V CPU エミュレーター / RISC-V CPU emulator made with Ruby
Avatar for hachi (Hayao Kimura) hayaokimura
5
1k
Cursorを活用したAIプログラミングについて 入門
Avatar for 株式会社レクト rect
0
190
AIコーディングエージェントを 「使いこなす」ための実践知と現在地 in ログラス / How to Use AI Coding Agent in Loglass
Avatar for r-kagaya rkaga
4
1.3k
M5UnitUnified 最新動向 2025/05
Avatar for GOB gob
0
140
AWS Summit Hong Kong 2025: Reinventing Programming - How AI Transforms Our Enterprise Coding Approach
Avatar for Ernest Chiang dwchiang
0
140
データベースの技術選定を突き詰める ~複数事例から考える最適なデータベースの選び方~
Avatar for nnaka2992 nnaka2992
0
220
KANNA Android の技術的課題と取り組み
Avatar for Yosuke Watanabe watabee
1
450
2025年のz-index設計を考える
Avatar for TAK tak_dcxi
10
3.9k

Featured

See All Featured
Sharpening the Axe: The Primacy of Toolmaking
Avatar for Bryan Cantrill bcantrill
41
2.3k
jQuery: Nuts, Bolts and Bling
Avatar for Doug Neiner dougneiner
63
7.7k
Understanding Cognitive Biases in Performance Measurement
Avatar for Philip Tellis bluesmoon
29
1.7k
No one is an island. Learnings from fostering a developers community.
Avatar for Antonio thoeni
21
3.3k
Stop Working from a Prison Cell
Avatar for Chris Michel hatefulcrawdad
268
20k
Being A Developer After 40
Avatar for Adrian Kosmaczewski akosma
91
590k
Fight the Zombie Pattern Library - RWD Summit 2016
Avatar for Marcelo Somers marcelosomers
233
17k
The Power of CSS Pseudo Elements
Avatar for Geoffrey Crofte geoffreycrofte
75
5.8k
The Cost Of JavaScript in 2023
Avatar for Addy Osmani addyosmani
49
7.8k
A Tale of Four Properties
Avatar for Chris Coyier chriscoyier
159
23k
How STYLIGHT went responsive
Avatar for nonsquared nonsquared
100
5.5k
Rebuilding a faster, lazier Slack
Avatar for samanthasiow samanthasiow
81
9k

Transcript

  1. @rakyll eBPF in Microservices Observability Jaana Dogan Principal Engineer, AWS

    [email protected]

  2. @rakyll About me • Not a Linux developer. • Working

    on monitoring, observability and performance. • Multi-tenancy and microservices focus.

  3. @rakyll

  4. @rakyll How does eBPF work? process JIT compiler Verifier Sockets

    TCP/IP BPF Maps code (accessible from the user space)

  5. @rakyll Where can eBPF hook into? - Kernel and user

    functions - System calls - Network events - Kernel tracepoints

  6. @rakyll Challenges in microservices

  7. @rakyll Challenges in microservices We don’t just monitor VMs or

    processes. We monitor critical paths.

  8. @rakyll What’s next? service service database storage service

  9. @rakyll What’s next? service service database storage service

  10. @rakyll Challenges in microservices Context matters. Downstream stack don’t have

    context.

  11. @rakyll What’s next? process Linux kernel process process M:N Problem

  12. @rakyll What’s next? process Linux kernel process process RPCs M:N

    Problem

  13. @rakyll What’s next? process Linux kernel process process RPCs container

    container M:N Problem

  14. @rakyll What’s next? process Linux kernel process process RPCs container

    container Kubernetes pod, ECS task M:N Problem

  15. @rakyll Challenges in microservices First, we debug the path of

    the request. We debug functions or syscalls secondarily.

  16. @rakyll Challenges in microservices Too much data. Need runtime controls

    to modify the collection.

  17. @rakyll Challenges in microservices Instrumentation is a two-year roadmap. Data

    is not consistent.

  18. @rakyll Recap Out of the box instrumentation is critical. Networking

    observability is essential. Extensibility in runtime is needed. Decoration and enrichment is needed.

  19. @rakyll How does eBPF help?

  20. @rakyll Network Diagnostics TCP, UDP, HTTP, gRPC metrics Inspect protocols

    (MySQL, Postgres, ...)

  21. @rakyll Network Diagnostics TCP, UDP, HTTP, gRPC metrics Inspect protocols

    (MySQL, Postgres, ...)

  22. @rakyll Service Maps

  23. @rakyll Distributed Traces Automatically create trace span if a trace

    header is present. Your job is to generate and propagate the header. GET /users HTTP/1.1 Host: users.service Accept-Encoding: gzip, deflate Connection: Keep-Alive Traceparent: 00-4bf92f3577b34da6a3ce929d0e0e4736-00f067aa0ba902b7-01

  24. @rakyll Continuous Profiling

  25. @rakyll Extensibility

  26. @rakyll Decorating with Context eBPF agent process JIT compiler Verifier

    Sockets TCP/IP BPF Maps API Server

  27. @rakyll Decorating with Context

  28. @rakyll Several projects... - Cillium/Hubble - Pixie - Flowmill -

    Prodfiler - Parca

  29. @rakyll What’s next? - High level language? - More platforms

    supporting eBPF? - Reusable eBPF event processors? - Signed programs?

  30. @rakyll Thank you Jaana Dogan [email protected]

  31. @rakyll After party? Pixie KubeCon Happy Hour hosted by New

    Relic Tomorrow, 8:30 PM PDT RSVP: pixiehh.eventbrite.com

  32. @rakyll Runtime Extensibility eBPF agent process JIT compiler Verifier Sockets

    TCP/IP BPF Maps code