Combining kTLS and BPF for Introspection and Policy Enforcement
Offered By: Linux Plumbers Conference via YouTube
Course Description
Overview
Explore a technical talk from the Linux Plumbers Conference that delves into combining kernel TLS (kTLS) and Berkeley Packet Filter (BPF) for introspection and policy enforcement. Learn about the current kernel's sockmap BPF architecture for L7 policy enforcement, as well as the ULP and strparser framework used for socket callbacks and message boundary determination. Discover the challenges faced when integrating kTLS with BPF to enable in-kernel introspection and policy enforcement of application data before encryption. Gain insights into various approaches to address ULP layer shortcomings, optimizations for strparser, and the consolidation of scatter/gather processing for kTLS and sockmap. Understand the potential future developments in this area of kernel networking and security.
Syllabus
LPC2018 - Combining kTLS and BPF for Introspection and Policy Enforcement
Taught by
Linux Plumbers Conference
Related Courses
Linux Kernel Development Model and CompilationUdemy Linux Kernel Development Course
Udemy A Mechanism to Isolate CPU Topology Information in the Linux Kernel - CPU Namespace
linux.conf.au via YouTube A Rolling Stable Kernel Model
Linux Foundation via YouTube A Sockets API for LoRa - Standardizing IoT Network Interfaces
Linux Foundation via YouTube