On Sun, Mar 26, 2023, 7:03 PM Rob Sayre <say...@gmail.com> wrote: > > > On Sun, Mar 26, 2023 at 6:51 PM Watson Ladd <watsonbl...@gmail.com> wrote: > >> >> >> On Sun, Mar 26, 2023, 5:05 PM Rob Sayre <say...@gmail.com> wrote: >> >>> Hi, >>> >>> The problem is also incompletely described, right? >>> >>> It doesn't address stuff like: >>> https://github.com/F-Stack/f-stack >>> >>> There, you have userspace networking right off the NIC using DPDK or >>> equivalent. This is how all big websites work (this one is from Tencent), >>> because it's easier to drain connections as you upgrade the software, and >>> it's fast enough to saturate the network hardware. >>> >> >> That's not quite true: e.g. Netflix is just kernel+TLS offload to >> kernelspace+nginx+sendfile. DPDK draining can be messy while passing the >> opened listening sockets NGINX style is pretty clean. >> > > Yep, another replier person went with the Netflix example (a strong one, > but kind of an outlier). > > > Cloudflare is XDP to kernel stack to application, at least as of the blog >> post I read before posting. >> https://blog.cloudflare.com/tubular-fixing-the-socket-api-with-ebpf/ >> > > Sure, but isn't that the same idea? > > https://en.wikipedia.org/wiki/Express_Data_Path > > "XDP (eXpress Data Path) is an eBPF-based high-performance data path used > to send and receive network packets at high rates by bypassing most of the > operating system networking stack." > > It's exciting that this idea is becoming more of an off-the-shelf > proposition, though. >
No. XDP is acting as a firewall and Tubular is mapping packets to sockets. The TCP is handled by the kernel and given to the application through the usual interfaces. That's different from DPDK where the application is completely responsible for all handling of packets and the kernel just shoves a ring buffer at it. That sort of offload exists, but I don't think it's terribly common. Obviously how you measure it is hard and we mostly have anecdotes. Sincerely, Watson > > thanks, > Rob > >
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
