On Sun, Mar 26, 2023 at 6:51 PM Watson Ladd <watsonbl...@gmail.com> wrote:
> > > On Sun, Mar 26, 2023, 5:05 PM Rob Sayre <say...@gmail.com> wrote: > >> Hi, >> >> The problem is also incompletely described, right? >> >> It doesn't address stuff like: >> https://github.com/F-Stack/f-stack >> >> There, you have userspace networking right off the NIC using DPDK or >> equivalent. This is how all big websites work (this one is from Tencent), >> because it's easier to drain connections as you upgrade the software, and >> it's fast enough to saturate the network hardware. >> > > That's not quite true: e.g. Netflix is just kernel+TLS offload to > kernelspace+nginx+sendfile. DPDK draining can be messy while passing the > opened listening sockets NGINX style is pretty clean. > Yep, another replier person went with the Netflix example (a strong one, but kind of an outlier). Cloudflare is XDP to kernel stack to application, at least as of the blog > post I read before posting. > https://blog.cloudflare.com/tubular-fixing-the-socket-api-with-ebpf/ > Sure, but isn't that the same idea? https://en.wikipedia.org/wiki/Express_Data_Path "XDP (eXpress Data Path) is an eBPF-based high-performance data path used to send and receive network packets at high rates by bypassing most of the operating system networking stack." It's exciting that this idea is becoming more of an off-the-shelf proposition, though. thanks, Rob
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
