Actions
Feature #3306
openSupport AF_XDP capture method
Effort:
medium
Difficulty:
high
Label:
Description
A new capture method has been recently introduced in Linux. Named AF_XDP, it allows to capture the traffic with a kernel bypass. This limit the cost of the capture in term of CPU cycle.
Updated by Eric Leblond about 3 years ago
Beginning of implementation using libbpf: https://github.com/regit/suricata/tree/af-xdp-v2
Updated by Victor Julien about 3 years ago
- Status changed from New to Assigned
- Assignee set to Eric Leblond
- Target version set to TBD
Set target to TBD as we are waiting for the kernel to provide us with timestamp support.
Updated by Victor Julien about 3 years ago
- Related to Task #3288: Suricon 2019 brainstorm added
Updated by Victor Julien about 2 years ago
- Related to Task #4097: Suricon 2020 brainstorm added
Updated by Victor Julien about 1 year ago
- Status changed from Assigned to In Progress
Updated by Eric Leblond 3 months ago
AF_XDP functions in libbpf have been moved to xdp-tools (https://github.com/xdp-project/xdp-tools) which means we need to update the build system and use the new functions.
Updated by Victor Julien about 1 month ago
- Status changed from In Progress to In Review
- Assignee changed from Eric Leblond to Richard McConnell
- Target version changed from TBD to 7.0.0-rc1
Actions