EnvoyCon 2020 has ended
All talks are pre-recorded and will play as scheduled with live speaker Q+A following the presentation. Sessions will not be available on-demand in Hopin but will be uploaded to the CNCF YouTube channel by early November.
Envoy Internal Track [clear filter]
Thursday, October 15

8:00am PDT

Using VPP as Envoy's Network Stack
Vector Packet Processing (VPP), part of fd.io, is a high performance, layer 2-7 scalable and multi-platform user space networking stack. Typical VPP use cases include, amongst others, deployments as a vSwitch/Router, Firewall, Load Balancer and TCP Proxy. This talk will discuss how some of the recent socket layer API changes can be leveraged to cleanly integrate Envoy with VPP's socket layer, the VPP Comms Library (VCL), and some of the potential benefits thereof.


Florin Coras

Technical Lead, Cisco
Florin Coras is a Technical Lead in the Intent Based Networking Group at Cisco where he focuses on user space host stacks, network virtualization and programmable overlays. He has contributed to a number of open source projects including FD.io, EnvoyProxy and OpenDaylight. He is a... Read More →

Thursday October 15, 2020 8:00am - 8:10am PDT

8:10am PDT

Support Arm64 platform in Envoy
Envoy Arm64 will be released from 1.16.0. In this LT Lizan will discuss about the effort to make Envoy officially support Arm64 based Linux. This includes some code / test change caused by different endian / memory layout and compiler defaults, how we identified these problems, and how we built CI infrastructure.

avatar for Lizan Zhou

Lizan Zhou

Founding Engineer, Tetrate
Lizan Zhou is a Founding Engineer at Tetrate leading mesh backend team. He is a senior maintainer of Envoy and one of the core contributors of Istio. Previously he was working at Google Cloud, during his time at Google he worked on security and networking on Istio and Cloud Endpoints... Read More →

Thursday October 15, 2020 8:10am - 8:20am PDT

8:20am PDT

Incrementally Building Incremental
This talk walks through the development process of incremental xDS lead by Alec Holmes and Joshua Rutherford inside the open source repository “envoyproxy/go-control-plane” . It touches on differences between SOTW and Incremental xDS, implementation hurdles tackled when building out the new protocol, and design changes in the pre-existing codebase needed to build out Incremental. Alec will lay out the remaining goals, and discuss the next steps for the repository.

avatar for Alec Holmes

Alec Holmes

Software Engineer, greymatter.io
My name is Alec Holmes, I'm a core engineer at Greymatter.io working on our product and love growing the Envoy project. I'm actively maintaining go-control-plane and deeply enjoy experiencing world wide collaboration in the Envoy ecosystem . Talk to me about anything! I love Go, xDS... Read More →

Thursday October 15, 2020 8:20am - 8:30am PDT

8:30am PDT

Envoy on Windows: Use-cases, roadmap, and more
Ready to dive a little deeper into the world of Envoy on Windows? Learn about the ongoing efforts to enable the vast ecosystem of Windows applications to leverage the Envoy proxy, what it can do now, and what is coming next. Contributors have been hard at work bringing Windows platform support to Envoy. The project hopes to enable the vast ecosystem of Windows application architectures to leverage Envoy’s rich feature set and benefit from the vibrant Envoy open source community. This talk will show how Envoy users can start to use and evaluate Envoy on Windows, demonstrate how Envoy can be used to enable cloud-native applications on Windows, and discuss the roadmap ahead.

avatar for Sunjay Bhatia

Sunjay Bhatia

Staff Engineer, VMware
Sunjay is a maintainer of the Contour Ingress controller and contributor to Gateway API, the Envoy Gateway project, and other CNCF projects in the Kubernetes networking space. He has worked on implementing Windows support in Envoy proxy and various open source components in the Cloud... Read More →

David Schott

Program Manager, Microsoft
David is a Program Manager at Microsoft, working on network interoperability for containers and microservices across operating systems. He has been working on distributed systems, network virtualization, and is a contributor to several Cloud Native Open Source projects, including... Read More →

Thursday October 15, 2020 8:30am - 9:00am PDT

9:00am PDT

xDS transport and versioning evolution
Envoy’s xDS APIs are the foundation for its control plane ecosystem. We are in the process of evolving them towards the Universal Data Plane API (UDPA), supporting clients beyond Envoy (e.g. Google’s gRPC libraries). We also continue to improve support for versioning in xDS and are following on from last year's introduction of major versions with minor/patch versions.

In the first part of this talk, we will dive into UDPA. We will focus on the next steps in the xDS transport protocol evolution. We will provide an introduction to a new URI-centric resource naming scheme and how this will allow for transport simplifications and elimination of technical debt in both Envoy and the control plane. We will also cover advanced use cases, such as federation, caching, control plane scalability and reliability wins.

In the second part of this talk, we will provide a recap on Envoy's existing API versioning story and discuss the implementation of minor/patch versioning for xDS resources. This incremental strategy is the plan-of-record for xDS, managing the trade-off between Envoy/xDS technical debt and control plane complexity/implementation cost.

avatar for Harvey Tuch

Harvey Tuch

Software Engineer, Google
Harvey Tuch is a Staff Software Engineer at Google where he leads the Envoy Platform team. He is an Envoy senior maintainer and is a driver of the Universal Dataplane API (UDPA) initiative. His Envoy interests include xDS APIs, security, fuzzing and performance.

Mark D. Roth

Staff Software Engineer, Google
Mark Roth is a Staff Software Engineer at Google, where he is the technical lead for the gRPC C++ implementation. He has led the design and implementation effort of xDS support in gRPC in C++, Java, Go, and Node.js, and he has directly contributed to the C++ implementation.

Thursday October 15, 2020 9:00am - 9:30am PDT

9:30am PDT

CacheFilter: Flexible HTTP Caching in Envoy
Web traffic relies extensively on caching proxies, and Envoy needs robust HTTP caching support to perform that role, but scaling and feature requirements vary too much for a "one size fits all" implementation. CacheFilter is an Envoy filter that handles the many caching-related request and response headers and directives, with the customizability and extensibility to support anything from single-server deployments to planetary-scale caching systems with extensive bespoke needs.

avatar for Josiah Kiehl

Josiah Kiehl

Software Engineer, Google LLC
Josiah is a member of the Envoy project and engineer on Google's Cloud CDN.
avatar for Todd Greer

Todd Greer

Software Engineer, Google LLC
Todd is the primary author of Envoy's pluggable HTTP caching filter, and has spent the last 7 years improving Google's HTTP caching infrastructure and Cloud CDN service.

Thursday October 15, 2020 9:30am - 10:00am PDT

10:00am PDT

Building idiomatic Envoy SDKs for Rust and Go
Support for WebAssembly is slowly coming into upstream Envoy.

Eager to get our hands dirty, we've embarked on a journey to develop our very first Envoy extensions in Rust and Go - languages beloved by the Cloud Native Community.

It's been a bumpy ride and we're happy we've made it :)

In this session we will share our learnings from building Envoy SDKs for Rust and Go:
* what challenges we've met
* what issues remain open
* what makes SDK ergonomic

We will give a demo of practical extensions that have been made possible so far and, most certainly, will beg Envoy folks to give us even more features we miss so much :)

Our goal is to raise awareness in the community about the current state of Wasm, and to invite everyone to collaborate on the SDK for the language of their choice.

avatar for Yaroslav  Skopets

Yaroslav Skopets

Software Engineer, Tetrate
Yaro is a Software Engineer @ Tetrate and Envoy contributor. Currently, he works on `GetEnvoy Extension Toolkit` (https://www.getenvoy.io) and `Envoy SDK for Rust` (https://github.com/tetratelabs/envoy-wasm-rust-sdk). Previously, Yaro gave a talk `Making Envoy Contributions Feasible... Read More →
avatar for Takeshi Yoneda

Takeshi Yoneda

Software Engineer, Tetrate
Takeshi is a software engineer at Tetrate working on proxy-wasm and WASM extensibility on Envoy. He is the creator of Proxy-wasm Go SDK, a contributor of proxy-wasm  and TinyGo, and a maintainer of Flagger, a progressive delivery operator on Kubernetes.

Thursday October 15, 2020 10:00am - 10:30am PDT

11:00am PDT

Hands-on WASM filters and singletons
In this presentation, Emmanuel will start by introducing the basics of WASM extensions, but will quickly move on to his project of developing a custom authz/authn with WASM. He will talk about his decision making process and introduce his development environments on k8s and docker-compose. He will be covering his software architecture, such as the use of a singleton stack and chained WASM filters. Covered topics also includes WASM bytecode download (LDS), policy download, prometheus metrics, library integration, data sharing, hidden headers, code testing, debugging technics, performance measurements for a real project! This presentation will also touch on practical issues such as programming languages choice (C++, rust, assembly script, tinyGo), learning curves, build pipelines, and development velocity (carvel/ytt)

avatar for Emmanuel Mayssat

Emmanuel Mayssat

DevOPS Staff Engineer, American Express
Currently at American Express. Areas of interest include not only Envoy, xDS, Bazel, C++, google-test, gRPC/protobuf, proxy WASM, and more proxy WASM! But also Anthos, Tanzu, RH Openshift, data/control plane, Istio service mesh, API gateways, FaaS, Knative, Buildpacks, Tekton, Riff... Read More →

Thursday October 15, 2020 11:00am - 11:30am PDT

11:30am PDT

Understanding, maintaining and securing Envoy's supply chain
Envoy depends on over 60 external dependencies for its data and control plane functionality, as well as for its build, test and features such as observability. This talk will provide an overview of the third party dependencies that constitute the Envoy software supply chain. We will enumerate, categorize and describe the key dependencies, with a focus on security and how they relate to the Envoy threat model. The talk will cover how Envoy’s dependencies have been maintained, versioned and tested, how the Envoy community plans to evolve and increase confidence in the supply chain, as well as how organizations can apply strategies to minimize unnecessary dependencies.

avatar for Michael Payne

Michael Payne

Executive Director, JPMorgan Chase
Michael Payne is an engineer at JPMorgan Chase where he leads the Kubernetes Architecture team. He works with the Envoy community particularly in the areas of dependency management and supply chain. His Envoy interests include new protocols (UDP, HTTP/3), load balancing and egress... Read More →
avatar for Harvey Tuch

Harvey Tuch

Software Engineer, Google
Harvey Tuch is a Staff Software Engineer at Google where he leads the Envoy Platform team. He is an Envoy senior maintainer and is a driver of the Universal Dataplane API (UDPA) initiative. His Envoy interests include xDS APIs, security, fuzzing and performance.

Thursday October 15, 2020 11:30am - 12:00pm PDT

12:00pm PDT

PostgreSQL Network Filter for EnvoyProxy
How do you monitor Postgres? What information can you get out of it, and to what degree does this information help to troubleshoot operational issues? What if you want/need to log all the queries? That may bring heavy trafficked databases down. At OnGres we’re obsessed with improving PostgreSQL’s observability. So we worked together with Tetrate folks on an Envoy’s Network Filter extension for PostgreSQL, to provide and extend observability of the traffic inout a cluster infrastructure. This extension is public and open source. You can use it anywhere you use Envoy. It allows you to capture automated metrics and to debug network traffic. This talk will be a technical deep-dive into PostgreSQL’s protocol decoding, Envoy proxy filters and will cover all the capabilities of the tool and its usage and deployment in any environment.

avatar for Fabrízio de Royes Mello

Fabrízio de Royes Mello

PostgreSQL Developer, OnGres Inc
Currently help people and teams to take the full potential of relational databases, especially PostgreSQL, helping them to design the structure of the database (modeling), build physical architecture (database schema), programming (procedural languages), SQL (usage, tuning, best practices... Read More →
avatar for Christoph Pakulski

Christoph Pakulski

Software Engineer, Tetrate
Christoph has been involved in development of network delivery systems for close to 20 years. His area of expertise include network security, routing, wireless protocols and video delivery systems. He specializes in time critical, event driven systems. Currently he works at Tetrate... Read More →

Thursday October 15, 2020 12:00pm - 12:30pm PDT

12:30pm PDT

Community and Extensibility: Building Envoy's Flexible Compression Subsystem
HTTP compression is used by web proxies to compress data before sending it out over the wire. This saves network bandwidth and speeds up transfers. Until its v1.15 release, Envoy implemented limited unidirectional Gzip compression. Through a cross-company (also cross-continent!) collaboration, compression was generalized to its own extension subsystem to make it possible to add new compression schemes, custom implementations of existing formats, and have fully bidirectional (de)decompression. This talk will walk the audience through the evolution of compression in Envoy, highlighting the flexibility of the extension system, and dive into two use cases now possible with compression subsystem: 0-touch bidirectional (de)compression between mobile clients and edge; and new compression implementations now possible, e.g., a compressor utilizing HW accelerators to optimize server compute.


Mikko Yinen

Cloud Software Architect, Intel
Mikko Ylinen is a cloud and edge software architect at Intel’s Cloud Software open source team. He comes with an embedded linux and operating systems engineering background but has most recently worked on security and confidential computing related topics in containers and cloud... Read More →

Jose Nino

Senior Software Engineer, Lyft
Jose Nino worked on Lyft’s Networking team for 2+ years building out infrastructure that enabled Lyft to scale technically and socially as it developed and rolled out an Envoy-based service-oriented architecture. He was instrumental in building control plane technologies, and resilience... Read More →

Thursday October 15, 2020 12:30pm - 1:00pm PDT

1:00pm PDT

Envoy on Kittens: Improving Developer and Maintainer Velocity
In this talk Itay will present RepoKitteh (https://repokitteh.io), a lightweight, rapid and low cost approach for GitHub automation. The presenter will explain the necessity for GitHub automation, how RepoKitteh approaches the problem and how it compares to the alternatives, such hand crafted custom integrations and GitHub actions. The integration with Envoy will be detailed, and a demonstration of implementing new automations will be given. At the end of this talk, Envoy contributors will be empowered and inspired to add their own RepoKitteh integrations.


Itay Donanhirsh

Software Engineer, SoftKitteh LLC
Itay Donanhirsh is a software engineer at Checkr focused on highly distributed systems. Prior to Checkr, he was working for Lyft. His experience with CI systems and interactions of developers with it inspired the creation of RepoKitteh, which is the subject of this talk. Among other... Read More →

Thursday October 15, 2020 1:00pm - 1:30pm PDT
  • Timezone
  • Filter By Venue Virtual
  • Filter By Type
  • Breaks
  • End User Track
  • Envoy Internal Track
  • Meet the Maintainers
  • Sponsored Talk

Filter sessions
Apply filters to sessions.