Groundcover’s expanded eBPF strategy goes past conventional community monitoring, Azulay stated: “eBPF is not nearly community monitoring. We use it as an x-ray into operations flowing by way of the kernel of the working system.”
Groundcover makes use of eBPF to supply full application-level traces. Azulay defined that the system can see the payload of the request and the response. He famous that, for instance, if a person is sending a immediate to OpenAI, Groundcover’s eBPF-based expertise will see the precise immediate and the response from the server.
How Groundcover makes use of eBPF to allow observability
Groundcover makes use of two forms of eBPF probes to get info. The primary sort is kernel area, which will get info coming immediately into the Linux kernel at an working system degree. The second is through person area probes, which provides visibility into working functions.
“We are able to really observe issues taking place within the software stack,” Azulay defined. “Even when a packet is encrypted when it goes by way of the Linux kernel, we all know the best way to observe it earlier than encryption within the precise software stack.”
Not like conventional network-focused eBPF instruments, he claimed that Groundcover’s strategy supplies full software monitoring, efficiency profiling and detailed transaction insights.
“eBPF sort of replaces a whole lot of the issues we anticipate” from an software efficiency monitoring (APM) resolution, Azulay stated. “It’s not simply sitting on the community layer seeing packets undergo a wire. It’s rather more refined, with context in regards to the software.”
