What's inside net/http? Late binding in the Go standard library

Published on by Matthew C.

It's well known that we're heavy users of the Go programming language at CloudFlare. Our work often involves delving into the standard library source code to understand internal code paths, error handling and performance characteristics. Recently, I looked at how the standard library's built-in HTTP client handles connections to remote servers in order to provide minimal roundtrip latency. CC By 2.0 Image by Dean Hochman Connection pooling…

Unser neues 72. Rechenzentrum: Hamburg

Published on by Joshua Motta.

Moin Hamburg! Ensconced alongside the Elbe River, Hamburg, a major port city in northern Germany, is the second largest city in the country, and the eight largest in the European Union. Our data center in Hamburg is our 4th in Germany following deployments in Frankfurt, Düsseldorf and Berlin, our 19th in Europe, and 72nd globally. This means not only better performance in Germany, but additional redundancy for our…

Vancouver & Montreal, Canada: CloudFlare's latest data centers

Published on by Joshua Motta.

With the holiday season in full swing, it's only fitting that we continue to spread cheer, joy and a faster Internet around the world. To start the season we begin in Canada with NHL rivals Montreal and Vancouver, our 70th and 71st points of presence (PoPs) globally. Montreal and Vancouver, the 2nd and 3rd largest Canadian metropolitan areas, respectively, join our existing PoP in Canada's largest, Toronto. Together,…

A Different Kind of POP: The Joomla Unserialize Vulnerability

Published on by Pasha Kravtsov.

At CloudFlare, we spend a lot of time talking about the PoPs (Points of Presence) we have around the globe, however, on December 14th, another kind of POP came to the world: a vulnerability being exploited in the wild against Joomla’s Content Management System. This is known as a zero day attack, where it has been zero days since a patch has been released for that bug.…

Partial kernel bypass merged into netmap master

Published on by Gilberto Bertin.

In a previous post we described our work on a new netmap mode called single-rx-queue. After submitting the pull request, the netmap maintainers told us that the patch was interesting, but they would prefer something more configurable instead of a tailored custom mode. After an exchange of ideas and some more work, our patch just got merged to mainline netmap. Meet the new netmap Before our patch netmap…