"By adopting Rust for one of its core subsystems, Cloudflare succeeded in reducing response time by 10 ms and boosting performance by 25%. Additionally, the company emphasized that Rust made their system more secure and reduced development time. On the heels of its successful migration to Rust for the Pingora subsystem, Cloudflare's engineers have rewritten from scratch one of the company's oldest and most critical components, FL, the "brain of Cloudflare":"
"FL is the brain of Cloudflare. Once a request reaches FL, we then run the various security and performance features in our network. It applies each customer's unique configuration and settings, from enforcing WAF rules and DDoS protection to routing traffic to the Developer Platform and R2 [Cloudflare's object store, EN]. Cloudflare's architects decided to base FL2 on Oxy, their own internal framework for building proxies, which also includes support for monitoring, soft reloads, and dynamic configuration loading and swapping."
Cloudflare migrated core subsystems to Rust, achieving a 10 ms reduction in response time and a 25% performance improvement while improving security and reducing development time. Engineers rewrote FL, a long-standing core component that applies customer configurations and runs security and performance features, as FL2. FL2 is built on Oxy, an internal proxy framework that provides monitoring, soft reloads, and dynamic configuration loading and swapping. Oxy supports graceful restarts by stopping new connections while continuing to serve existing ones. A compatibility layer inside FL allows new Rust modules to run alongside existing LuaJIT logic to enable gradual migration without duplicate implementations.
Read at InfoQ
Unable to calculate read time
Collection
[
|
...
]