During GSoC 2017, I worked with mentors Cody Doucette and Sachin Paryani, with my mentor organisation: Boston University/Linux XIA group. My main
responsibility was to add security software queuing discipline functionality to the Linux kernel. And in order to access this queuing
discipline, to write enabling code in tc(8)
userspace; a part of the iproute-2
codebase, (mirrored repo found here). Secondarily, I was also required to modify tc(8)
code to allow
bandwidth limits to be specified in percentages of the interface capacity, to make tc commands more user friendly.
The queueing discipline is called Gatekeeper Priority Queue (standalone codebase maintained here.) Gatekeeper is an open source defence against denial-of-service (DoS) attacks. To protect server resour