BPF Tokens in Linux Distributions: A Path to Safe User-Space eBPF

I’m Daniel Mellado, a Principal Software Engineer at Red Hat. My work spans cloud-native networking, Kubernetes, Edge, and OpenShift Observability, where I contribute to the Cloud Monitoring Operator (CMO), Prometheus, Perses, and the Cluster Observability Operator (COO).

In the OpenStack community, I’ve served as a Project Team Lead (PTL) and as a Cross-Project Liaison for Kuryr. I contributed extensively to Kuryr-Kubernetes and its integration with OpenStack Neutron, helping bridge the Kubernetes and OpenStack ecosystems. My work is referenced in the “Leveraging Containers and OpenStack” use-case whitepaper, and I’ve spoken at OpenStack Summits on Kuryr onboarding, hybrid workload networking, and Kubernetes interoperability. I’ve also contributed to upstream networking efforts such as MetalLB.

I’ve been involved with the Kubernetes–OpenStack Special Interest Group (SIG), participating in early efforts to improve interoperability and cross-project collaboration between both communities.

In Fedora, I founded the eBPF SIG, where I focus on packaging and maintaining eBPF tooling. I’m currently working on packaging AYA, improving Rust vendoring workflows, and collaborating on enhancements to rust2rpm to better support Rust-based projects in Fedora.

I’m also a frequent speaker at FOSDEM, DevConf, and ConfigMgmtCamp, sharing insights on cloud-native networking, observability, eBPF, and upstream collaboration. Currently trying to organize Fedora community and Distributions Devrrom for the upcoming FOSDEM XD

Outside of tech… I like to think I’m a pretty great bass player. 😄