[$] Allowing BPF programs more access to the network

Mahe Tardy led two sessions about some of the challenges that he, Kornilios Kourtis,and John Fastabend have run into in their work onTetragon (Apache-licensed BPF-based security monitoring software)at the Linux Storage, Filesystem, Memory Management, and BPF Summit. The sessionprompted discussion about the feasibility of letting BPF programssend data over the network, as well as potential new kfuncs to let BPF firewallssend TCP reset packets. Tardy presented several possible ways that these couldbe accomplished.