|
|
|
|
|
|
by tptacek
693 days ago
|
|
|
No, you can't run arbitrary general-purpose programs in eBPF, and you cannot run graphics drivers in it. You generally can't run programs with unprovably bounded loops in eBPF, and your program can interact with the kernel only through a small series of explicitly enumerated "helpers" (for any given type of eBPF program, you probably have about 20 of these in total). |
|
|
Surely that bars CrowdStrike's check for unprovably bounded vulnerabilities.