|
|
|
|
|
|
by 3np
702 days ago
|
|
|
> The worst thing an eBPF program can do is to merely consume more resources than is desirable, such as CPU cycles and memory. This is obviously not true. It might be the worst it can do, by itself, to the currently running kernel. It's not the worst it can do to the machine or its user(s). There are infinite harmful things an eBPF program can do. As can programs solely in user-space. There is a specific class of vulnerabilities being mitigated by moving code from kernel to BPF. That does not mean that eBPF programs are in general safe. |
|
|