You should carefully read the paper linked. Your comment may be correct but it's not a valid criticism of the methods the study used.
The talk hasn't been posted to youtube yet, but slides alone show some of the risks of eBPF. The speaker's previous talk at 35C3 went into how the verifier is arbitrary and not really designed to prevent attackers…
You should carefully read the paper linked. Your comment may be correct but it's not a valid criticism of the methods the study used.
The talk hasn't been posted to youtube yet, but slides alone show some of the risks of eBPF. The speaker's previous talk at 35C3 went into how the verifier is arbitrary and not really designed to prevent attackers…