undefined | Better HN

0 pointsnkozyra1y ago0 comments

Can you elaborate? What I see about Linux is that Crowdstrike was in the process of adopting eBPF which is ostensibly immune to kernel panics, but that issue shows their eBPF implementation specifically causing a kernel panic.

0 comments

olddustytrail1y ago

Yes, the elaboration is that the same link you posted is included in the article you're supposed to have just read.

nkozyraOP1y ago

I've read it three times now. The only thing they say about it is this:

"This doesn't mean that eBPF has solved nothing, substituting a vendor's bug for its own. Fixing these bugs in eBPF means fixing these bugs for all eBPF vendors, and more quickly improving the security of everyone."

Which is exactly what I'm asking about. If eBPF has some inherent advantage, why did it fail in precisely the same way alreay?

j / k navigate · click thread line to collapse