Unprivileged eBPF Support In The Works For The Linux Kernel

Written by Michael Larabel in Linux Kernel on 6 October 2015 at 10:03 PM EDT. 2 Comments
LINUX KERNEL
In the past year or so there's been a lot to talk about when it comes to eBPF in the Linux kernel as an in-kernel virtual machine. The latest functionality being worked on is supporting eBPF for unprivileged users.

Alexei Starovoitov has published patches to "liberate eBPF from CAP_SYS_ADMIN" and takes care of work from its start to allow it to be used by non-root users.

However, not all users will be able to benefit from eBPF as non-root users. Alexei explained, "Unprivileged eBPF is only meaningful for 'socket filter'-like programs. eBPF programs for tracing and TC classifiers/actions will stay root only."

Those wishing to learn more can see this kernel mailing list post with the relevant patches.
2 Comments
Related News
Linux 6.9-rc5 Released: The Diffstat "Looks A Bit Wonky" But Not Bad
Linux 6.9-rc5 Picking Up Fixes For Intel FRED, BHI & GFNI/VAES Checks
Linux 6.10 Preps A Kernel Panic Screen - Sort Of A "Blue Screen of Death"
Linus Torvalds Injects Tabs To Thwart Kconfig Parsers Not Correctly Handling Them
Linux 6.9-rc4 Brings More Bcachefs Fixes, Native BHI Mitigation
Linux 6.10 To Account For NUMA Node When Allocating Per-CPU Cpumasks
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
Rust-Written LAVD Kernel Scheduler Shows Promising Results For Linux Gaming
Former Nouveau Lead Developer Joins NVIDIA, Continues Working On Open-Source Driver
Fedora Linux 40 Cleared For Release Next Week
Mozilla Finally Begins Offering Firefox ARM64 Linux Binaries
Ubuntu 24.04 Supports Easy Installation Of OpenZFS Root File-System With Encryption
AMD: "Additional Parts Of The Radeon Stack To Be Open Sourced Throughout The Year"
openSUSE Factory Achieves Bit-By-Bit Reproducible Builds
Linux 6.10 Preps A Kernel Panic Screen - Sort Of A "Blue Screen of Death"