In Development

Make your eBPF programsverifier-safe and production-ready.

Detect verifier errors, kernel compatibility risks, and security bugs before your eBPF programs reach production.

Terminal
$ bpfcheck ./agent.bpf.o --kernel 5.15,6.1,6.8
WARN event_t.comm may be partially uninitialized
ERROR Program may be rejected on Linux 5.15
INFO Helper return value needs null check before use
INFO Minimal reproducer written to ./bpfcheck-repro.c

Prototype Preview — this output is illustrative and not yet available in the CLI

Features

Everything you need to ship eBPF programs with confidence.

Verifier Error Explanations

Human-readable analysis of complex BPF verifier logs, showing root causes and fix suggestions.

Planned

Kernel Compatibility Checks

Validate helper availability, verifier behavior, and BTF changes across multiple kernel versions.

Planned

Uninitialized Data Detection

Detect stack and event fields that are passed to userspace without being fully initialized.

Planned

CO-RE & BTF Analysis

Analyze CO-RE relocations and BTF dependencies for cross-kernel deployment issues.

Planned

Minimal Reproducer Generation

Generate a minimal C program that reproduces verifier errors for sharing and debugging.

Planned

CI Integration

Run bpfcheck in CI pipelines for libbpf and Aya projects to catch issues before deployment.

Planned

Built for Teams Building

bpfcheck is designed for developers and teams shipping production eBPF software.

eBPF security agents
Runtime security products
Observability agents
Network infrastructure
Kubernetes infrastructure
libbpf & Aya applications

Project Status

bpfcheck is currently in active development. The initial release focuses on the core analysis capabilities most needed by eBPF developers.

Initial Scope

  • Verifier log analysis
  • Partially initialized stack and event field detection
  • Kernel compatibility checks
Follow on GitHub

Questions? Reach us at hello@bpfcheck.dev