Heimdall: Formally Verified eBPF-to-Rust Migration
Heimdall is a new automated pipeline designed to migrate legacy eBPF programs to Rust while ensuring memory safety. It identifies and repairs source-level bugs that can lead to data corruption and information leaks. The system has successfully produced 96 formally proven-equivalent translations across 102 eBPF programs.
- ▪Heimdall automates the migration of legacy eBPF programs to Rust with formal guarantees of behavior preservation.
- ▪The system uses large language models and static analysis to ensure safe translations and repairs compilation errors.
- ▪Heimdall has identified previously unreported information leaks in ten open-source eBPF programs.
Opening excerpt (first ~120 words) tap to expand
Computer Science > Cryptography and Security arXiv:2605.25411 (cs) [Submitted on 25 May 2026] Title:Heimdall: Formally Verified Automated Migration of Legacy eBPF Programs to Rust Authors:Vishnu Asutosh Dasu, Monika Santra, Md Rafi Ur Rashid, Ashish Kumar, Saeid Tizpaz-Niari, Gang Tan View a PDF of the paper titled Heimdall: Formally Verified Automated Migration of Legacy eBPF Programs to Rust, by Vishnu Asutosh Dasu and 5 other authors View PDF HTML (experimental) Abstract:Extended Berkeley Packet Filter (eBPF) programs are kernel extensions used for networking, observability, and security enforcement in the Linux kernel.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at arXiv.org.
Discussion
0 commentsMore from arXiv.org
