Toy BPF Verifier in Lean 4
an idea by shunghsiyu
Updated about 2 hours ago. No love. 1 follower. Has no hacker: grab it!

Description

Create a toy BPF verifier in Lean 4 that models the Linux kernel's BPF verifier behavior. This implementation provides a formally verifiable foundation for understanding verifier correctness—crucial for security-critical BPF programs in production environments.

The reference monitor enforces runtime safety properties (register initialization, type safety) while the verifier performs static analysis to prove programs satisfy these properties before execution. This separation enables formal reasoning about verifier soundness: if the verifier accepts a program, the reference monitor will never reject it.

Code: https://github.com/shunghsiyu/toy-verifier

Goals

  • ✓ BPF virtual machine interpreter (MOV, ADD, SUB)
  • ✓ Reference monitor with register initialization checks
  • Verbose error reporting with detailed diagnostics
  • Verifier abstraction layer for static analysis
  • Prove basic soundness property: "verifier acceptance → reference monitor never fails"
  • Support forward jumps (enabling control flow)
  • Additional ALU operations (MUL, DIV, shifts)
  • Stack-based memory instructions (LD/ST)
  • BPF maps (array map as initial target)
  • Helper call modeling (tail calls)

Resources

No Hackers yet

Join this project

Looking for hackers with the skills:

Nothing? Add some keywords!

This project is part of:

Hack Week 25

Activity

  • about 2 hours ago: shunghsiyu originated this project.


    • Comments

    Be the first to comment!

    Similar Projects

    This project is one of its kind!