KernelScript eBPF-centric programming language

⚠️ Beta Version Notice KernelScript is currently in beta development. The language syntax, APIs, and features are subject to change at any time without backward compatibility guarantees. This software is intended for experimental use and early feedback. Production use is not recommended at this time.

A Domain-Specific Programming Language for eBPF-Centric Development

KernelScript is a modern, type-safe, domain-specific programming language that unifies eBPF, userspace, and kernelspace development in a single codebase. Built with an eBPF-centric approach, it provides a clean, readable syntax while generating efficient C code for eBPF programs, coordinated userspace programs, and seamless kernel module (kfunc) integration.

KernelScript aims to become the programming language for Linux kernel customization and application-specific optimization. By leveraging kfunc and eBPF capabilities, it provides a modern alternative to traditional kernel module interfaces such as procfs and debugfs.

Writing eBPF programs today is challenging and error-prone:

• Raw C + libbpf: Requires deep eBPF knowledge, verbose boilerplate, manual memory management, and complex build systems
• Kernel development complexity: Understanding verifier constraints, BPF helper functions, and kernel APIs
• Complex tail call management: Manual program array setup, explicit bpf_tail_call() invocation, and error handling for failed tail calls
• Intricate dynptr APIs: Manual management of bpf_ringbuf_reserve_dynptr(), bpf_dynptr_data(), bpf_dynptr_write(), and proper cleanup sequences
• Complex struct_ops implementation: Manual function pointer setup, intricate BTF type registration, kernel interface compliance, and lifecycle management
• Complex kfunc implementation: Manual kernel module creation, BTF symbol registration, export management, and module loading coordination
• Userspace coordination: Manually writing loaders, map management, and program lifecycle code
• Multi-program systems: No coordination between related eBPF programs sharing resources

Why not Rust?

• Mixed compilation targets: Rust's crate-wide, single-target compilation model cannot emit both eBPF bytecode and userspace binaries from one source file. KernelScript's @xdp, @tc, and regular functions compile to different targets automatically
• No first-class eBPF program values: Rust lacks compile-time reflection to treat functions as values with load/attach lifecycle guarantees. KernelScript's type system prevents calling attach() before load() succeeds
• Cross-domain shared maps: Rust's visibility and orphan rules conflict with KernelScript's implicit map sharing across programs. Safe userspace APIs for BPF maps require complex build-time generation in Rust
• Verifier-incompatible features: Rust's generics and complex type system often produce code rejected by the eBPF verifier. KernelScript uses fixed-width arrays (u8[64]) and simplified types designed for verifier compatibility
• Error handling mismatch: Rust's Result<T,E> model doesn't align with eBPF's C-style integer error codes. KernelScript's throw/catch works seamlessly in both userspace and eBPF contexts
• Missing eBPF-specific codegen: Rust/LLVM cannot automatically generate BPF tail calls or kernel module code for @kfunc attributes - features that require deep compiler integration

Why not bpftrace?

• Domain-specific for tracing only (no XDP, TC, etc.)
• Limited programming constructs (no complex data structures, functions)
• Interpreted at runtime rather than compiled
• No support for multi-program coordination

Why not Python/Go eBPF libraries?

• Still require writing eBPF programs in C
• Only handle userspace coordination, not the eBPF programs themselves
• Complex build systems and dependency management

KernelScript addresses these problems through revolutionary language features:

✅ Single-file multi-target compilation - Write userspace, eBPF, and kernel module code in one file. The compiler automatically targets each function correctly based on attributes (@xdp, @helper, regular functions)

✅ Automatic tail call orchestration - Simply write return other_xdp_func(ctx) and the compiler handles program arrays, bpf_tail_call() generation, and error handling automatically

✅ Transparent dynptr integration - Use simple pointer operations (event_log.reserve(), buffer[index]) while the compiler automatically uses complex dynptr APIs (bpf_ringbuf_reserve_dynptr, bpf_dynptr_write) behind the scenes

✅ First-class program lifecycle safety - Programs are typed values with compile-time guarantees that prevent calling attach() before load() succeeds

✅ Zero-boilerplate shared state - Global maps and config blocks are automatically accessible across all programs without imports, exports, or coordination code

✅ Custom kernel functions (@kfunc) - Write full-privilege kernel functions that eBPF programs can call, automatically generating kernel modules and BTF registrations

✅ Unified error handling - C-style integer throw/catch works seamlessly in both eBPF and userspace contexts, unlike complex Result types

✅ Verifier-optimized type system - Fixed-size arrays (u8[64]), simple type aliases, and no complex generics that confuse the eBPF verifier

✅ Complete automated toolchain - Generate ready-to-use projects with Makefiles, userspace loaders, and build systems from a single source file

KernelScript supports all major eBPF program types with typed contexts:

KernelScript has a rich type system designed for systems programming:

Built-in support for all eBPF map types:

Clean function syntax with helper function support:

Modern control flow with pattern matching:

KernelScript can coordinate multiple eBPF programs:

📖 For detailed language specification, syntax reference, and advanced features, please read SPEC.md.

Create a new KernelScript project with template code:

After initialization, you get:

Available program types:

• xdp - XDP programs for packet processing
• tc - Traffic control programs
• kprobe - Kernel function tracing
• uprobe - User function tracing
• tracepoint - Kernel tracepoint programs
• lsm - Linux Security Module programs
• cgroup_skb - Cgroup socket buffer programs

Available struct_ops:

• tcp_congestion_ops - TCP congestion control
• bpf_iter_ops - BPF iterator operations
• bpf_struct_ops_test - Test struct operations
• Custom struct_ops names

Compile .ks files to eBPF C code and userspace programs:

After compilation, you get a complete project:

1. Install KernelScript:

   git clone https://github.com/multikernel/kernelscript.git cd kernelscript opam install . --deps-only eval $(opam env) && dune build && dune install

2. Create your first project:

   kernelscript -- init xdp hello_world cd hello_world/

3. Edit the generated code:

   # Edit hello_world.ks with your logic vim hello_world.ks

4. Compile and run:

   kernelscript compile hello_world/hello_world.ks cd hello_world/ make sudo ./hello_world

The examples/ directory contains comprehensive examples:

• packet_filter.ks - Basic XDP packet filtering
• multi_programs.ks - Multiple coordinated programs
• maps_demo.ks - All map types and operations
• functions.ks - Function definitions and calls
• types_demo.ks - Type system features
• error_handling_demo.ks - Error handling patterns

KernelScript combines the power of low-level eBPF programming with the productivity of modern programming languages, making eBPF development accessible to a broader audience while maintaining the performance and flexibility that makes eBPF powerful.

Copyright 2025 Multikernel Technologies, Inc.

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

By contributing to this project, you agree that your contributions will be licensed under the Apache License 2.0.