Skip to main content
Now freely available: A # text covering a @LinuxSecSummit 2021 talk about "some research that dug further into [# #] bugs that # has found; the results are rather worrisome […] more serious problems lurking […]":

lwn.net/Articles/87264…

Scrutinizing bugs found by syzbot

The syzbot kernel-fuzzing system finds an enormous number of bugs, but, since many of them may seem to be of a relatively low severity, they have a lower priority when contending for the attention of developers.
lwn.net
#LWNnet #Linux #kernel #syzbot @LinuxSecuritySummit

[bookmark=https://twitter.com/kees_cook/status/1451104666951979009]Fantastic, detailed, and sobering examination of data-only attacks. I wrote up some responses here:
lore.kernel.org/linux-hardenin…
(now with the correct link! 🤦)[/bookmark]

# with its "generic # image" (GKI) is moving closer to upstream # in #. It restricts what vendors can do, but allows them to use add-on modules – which creates a new problem, described in this now freely available # article: lwn.net/Articles/87220…

The intersection of modules, GKI, and rocket science

One does not normally expect a lot of controversy around a patch series that makes changes to platform-specific configurations and drivers. The furor over some work on the Samsung Exynos platform may thus be surprising.
lwn.net
#Google #kernel #Linux #Android #LWNnet

[bookmark=https://twitter.com/kees_cook/status/1450983100486356994]Fantastic, detailed, and sobering examination of data-only attacks. I wrote up some responses here:
lore.kernel.org/lkml/202109291…[/bookmark]

[bookmark=https://twitter.com/pchaigno/status/1450856265899458575]What # instruction set extensions exist, what kernel/LLVM versions they require, and why do they matter. My latest blog post is out!

eBPF Instruction Sets

Not everyone who develops BPF programs knows that several versions of the instruction set exist. This isn’t really surprising given documentation on the subject is scarce.
pchaigno.github.io
[/bookmark]
#eBPF

[bookmark=https://twitter.com/josefbacik/status/1450842305875914756]Article released about the details of fs-verity support coming to btrfs, Boris spent a good bit of time on this and there's still some work left to be done on the userspace side, hoping to get it deployed into production soon!

fs-verity support in btrfs: Detect tampering in critical read-only files

fs-verity is a Linux filesystem feature that provides significant support for ensuring the integrity and authenticity of a read-only file in an otherwise writable filesystem.
developers.facebook.com
[/bookmark]

[bookmark=https://twitter.com/axboe/status/1450503625940344840]Always good to see others hitting the same numbers, haters gonna hate.
I think we're where we want to be in terms of peak, next round of work will be (again) diminishing the impact of things like blk-cgroup, and other block/kernel options that have an adverse performance impact.[/bookmark]

[bookmark=https://twitter.com/josefbacik/status/1450499249301594113]Since I'm on my b4 kick, figured I'd clean up and publish an internal note I wrote about patch review that I wrote to help some of our new-to-kernel-development engineers

My patch review workflow

tl;dr
josefbacik.github.io
[/bookmark]

[bookmark=https://twitter.com/tehjh/status/1450494279709769732]new blogpost:
"How a simple Linux kernel memory corruption bug can lead to complete system compromise: An analysis of current and potential kernel security mitigations"
I'll post a copy to the kernel-hardening list later in case folks want to discuss it.

How a simple Linux kernel memory corruption bug can lead to complete system compromise

An analysis of current and potential kernel security mitigations Posted by Jann Horn, Project Zero Introduction This blog post de...
googleprojectzero.blogspot.com
[/bookmark]

[bookmark=https://twitter.com/dvyukov/status/1450208564748988417]The most entertaining part is 4 descriptions of real CPU bugs found in real x86 CPUs in the Appendix.[/bookmark]

[bookmark=https://twitter.com/monsieuricon/status/1450182467026051081]@josefbacik Github is a proprietary platform -- a significant part of kernel developers have deep-rooted (and not unfounded) objections to that.[/bookmark]

[bookmark=https://twitter.com/josefbacik/status/1450126139045957632]Wrote a blog post about setting up lei and using b4 to ultimately unsubscribe from all the linux kernel mailinglists, in case anybody is curious about getting the workflow set up

Using lei, b4, and mutt to do kernel development

tl;dr Use b4 to apply random patches locally for patch review. Use lei to pull down emails and pathces you care about for all linux kernel mailinglists locally. Use mutt to read that email and respond.
josefbacik.github.io
[/bookmark]

# kernel 5.15-rc6 is out, a few hours later than usual due to travel: lore.kernel.org/lkml/CAHk-=wjb…

"[…] I'd love to say that it's all looking average, but rc6 is actually bigger han rc5 was, and larger than normal for this time in the release cycle. […] slightly worrisome[…]"

Linux 5.15-rc6 - Linus Torvalds

lore.kernel.org
#Linux

Just rechecked the calendar if it really Monday or if I was off-by-one.

Because on Monday mornings I normally find a new # # -rc announcement in my inbox, unless we are in the merge window.

But today Linus didn't release one. Must be a glitch in the matrix.

#Linux #kernel

[bookmark=https://twitter.com/axboe/status/1449888003661328385]This is my favorite kernel conference. Please consider both sponsoring and attending![/bookmark]

"[…] new project […] replacement for #'s --netdev user […], a feature that is commonly used but not really considered production-ready. What # improves on is security and performance, finally making usermode networking production-ready […]"

blog.vmsplice.net/2021/10/a-new-…

A new approach to usermode networking with passt

There is a new project called passt that Stefano Brivio has been working on to implement usermode networking, the magic that ...
blog.vmsplice.net
#QEMU #passt #QEMU's

The Realtek 802.11ax driver rtw89 is slated for inclusion in # # 5.16, as it's in linux-next now: git.kernel.org/pub/scm/linux/…

Realtek contributed this driver supporting the 8852AE 802.11ax 2x2 WiFi chip.

kernel/git/next/linux-next.git - The linux-next integration testing tree

git.kernel.org
#Linux #Kernel

[bookmark=https://twitter.com/gamingonlinux/status/1448650938336505857]NVIDIA Beta 495.29.05 rolls out with GBM for expanded Wayland support gamingonlinux.com/2021/10/nvidia…


NVIDIA Beta 495.29.05 rolls out with GBM for expanded Wayland support

NVIDIA has today released the 495.29.05 driver as a Beta in their New Feature Branch and it's a relatively big one.
www.gamingonlinux.com
[/bookmark]

[bookmark=https://twitter.com/markrussinovich/status/1448673742016577537]And it's here: Sysmon for Linux!

GitHub - Sysinternals/SysmonForLinux

Contribute to Sysinternals/SysmonForLinux development by creating an account on GitHub.
github.com
[/bookmark]

TL;DR for Memory-Model recommendations for using # in the # # – @paulmckrcu of RCU fame published this yesterday and outlines some recommendation for the short-term and some for the long-term:

TL;DR: Memory-Model Recommendations for Rusting the Linux Kernel

These recommendations assume that the initial Linux-kernel targets for Rust developers are device drivers that do not have unusual performance and scalability requirements, meaning that wrappering of small C-language functions is tolerable.
paulmck.livejournal.com
#Rustlang #Linux #Kernel @Paul E. McKenney