The Arm laptop project

What would it take to run mainline Linux on an Arm laptop built for Windows? That was the question Linaro set out to answer in a project funded by Arm. A bit more than a year later, the Lenovo ThinkPad X13s can now be used as a daily driver while running mainline...

Demystifying the Linux kernel security process

There is a lot of misunderstanding about how the Linux kernel deals with security vulnerabilities. This talk will go into how the different Linux kernel security teams work, how security and bugfixes are handled, how changes are propagated out to the public, and how...

The maintainer’s POV

The collective work on the kernel between code submitters and maintainers is a strange symbiosis of constant back’n’forth and is often the source of mutual frustration. A lot of it can be avoided when everyone is on the same page when it comes to process, goals and...

Evolving ftrace on arm64

The Linux kernel’s ftrace mechanism makes it possible to dynamically attach hooks to kernel functions, and can be used for a variety of purposes including tracing, debugging, and live-patching. The low-level details of ftrace differ by architecture, and recently the...

Update on Landlock: Audit Debugging and Metrics

Landlock enables to sandbox Linux applications but it might be challenging to identify the cause of denied accesses. Being able to debug a security policy is an important feature for an access control system. Likewise, logging denied accesses (and their reason) helps...