Articles & Reviews
News Archive
Forums
Premium
Contact
Categories

Computers Display Drivers Graphics Cards Linux Gaming Memory Motherboards Processors Software Storage Operating Systems Peripherals

Linux 4.19 Kernel Getting STACKLEAK Feature

Written by Michael Larabel in Linux Kernel on 7 August 2018 at 12:09 AM EDT. 4 Comments

LINUX KERNEL

Another security hardening measure coming to the Linux kernel is STACKLEAK.

Kees Cook of Google queued STACKLEAK into one of his feature branches that will be sent in for the upcoming Linux 4.19 kernel.

STACKLEAK wipes out the kernel stack before returning from system calls. By clearing the kernel stack, it reduces possible leakage and can block some possible attack vectors, including stack clash attacks and uninitialized stack variable attacks. This STACKLEAK feature was ported to the mainline Linux kernel from an old code state of the GrSecurity/PaX kernel code back when those patches were public.

As part of the patch work is also the STACKLEAK plug-in for GCC that is used for tracking the kernel stack's lowest border and ensuring alloca() calls don't cause stack overflows.

This STACKLEAK mainlining work was spearheaded by Alexander Popov, a Russian Linux security researcher.

4 Comments

Related News

Linux 6.3-rc4 Released: "Looking Pretty Normal"

Linux 6.4 Preparing DRM Deadline Hints To Help Influence GPU Frequency/Performance

Linux VGEM Driver Rewritten In Rust Sent Out For Review

Linux 6.3-rc3 Released: It's "Fairly Big"

Linux Kernel Networking Driver Development Impacted By Russian Sanctions

Linux 6.4 Looking To Drop The SLOB Memory Allocator

About The Author

Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week

Valve Officially Announces Counter-Strike 2

Raja Koduri Departing Intel To Start New Software Company

GNOME 44 Released With Many Desktop Enhancements

Linux 6.3-rc3 Released: It's "Fairly Big"

Mozilla Announces Mozilla.ai For "Trustworthy AI"

Proxmox VE 7.4 Released With Linux 5.15 LTS + Linux 6.2 Support, New Dark Theme

Framework Laptop Launches AMD Ryzen Upgradeable Laptop, Intel Raptor Lake Models Too

NVIDIA 530.41.03 Linux Driver Released With IBT Kernel Support, Vulkan Video