Zack's Kernel News
Zack's Kernel News
Chronicler Zack Brown reports on isolating patch submissions by type, and quantum security.
Security Protocols in C and Rust
The Rust language continues to make ever deeper inroads into the kernel. Not too long ago, Linus Torvalds revealed his policy: No kernel maintainer or higher-up will be forced to work with Rust code, but, if they choose not to, they also will have no say in that code. Ever since then, the objections to Rust patches have tended to focus on design and implementation details, rather than on simply preferring to work in C.
One such design and implementation detail came up recently, when Alistair Francis submitted a Security Protocols and Data Model (SPDM) implementation in Rust. SPDM is a communication protocol intended to let computers verify that the devices on them are what they expect. It tries to prevent hostile hardware from inadvertently being given private data. To accomplish this, SPDM uses a tangled mess of public key cryptographic handshaking – all trying to remain behind the scenes so that anything using that connected hardware won't have to think about it.
As Alistair put it, "From the kernel's perspective SPDM is used to authenticate and attest devices. In this threat model a device is considered untrusted until it can be verified by the kernel and userspace using SPDM. As such SPDM data is untrusted data that can be malicious."
[...]
Buy Linux Magazine
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters
Support Our Work
Linux Magazine content is made possible with support from readers like you. Please consider contributing when you’ve found an article to be beneficial.
News
-
Microsoft Issues Warning About Linux Vulnerability
The company behind Windows has released information about a flaw that affects millions of Linux systems.
-
Is AI Coming to Your Ubuntu Desktop?
According to the VP of Engineering at Canonical, AI could soon be added to the Ubuntu desktop distribution.
-
Framework Laptop 13 Pro Competes with the Best
Framework has released what might be considered the MacBook of Linux devices.
-
The Latest CachyOS Features Supercharged Kernel
The latest release of CachyOS brings with it an enhanced version of the latest Linux kernel.
-
Kernel 7.0 Is a Bit More Rusty
Linux kernel 7.0 has been released for general availability, with Rust finally getting its due.
-
France Says "Au Revoir" to Microsoft
In a move that should surprise no one, France announced plans to reduce its reliance on US technology, and Microsoft Windows is the first to get the boot.
-
CIQ Releases Compatibility Catalog for Rocky Linux
The company behind Rocky Linux is making an open catalog available to developers, hobbyists, and other contributors, so they can verify and publish compatibility with the CIQ lineup.
-
KDE Gets Some Resuscitation
KDE is bringing back two themes that vanished a few years ago, putting a bit more air under its wings.
-
Ubuntu 26.04 Beta Arrives with Some Surprises
Ubuntu 26.04 is almost here, but the beta version has been released, and it might surprise some people.
-
Ubuntu MATE Dev Leaving After 12 years
Martin Wimpress, the maintainer of Ubuntu MATE, is now searching for his successor. Are you the next in line?