RCU's First-Ever CVE, and How I Lived to Tell the Tale
Offered By: linux.conf.au via YouTube
Course Description
Overview
Explore a conference talk that delves into the first-ever Common Vulnerabilities and Exposures (CVE) related to Linux-kernel RCU (Read-Copy-Update) and its subsequent resolution. Learn about the unexpected security implications of usability bugs in low-level kernel components, the challenges of consolidating multiple RCU flavors, and the process of implementing a fix. Gain insights into quiescent states, the RCU tree structure, and techniques for deferring operations while ensuring system integrity. Discover valuable lessons and war stories from the speaker's experience in addressing this critical issue in the Linux kernel.
Syllabus
Intro
The problem
The fix
Possible solutions
What is quiescent state
The RCU tree
Deferring the DQ operation
Making sure it works
Consequences
Taught by
linux.conf.au
Related Courses
The Open-Source Chatbot That Accidentally Built a Communitylinux.conf.au via YouTube Add Depth - Stereoscopic Imagery for Everyone
linux.conf.au via YouTube Becoming a Tyrant - Implementing Secure Boot in Embedded Devices
linux.conf.au via YouTube The seL4 Foundation - Growing Through Upheaval
linux.conf.au via YouTube Conference Close
linux.conf.au via YouTube