This wins the “cool” award for this week. This patch set would provide a mechanism to prevent user-space from modifying the running kernel image.
As someone who is used to finding the specific commit messages in the kernel to use as the “docs”, this patch is YUGEEE.
Blast from the past! We used to use LEGO Mindstorms in college, this patch is for the driver for the battery.
Introduces a BPF testing framework, which solves numerous problems with skb and xdp programs being difficult to test.
Prevents a syscall from modifying the address limit of the caller. Patch could be used to mitigate bugs.chromium.org/p/project-zero/issues#990.