This patch introduces a new kernel configuration option, CONFIG_VFS_AGE_VERIFICATION, which mandates that processes register a valid birth date using a new prctl call (PR_SET_BIRTHDATE) before being allowed to create files. This is in response to new regulations requiring age verification for digital content creation. If a process hasn't registered a birthdate or is under 18 years old, file creation will fail with a new error code, ETOOYOUNG.
The patch also adds a new error number, ETOOYOUNG (134), and includes safeguards against bypassing verification through execve(). It playfully rejects birthdates indicating an age over 150, acknowledging the lack of support for immortal entities.
The patch also adds a new error number, ETOOYOUNG (134), and includes safeguards against bypassing verification through execve(). It playfully rejects birthdates indicating an age over 150, acknowledging the lack of support for immortal entities.
Greg Kroah-Hartman, a long-term Linux kernel maintainer, has observed a significant shift in AI-driven activity around Linux security and code review. Previously receiving "AI slop" โ inaccurate or low-quality reports โ the past month has seen a marked improvement in the quality and relevance of AI-generated bug reports and security findings across open-source projects. While the cause of this change remains unknown, Kroah-Hartman notes the kernel team can handle the increased volume, but smaller projects may struggle. AI is increasingly used as a reviewer and assistant, and is even beginning to contribute patches, with tools like Sashiko being integrated to manage the influx.
This article details 12 command-line tools powered by eBPF for debugging and monitoring Linux systems, offering insights into kernel-level behavior with minimal overhead.
1. **bpftrace:** A high-level scripting language for on-demand kernel debugging.
2. **execsnoop:** Catches fleeting processes.
3. **opensnoop:** Identifies files processes are trying to open and any permission issues.
4. **tcplife:** Traces the duration of TCP sessions.
5. **gethostlatency:** Diagnoses DNS resolution delays.
6. **biotop:** Displays real-time disk I/O activity by process.
7. **biolatency:** Shows disk I/O latency histograms.
8. **tcpretrans:** Detects TCP retransmissions, indicating network issues.
9. **tcpconnect:** Traces outbound TCP connections.
10. **tcpaccept:** Traces inbound TCP connections.
11. **biosnoop:** Detailed view of block I/O operations.
12. **bpftool:** Inspects and debugs already running eBPF programs.
1. **bpftrace:** A high-level scripting language for on-demand kernel debugging.
2. **execsnoop:** Catches fleeting processes.
3. **opensnoop:** Identifies files processes are trying to open and any permission issues.
4. **tcplife:** Traces the duration of TCP sessions.
5. **gethostlatency:** Diagnoses DNS resolution delays.
6. **biotop:** Displays real-time disk I/O activity by process.
7. **biolatency:** Shows disk I/O latency histograms.
8. **tcpretrans:** Detects TCP retransmissions, indicating network issues.
9. **tcpconnect:** Traces outbound TCP connections.
10. **tcpaccept:** Traces inbound TCP connections.
11. **biosnoop:** Detailed view of block I/O operations.
12. **bpftool:** Inspects and debugs already running eBPF programs.
A user, nicholasdavidroberts, expresses gratitude to Daniel for providing a PPA and patched 390 driver that resolved their NVIDIA driver compilation issues on Ubuntu 22.04 with kernel 6.5.0-14.
```
execute_with_retries apt-get install -y -qq gcc-12
update-alternatives --install /usr/bin/gcc gcc /usr/bin/gcc-11 11
update-alternatives --install /usr/bin/gcc gcc /usr/bin/gcc-12 12
update-alternatives --set gcc /usr/bin/gcc-12
```
```
execute_with_retries apt-get install -y -qq gcc-12
update-alternatives --install /usr/bin/gcc gcc /usr/bin/gcc-11 11
update-alternatives --install /usr/bin/gcc gcc /usr/bin/gcc-12 12
update-alternatives --set gcc /usr/bin/gcc-12
```
A user reports issues compiling the NVIDIA driver with kernel 6.5.0-14 on Ubuntu 22.04, specifically for a GeForce GT 750M. They provide a patch and instructions for creating a custom deb package to resolve the issue.
A program called rusage.com that reports richer resource usage statistics than the traditional UNIX time command, with examples and use cases for optimizing performance
Announcement of Finnix 126 release, a utility live Linux distribution. It includes fixes, new packages, and new features, such as Linux kernel 6.8, addition of 0 kernel command line option, and upstream Debian package updates. This release also provides additional 'supply chain' assurances, built on a public CI platform with ISO pointing to build information and SHA256 checksum.
