Tootfinder

Wondering why the aarch64 and ppc64le numbers for my #Linux #kernel vanilla mainline copr (left in the screenshot) for #Fedora are higher than for the mainline-wo-mergew copr; they should be lower,…

New set of #Gentoo #Linux Distribution Kernels (6.1.143, 6.6.96, 6.12.36, 6.15.5) is out. This set brings some major changes:
• I've backported a bunch of changes from sys-kernel/gentoo-kernel to sys-kernel/vanilla-kernel that were missing — notably wider architecture support.
• I've added default #RISCV configs to 6.12 (in addition to 6.15), since Fedora had them.
• All three packages are based off the baseline kernel tarball upstream patch (vanilla-kernel used to fetch patch-level tarball every time, and gentoo-kernel* used genpatches for patch versions). This should reduce disk space and bandwidth use.
• All three packages now support verify-sig. Rather than verifying the uncompressed tarball signature, we now use upstream `sha256sums.asc` file to verify the compressed tarball and patch.
• sys-kernel/gentoo-kernel* now repackages genpatches. This means patchset that's much leaner and faster to apply (since we just fetch and use the combined upstream patch rather than including point patches). This also means that we are able to release Distribution Kernels before gentoo-sources are done.
The changes still need to be done to 5.15 and 5.10 branches — we're going to do for the next upstream releases of these.
#kernel

Welp - trying to work out how to build a #Linux #kernel under a #MacOS shell is sending me down a bit of a rabbit hole.

Linux is when your computer doesn't boot, you think it's a kernel bug, you spend half the day troubleshooting, you identify an actual hardware defect, you go out and buy new hardware, and then you find out it actually was a kernel bug all along.
#linux #kernel

Obscure kernel bug use-after-free and then the VLAI severity told me "maybe important" before I read the drama #kernel

[CVE-2025-38001] Exploiting All Google kernelCTF Instances And Debian 12 With A 0-Day For $82k: A RBTree Family Drama (Part One: LTS & COS)
CVE-2025-38001 is a Use-After-Free vulnerability in the Linux network packet scheduler, specifically in the HFSC queuing discipline. When the HFSC qdisc is utilized with NETEM and NETEM packet duplication is enabled, using HFSC_RSC it is possible to cause a double class insertion in the HFSC eligible tree. Under normal conditions, this would lead to an infinite loop in hfsc_dequeue() due to an RBTree cycle. However, by adding TBF as root qdisc, it is possible to prevent packets from being deque…

Linux kernel 6.16 is out :)
#linux #kernel
https://www.youtube.com/watch?v=lhXgGU2BBq8…

Wondering why the number of downloaded vanilla #Linux mainline #kernel packages[1] for aarch64 and ppc64le on Fedora 42 already overtook 40 and 41.
🤷
BTW, if anyone wants me to build kernels for s390x as well, please let me know. It's likely not more work for me than enabling a c…