Sasha Levin ta NVIDIA, wacce ke kula da rassan LTS na Linux kernel kuma tana aiki a kwamitin ba da shawara na Linux Foundation, ta shirya wasu faci da ke aiwatar da tsarin killswitch don Linux kernel. Tsarin da aka gabatar yana ba da damar kashe wasu ayyukan kernel nan take. An yi nufin killswitch ya zama mai amfani don toshe rauni na ɗan lokaci har sai an shigar da sabuntawar kernel tare da gyara.
Ana sarrafa Killswitch ta hanyar fayil ɗin "/sys/kernel/security/killswitch/control", wanda ke ba ku damar saita kutsewar kiran aikin kernel ta sunayensu. Misali, don toshe raunin Kwafi Fail, kawai ƙara umarnin "engage af_alg_sendmsg -1" zuwa fayil ɗin sarrafawa don ba da damar kutsewar kiran aikin af_alg_sendmsg sannan ku mayar da lambar kuskuren "-1".
Duk wani haruffa da tsarin kprobes ke tallafawa za a iya amfani da su azaman sunaye. Yawancin raunin kernel da aka gano kwanan nan suna wanzuwa a cikin ƙananan tsarin da ƙananan masu amfani ke amfani da su (misali, AF_ALG, ksmbd, nf_tables, vsock, ax25). Ga yawancin masu amfani, rashin jin daɗin asarar aiki a wasu ayyuka bai cancanci haɗarin amfani da kernel tare da raunin da aka sani, wanda ba a gyara ba har sai an shigar da faci. Tsarin killswitch yana da mahimmanci musamman a cikin mahallin raunin Dirty Frag na yanzu, wanda aka buga amfani kafin a gyara matsalar a cikin kernel.
source: budenet.ru
