IO_uring security / vulnerabilties?

cyber_trout · July 15, 2023, 9:53am

That news caught my eye.

Whonix uses IO_uring now, i wonder maybe kernels should be recompiled with IO_uring disabled to stay on a safe side?

raja · July 16, 2023, 12:00am

I also had a look at this a while back but have not had the time to test any performance implications or other compatibility related issues. Given we are running Debian, it should probably be tested thoroughly on Bookworm.

It certainly seems like something we should disable given the statistics provided by Google. Regardless, I will attempt to look more thoroughly into this kernel parameter.

Patrick · July 16, 2023, 11:02am

Written just now:

raja · July 17, 2023, 5:10am

One way we can gauge the impact of changing this parameter is by following what happens in the linux-hardened kernel for Arch Linux:

Since we are probably going to stick with Debian and so not going to move to (or past) kernel 6.6 anytime in the next two years, perhaps we could make an exception to change this one kernel parameter after it is thoroughly tested on linux-hardened.

raja · December 15, 2023, 8:38am

raja · January 2, 2024, 8:30am

I agree that in order to reduce contributor burden with regards to versioning it is a good idea to add the sysctl in as long as it doesn’t break anything. As contributors come and go over the years it can become easy to overlook small niche edits like this.

Another benefit is that a lot of people use security-misc settings as a base to harden their systems and so might as well provide them a complete set of options.

So should I leave as is or should add a comment saying that this PR is just for display and only useful for kernel 6.6 and above?

Patrick · January 2, 2024, 10:32am

Merged now. Thank you!

That would be useful.

raja · January 3, 2024, 7:02am

Patrick · January 3, 2024, 10:01am

Merged, thank you!

Patrick · July 19, 2024, 11:26am

Since this was brought up again in Minor documentation changes by raja-grewal · Pull Request #244 · Kicksecure/security-misc · GitHub

If there are settings which cannot be enabled yet, need to be re-checked, are a potential source of issues in a future version of Debian, we could add comments such as:

## TODO: Debian trixie

I’ll search the source code for trixie before porting to a new major Debian version to handle such todo items.

raja · July 19, 2024, 1:36pm

Yes this is a good idea!