Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Free Learning

You're reading from Linux Kernel Programming A comprehensive guide to kernel internals, writing kernel modules, and kernel synchronization

Product type Paperback

Published in Mar 2021

Publisher Packt

ISBN-13 9781789953435

Length 754 pages

Edition 1st Edition

Languages

Tools

Linux

Concepts

System Administration

Author (1):

Kaiwan N. Billimoria

View More author details

Table of Contents (19) Chapters

Preface

1. Section 1: The Basics

2. Kernel Workspace Setup FREE CHAPTER

3. Building the 5.x Linux Kernel from Source - Part 1

4. Building the 5.x Linux Kernel from Source - Part 2

5. Writing Your First Kernel Module - LKMs Part 1

6. Writing Your First Kernel Module - LKMs Part 2

7. Section 2: Understanding and Working with the Kernel

8. Kernel Internals Essentials - Processes and Threads

9. Memory Management Internals - Essentials

10. Kernel Memory Allocation for Module Authors - Part 1

11. Kernel Memory Allocation for Module Authors - Part 2

12. The CPU Scheduler - Part 1

13. The CPU Scheduler - Part 2

14. Section 3: Delving Deeper

15. Kernel Synchronization - Part 1

16. Kernel Synchronization - Part 2

17. About Packt

Why subscribe?

18. Other Books You May Enjoy

Leave a review - let other readers know what you think

The cryptographic signing of kernel modules

Once a malicious attacker gets a foothold on a system, they will typically attempt some kind of privesc vector in order to gain root access. Once this is achieved, the typical next step is to install a rootkit: essentially, a collection of scripts and kernel modules that will pretty much take over the system (by "hijacking" system calls, setting up backdoors and keyloggers, and so on).

Of course, it's not easy – the security posture of a modern production quality Linux system, replete with Linux Security Modules (LSMs), and so on, means it's not at all a trivial thing to do, but for a skilled and motivated attacker, anything's possible. Assuming they have a sufficiently sophisticated rootkit installed, the system is now considered compromised.

An interesting idea is this: even with root access, do not allow insmod(8) (or modprobe(8), or even the underlying [f]init_module(2) system...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Kaiwan N. Billimoria

Kaiwan N. Billimoria taught himself BASIC programming on his dad's IBM PC back in 1983. He was programming in C and Assembly on DOS until he discovered the joys of Unix, and by around 1997, Linux! Kaiwan has worked on many aspects of the Linux system programming stack, including Bash scripting, system programming in C, kernel internals, device drivers, and embedded Linux work. He has actively worked on several commercial/FOSS projects. His contributions include drivers to the mainline Linux OS and many smaller projects hosted on GitHub. His Linux passion feeds well into his passion for teaching these topics to engineers, which he has done for well over two decades now. He's also the author of Hands-On System Programming with Linux, Linux Kernel Programming (and its Part 2 book) and Linux Kernel Debugging. It doesn't hurt that he is a recreational ultrarunner too.

See other products by Kaiwan N. Billimoria