{"id":9253,"date":"2021-02-26T09:52:17","date_gmt":"2021-02-26T09:52:17","guid":{"rendered":"http:\/\/xislblogs.xtreamlab.net\/slwoods\/?p=9253"},"modified":"2021-02-26T09:56:22","modified_gmt":"2021-02-26T09:56:22","slug":"google-funds-security-focussed-linux-kernel-developers","status":"publish","type":"post","link":"https:\/\/www.slwoods.co.uk\/?p=9253","title":{"rendered":"Google funds security-focussed Linux kernel developers"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignright size-full wp-image-275\" src=\"http:\/\/xislblogs.xtreamlab.net\/slwoods\/wp-content\/uploads\/\/sites\/23\/2012\/10\/Crystal_Clear_app_tux.png\" alt=\"Tux - the Linux kernel mascot\" width=\"128\" height=\"128\" \/>On Wednesday the Linux Foundation and Google <a href=\"https:\/\/www.linuxfoundation.org\/en\/press-release\/google-funds-linux-kernel-developers-to-focus-exclusively-on-security\/\">announced<\/a> that Google would be funding two full-time maintainers for Linux kernel security development, Gustavo Silva and Nathan Chancellor.<\/p>\n<p>Silva and Chancellor\u2019s will focus on maintaining and improving kernel security, as well as associated initiatives to ensure the continuing viability of the world\u2019s most pervasive open source software project.<\/p>\n<p>The Linux Foundation\u2019s <a href=\"https:\/\/openssf.org\/\">Open Source Security Foundation<\/a> (OpenSSF) and Harvard University&#8217;s <a href=\"https:\/\/lish.harvard.edu\/\">Laboratory for Innovation Science<\/a> (LISH) recently published an open source contributor survey <a href=\"https:\/\/www.linuxfoundation.org\/resources\/publications\/2020-foss-contributor-survey\/\">report<\/a> that identified a need for additional work on security in open source software, including the Linux operating system. Linux has more than 20,000 contributors. While there are thousands of Linux kernel developers, all of whom take security into consideration in their work, this contribution from Google to underwrite two full-time Linux security maintainers signals the importance of security for the future of open source software.<\/p>\n<p>\u201cAt Google, security is always top of mind and we understand the critical role it plays to the sustainability of open source software,\u201d said Dan Lorenc, Staff Software Engineer for Google. \u201cWe\u2019re honored to support the efforts of both Gustavo Silva and Nathan Chancellor as they work to enhance the security of the Linux kernel.\u201d<\/p>\n<p>Chancellor\u2019s work will be focused on triaging and fixing all bugs found with Clang\/LLVM compilers while working on establishing continuous integration systems to support this work. Once those aims are well-established, he plans to begin adding features to the kernel using these compiler technologies. Chancellor has been a kernel developer for over 4 years.<\/p>\n<p>Gustavo Silva\u2019s full-time Linux security work is currently dedicated to eliminating several classes of buffer overflows. In addition, he is actively focusing on fixing bugs before they hit the mainline and has been contributing to kernel development since 2010.<\/p>\n<p>Funding Linux kernel security and development is a collaborative effort, supported by the world\u2019s largest companies that depend on the Linux operating system. To support work like this, discussions are taking place in the <a href=\"https:\/\/github.com\/ossf\/wg-securing-critical-projects\">Securing Critical Projects Working Group<\/a> inside the <a href=\"http:\/\/openssf.org\">OpenSSF<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>On Wednesday the Linux Foundation and Google announced that Google would be funding two full-time maintainers for Linux kernel security development, Gustavo Silva and Nathan Chancellor. Silva and Chancellor\u2019s will focus on maintaining and improving kernel security, as well as associated initiatives to ensure the continuing viability of the world\u2019s most pervasive open source software [&hellip;]<\/p>\n","protected":false},"author":20,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4,5,9],"tags":[19,39,12],"class_list":["post-9253","post","type-post","status-publish","format-standard","hentry","category-linux-and-os-matters","category-open-source-software","category-tech","tag-free-software","tag-linux-and-os-matters","tag-open-source"],"_links":{"self":[{"href":"https:\/\/www.slwoods.co.uk\/index.php?rest_route=\/wp\/v2\/posts\/9253","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.slwoods.co.uk\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.slwoods.co.uk\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.slwoods.co.uk\/index.php?rest_route=\/wp\/v2\/users\/20"}],"replies":[{"embeddable":true,"href":"https:\/\/www.slwoods.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=9253"}],"version-history":[{"count":4,"href":"https:\/\/www.slwoods.co.uk\/index.php?rest_route=\/wp\/v2\/posts\/9253\/revisions"}],"predecessor-version":[{"id":9261,"href":"https:\/\/www.slwoods.co.uk\/index.php?rest_route=\/wp\/v2\/posts\/9253\/revisions\/9261"}],"wp:attachment":[{"href":"https:\/\/www.slwoods.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=9253"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.slwoods.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=9253"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.slwoods.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=9253"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}