OpenBSD will create its own kernel each time you reboot the machine, giving you better security
There is the name KARL - Kernel Address Randomized Link - and works by reconnecting internal kernel files in a random order to generate new kernel binary data each time. Currently, with the released stable version, OpenBSD's kernel uses the predefined order to connect and download the internal file inside the kernel, creating the same kernel for all users.
Other KARL with ASLR
Developed by Theo de Raadt, KARL will create a new binary kernel every time you install, upgrade or reboot the device. If the user performs these operations, the most recent kernel will replace the current binary kernel, the operating system will create a new binary kernel and use it for the next boot / reboot / upgrade, from which the link keep changing the kernel.
KARL should not be confused with ASLR - Address Space Layout Randomization - a technique that randomly takes up the memory address where the application code is executed, from which the exploiter cannot target a specific location of memory (where run the kernel or application).
'It will still use the same address in KVA (Kernel Virtual Address Space). This is not an ASLR kernel, 'de Raadt said. Instead, KARL creates binary kernels with random structures, so operators cannot attack functions, pointers, and objects.
The unique kernel will connect in the way that the startup code segment is kept in the same place, followed by a space with random size, and then all the .o files are randomly arranged. As a result, the distance between function and variable is completely new. Information leaked from a pointer will not reveal information of the cursor or other object. This can also help reduce the number of utilities on custom-sized architectures, because polymorphism in the instruction stream is destroyed due to nested changes.
"As a result, each kernel created will be unique," de Raadt said.
Features developed in the past 2 months
Started working with this feature since May and first discussed in mid-June on the OpenBSD technician mailing list, KARL was on the OpenBSD snapshot 6.1.
'The problem now is that many people install a binary kernel from OpenBSD and run it for 6 months or more. Of course if you boot it continuously, the layout will not change. That's why we're here, 'de Raadt said. 'However, the current snapshot will be further changed because I am working with Robert Peichaer. This change will be reinforced to make sure you boot the new kernel every time you reboot. "
KARL is the unique feature
Speaking to Bleeping Computer, Tiberiu C. Turbureanu, founder of Techoethical, startups sell products focused on security, saying that this situation will be unique to OpenBSD. Turbureanu talks about the ability to put this feature on a Linux kernel: 'It is not implemented on Linux, it seems to be a good idea'.
Generate new random kernels to help better computer security
Instead, the Linux project has added the ability to support Kernel Address Layout Randomization (KASLR), which helps to bring ASLR to the kernel, load kernal at random memory address. This feature is the default on Linux 4.12 released last week. The difference between them is that KARL loads different binary kernels in the same place, while KASLR loads the same binary file in different random locations. That means the same destination, but the path is different.
With Windows, KARL is not supported but MIcrosoft has also used KASLR for many years. Fabian Wosar, Chief Technical Officer of the antivirus company Emsisoft is also ready to add KARL to the Windows kernel. 'OpenBSD's idea can go further (current Windows kernel protection - because everyone will have a separate binary kernel,' Wosar said.
'So even if you get a kernel address starting (randomly selected), you can't use it to determine the location of any function as well as the location of the kernel-related function at the start. different on each system '. Having KARL on OS will significantly improve security for Windows and Linux users.
You should read it
- What's new in Linux Kernel 5.9?
- Linux Kernel 5.16 officially released with great features for gamers
- How to create a Custom Kernel on Ubuntu
- How to update or downgrade WSL kernel on Windows 11
- How to downgrade kernel in Linux
- Microsoft will release Linux 'genuine' Linux kernel with Windows 10 WSL
- How does the Linux Kernel work?
- How to fix Kernel Power Error in Windows 10
May be interested
- How different are Reboot and Reset?what does reboot mean? what do you reset your computer, router, phone, etc.? it seems silly to distinguish them from each other but they are really different!
- Google announced a serious vulnerability in the macOS kernelthis vulnerability is located in macos xnu (kernel) kernel, if it successfully exploits it, malicious hackers or programs can manipulate the file system without informing the operating system.
- How to fix Kernel Power Error in Windows 10does your windows computer turn off without notice or problem every time you try to wake it from sleep? this issue, called the kernel-power bug, seems to have no reason, but is a serious system problem.
- How to check the time of shutdown and reboot in Linuxthere are many reasons why you might want to find out when your linux computer is off, reboot or how long it will run. in most cases, this information is invaluable in debugging a problem.
- How to delete old Time Machine backups on Mactime machine is a great way to create data backups. sometimes you may see an error message that says the backup is too large for the backup drive. once there, you need to delete some time machine backups.
- How to fix KERNEL SECURITY CHECK ERROR in Windowsmethods to fix kernel security check error errors can be applied to windows xp, windows vista, windows 7, windows 8, windows 8.1 and windows 10.
- How to update or downgrade WSL kernel on Windows 11if the automatic update fails and you need to change the wsl version for any reason, you can do it manually with the command prompt.
- Android phones come with security features that have long been available on iPhonesgoogle is taking a page from apple by rolling out a new security feature that automatically restarts android phones after a few days of inactivity.
- How to downgrade kernel in Linuxlinux life is determined by the kernel. if you are familiar with how gnu / linux works, linux is essentially the kernel. everything else is just a communication tool with it.
- What is Linux Kernel? Application functions of Linux Kernel in computer systemsthe obvious common point of linux-based operating systems is that they all have the linux kernel. so what exactly is the linux kernel? application function of linux kernel in computer system? what are the components of the linux kernel?