Linux 5.14: Enhanced Security for Enterprise Applications

Linux Kernel 5.14: A Significant Update for Enterprise and Cloud

A substantial release of the Linux kernel, version 5.14, is scheduled for this Sunday, August 29th. This update is poised to influence enterprise and cloud applications for the coming months.

Enhanced Security Features

Security remains a primary focus for both enterprise and cloud environments. Consequently, Linux 5.14 introduces several new security capabilities.

Mike McGrath, Vice President of Linux Engineering at Red Hat, explained to TechCrunch that the update incorporates a feature called core scheduling. This is designed to lessen the impact of processor-level vulnerabilities, such as Spectre and Meltdown, initially discovered in 2018.

Previously, mitigating these vulnerabilities often required disabling hyper-threading on CPUs, resulting in a performance decrease. Core scheduling aims to prevent this trade-off.

“Specifically, this feature facilitates the separation of trusted and untrusted tasks, ensuring they do not share a core. This limits the potential threat surface while maintaining cloud-scale performance,” McGrath clarified.

Improved Memory Protection

Another key security innovation in Linux 5.14 is a feature developed over the past year and a half. It provides enhanced protection for system memory.

Attacks targeting Linux and other operating systems frequently exploit memory as a primary attack vector. The new kernel introduces a capability known as memfd_secret(), allowing applications on a Linux system to establish memory regions inaccessible to others, even the kernel itself.

“This allows for the secure storage of cryptographic keys, sensitive data, and other secrets, minimizing exposure to unauthorized users or system processes,” McGrath stated.

The Linux Kernel: Core of Cloud and Enterprise

The Linux kernel is the foundational component of the open-source Linux operating system, powering a significant portion of cloud and enterprise application delivery. It provides the essential functionality for system operations.

Development and Contributions

The Linux 5.14 kernel release has undergone seven release candidate phases over the last two months. It benefits from the contributions of 1,650 developers.

These contributors include individual developers, as well as major vendors like Intel, AMD, IBM, Oracle, and Samsung. IBM’s Red Hat business unit is consistently one of the largest contributors to Linux kernel releases.

IBM completed the acquisition of Red Hat for $34 billion in 2019.

“As is typical with each kernel release, version 5.14 presents some truly innovative capabilities,” McGrath noted.

Adoption and Future Releases

While Linux 5.14 is imminent, its integration into enterprise releases typically takes time. McGrath indicated that it will first appear in Red Hat’s Fedora community Linux distribution and will be included in the upcoming Red Hat Enterprise Linux 9 release.

Gerald Pfeifer, CTO for enterprise Linux vendor SUSE, informed TechCrunch that his company’s openSUSE Tumbleweed community release will likely incorporate the Linux 5.14 kernel within “days” of the official release.

Regarding enterprise deployments, SUSE Linux Enterprise 15 SP4, scheduled for next spring, is planned to include the 5.14 kernel.

A 30-Year Milestone

This new Linux update arrives following a significant milestone for the open-source operating system. It was 30 years ago this past Wednesday that Linus Torvalds first publicly announced the project.

Over the past three decades, Linux has evolved from a hobbyist endeavor to the infrastructure powering the internet.

Looking Ahead: Edge Computing and Beyond

McGrath emphasized that Linux is already the foundation of the modern cloud. Red Hat anticipates Linux will also be crucial for edge computing, extending beyond telecommunications to industries like manufacturing, healthcare, entertainment, and service providers.

Continued Relevance

Pfeifer is confident in the long-term viability and importance of Linux for the next 30 years. He highlighted that Linux and open source have fostered unprecedented innovation, coupled with openness and independence.

“Whether Linux, the kernel, will remain the leader in 30 years is uncertain. However, its relevance is assured,” he said. “The approaches we’ve created and developed will continue to be fundamental to technological progress for decades to come. Of that, I am certain.”