Kernel Self-Protection Project/Linux Kernel Hardening

First Linux kernel patch of 2026

Posted on by Gustavo A. R. Silva / 0 Comment

First kernel patch of 2026 addressing 2,600 -Wflex-array-member-not-at-end warnings at once:

▫️ [PATCH v2][next] ipv4/inet_sock.h: Avoid thousands of -Wflex-array-member-not-at-end warnings

It has been taken into the net-next tree and it’s now in linux-next. 🙌🏼

▫️ https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next.git/commit/?id=c86af46b9c7af2041495231fd59834da6da1543c

▫️ https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git/commit/?id=c86af46b9c7af2041495231fd59834da6da1543c

I continue making progress toward enabling -Wflex-array-member-not-at-end in mainline. 👨🏽‍💻🙌🏼

If you want to learn more about this ongoing work, check out this presentation I gave at Open Source Summit Japan last December:

▫️ Upstream Kernel Hardening: Progress on enabling -Wflex-array-member-not-at-end

Linux Kernel Self-Protection Project ⚔️ 🛡️ 🐧

Gustavo A. R. Silva
Gustavo A. R. Silva works full-time as an Upstream Linux Kernel Engineer focused on hardening and proactive security. He has spent the past several years fixing all sorts of bugs and hardening the Linux kernel. His work is supported by The Linux Foundation and the Alpha-Omega project. He’s a member of the Linux Kernel Self-Protection Project, and a regular speaker at Kernel Recipes and Open Source Summit. He has also presented at Linux Security Summit, Lund LinuxCon, Linux Plumbers Conference, Everything Open, The University of Adelaide, and Symposium sur la Sécurité des Technologies de l’Information et des Communications (SSTIC) as an invited speaker.

Leave a Comment

Your email address will not be published. Required fields are marked *