“pkill_on_warn” Proposed For Killing Linux Processes That Cause A Kernel Warning>

Share on facebook
Share on twitter
Share on linkedin
Share on reddit
Share on email

Security researcher and Linux kernel contributor Alexander Popov has proposed a new kernel option called “pkill_on_warn” that would kill all threads in a process if that process provoked a kernel warning. This wouldn’t change the default kernel behavior but if/when the patch is merged, booting the kernel with pkill_on_warn=1 would enable this new behavior to kill processes causing kernel warnings.

Currently when a process triggers a kernel warning there is no impact on that process by default. The Linux kernel does have a “panic_on_warn” option to cause a kernel panic when a warning happens, but pkill_on_warn would be less of an overkill and at least keep the system up and running.

Security researcher and Linux kernel contributor Alexander Popov proposed this new pkill_on_warn option. Popov argued in the patch proposal, “From a security point of view, kernel warning messages provide a lot of useful information for attackers. Many GNU/Linux distributions allow unprivileged users to read the kernel log, so attackers use kernel warning infoleak

Read the article