Zack's Kernel News

Article from Issue 266/2023

Author(s): Zack Brown

Chronicler Zack Brown reports on the little links that bring us closer within the Linux kernel community.

Best Laid Plans

When the Linux kernel encountered a runtime warning, Alexander Popov didn't like that it had only two possible responses: Ignore the whole thing, or panic (i.e., crash 'n' burn). The crash 'n' burn response would trigger if the user had set the panic_on_warn flag. Otherwise, the warning would be ignored. Alexander felt that a nice middle-of-the-road response would be for the kernel to simply stop whatever it was that caused the warning. This way at least the system could still function.

Alexander also pointed out some security problems with the current state of affairs. He said that to avoid the extreme response, "panic_on_warn is usually disabled on production systems." And, "From a security point of view, kernel warning messages provide a lot of useful information for attackers. Many GNU/Linux distributions allow unprivileged users to read the kernel log, so attackers use kernel warning info leak in vulnerability exploits."

Alexander proposed a compromise so that system administrators and distribution maintainers would not feel the need to completely disable all responses to kernel warnings. He said, "Let's introduce the pkill_on_warn boot parameter. If this parameter is set, the kernel kills all threads in a process that provoked a kernel warning. This behavior is reasonable from a safety point of view described above. It is also useful for kernel security hardening because the system kills an exploit process that hits a kernel warning."

[...]

Use Express-Checkout link below to read the full article (PDF).

Buy this article as PDF

Express-Checkout as PDF

Price $2.95
(incl. VAT)

Buy Linux Magazine

SINGLE ISSUES

Print Issues

Digital Issues

SUBSCRIPTIONS

Print Subs

Digisubs

TABLET & SMARTPHONE APPS

US / Canada

UK / Australia

Read full article as PDF:

Price $2.95

Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters
Find SysAdmin Jobs

News

LibreOffice 7.5 has Arrived and is Loaded with New Features and Improvements

The favorite office suite of the Linux community has a new release that includes some visual refreshing and new features across all modules.
The Next Major Release of Elementary OS Has Arrived

It's been over a year since the developers of elementary OS released version 6.1 (Jólnir) but they've finally made their latest release (Horus) available with a renewed focus on the user.
KDE Plasma 5.27 Beta Is Ready for Testing

The latest beta iteration of the KDE Plasma desktop is now available and includes some important additions and fixes.
Netrunner OS 23 Is Now Available

The latest version of this Linux distribution is now based on Debian Bullseye and is ready for installation and finally hits the KDE 5.20 branch of the desktop.
New Linux Distribution Built for Gamers

With a Gnome desktop that offers different layouts and a custom kernel, PikaOS is a great option for gamers of all types.
System76 Beefs Up Popular Pangolin Laptop

The darling of open-source-powered laptops and desktops will soon drop a new AMD Ryzen 7-powered version of their popular Pangolin laptop.
Nobara Project Is a Modified Version of Fedora with User-Friendly Fixes

If you're looking for a version of Fedora that includes third-party and proprietary packages, look no further than the Nobara Project.
Gnome 44 Now Has a Release Date

Gnome 44 will be officially released on March 22, 2023.
Nitrux 2.6 Available with Kernel 6.1 and a Major Change

The developers of Nitrux have officially released version 2.6 of their Linux distribution with plenty of new features to excite users.
Vanilla OS Initial Release Is Now Available

A stock GNOME experience with on-demand immutability finally sees its first production release.