[d-kernel] [PATCH] UBUNTU: SAUCE: security, perf: Allow further restriction of perf_event_open

Чт Июн 2 16:29:14 MSK 2022

Dmitry,

On Thu, Jun 02, 2022 at 03:40:38PM +0300, Vitaly Chikunov wrote:
> On Thu, Jun 02, 2022 at 10:14:38AM +0300, Dmitry V. Levin wrote:
> > On Thu, Jun 02, 2022 at 03:31:00AM +0300, Vitaly Chikunov wrote:
> > > index 6c7b35c941c7..4861085a2d49 100644
> > > --- a/security/Kconfig
> > > +++ b/security/Kconfig
> > > @@ -19,6 +19,16 @@ config SECURITY_DMESG_RESTRICT
> > >  
> > >  	  If you are unsure how to answer this question, answer N.
> > >  
> > > +config SECURITY_PERF_EVENTS_RESTRICT
> > > +	bool "Restrict unprivileged use of performance events"
> > > +	depends on PERF_EVENTS
> > > +	default y
> > > +	help
> > > +	  If you say Y here, the kernel.perf_event_paranoid sysctl
> > > +	  will be set to 3 by default, and no unprivileged use of the
> > -------------------------^
> 
> Я это заметил, но, думаю, так надо и оставить.
> 

Поправил и добавил в очередь в p10.