[d-kernel] [PATCH] UBUNTU: SAUCE: security, perf: Allow further restriction of perf_event_open

Alexey Sheplyakov asheplyakov на basealt.ru
Вс Июн 5 10:48:06 MSK 2022


On Thu, Jun 02, 2022 at 07:39:14PM +0300, Dmitry V. Levin wrote:
> > No, thanks. Profiling on Linux is already more diffucult than it should be
> > Making things even more complicated is not appreciated at all.
> Since the kernel we are talking about is an universal kernel, it has to
> suit needs of both those who care about basic security and those who do
> profiling.

Breaking a basic system functionality (such as debugging and profiling)
has nothing to do with security.

> Thus, a patch that makes this control runtime configurable is a long awaited one.

This statement is wrong. No people I know of need a knob to make their
system broken.

> The only aspect worth discussing is the default behaviour.

By default an ordinary user should be able to debug and profile his processes
(things used to work that way for several decades). Those who want a broken
system can break it without the newly added knob, i.e. by removing gdb and perf
(and mounting all user-writable filesystems with noexec option).


People who actually need security 

1) don't use out-of-order CPUs (to avoid Meltdown, Spectre, etc)
2) don't use Linux (so the kernel can be actually audited)
3) don't exist

Подробная информация о списке рассылки devel-kernel