linux

mirror of https://github.com/hardkernel/linux.git synced 2026-06-07 19:30:30 +09:00

Go to file

Jeff Vander Stoep 8e5e42d5ae ANDROID: security,perf: Allow further restriction of perf_event_open

When kernel.perf_event_open is set to 3 (or greater), disallow all
access to performance events by users without CAP_SYS_ADMIN.
Add a Kconfig symbol CONFIG_SECURITY_PERF_EVENTS_RESTRICT that
makes this value the default.

This is based on a similar feature in grsecurity
(CONFIG_GRKERNSEC_PERF_HARDEN).  This version doesn't include making
the variable read-only.  It also allows enabling further restriction
at run-time regardless of whether the default is changed.

https://lkml.org/lkml/2016/1/11/587

Bug: 29054680
Bug: 120445712
Change-Id: Iff5bff4fc1042e85866df9faa01bce8d04335ab8
[jeffv: Upstream doesn't want it https://lkml.org/lkml/2016/6/17/101]
Signed-off-by: Ben Hutchings <ben@decadent.org.uk>

2018-12-05 09:48:13 -08:00

arch

ANDROID: cuttlefish_defconfig: Enable CONFIG_NETFILTER_XT_MATCH_QUOTA2

2018-12-05 09:48:13 -08:00

block

block: Clear kernel memory before copying to user

2018-11-27 16:13:05 +01:00

certs

export.h: remove VMLINUX_SYMBOL() and VMLINUX_SYMBOL_STR()

2018-08-22 23:21:44 +09:00

crypto

crypto: user - fix leaking uninitialized memory to userspace

2018-11-21 09:19:24 +01:00

Documentation

ANDROID: security,perf: Allow further restriction of perf_event_open

2018-12-05 09:48:13 -08:00

drivers

ANDROID: power: wakeup_reason: add an API to log wakeup reasons

2018-12-05 09:48:13 -08:00

firmware

kbuild: remove all dummy assignments to obj-

2017-11-18 11:46:06 +09:00

ANDROID: fs: FS tracepoints to track IO.

2018-12-05 09:48:12 -08:00

include

ANDROID: security,perf: Allow further restriction of perf_event_open

2018-12-05 09:48:13 -08:00

init

ANDROID: sched: fair/tune: Add schedtune with cgroups interface

2018-10-26 11:57:46 +01:00

ipc

ipc/shm.c: use ERR_CAST() for shm_lock() error return

2018-10-05 16:32:04 -07:00

kernel

ANDROID: security,perf: Allow further restriction of perf_event_open

2018-12-05 09:48:13 -08:00

lib

lib/raid6: Fix arm64 test build

2018-11-27 16:13:05 +01:00

LICENSES

LICENSES: Remove CC-BY-SA-4.0 license text

2018-10-18 11:28:50 +02:00

ANDROID: add extra free kbytes tunable

2018-12-05 09:48:12 -08:00

net

ANDROID: netfilter: xt_IDLETIMER: Add new netlink msg type

2018-12-05 09:48:13 -08:00

samples

samples: disable CONFIG_SAMPLES for UML

2018-10-11 02:15:46 +09:00

scripts

ANDROID: Kbuild, LLVMLinux: allow overriding clang target triple

2018-12-05 09:47:58 -08:00

security

ANDROID: security,perf: Allow further restriction of perf_event_open

2018-12-05 09:48:13 -08:00

sound

ALSA: hda/ca0132 - Call pci_iounmap() instead of iounmap()

2018-11-27 16:13:09 +01:00

tools

perf tools: Do not zero sample_id_all for group members

2018-11-27 16:13:06 +01:00

usr

initramfs: move gen_initramfs_list.sh from scripts/ to usr/

2018-08-22 23:21:44 +09:00

virt

KVM: arm64: Fix caching of host MDCR_EL2 value

2018-11-13 11:08:47 -08:00

.clang-format

clang-format: Set IndentWrappedFunctionNames false

2018-08-01 18:38:51 +02:00

.cocciconfig

scripts: add Linux .cocciconfig for coccinelle

2016-07-22 12:13:39 +02:00

.get_maintainer.ignore

…

.gitattributes

.gitattributes: set git diff driver for C source code files

2016-10-07 18:46:30 -07:00

.gitignore

Merge tag 'kbuild-v4.17-2' of git://git.kernel.org/pub/scm/linux/kernel/git/masahiroy/linux-kbuild

2018-04-15 17:21:30 -07:00

.mailmap

Merge tag 'libnvdimm-for-4.19_misc' of gitolite.kernel.org:pub/scm/linux/kernel/git/nvdimm/nvdimm

2018-08-25 18:13:10 -07:00

build.config.cuttlefish.aarch64

ANDROID: defconfig / build config for cuttlefish

2018-12-05 09:47:58 -08:00

build.config.cuttlefish.x86_64

ANDROID: defconfig / build config for cuttlefish

2018-12-05 09:47:58 -08:00

COPYING

COPYING: use the new text with points to the license files

2018-03-23 12:41:45 -06:00

CREDITS

9p: remove Ron Minnich from MAINTAINERS

2018-08-17 16:20:26 -07:00

Kbuild

Merge tag 'kbuild-v4.15' of git://git.kernel.org/pub/scm/linux/kernel/git/masahiroy/linux-kbuild

2017-11-17 17:45:29 -08:00

Kconfig

kconfig: move the "Executable file formats" menu to fs/Kconfig.binfmt

2018-08-02 08:06:55 +09:00

MAINTAINERS

MAINTAINERS: Add an entry for the code of conduct

2018-10-22 07:33:36 +01:00

Makefile

ANDROID: Kbuild, LLVMLinux: allow overriding clang target triple

2018-12-05 09:47:58 -08:00

README

Docs: Added a pointer to the formatted docs to README

2018-03-21 09:02:53 -06:00

README

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.
See Documentation/00-INDEX for a list of what is contained in each file.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.