linux/drivers/perf
Alexey Budankov cea7d0d4a5 drivers/perf: Open access for CAP_PERFMON privileged process
Open access to monitoring for CAP_PERFMON privileged process.  Providing
the access under CAP_PERFMON capability singly, without the rest of
CAP_SYS_ADMIN credentials, excludes chances to misuse the credentials
and makes operation more secure.

CAP_PERFMON implements the principle of least privilege for performance
monitoring and observability operations (POSIX IEEE 1003.1e 2.2.2.39
principle of least privilege: A security design principle that states
that a process or program be granted only those privileges (e.g.,
capabilities) necessary to accomplish its legitimate function, and only
for the time that such privileges are actually required)

For backward compatibility reasons access to the monitoring remains open
for CAP_SYS_ADMIN privileged processes but CAP_SYS_ADMIN usage for
secure monitoring is discouraged with respect to CAP_PERFMON capability.

Signed-off-by: Alexey Budankov <alexey.budankov@linux.intel.com>
Reviewed-by: James Morris <jamorris@linux.microsoft.com>
Acked-by: Will Deacon <will@kernel.org>
Cc: Alexei Starovoitov <ast@kernel.org>
Cc: Andi Kleen <ak@linux.intel.com>
Cc: Igor Lubashev <ilubashe@akamai.com>
Cc: Jiri Olsa <jolsa@redhat.com>
Cc: Namhyung Kim <namhyung@kernel.org>
Cc: Peter Zijlstra <peterz@infradead.org>
Cc: Serge Hallyn <serge@hallyn.com>
Cc: Song Liu <songliubraving@fb.com>
Cc: Stephane Eranian <eranian@google.com>
Cc: Thomas Gleixner <tglx@linutronix.de>
Cc: intel-gfx@lists.freedesktop.org
Cc: linux-doc@vger.kernel.org
Cc: linux-man@vger.kernel.org
Cc: linux-security-module@vger.kernel.org
Cc: selinux@vger.kernel.org
Link: http://lore.kernel.org/lkml/4ec1d6f7-548c-8d1c-f84a-cebeb9674e4e@linux.intel.com
Signed-off-by: Arnaldo Carvalho de Melo <acme@redhat.com>
2020-04-16 12:19:09 -03:00
..
hisilicon drivers/perf: hisi: Simplify hisi_read_sccl_and_ccl_id and its comment 2020-01-10 15:58:57 +00:00
arm_dsu_pmu.c treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500 2019-06-19 17:09:55 +02:00
arm_pmu_acpi.c drivers/perf: arm_pmu_acpi: Fix incorrect checking of gicc pointer 2020-03-02 12:07:35 +00:00
arm_pmu_platform.c perf: Convert to using %pOFn instead of device_node.name 2018-10-01 11:33:17 +01:00
arm_pmu.c drivers/perf: arm_pmu: Fix failure path in PM notifier 2019-07-29 11:43:48 +01:00
arm_smmuv3_pmu.c perf/smmuv3: Use platform_get_irq_optional() for wired interrupt 2020-02-10 18:14:46 +00:00
arm_spe_pmu.c drivers/perf: Open access for CAP_PERFMON privileged process 2020-04-16 12:19:09 -03:00
arm-cci.c perf/arm-cci: use devm_platform_ioremap_resource() to simplify code 2019-10-01 12:28:47 +01:00
arm-ccn.c perf: arm-ccn: Use scnprintf() for robustness 2020-03-17 22:45:56 +00:00
fsl_imx8_ddr_perf.c drivers/perf: fsl_imx8_ddr: Correct the CLEAR bit definition 2020-03-02 12:07:19 +00:00
Kconfig drivers/perf: imx_ddr: Add DDR performance counter support to perf 2019-06-13 11:07:57 +01:00
Makefile drivers/perf: imx_ddr: Add DDR performance counter support to perf 2019-06-13 11:07:57 +01:00
qcom_l2_pmu.c perf: Remove dev_err() usage after platform_get_irq() 2019-07-31 17:15:20 +01:00
qcom_l3_pmu.c docs: perf: move to the admin-guide 2019-07-15 09:20:27 -03:00
thunderx2_pmu.c drivers/perf: Add CCPI2 PMU support in ThunderX2 UNCORE driver. 2019-10-29 10:08:46 +00:00
xgene_pmu.c perf: xgene: use devm_platform_ioremap_resource() to simplify code 2019-10-01 12:28:46 +01:00