[PATCH v2 0/2] Documentation/admin-guide: introduce perf-security.rst file and extend perf_event_paranoid documentation

From: Alexey Budankov
Date: Wed Nov 21 2018 - 03:57:24 EST



To facilitate informed decision making by system administrators [1]
to permit and manage access to Perf Events (perf_events) / Perf tool (Perf) [2],[3]
performance monitoring for multiple users perf-security.rst document
suggested by Thomas Gleixner is introduced [4] that:

a) states perf_events/Perf access security concerns for multi user environment
b) refers to base Linux access control and management principles
c) extends documentation of possible perf_event_paranoid knob settings

The file serves as single knowledge source for perf_events/Perf security and
access control related matter according to decisions, discussion and
PoC prototype previously made here [5],[6].

The file can later be extended with information describing:

a) perf_events/Perf usage models and its security implications
b) perf_events/Perf user interface, its changes and related security implications
c) security related implications of monitoring by a specific perf_events PMU [2]

---
Alexey Budankov (2):
Documentation/admin-guide: introduce perf-security.rst file
Documentation/admin-guide: update admin-guide index.rst

Documentation/admin-guide/index.rst | 1 +
Documentation/admin-guide/perf-security.rst | 77 +++++++++++++++++++++
2 files changed, 78 insertions(+)
create mode 100644 Documentation/admin-guide/perf-security.rst