Re: [PATCH v4 1/5] perf/core: Add PERF_FORMAT_DROPPED

From: Michael Ellerman
Date: Wed Oct 23 2024 - 07:07:28 EST

Next message: Sibi Sankar: "Re: [PATCH 0/2] X1E001DE Snapdragon Devkit for Windows"
Previous message: Catalin Marinas: "Re: [PATCH] kselftest/arm64: Log fp-stress child startup errors to stdout"
In reply to: Namhyung Kim: "[PATCH v4 1/5] perf/core: Add PERF_FORMAT_DROPPED"
Next in thread: Namhyung Kim: "Re: [PATCH v4 1/5] perf/core: Add PERF_FORMAT_DROPPED"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Namhyung Kim <namhyung@xxxxxxxxxx> writes:
> When a perf_event is dropped due to some kind of (SW-based) filter, it
> won't generate sample data. For example, software events drops samples
> when it doesn't match to privilege from exclude_{user,kernel}.
>
> In order to account such dropped samples, add a new counter in the
> perf_event, and let users can read(2) the number with the new
> PERF_FORMAT_DROPPED like the lost sample count.

Are we sure there's no scenario where exposing the dropped event count
gives an unprivileged user a way to probe what's happening in the
kernel, which is supposed to be prevented by exclude_kernel?

Clearly it provides an attacker with some information, ie. the event
fired in the kernel and was dropped.

For most events that's not very interesting, but for some maybe it could
be a useful signal?

On the other hand most CPU PMUs implement filtering in hardware, which
this won't affect, so maybe I'm being too paranoid.

cheers

Next message: Sibi Sankar: "Re: [PATCH 0/2] X1E001DE Snapdragon Devkit for Windows"
Previous message: Catalin Marinas: "Re: [PATCH] kselftest/arm64: Log fp-stress child startup errors to stdout"
In reply to: Namhyung Kim: "[PATCH v4 1/5] perf/core: Add PERF_FORMAT_DROPPED"
Next in thread: Namhyung Kim: "Re: [PATCH v4 1/5] perf/core: Add PERF_FORMAT_DROPPED"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]