]> git.proxmox.com Git - mirror_ubuntu-jammy-kernel.git/commit - kernel/trace/trace_events.c
projects / mirror_ubuntu-jammy-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b914e8d) | patch
tracing: Disable "other" permission bits in the tracefs files
authorSteven Rostedt (VMware) <rostedt@goodmis.org>
Wed, 18 Aug 2021 15:24:51 +0000 (11:24 -0400)
committerAndrea Righi <andrea.righi@canonical.com>
Tue, 4 Jan 2022 08:48:15 +0000 (09:48 +0100)
commitbd324cfc2b9238d13c7302f7ea34566d0739499c
tree6b6a5373f4dda51978ab18e2836d89ab08c60232tree
parentb914e8dd669accde761be307d025acd5f867cc3bcommit | diff
tracing: Disable "other" permission bits in the tracefs files

BugLink: https://bugs.launchpad.net/bugs/1951822
[ Upstream commit 21ccc9cd72116289469e5519b6159c675a2fa58f ]

When building the files in the tracefs file system, do not by default set
any permissions for OTH (other). This will make it easier for admins who
want to define a group for accessing tracefs and not having to first
disable all the permission bits for "other" in the file system.

As tracing can leak sensitive information, it should never by default
allowing all users access. An admin can still set the permission bits for
others to have access, which may be useful for creating a honeypot and
seeing who takes advantage of it and roots the machine.

Link: https://lkml.kernel.org/r/20210818153038.864149276@goodmis.org
Signed-off-by: Steven Rostedt (VMware) <rostedt@goodmis.org>
Signed-off-by: Sasha Levin <sashal@kernel.org>
Signed-off-by: Paolo Pisati <paolo.pisati@canonical.com>
15 files changed:
kernel/trace/ftrace.c diff | blob | blame | history
kernel/trace/trace.c diff | blob | blame | history
kernel/trace/trace.h diff | blob | blame | history
kernel/trace/trace_dynevent.c diff | blob | blame | history
kernel/trace/trace_events.c diff | blob | blame | history
kernel/trace/trace_events_synth.c diff | blob | blame | history
kernel/trace/trace_functions_graph.c diff | blob | blame | history
kernel/trace/trace_hwlat.c diff | blob | blame | history
kernel/trace/trace_kprobe.c diff | blob | blame | history
kernel/trace/trace_osnoise.c diff | blob | blame | history
kernel/trace/trace_printk.c diff | blob | blame | history
kernel/trace/trace_recursion_record.c diff | blob | blame | history
kernel/trace/trace_stack.c diff | blob | blame | history
kernel/trace/trace_stat.c diff | blob | blame | history
kernel/trace/trace_uprobe.c diff | blob | blame | history
Ubuntu Jammy Linux kernel mirror