X-Git-Url: http://plrg.eecs.uci.edu/git/?a=blobdiff_plain;f=security%2FKconfig;h=3aa60791f84d687eeab11e5b437e9e37c039d32c;hb=d94880b547779baaaa9e9b733c38881cad8aa685;hp=ddb3e8a8d9bd4cf0ae9c9e77f719c7009035ddda;hpb=be2a76aecfc5ed58ddf8925190cc1cfb519bf932;p=firefly-linux-kernel-4.4.55.git

diff --git a/security/Kconfig b/security/Kconfig
index ddb3e8a8d9bd..3aa60791f84d 100644
--- a/security/Kconfig
+++ b/security/Kconfig
@@ -18,6 +18,15 @@ config SECURITY_DMESG_RESTRICT
 
 	  If you are unsure how to answer this question, answer N.
 
+config SECURITY_PERF_EVENTS_RESTRICT
+	bool "Restrict unprivileged use of performance events"
+	depends on PERF_EVENTS
+	help
+	  If you say Y here, the kernel.perf_event_paranoid sysctl
+	  will be set to 3 by default, and no unprivileged use of the
+	  perf_event_open syscall will be permitted unless it is
+	  changed.
+
 config SECURITY
 	bool "Enable different security models"
 	depends on SYSFS
@@ -136,6 +145,7 @@ config HAVE_ARCH_HARDENED_USERCOPY
 config HARDENED_USERCOPY
 	bool "Harden memory copies between kernel and userspace"
 	depends on HAVE_ARCH_HARDENED_USERCOPY
+	depends on HAVE_HARDENED_USERCOPY_ALLOCATOR
 	select BUG
 	help
 	  This option checks for obviously wrong memory regions when