Ilya V. Matveychikov

@solardiz I'm going to make other implementation with more features added so closing this PR which acted as initial discussion.

@solardiz @Adam-pi3 @wladmis Please, review feature prototype based on KHOOK: https://github.com/milabs/khook/tree/dev-lkrg

@solardiz I've found recently that hooking `security_syslog` allows to restrict dmesg effectively without need to alter `/dev/kmsg` and `/proc/kmsg` access rights. So we could stick to that approach only. As...

@solardiz @Adam-pi3 @wladmis Have a look at v2 version of the feature prototype: https://github.com/milabs/khook/commits/dev-lkrg ([3e6987](https://github.com/milabs/khook/commit/3e6987e613720501963816477456b83accdb4c97)) Implemented: - `dmesg` restriction (`security_syslog` hook) - files/directories restriction (`inode_permission`, `chmod_common` hooks) - seq-files forging...

@solardiz @Adam-pi3 @wladmis Have a look at v3 version of the feature prototype: https://github.com/milabs/khook/commits/dev-lkrg ([d62f7c](https://github.com/milabs/khook/commit/d62f7ce326c922f44ce680ee7acea4b69f45ae29)) Implemented: - `utsname` forging (via `__do_sys_{uname,newuname}` hooks) Looks for me as a semi-final prototype version....

Could you provide the full dump? Also, `kmalloc` is not strictly required and can be replaced with `vmalloc`...

Could you please tell us what do you do by hiding the CPU usage and we'll try to suggest you what to do.

> oink Any suggestions?

Hey, thanks for the report but I'm not maintaining the project to support modern kernels. Feel free to fix it, though.

Pull requests are welcome!