On Mon, Apr 17, 2017 at 7:25 PM, Ben Hutchings <ben@xxxxxxxxxxxxxxx> wrote: > The timer_stats feature was removed upstream by: > > commit dfb4357da6ddbdf57d583ba64361c9d792b0e0b1 > Author: Kees Cook <keescook@xxxxxxxxxxxx> > Date: Wed Feb 8 11:26:59 2017 -0800 > > time: Remove CONFIG_TIMER_STATS > > I'm hesitant to propose removing a feature in stable, even if it is > redundant. What I've done for Debian stable is to restrict it to the > initial pid namespace (see attached). Would that be a reasonable > alternative change for stable branches? Seems like a reasonable approach. The only stuff that should need this should only be running in the init_ns anyway... -Kees -- Kees Cook Pixel Security