Linux v4.17-6625-g1c8c5a9d38f6

author: Laura Abbott <labbott@redhat.com> 2018-06-07 14:52:18 -0700
committer: Laura Abbott <labbott@redhat.com> 2018-06-07 14:52:18 -0700
commit: 9382c1533bd8d6194e7ac13e171f01dc9e8d3b8c (patch)
tree: c524795eba5f8de317eb92bc91985a8106ac2563 /efi-lockdown.patch
parent: 6cf9fb9604a1ff7f29e4a4ec8a360d94d8384ae7 (diff)
download: kernel-9382c1533bd8d6194e7ac13e171f01dc9e8d3b8c.tar.gz
kernel-9382c1533bd8d6194e7ac13e171f01dc9e8d3b8c.tar.xz
kernel-9382c1533bd8d6194e7ac13e171f01dc9e8d3b8c.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/efi-lockdown.patch b/efi-lockdown.patch
index 96536be76..f7aca0fc0 100644
--- a/efi-lockdown.patch
+++ b/efi-lockdown.patch
@@ -1550,14 +1550,14 @@ diff --git a/kernel/bpf/syscall.c b/kernel/bpf/syscall.c
 index 0244973ee544..7457f2676c6d 100644
 --- a/kernel/bpf/syscall.c
 +++ b/kernel/bpf/syscall.c
-@@ -2031,6 +2031,9 @@ SYSCALL_DEFINE3(bpf, int, cmd, union bpf_attr __user *, uattr, unsigned int, siz
+@@ -2333,6 +2333,9 @@ SYSCALL_DEFINE3(bpf, int, cmd, union bpf_attr __user *, uattr, unsigned int, siz
  	if (sysctl_unprivileged_bpf_disabled && !capable(CAP_SYS_ADMIN))
  		return -EPERM;
 
 +	if (kernel_is_locked_down("BPF"))
 +		return -EPERM;
 +
- 	err = check_uarg_tail_zero(uattr, sizeof(attr), size);
+ 	err = bpf_check_uarg_tail_zero(uattr, sizeof(attr), size);
  	if (err)
  		return err;
 --
author	Laura Abbott <labbott@redhat.com>	2018-06-07 14:52:18 -0700
committer	Laura Abbott <labbott@redhat.com>	2018-06-07 14:52:18 -0700
commit	9382c1533bd8d6194e7ac13e171f01dc9e8d3b8c (patch)
tree	c524795eba5f8de317eb92bc91985a8106ac2563 /efi-lockdown.patch
parent	6cf9fb9604a1ff7f29e4a4ec8a360d94d8384ae7 (diff)
download	kernel-9382c1533bd8d6194e7ac13e171f01dc9e8d3b8c.tar.gz kernel-9382c1533bd8d6194e7ac13e171f01dc9e8d3b8c.tar.xz kernel-9382c1533bd8d6194e7ac13e171f01dc9e8d3b8c.zip