summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--efi-lockdown.patch2
1 files changed, 1 insertions, 1 deletions
diff --git a/efi-lockdown.patch b/efi-lockdown.patch
index db408efb5..ceb0ca7f9 100644
--- a/efi-lockdown.patch
+++ b/efi-lockdown.patch
@@ -1846,7 +1846,7 @@ index e24aa3241387..3ea87a004771 100644
--- a/kernel/bpf/syscall.c
+++ b/kernel/bpf/syscall.c
@@ -1848,6 +1848,9 @@ SYSCALL_DEFINE3(bpf, int, cmd, union bpf_attr __user *, uattr, unsigned int, siz
- if (!capable(CAP_SYS_ADMIN) && sysctl_unprivileged_bpf_disabled)
+ if (sysctl_unprivileged_bpf_disabled && !capable(CAP_SYS_ADMIN))
return -EPERM;
+ if (kernel_is_locked_down("BPF"))
generated by cgit (git 2.34.1) at 2024-11-10 18:09:32 +0000