Re: [PATCH bpf-next] bpf: skip unnecessary capability check

Tue, 20 Mar 2018 04:38:31 -0700 

On Tue, Mar 20, 2018 at 12:57 AM, Chenbo Feng
<chenbofeng.ker...@gmail.com> wrote:
> -       if (!capable(CAP_SYS_ADMIN) && sysctl_unprivileged_bpf_disabled)
> +       if (sysctl_unprivileged_bpf_disabled && !capable(CAP_SYS_ADMIN))
>                 return -EPERM;
>

Acked-by: Lorenzo Colitti <lore...@google.com>

Should this be targeted to bpf (or even -stable) instead of bpf-next?

Reply via email to