Merge tag 'kvm-s390-master-5.14-1' of git://git.kernel.org/pub/scm/linux/kernel/git/kvms390/linux into HEAD

KVM: selftests: Fixes - provide memory model for IBM z196 and zEC12 - do not require 64GB of memory
author: Paolo Bonzini <pbonzini@redhat.com> 2021-07-08 13:15:57 -0400
committer: Paolo Bonzini <pbonzini@redhat.com> 2021-07-14 12:14:27 -0400
commit: f3cf800778e9e76b2387d00c9bfbc2e16efdb7ed (patch)
tree: 783e27546a8d65df254f59b5a024dc42eb390582 /kernel/bpf/helpers.c
parent: b8917b4ae44d1b945f6fba3d8ee6777edb44633b (diff)
parent: cd4220d23bf3f43cf720e82bdee681f383433ae2 (diff)
1 files changed, 5 insertions, 2 deletions
diff --git a/kernel/bpf/helpers.c b/kernel/bpf/helpers.c
index 73443498d88f..a2f1f15ce432 100644
--- a/kernel/bpf/helpers.c
+++ b/kernel/bpf/helpers.c
@@ -14,6 +14,7 @@
 #include <linux/jiffies.h>
 #include <linux/pid_namespace.h>
 #include <linux/proc_ns.h>
+#include <linux/security.h>
 
 #include "../../lib/kstrtox.h"
 
@@ -1069,11 +1070,13 @@ bpf_base_func_proto(enum bpf_func_id func_id)
 	case BPF_FUNC_probe_read_user:
 		return &bpf_probe_read_user_proto;
 	case BPF_FUNC_probe_read_kernel:
-		return &bpf_probe_read_kernel_proto;
+		return security_locked_down(LOCKDOWN_BPF_READ) < 0 ?
+		       NULL : &bpf_probe_read_kernel_proto;
 	case BPF_FUNC_probe_read_user_str:
 		return &bpf_probe_read_user_str_proto;
 	case BPF_FUNC_probe_read_kernel_str:
-		return &bpf_probe_read_kernel_str_proto;
+		return security_locked_down(LOCKDOWN_BPF_READ) < 0 ?
+		       NULL : &bpf_probe_read_kernel_str_proto;
 	case BPF_FUNC_snprintf_btf:
 		return &bpf_snprintf_btf_proto;
 	case BPF_FUNC_snprintf:
author	Paolo Bonzini <pbonzini@redhat.com>	2021-07-08 13:15:57 -0400
committer	Paolo Bonzini <pbonzini@redhat.com>	2021-07-14 12:14:27 -0400
commit	f3cf800778e9e76b2387d00c9bfbc2e16efdb7ed (patch)
tree	783e27546a8d65df254f59b5a024dc42eb390582 /kernel/bpf/helpers.c
parent	b8917b4ae44d1b945f6fba3d8ee6777edb44633b (diff)
parent	cd4220d23bf3f43cf720e82bdee681f383433ae2 (diff)